last executing test programs:

10.898505734s ago: executing program 3 (id=3768):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0x0)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000100)='./bus\x00', 0x1000840, &(0x7f0000000c80)=ANY=[@ANYBLOB='errors=continue,rodir,uni_xlate=1,iocharset=macroman,shortname=mixed,sys_immutable,iocharset=cp857Wsys_immutable,shortname=win95,shortnaqe=lower,shortname=win95,utf8=0,utf8=1,shortname=win95,uni_xlate=1,umask=00000000000000000000401,fscontext=user_u,nolazytime,uid>', @ANYRESDEC=0x0, @ANYBLOB=',fowner<', @ANYRESDEC=0x0, @ANYBLOB=',permit_directio,\x00'], 0x87, 0x350, &(0x7f0000000580)="$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")
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x90)
ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000540)={0x0, 0x0, 0x0, &(0x7f00000002c0)=""/138, 0x0})
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000940)={0x1, 0x0, [{0x0, 0xe4, &(0x7f0000000580)=""/228}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x20000)
r2 = open(&(0x7f0000000100)='.\x00', 0x0, 0x0)
fstat(r2, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, <r3=>0x0, <r4=>0x0})
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x0, 0x0)
r5 = getpid()
sched_setscheduler(r5, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000240)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
ioctl$FS_IOC_FSSETXATTR(r8, 0x401c5820, &(0x7f0000001f00)={0x1f})
chown(&(0x7f00000080c0)='./file0\x00', 0x0, 0x0)
sendmmsg$unix(r7, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000140)='./file1\x00', 0x1000801, &(0x7f0000000280)=ANY=[@ANYRES32=r4, @ANYRESOCT, @ANYRES32, @ANYRES16=r3, @ANYRESHEX=r2, @ANYRESOCT, @ANYRES8=r3, @ANYRESDEC], 0xfe, 0x1d4, &(0x7f0000000640)="$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")

7.596744559s ago: executing program 3 (id=3775):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000340)=ANY=[@ANYBLOB="12010000000000406c256d0000000000000109022400010000000009040000010300000009210000000122050009058103"], 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=@gettclass={0x24, 0x2a, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x0, 0x4}}}, 0x24}}, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = gettid()
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000072000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
getrusage(0x0, 0x0)
epoll_pwait(0xffffffffffffffff, &(0x7f0000000040)=[{}], 0x1, 0x0, 0x0, 0x600000000000000)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000280)={0xffffffff}, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
pipe(&(0x7f0000000980)={<r3=>0xffffffffffffffff})
syz_clone3(&(0x7f00000009c0)={0x0, &(0x7f0000000800), &(0x7f0000000840), &(0x7f0000000880), {0x3b}, &(0x7f00000008c0)=""/59, 0x3b, &(0x7f0000000900)=""/51, &(0x7f0000000940)=[0x0, r2], 0x2, {r3}}, 0x58)

6.553833218s ago: executing program 0 (id=3793):
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0x1}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000001000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r2, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
syz_fuse_handle_req(r2, &(0x7f00000041c0)="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", 0x2000, &(0x7f0000000a00)={&(0x7f0000000180)={0x50}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r2, &(0x7f0000002140)="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", 0x2000, &(0x7f0000000c40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)={0x78, 0x0, 0x0, {0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
utimensat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)

6.488443468s ago: executing program 0 (id=3794):
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pread64(r0, &(0x7f0000000600)=""/4099, 0x1003, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0xb4}, 0x48)
r1 = socket(0x10, 0x803, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000000080)=@newtaction={0x18, 0x30, 0x9, 0x0, 0x0, {}, [{0x4}]}, 0x18}}, 0x0)
socket$packet(0x11, 0x3, 0x300)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$smc(&(0x7f0000000540), r1)
sendmsg$SMC_PNETID_GET(0xffffffffffffffff, &(0x7f0000000640)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000600)={0x0}, 0x1, 0x0, 0x0, 0x40}, 0x4342bc71ade6fb94)
r3 = socket$inet6(0xa, 0x3, 0xff)
syz_emit_ethernet(0x46, &(0x7f0000001640)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaabb86dd6000001a90df9dbead0000103afffe800000000000000000000000ddffbaff02000000000400000000000000000186009078ff000002000014cc40b033f4b9f70801014763c969e87f7a09dbab613fa358abb703c034afa80e555af714853ca3f4c91f0681351167cd0b61bc665dfe4fc2cfa2a621258edf404df23a327b98d8027a4ccfe8cbfc588ed3937daf0083d3432e96bbe7078890327a05207a469e910e0e3dc3ead3069cf6e6d584cc68f98822f9a9228d080f7810c51a3b58a1fb81795d89acd24bbd6f59f32cd6acb127b8f2488a010e690400000000000000c8e78e013c45d15963f3d7b576a732b4eac996ea0335322a7d460496a05302f338b34ad9e0e69db20bc716a3f320e51a6d17e210e93b0797402ee7efc0a269664fdf3d697376f7e82238accb7224bab1715cc9f96d1c1ff7e75e06e5736a3802cd91b7251fb6dbe472e2f21d28714b4b5006cb8a45f7b9570f55a400e49ef31126e5ddf576a876be9d4b70f5a8ab227ddea9f572d1a52b9986e333f33aa07ad40627154582956ae15cb6c57b6f000000"], 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x8, 0x8d}, 0x0)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
futex(&(0x7f0000001300)=0x80000001, 0x800000000006, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
prctl$PR_SET_NAME(0xf, &(0x7f0000000000)='l%\x86\xce6\xdb\f\xcf\x19|\xc9O\x7f\xce\x8f\x7f\x1c\xeay\x06\x00\x00\x00\a0\r\x13\xaa\x84r\xd7^\xe82\x0f\x1a\xf1\x02\x00\x1e&{\xee2\x95I\xca\xbevl\x12\xb6 \xd4')
prctl$PR_SET_SECCOMP(0x10, 0x0, 0x0)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
signalfd(0xffffffffffffffff, 0x0, 0x0)
connect$inet6(r3, &(0x7f0000000500)={0xa, 0x0, 0xfffffffe, @private0, 0xfffffffc}, 0x1c)
write$binfmt_elf64(r3, &(0x7f0000000000)=ANY=[], 0xc9)
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE_RINGBUF(0x1400, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x1, 0x0, '\x00', 0x0, 0x0, 0x3}, 0x48)

5.994362754s ago: executing program 1 (id=3799):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x3, 0x5}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xd, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000002a00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001600)={&(0x7f00000005c0)='sys_enter\x00', r1}, 0x10)
getrandom(0x0, 0x0, 0x0)

5.790964865s ago: executing program 4 (id=3801):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendmmsg$inet(r0, &(0x7f0000006d40)=[{{&(0x7f0000001540)={0x2, 0x0, @dev}, 0x10, &(0x7f0000001980)=[{&(0x7f0000001580)="bd7f", 0x2}], 0x1}}, {{&(0x7f0000001a80)={0x2, 0x0, @multicast2}, 0x10, 0x0, 0x0, &(0x7f0000003e40)=[@ip_retopts={{0x14, 0x0, 0x7, {[@ssrr={0x44, 0x3}]}}}], 0x18}}], 0x2, 0x0)

5.765636779s ago: executing program 4 (id=3802):
mkdir(&(0x7f0000000240)='./bus\x00', 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000000100)=@v1={0x0, @adiantum, 0x0, @desc1})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
getdents64(r0, 0x0, 0x0)

5.668567913s ago: executing program 2 (id=3803):
r0 = socket(0x1e, 0x1, 0x0)
sendmmsg(r0, &(0x7f0000004140)=[{{&(0x7f0000000180)=@tipc=@id, 0x80, 0x0}}], 0x1, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
unshare(0x20000400)
poll(&(0x7f0000000000)=[{r0}, {r1}], 0x2, 0x0)

5.606729053s ago: executing program 4 (id=3804):
r0 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r0, 0x10e, 0xc, &(0x7f00000000c0)=0x10000, 0x4)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413ec50000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r1}, 0x10)
sendmsg$netlink(r0, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000380)=ANY=[@ANYBLOB="240000001e00290700000000000000000c000000000000000000000008000c"], 0x24}], 0x1}, 0x0)

