last executing test programs:

748.938674ms ago: executing program 0:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = socket$netlink(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000340)='sched_kthread_stop_ret\x00', r1}, 0x10)
sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="4000000010001fff000000000000000000060000", @ANYRES32=0x0, @ANYBLOB="0000000000000000180012800e0001007769726567756172640000000400028008000a00b8"], 0x40}}, 0x0)

639.718781ms ago: executing program 2:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000000))
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_int(r2, &(0x7f0000000200), 0xf000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r1, 0x0)
ioctl$PPPIOCSMAXCID(r0, 0x40047459, &(0x7f0000000040))

595.396478ms ago: executing program 4:
mkdir(&(0x7f0000000080)='./file0\x00', 0x0)
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000000)={0x18}, 0x18)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b7030000000000f7850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='kmem_cache_free\x00', r3}, 0x10)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_GETXATTR(r2, &(0x7f00000000c0)={0x18}, 0x18)
write$FUSE_INIT(r2, &(0x7f0000000100)={0x50}, 0x50)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@cache_fscache}]}})
utime(&(0x7f0000000200)='./file0\x00', 0x0)
chown(&(0x7f0000000040)='./file0\x00', 0x0, 0xffffffffffffffff)

575.476651ms ago: executing program 2:
unshare(0x20020400)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
r3 = dup(r2)
fgetxattr(r3, &(0x7f0000000800)=@known='system.sockprotoname\x00', 0x0, 0x0)

571.298602ms ago: executing program 0:
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x12, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='ext4_fc_track_inode\x00', r0}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cgroup.controllers\x00', 0x275a, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={&(0x7f0000000740)='ext4_fc_track_inode\x00', r2}, 0x10)
write$cgroup_int(r3, &(0x7f00000000c0), 0x12)

546.467485ms ago: executing program 4:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000080)='./file2\x00', 0x0, &(0x7f0000000540)={[{@prjquota}, {@grpquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@sysvgroups}, {@nolazytime}, {@errors_continue}, {@resuid}]}, 0x1, 0x46a, &(0x7f0000000980)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000c80)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000090000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000020000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
chdir(&(0x7f00000004c0)='./file0\x00')
mount$incfs(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000040), 0x0, 0x0)

531.719228ms ago: executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prlimit64(0x0, 0x2, 0x0, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0}, 0x10)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
r4 = openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000000), 0x143402, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xfff, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r5], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
clock_gettime(0x0, &(0x7f0000000300)={<r6=>0x0, <r7=>0x0})
ppoll(&(0x7f00000001c0)=[{}, {r2, 0x6000}, {r4}, {r5, 0x2008}, {r3, 0x4200}], 0x5, &(0x7f0000000340)={r6, r7+10000000}, &(0x7f0000000380)={[0x1d]}, 0x8)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='tracefs\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0x8, 0xc}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e00000018", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000200)={{r8}, &(0x7f0000000000), &(0x7f0000000080)}, 0x20)

479.166306ms ago: executing program 2:
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000080))
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_inet6_udp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000000))

455.15176ms ago: executing program 2:
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0x7, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000040)='jbd2_handle_stats\x00', r1}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)

308.599482ms ago: executing program 4:
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x0, 0x0)
r1 = open(&(0x7f0000000180)='./file2\x00', 0x1cd842, 0x0)
ioctl$FS_IOC_FSSETXATTR(r1, 0x4020940d, &(0x7f0000000000)={0x4})

298.498334ms ago: executing program 3:
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0x17, 0x4, &(0x7f0000000480)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0x1}]}, &(0x7f0000000140)='syzkaller\x00', 0x5, 0xec, &(0x7f0000000000)=""/236}, 0x80)

285.387896ms ago: executing program 3:
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x0, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='ext4_request_inode\x00', r0}, 0x10)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='ext4_request_inode\x00', r1}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)

249.018501ms ago: executing program 2:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x800448d2, &(0x7f0000000000))

248.910902ms ago: executing program 1:
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000000)='./bus\x00', 0x280008a, &(0x7f00000001c0)=ANY=[@ANYBLOB="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"], 0x97, 0x2a9, &(0x7f0000000500)="$eJzs3T9ra2UYAPDnpGkSdEgEJxE8oINTabu6pEgLxUxKBnXQYluQJggtFPyDsZOri6OriyC4+SVc/AaCq+BmwcKRk5xjkt40N+m9ae+f32/p2/c8z3ue9/QtpcN58vGr/ZPDNI4vvvojGo0kKu1ox2USrahE6ZuY0v4uAICn2WWWxd/ZyDJ5SUQ0VlcWALBCS//9/2XlJQEAK/be+x+8s9Pp7L6bpo3Y63973s3/s8+/jq7vHMen0Yuj2IxmXEVk/xuN97IsG1TTXCve6A/Ou3lm/6PfivV3/ooY5m9FM1rDqen8/c7uVjoykT/I63ihuH87z9+OZrw84/77nd3tGfnRrcWbr0/UvxHN+P2T+Cx6cTgsYpQflYivt9L07ez7f778MC8vz08G5936MG4sW7vjHw0AAAAAAAAAAAAAAAAAAAAAAM+wjaJ3Tj2G/XvyqaL/ztpV/s16pKXWdH+eUX5SLnStP9Agix/K/jybaZpmReA4vxqvVKN6P7sGAAAAAAAAAAAAAAAAAACAJ8vZ51+cHPR6R6ePZVB2Ayhf67/tOu2JmddifnB9fK9KMZyzcqyVMUnE3DLyTSxc879F24PbPbqXbqr5p58XXufHh++9GKwvEPOIg/J0nRwks59hPcqZRnlIfp2MqcWC96rddClb6vjVZl5qLr332ovDwWBOTCTzCnvrz9GTK2aS67uoDZ/qzPT1YjCRPh3TWPw8578pD0h06wAAAAAAAAAAAAAAAAAAgJUav/Q74+LF3NRKVl9ZWQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABwp8af/7/EYFAkLxBci9Oze94iAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAz4H/AgAA///uD2MO")
mkdir(&(0x7f00000002c0)='./bus\x00', 0x0)
r0 = open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0)
getdents64(r0, 0x0, 0x18)

248.304541ms ago: executing program 3:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000007f1600850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = memfd_create(&(0x7f00000000c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x0)
write$binfmt_script(r2, &(0x7f0000000240)={'#! ', './bus'}, 0x9)
execveat(r2, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)

230.728674ms ago: executing program 0:
unshare(0x20020400)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
r3 = dup(r2)
fgetxattr(r3, &(0x7f0000000800)=@known='system.sockprotoname\x00', 0x0, 0x0)

227.018115ms ago: executing program 2:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001180)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x401, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000001c0)='9p_protocol_dump\x00', r0}, 0x10)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r1, 0x0, r4, 0x0, 0x39000, 0x0)
r5 = memfd_create(&(0x7f0000000080), 0x0)
splice(r3, 0x0, r5, 0x0, 0x408cd, 0x0)
write$binfmt_elf64(r2, &(0x7f0000000100)=ANY=[], 0xfffffe3e)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000980)='sys_exit\x00', r6}, 0x10)
r7 = fsopen(&(0x7f0000000040)='sysfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r7, 0x6, 0x0, 0x0, 0x0)
r8 = fsmount(r7, 0x0, 0x0)
mount_setattr(r8, 0x0, 0x0, &(0x7f0000001880)={0x4, 0x0, 0x80000, {r3}}, 0xfe85)
r9 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r9, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="020f0000100000000000000000000000030005000000000002004e21ffffffff0000000000000000080012000000010000000000000000000600000000000000000600000000000000000000000000000000000000000000fc020000000000000000000000000000030006000000000002000000e0000001c747bf9ef66f176e304ec50000000000000000"], 0x80}}, 0x0)
bpf$BPF_PROG_GET_NEXT_ID(0xb, &(0x7f0000000140)={0x80}, 0x8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r10 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000600), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r10, 0xaf01, 0x0)
r11 = eventfd(0x0)
ioctl$VHOST_SET_LOG_FD(r10, 0x4004af07, &(0x7f0000000240)=r11)
ioctl$VHOST_SET_MEM_TABLE(r10, 0x4008af03, &(0x7f00000009c0)={0x9, 0x0, [{0x1000, 0x33, &(0x7f0000000100)=""/51}, {0xd000, 0x4d, &(0x7f0000000300)=""/77}, {0x1000, 0x0, 0x0}, {0x0, 0xa1, &(0x7f00000003c0)=""/161}, {0x0, 0x5e, &(0x7f0000000480)=""/94}, {0x2, 0xb6, &(0x7f0000000500)=""/182}, {0x10000, 0x7b, &(0x7f0000000780)=""/123}, {0x0, 0x76, &(0x7f0000000880)=""/118}, {0x1000, 0xa0, &(0x7f0000000900)=""/160}]})
ioctl$VHOST_SET_VRING_KICK(r10, 0x4008af20, &(0x7f0000000040)={0x1, r11})
ioctl$ifreq_SIOCGIFINDEX_wireguard(r11, 0x8933, &(0x7f0000000080)={'wg1\x00'})
bpf$LINK_GET_FD_BY_ID(0x1e, 0x0, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000001580)={@map, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000014c0)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000001500)=[0x0, 0x0], &(0x7f0000001540)=[0x0]}, 0x40)
socket(0x27, 0x3, 0x9)