5.600633854s ago: executing program 2 (id=3805):
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000240)=0x1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000001a40)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x81)
r5 = getpid()
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000037c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="00000000000000000100000001000000", @ANYRES32, @ANYRESOCT=r3, @ANYRES32=r5, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYRES32=0xee01, @ANYRES8=r3], 0x40}}], 0x1, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r6, 0x6, 0x24, &(0x7f0000000080)=0x1, 0x4)
recvmmsg(r6, &(0x7f0000001980)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=""/26, 0x1a}}, {{&(0x7f0000001380)=@pppoe={0x18, 0x0, {0x0, @local}}, 0x80, &(0x7f0000001840)=[{&(0x7f0000001400)=""/149, 0x95}, {&(0x7f00000014c0)=""/105, 0x69}, {&(0x7f0000001540)=""/188, 0xbc}, {&(0x7f0000001600)=""/57, 0x39}, {&(0x7f0000001780)=""/171, 0xab}], 0x5}}], 0x2, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000e00)=ANY=[], &(0x7f00000004c0)='syzkaller\x00', 0x400, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
socket$inet(0x2, 0xa, 0x0)
creat(&(0x7f0000000300)='./bus\x00', 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r7, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback}, 0x1c)
sendto$inet6(r7, &(0x7f00000000c0)="044aac2f202c5feda71e039a57a93088fdcce4afe28aac61837792741a190670ccbe1a2b00aa77a87d56a3f12c7920ad02928a5d1014e5b896f000fcf6521928480be9af82613a5c661f4110adba358afd8b5b4ef1702051e393ede2698112a1f1bdf1d0f568546ed322ab4c53545bd2cd6e48522f0c154cb3c6864dc30ae921db100f1ee97a234503338f8fdf356472da0c7ab62f274f34", 0xadf29f33fb903ae1, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)
shutdown(0xffffffffffffffff, 0x1)
setsockopt$inet6_IPV6_DSTOPTS(0xffffffffffffffff, 0x29, 0x3b, &(0x7f0000000ac0)=ANY=[@ANYBLOB="87f72b684700d4d40fa12285f2f50366d2d88a0100f9b9bfe8509a0a1dfaa879a4eccf7e768ed905dbfe04000002000000008015c028397184e96aa707557e1af251b1a7ea0945d80577ea132b93fd426a6be2db088e0676dfaf59b6f93f3b217d0e58d0d7b6e8535e00f2b2be7c615ce678952b2f0fe329a90900000000000000e46cc3844c9a1aa7923275f4c3693ee372b736c2ef8fda22eb3d2f248f00fe18f894c562516fbff0f3b0e4b0ad83f20791f8d3380f5530073321f5f17488f7105185fa5ba5edfb55c8418a63f5a6277baedf1699f10c8b78ac003498fabf19a35e6f634c5db6e06ecd2c479e8d28a45256886ff86593f2db89991fdf55e07eb1f00e657795b2fc24a6d095e648f58bd9f418bd8f2c"], 0x8)
recvmsg(r7, &(0x7f00000008c0)={0x0, 0x4, &(0x7f0000000840)=[{&(0x7f0000000040)=""/50, 0xfffffe72}, {&(0x7f0000000240)=""/52, 0x34}, {&(0x7f0000000780)=""/129, 0x80}, {&(0x7f0000000300)=""/68, 0x44}, {&(0x7f0000000380)=""/121, 0x79}, {&(0x7f0000000400)=""/183, 0xb7}], 0x6}, 0x40000110)

5.55631196s ago: executing program 1 (id=3806):
r0 = socket(0x10, 0x3, 0x9)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x12, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000a9000000000000000200000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
connect$netlink(r0, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x25dfdbfc}, 0xc)
sendmsg$TIPC_CMD_GET_MAX_PORTS(r0, &(0x7f0000000b00)={&(0x7f0000000a00), 0xc, &(0x7f0000000ac0)={&(0x7f0000000400)={0x1c}, 0xdb}}, 0x0)

5.4934018s ago: executing program 0 (id=3807):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=@framed={{}, [@ringbuf_output={{0x18, 0x2}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x43}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b00000000000000001804"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
unshare(0x6c060000)

5.49218002s ago: executing program 1 (id=3808):
io_setup(0x3f, &(0x7f0000000040)=<r0=>0x0)
pipe2$9p(&(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
dup3(r2, r1, 0x0)
io_submit(r0, 0x1, &(0x7f0000000200)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x5, 0x0, r2, 0x0}])

5.486808321s ago: executing program 4 (id=3809):
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x0, 0x5, 0x10001, 0x9, 0x1}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
socket$packet(0x11, 0x4000000000002, 0x300)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x70, 0x4)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x9)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x8000f28, 0x0)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000040)='./bus\x00', 0x14542, &(0x7f0000000240)=ANY=[], 0x1, 0x1222, &(0x7f0000001580)="$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")
r5 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r5, 0xc0185879, &(0x7f0000000080)={0x0, 0x200002000001, 0x0, 0x0, 0x0, 0x0, 0x2401})
sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r1, &(0x7f0000000380)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000001340)="45f9e8e5af9f7e488a1619ea0cd4902570249f1e29b175dfa0d3ae9be1933b972b835f966d432045a33e064403006bdb8ef95b90e76baae34f74778049ff8fa4a59adf7623aaddb922b32dbbfda740b88a07e87eb2cd97c0393db1036a1ec8a376c919cdd0b40dbb899c07f1349c7a1113f57495c795bc7e38166a7bdef463457189549f4b13279fffd050bdfea3477a62d3edea8321a2e98c65330fe7199ca6bee7202aa5a5d56c4ed4c22dbb28cebcaec033c75eb78820ad1d8ceb6f90b569e165002e702e1a2066", 0xc9}], 0x1}}], 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000600), 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$PROG_LOAD(0x23, &(0x7f00000000c0)={0x0, 0x0, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendto$inet(r1, &(0x7f0000000700)="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", 0xfe6a, 0x40040, 0x0, 0xfffffffffffffe93)

308.216342ms ago: executing program 2 (id=3810):
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000080)='\x00\x00\x00\x00', 0x4}], 0x1)

307.507033ms ago: executing program 3 (id=3811):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=@framed={{}, [@ringbuf_output={{0x18, 0x2, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x43}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r3, &(0x7f0000000040)=@pppol2tp={0x18, 0x1, {0x0, r2, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x4}}, 0x26)
r4 = dup2(r3, r2)
sendmsg$nl_netfilter(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x2f0}}, 0x0)

306.385453ms ago: executing program 1 (id=3812):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
sendmmsg$inet(r0, &(0x7f0000006d40)=[{{&(0x7f0000001540)={0x2, 0x0, @dev}, 0x10, &(0x7f0000001980)=[{&(0x7f0000001580)="bd7f", 0x2}], 0x1}}, {{&(0x7f0000001a80)={0x2, 0x0, @multicast2}, 0x10, 0x0, 0x0, &(0x7f0000003e40)=[@ip_retopts={{0x14, 0x0, 0x7, {[@ssrr={0x44, 0x3}]}}}], 0x18}}], 0x2, 0x0)

304.181453ms ago: executing program 4 (id=3813):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='mmap_lock_acquire_returned\x00', r2}, 0x10)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000900000000000000213f0000c50000000e800000850000000e00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='mmap_lock_acquire_returned\x00', r3}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)

296.182144ms ago: executing program 0 (id=3814):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000002c0)={0x0, <r2=>0x0}, 0x8)
r3 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000140)=r2, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x1b, 0x3, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000009500000000000000"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, r2, r3}, 0x80)

295.408024ms ago: executing program 2 (id=3815):
mkdir(&(0x7f0000000240)='./bus\x00', 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000000100)=@v1={0x0, @adiantum, 0x0, @desc1})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
getdents64(r0, 0x0, 0x0)

282.083406ms ago: executing program 2 (id=3816):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000080)=0xbf)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)=0x17)

281.933907ms ago: executing program 1 (id=3817):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r1}, 0x10)
clock_adjtime(0x0, &(0x7f0000000800))

273.625258ms ago: executing program 2 (id=3818):
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pread64(r0, &(0x7f0000000600)=""/4099, 0x1003, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0xb4}, 0x48)
r1 = socket(0x10, 0x803, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000000080)=@newtaction={0x18, 0x30, 0x9, 0x0, 0x0, {}, [{0x4}]}, 0x18}}, 0x0)
socket$packet(0x11, 0x3, 0x300)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$smc(&(0x7f0000000540), r1)
sendmsg$SMC_PNETID_GET(0xffffffffffffffff, &(0x7f0000000640)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f0000000600)={0x0}, 0x1, 0x0, 0x0, 0x40}, 0x4342bc71ade6fb94)
r3 = socket$inet6(0xa, 0x3, 0xff)
syz_emit_ethernet(0x46, &(0x7f0000001640)=ANY=[@ANYBLOB="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"], 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x8, 0x8d}, 0x0)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
futex(&(0x7f0000001300)=0x80000001, 0x800000000006, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
prctl$PR_SET_NAME(0xf, &(0x7f0000000000)='l%\x86\xce6\xdb\f\xcf\x19|\xc9O\x7f\xce\x8f\x7f\x1c\xeay\x06\x00\x00\x00\a0\r\x13\xaa\x84r\xd7^\xe82\x0f\x1a\xf1\x02\x00\x1e&{\xee2\x95I\xca\xbevl\x12\xb6 \xd4')
prctl$PR_SET_SECCOMP(0x10, 0x0, 0x0)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
signalfd(0xffffffffffffffff, 0x0, 0x0)
connect$inet6(r3, &(0x7f0000000500)={0xa, 0x0, 0xfffffffe, @private0, 0xfffffffc}, 0x1c)
write$binfmt_elf64(r3, &(0x7f0000000000)=ANY=[], 0xc9)
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE_RINGBUF(0x1400, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x1, 0x0, '\x00', 0x0, 0x0, 0x3}, 0x48)

255.299641ms ago: executing program 0 (id=3819):
r0 = socket(0x10, 0x3, 0x9)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x12, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000a9000000000000000200000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
connect$netlink(r0, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x25dfdbfc}, 0xc)
sendmsg$TIPC_CMD_GET_MAX_PORTS(r0, &(0x7f0000000b00)={&(0x7f0000000a00), 0xc, &(0x7f0000000ac0)={&(0x7f0000000400)={0x1c}, 0xdb}}, 0x0)

241.397313ms ago: executing program 3 (id=3820):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000080)={'gretap0\x00', &(0x7f0000000100)={'gre0\x00', 0x0, 0x0, 0x7, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @empty, @empty}}}})
setsockopt$inet_mreqn(r2, 0x0, 0x40, &(0x7f00000000c0)={@dev, @dev}, 0xc)

240.355753ms ago: executing program 1 (id=3821):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000021850000008600000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='sys_enter\x00', r1}, 0x10)
process_madvise(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)

206.937548ms ago: executing program 3 (id=3822):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0x2, 0x4, 0x2}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='ext4_da_write_pages_extent\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000900)={&(0x7f0000000040)='ext4_da_write_pages_extent\x00', r2}, 0x10)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cgroup.events\x00', 0x275a, 0x0)
write$cgroup_int(r3, &(0x7f00000000c0), 0x12)
ioctl$SIOCSIFHWADDR(r3, 0x4030582b, &(0x7f0000000280)={'lo\x00', @link_local={0x1, 0x80, 0xc2, 0xc}})

11.233668ms ago: executing program 0 (id=3823):
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
r0 = open(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000000)='cgroup.procs\x00', 0x2, 0x0)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000000180)='0', 0x1}], 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000240)=0x1)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000001a40)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x81)
r5 = getpid()
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000037c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="00000000000000000100000001000000", @ANYRES32, @ANYRESOCT=r3, @ANYRES32=r5, @ANYRES32=0x0, @ANYRES32=0xee00, @ANYRES32=0xee01, @ANYRES8=r3], 0x40}}], 0x1, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r6, 0x6, 0x24, &(0x7f0000000080)=0x1, 0x4)
recvmmsg(r6, &(0x7f0000001980)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=""/26, 0x1a}}, {{&(0x7f0000001380)=@pppoe={0x18, 0x0, {0x0, @local}}, 0x80, &(0x7f0000001840)=[{&(0x7f0000001400)=""/149, 0x95}, {&(0x7f00000014c0)=""/105, 0x69}, {&(0x7f0000001540)=""/188, 0xbc}, {&(0x7f0000001600)=""/57, 0x39}, {&(0x7f0000001780)=""/171, 0xab}], 0x5}}], 0x2, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x3, &(0x7f0000000e00)=ANY=[], &(0x7f00000004c0)='syzkaller\x00', 0x400, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
socket$inet(0x2, 0xa, 0x0)
creat(&(0x7f0000000300)='./bus\x00', 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r7, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback}, 0x1c)
sendto$inet6(r7, &(0x7f00000000c0)="044aac2f202c5feda71e039a57a93088fdcce4afe28aac61837792741a190670ccbe1a2b00aa77a87d56a3f12c7920ad02928a5d1014e5b896f000fcf6521928480be9af82613a5c661f4110adba358afd8b5b4ef1702051e393ede2698112a1f1bdf1d0f568546ed322ab4c53545bd2cd6e48522f0c154cb3c6864dc30ae921db100f1ee97a234503338f8fdf356472da0c7ab62f274f34", 0xadf29f33fb903ae1, 0x20000004, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)
shutdown(0xffffffffffffffff, 0x1)
setsockopt$inet6_IPV6_DSTOPTS(0xffffffffffffffff, 0x29, 0x3b, &(0x7f0000000ac0)=ANY=[@ANYBLOB="87f72b684700d4d40fa12285f2f50366d2d88a0100f9b9bfe8509a0a1dfaa879a4eccf7e768ed905dbfe04000002000000008015c028397184e96aa707557e1af251b1a7ea0945d80577ea132b93fd426a6be2db088e0676dfaf59b6f93f3b217d0e58d0d7b6e8535e00f2b2be7c615ce678952b2f0fe329a90900000000000000e46cc3844c9a1aa7923275f4c3693ee372b736c2ef8fda22eb3d2f248f00fe18f894c562516fbff0f3b0e4b0ad83f20791f8d3380f5530073321f5f17488f7105185fa5ba5edfb55c8418a63f5a6277baedf1699f10c8b78ac003498fabf19a35e6f634c5db6e06ecd2c479e8d28a45256886ff86593f2db89991fdf55e07eb1f00e657795b2fc24a6d095e648f58bd9f418bd8f2c"], 0x8)
recvmsg(r7, &(0x7f00000008c0)={0x0, 0x4, &(0x7f0000000840)=[{&(0x7f0000000040)=""/50, 0xfffffe72}, {&(0x7f0000000240)=""/52, 0x34}, {&(0x7f0000000780)=""/129, 0x80}, {&(0x7f0000000300)=""/68, 0x44}, {&(0x7f0000000380)=""/121, 0x79}, {&(0x7f0000000400)=""/183, 0xb7}], 0x6}, 0x40000110)

10.688828ms ago: executing program 4 (id=3824):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000340)=ANY=[@ANYBLOB="12010000000000406c256d0000000000000109022400010000000009040000010300000009210000000122050009058103"], 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=@gettclass={0x24, 0x2a, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x0, 0x4}}}, 0x24}}, 0x0)
r1 = socket(0x10, 0x3, 0x0)
r2 = gettid()
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000072000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
getrusage(0x0, 0x0)
epoll_pwait(0xffffffffffffffff, &(0x7f0000000040)=[{}], 0x1, 0x0, 0x0, 0x600000000000000)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000280)={0xffffffff}, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
pipe(&(0x7f0000000980)={<r3=>0xffffffffffffffff})
syz_clone3(&(0x7f00000009c0)={0x0, &(0x7f0000000800), &(0x7f0000000840), &(0x7f0000000880), {0x3b}, &(0x7f00000008c0)=""/59, 0x3b, &(0x7f0000000900)=""/51, &(0x7f0000000940)=[0x0, r2], 0x2, {r3}}, 0x58)

0s ago: executing program 3 (id=3825):
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x0, 0x5, 0x10001, 0x9, 0x1}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
socket$packet(0x11, 0x4000000000002, 0x300)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x70, 0x4)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f0000000400)=[{0x6, 0x0, 0x0, 0xe8}]}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x9)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
pipe(&(0x7f0000000200)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r4, 0x0, 0x8000f28, 0x0)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000040)='./bus\x00', 0x14542, &(0x7f0000000240)=ANY=[], 0x1, 0x1222, &(0x7f0000001580)="$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")
r5 = open(&(0x7f0000000040)='.\x00', 0x0, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
ioctl$EXT4_IOC_GROUP_ADD(r5, 0xc0185879, &(0x7f0000000080)={0x0, 0x200002000001, 0x0, 0x0, 0x0, 0x0, 0x2401})
sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r1, &(0x7f0000000380)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000001340)="45f9e8e5af9f7e488a1619ea0cd4902570249f1e29b175dfa0d3ae9be1933b972b835f966d432045a33e064403006bdb8ef95b90e76baae34f74778049ff8fa4a59adf7623aaddb922b32dbbfda740b88a07e87eb2cd97c0393db1036a1ec8a376c919cdd0b40dbb899c07f1349c7a1113f57495c795bc7e38166a7bdef463457189549f4b13279fffd050bdfea3477a62d3edea8321a2e98c65330fe7199ca6bee7202aa5a5d56c4ed4c22dbb28cebcaec033c75eb78820ad1d8ceb6f90b569e165002e702e1a2066", 0xc9}], 0x1}}], 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000600), 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$PROG_LOAD(0x23, &(0x7f00000000c0)={0x0, 0x0, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendto$inet(r1, &(0x7f0000000700)="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", 0xfe6a, 0x40040, 0x0, 0xfffffffffffffe93)

kernel console output (not intermixed with test programs):