217.151376ms ago: executing program 0:
syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./file2\x00', 0x810, &(0x7f0000000140)=ANY=[], 0xfd, 0x1501, &(0x7f00000002c0)="$eJzs3Am4T1X3OPC19t6H62b4JpnP2uvwTYZNkoSSZEiSJCRzQpIkSZK4ZEpCEjLeJHPInG665nnInHTzSpIkJCTZ/+c2/P16h5/3fX/9/vq/d32e5zz2cs7aZ+27nu89w/Pc79ddh1VvVKNKfWaGf4f+bYC//JMEAAkAMBAAcgBAAABlc5bNmb4/i8akf+sk4n9JgxlXugJxJUn/Mzbpf8Ym/c/YpP8Zm/Q/Y5P+Z2zS/4xN+i9EhjYr39WyZdxN3v//f079T5Ll+p8h4D/aIf3/T6P/paOl/xmb9D9jk/5nbNL/jCy40gWIK0w+/xmb9F+IDO0Pf6e84dyVfqct27+wCSGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQ/w+c85cYAPhtfKXrEkIIIYQQQgghxB/Hv3ulKxBCCCGEEEIIIcT/PgQFGgwEkAkyQwJkgUS4CrJCNsgOOSAGV0NOuAZywbWQG/JAXsgH+aEAFIQQCCwwRFAICkMcroMicD0UhWJQHEqAg5JQCm6A0nAjlIGboCzcDOXgFigPFX4+Z7rboTLcAVXgTqgK1aA61IC7oCbcDbXgHqgN90IduA/qwv1QDx6A+tAAGsKD0AgegsbQBJpCM2gOLaDlZfKTc/y9/OehB7wAPaEXJEFv6AMvQl/oB/1hAAyEl2AQvAyD4RUYAkNhGLwKw+E1GAGvw0gYBaPhDRgDY2EcjIcJMBGS4U2YBG/BZHj7oWwwFabBdJgBM2EWvAOzYQ7MhXdhHsyHBZCcZREshiXwHiyF9yEFPoBl8CGkwnJYASthFayGNbAW1sF62AAbYRNshi2wFbbBR7AddsBO2AW7YQ/shY9hH3wC++FTSMPP/sX8s7/Ph24ICKhQoUGDmTATJmACJmIiZsWsmB2zYwxjmBNzYi7MhbkxN+bFvJiE+bEgFkRCQkbGQlgI4xjHIlgEi2JRLI7F0aHDUlgKS+ONWAbLYFksi+WwHJbHClgBb8VbsRJWwspYGatgFayKVbE6Vse78C68G2thLayNtbEO1sG6WBfrYT2sj/WxITbERtgIG2NjbIpNsTk2x5bYElthK2yNrbEttsV22A7bY3vsgB2wI3bETtgJO2Nn7IJdsCt2xW74HD6Hz+Pz+AK+gL2wquqNfbAP9sW+2B8H4AB8CQfhy/gyvoJDcCgOw1fxVXwNR+AZHImjcDSOxkpqLI7D8chqIiZjMmaGSTgZJ+MUnIpTcTrOwJk4C2fhbJyDc/BdnIfzcT4uxIW4GJfgElyK72MKpuAyPIupuBxX4EpchatxFa7FdbgWN+BG3ICbcTNuxa34EX6EO3AH7sJduAf34Mf4MX6Cn+AQTMM0PIAH8CAexEN4CA/jYTyCR/AoHsVjeAyP43E8gSfxFJ7E03gaz+BZPAcA5/E8XsALeBEvpn/4VTqjjMqkMqkElaASVaLKqrKq7Cq7iqmYyqlyqlwql8qtcqu8Kq/Kr/KrgqqgIkWKVaQKqUIqruKqiCqiiqqiqrgqrpxyqpQqpUqr0qqMKqPKqptVOXWLKq8qqDbuVnWrqqTausrqDlVFVVFVVTVVXdVQNVRNVVPVUrVUbVVb1VF1VF11v6qnemN/bKDSO9NIDcXGahg2Vc1Uc9VCvYYPq1ZqBLZWbVRb9agahSOxvWrlOqgnVEc1Djupp9R4fFp1UROxq3pWdVPPqe7qedVDtXY9VS81BXurPmo69lX9VH81QM3Gaiq9Y9XVK+r5zEPVMPWqWoyvqRHqdTVSjVKj1RtqjBqrxqnxaoKaqJLVm2qSektNVm+rKWqqmqamqxlqppql3lGz1Rw1V72r5qn5aoFaqBapxWqJek8tVe+rFPWBWqY+VKlquVqhVqpVarVao9aqdWq92qA2qk1qs9qitqpt6iO1Xe1QO9UutVvtUXvVx2qf+kTtV5+qNPWZOqD+og6qz9Uh9YU6rL5UR9RX6qj6Wh1T36jj6lt1Qp1Up9R36rT6Xp1RZ9U59YM6r35UF9RP6qLyCjRqpbU2OtCZdGadoLPoRH2Vzqqz6ew6h47pq3VOfY3Opa/VuXUendfk0/l1AV1Qh5q01awjXUgX1nF9nS6ir9dFdTFdXJfQTpfUpfQNurS+UZfRN+my+mZdTt+iy+sKuqIHfZuupG/XlfUduoq+U1fV1XR1XUPfpWvqu3UtfY+ure/VdfR9uq6+X9fTD+j6uoFuqB/UjfRDurFuopvqZrq5bqFb6od1K/2Ibq3b6Lb6Ud1OP6bb68d1B/2E7qif1J30U7qzflp30c/orvpZ3U0/p7vrn/RF7XVP3Usn6d66j35R99X9dH89QA/UL+lB+mU9WL+ih+iheph+VQ/Xr+kR+nU9Uo/So/Ubeoweq8fp8XqCnqiT9Zt6kn5LT9Zv6yl6qp6mp+sZeqbu/+tMc/+J/Lf+Tv7gn8++VW/TH+nteofeqXfp3XqP3qv36n16n96v9+s0naYP6AP6oD6oD+lD+rA+rI/oI/qoPqqP6WP6uD6uT+iT+gf9nT6tv9dn9Fl9Vv+gz+vz+sKvPwMwaJTRxpjAZDKZTYLJYhLNVSaryWaymxwmZq42Oc01Jpe51uQ2eUxek8/kNwVMQRMaMtawiUwhU9jEzXWmiLneFDXFTHFTwjhT0pQyN/yP8y9XX0vT0rQyrUxr09q0NW1NO9POtDftTQfTwXQ0HU0n08l0Np1NF9PFdDVdTTfTzXQ33U0P08P0ND1NkkkyfcyLpq/pZ/qbAWageckMMoPMYDPYDDFDzDAzzAw3w80IM8KMNCPNaDPajDFjzDgzzkwwE0yyz2EmmUlmsplsppgpZtrAHGaGmWFmmVlmtplt5pq5Zp6ZZxaYBWaRWWSWmCVmqVlqUkyKWWaWmVSz3Cw3K81Ks9qsNmvNWrPerDcbzUaz2Ww2qWab2Wa2m+1mp9lpdpvdZq/Za/aZfWa/2W/STJo5YA6Yg+agOWQOmcPmsDlijpij5qg5Zo6Z4+a4OWFOmFPmlDltTpsz5ow5Z86Z8+a8uWAumIvmYvptX6ACFZjABJmCTEFCkBAkBolB1iBrkD3IHsSCWJAzyBnkCq4Ncgd5grxBviB/UCAoGIQBBTbgIAoKBYWDeHBdUCS4PigaFAuKByUCF5QMSgU3BKWDG4MywU1B2eDmoFxwS1A+qBBUDG4NbgsqBbcHlYM7girBnUHVoFpQPagR3BXUDO4OagX3BLWDe4M6wX1B3eD+oF7wQFA/aBA0DB4MGgUPBY2DJkHToFnQPGgRtPxD5/f+TJ5HXM+wV5gU9g77hC+GfcN+Yf9wQDgwfCkcFL4cDg5fCYeEQ8Nh4avh8PC1cET4ejgyHBWODt8Ix4Rjw3Hh+HBCODFMDt8MJ4VvhZPDt8Mp4dRwWjA9nBHODGeF74Szwznh3PDdcF44P1wQLgwXhYtD/OWWGFLCD8Jl4Ydharg8XBGuDFeFq8M14dpwXbg+3BBuDDeFm8sO+uXQcHu4I9wZ7gp3h3vCveHH4b7wk3B/+GmYFn4WHgj/Eh4MPw8PhV+Eh8MvwyPhV+HR8OvwWPhNeDz8NjwRngxPhd+Fp8PvwzPh2fBc+EN4PvwxvBD+FF4MffrNffrlnQwZykSZKIESKJESKStlpeyUnWIUo5yUk3JRLspNuSkv5aX8lJ8KUkFKx8RUiApRnOJUhIpQUSpKxak4OXJUikpRaSpNZagMlaWyVI7KUXkqTxWpIt1Gt9HtdDvdQXfQnXQnVaNqVINqUE2qSbWoFtWm2lSH6lBdqkv1qB7Vp/rUkBpSI2pEjakxNaWm1JyaU0tqSa2oFbWm1tSW2lI7akftqT11oA7UkTpSJ+pEnakzdaEu1JW6UjfqRt2pO/WgHtSTelISJVEf6kN9qS/1p/40kAbSIBpEg2kwDaEhNIyG0XAaTiNoBI2kUTSa3qAxNJbG0XiaQBMpmZJpEk2iyTSZptAUmkbTaAbNoFk0i2bTbJpLc2kezaMFtIAW0SJaQktoKS2lFEqhZbSMUimVVtAKWkWraA2toXW0jjbQBtpEm2gLbaFttI2203baSTtpN+2mvbSX9tE+2k/7KY3S6AAdoIN0kA7RITpMh+kIHaGjdJSO0TE6TsfpBJ2gU3SKTtNpOkNn6Bydo/P0I12gn+gieUqwWWyivcpmtdlsdpvD/nWc1+az+W0BW9CGNrfN87uYrLVFbTFb3Jawzpa0pewNfxOXtxVsRXurvc1Wsrfbyra8zQL/Na5p77a17D22tr3X1rB3/S6uY++zde1Dtp5tYuvbZrahbWEb2YdsY9vENrXNbHPbwrazj9n29nHbwT5hO9on/yZeat+36+x6u8FutPvsJ/ac/cEetV/b8/ZH29P2sgPtS3aQfdkOtq/YIXbo72MAO9q+YcfYsXacHW8n2Il/E0+z0+0MO9POsu/Y2XbO38RL7Ht2nk2xC+xCu8gu/jlOrynFfmCX2Q9tql1uV9iVdpVdbdfYtf+31pV2s91it9q99mO73e6wO+0uu9vu+TlOX8d++6lNs5/ZI/Yre9B+bg/ZY/aw/fLnOH19x+w39rj91p6wJ+0p+509bb+3Z+zZn9efvvbv7E/2ovUWGFmxZsMBZ+LMnMBZOJGv4qycjbNzDo7x1ZyTr+FcfC3n5jycl/Nxfi7ABTlkYsvMERfiwhzn67gIX89FuRgX5xLsuCSX4hu4NN/IZfgmLss3czm+hctzBa7It/JtXIlv58p8B1fhO7kqV+PqXIPv4pp8N9fie7g238t1+D6uy/dzPX6A63MDbsgPciN+iBtzE27Kzbg5t+CW/DC34ke4Nbfhtvwot+PHuD0/zh34Ce7IT3Infoo789PchZ/hrvwsd+PnuDs/zz34Be7JvTiJe3MffpH7cj/uzwN4IL/Eg/hlHsyv8BAeysP4VR7Or/EIfp1H8igezW/wGB7L43g8T+CJnMxv8iR+iyfz2zyFp/I0ns4zeCbP4nd4Ns/hufwuz+P5vIAX8iJezEv4PV7K73MKf8DL+ENO5eW8glfyKl7Na3gtr+P1vIE38ibezFt4K2/jj3g77+CdvIt38x7eyx/zPv6E9/OnnMaf8QH+Cx/kz/kQf8GH+Us+wl/xUf6aj/E3fJy/5RN8kk/xd3yav+czfJbP8Q98nn/kC/wTX2TPEGGkIh2ZKIgyRZmjhChLlBhdFWWNskXZoxxRLLo6yhldE+WKro1yR3mivFG+KH9UICoYhRFFNuIoigpFhaN4dF1UJLo+KhoVi4pHJSIXlYxKRTdEpaMbozLRTVHZ6OaoXHRLVD6qEFWMbo1uiypFt0eVozuiKtGdUdWoWlQ9qhHdFdWM7o5qRfdEtaN7ozLRfVHd6P6oXvRAVD9qEDWMHowaRQ9FjaMmUdOoWdQ8ahG1jB6OWkWPRK2jNlHb6NGoXfRY1D56POoQPRF1jJ68tL9Y8MvV9K/2J0W9I/3rG7J79KL44viS+HvxpfH34ynxD+LL4h/GU+PL4yviK+Or4qvja+Jr4+vi6+Mb4hvjm+Kb41viW+Pe18gMDtMfhMG4wGVymV2Cy+IS3VUuq8vmsrscLuaudjndNS6Xu9bldnlcXpfP5XcFXEEXOnLWsYtcIVfYxd11roi73hV1xVxxV8I5V9KVci1cS9fStXKPuNaujWvrHnWPusfcY+7xhF8Ld53cU66ze9p1cc+4Z9yzrpt7znV3z7se7gXX0/VySS7J9XF9XF/X1/V3/d1AN9ANcoPcYDfYDXFD3DA3zA13w90IN8KNdCPdaDfajXFj3Dg3zk1wE1yyS3aT3CQ32U12U9wUN81NczPcDDfLzXKz3Ww3181189w8t8AtcIvcIrfELXFL3VKX4lLcMrfMpbpUt8KtcKvcKrfGrXHr3Dq3wW1wm9wmt8VtcdvcNrfdbXc73U632+12e91et8/tc/vdfpfm0twBd8AddAfdIfeFO+y+dEfcV+6o+9odc9+44+5bd8KddKec16fd9+6MO+vOuR/cefeju+B+chedd8mxN2OTYm/FJsfejk2JTY1Ni02PzYjNjM2KvRObHZsTmxt7NzYvNj+2ILYwtii2OLYk9l5saez9WErsg9iy2Iex1Njy2IrYytiq2OqY9wW2R76QL+zj/jpfxF/vi/pivrgv4Z0v6Uv5G3xpf6Mv42/yZf3Nvpy/xZf3FXxF38Q39c18c9/Ct/QP+1b+Ed/at/Ft/aO+nX/Mt/eP+w7+Cd/RP+k7+ad8Z/+07+Kf8V39s/N/7bLv4V/wPX0vn+R7+z7+Rd/X9/P9/QA/0L/kB/mX/WD/ih/ih/ph/lU/3L/mR/jX/Ug/yo/2b/gxfqwf58f7CX6iT/Zv+kn+LT/Zv+2n+Kl+mp/uZ/iZfpZ/x8/2c/xc/66f5+f7BX6hX+QX+yX+Pb/Uv+9T/Ad+mf/Qp/rlfoVf6Vf51X6NX+vX+fV+g9/oN/nNfovf6rf5j/x2v8Pv9Lv8br/H7/Uf+33+E7/ff+rT/Gf+gP+LP+g/94f8F/6w/9If8V/5o/5rf8x/44/7b/0Jf9Kf8t/50/57f8af9ef8D/68/9Ff8D/5i/I3a0IIIYQQ/xR9mf29/87/qV+3dH0AINuOfIf/es5NuX8Z91P7OsYA4IleXRv8tjVokJSU9OuxqRqCwgsBIHYp/+fvH/g1Xg5t4THoAG2g9N+tr5+q+PN93383f/xmgESALL/lpD8eJcJfz3/jP5i/yXt8ufkXAhQtfCkn/US/xZfmL/MP5t/T7jLzZ/k8GaD1f8nJCpfiS/OXgkfgSejwuyOFEEIIIYQQQohf9FPnu13u+Tb9+Ty/uZSTGS7Fl3s+v4zKf8QahBBCCCGEEEII8d97+rnujz/coUObzv/Jg8x/jjL+BAMEgD9BGTL48w+u9G8mIYQQQgghxB/t0k3/la5ECCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYTIuP79bwhT//TBV3qNQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghxJX2fwIAAP//5g1V0w==")
r0 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10)
sendmmsg$inet(r0, &(0x7f0000005240), 0x4000095, 0x0)
setsockopt$inet_msfilter(r0, 0x0, 0x19, &(0x7f00000000c0)=ANY=[], 0x14)

210.351968ms ago: executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = dup(r2)
ioctl$KVM_CAP_ENFORCE_PV_FEATURE_CPUID(r2, 0x4068aea3, &(0x7f0000000280)={0xbe, 0x0, 0x1})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="010000000008000011"])

204.367248ms ago: executing program 4:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x0, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000000))
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
write$cgroup_int(r2, &(0x7f0000000200), 0xf000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r1, 0x0)
ioctl$PPPIOCSMAXCID(r0, 0x40047459, &(0x7f0000000040))

198.77019ms ago: executing program 1:
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000003c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmsg$inet(r4, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r3, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000700), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$inet(r6, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r5, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000900), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
sendmsg$inet(r8, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg(r7, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001dc0)=""/4096, 0x1000}, 0x0)
close(r0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)

163.595325ms ago: executing program 3:
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'batadv_slave_0\x00', <r1=>0x0})
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000440)={r1, 0x1, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}}, 0x10)
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000080)={'batadv_slave_0\x00', <r3=>0x0})
setsockopt$packet_add_memb(0xffffffffffffffff, 0x107, 0x1, &(0x7f0000000000)={r3, 0x1, 0x6, @link_local}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000000), r4)
getsockname$packet(r4, &(0x7f0000000180)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(r4, 0x89f2, &(0x7f0000000040)={'sit0\x00', &(0x7f0000000400)={'sit0\x00', r5, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @empty, @empty}}}})

151.965387ms ago: executing program 1:
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
personality(0x0)

144.406548ms ago: executing program 3:
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000280)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@errors_continue}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f0000000680)="$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")
chdir(&(0x7f0000000000)='./file0\x00')
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r0, 0x0)
readv(0xffffffffffffffff, &(0x7f0000001f80)=[{0x0}, {0x0}, {0xffffffffffffffff}], 0x3)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)

135.150849ms ago: executing program 1:
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0x7, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000040)='jbd2_handle_stats\x00', r1}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)

111.044423ms ago: executing program 4:
recvfrom$packet(0xffffffffffffffff, &(0x7f0000000080)=""/195, 0xc3, 0x0, &(0x7f0000000240)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @link_local}, 0x14)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = socket(0xa, 0x3, 0x4)
ioctl$sock_SIOCBRDELBR(r0, 0x890b, &(0x7f0000000000)='bridge0\x00')
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0xf, 0xf, &(0x7f0000000480)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {0x85, 0x0, 0x0, 0x51}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}}}, &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x9, 0x1, 0x42, 0x40, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000100), &(0x7f00000001c0), 0x107d, r2}, 0x38)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000001dc0)={r2, &(0x7f0000000d00), &(0x7f0000000dc0)=""/4096}, 0x20)
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r4, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
sendto$inet6(r4, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_MD5SIG(r4, 0x6, 0xe, &(0x7f0000000340)={@in6={{0xa, 0x0, 0x0, @loopback}}, 0x0, 0x0, 0x39, 0x0, "b0fd7b07ff8a216915a8d3215a3225178096acf74c85ad01ba95fd9d0543750fb5a62a045888e8febca073f1f821abb8083f4d192383c47b3800abd4d841e2d4b56039653b95d0cd0a00a6ea35bdfaf6"}, 0xd8)
sendto$inet6(r4, &(0x7f0000000080)="44f9b108b1cdc885c9c533d21f474bec8bfef1df1e2da71e578dc6b91d09f7ab15378571d8e27546090000006e75436914ab717528ee4b7a9beaf908d11137c11903064e83b4951f4d433a5404970c85d92d7083fd38844cbb0c6c5eb508ddc2dc7a590aa7941b1e9eeb5a688138dea09b776cbfa784cbf550bf3074fb0d775da4df5a3f48bbdf452eeb6b923da9d0e25b80f76a873664b5753444fe05f33e5f91045540836c3cd6af10f0cd018f0c6f57f926ac959a5628c45088fbe0c87fbe6cbcda4662d2a12f6d00"/212, 0xd4, 0x1, 0x0, 0x0)
splice(r4, 0x0, r3, 0x0, 0x406f405, 0x0)

108.926043ms ago: executing program 1:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000f00)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0xfffffffffffffd54}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_SURVEY(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="a903000000000000000032"], 0x1c}}, 0x0)

13.056038ms ago: executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x800448d2, &(0x7f0000000000))

12.140728ms ago: executing program 4:
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000080))
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$sock_inet6_udp_SIOCOUTQ(r0, 0x5411, &(0x7f0000000000))

0s ago: executing program 1:
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$VHOST_SET_LOG_BASE(0xffffffffffffffff, 0x4008af04, 0x0)
r0 = syz_usb_connect(0x1, 0x24, &(0x7f0000000cc0)=ANY=[@ANYBLOB="120100004f92b90857152077ebb7000000010902120001000000000904"], 0x0)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008002, &(0x7f0000000240)={[{}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@resuid}, {@max_batch_time={'max_batch_time', 0x3d, 0x7}}, {@lazytime}, {@jqfmt_vfsold}, {@dioread_lock}, {@data_err_abort}]}, 0x1, 0x5ef, &(0x7f0000000600)="$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")
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f0000000000)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x97}, @printk={@ld}]}, &(0x7f0000000080)='GPL\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
remap_file_pages(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x8, 0x0, 0x10000)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r2, &(0x7f0000000100)='i', 0x1, 0x80ffff)
memfd_create(0x0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
syz_emit_ethernet(0x39d, &(0x7f0000000e40)={@link_local, @dev, @void, {@ipv4={0x800, @gre={{0x24, 0x4, 0x1, 0x17, 0x38f, 0x67, 0x0, 0x40, 0x2f, 0x0, @multicast1, @rand_addr=0x64010101, {[@ssrr={0x89, 0x17, 0xbc, [@broadcast, @loopback, @private=0xa010101, @rand_addr=0x64010102, @rand_addr=0x64010101]}, @lsrr={0x83, 0xb, 0xaf, [@multicast2, @loopback]}, @generic={0x44, 0xe, "b49d01336b43cc8b3cba0e5a"}, @lsrr={0x83, 0x27, 0x0, [@multicast1, @private=0xa010102, @empty, @remote, @multicast1, @rand_addr=0x64010100, @multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}, @rand_addr=0x64010102]}, @timestamp={0x44, 0x14, 0x71, 0x0, 0x0, [0x7, 0x3, 0x40, 0x7ff]}, @lsrr={0x83, 0xf, 0x7f, [@local, @private=0xa010100, @loopback]}, @end]}}, {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x2d, 0x1, [0x9], "9a97f46ba11d4c877774f23fbefc4ec8fbad2bf7853aa3ca8f4d3fe54e001bc637436867c09ef87866be12618d"}, {0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x800, [0x5, 0x8001], "a4039b93ae82eb82a182dd1460ede797d4faf1793465f6904d8790b73daee7b61947db82cff9b4583529582719e289feef156a643843de1ae77475e6d98f68c529a05d3d457d27f974201ccb1ba6ec377e531aade6a14e3ae934698ece104e73c859a849c35955ae5c83679c0b9fcb885f622e3f12b369276e77d3706a9c2403c382e270ee39c1fd276bbc21ad0b5ed21341c2381f300b18a1c706860e89419038d3fd4cabf5777d8fa2194ee15964c539e5621c3c72f4fefeaa37379c24222476aa64c144e39f5da960422dab0ab9914d0a47ed07a91ecc0496f631981829f7fcf9cb1deb87f4248a7b0c5d"}, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x86dd, [0x8], "e5da0414fc33e6e7365e6f5535aceecb86d69fd85fae191d409d55cd1bdf761b66bf769e7b407f65c5fb2e6420324ebaf24390e21e27874055886d0e0f89c0b4f607d8991475c49594e1d6a0362f2dea9fdcd5e6547915e5228a748971c19fd6d26530809a6e7d230d5a105ee6045a390ddc563b39972027a989cfa3f2d5ea72f2d772aff8f942496855018a0238a62eb691ffc64ed2300e44774752e4cec04c77b9f8982c080ff6fa6c8703d65dcac7f675b5282ca9e2516838266ef0c65dae13e61de47cc11fb52a5ac7e1c60752067226abd28a86b1ac9db843ef235e4a8dd868aefec58614d990a7eb9ca69625d789c74440f5b42d4545"}, {0x8, 0x88be, 0x4, {{0x0, 0x1, 0x3, 0x3, 0x1, 0x2, 0x1, 0x7}, 0x1, {0x80}}}, {0x8, 0x22eb, 0x0, {{0x1, 0x2, 0x10, 0x2, 0x1, 0x1, 0x4, 0xff}, 0x2, {0x5, 0x3f, 0x0, 0x4, 0x0, 0x1, 0x2, 0x0, 0x1}}}, {0x8, 0x6558, 0x2, "e1ea54d62b1b51c9df6db83042e469502bd9036bfc0e27c0c2f24dda5f1d34896321daf95d5a46d3163c7884c87cd6769fb77311b9ce0ad7882d49ee73d7f1f750288bed2599870cea39f22595f7ebe58a8a3577605f6ccfb1f26ecd4ac4a2c1369f0dc6f899b916664d1b5f9e312c2ddf69232434bdbcbd8556469426a4a911403c6d0255e94483c18830d241a6f225c79785e878b6a7fc5451e1b5af8ca07817"}}}}}}, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000002180)={0x2020}, 0x2020)
sendfile(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000080), 0xe0000000)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x42, 0x0)
ftruncate(r3, 0x0)
quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f00000000c0)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x9, 0x8, 0x0, 0x0, 0x0, 0x9d})
syz_usb_control_io(r0, 0x0, &(0x7f0000000b00)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000e00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, &(0x7f0000001740)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001600)={0x40, 0x19, 0x2, "b3f0"}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000d00)={0x44, &(0x7f0000000300)=ANY=[@ANYBLOB="000001000000aa"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

kernel console output (not intermixed with test programs):