dummy_hcd.3/usb4/4-1/4-1:17.0/input/input25
[  224.240890][ T1355] input: failed to attach handler kbd to device input25, error: -5
[  224.250028][ T1355] usb 4-1: USB disconnect, device number 21
[  224.345696][ T7798] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  224.353588][ T7798] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  224.393733][ T7807] loop4: detected capacity change from 0 to 512
[  224.420402][ T7807] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  224.436370][ T7807] ext4 filesystem being mounted at /root/syzkaller.WbG2a1/88/bus supports timestamps until 2038 (0x7fffffff)
[  224.559386][   T20] usb 1-1: reset high-speed USB device number 22 using dummy_hcd
[  225.501452][ T7837] loop4: detected capacity change from 0 to 512
[  225.511828][ T7839] loop1: detected capacity change from 0 to 512
[  225.524554][ T7837] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  225.533454][ T7837] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[  225.542889][ T7837] EXT4-fs error (device loop4): ext4_validate_block_bitmap:429: comm syz.4.2885: bg 0: block 18: invalid block bitmap
[  225.555324][ T7837] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6176: Corrupt filesystem
[  225.565497][ T7837] EXT4-fs (loop4): 1 truncate cleaned up
[  225.571130][ T7837] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  225.573539][ T7839] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  225.585702][ T7837] ext2 filesystem being mounted at /root/syzkaller.WbG2a1/93/file0 supports timestamps until 2038 (0x7fffffff)
[  225.602912][ T7844] loop3: detected capacity change from 0 to 2048
[  225.610099][ T7839] ext4 filesystem being mounted at /root/syzkaller.W5xkjE/43/file1 supports timestamps until 2038 (0x7fffffff)
[  225.614004][ T7837] EXT4-fs error (device loop4): ext4_map_blocks:602: inode #2: block 3: comm syz.4.2885: lblock 0 mapped to illegal pblock 3 (length 1)
[  225.654706][ T7844]  loop3: p2 p3 p7
[  225.729800][ T1355] usb 1-1: USB disconnect, device number 22
[  226.111491][   T30] audit: type=1400 audit(2000000179.068:1228): avc:  denied  { mounton } for  pid=7870 comm="syz.0.2897" path="/root/syzkaller.j4Jneg/54/file0" dev="sda1" ino=2216 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=sock_file permissive=1
[  226.580026][ T7876] loop3: detected capacity change from 0 to 512
[  226.619914][ T7876] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  226.631077][ T7876] ext4 filesystem being mounted at /root/syzkaller.t8J5jD/49/file1 supports timestamps until 2038 (0x7fffffff)
[  226.657072][ T7880] loop4: detected capacity change from 0 to 512
[  226.694924][ T7880] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  226.716119][ T7880] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[  226.725702][ T7880] EXT4-fs error (device loop4): ext4_validate_block_bitmap:429: comm syz.4.2900: bg 0: block 18: invalid block bitmap
[  226.738178][ T7880] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6176: Corrupt filesystem
[  226.746918][ T7880] EXT4-fs (loop4): 1 truncate cleaned up
[  226.753229][ T7880] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  226.763747][ T7880] ext2 filesystem being mounted at /root/syzkaller.WbG2a1/100/file0 supports timestamps until 2038 (0x7fffffff)
[  226.778217][ T7880] EXT4-fs error (device loop4): ext4_map_blocks:602: inode #2: block 3: comm syz.4.2900: lblock 0 mapped to illegal pblock 3 (length 1)
[  226.857741][ T7897] syz.1.2906[7897] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  226.857791][ T7897] syz.1.2906[7897] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  227.138027][  T762] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  227.538877][  T762] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  227.548790][  T762] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2
[  227.557620][  T762] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  227.657735][ T7912] loop3: detected capacity change from 0 to 512
[  227.724759][ T7912] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  227.734074][  T762] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  227.735726][ T7912] ext4 filesystem being mounted at /root/syzkaller.t8J5jD/53/file1 supports timestamps until 2038 (0x7fffffff)
[  227.744474][  T762] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  227.763829][  T762] usb 5-1: Product: syz
[  227.767781][  T762] usb 5-1: Manufacturer: syz
[  227.772191][  T762] usb 5-1: SerialNumber: syz
[  227.820877][  T762] cdc_ncm 5-1:1.0: CDC Union missing and no IAD found
[  227.827518][  T762] cdc_ncm 5-1:1.0: bind() failure
[  228.043602][ T1355] usb 5-1: USB disconnect, device number 16
[  228.362197][ T7056] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[  228.644529][ T7934] bridge0: port 1(bridge_slave_0) entered blocking state
[  228.651364][ T7934] bridge0: port 1(bridge_slave_0) entered disabled state
[  228.658518][ T7934] device bridge_slave_0 entered promiscuous mode
[  228.665269][ T7934] bridge0: port 2(bridge_slave_1) entered blocking state
[  228.672106][ T7934] bridge0: port 2(bridge_slave_1) entered disabled state
[  228.679281][ T7934] device bridge_slave_1 entered promiscuous mode
[  228.719284][ T7934] bridge0: port 2(bridge_slave_1) entered blocking state
[  228.726130][ T7934] bridge0: port 2(bridge_slave_1) entered forwarding state
[  228.733219][ T7934] bridge0: port 1(bridge_slave_0) entered blocking state
[  228.740017][ T7934] bridge0: port 1(bridge_slave_0) entered forwarding state
[  228.752326][ T7056] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  228.764770][  T515] bridge0: port 1(bridge_slave_0) entered disabled state
[  228.771645][ T7056] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  228.784761][ T7056] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  228.793694][   T30] audit: type=1326 audit(2000000181.532:1229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7938 comm="syz.4.2921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbde8ef1ae9 code=0x7ffc0000
[  228.793784][  T515] bridge0: port 2(bridge_slave_1) entered disabled state
[  228.817066][ T7056] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  228.831629][   T30] audit: type=1326 audit(2000000181.569:1230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7938 comm="syz.4.2921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbde8ef1ae9 code=0x7ffc0000
[  228.855533][  T515] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  228.855645][ T7056] usb 2-1: config 0 descriptor??
[  228.863101][  T515] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  228.868414][   T30] audit: type=1326 audit(2000000181.569:1231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7938 comm="syz.4.2921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbde8ef1ae9 code=0x7ffc0000
[  228.912742][   T30] audit: type=1326 audit(2000000181.578:1232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7938 comm="syz.4.2921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbde8ef1ae9 code=0x7ffc0000
[  228.936998][ T1355] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  228.937080][   T30] audit: type=1326 audit(2000000181.578:1233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7938 comm="syz.4.2921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbde8ef1ae9 code=0x7ffc0000
[  228.945063][ T1355] bridge0: port 1(bridge_slave_0) entered blocking state
[  228.968272][   T30] audit: type=1326 audit(2000000181.578:1234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7938 comm="syz.4.2921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbde8ef1ae9 code=0x7ffc0000
[  228.974924][ T1355] bridge0: port 1(bridge_slave_0) entered forwarding state
[  228.998182][   T30] audit: type=1326 audit(2000000181.643:1235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7938 comm="syz.4.2921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbde8ef1ae9 code=0x7ffc0000
[  229.005969][ T1355] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  229.036528][ T1355] bridge0: port 2(bridge_slave_1) entered blocking state
[  229.043370][ T1355] bridge0: port 2(bridge_slave_1) entered forwarding state
[  229.049118][   T30] audit: type=1326 audit(2000000181.643:1236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7938 comm="syz.4.2921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=63 compat=0 ip=0x7fbde8ef1ae9 code=0x7ffc0000
[  229.050944][ T1355] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  229.075180][   T30] audit: type=1326 audit(2000000181.643:1237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7938 comm="syz.4.2921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbde8ef1ae9 code=0x7ffc0000
[  229.083220][ T1355] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  229.111987][   T30] audit: type=1326 audit(2000000181.643:1238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7938 comm="syz.4.2921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbde8ef1ae9 code=0x7ffc0000
[  229.136791][ T7934] device veth0_vlan entered promiscuous mode
[  229.150674][ T7934] device veth1_macvtap entered promiscuous mode
[  229.171249][ T1355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  229.181415][ T1355] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  229.192732][ T1355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  229.201077][ T1355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  229.208999][ T1355] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  229.216261][ T1355] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  229.223948][ T1355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  229.302199][ T7948] syz.3.2923[7948] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  229.302278][ T7948] syz.3.2923[7948] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  229.413769][ T7056] plantronics 0003:047F:FFFF.0017: unknown main item tag 0x0
[  229.434995][ T7056] plantronics 0003:047F:FFFF.0017: No inputs registered, leaving
[  229.443262][ T7056] plantronics 0003:047F:FFFF.0017: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  229.459971][ T7965] request_module fs-affs succeeded, but still no fs?
[  229.839594][  T526] device bridge_slave_1 left promiscuous mode
[  229.864775][  T526] bridge0: port 2(bridge_slave_1) entered disabled state
[  229.883531][  T526] device bridge_slave_0 left promiscuous mode
[  229.889546][  T526] bridge0: port 1(bridge_slave_0) entered disabled state
[  229.897722][  T526] device veth1_macvtap left promiscuous mode
[  229.903961][  T526] device veth0_vlan left promiscuous mode
[  230.540278][  T762] usb 2-1: USB disconnect, device number 21
[  230.807633][ T8011] loop2: detected capacity change from 0 to 512
[  230.877664][ T8011] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  230.888656][ T8011] ext4 filesystem being mounted at /root/syzkaller.5QgDJB/10/file1 supports timestamps until 2038 (0x7fffffff)
[  231.202635][ T8028] device bridge_slave_0 left promiscuous mode
[  231.208621][ T8028] bridge0: port 1(bridge_slave_0) entered disabled state
[  231.590842][   T20] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  232.025148][ T8048] loop0: detected capacity change from 0 to 256
[  232.092045][ T8048] exfat: Unknown parameter '0xffffffffffffffff0xffffffffffffffff1844674407370955161518446744073709551615'
[  232.132640][   T20] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  232.143875][   T20] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  232.153457][   T20] usb 3-1: New USB device found, idVendor=046d, idProduct=c086, bcdDevice= 0.00
[  232.162366][   T20] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  232.170732][   T20] usb 3-1: config 0 descriptor??
[  232.708142][   T20] logitech-hidpp-device 0003:046D:C086.0018: ignoring exceeding usage max
[  232.719692][   T20] logitech-hidpp-device 0003:046D:C086.0018: hidraw0: USB HID v0.00 Device [HID 046d:c086] on usb-dummy_hcd.2-1/input0
[  233.123389][  T438] usb 3-1: USB disconnect, device number 17
[  233.174418][ T8078] loop4: detected capacity change from 0 to 512
[  233.216666][ T8078] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  233.244539][ T8078] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.2975: bg 0: block 64: padding at end of block bitmap is not set
[  233.258940][ T8078] EXT4-fs (loop4): 1 truncate cleaned up
[  233.264425][ T8078] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  233.409567][ T8092] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2980'.
[  233.482089][ T8096] loop4: detected capacity change from 0 to 256
[  233.519882][ T8096] exfat: Deprecated parameter 'namecase'
[  233.525416][ T8096] exfat: Deprecated parameter 'utf8'
[  233.532916][ T8096] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  233.800115][ T8119] mmap: syz.2.2992 (8119) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.rst.
[  233.823137][ T8123] syz.2.2994[8123] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  233.823209][ T8123] syz.2.2994[8123] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  234.389556][ T8138] loop1: detected capacity change from 0 to 1024
[  234.430703][ T8138] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  234.441145][ T8138] ext4 filesystem being mounted at /root/syzkaller.W5xkjE/57/file0 supports timestamps until 2038 (0x7fffffff)
[  234.528063][   T30] kauditd_printk_skb: 10 callbacks suppressed
[  234.528077][   T30] audit: type=1400 audit(2000000186.830:1247): avc:  denied  { accept } for  pid=8137 comm="syz.1.2999" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  234.841424][  T515] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[  234.863600][   T30] audit: type=1400 audit(2000000187.144:1248): avc:  denied  { map } for  pid=8148 comm="syz.1.3003" path="socket:[56134]" dev="sockfs" ino=56134 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  234.892207][   T30] audit: type=1400 audit(2000000187.163:1249): avc:  denied  { accept } for  pid=8148 comm="syz.1.3003" path="socket:[56134]" dev="sockfs" ino=56134 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  234.929639][ T8156] loop1: detected capacity change from 0 to 512
[  234.942220][ T8158] syz.2.3007[8158] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  234.942294][ T8158] syz.2.3007[8158] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  234.995732][ T8156] EXT4-fs (loop1): EXT4-fs: inode_readahead_blks must be 0 or a power of 2 smaller than 2^31
[  235.081526][ T8156] blk_update_request: I/O error, dev loop1, sector 2 op 0x0:(READ) flags 0x1000 phys_seg 1 prio class 0
[  235.091761][ T8162] loop2: detected capacity change from 0 to 40427
[  235.092650][ T8156] EXT4-fs (loop1): unable to read superblock
[  235.147015][ T8162] F2FS-fs (loop2): invalid crc value
[  235.154061][ T8162] F2FS-fs (loop2): Found nat_bits in checkpoint
[  235.187069][ T8162] F2FS-fs (loop2): Cannot turn on quotas: -2 on 0
[  235.194530][ T8162] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4
[  235.217065][ T7934] attempt to access beyond end of device
[  235.217065][ T7934] loop2: rw=2049, want=45104, limit=40427
[  235.252933][  T515] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  235.285294][  T515] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  235.294947][  T515] usb 5-1: New USB device found, idVendor=046d, idProduct=c086, bcdDevice= 0.00
[  235.304040][  T515] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  235.312980][  T515] usb 5-1: config 0 descriptor??
[  235.420548][   T30] audit: type=1326 audit(2000000187.652:1250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8177 comm="syz.2.3014" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0b6a9b3ae9 code=0x0
[  235.532455][   T30] audit: type=1400 audit(2000000187.753:1251): avc:  denied  { getopt } for  pid=8177 comm="syz.2.3014" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  235.591523][ T8182] netlink: 'syz.1.3015': attribute type 12 has an invalid length.
[  235.839365][  T515] logitech-hidpp-device 0003:046D:C086.0019: ignoring exceeding usage max
[  235.848973][  T515] logitech-hidpp-device 0003:046D:C086.0019: hidraw0: USB HID v0.00 Device [HID 046d:c086] on usb-dummy_hcd.4-1/input0
[  235.891993][  T762] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[  236.038409][ T8189] incfs: Error accessing: ./file0.
[  236.043418][ T8189] incfs: mount failed -20
[  236.053492][ T8191] syz.0.3019[8191] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  236.053546][ T8191] syz.0.3019[8191] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  236.076008][  T515] usb 5-1: USB disconnect, device number 17
[  236.282078][  T762] usb 2-1: config index 0 descriptor too short (expected 55076, got 36)
[  236.290274][  T762] usb 2-1: config 0 has an invalid interface number: 0 but max is -1
[  236.298135][  T762] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 0
[  236.306842][  T762] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  236.316367][  T762] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 227, changing to 7
[  236.327258][  T762] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 58544, setting to 1024
[  236.482627][   T30] audit: type=1400 audit(2000000188.639:1252): avc:  denied  { read } for  pid=8214 comm="syz.2.3030" lport=6 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  236.509619][  T762] usb 2-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[  236.518747][  T762] usb 2-1: New USB device strings: Mfr=1, Product=16, SerialNumber=3
[  236.527015][  T762] usb 2-1: Product: syz
[  236.531329][  T762] usb 2-1: Manufacturer: syz
[  236.535771][  T762] usb 2-1: SerialNumber: syz
[  236.540837][  T762] usb 2-1: config 0 descriptor??
[  236.555590][ T8222] loop2: detected capacity change from 0 to 512
[  236.563768][ T8182] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  236.586099][  T762] dm9601: probe of 2-1:0.0 failed with error -22
[  236.586407][ T8222] EXT4-fs (loop2): EXT4-fs: inode_readahead_blks must be 0 or a power of 2 smaller than 2^31
[  236.701237][ T8222] blk_update_request: I/O error, dev loop2, sector 2 op 0x0:(READ) flags 0x1000 phys_seg 1 prio class 0
[  236.712285][ T8222] EXT4-fs (loop2): unable to read superblock
[  236.984831][ T8251] loop2: detected capacity change from 0 to 40427
[  237.052739][ T8251] F2FS-fs (loop2): invalid crc value
[  237.061513][ T8251] F2FS-fs (loop2): Found nat_bits in checkpoint
[  237.091426][ T8251] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4
[  237.108294][ T8259] loop0: detected capacity change from 0 to 512
[  237.124421][ T7934] attempt to access beyond end of device
[  237.124421][ T7934] loop2: rw=2049, want=45104, limit=40427
[  237.142984][ T8259] EXT4-fs (loop0): EXT4-fs: inode_readahead_blks must be 0 or a power of 2 smaller than 2^31
[  237.143588][ T7934] attempt to access beyond end of device
[  237.143588][ T7934] loop2: rw=2051, want=45064, limit=40427
[  237.164209][ T7934] attempt to access beyond end of device
[  237.164209][ T7934] loop2: rw=2051, want=131072, limit=40427
[  237.164280][ T7056] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[  237.175558][ T7934] attempt to access beyond end of device
[  237.175558][ T7934] loop2: rw=2051, want=77824, limit=40427
[  237.194264][ T7934] F2FS-fs (loop2): Issue discard(4614, 4614, 1019) failed, ret: -5
[  237.194298][ T7934] F2FS-fs (loop2): Issue discard(9920, 9920, 6464) failed, ret: -5
[  237.201996][ T7934] F2FS-fs (loop2): Issue discard(5638, 5638, 4090) failed, ret: -5
[  237.244443][ T8259] blk_update_request: I/O error, dev loop0, sector 2 op 0x0:(READ) flags 0x1000 phys_seg 1 prio class 0
[  237.263494][ T8259] EXT4-fs (loop0): unable to read superblock
[  237.386217][ T8268] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3052'.
[  237.411175][ T1313] usb 2-1: USB disconnect, device number 22
[  237.427652][ T8274] futex_wake_op: syz.0.3056 tries to shift op by -1; fix this program
[  237.455121][ T8279] incfs: Error accessing: ./file0.
[  237.460595][ T8279] incfs: mount failed -20
[  237.500735][ T8281] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  237.508695][ T8281] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  237.593029][ T7056] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  237.603863][ T7056] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  237.694503][ T8286] loop2: detected capacity change from 0 to 40427
[  237.735788][ T8286] F2FS-fs (loop2): invalid crc value
[  237.742300][ T8286] F2FS-fs (loop2): Found nat_bits in checkpoint
[  237.777764][ T8286] F2FS-fs (loop2): Cannot turn on quotas: -2 on 1
[  237.784513][ T8286] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  237.811972][ T8286] attempt to access beyond end of device
[  237.811972][ T8286] loop2: rw=2049, want=45104, limit=40427
[  237.874875][   T20] usb 1-1: new high-speed USB device number 23 using dummy_hcd
[  237.911262][ T7934] attempt to access beyond end of device
[  237.911262][ T7934] loop2: rw=524288, want=45072, limit=40427
[  237.923002][ T7934] attempt to access beyond end of device
[  237.923002][ T7934] loop2: rw=0, want=45072, limit=40427
[  238.073010][ T7056] usb 5-1: New USB device found, idVendor=046d, idProduct=c086, bcdDevice= 0.00
[  238.073038][ T7056] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  238.106765][ T7056] usb 5-1: config 0 descriptor??
[  238.188841][ T8301] bridge0: port 1(bridge_slave_0) entered blocking state
[  238.195736][ T8301] bridge0: port 1(bridge_slave_0) entered disabled state
[  238.202857][ T8301] device bridge_slave_0 entered promiscuous mode
[  238.209558][ T8301] bridge0: port 2(bridge_slave_1) entered blocking state
[  238.216543][ T8301] bridge0: port 2(bridge_slave_1) entered disabled state
[  238.223875][ T8301] device bridge_slave_1 entered promiscuous mode
[  238.265612][ T8301] bridge0: port 2(bridge_slave_1) entered blocking state