): encrypted files will use data=ordered instead of data journaling mode
[  344.642189][T12523] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #16: comm syz-executor.1: invalid indirect mapped block 83886080 (level 1)
[  344.656791][T12523] EXT4-fs (loop1): 1 orphan inode deleted
[  344.662442][T12523] EXT4-fs (loop1): 1 truncate cleaned up
[  344.668303][T12523] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  344.697674][   T60] snd-usb-audio: probe of 2-1:0.0 failed with error -12
[  344.705450][   T60] usb 2-1: USB disconnect, device number 39
[  344.707297][T12567] syz-executor.0[12567] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  344.711314][T12567] syz-executor.0[12567] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  344.930972][   T30] kauditd_printk_skb: 9 callbacks suppressed
[  344.931029][   T30] audit: type=1400 audit(1718478175.678:7500): avc:  denied  { mounton } for  pid=12570 comm="syz-executor.0" path="/root/syzkaller-testdir3038124318/syzkaller.totnVW/106/file0" dev="tracefs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tracefs_t tclass=dir permissive=1
[  345.013353][   T20] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[  345.147275][   T60] Bluetooth: hci0: command 0x1003 tx timeout
[  345.153217][  T420] Bluetooth: hci0: sending frame failed (-49)
[  345.257254][   T20] usb 5-1: Using ep0 maxpacket: 8
[  345.366567][T12581] xt_bpf: check failed: parse error
[  345.397534][   T20] usb 5-1: New USB device found, idVendor=0644, idProduct=0000, bcdDevice= 1.00
[  345.406597][   T20] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  345.415219][   T20] usb 5-1: config 0 descriptor??
[  345.457651][   T20] usb-storage 5-1:0.0: USB Mass Storage device detected
[  345.660157][   T39] usb 5-1: USB disconnect, device number 26
[  345.727306][ T4388] usb 2-1: new high-speed USB device number 40 using dummy_hcd
[  346.109240][T12619] bridge0: port 1(bridge_slave_0) entered blocking state
[  346.116091][T12619] bridge0: port 1(bridge_slave_0) entered disabled state
[  346.123545][T12619] device bridge_slave_0 entered promiscuous mode
[  346.132215][T12619] bridge0: port 2(bridge_slave_1) entered blocking state
[  346.139161][T12619] bridge0: port 2(bridge_slave_1) entered disabled state
[  346.139155][ T4388] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  346.139185][ T4388] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  346.146567][T12619] device bridge_slave_1 entered promiscuous mode
[  346.156776][ T4388] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  346.181469][ T4388] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  346.194349][ T4388] usb 2-1: config 0 descriptor??
[  346.258202][T12619] bridge0: port 2(bridge_slave_1) entered blocking state
[  346.265071][T12619] bridge0: port 2(bridge_slave_1) entered forwarding state
[  346.272236][T12619] bridge0: port 1(bridge_slave_0) entered blocking state
[  346.279105][T12619] bridge0: port 1(bridge_slave_0) entered forwarding state
[  346.292444][T12632] device pim6reg1 entered promiscuous mode
[  346.312077][ T9895] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  346.319631][ T9895] bridge0: port 1(bridge_slave_0) entered disabled state
[  346.326702][ T9895] bridge0: port 2(bridge_slave_1) entered disabled state
[  346.335896][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  346.344360][   T39] bridge0: port 1(bridge_slave_0) entered blocking state
[  346.351220][   T39] bridge0: port 1(bridge_slave_0) entered forwarding state
[  346.363879][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  346.372482][   T39] bridge0: port 2(bridge_slave_1) entered blocking state
[  346.379355][   T39] bridge0: port 2(bridge_slave_1) entered forwarding state
[  346.401391][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  346.410258][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  346.418248][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  346.423914][T12636] loop4: detected capacity change from 0 to 256
[  346.425627][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  346.438794][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  346.446597][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  346.455149][T12619] device veth0_vlan entered promiscuous mode
[  346.466263][T12619] device veth1_macvtap entered promiscuous mode
[  346.473346][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  346.486858][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  346.500272][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  346.588379][   T10] device bridge_slave_1 left promiscuous mode
[  346.594458][   T10] bridge0: port 2(bridge_slave_1) entered disabled state
[  346.602055][   T10] device bridge_slave_0 left promiscuous mode
[  346.604214][T12636] loop4: detected capacity change from 0 to 512
[  346.608613][   T10] bridge0: port 1(bridge_slave_0) entered disabled state
[  346.622089][   T10] device veth1_macvtap left promiscuous mode
[  346.627987][   T10] device veth0_vlan left promiscuous mode
[  346.797279][T12648] loop4: detected capacity change from 0 to 512
[  346.821546][T12646] bridge0: port 1(bridge_slave_0) entered blocking state
[  346.828671][T12646] bridge0: port 1(bridge_slave_0) entered disabled state
[  346.835939][T12646] device bridge_slave_0 entered promiscuous mode
[  346.839623][T12648] EXT4-fs (sda1): Ignoring removed nomblk_io_submit option
[  346.843301][T12646] bridge0: port 2(bridge_slave_1) entered blocking state
[  346.849361][T12648] EXT4-fs (sda1): Cannot specify journal on remount
[  346.856203][T12646] bridge0: port 2(bridge_slave_1) entered disabled state
[  346.869686][T12646] device bridge_slave_1 entered promiscuous mode
[  346.912534][T12646] bridge0: port 2(bridge_slave_1) entered blocking state
[  346.919403][T12646] bridge0: port 2(bridge_slave_1) entered forwarding state
[  346.926526][T12646] bridge0: port 1(bridge_slave_0) entered blocking state
[  346.933391][T12646] bridge0: port 1(bridge_slave_0) entered forwarding state
[  346.959476][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  346.967779][   T20] bridge0: port 1(bridge_slave_0) entered disabled state
[  346.975175][   T20] bridge0: port 2(bridge_slave_1) entered disabled state
[  346.987517][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  346.995958][   T39] bridge0: port 1(bridge_slave_0) entered blocking state
[  347.002817][   T39] bridge0: port 1(bridge_slave_0) entered forwarding state
[  347.010030][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  347.018103][   T39] bridge0: port 2(bridge_slave_1) entered blocking state
[  347.024923][   T39] bridge0: port 2(bridge_slave_1) entered forwarding state
[  347.047014][T12646] device veth0_vlan entered promiscuous mode
[  347.054798][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  347.063119][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  347.074576][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  347.083479][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  347.091642][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  347.099549][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  347.114467][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  347.118770][T12659] loop4: detected capacity change from 0 to 256
[  347.123079][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  347.137851][T12646] device veth1_macvtap entered promiscuous mode
[  347.147321][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  347.154796][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  347.163646][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  347.177875][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  347.186107][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  347.206122][T12661] bpf_get_probe_write_proto: 2 callbacks suppressed
[  347.206136][T12661] syz-executor.0[12661] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  347.212768][T12661] syz-executor.0[12661] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  347.227392][ T3167] Bluetooth: hci0: command 0x1001 tx timeout
[  347.251175][  T420] Bluetooth: hci0: sending frame failed (-49)
[  347.262569][T12665] device pim6reg1 entered promiscuous mode
[  347.338679][ T4388] input: HID 256c:006d Pen as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:256C:006D.002F/input/input49
[  347.350947][T12678] loop4: detected capacity change from 0 to 512
[  347.359261][ T4388] input: HID 256c:006d Pad as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:256C:006D.002F/input/input50
[  347.377404][ T4388] uclogic 0003:256C:006D.002F: input,hidraw0: USB HID v0.00 Keypad [HID 256c:006d] on usb-dummy_hcd.1-1/input0
[  347.389234][T12678] EXT4-fs (loop4): Ignoring removed nomblk_io_submit option
[  347.399519][T12678] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2925: inode #16: comm syz-executor.4: corrupted xattr block 8
[  347.412045][T12678] EXT4-fs (loop4): Remounting filesystem read-only
[  347.418644][T12678] EXT4-fs warning (device loop4): ext4_evict_inode:303: xattr delete (err -117)
[  347.427833][T12678] EXT4-fs (loop4): 1 orphan inode deleted
[  347.433379][T12678] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,noquota,nouid32,auto_da_alloc=0xfffffffffffffffe,nomblk_io_submit,journal_dev=0x0000000000000007,barrier,delalloc,usrquota,. Quota mode: writeback.
[  347.455425][T12678] ext4 filesystem being mounted at /root/syzkaller-testdir2511603673/syzkaller.4sVPKC/106/file1 supports timestamps until 2038 (0x7fffffff)
[  347.524173][T12686] futex_wake_op: syz-executor.4 tries to shift op by 32; fix this program
[  347.555732][ T3167] usb 2-1: USB disconnect, device number 40
[  347.678032][   T10] device bridge_slave_1 left promiscuous mode
[  347.683964][   T10] bridge0: port 2(bridge_slave_1) entered disabled state
[  347.692099][   T10] device bridge_slave_0 left promiscuous mode
[  347.698236][   T10] bridge0: port 1(bridge_slave_0) entered disabled state
[  347.706193][   T10] device veth1_macvtap left promiscuous mode
[  347.712230][   T10] device veth0_vlan left promiscuous mode
[  347.837344][   T39] usb 1-1: new full-speed USB device number 30 using dummy_hcd
[  347.987289][  T328] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[  348.121332][T12716] device pim6reg1 entered promiscuous mode
[  348.197377][   T39] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  348.213557][   T39] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 255, setting to 64
[  348.216730][T12720] device pim6reg1 entered promiscuous mode
[  348.224600][   T39] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  348.242687][   T39] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  348.251632][   T39] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  348.260100][   T39] usb 1-1: config 0 descriptor??
[  348.277372][T12690] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  348.322288][T12724] syz-executor.1[12724] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  348.322345][T12724] syz-executor.1[12724] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  348.357340][  T328] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  348.379697][  T328] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  348.389529][  T328] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  348.398548][  T328] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  348.406856][  T328] usb 5-1: config 0 descriptor??
[  348.525444][T12738] syz-executor.1[12738] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  348.525499][T12738] syz-executor.1[12738] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  348.560872][T12740] device pim6reg1 entered promiscuous mode
[  348.735733][T12750] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  348.764313][T12753] loop1: detected capacity change from 0 to 256
[  348.817845][   T39] plantronics 0003:047F:FFFF.0030: unknown main item tag 0x4
[  348.825185][   T39] plantronics 0003:047F:FFFF.0030: No inputs registered, leaving
[  348.833874][   T39] plantronics 0003:047F:FFFF.0030: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  348.887670][  T328] hid (null): bogus close delimiter
[  348.920199][T12763] device pim6reg1 entered promiscuous mode
[  349.307376][ T3167] Bluetooth: hci0: command 0x1009 tx timeout
[  349.407354][  T328] usb 5-1: string descriptor 0 read error: -71
[  349.427432][  T328] uclogic 0003:256C:006D.0031: failed retrieving string descriptor #200: -71
[  349.436058][  T328] uclogic 0003:256C:006D.0031: failed retrieving pen parameters: -71
[  349.444008][  T328] uclogic 0003:256C:006D.0031: failed probing pen v2 parameters: -71
[  349.451866][  T328] uclogic 0003:256C:006D.0031: failed probing parameters: -71
[  349.459167][  T328] uclogic: probe of 0003:256C:006D.0031 failed with error -71
[  349.467101][  T328] usb 5-1: USB disconnect, device number 27
[  349.823990][T12771] loop1: detected capacity change from 0 to 256
[  349.853328][T12771] FAT-fs (loop1): Directory bread(block 64) failed
[  349.859894][T12771] FAT-fs (loop1): Directory bread(block 65) failed
[  349.866248][T12771] FAT-fs (loop1): Directory bread(block 66) failed
[  349.872649][T12771] FAT-fs (loop1): Directory bread(block 67) failed
[  349.879041][T12771] FAT-fs (loop1): Directory bread(block 68) failed
[  349.885291][T12771] FAT-fs (loop1): Directory bread(block 69) failed
[  349.891694][T12771] FAT-fs (loop1): Directory bread(block 70) failed
[  349.898231][T12771] FAT-fs (loop1): Directory bread(block 71) failed
[  349.904975][T12771] FAT-fs (loop1): Directory bread(block 72) failed
[  349.912008][T12771] FAT-fs (loop1): Directory bread(block 73) failed
[  350.009817][T12789] loop1: detected capacity change from 0 to 512
[  350.019135][T12789] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  350.049550][T12789] EXT4-fs error (device loop1): ext4_orphan_get:1397: inode #17: comm syz-executor.1: iget: bad i_size value: -6917529027641081756
[  350.063300][T12789] EXT4-fs error (device loop1): ext4_orphan_get:1402: comm syz-executor.1: couldn't read orphan inode 17 (err -117)
[  350.075625][T12789] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  350.090477][T12789] EXT4-fs error (device loop1): ext4_readdir:260: inode #12: block 13: comm syz-executor.1: path (unknown): bad entry in directory: rec_len is smaller than minimal - offset=0, inode=12, rec_len=0, size=4096 fake=0
[  350.160551][   T30] audit: type=1326 audit(1718478180.928:7501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12797 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd169a6ea9 code=0x7ffc0000
[  350.184448][   T30] audit: type=1326 audit(1718478180.928:7502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12797 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd169a6ea9 code=0x7ffc0000
[  350.208524][   T30] audit: type=1326 audit(1718478180.928:7503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12797 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=150 compat=0 ip=0x7fcd169a6ea9 code=0x7ffc0000
[  350.232986][   T30] audit: type=1326 audit(1718478180.928:7504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12797 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd169a6ea9 code=0x7ffc0000
[  350.257341][   T30] audit: type=1326 audit(1718478180.928:7505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12797 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd169a6ea9 code=0x7ffc0000
[  350.297658][T12804] loop1: detected capacity change from 0 to 256
[  350.343500][T12804] FAT-fs (loop1): Directory bread(block 64) failed
[  350.350034][T12804] FAT-fs (loop1): Directory bread(block 65) failed
[  350.356499][T12804] FAT-fs (loop1): Directory bread(block 66) failed
[  350.362920][T12804] FAT-fs (loop1): Directory bread(block 67) failed
[  350.369289][T12804] FAT-fs (loop1): Directory bread(block 68) failed
[  350.375828][T12804] FAT-fs (loop1): Directory bread(block 69) failed
[  350.382180][T12804] FAT-fs (loop1): Directory bread(block 70) failed
[  350.388449][T12804] FAT-fs (loop1): Directory bread(block 71) failed
[  350.394765][T12804] FAT-fs (loop1): Directory bread(block 72) failed
[  350.401098][T12804] FAT-fs (loop1): Directory bread(block 73) failed
[  350.525462][T12810] syz-executor.1[12810] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  350.525519][T12810] syz-executor.1[12810] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  350.651796][T12818] device pim6reg1 entered promiscuous mode
[  351.292135][  T886] usb 1-1: USB disconnect, device number 30
[  351.470190][T12842] syz-executor.4[12842] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  351.470280][T12842] syz-executor.4[12842] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  351.650635][T12860] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=12860 comm=syz-executor.1
[  351.760429][T12864] loop4: detected capacity change from 0 to 256
[  351.780196][T12864] FAT-fs (loop4): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  351.859766][   T30] audit: type=1400 audit(1718478182.628:7506): avc:  denied  { create } for  pid=12874 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[  352.394311][T12903] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=12903 comm=syz-executor.1
[  352.517267][ T3167] usb 1-1: new high-speed USB device number 31 using dummy_hcd
[  352.606275][T12920] loop1: detected capacity change from 0 to 256
[  352.659614][T12920] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  352.907592][ T3167] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  352.918533][ T3167] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  352.928270][ T3167] usb 1-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  352.937052][ T3167] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  352.948513][ T3167] usb 1-1: config 0 descriptor??
[  353.097371][T12932] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=12932 comm=syz-executor.1
[  353.147528][T12933] overlayfs: missing 'lowerdir'
[  353.300373][T12935] loop1: detected capacity change from 0 to 256
[  353.362965][T12941] loop1: detected capacity change from 0 to 256
[  353.410260][T12941] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x72685a33, utbl_chksum : 0xe619d30d)
[  353.457496][ T3167] hid (null): bogus close delimiter
[  353.473903][T12943] loop1: detected capacity change from 0 to 256
[  353.530134][T12943] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  353.597307][  T312] usb 4-1: new full-speed USB device number 30 using dummy_hcd
[  353.662770][T12950] loop1: detected capacity change from 0 to 256
[  353.709667][T12950] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  353.902979][   T30] audit: type=1400 audit(1718478184.668:7507): avc:  denied  { read } for  pid=12952 comm="syz-executor.4" name="file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[  353.925763][   T30] audit: type=1400 audit(1718478184.668:7508): avc:  denied  { open } for  pid=12952 comm="syz-executor.4" path="/root/syzkaller-testdir2511603673/syzkaller.4sVPKC/140/file0/file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=chr_file permissive=1
[  353.957590][ T3167] usb 1-1: string descriptor 0 read error: -71
[  353.977352][ T3167] uclogic 0003:256C:006D.0032: failed retrieving string descriptor #200: -71
[  353.986090][ T3167] uclogic 0003:256C:006D.0032: failed retrieving pen parameters: -71
[  353.994167][ T3167] uclogic 0003:256C:006D.0032: failed probing pen v2 parameters: -71
[  354.002348][  T312] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  354.013272][ T3167] uclogic 0003:256C:006D.0032: failed probing parameters: -71