[  238.272463][ T8301] bridge0: port 2(bridge_slave_1) entered forwarding state
[  238.279549][ T8301] bridge0: port 1(bridge_slave_0) entered blocking state
[  238.286356][ T8301] bridge0: port 1(bridge_slave_0) entered forwarding state
[  238.307858][ T1355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  238.314970][   T20] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  238.325718][ T1355] bridge0: port 1(bridge_slave_0) entered disabled state
[  238.332989][   T20] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  238.344317][ T1355] bridge0: port 2(bridge_slave_1) entered disabled state
[  238.355624][  T762] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  238.363660][  T762] bridge0: port 1(bridge_slave_0) entered blocking state
[  238.370494][  T762] bridge0: port 1(bridge_slave_0) entered forwarding state
[  238.384992][ T1355] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  238.393762][ T1355] bridge0: port 2(bridge_slave_1) entered blocking state
[  238.400617][ T1355] bridge0: port 2(bridge_slave_1) entered forwarding state
[  238.408052][ T1355] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  238.415886][ T1355] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  238.434654][ T1355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  238.446680][  T515] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  238.454724][  T515] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  238.462724][  T515] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  238.470653][ T8301] device veth0_vlan entered promiscuous mode
[  238.486951][ T8301] device veth1_macvtap entered promiscuous mode
[  238.494564][ T1355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  238.510016][  T515] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  238.518669][  T515] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  238.535637][   T20] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  238.542617][ T8311] loop1: detected capacity change from 0 to 512
[  238.545292][   T20] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  238.561027][   T20] usb 1-1: Product: syz
[  238.564984][   T20] usb 1-1: Manufacturer: syz
[  238.569596][   T20] usb 1-1: SerialNumber: syz
[  238.613421][ T7056] logitech-hidpp-device 0003:046D:C086.001A: ignoring exceeding usage max
[  238.624095][ T7056] logitech-hidpp-device 0003:046D:C086.001A: hidraw0: USB HID v0.00 Device [HID 046d:c086] on usb-dummy_hcd.4-1/input0
[  238.638791][ T8311] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpid,grpquota,,errors=continue. Quota mode: writeback.
[  238.650959][ T8311] ext4 filesystem being mounted at /root/syzkaller.W5xkjE/69/file0 supports timestamps until 2038 (0x7fffffff)
[  238.663071][  T526] device bridge_slave_1 left promiscuous mode
[  238.669141][  T526] bridge0: port 2(bridge_slave_1) entered disabled state
[  238.684479][  T526] device veth1_macvtap left promiscuous mode
[  238.690777][  T526] device veth0_vlan left promiscuous mode
[  238.785486][ T8324] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  238.793303][ T8324] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  238.827786][ T8330] loop2: detected capacity change from 0 to 1024
[  238.839990][ T7056] usb 5-1: USB disconnect, device number 18
[  238.857079][ T8330] EXT4-fs (loop2): Quota format mount options ignored when QUOTA feature is enabled
[  238.868244][ T8330] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000084,resuid=0x0000000000000000,stripe=0x0000000000000001,lazytime,jqfmt=vfsold,usrquota,data_err=abort,,errors=continue. Quota mode: writeback.
[  238.895306][ T8330] netlink: 40 bytes leftover after parsing attributes in process `syz.2.3074'.
[  238.936416][ T8335] loop1: detected capacity change from 0 to 1024
[  238.974637][ T8337] loop2: detected capacity change from 0 to 2048
[  238.982260][ T8335] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  238.992731][ T8335] ext4 filesystem being mounted at /root/syzkaller.W5xkjE/73/file0 supports timestamps until 2038 (0x7fffffff)
[  239.010693][ T8337]  loop2: p2 p3 p7
[  239.600113][ T8345] loop1: detected capacity change from 0 to 40427
[  239.637659][   T30] audit: type=1400 audit(2000000191.547:1253): avc:  denied  { ioctl } for  pid=8348 comm="syz.4.3080" path="/root/syzkaller.WbG2a1/137/file0/.pending_reads" dev="incremental-fs" ino=2 ioctlcmd=0x6725 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  239.641359][ T8345] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  239.675981][ T8345] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  239.686775][ T8345] F2FS-fs (loop1): Found nat_bits in checkpoint
[  239.692851][ T8354] loop4: detected capacity change from 0 to 512
[  239.709822][ T8345] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  239.720781][ T8345] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  239.727696][ T8345] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  239.740076][ T8354] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpid,grpquota,,errors=continue. Quota mode: writeback.
[  239.752323][ T8354] ext4 filesystem being mounted at /root/syzkaller.WbG2a1/138/file0 supports timestamps until 2038 (0x7fffffff)
[  239.757195][   T30] audit: type=1400 audit(2000000191.658:1254): avc:  denied  { execute } for  pid=8343 comm="syz.1.3078" path="/root/syzkaller.W5xkjE/74/file0/bus" dev="loop1" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  239.791904][ T8344] attempt to access beyond end of device
[  239.791904][ T8344] loop1: rw=2049, want=45224, limit=40427
[  239.803438][   T30] audit: type=1400 audit(2000000191.694:1255): avc:  denied  { setattr } for  pid=8343 comm="syz.1.3078" name="bus" dev="overlay" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  239.828222][ T7291] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  239.828237][ T7291] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  239.836158][ T7291] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  239.843796][ T7291] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  239.851343][ T7291] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  239.859162][ T7291] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  239.880373][ T7291] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  239.900705][   T20] cdc_ncm 1-1:1.0: SET_NTB_FORMAT failed
[  239.934738][ T8363] loop4: detected capacity change from 0 to 256
[  239.935487][  T312] attempt to access beyond end of device
[  239.935487][  T312] loop1: rw=1, want=45232, limit=40427
[  239.965718][   T20] cdc_ncm 1-1:1.0: bind() failure
[  239.971299][ T8367] incfs: Unexpected inode type
[  239.971354][   T20] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found
[  239.982890][   T20] cdc_ncm 1-1:1.1: bind() failure
[  239.989130][   T20] usb 1-1: USB disconnect, device number 23
[  240.000611][ T8363] FAT-fs (loop4): Directory bread(block 64) failed
[  240.006930][ T8363] FAT-fs (loop4): Directory bread(block 65) failed
[  240.014122][ T8363] FAT-fs (loop4): Directory bread(block 66) failed
[  240.020667][ T8363] FAT-fs (loop4): Directory bread(block 67) failed
[  240.027242][ T8363] FAT-fs (loop4): Directory bread(block 68) failed
[  240.033791][ T8363] FAT-fs (loop4): Directory bread(block 69) failed
[  240.040190][ T8363] FAT-fs (loop4): Directory bread(block 70) failed
[  240.047304][ T8363] FAT-fs (loop4): Directory bread(block 71) failed
[  240.053799][ T8363] FAT-fs (loop4): Directory bread(block 72) failed
[  240.060114][ T8363] FAT-fs (loop4): Directory bread(block 73) failed
[  240.208886][ T8375] netlink: 44 bytes leftover after parsing attributes in process `syz.2.3087'.
[  240.217850][ T8375] netlink: 44 bytes leftover after parsing attributes in process `syz.2.3087'.
[  240.340481][ T8373] loop4: detected capacity change from 0 to 512
[  240.399927][ T8373] EXT4-fs (loop4): EXT4-fs: inode_readahead_blks must be 0 or a power of 2 smaller than 2^31
[  240.446803][ T8379] bridge0: port 1(bridge_slave_0) entered blocking state
[  240.453850][ T8379] bridge0: port 1(bridge_slave_0) entered disabled state
[  240.460989][ T8379] device bridge_slave_0 entered promiscuous mode
[  240.467985][ T8379] bridge0: port 2(bridge_slave_1) entered blocking state
[  240.472993][ T8373] blk_update_request: I/O error, dev loop4, sector 2 op 0x0:(READ) flags 0x1000 phys_seg 1 prio class 0
[  240.475127][ T8379] bridge0: port 2(bridge_slave_1) entered disabled state
[  240.492670][ T8373] EXT4-fs (loop4): unable to read superblock
[  240.493103][ T8379] device bridge_slave_1 entered promiscuous mode
[  240.570698][ T8379] bridge0: port 2(bridge_slave_1) entered blocking state
[  240.577597][ T8379] bridge0: port 2(bridge_slave_1) entered forwarding state
[  240.584677][ T8379] bridge0: port 1(bridge_slave_0) entered blocking state
[  240.591445][ T8379] bridge0: port 1(bridge_slave_0) entered forwarding state
[  240.603409][ T8394] loop0: detected capacity change from 0 to 2048
[  240.623056][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  240.631394][   T20] bridge0: port 1(bridge_slave_0) entered disabled state
[  240.634863][ T8394]  loop0: p2 p3 p7
[  240.641972][   T20] bridge0: port 2(bridge_slave_1) entered disabled state
[  240.658163][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  240.666371][   T20] bridge0: port 1(bridge_slave_0) entered blocking state
[  240.673221][   T20] bridge0: port 1(bridge_slave_0) entered forwarding state
[  240.680545][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  240.689048][   T20] bridge0: port 2(bridge_slave_1) entered blocking state
[  240.695924][   T20] bridge0: port 2(bridge_slave_1) entered forwarding state
[  240.704652][   T30] audit: type=1400 audit(2000000192.534:1256): avc:  denied  { mounton } for  pid=8391 comm="syz.4.3094" path="/root/syzkaller.WbG2a1/146/file0/file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=file permissive=1
[  240.746563][ T1313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  240.755269][ T1313] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  240.763070][ T1313] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  240.774466][ T8379] device veth0_vlan entered promiscuous mode
[  240.781013][ T7056] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  240.789163][ T7056] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  240.796368][ T7056] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  240.897061][ T7056] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  241.037159][ T8379] device veth1_macvtap entered promiscuous mode
[  241.065116][ T1355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  241.078550][ T1355] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  241.121228][ T8406] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  241.129534][ T8406] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  241.297750][  T312] device bridge_slave_1 left promiscuous mode
[  241.304001][  T312] bridge0: port 2(bridge_slave_1) entered disabled state
[  241.311745][  T312] device bridge_slave_0 left promiscuous mode
[  241.317764][  T312] bridge0: port 1(bridge_slave_0) entered disabled state
[  241.331505][  T312] device veth1_macvtap left promiscuous mode
[  241.342116][  T312] device veth0_vlan left promiscuous mode
[  241.511273][ T8416] bridge0: port 1(bridge_slave_0) entered blocking state
[  241.518496][ T8416] bridge0: port 1(bridge_slave_0) entered disabled state
[  241.525841][ T8416] device bridge_slave_0 entered promiscuous mode
[  241.532797][ T8416] bridge0: port 2(bridge_slave_1) entered blocking state
[  241.539777][ T8416] bridge0: port 2(bridge_slave_1) entered disabled state
[  241.547013][ T8416] device bridge_slave_1 entered promiscuous mode
[  241.635498][ T8416] bridge0: port 2(bridge_slave_1) entered blocking state
[  241.642389][ T8416] bridge0: port 2(bridge_slave_1) entered forwarding state
[  241.649515][ T8416] bridge0: port 1(bridge_slave_0) entered blocking state
[  241.656365][ T8416] bridge0: port 1(bridge_slave_0) entered forwarding state
[  241.686144][ T1355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  241.695171][ T1355] bridge0: port 1(bridge_slave_0) entered disabled state
[  241.696583][ T8428] loop0: detected capacity change from 0 to 256
[  241.708211][ T1355] bridge0: port 2(bridge_slave_1) entered disabled state
[  241.733321][ T1355] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  241.741375][ T1355] bridge0: port 1(bridge_slave_0) entered blocking state
[  241.748235][ T1355] bridge0: port 1(bridge_slave_0) entered forwarding state
[  241.755522][ T1355] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  241.764681][ T1355] bridge0: port 2(bridge_slave_1) entered blocking state
[  241.771553][ T1355] bridge0: port 2(bridge_slave_1) entered forwarding state
[  241.785135][  T762] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  241.795403][  T762] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  241.838897][  T762] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  241.858137][  T762] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  241.873286][  T762] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  241.884888][  T762] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  241.918975][ T8431] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  241.940305][ T8416] device veth0_vlan entered promiscuous mode
[  241.965963][ T8416] device veth1_macvtap entered promiscuous mode
[  242.015356][  T307] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  242.035903][  T438] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  242.044144][  T438] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  242.092364][   T30] audit: type=1326 audit(2000000193.817:1257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8438 comm="syz.0.3110" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fceddd4dae9 code=0x0
[  242.114701][ T8424] loop1: detected capacity change from 0 to 40427
[  242.166804][ T8424] F2FS-fs (loop1): invalid crc value
[  242.191985][ T8444] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  242.200225][ T8444] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  242.213216][ T8424] F2FS-fs (loop1): Found nat_bits in checkpoint
[  242.224370][ T8435] loop4: detected capacity change from 0 to 40427
[  242.255566][ T8424] F2FS-fs (loop1): Cannot turn on quotas: -2 on 0
[  242.262177][ T8424] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4
[  242.264965][ T8435] F2FS-fs (loop4): invalid crc value
[  242.276327][ T8435] F2FS-fs (loop4): Found nat_bits in checkpoint
[  242.288883][ T7291] attempt to access beyond end of device
[  242.288883][ T7291] loop1: rw=2049, want=45104, limit=40427
[  242.312314][ T8435] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4
[  242.347127][ T6830] attempt to access beyond end of device
[  242.347127][ T6830] loop4: rw=2049, want=45104, limit=40427
[  242.370876][ T1313] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[  242.372818][ T6830] attempt to access beyond end of device
[  242.372818][ T6830] loop4: rw=2051, want=45064, limit=40427
[  242.390100][ T6830] attempt to access beyond end of device
[  242.390100][ T6830] loop4: rw=2051, want=131072, limit=40427
[  242.401355][ T6830] attempt to access beyond end of device
[  242.401355][ T6830] loop4: rw=2051, want=77824, limit=40427
[  242.414961][ T6830] F2FS-fs (loop4): Issue discard(4614, 4614, 1019) failed, ret: -5
[  242.414993][ T6830] F2FS-fs (loop4): Issue discard(9920, 9920, 6464) failed, ret: -5
[  242.422770][ T6830] F2FS-fs (loop4): Issue discard(5638, 5638, 4090) failed, ret: -5
[  242.458782][  T312] device bridge_slave_1 left promiscuous mode
[  242.473183][  T312] bridge0: port 2(bridge_slave_1) entered disabled state
[  242.480773][  T312] device bridge_slave_0 left promiscuous mode
[  242.486783][  T312] bridge0: port 1(bridge_slave_0) entered disabled state
[  242.494466][  T312] device veth1_macvtap left promiscuous mode
[  242.500284][  T312] device veth0_vlan left promiscuous mode
[  242.559172][ T8462] loop4: detected capacity change from 0 to 1024
[  242.577626][ T8462] EXT4-fs (loop4): Quota format mount options ignored when QUOTA feature is enabled
[  242.588872][ T8462] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000084,resuid=0x0000000000000000,stripe=0x0000000000000001,lazytime,jqfmt=vfsold,usrquota,data_err=abort,,errors=continue. Quota mode: writeback.
[  242.622783][ T8462] netlink: 40 bytes leftover after parsing attributes in process `syz.4.3115'.
[  242.771880][ T1313] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  242.783036][ T1313] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  242.792656][ T1313] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  242.801571][ T1313] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  242.810309][ T1313] usb 4-1: config 0 descriptor??
[  243.143527][ T8470] loop4: detected capacity change from 0 to 131072
[  243.360378][ T8470] F2FS-fs (loop4): invalid crc value
[  243.367068][ T8470] F2FS-fs (loop4): Found nat_bits in checkpoint
[  243.376694][ T1313] hid (null): bogus close delimiter
[  243.397786][ T8484] loop1: detected capacity change from 0 to 256
[  243.400792][ T8470] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4
[  243.449982][ T8484] FAT-fs (loop1): Directory bread(block 64) failed
[  243.462028][ T8484] FAT-fs (loop1): Directory bread(block 65) failed
[  243.483036][ T8484] FAT-fs (loop1): Directory bread(block 66) failed
[  243.498421][ T8484] FAT-fs (loop1): Directory bread(block 67) failed
[  243.505614][ T8484] FAT-fs (loop1): Directory bread(block 68) failed
[  243.512699][ T8484] FAT-fs (loop1): Directory bread(block 69) failed
[  243.519157][ T8484] FAT-fs (loop1): Directory bread(block 70) failed
[  243.525572][ T8484] FAT-fs (loop1): Directory bread(block 71) failed
[  243.532046][ T8484] FAT-fs (loop1): Directory bread(block 72) failed
[  243.538444][ T8484] FAT-fs (loop1): Directory bread(block 73) failed
[  243.595469][ T1313] usb 4-1: language id specifier not provided by device, defaulting to English
[  243.695713][   T30] audit: type=1326 audit(2000000195.294:1258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8502 comm="syz.1.3130" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fea4411fae9 code=0x0
[  243.912684][ T8500] loop4: detected capacity change from 0 to 40427
[  243.981252][ T8500] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  243.989712][ T8500] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  244.011494][ T8500] F2FS-fs (loop4): Found nat_bits in checkpoint
[  244.044413][ T8500] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  244.056547][ T8500] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  244.062536][ T1313] input: HID 256c:006d Pen as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:256C:006D.001B/input/input26
[  244.063671][ T8500] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  244.090208][ T1313] input: HID 256c:006d Pad as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:256C:006D.001B/input/input27
[  244.103232][ T1313] uclogic 0003:256C:006D.001B: input,hidraw0: USB HID v0.00 Keypad [HID 256c:006d] on usb-dummy_hcd.3-1/input0
[  244.121168][ T8500] attempt to access beyond end of device
[  244.121168][ T8500] loop4: rw=2049, want=45224, limit=40427
[  244.139921][ T6830] F2FS-fs (loop4): invalid namelen(0), ino:0, run fsck to fix.
[  244.139945][ T6830] F2FS-fs (loop4): invalid namelen(0), ino:0, run fsck to fix.
[  244.147528][ T6830] F2FS-fs (loop4): invalid namelen(0), ino:0, run fsck to fix.
[  244.176929][  T526] attempt to access beyond end of device
[  244.176929][  T526] loop4: rw=1, want=45232, limit=40427
[  244.280852][ T8516] bridge0: port 1(bridge_slave_0) entered blocking state
[  244.293519][ T8516] bridge0: port 1(bridge_slave_0) entered disabled state
[  244.300946][ T8516] device bridge_slave_0 entered promiscuous mode
[  244.311952][ T8516] bridge0: port 2(bridge_slave_1) entered blocking state
[  244.327121][ T8516] bridge0: port 2(bridge_slave_1) entered disabled state
[  244.335636][ T8516] device bridge_slave_1 entered promiscuous mode
[  244.353685][   T20] usb 4-1: USB disconnect, device number 22
[  244.454863][ T8516] bridge0: port 2(bridge_slave_1) entered blocking state
[  244.461729][ T8516] bridge0: port 2(bridge_slave_1) entered forwarding state
[  244.468859][ T8516] bridge0: port 1(bridge_slave_0) entered blocking state
[  244.475636][ T8516] bridge0: port 1(bridge_slave_0) entered forwarding state
[  244.507747][ T1313] bridge0: port 1(bridge_slave_0) entered disabled state
[  244.516243][ T1313] bridge0: port 2(bridge_slave_1) entered disabled state
[  244.524923][ T1313] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  244.532876][ T1313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  244.548303][  T762] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  244.557793][  T762] bridge0: port 1(bridge_slave_0) entered blocking state
[  244.564670][  T762] bridge0: port 1(bridge_slave_0) entered forwarding state
[  244.572318][  T762] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  244.580380][  T762] bridge0: port 2(bridge_slave_1) entered blocking state
[  244.587266][  T762] bridge0: port 2(bridge_slave_1) entered forwarding state
[  244.606028][ T1313] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  244.623043][ T1313] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  244.687044][ T8516] device veth0_vlan entered promiscuous mode
[  244.694026][  T762] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  244.702593][  T762] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  244.710519][  T762] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  244.717977][  T762] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  244.731585][ T8516] device veth1_macvtap entered promiscuous mode