[  354.034257][T12958] device syzkaller0 entered promiscuous mode
[  354.036329][  T312] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  354.049928][ T3167] uclogic: probe of 0003:256C:006D.0032 failed with error -71
[  354.058114][ T3167] usb 1-1: USB disconnect, device number 31
[  354.063970][  T312] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 512, setting to 64
[  354.080253][  T312] usb 4-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22
[  354.407385][  T312] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  354.416402][  T312] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  354.424338][  T312] usb 4-1: SerialNumber: syz
[  354.447316][T12939] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  354.467609][  T312] cdc_acm 4-1:1.0: Control and data interfaces are not separated!
[  354.475445][  T312] cdc_acm: probe of 4-1:1.0 failed with error -12
[  354.541489][T12980] loop4: detected capacity change from 0 to 256
[  354.619169][T12982] device syzkaller0 entered promiscuous mode
[  354.673537][  T886] usb 4-1: USB disconnect, device number 30
[  354.696165][T12987] syz-executor.4[12987] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  354.696225][T12987] syz-executor.4[12987] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  355.374959][T13038] syz-executor.1[13038] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  355.397058][T13038] syz-executor.1[13038] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  355.428349][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.451317][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.459978][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.467677][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.475081][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.482385][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.489802][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.497210][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.505042][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.512758][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.520596][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.530127][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.539110][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.547105][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.554817][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.562161][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.573615][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.584017][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.593153][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.600515][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.611935][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.628332][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.638148][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.645612][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.652975][   T30] audit: type=1326 audit(1718478186.408:7509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13055 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd169a6ea9 code=0x7ffc0000
[  355.677854][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.685248][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.692637][   T30] audit: type=1326 audit(1718478186.408:7510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13055 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd169a6ea9 code=0x7ffc0000
[  355.716573][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.723900][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.731282][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.732447][   T30] audit: type=1326 audit(1718478186.418:7511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13055 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=89 compat=0 ip=0x7fcd169a6ea9 code=0x7ffc0000
[  355.738568][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.762558][   T30] audit: type=1326 audit(1718478186.418:7512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13055 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd169a6ea9 code=0x7ffc0000
[  355.769565][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.793368][   T30] audit: type=1326 audit(1718478186.418:7513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13055 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd169a6ea9 code=0x7ffc0000
[  355.800568][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.831489][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.838703][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.845874][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.853089][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.860292][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.867798][ T9895] hid-generic 0000:0000:0000.0033: unknown main item tag 0x0
[  355.885231][ T9895] hid-generic 0000:0000:0000.0033: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  355.938699][T13063] device syzkaller0 entered promiscuous mode
[  355.968054][T13071] bridge0: port 2(bridge_slave_1) entered disabled state
[  355.976985][T13071] bridge0: port 2(bridge_slave_1) entered blocking state
[  355.983892][T13071] bridge0: port 2(bridge_slave_1) entered forwarding state
[  356.031908][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.039879][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.047814][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.055175][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.062415][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.069690][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.076900][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.084161][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.091690][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.094052][T13087] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  356.099001][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.106779][T13087] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  356.113894][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.129423][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.136573][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.143883][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.151134][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.158346][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.165528][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.172948][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.180290][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.187683][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.187707][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.187727][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.187747][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.187767][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.187788][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.187808][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.187827][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.187846][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.252681][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.259900][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.267366][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.274588][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.281813][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.288992][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.296203][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.303423][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.310742][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.317962][   T39] hid-generic 0000:0000:0000.0034: unknown main item tag 0x0
[  356.325849][   T39] hid-generic 0000:0000:0000.0034: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  356.327940][T13093] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=13093 comm=syz-executor.4
[  356.355407][T13098] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.3'.
[  356.383344][T13104] bridge0: port 2(bridge_slave_1) entered disabled state
[  356.391235][T13104] bridge0: port 2(bridge_slave_1) entered blocking state
[  356.398112][T13104] bridge0: port 2(bridge_slave_1) entered forwarding state
[  356.412822][T13106] SELinux: security_context_str_to_sid(use_u,measure,dont_appraise,fscontext=) failed for (dev ?, type ?) errno=-22
[  356.425398][T13106] fuse: blksize only supported for fuseblk
[  356.447096][T13112] loop3: detected capacity change from 0 to 256
[  356.479520][T13118] loop4: detected capacity change from 0 to 16
[  356.500213][T13112] FAT-fs (loop3): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  356.510622][T13118] erofs: (device loop4): mounted with root inode @ nid 36.
[  356.579744][   T30] audit: type=1400 audit(1718478187.348:7514): avc:  denied  { execmem } for  pid=13109 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  356.610161][   T30] audit: type=1326 audit(1718478187.378:7515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13129 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7b4bf4ea9 code=0x7ffc0000
[  356.653684][   T30] audit: type=1326 audit(1718478187.378:7516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13129 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7b4bf4ea9 code=0x7ffc0000
[  356.680937][   T30] audit: type=1326 audit(1718478187.378:7517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13129 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=89 compat=0 ip=0x7fd7b4bf4ea9 code=0x7ffc0000
[  356.705519][   T30] audit: type=1326 audit(1718478187.378:7518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13129 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7b4bf4ea9 code=0x7ffc0000
[  356.730113][T13132] SELinux: security_context_str_to_sid(use_u,measure,dont_appraise,fscontext=) failed for (dev ?, type ?) errno=-22
[  356.742429][T13132] fuse: blksize only supported for fuseblk
[  357.079422][T13160] SELinux: security_context_str_to_sid(use_u,measure,dont_appraise,fscontext=) failed for (dev ?, type ?) errno=-22
[  357.125005][T13160] fuse: blksize only supported for fuseblk
[  357.796619][T13188] syz-executor.0[13188] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  357.796687][T13188] syz-executor.0[13188] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  357.860188][T13196] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=13196 comm=syz-executor.0
[  357.961508][T13211] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65535 sclass=netlink_route_socket pid=13211 comm=syz-executor.4
[  357.991500][T13219] syz-executor.0[13219] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  357.991572][T13219] syz-executor.0[13219] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  358.150653][T13227] overlayfs: './file0' not a directory
[  358.170653][T13227] netlink: 'syz-executor.0': attribute type 4 has an invalid length.
[  358.179543][T13227] netlink: 3613 bytes leftover after parsing attributes in process `syz-executor.0'.
[  358.205137][T13241] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.0'.
[  358.229908][T13247] loop3: detected capacity change from 0 to 16
[  358.248253][T13247] erofs: (device loop3): mounted with root inode @ nid 36.
[  358.527238][ T3167] usb 1-1: new high-speed USB device number 32 using dummy_hcd
[  358.867289][  T886] usb 4-1: new high-speed USB device number 31 using dummy_hcd
[  358.937348][ T3167] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  358.946889][ T3167] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[  359.090944][T13264] device pim6reg1 entered promiscuous mode
[  359.127429][ T3167] usb 1-1: New USB device found, idVendor=07fd, idProduct=0001, bcdDevice=48.99
[  359.136351][ T3167] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  359.144118][ T3167] usb 1-1: Product: syz
[  359.148140][ T3167] usb 1-1: Manufacturer: syz
[  359.152512][ T3167] usb 1-1: SerialNumber: syz
[  359.157478][ T3167] usb 1-1: config 0 descriptor??
[  359.227368][  T886] usb 4-1: config 17 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 255, changing to 11
[  359.238548][  T886] usb 4-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 59391, setting to 1024
[  359.249625][  T886] usb 4-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  359.258542][  T886] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  359.277391][T13255] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  359.307240][T13269] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[  359.457741][ T3167] snd-usb-audio: probe of 1-1:0.0 failed with error -12
[  359.465031][ T3167] usb 1-1: USB disconnect, device number 32
[  359.836736][T13271] bridge0: port 1(bridge_slave_0) entered blocking state
[  359.843653][T13271] bridge0: port 1(bridge_slave_0) entered disabled state
[  359.851122][T13271] device bridge_slave_0 entered promiscuous mode
[  359.861633][T13271] bridge0: port 2(bridge_slave_1) entered blocking state
[  359.868590][T13271] bridge0: port 2(bridge_slave_1) entered disabled state
[  359.875691][T13271] device bridge_slave_1 entered promiscuous mode
[  359.916880][T13271] bridge0: port 2(bridge_slave_1) entered blocking state
[  359.923740][T13271] bridge0: port 2(bridge_slave_1) entered forwarding state
[  359.930864][T13271] bridge0: port 1(bridge_slave_0) entered blocking state
[  359.937628][T13271] bridge0: port 1(bridge_slave_0) entered forwarding state
[  359.966340][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  359.974442][   T39] bridge0: port 1(bridge_slave_0) entered disabled state
[  359.981774][   T39] bridge0: port 2(bridge_slave_1) entered disabled state
[  359.998173][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  360.006183][   T39] bridge0: port 1(bridge_slave_0) entered blocking state
[  360.013055][   T39] bridge0: port 1(bridge_slave_0) entered forwarding state
[  360.021028][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  360.029079][   T39] bridge0: port 2(bridge_slave_1) entered blocking state
[  360.035927][   T39] bridge0: port 2(bridge_slave_1) entered forwarding state
[  360.056648][ T9895] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  360.068222][ T9895] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  360.084773][T13271] device veth0_vlan entered promiscuous mode
[  360.101486][ T9895] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  360.114514][ T9895] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  360.121855][ T9895] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  360.129314][ T9895] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  360.137706][ T9895] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  360.146767][T13271] device veth1_macvtap entered promiscuous mode
[  360.170866][ T4643] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  360.179117][ T4643] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  360.187534][ T4643] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  360.195812][ T4643] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  360.245259][T13294] loop2: detected capacity change from 0 to 256
[  360.285161][T13294] attempt to access beyond end of device
[  360.285161][T13294] loop2: rw=2049, want=260, limit=256
[  360.297059][T13294] attempt to access beyond end of device
[  360.297059][T13294] loop2: rw=0, want=260, limit=256
[  360.308255][T13294] attempt to access beyond end of device
[  360.308255][T13294] loop2: rw=0, want=260, limit=256
[  360.355400][T13297] syz-executor.1[13297] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  360.355455][T13297] syz-executor.1[13297] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  360.372718][  T433] device bridge_slave_1 left promiscuous mode
[  360.390730][  T433] bridge0: port 2(bridge_slave_1) entered disabled state
[  360.398236][  T433] device bridge_slave_0 left promiscuous mode
[  360.404100][  T433] bridge0: port 1(bridge_slave_0) entered disabled state
[  360.411758][  T433] device veth1_macvtap left promiscuous mode
[  360.417679][  T433] device veth0_vlan left promiscuous mode
[  360.484731][T13299] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=13299 comm=syz-executor.2
[  360.907297][ T9895] usb 2-1: new high-speed USB device number 41 using dummy_hcd
[  361.077381][  T886] aiptek 4-1:17.0: Aiptek using 400 ms programming speed
[  361.085470][  T886] input: Aiptek as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:17.0/input/input51
[  361.097297][  T886] usb 4-1: USB disconnect, device number 31
[  361.108288][   T30] kauditd_printk_skb: 17 callbacks suppressed
[  361.108304][   T30] audit: type=1400 audit(1718478191.878:7536): avc:  denied  { search } for  pid=82 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[  361.287491][ T9895] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  361.297560][ T9895] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[  361.477360][ T9895] usb 2-1: New USB device found, idVendor=07fd, idProduct=0001, bcdDevice=48.99
[  361.486388][ T9895] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  361.494233][ T9895] usb 2-1: Product: syz
[  361.498342][ T9895] usb 2-1: Manufacturer: syz
[  361.502743][ T9895] usb 2-1: SerialNumber: syz
[  361.508064][ T9895] usb 2-1: config 0 descriptor??
[  361.745682][   T30] audit: type=1326 audit(1718478192.508:7537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13367 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd7b4bf4ea9 code=0x0
[  361.837019][T13371] loop1: detected capacity change from 0 to 512
[  361.968797][T13371] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  361.991072][T13374] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[  362.002905][T13371] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #16: comm syz-executor.1: invalid indirect mapped block 83886080 (level 1)
[  362.017560][T13371] EXT4-fs (loop1): 1 orphan inode deleted
[  362.023168][T13371] EXT4-fs (loop1): 1 truncate cleaned up
[  362.029513][T13371] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  362.137530][ T9895] snd-usb-audio: probe of 2-1:0.0 failed with error -12
[  362.147171][ T9895] usb 2-1: USB disconnect, device number 41
[  362.189072][T13378] loop2: detected capacity change from 0 to 40427
[  362.197498][T13376] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  362.211727][T13382] bridge0: port 1(bridge_slave_0) entered blocking state
[  362.218654][T13382] bridge0: port 1(bridge_slave_0) entered disabled state
[  362.225798][T13382] device bridge_slave_0 entered promiscuous mode
[  362.232692][T13382] bridge0: port 2(bridge_slave_1) entered blocking state
[  362.239833][T13382] bridge0: port 2(bridge_slave_1) entered disabled state
[  362.241570][T13378] F2FS-fs (loop2): invalid crc value
[  362.247151][T13382] device bridge_slave_1 entered promiscuous mode
[  362.254695][T13378] F2FS-fs (loop2): Found nat_bits in checkpoint
[  362.295068][T13378] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  362.313553][   T30] audit: type=1400 audit(1718478193.078:7538): avc:  denied  { create } for  pid=13377 comm="syz-executor.2" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  362.325362][T13378] F2FS-fs (loop2): Unexpected flush for atomic writes: ino=10, npages=1
[  362.334266][   T30] audit: type=1400 audit(1718478193.088:7539): avc:  denied  { append open } for  pid=13377 comm="syz-executor.2" path="/root/syzkaller-testdir788079553/syzkaller.wI5P9V/13/file0/file0" dev="loop2" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  362.370258][   T30] audit: type=1400 audit(1718478193.088:7540): avc:  denied  { write } for  pid=13377 comm="syz-executor.2" name="file0" dev="loop2" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  362.378847][T13382] bridge0: port 2(bridge_slave_1) entered blocking state
[  362.392400][   T30] audit: type=1400 audit(1718478193.088:7541): avc:  denied  { ioctl } for  pid=13377 comm="syz-executor.2" path="/root/syzkaller-testdir788079553/syzkaller.wI5P9V/13/file0/file0" dev="loop2" ino=10 ioctlcmd=0xf501 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  362.399152][T13382] bridge0: port 2(bridge_slave_1) entered forwarding state
[  362.399256][T13382] bridge0: port 1(bridge_slave_0) entered blocking state
[  362.441606][T13382] bridge0: port 1(bridge_slave_0) entered forwarding state
[  362.449575][T13271] attempt to access beyond end of device
[  362.449575][T13271] loop2: rw=2049, want=45104, limit=40427
[  362.469245][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  362.477701][  T312] bridge0: port 1(bridge_slave_0) entered disabled state
[  362.484865][  T312] bridge0: port 2(bridge_slave_1) entered disabled state
[  362.509011][  T886] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  362.517042][  T886] bridge0: port 1(bridge_slave_0) entered blocking state
[  362.523915][  T886] bridge0: port 1(bridge_slave_0) entered forwarding state
[  362.531715][  T886] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  362.539702][  T886] bridge0: port 2(bridge_slave_1) entered blocking state
[  362.546524][  T886] bridge0: port 2(bridge_slave_1) entered forwarding state
[  362.553712][  T886] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  362.561482][  T886] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  362.574031][T13382] device veth0_vlan entered promiscuous mode
[  362.585015][ T9895] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  362.594711][ T9895] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  362.602451][ T9895] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  362.609711][ T9895] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  362.621459][ T4643] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  362.631550][T13382] device veth1_macvtap entered promiscuous mode
[  362.650340][  T886] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  362.663115][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  362.755044][T13410] loop1: detected capacity change from 0 to 1024
[  362.776317][   T30] audit: type=1400 audit(1718478193.538:7542): avc:  denied  { ioctl } for  pid=13411 comm="syz-executor.2" path="socket:[78099]" dev="sockfs" ino=78099 ioctlcmd=0x9435 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  362.777532][T13412] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.2'.
[  362.812909][  T433] device bridge_slave_1 left promiscuous mode
[  362.819064][T13410] EXT4-fs (loop1): filesystem too large to mount safely on this system
[  362.819132][  T433] bridge0: port 2(bridge_slave_1) entered disabled state
[  362.835806][  T433] device bridge_slave_0 left promiscuous mode
[  362.841851][  T433] bridge0: port 1(bridge_slave_0) entered disabled state
[  362.849980][  T433] device veth1_macvtap left promiscuous mode
[  362.855871][  T433] device veth0_vlan left promiscuous mode
[  362.927259][ T4643] usb 1-1: new full-speed USB device number 33 using dummy_hcd
[  363.020316][T13414] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[  363.224017][T13465] netlink: 'syz-executor.2': attribute type 1 has an invalid length.
[  363.307817][ T4643] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  363.319292][ T4643] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 255, setting to 64
[  363.330652][ T4643] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  363.343514][ T4643] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  363.352469][ T4643] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  363.362329][ T4643] usb 1-1: config 0 descriptor??
[  363.372142][T13475] binder: 13474:13475 ioctl c018620c 20000500 returned -22
[  363.387294][T13391] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  363.405202][T13481] loop3: detected capacity change from 0 to 128
[  363.439827][T13481] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  363.450503][T13481] ext4 filesystem being mounted at /root/syzkaller-testdir542274591/syzkaller.ZHS5kz/20/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[  363.488048][   T30] audit: type=1400 audit(1718478194.258:7543): avc:  denied  { read } for  pid=13480 comm="syz-executor.3" path="/root/syzkaller-testdir542274591/syzkaller.ZHS5kz/20/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop3" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  363.557684][ T4388] usb 3-1: new full-speed USB device number 44 using dummy_hcd
[  364.120393][T13496] loop1: detected capacity change from 0 to 40427
[  364.128187][ T4643] plantronics 0003:047F:FFFF.0035: unknown main item tag 0x4
[  364.135720][ T4643] plantronics 0003:047F:FFFF.0035: No inputs registered, leaving
[  364.148316][T13496] F2FS-fs (loop1): Invalid log sectorsize (2)
[  364.154371][ T4643] plantronics 0003:047F:FFFF.0035: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  364.166981][T13496] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  364.177418][ T4388] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  364.188442][ T4388] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  364.198205][ T4388] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 512, setting to 64
[  364.199461][T13496] F2FS-fs (loop1): Found nat_bits in checkpoint
[  364.208850][ T4388] usb 3-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22
[  364.215656][T13503] device veth0_vlan left promiscuous mode
[  364.234148][T13503] device veth0_vlan entered promiscuous mode
[  364.260065][T13496] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  364.267030][T13496] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  364.285305][T12242] attempt to access beyond end of device
[  364.285305][T12242] loop1: rw=2049, want=45104, limit=40427
[  364.307402][ T4388] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  364.316457][ T4388] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  364.324346][ T4388] usb 3-1: SerialNumber: syz
[  364.360332][T13469] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  364.377560][ T4388] cdc_acm 3-1:1.0: Control and data interfaces are not separated!
[  364.385509][ T4388] cdc_acm: probe of 3-1:1.0 failed with error -12
[  364.504970][T13525] loop1: detected capacity change from 0 to 256
[  364.552284][T13525] FAT-fs (loop1): Directory bread(block 64) failed
[  364.558764][T13525] FAT-fs (loop1): Directory bread(block 65) failed
[  364.565289][T13525] FAT-fs (loop1): Directory bread(block 66) failed
[  364.572126][T13525] FAT-fs (loop1): Directory bread(block 67) failed
[  364.578607][T13525] FAT-fs (loop1): Directory bread(block 68) failed
[  364.585062][T13525] FAT-fs (loop1): Directory bread(block 69) failed
[  364.591562][T13525] FAT-fs (loop1): Directory bread(block 70) failed
[  364.595331][ T4643] usb 3-1: USB disconnect, device number 44
[  364.603711][T13525] FAT-fs (loop1): Directory bread(block 71) failed
[  364.603758][T13525] FAT-fs (loop1): Directory bread(block 72) failed
[  364.603775][T13525] FAT-fs (loop1): Directory bread(block 73) failed
[  364.627237][  T886] usb 5-1: new high-speed USB device number 28 using dummy_hcd
[  364.676583][T13533] device veth0_vlan left promiscuous mode
[  364.682676][T13533] device veth0_vlan entered promiscuous mode
[  364.800465][T13541] loop1: detected capacity change from 0 to 40427
[  364.838062][T13541] F2FS-fs (loop1): Invalid log sectorsize (2)
[  364.843974][T13541] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  364.854822][T13541] F2FS-fs (loop1): Found nat_bits in checkpoint
[  364.867314][  T886] usb 5-1: Using ep0 maxpacket: 32
[  364.881235][T13541] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  364.888306][T13541] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  364.910925][T12242] attempt to access beyond end of device
[  364.910925][T12242] loop1: rw=2049, want=45104, limit=40427
[  364.988469][  T886] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  364.999540][  T886] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  365.010720][  T886] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  365.019627][  T886] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  365.029904][  T886] usb 5-1: config 0 descriptor??
[  365.047343][T13515] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[  365.068233][  T886] hub 5-1:0.0: USB hub found
[  365.243373][   T30] audit: type=1400 audit(1718478196.008:7544): avc:  denied  { mount } for  pid=13561 comm="syz-executor.1" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  365.277290][  T886] hub 5-1:0.0: 2 ports detected
[  365.479067][T13515] loop4: detected capacity change from 0 to 256
[  365.504578][   T30] audit: type=1400 audit(1718478196.268:7545): avc:  denied  { lock } for  pid=13572 comm="syz-executor.3" path="socket:[79555]" dev="sockfs" ino=79555 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_dgram_socket permissive=1
[  365.507749][T13515] exfat: Deprecated parameter 'utf8'
[  365.538755][T13515] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  365.707799][  T886] hub 5-1:0.0: hub_hub_status failed (err = -71)
[  365.714063][  T886] hub 5-1:0.0: config failed, can't get hub status (err -71)
[  365.817270][  T886] usbhid 5-1:0.0: can't add hid device: -71
[  365.823020][  T886] usbhid: probe of 5-1:0.0 failed with error -71
[  365.837359][T13610] loop1: detected capacity change from 0 to 128
[  365.857548][  T886] usb 5-1: USB disconnect, device number 28
[  365.879855][T13610] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  365.890378][T13610] ext4 filesystem being mounted at /root/syzkaller-testdir722514464/syzkaller.dD1mkh/171/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[  366.081977][T13613] loop1: detected capacity change from 0 to 40427
[  366.137100][T13613] F2FS-fs (loop1): Found nat_bits in checkpoint
[  366.163246][T13613] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  366.187892][T12242] attempt to access beyond end of device
[  366.187892][T12242] loop1: rw=2049, want=45104, limit=40427
[  366.266963][T13636] SELinux: security_context_str_to_sid(unconfined_u) failed for (dev ?, type ?) errno=-22
[  366.303434][T13636] SELinux: security_context_str_to_sid(unconfined_u) failed for (dev incremental-fs, type incremental-fs) errno=-22
[  366.338270][   T30] audit: type=1400 audit(1718478197.108:7546): avc:  denied  { create } for  pid=13644 comm="syz-executor.1" dev="anon_inodefs" ino=78660 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  366.362810][   T30] audit: type=1400 audit(1718478197.108:7547): avc:  denied  { ioctl } for  pid=13644 comm="syz-executor.1" path="anon_inode:[userfaultfd]" dev="anon_inodefs" ino=78661 ioctlcmd=0xaa3f scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  366.398660][  T328] usb 1-1: USB disconnect, device number 33
[  366.415277][T13656] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  366.424499][T13656] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'.
[  366.577255][  T328] usb 1-1: new high-speed USB device number 34 using dummy_hcd
[  366.751664][T13691] incfs: Error accessing: ./file0/file0.
[  366.757456][T13691] incfs: mount failed -2
[  366.759156][T13694] netlink: 100 bytes leftover after parsing attributes in process `syz-executor.2'.
[  366.817368][  T328] usb 1-1: Using ep0 maxpacket: 16
[  366.937316][  T328] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  366.954211][  T328] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  366.967468][  T328] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  366.976551][  T328] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  366.997479][  T328] usb 1-1: config 0 descriptor??
[  367.072291][T13732] SELinux: security_context_str_to_sid(unconfined_u) failed for (dev ?, type ?) errno=-22
[  367.082952][T13732] SELinux: security_context_str_to_sid(unconfined_u) failed for (dev incremental-fs, type incremental-fs) errno=-22
[  367.188110][   T30] audit: type=1400 audit(1718478197.958:7548): avc:  denied  { create } for  pid=13740 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  367.212382][   T30] audit: type=1400 audit(1718478197.978:7549): avc:  denied  { write } for  pid=13740 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  367.233338][   T30] audit: type=1400 audit(1718478197.978:7550): avc:  denied  { nlmsg_write } for  pid=13740 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  367.493878][  T328] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.0036/input/input52
[  367.567546][ T4643] usb 2-1: new high-speed USB device number 42 using dummy_hcd
[  367.575819][  T328] microsoft 0003:045E:07DA.0036: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  367.889573][T13766] loop4: detected capacity change from 0 to 40427
[  367.912123][T13783] loop3: detected capacity change from 0 to 256
[  367.918630][   T39] usb 1-1: USB disconnect, device number 34
[  367.926988][T13766] F2FS-fs (loop4): Found nat_bits in checkpoint
[  367.957366][ T4643] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  367.970989][ T4643] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  367.983019][T13766] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  368.012091][T13791] loop2: detected capacity change from 0 to 1024
[  368.012973][T11691] attempt to access beyond end of device
[  368.012973][T11691] loop4: rw=2049, want=45104, limit=40427
[  368.039046][T13791] EXT4-fs (loop2): Test dummy encryption mode enabled
[  368.046875][T13791] EXT4-fs (loop2): Ignoring removed orlov option
[  368.057400][ T4643] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  368.076513][ T4643] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  368.085489][ T4643] usb 2-1: SerialNumber: syz
[  368.086736][T13791] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback.
[  368.123150][T13791] fscrypt: AES-256-XTS using implementation "xts-aes-aesni"
[  368.147103][T13791] netlink: 'syz-executor.2': attribute type 3 has an invalid length.
[  368.156771][T13791] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'.
[  368.214404][T13810] serio: Serial port ptm0
[  368.275246][T13819] loop4: detected capacity change from 0 to 256
[  368.367661][ T4643] usb 2-1: 0:2 : does not exist
[  368.372378][ T4643] usb 2-1: unit 3 not found!
[  368.378129][ T4643] usb 2-1: USB disconnect, device number 42
[  368.451261][T13828] device pim6reg1 entered promiscuous mode
[  368.487281][ T9895] usb 3-1: new high-speed USB device number 45 using dummy_hcd
[  368.567773][   T30] audit: type=1326 audit(1718478199.338:7551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13839 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd8d7d6ea9 code=0x7ffc0000
[  368.623956][   T30] audit: type=1326 audit(1718478199.368:7552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13839 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd8d7d6ea9 code=0x7ffc0000
[  368.660290][   T30] audit: type=1326 audit(1718478199.368:7553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13839 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbd8d7d6ea9 code=0x7ffc0000
[  368.690739][   T30] audit: type=1326 audit(1718478199.368:7554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13839 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd8d7d6ea9 code=0x7ffc0000
[  368.714825][   T30] audit: type=1326 audit(1718478199.368:7555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13839 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd8d7d6ea9 code=0x7ffc0000
[  368.757274][ T9895] usb 3-1: Using ep0 maxpacket: 8
[  368.846832][T13846] loop4: detected capacity change from 0 to 40427
[  368.878665][T13855] loop1: detected capacity change from 0 to 256
[  368.888266][T13846] F2FS-fs (loop4): Invalid log sectorsize (2)
[  368.894197][T13846] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  368.905433][T13855] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x38db593b, utbl_chksum : 0xe619d30d)
[  368.917818][ T9895] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  368.928779][ T9895] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  368.939062][T13846] F2FS-fs (loop4): Found nat_bits in checkpoint
[  368.948619][ T9895] usb 3-1: New USB device found, idVendor=04e7, idProduct=0009, bcdDevice= 0.00
[  368.957666][ T9895] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  369.034722][ T9895] usb 3-1: config 0 descriptor??
[  369.040998][T13846] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  369.047977][T13846] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  369.167313][   T39] usb 1-1: new high-speed USB device number 35 using dummy_hcd
[  369.325334][T11691] attempt to access beyond end of device
[  369.325334][T11691] loop4: rw=2049, want=45104, limit=40427
[  369.407286][   T39] usb 1-1: Using ep0 maxpacket: 16
[  369.465071][T13864] loop3: detected capacity change from 0 to 40427
[  369.508072][T13864] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  369.515715][T13864] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  369.524857][T13864] F2FS-fs (loop3): invalid crc value
[  369.527372][   T39] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  369.541535][   T39] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  369.554607][   T39] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  369.555001][ T9895] elo 0003:04E7:0009.0037: unknown main item tag 0x0
[  369.563532][   T39] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  369.564238][   T39] usb 1-1: config 0 descriptor??
[  369.579375][ T9895] elo 0003:04E7:0009.0037: unknown main item tag 0x0
[  369.591431][T13864] F2FS-fs (loop3): Found nat_bits in checkpoint
[  369.609179][ T9895] elo 0003:04E7:0009.0037: hidraw0: USB HID v0.00 Device [HID 04e7:0009] on usb-dummy_hcd.2-1/input0
[  369.640503][T13864] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  369.647487][T13864] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  369.671571][T13870] loop4: detected capacity change from 0 to 40427
[  369.719294][T13870] F2FS-fs (loop4): invalid crc value
[  369.726316][T13870] F2FS-fs (loop4): Found nat_bits in checkpoint
[  369.761572][T13870] F2FS-fs (loop4): Cannot turn on quotas: -2 on 1
[  369.792334][   T60] usb 3-1: USB disconnect, device number 45
[  370.019008][T13870] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  370.034797][T11691] attempt to access beyond end of device
[  370.034797][T11691] loop4: rw=2049, want=45104, limit=40427
[  370.081503][   T39] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.0038/input/input53
[  370.119331][T13887] loop4: detected capacity change from 0 to 1024
[  370.158369][   T39] microsoft 0003:045E:07DA.0038: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  370.158962][T13887] EXT4-fs (loop4): Test dummy encryption mode enabled
[  370.176767][T13887] EXT4-fs (loop4): Ignoring removed orlov option
[  370.185062][T13887] EXT4-fs (loop4): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback.
[  370.230288][T13887] netlink: 'syz-executor.4': attribute type 3 has an invalid length.
[  370.238460][T13887] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[  370.251506][  T433] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  370.260596][  T433] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  370.307383][ T9895] usb 2-1: new high-speed USB device number 43 using dummy_hcd
[  370.331430][T13895] syz-executor.4[13895] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  370.331483][T13895] syz-executor.4[13895] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  370.369592][T13897] ªªªªªª: renamed from vlan0
[  370.471704][T13915] device pim6reg1 entered promiscuous mode
[  370.486236][T13913] loop3: detected capacity change from 0 to 8192
[  370.497308][  T312] usb 1-1: USB disconnect, device number 35
[  370.542750][T13920] syz-executor.2[13920] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  370.542830][T13920] syz-executor.2[13920] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  370.567253][ T9895] usb 2-1: Using ep0 maxpacket: 8
[  370.630541][T13924] ªªªªªª: renamed from vlan0
[  370.717343][ T9895] usb 2-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  370.733068][ T9895] usb 2-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  370.749222][ T9895] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  370.767283][ T9895] usb 2-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  370.907605][T13940] overlayfs: failed to resolve './file0': -2
[  370.916226][T13940] overlayfs: failed to resolve './file0': -2
[  370.932970][T13942] loop3: detected capacity change from 0 to 1024
[  370.947377][ T9895] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  370.956301][ T9895] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  370.964094][ T9895] usb 2-1: Product: syz
[  370.968083][ T9895] usb 2-1: Manufacturer: syz
[  370.972449][ T9895] usb 2-1: SerialNumber: syz
[  370.978676][T13942] EXT4-fs (loop3): mounted filesystem without journal. Opts: user_xattr,nombcache,auto_da_alloc=0x0000000000000002,inode_readahead_blks=0x0000000000040000,debug_want_extra_isize=0x000000000000007e,lazytime,init_itable=0x0000000000000005,usrquota,errors=continue,,errors=continue. Quota mode: writeback.
[  371.007062][   T39] usb 3-1: new high-speed USB device number 46 using dummy_hcd
[  371.062205][T13954] syz-executor.3[13954] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  371.062259][T13954] syz-executor.3[13954] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  371.102940][T13956] kvm: pic: non byte read
[  371.119209][T13956] kvm: pic: non byte read
[  371.123447][T13956] kvm: pic: non byte read
[  371.127821][T13956] kvm: pic: single mode not supported
[  371.127829][T13956] kvm: pic: level sensitive irq not supported
[  371.133178][T13956] kvm: pic: non byte read
[  371.143374][T13956] kvm: pic: level sensitive irq not supported
[  371.143411][T13956] kvm: pic: non byte read
[  371.153710][T13956] kvm: pic: non byte read
[  371.158015][T13956] kvm: pic: level sensitive irq not supported
[  371.158051][T13956] kvm: pic: non byte read
[  371.257245][   T39] usb 3-1: Using ep0 maxpacket: 8
[  371.317357][ T9895] usb 2-1: 0:2 : does not exist
[  371.323276][ T9895] usb 2-1: USB disconnect, device number 43
[  371.367293][  T312] usb 4-1: new high-speed USB device number 32 using dummy_hcd
[  371.377316][   T39] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  371.388064][   T39] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  371.397556][   T39] usb 3-1: New USB device found, idVendor=04e7, idProduct=0009, bcdDevice= 0.00
[  371.406423][   T39] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  371.414690][   T39] usb 3-1: config 0 descriptor??
[  371.517239][  T328] usb 1-1: new high-speed USB device number 36 using dummy_hcd
[  371.617323][  T312] usb 4-1: Using ep0 maxpacket: 32
[  371.670745][T13976] loop4: detected capacity change from 0 to 1024
[  371.709046][T13976] EXT4-fs (loop4): mounted filesystem without journal. Opts: user_xattr,nombcache,auto_da_alloc=0x0000000000000002,inode_readahead_blks=0x0000000000040000,debug_want_extra_isize=0x000000000000007e,lazytime,init_itable=0x0000000000000005,usrquota,errors=continue,,errors=continue. Quota mode: writeback.
[  371.767290][  T328] usb 1-1: Using ep0 maxpacket: 16
[  371.797331][  T312] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  371.809680][  T312] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  371.820705][  T312] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  371.829638][  T312] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  371.838691][  T312] usb 4-1: config 0 descriptor??
[  371.858002][T13959] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[  371.869718][T13987] syz-executor.1[13987] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  371.869789][T13987] syz-executor.1[13987] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  371.887694][  T312] hub 4-1:0.0: USB hub found
[  371.887733][  T328] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  371.918558][   T39] elo 0003:04E7:0009.0039: unknown main item tag 0x0
[  371.927524][   T39] elo 0003:04E7:0009.0039: unknown main item tag 0x0
[  371.934637][   T39] elo 0003:04E7:0009.0039: hidraw0: USB HID v0.00 Device [HID 04e7:0009] on usb-dummy_hcd.2-1/input0
[  371.946196][  T328] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  371.959060][  T328] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  371.968127][  T328] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  371.976782][  T328] usb 1-1: config 0 descriptor??
[  372.007741][T13997] SELinux: security_context_str_to_sid(sysadm_u) failed for (dev ?, type ?) errno=-22
[  372.018144][T13997] SELinux: security_context_str_to_sid(sysadm_u) failed for (dev incremental-fs, type incremental-fs) errno=-22
[  372.097357][  T312] hub 4-1:0.0: 2 ports detected
[  372.117512][ T4388] usb 3-1: USB disconnect, device number 46
[  372.298765][T13959] loop3: detected capacity change from 0 to 256
[  372.337272][ T9895] usb 2-1: new high-speed USB device number 44 using dummy_hcd
[  372.337884][T13959] exfat: Deprecated parameter 'utf8'
[  372.352385][T13959] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  372.471238][  T328] input: HID 045e:07da as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:045E:07DA.003A/input/input54
[  372.537378][  T312] hub 4-1:0.0: hub_hub_status failed (err = -71)
[  372.543571][  T312] hub 4-1:0.0: config failed, can't get hub status (err -71)
[  372.548072][  T328] microsoft 0003:045E:07DA.003A: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0
[  372.655443][T14013] loop2: detected capacity change from 0 to 256
[  372.678712][  T312] usbhid 4-1:0.0: can't add hid device: -71
[  372.682137][T14013] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  372.684562][  T312] usbhid: probe of 4-1:0.0 failed with error -71
[  372.709704][   T30] kauditd_printk_skb: 110 callbacks suppressed
[  372.709717][   T30] audit: type=1400 audit(1718478203.478:7666): avc:  denied  { unlink } for  pid=13271 comm="syz-executor.2" name="file0" dev="loop2" ino=1048879 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  372.739534][  T312] usb 4-1: USB disconnect, device number 32
[  372.777387][ T9895] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  372.788272][ T9895] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  372.801053][ T9895] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  372.809926][ T9895] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  372.818630][ T9895] usb 2-1: config 0 descriptor??
[  372.875522][   T20] usb 1-1: USB disconnect, device number 36
[  372.928888][T14015] bridge0: port 1(bridge_slave_0) entered blocking state
[  372.936013][T14015] bridge0: port 1(bridge_slave_0) entered disabled state
[  372.943312][T14015] device bridge_slave_0 entered promiscuous mode
[  372.950433][T14015] bridge0: port 2(bridge_slave_1) entered blocking state
[  372.957640][T14015] bridge0: port 2(bridge_slave_1) entered disabled state
[  372.965035][T14015] device bridge_slave_1 entered promiscuous mode
[  373.030598][T14015] bridge0: port 2(bridge_slave_1) entered blocking state
[  373.037490][T14015] bridge0: port 2(bridge_slave_1) entered forwarding state
[  373.044646][T14015] bridge0: port 1(bridge_slave_0) entered blocking state
[  373.051464][T14015] bridge0: port 1(bridge_slave_0) entered forwarding state
[  373.076935][  T312] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  373.088617][  T312] bridge0: port 1(bridge_slave_0) entered disabled state
[  373.095795][  T312] bridge0: port 2(bridge_slave_1) entered disabled state
[  373.115047][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  373.123198][   T20] bridge0: port 1(bridge_slave_0) entered blocking state
[  373.130089][   T20] bridge0: port 1(bridge_slave_0) entered forwarding state
[  373.137672][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  373.145638][   T20] bridge0: port 2(bridge_slave_1) entered blocking state
[  373.152483][   T20] bridge0: port 2(bridge_slave_1) entered forwarding state
[  373.210242][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  373.226499][   T30] audit: type=1400 audit(1718478203.988:7667): avc:  denied  { audit_read } for  pid=14025 comm="syz-executor.4" capability=37  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  373.314461][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  373.366451][ T9895] plantronics 0003:047F:FFFF.003B: unknown main item tag 0x0
[  373.373947][ T9895] plantronics 0003:047F:FFFF.003B: No inputs registered, leaving
[  373.382522][ T9895] plantronics 0003:047F:FFFF.003B: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  373.397935][ T4643] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  373.411234][T14015] device veth0_vlan entered promiscuous mode
[  373.418380][ T9895] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  373.426291][ T9895] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  373.433991][ T9895] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  373.448101][T14015] device veth1_macvtap entered promiscuous mode
[  373.458840][ T9895] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  373.472118][ T4388] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  373.480546][ T4388] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  373.490621][ T4388] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  373.502180][ T4388] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  373.554507][T14042] syz-executor.2[14042] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  373.554590][T14042] syz-executor.2[14042] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  373.561079][T14036] netlink: 'syz-executor.0': attribute type 3 has an invalid length.
[  373.594876][T14036] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[  373.628065][  T348] device bridge_slave_1 left promiscuous mode
[  373.634034][  T348] bridge0: port 2(bridge_slave_1) entered disabled state
[  373.648629][  T348] device bridge_slave_0 left promiscuous mode
[  373.654677][  T348] bridge0: port 1(bridge_slave_0) entered disabled state
[  373.675800][  T348] device veth1_macvtap left promiscuous mode
[  373.728186][T14040] loop3: detected capacity change from 0 to 40427
[  373.749779][T14040] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  373.767330][T14040] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  373.777414][T14040] F2FS-fs (loop3): invalid crc value
[  373.799439][T14040] F2FS-fs (loop3): Found nat_bits in checkpoint
[  373.852174][T14040] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  373.859231][T14040] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  373.869963][T14060] loop2: detected capacity change from 0 to 2048
[  373.887923][T14063] netlink: 277 bytes leftover after parsing attributes in process `syz-executor.4'.
[  373.899542][ T4388] usb 2-1: USB disconnect, device number 44
[  373.981431][T14060] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  373.992772][T14060] ext4 filesystem being mounted at /root/syzkaller-testdir2278274249/syzkaller.kL4DD3/4/bus supports timestamps until 2038 (0x7fffffff)
[  374.009763][T14060] fs-verity: sha512 using implementation "sha512-avx2"
[  374.010576][   T30] audit: type=1400 audit(1718478204.778:7668): avc:  denied  { ioctl } for  pid=14059 comm="syz-executor.2" path="/root/syzkaller-testdir2278274249/syzkaller.kL4DD3/4/bus/file0/file0" dev="loop2" ino=13 ioctlcmd=0x6685 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  374.096487][   T30] audit: type=1400 audit(1718478204.828:7669): avc:  denied  { append } for  pid=14059 comm="syz-executor.2" name="file0" dev="loop2" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  374.378068][   T30] audit: type=1326 audit(1718478205.148:7670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14082 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd8d7d6ea9 code=0x7ffc0000
[  374.402510][   T30] audit: type=1326 audit(1718478205.148:7671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14082 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=264 compat=0 ip=0x7fbd8d7d6ea9 code=0x7ffc0000
[  374.472224][   T30] audit: type=1326 audit(1718478205.148:7672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14082 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd8d7d6ea9 code=0x7ffc0000
[  374.496274][  T348] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  374.509763][  T348] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  374.519361][   T30] audit: type=1326 audit(1718478205.148:7673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14082 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd8d7d6ea9 code=0x7ffc0000
[  374.560659][T14097] loop4: detected capacity change from 0 to 2048
[  374.580612][T14101] tipc: Failed to remove unknown binding: 66,1,1/0:3836933743/3836933745
[  374.591748][T14101] tipc: Failed to remove unknown binding: 66,1,1/0:3836933743/3836933745
[  374.600131][T14101] tipc: Failed to remove unknown binding: 66,1,1/0:3836933743/3836933745
[  374.637966][T14097] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  374.648475][T14097] ext4 filesystem being mounted at /root/syzkaller-testdir2511603673/syzkaller.4sVPKC/248/bus supports timestamps until 2038 (0x7fffffff)
[  374.665668][T14114] binder: BINDER_SET_CONTEXT_MGR already set
[  374.677285][T14114] binder: 14113:14114 ioctl 4018620d 20000100 returned -16
[  374.694759][   T30] audit: type=1326 audit(1718478205.458:7674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14110 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd169a6ea9 code=0x7ffc0000
[  374.728293][   T30] audit: type=1326 audit(1718478205.488:7675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14110 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=264 compat=0 ip=0x7fcd169a6ea9 code=0x7ffc0000
[  374.817393][  T328] usb 3-1: new high-speed USB device number 47 using dummy_hcd
[  374.829699][T14139] loop3: detected capacity change from 0 to 2048
[  374.851535][T14143] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[  374.871081][T14143] device bridge_slave_1 left promiscuous mode
[  374.883863][T14143] bridge0: port 2(bridge_slave_1) entered disabled state
[  374.891857][T14143] bridge1: port 1(bridge_slave_1) entered blocking state
[  374.902222][T14139] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  374.921122][T14143] bridge1: port 1(bridge_slave_1) entered disabled state
[  374.929855][T14139] ext4 filesystem being mounted at /root/syzkaller-testdir542274591/syzkaller.ZHS5kz/70/bus supports timestamps until 2038 (0x7fffffff)
[  374.946341][T14143] device bridge_slave_1 entered promiscuous mode
[  374.998644][T14170] tipc: Failed to remove unknown binding: 66,1,1/0:2515903643/2515903645
[  375.007343][T14170] tipc: Failed to remove unknown binding: 66,1,1/0:2515903643/2515903645
[  375.015903][T14170] tipc: Failed to remove unknown binding: 66,1,1/0:2515903643/2515903645
[  375.035173][T14172] loop1: detected capacity change from 0 to 8192
[  375.057280][  T328] usb 3-1: Using ep0 maxpacket: 16
[  375.327293][  T328] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  375.338024][  T328] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[  375.347679][  T328] usb 3-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  375.430780][T14197] SELinux: security_context_str_to_sid(unconfined_u) failed for (dev ?, type ?) errno=-22
[  375.441457][T14197] SELinux: security_context_str_to_sid(unconfined_u) failed for (dev fuse, type fuse) errno=-22
[  375.456162][T14199] tipc: Failed to remove unknown binding: 66,1,1/0:3414195287/3414195289
[  375.490268][T14199] tipc: Failed to remove unknown binding: 66,1,1/0:3414195287/3414195289
[  375.509927][T14199] tipc: Failed to remove unknown binding: 66,1,1/0:3414195287/3414195289
[  375.517420][  T328] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  375.545299][  T328] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  375.569847][  T328] usb 3-1: Product: syz
[  375.574352][  T328] usb 3-1: Manufacturer: syz
[  375.584439][  T328] usb 3-1: SerialNumber: syz
[  375.917402][  T328] usb 3-1: 2:1 : format type 0 is detected, processed as PCM
[  375.926952][  T328] usb 3-1: 2:1 : invalid channels 0
[  375.959191][  T328] usb 3-1: USB disconnect, device number 47
[  376.054799][T14226] loop3: detected capacity change from 0 to 256
[  376.209394][T14219] bridge0: port 1(bridge_slave_0) entered blocking state
[  376.216250][T14219] bridge0: port 1(bridge_slave_0) entered disabled state
[  376.223640][T14219] device bridge_slave_0 entered promiscuous mode
[  376.230896][T14219] bridge0: port 2(bridge_slave_1) entered blocking state
[  376.237837][T14219] bridge0: port 2(bridge_slave_1) entered disabled state
[  376.245033][T14219] device bridge_slave_1 entered promiscuous mode
[  376.276661][T14231] JBD2: Spotted dirty metadata buffer (dev = sda1, blocknr = 267). There's a risk of filesystem corruption in case of system crash.
[  376.346896][T14241] loop1: detected capacity change from 0 to 512
[  376.363113][T14219] bridge0: port 2(bridge_slave_1) entered blocking state
[  376.369982][T14219] bridge0: port 2(bridge_slave_1) entered forwarding state
[  376.377112][T14219] bridge0: port 1(bridge_slave_0) entered blocking state
[  376.383874][T14219] bridge0: port 1(bridge_slave_0) entered forwarding state
[  376.398316][T14241] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  376.404005][T14243] loop2: detected capacity change from 0 to 512
[  376.425976][T14241] EXT4-fs (loop1): orphan cleanup on readonly fs
[  376.433335][ T4388] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  376.441221][T14241] EXT4-fs error (device loop1): ext4_ext_check_inode:501: inode #3: comm syz-executor.1: pblk 0 bad header/extent: invalid eh_max - magic f30a, entries 7, max 0(0), depth 0(0)
[  376.441426][ T4388] bridge0: port 1(bridge_slave_0) entered disabled state
[  376.465736][ T4388] bridge0: port 2(bridge_slave_1) entered disabled state
[  376.474836][T14241] EXT4-fs error (device loop1): ext4_quota_enable:6369: comm syz-executor.1: Bad quota inode: 3, type: 0
[  376.486839][T14243] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  376.506817][T14241] EXT4-fs warning (device loop1): ext4_enable_quotas:6410: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  376.523515][T14241] EXT4-fs (loop1): Cannot turn on quotas: error -117
[  376.530140][T14241] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  376.530313][T14243] EXT4-fs (loop2): 1 truncate cleaned up
[  376.548728][T14243] EXT4-fs (loop2): mounted filesystem without journal. Opts: debug_want_extra_isize=0x000000000000002e,min_batch_time=0x0000000000000fff,inode_readahead_blks=0x0000000000000080,stripe=0x0000000000004000,errors=remount-ro,max_batch_time=0x0000000000000004,. Quota mode: none.
[  376.583986][  T328] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  376.592277][  T328] bridge0: port 1(bridge_slave_0) entered blocking state
[  376.599138][  T328] bridge0: port 1(bridge_slave_0) entered forwarding state
[  376.606358][  T328] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  376.614420][  T328] bridge0: port 2(bridge_slave_1) entered blocking state
[  376.621280][  T328] bridge0: port 2(bridge_slave_1) entered forwarding state
[  376.628497][  T328] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  376.636382][  T328] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  376.655575][T14241] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[  376.665652][ T4643] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  376.682257][T14219] device veth0_vlan entered promiscuous mode
[  376.684636][T14241] EXT4-fs warning (device loop1): ext4_multi_mount_protect:300: Invalid MMP block in superblock
[  376.693034][  T328] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  376.707564][  T328] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  376.716408][   T10] device bridge_slave_1 left promiscuous mode
[  376.723484][   T10] bridge0: port 2(bridge_slave_1) entered disabled state
[  376.740012][T14253] tipc: Failed to remove unknown binding: 66,1,1/0:422762343/422762345
[  376.748427][   T10] device bridge_slave_0 left promiscuous mode
[  376.752132][T14253] tipc: Failed to remove unknown binding: 66,1,1/0:422762343/422762345
[  376.754535][   T10] bridge0: port 1(bridge_slave_0) entered disabled state
[  376.770616][   T10] device veth1_macvtap left promiscuous mode
[  376.847485][T14257] loop2: detected capacity change from 0 to 256
[  376.906640][T14272] loop2: detected capacity change from 0 to 512
[  376.925039][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  376.932467][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  376.941432][T14272] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: comm syz-executor.2: inode #1: comm syz-executor.2: iget: illegal inode #
[  376.942503][T14219] device veth1_macvtap entered promiscuous mode
[  376.963378][ T3167] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  376.965147][T14272] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz-executor.2: error while reading EA inode 1 err=-117
[  376.983931][ T3167] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  376.984535][T14272] EXT4-fs (loop2): 1 orphan inode deleted
[  376.992476][ T3167] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  376.997746][T14272] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  377.022531][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  377.030960][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  377.039605][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  377.047943][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  377.127256][ T4388] usb 2-1: new high-speed USB device number 45 using dummy_hcd
[  377.139442][T14290] tipc: Failed to remove unknown binding: 66,1,1/0:2755378960/2755378962
[  377.154512][T14290] tipc: Failed to remove unknown binding: 66,1,1/0:2755378960/2755378962
[  377.317232][ T3167] usb 3-1: new high-speed USB device number 48 using dummy_hcd
[  377.406861][T14321] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.4'.
[  377.678505][ T9895] usb 4-1: new high-speed USB device number 33 using dummy_hcd
[  377.686090][ T4388] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  377.696929][ T4388] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  377.706542][ T4388] usb 2-1: New USB device found, idVendor=0eef, idProduct=72d0, bcdDevice= 0.00
[  377.715450][ T4388] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  377.723730][ T4388] usb 2-1: config 0 descriptor??
[  377.747298][ T3167] usb 3-1: Using ep0 maxpacket: 8
[  377.877386][ T3167] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  377.888163][ T3167] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8
[  377.897651][ T3167] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 10314, setting to 1024
[  377.908467][ T3167] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 1024
[  377.918216][ T9895] usb 4-1: Using ep0 maxpacket: 32
[  377.997594][ T3167] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a5, bcdDevice= 0.40
[  378.006438][ T3167] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  378.014280][ T3167] usb 3-1: SerialNumber: syz
[  378.037363][T14272] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  378.037376][ T9895] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  378.055056][ T9895] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  378.064755][T14272] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  378.065043][ T9895] usb 4-1: New USB device found, idVendor=0461, idProduct=4e72, bcdDevice= 0.00
[  378.102758][ T9895] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  378.111106][ T3167] cdc_ether: probe of 3-1:1.0 failed with error -22
[  378.118161][ T3167] usb-storage 3-1:1.0: USB Mass Storage device detected
[  378.125555][ T9895] usb 4-1: config 0 descriptor??
[  378.130974][ T3167] usb-storage 3-1:1.0: Quirks match for vid 0525 pid a4a5: 10000
[  378.138885][ T3167] scsi host1: usb-storage 3-1:1.0
[  378.188480][ T4388] hid-multitouch 0003:0EEF:72D0.003C: unbalanced delimiter at end of report description
[  378.198537][ T4388] hid-multitouch: probe of 0003:0EEF:72D0.003C failed with error -22
[  378.249057][T14344] device syzkaller0 entered promiscuous mode
[  378.390454][ T3167] usb 2-1: USB disconnect, device number 45
[  378.607942][ T9895] hid-rmi 0003:0461:4E72.003D: unknown main item tag 0x0
[  378.614826][ T9895] hid-rmi 0003:0461:4E72.003D: unknown main item tag 0x0
[  378.621733][ T9895] hid-rmi 0003:0461:4E72.003D: unknown main item tag 0x0
[  378.628854][ T9895] hid-rmi 0003:0461:4E72.003D: unknown main item tag 0x0
[  378.637520][ T9895] hid-rmi 0003:0461:4E72.003D: unknown main item tag 0x0
[  378.653608][ T9895] hid-rmi 0003:0461:4E72.003D: hidraw0: USB HID v0.00 Device [HID 0461:4e72] on usb-dummy_hcd.3-1/input0
[  378.704415][T14376] device syzkaller0 entered promiscuous mode
[  378.829016][   T39] usb 4-1: USB disconnect, device number 33
[  379.051303][   T30] kauditd_printk_skb: 11 callbacks suppressed
[  379.051319][   T30] audit: type=1400 audit(1718478209.818:7687): avc:  denied  { read } for  pid=14392 comm="syz-executor.0" path="anon_inode:[userfaultfd]" dev="anon_inodefs" ino=82734 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  379.513951][T14415] tipc: Failed to remove unknown binding: 66,1,1/0:1171995233/1171995235
[  379.522570][T14415] tipc: Failed to remove unknown binding: 66,1,1/0:1171995233/1171995235
[  379.587383][T14330] usb 3-1: reset high-speed USB device number 48 using dummy_hcd
[  379.767235][   T39] usb 1-1: new high-speed USB device number 37 using dummy_hcd
[  379.846308][T14431] loop3: detected capacity change from 0 to 256
[  379.896499][   T30] audit: type=1400 audit(1718478210.658:7688): avc:  denied  { unmount } for  pid=12242 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  380.127814][   T39] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 64
[  380.138926][   T39] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  380.264817][T14457] loop1: detected capacity change from 0 to 40427
[  380.287235][  T312] usb 4-1: new high-speed USB device number 34 using dummy_hcd
[  380.297364][   T39] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  380.306343][   T39] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  380.318479][   T39] usb 1-1: SerialNumber: syz
[  380.339877][T14457] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  380.347879][T14457] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  380.361859][T14411] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  380.415051][T14457] F2FS-fs (loop1): invalid crc value
[  380.437996][T14457] F2FS-fs (loop1): Found nat_bits in checkpoint
[  380.518106][ T4388] usb 3-1: USB disconnect, device number 48
[  380.537010][T14457] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  380.543949][T14457] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  380.624288][T14411] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  380.866601][  T348] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  380.875305][  T348] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  380.897232][  T312] usb 4-1: Using ep0 maxpacket: 32
[  381.047592][  T312] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  381.058327][  T312] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  381.067984][  T312] usb 4-1: New USB device found, idVendor=0461, idProduct=4e72, bcdDevice= 0.00
[  381.076839][  T312] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  381.077340][   T39] cdc_ether: probe of 1-1:1.0 failed with error -22
[  381.091672][  T312] usb 4-1: config 0 descriptor??
[  381.308230][   T20] usb 1-1: USB disconnect, device number 37
[  381.329978][T14516] loop4: detected capacity change from 0 to 128
[  381.447229][ T4388] usb 3-1: new high-speed USB device number 49 using dummy_hcd
[  381.648169][  T312] hid-rmi 0003:0461:4E72.003E: unknown main item tag 0x0
[  381.655040][  T312] hid-rmi 0003:0461:4E72.003E: unknown main item tag 0x0
[  381.661953][  T312] hid-rmi 0003:0461:4E72.003E: unknown main item tag 0x0
[  381.668782][  T312] hid-rmi 0003:0461:4E72.003E: unknown main item tag 0x0
[  381.675595][  T312] hid-rmi 0003:0461:4E72.003E: unknown main item tag 0x0
[  381.682953][  T312] hid-rmi 0003:0461:4E72.003E: hidraw0: USB HID v0.00 Device [HID 0461:4e72] on usb-dummy_hcd.3-1/input0
[  381.707232][ T3167] usb 2-1: new high-speed USB device number 46 using dummy_hcd
[  381.837211][ T4388] usb 3-1: Using ep0 maxpacket: 32
[  381.850227][  T312] usb 4-1: USB disconnect, device number 34
[  381.967343][ T3167] usb 2-1: Using ep0 maxpacket: 16
[  381.987341][ T4388] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  381.998422][ T4388] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  382.009476][ T4388] usb 3-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  382.018415][ T4388] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  382.026827][ T4388] usb 3-1: config 0 descriptor??
[  382.047284][T14502] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[  382.067646][ T4388] hub 3-1:0.0: USB hub found
[  382.097306][ T3167] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  382.108177][ T3167] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  382.120872][ T3167] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  382.129733][ T3167] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  382.138276][ T3167] usb 2-1: config 0 descriptor??
[  382.249427][T14529] device pim6reg1 entered promiscuous mode
[  382.277288][ T4388] hub 3-1:0.0: 2 ports detected
[  382.433099][   T30] audit: type=1400 audit(1718478213.198:7689): avc:  denied  { read append } for  pid=14544 comm="syz-executor.3" name="memory.events" dev="9p" ino=7016996764471618667 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=blk_file permissive=1
[  382.458886][   T30] audit: type=1400 audit(1718478213.198:7690): avc:  denied  { open } for  pid=14544 comm="syz-executor.3" path="/root/syzkaller-testdir542274591/syzkaller.ZHS5kz/113/file0/memory.events" dev="9p" ino=7016996764471618667 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=blk_file permissive=1
[  382.490424][T14502] loop2: detected capacity change from 0 to 256
[  382.497759][T14502] exfat: Deprecated parameter 'utf8'
[  382.507938][T14502] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  382.547309][ T3167] usbhid 2-1:0.0: can't add hid device: -71
[  382.553372][ T3167] usbhid: probe of 2-1:0.0 failed with error -71
[  382.560048][ T3167] usb 2-1: USB disconnect, device number 46
[  382.658502][T14567] loop3: detected capacity change from 0 to 8192
[  382.677435][ T4388] hub 3-1:0.0: hub_hub_status failed (err = -71)
[  382.683703][ T4388] hub 3-1:0.0: config failed, can't get hub status (err -71)
[  382.691871][T14567] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  382.797484][ T4388] usbhid 3-1:0.0: can't add hid device: -71
[  382.805017][ T4388] usbhid: probe of 3-1:0.0 failed with error -71
[  382.850013][ T4388] usb 3-1: USB disconnect, device number 49
[  382.896213][T14596] loop3: detected capacity change from 0 to 8192
[  382.915811][T14596] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  383.357206][   T39] usb 2-1: new high-speed USB device number 47 using dummy_hcd
[  383.427499][T14683] bpf_get_probe_write_proto: 4 callbacks suppressed
[  383.427511][T14683] syz-executor.2[14683] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  383.433952][T14683] syz-executor.2[14683] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  383.470246][T14691] loop2: detected capacity change from 0 to 512
[  383.508834][T14691] EXT4-fs (loop2): Ignoring removed oldalloc option
[  383.515502][T14691] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  383.537283][T14691] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1053: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  383.552795][T14691] EXT4-fs (loop2): 1 truncate cleaned up
[  383.558665][T14691] EXT4-fs (loop2): mounted filesystem without journal. Opts: minixdf,oldalloc,sysvgroups,usrjquota=,minixdf,user_xattr,usrquota,errors=remount-ro,init_itable,max_dir_size_kb=0x0000000000004d07,. Quota mode: writeback.
[  383.607225][   T39] usb 2-1: Using ep0 maxpacket: 16
[  383.640351][T14708] device pim6reg1 entered promiscuous mode
[  383.643736][T14712] syz-executor.3[14712] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  383.646104][T14712] syz-executor.3[14712] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  383.647348][  T886] usb 1-1: new high-speed USB device number 38 using dummy_hcd
[  383.727321][   T39] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  383.738207][   T39] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  383.757698][   T39] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  383.766767][   T39] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  383.777571][   T39] usb 2-1: config 0 descriptor??
[  383.830838][T14724] loop3: detected capacity change from 0 to 512
[  383.899136][T14724] EXT4-fs (loop3): Ignoring removed oldalloc option
[  383.905705][T14724] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  383.917262][  T886] usb 1-1: Using ep0 maxpacket: 32
[  383.939650][T14724] EXT4-fs warning (device loop3): ext4_update_dynamic_rev:1053: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  383.954244][T14740] SELinux: security_context_str_to_sid(sysadm_u) failed for (dev ?, type ?) errno=-22
[  383.964910][T14740] SELinux: security_context_str_to_sid(sysadm_u) failed for (dev bpf, type bpf) errno=-22
[  383.974798][T14724] EXT4-fs (loop3): 1 truncate cleaned up
[  383.987261][T14724] EXT4-fs (loop3): mounted filesystem without journal. Opts: minixdf,oldalloc,sysvgroups,usrjquota=,minixdf,user_xattr,usrquota,errors=remount-ro,init_itable,max_dir_size_kb=0x0000000000004d07,. Quota mode: writeback.
[  384.031755][T14743] device pim6reg1 entered promiscuous mode
[  384.047377][  T886] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  384.059610][  T886] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  384.072626][  T886] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  384.135256][  T886] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  384.143995][  T886] usb 1-1: config 0 descriptor??
[  384.167355][T14675] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  384.187447][   T39] usbhid 2-1:0.0: can't add hid device: -71
[  384.193210][   T39] usbhid: probe of 2-1:0.0 failed with error -71
[  384.194524][T14750] loop3: detected capacity change from 0 to 40427
[  384.199794][  T886] hub 1-1:0.0: USB hub found
[  384.229652][   T39] usb 2-1: USB disconnect, device number 47
[  384.316102][T14750] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  384.334782][T14750] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  384.360788][T14760] syz-executor.4[14760] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  384.361153][T14760] syz-executor.4[14760] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  384.378900][T14750] F2FS-fs (loop3): invalid crc value
[  384.411511][T14750] F2FS-fs (loop3): Found nat_bits in checkpoint
[  384.417919][  T886] hub 1-1:0.0: 2 ports detected
[  384.447392][T14750] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  384.454511][T14750] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  384.807691][T14790] device pim6reg1 entered promiscuous mode
[  384.815530][   T10] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  384.824365][   T10] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  384.953961][  T886] hub 1-1:0.0: hub_hub_status failed (err = -71)
[  384.969728][  T886] hub 1-1:0.0: config failed, can't get hub status (err -71)
[  385.006528][T14800] loop3: detected capacity change from 0 to 256
[  385.079438][T14809] SELinux: security_context_str_to_sid(sysadm_u) failed for (dev ?, type ?) errno=-22
[  385.087396][  T886] usbhid 1-1:0.0: can't add hid device: -71
[  385.089205][T14809] SELinux: security_context_str_to_sid(sysadm_u) failed for (dev bpf, type bpf) errno=-22
[  385.095324][  T886] usbhid: probe of 1-1:0.0 failed with error -71
[  385.157852][  T886] usb 1-1: USB disconnect, device number 38
[  385.164278][T14798] loop2: detected capacity change from 0 to 40427
[  385.215852][T14798] F2FS-fs (loop2): Invalid Fs Meta Ino: node(1) meta(262146) root(3)
[  385.226263][T14798] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock
[  385.236913][T14798] F2FS-fs (loop2): Found nat_bits in checkpoint
[  385.240118][T14824] loop3: detected capacity change from 0 to 1024
[  385.261666][T14798] F2FS-fs (loop2): Try to recover 2th superblock, ret: 0
[  385.268730][T14798] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  385.270754][T14824] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  385.318452][T14824] EXT4-fs (loop3): orphan cleanup on readonly fs
[  385.352347][   T30] audit: type=1400 audit(1718478216.048:7691): avc:  denied  { map } for  pid=14797 comm="syz-executor.2" path="/root/syzkaller-testdir2278274249/syzkaller.kL4DD3/39/file2/bus" dev="loop2" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  385.391717][T14015] attempt to access beyond end of device
[  385.391717][T14015] loop2: rw=2049, want=45104, limit=40427
[  385.483553][T14824] EXT4-fs error (device loop3): ext4_free_blocks:6193: comm syz-executor.3: Freeing blocks not in datazone - block = 0, count = 4096
[  385.497370][T14824] EXT4-fs (loop3): 1 orphan inode deleted
[  385.502924][T14824] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  385.534453][T14824] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 16: comm syz-executor.3: path /root/syzkaller-testdir542274591/syzkaller.ZHS5kz/151/file1: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  385.559179][T14824] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 17: comm syz-executor.3: path /root/syzkaller-testdir542274591/syzkaller.ZHS5kz/151/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  385.567373][ T3167] usb 2-1: new high-speed USB device number 48 using dummy_hcd
[  385.584460][T14824] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 18: comm syz-executor.3: path /root/syzkaller-testdir542274591/syzkaller.ZHS5kz/151/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  385.648910][T14824] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 19: comm syz-executor.3: path /root/syzkaller-testdir542274591/syzkaller.ZHS5kz/151/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  385.677886][   T30] audit: type=1326 audit(1718478216.448:7692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14833 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa34f4cfea9 code=0x7ffc0000
[  385.704016][T14824] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 20: comm syz-executor.3: path /root/syzkaller-testdir542274591/syzkaller.ZHS5kz/151/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  385.730803][   T30] audit: type=1326 audit(1718478216.448:7693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14833 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa34f4cfea9 code=0x7ffc0000
[  385.739714][T14824] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 21: comm syz-executor.3: path /root/syzkaller-testdir542274591/syzkaller.ZHS5kz/151/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  385.754747][   T30] audit: type=1326 audit(1718478216.478:7694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14833 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa34f4cfea9 code=0x7ffc0000
[  385.807546][T14824] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 22: comm syz-executor.3: path /root/syzkaller-testdir542274591/syzkaller.ZHS5kz/151/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  385.842904][   T30] audit: type=1326 audit(1718478216.498:7695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14833 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa34f4cfea9 code=0x7ffc0000
[  385.842950][T14824] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 23: comm syz-executor.3: path /root/syzkaller-testdir542274591/syzkaller.ZHS5kz/151/file1: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  385.891657][   T30] audit: type=1326 audit(1718478216.498:7696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14833 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa34f4cfea9 code=0x7ffc0000
[  385.916028][   T30] audit: type=1326 audit(1718478216.598:7697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14833 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa34f4cfea9 code=0x7ffc0000
[  385.948143][   T30] audit: type=1326 audit(1718478216.608:7698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14833 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa34f4cfea9 code=0x7ffc0000
[  385.976994][   T30] audit: type=1326 audit(1718478216.608:7699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14833 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa34f4cd627 code=0x7ffc0000
[  386.001497][   T30] audit: type=1326 audit(1718478216.608:7700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=14833 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa34f493309 code=0x7ffc0000
[  386.097323][ T3167] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 64
[  386.106921][ T3167] usb 2-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  386.216493][ T3167] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  386.247208][ T3167] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  386.255473][ T3167] usb 2-1: SerialNumber: syz
[  386.298095][T14818] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  386.557488][T14818] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  386.632355][T14861] loop4: detected capacity change from 0 to 40427
[  386.668033][T14861] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  386.677255][T14861] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  386.695668][T14861] F2FS-fs (loop4): invalid crc value
[  386.726593][T14861] F2FS-fs (loop4): Found nat_bits in checkpoint
[  386.763362][T14861] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  386.770365][T14861] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  386.826022][T14888] loop3: detected capacity change from 0 to 40427
[  386.868639][T14888] F2FS-fs (loop3): Invalid Fs Meta Ino: node(1) meta(262146) root(3)
[  386.876657][T14888] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock
[  386.887317][T14888] F2FS-fs (loop3): Found nat_bits in checkpoint
[  386.937907][T14888] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0
[  386.944976][T14888] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  387.247323][ T3167] cdc_ether: probe of 2-1:1.0 failed with error -22
[  387.264531][T13382] attempt to access beyond end of device
[  387.264531][T13382] loop3: rw=2049, want=45104, limit=40427
[  387.293648][T14910] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[  387.312727][T14910] sch_tbf: burst 0 is lower than device bridge4 mtu (1514) !
[  387.394964][   T10] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  387.412527][T14914] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  387.413471][   T10] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  387.459591][   T20] usb 2-1: USB disconnect, device number 48
[  387.989886][T14943] loop1: detected capacity change from 0 to 16
[  388.028347][T14943] erofs: (device loop1): mounted with root inode @ nid 36.
[  388.138665][T14937] loop2: detected capacity change from 0 to 40427
[  388.173046][T14937] F2FS-fs (loop2): Invalid Fs Meta Ino: node(1) meta(262146) root(3)
[  388.195582][T14937] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock
[  388.422472][T14937] F2FS-fs (loop2): Found nat_bits in checkpoint
[  388.522601][T14937] F2FS-fs (loop2): Try to recover 2th superblock, ret: 0
[  388.531668][T14937] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  388.572257][T14015] attempt to access beyond end of device
[  388.572257][T14015] loop2: rw=2049, want=45104, limit=40427
[  388.739246][T14991] device syzkaller0 entered promiscuous mode
[  389.017239][ T4643] usb 3-1: new high-speed USB device number 50 using dummy_hcd
[  389.180831][T15005] loop1: detected capacity change from 0 to 40427
[  389.188738][T15007] loop4: detected capacity change from 0 to 40427
[  389.292504][T15007] F2FS-fs (loop4): Invalid Fs Meta Ino: node(1) meta(262146) root(3)
[  389.301176][T15007] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock
[  389.352317][T15007] F2FS-fs (loop4): Found nat_bits in checkpoint
[  389.390616][T15005] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  389.397331][ T4643] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  389.398212][T15005] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  389.415095][ T4643] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  389.417879][T15007] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0
[  389.426557][ T4643] usb 3-1: New USB device found, idVendor=046d, idProduct=c086, bcdDevice= 0.00
[  389.434057][T15007] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  389.442340][ T4643] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  389.457616][T15005] F2FS-fs (loop1): invalid crc value
[  389.458181][ T4643] usb 3-1: config 0 descriptor??
[  389.469181][T15005] F2FS-fs (loop1): Found nat_bits in checkpoint
[  389.483210][T14219] attempt to access beyond end of device
[  389.483210][T14219] loop4: rw=2049, want=45104, limit=40427
[  389.523277][T15005] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  389.530492][T15005] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  390.583300][ T4643] logitech-hidpp-device 0003:046D:C086.003F: hidraw0: USB HID v0.00 Device [HID 046d:c086] on usb-dummy_hcd.2-1/input0
[  390.718559][T15046] device syzkaller0 entered promiscuous mode
[  390.724659][   T10] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  390.738587][   T10] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  390.789772][   T39] usb 3-1: USB disconnect, device number 50
[  391.262622][T15079] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  391.431550][T15091] device syzkaller0 entered promiscuous mode
[  391.436949][T15083] loop1: detected capacity change from 0 to 40427
[  391.468248][T15083] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  391.475929][T15083] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  391.495464][T15083] F2FS-fs (loop1): invalid crc value
[  391.504786][T15083] F2FS-fs (loop1): Found nat_bits in checkpoint
[  391.513628][   T30] kauditd_printk_skb: 219 callbacks suppressed
[  391.513641][   T30] audit: type=1400 audit(1718478222.278:7920): avc:  denied  { setcurrent } for  pid=15097 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  391.541284][T15083] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  391.548310][T15083] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  391.902391][T15114] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  391.923452][T15116] loop4: detected capacity change from 0 to 128
[  392.116789][T15116] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  392.127607][T15116] ext4 filesystem being mounted at /root/syzkaller-testdir46159699/syzkaller.b8JY6e/111/mnt supports timestamps until 2038 (0x7fffffff)
[  392.159566][  T348] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  392.168482][  T348] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  392.197217][ T4643] usb 1-1: new high-speed USB device number 39 using dummy_hcd
[  392.275741][T15136] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'.
[  392.288235][T15136] sch_tbf: burst 511 is lower than device veth3 mtu (1514) !
[  392.557277][ T4643] usb 1-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 64
[  392.567014][ T4643] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  392.657318][ T4643] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  392.666349][ T4643] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  392.674162][ T4643] usb 1-1: SerialNumber: syz
[  392.697302][T15112] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  392.919032][T15112] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  393.377365][ T4643] cdc_ether: probe of 1-1:1.0 failed with error -22
[  393.580313][ T4643] usb 1-1: USB disconnect, device number 39
[  393.590565][   T30] audit: type=1326 audit(1718478224.358:7921): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15143 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa34f4cfea9 code=0x7ffc0000
[  393.617787][   T30] audit: type=1326 audit(1718478224.358:7922): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15143 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa34f4cfea9 code=0x7ffc0000
[  393.652341][   T30] audit: type=1326 audit(1718478224.358:7923): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15143 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa34f4cfea9 code=0x7ffc0000
[  393.676431][   T30] audit: type=1326 audit(1718478224.358:7924): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15143 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa34f4cfea9 code=0x7ffc0000
[  393.700507][   T30] audit: type=1326 audit(1718478224.358:7925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15143 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa34f4cfea9 code=0x7ffc0000
[  393.724724][   T30] audit: type=1326 audit(1718478224.378:7926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15143 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fa34f4cfea9 code=0x7ffc0000
[  393.748590][   T30] audit: type=1326 audit(1718478224.378:7927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15143 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa34f4cfea9 code=0x7ffc0000
[  393.776117][   T30] audit: type=1326 audit(1718478224.378:7928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15143 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa34f4cfea9 code=0x7ffc0000
[  393.800885][   T30] audit: type=1326 audit(1718478224.378:7929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=15143 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa34f4cfea9 code=0x7ffc0000
[  393.861866][T15160] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  393.976536][T15180] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'.
[  394.000169][T15180] sch_tbf: burst 511 is lower than device veth3 mtu (1514) !
[  394.126153][T15213] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'.
[  394.136590][T15215] syz-executor.2[15215] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  394.136660][T15215] syz-executor.2[15215] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  394.152932][T15213] sch_tbf: burst 511 is lower than device veth3 mtu (1514) !
[  394.215665][T15229] loop1: detected capacity change from 0 to 256
[  394.396263][T15266] loop4: detected capacity change from 0 to 512
[  394.430840][T15266] EXT4-fs (loop4): 1 truncate cleaned up
[  394.436372][T15266] EXT4-fs (loop4): mounted filesystem without journal. Opts: prjquota,grpquota,debug_want_extra_isize=0x000000000000005c,sysvgroups,nolazytime,errors=continue,resuid=0x0000000000000000,,errors=continue. Quota mode: writeback.
[  394.477364][T15266] incfs: Error accessing: ./file0.
[  394.533315][T15266] incfs: mount failed -20
[  394.624715][T15292] loop1: detected capacity change from 0 to 256
[  394.736496][T15317] loop3: detected capacity change from 0 to 1024
[  394.777229][T15317] EXT4-fs (loop3): Ignoring removed orlov option
[  394.783837][T15322] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  394.794002][T15317] EXT4-fs (loop3): Ignoring removed nomblk_io_submit option
[  394.823603][T15317] EXT4-fs (loop3): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,errors=continue,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none.
[  394.878850][T15317] EXT4-fs error (device loop3): get_max_inline_xattr_value_size:69: inode #12: comm syz-executor.3: corrupt xattr in inline inode
[  394.892380][T15317] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2213: inode #12: comm syz-executor.3: corrupted in-inode xattr
[  394.910849][T13382] ==================================================================
[  394.918732][T13382] BUG: KASAN: use-after-free in ext4_xattr_delete_inode+0xcd0/0xce0
[  394.926542][T13382] Read of size 4 at addr ffff888138796000 by task syz-executor.3/13382
[  394.934623][T13382] 
[  394.936795][T13382] CPU: 0 PID: 13382 Comm: syz-executor.3 Not tainted 5.15.149-syzkaller-00165-g85445b5a2107 #0
[  394.946936][T13382] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  394.956844][T13382] Call Trace:
[  394.959958][T13382]  <TASK>
[  394.962736][T13382]  dump_stack_lvl+0x151/0x1b7
[  394.967247][T13382]  ? io_uring_drop_tctx_refs+0x190/0x190
[  394.972716][T13382]  ? panic+0x751/0x751
[  394.976621][T13382]  print_address_description+0x87/0x3b0
[  394.982003][T13382]  kasan_report+0x179/0x1c0
[  394.986343][T13382]  ? ext4_xattr_delete_inode+0xcd0/0xce0
[  394.991809][T13382]  ? ext4_xattr_delete_inode+0xcd0/0xce0
[  394.997280][T13382]  __asan_report_load4_noabort+0x14/0x20
[  395.002745][T13382]  ext4_xattr_delete_inode+0xcd0/0xce0
[  395.008042][T13382]  ? sb_end_intwrite+0x120/0x120
[  395.012815][T13382]  ? ext4_expand_extra_isize_ea+0x1bb0/0x1bb0
[  395.018716][T13382]  ? ext4_journal_check_start+0x16c/0x230
[  395.024270][T13382]  ? __kasan_check_read+0x11/0x20
[  395.029128][T13382]  ? ext4_inode_is_fast_symlink+0x295/0x3d0
[  395.034859][T13382]  ? ext4_evict_inode+0xb8d/0x14e0
[  395.039805][T13382]  ext4_evict_inode+0xea1/0x14e0
[  395.044580][T13382]  ? _raw_spin_unlock+0x4d/0x70
[  395.049270][T13382]  ? ext4_inode_is_fast_symlink+0x3d0/0x3d0
[  395.054996][T13382]  ? _raw_spin_unlock+0x4d/0x70
[  395.059684][T13382]  ? inode_io_list_del+0x18b/0x1a0
[  395.064628][T13382]  ? ext4_inode_is_fast_symlink+0x3d0/0x3d0
[  395.070361][T13382]  evict+0x2a3/0x630
[  395.074091][T13382]  iput+0x63b/0x7e0
[  395.077746][T13382]  vfs_rmdir+0x359/0x470
[  395.081817][T13382]  do_rmdir+0x3ab/0x630
[  395.085811][T13382]  ? d_delete_notify+0x160/0x160
[  395.090583][T13382]  __x64_sys_unlinkat+0xdf/0xf0
[  395.095269][T13382]  do_syscall_64+0x3d/0xb0
[  395.099528][T13382]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  395.105259][T13382] RIP: 0033:0x7fdb6801e687
[  395.109502][T13382] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 07 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  395.128941][T13382] RSP: 002b:00007ffc48585d18 EFLAGS: 00000207 ORIG_RAX: 0000000000000107
[  395.137188][T13382] RAX: ffffffffffffffda RBX: 0000000000000065 RCX: 00007fdb6801e687
[  395.145000][T13382] RDX: 0000000000000200 RSI: 00007ffc48586ec0 RDI: 00000000ffffff9c
[  395.152815][T13382] RBP: 00007fdb6807b636 R08: 0000000000000000 R09: 0000000000000000
[  395.160624][T13382] R10: 0000000000000100 R11: 0000000000000207 R12: 00007ffc48586ec0
[  395.168442][T13382] R13: 00007fdb6807b636 R14: 00000000000605d6 R15: 0000000000000007
[  395.176249][T13382]  </TASK>
[  395.179110][T13382] 
[  395.181278][T13382] The buggy address belongs to the page:
[  395.186763][T13382] page:ffffea0004e1e580 refcount:0 mapcount:-128 mapping:0000000000000000 index:0x100 pfn:0x138796
[  395.197259][T13382] flags: 0x4000000000000000(zone=1)
[  395.202378][T13382] raw: 4000000000000000 ffffea0004bb96c8 ffffea0004c3aec8 0000000000000000
[  395.210796][T13382] raw: 0000000000000100 0000000000000000 00000000ffffff7f 0000000000000000
[  395.219302][T13382] page dumped because: kasan: bad access detected
[  395.225555][T13382] page_owner tracks the page as freed
[  395.230838][T13382] page last allocated via order 0, migratetype Movable, gfp_mask 0x100cca(GFP_HIGHUSER_MOVABLE), pid 15024, ts 389625183469, free_ts 389958003301
[  395.245435][T13382]  post_alloc_hook+0x1a3/0x1b0
[  395.250022][T13382]  prep_new_page+0x1b/0x110
[  395.254364][T13382]  get_page_from_freelist+0x3550/0x35d0
[  395.259743][T13382]  __alloc_pages+0x27e/0x8f0
[  395.264171][T13382]  shmem_alloc_and_acct_page+0x4bd/0xa80
[  395.269639][T13382]  shmem_getpage_gfp+0x1388/0x23c0
[  395.274584][T13382]  shmem_fault+0x1b8/0x6c0
[  395.278833][T13382]  __do_fault+0x273/0x300
[  395.283002][T13382]  handle_pte_fault+0x167b/0x24d0
[  395.287861][T13382]  do_handle_mm_fault+0x1ea9/0x23a0
[  395.292893][T13382]  __get_user_pages+0x379/0xee0
[  395.297581][T13382]  __mm_populate+0x38d/0x560
[  395.302013][T13382]  vm_mmap_pgoff+0x271/0x450
[  395.306435][T13382]  ksys_mmap_pgoff+0xed/0x1e0
[  395.310949][T13382]  __x64_sys_mmap+0x103/0x120
[  395.315464][T13382]  do_syscall_64+0x3d/0xb0
[  395.319720][T13382] page last free stack trace:
[  395.324228][T13382]  free_unref_page_prepare+0x7c8/0x7d0
[  395.329522][T13382]  free_unref_page_list+0x14b/0xa60
[  395.334645][T13382]  release_pages+0x1310/0x1370
[  395.339625][T13382]  __pagevec_release+0x84/0x100
[  395.344306][T13382]  shmem_undo_range+0x604/0x1560
[  395.349084][T13382]  shmem_evict_inode+0x215/0x9d0
[  395.353855][T13382]  evict+0x2a3/0x630
[  395.357591][T13382]  iput+0x63b/0x7e0
[  395.361236][T13382]  dentry_unlink_inode+0x34f/0x440
[  395.366182][T13382]  __dentry_kill+0x447/0x660
[  395.370606][T13382]  dentry_kill+0xc0/0x2a0
[  395.374773][T13382]  dput+0x45/0x80
[  395.378343][T13382]  __fput+0x662/0x910
[  395.382160][T13382]  ____fput+0x15/0x20
[  395.386017][T13382]  task_work_run+0x129/0x190
[  395.390406][T13382]  do_exit+0xc48/0x2ca0
[  395.394404][T13382] 
[  395.396568][T13382] Memory state around the buggy address:
[  395.402045][T13382]  ffff888138795f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  395.409957][T13382]  ffff888138795f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  395.417838][T13382] >ffff888138796000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  395.425734][T13382]                    ^
2024/06/15 19:03:46 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF
[  395.429649][T13382]  ffff888138796080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  395.437539][T13382]  ffff888138796100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  395.445434][T13382] ==================================================================
[  395.453335][T13382] Disabling lock debugging due to kernel taint