[  244.746095][  T307] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  244.759313][  T762] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  244.772518][  T307] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  244.863960][   T30] audit: type=1400 audit(2000000196.374:1259): avc:  denied  { read } for  pid=8537 comm="syz.4.3140" path="anon_inode:[userfaultfd]" dev="anon_inodefs" ino=58830 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  244.936118][   T30] audit: type=1400 audit(2000000196.439:1260): avc:  denied  { ioctl } for  pid=8542 comm="syz.0.3142" path="socket:[58842]" dev="sockfs" ino=58842 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  244.980584][ T8545] loop0: detected capacity change from 0 to 256
[  245.122268][   T30] audit: type=1326 audit(2000000196.605:1261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8553 comm="syz.3.3147" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fec37fa3ae9 code=0x0
[  245.255211][ T8533] loop2: detected capacity change from 0 to 131072
[  245.275844][  T312] device bridge_slave_1 left promiscuous mode
[  245.281945][  T312] bridge0: port 2(bridge_slave_1) entered disabled state
[  245.289543][  T312] device bridge_slave_0 left promiscuous mode
[  245.295647][  T312] bridge0: port 1(bridge_slave_0) entered disabled state
[  245.304825][ T8533] F2FS-fs (loop2): invalid crc value
[  245.311568][  T312] device veth1_macvtap left promiscuous mode
[  245.317868][  T312] device veth0_vlan left promiscuous mode
[  245.333604][ T8533] F2FS-fs (loop2): Found nat_bits in checkpoint
[  245.395179][ T8533] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4
[  245.787981][   T30] audit: type=1400 audit(2000000197.223:1262): avc:  denied  { setopt } for  pid=8571 comm="syz.1.3152" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  245.877439][ T8566] loop2: detected capacity change from 0 to 40427
[  245.936662][ T8566] F2FS-fs (loop2): invalid crc value
[  245.945948][ T8566] F2FS-fs (loop2): Found nat_bits in checkpoint
[  245.983055][ T8566] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4
[  246.055553][ T8301] attempt to access beyond end of device
[  246.055553][ T8301] loop2: rw=2049, want=45104, limit=40427
[  246.098971][ T8301] attempt to access beyond end of device
[  246.098971][ T8301] loop2: rw=2051, want=45064, limit=40427
[  246.111569][ T8301] attempt to access beyond end of device
[  246.111569][ T8301] loop2: rw=2051, want=131072, limit=40427
[  246.123276][ T8301] F2FS-fs (loop2): Issue discard(4614, 4614, 1019) failed, ret: -5
[  246.123305][ T8301] F2FS-fs (loop2): Issue discard(9920, 9920, 6464) failed, ret: -5
[  246.131245][ T8301] F2FS-fs (loop2): Issue discard(5638, 5638, 4090) failed, ret: -5
[  246.440135][ T8597] loop2: detected capacity change from 0 to 256
[  246.622250][ T8602] SELinux: security_context_str_to_sid(unconfined_u) failed for (dev ?, type ?) errno=-22
[  246.643691][ T8602] SELinux: security_context_str_to_sid(unconfined_u) failed for (dev sda1, type ext4) errno=-22
[  246.698896][ T8607] netlink: 32 bytes leftover after parsing attributes in process `syz.4.3165'.
[  246.995729][ T8587] loop3: detected capacity change from 0 to 131072
[  247.047767][ T8587] F2FS-fs (loop3): invalid crc value
[  247.071405][ T8587] F2FS-fs (loop3): Found nat_bits in checkpoint
[  247.131408][ T8587] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  247.224867][ T8622] tipc: Failed to remove unknown binding: 66,1,1/0:842863981/842863983
[  247.240641][ T8624] syz.0.3170[8624] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  247.240711][ T8624] syz.0.3170[8624] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  247.246518][ T8622] tipc: Failed to remove unknown binding: 66,1,1/0:842863981/842863983
[  247.514274][ T8633] loop1: detected capacity change from 0 to 1024
[  247.582683][ T8633] EXT4-fs (loop1): Journaled quota options ignored when QUOTA feature is enabled
[  247.607504][ T8633] EXT4-fs (loop1): Quota format mount options ignored when QUOTA feature is enabled
[  247.641685][ T8633] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option
[  247.653227][ T8633] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  247.699149][ T8633] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e054c01c, mo2=0002]
[  247.718439][ T8653] syz.3.3182[8653] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  247.718510][ T8653] syz.3.3182[8653] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  247.734202][ T8633] System zones: 0-1, 3-36
[  247.764562][ T8633] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,nojournal_checksum,usrjquota=./file1,debug,dioread_nolock,jqfmt=vfsold,nomblk_io_submit,journal_dev=0x0000000000000006,nojournal_checksum,,errors=continue. Quota mode: writeback.
[  247.863672][ T8665] loop0: detected capacity change from 0 to 8192
[  247.907476][ T8665]  loop0: p1 p3 p4
[  247.911206][ T8665] loop0: p1 size 3523149824 extends beyond EOD, truncated
[  247.926100][ T8665] loop0: p3 start 4294901760 is beyond EOD, truncated
[  247.944162][ T8665] loop0: p4 size 50331648 extends beyond EOD, truncated
[  247.980967][   T30] audit: type=1400 audit(2000000199.245:1263): avc:  denied  { setopt } for  pid=8664 comm="syz.0.3188" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  248.115900][   T30] audit: type=1400 audit(2000000199.374:1264): avc:  denied  { read write } for  pid=8664 comm="syz.0.3188" name="loop0p4" dev="devtmpfs" ino=603 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  248.139307][  T307] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[  248.184234][   T30] audit: type=1400 audit(2000000199.374:1265): avc:  denied  { open } for  pid=8664 comm="syz.0.3188" path="/dev/loop0p4" dev="devtmpfs" ino=603 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  248.241510][   T30] audit: type=1400 audit(2000000199.475:1266): avc:  denied  { ioctl } for  pid=8664 comm="syz.0.3188" path="/dev/loop0p4" dev="devtmpfs" ino=603 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  248.297747][ T8682] 9pnet: Insufficient options for proto=fd
[  248.416409][  T307] usb 4-1: Using ep0 maxpacket: 16
[  248.482716][ T8693] incfs: Error accessing: ./file0/file0.
[  248.488231][ T8693] incfs: mount failed -20
[  248.600837][  T307] usb 4-1: config 0 has no interfaces?
[  248.671821][  T307] usb 4-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77
[  248.671890][  T307] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  248.771048][  T307] usb 4-1: config 0 descriptor??
[  248.821142][ T8710] 9pnet: Insufficient options for proto=fd
[  249.770648][  T515] usb 1-1: new high-speed USB device number 24 using dummy_hcd
[  250.148188][   T30] audit: type=1400 audit(2000000201.248:1267): avc:  denied  { module_load } for  pid=8737 comm="syz.1.3219" path="/sys/kernel/fscaps" dev="sysfs" ino=1134 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=system permissive=1
[  250.172508][  T515] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  250.183807][  T515] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  250.193643][  T515] usb 1-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  250.202779][  T515] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  250.211119][  T515] usb 1-1: config 0 descriptor??
[  250.338456][ T8768] loop4: detected capacity change from 0 to 1024
[  250.389168][ T8768] EXT4-fs (loop4): Journaled quota options ignored when QUOTA feature is enabled
[  250.405238][ T8768] EXT4-fs (loop4): Quota format mount options ignored when QUOTA feature is enabled
[  250.431180][ T8768] EXT4-fs (loop4): Ignoring removed nomblk_io_submit option
[  250.442162][ T8768] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  250.456311][ T8768] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e054c01c, mo2=0002]
[  250.464326][ T8768] System zones: 0-1, 3-36
[  250.469858][ T8768] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,nojournal_checksum,usrjquota=./file1,debug,dioread_nolock,jqfmt=vfsold,nomblk_io_submit,journal_dev=0x0000000000000006,nojournal_checksum,,errors=continue. Quota mode: writeback.
[  250.503913][ T8787] mip6: mip6_destopt_init_state: spi is not 0: 33554432
[  250.724297][  T515] hid (null): bogus close delimiter
[  250.732972][ T8812] mip6: mip6_destopt_init_state: spi is not 0: 33554432
[  250.821293][ T8833] loop1: detected capacity change from 0 to 2048
[  250.884001][ T8833] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  250.898386][ T8833] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[  250.913204][ T8833] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 4 with error 28
[  250.925297][ T8833] EXT4-fs (loop1): This should not happen!! Data will be lost
[  250.925297][ T8833] 
[  250.935056][ T8833] EXT4-fs (loop1): Total free blocks count 0
[  250.941064][ T8833] EXT4-fs (loop1): Free/Dirty block details
[  250.949495][ T8833] EXT4-fs (loop1): free_blocks=66060288
[  250.951644][  T515] usb 1-1: language id specifier not provided by device, defaulting to English
[  250.954985][ T8833] EXT4-fs (loop1): dirty_blocks=16
[  250.963838][   T20] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  250.968948][ T8833] EXT4-fs (loop1): Block reservation details
[  250.982358][ T8833] EXT4-fs (loop1): i_reserved_data_blocks=1
[  251.035871][ T8839] 9pnet: Insufficient options for proto=fd
[  251.058920][ T8845] mip6: mip6_destopt_init_state: spi is not 0: 33554432
[  251.118673][  T307] usb 4-1: USB disconnect, device number 23
[  251.363360][   T20] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  251.373592][   T20] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  251.418853][  T515] input: HID 256c:006d Pen as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:256C:006D.001C/input/input28
[  251.424532][ T8869] 9pnet: Insufficient options for proto=fd
[  251.431712][  T515] input: HID 256c:006d Pad as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:256C:006D.001C/input/input29
[  251.450214][ T8871] mip6: mip6_destopt_init_state: spi is not 0: 33554432
[  251.450932][  T515] uclogic 0003:256C:006D.001C: input,hidraw0: USB HID v0.00 Keypad [HID 256c:006d] on usb-dummy_hcd.0-1/input0
[  251.469085][   T20] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  251.477990][   T20] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  251.486130][   T20] usb 3-1: SerialNumber: syz
[  251.699818][  T306] usb 1-1: USB disconnect, device number 24
[  251.786558][   T20] usb 3-1: 0:2 : does not exist
[  251.792985][   T20] usb 3-1: USB disconnect, device number 18
[  251.829157][  T515] usb 4-1: new high-speed USB device number 24 using dummy_hcd
[  252.315197][  T515] usb 4-1: Using ep0 maxpacket: 16
[  252.457615][  T515] usb 4-1: config 0 has no interfaces?
[  252.463021][  T515] usb 4-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77
[  252.484100][  T515] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  252.492732][  T515] usb 4-1: config 0 descriptor??
[  252.658086][ T8903] 9pnet: Insufficient options for proto=fd
[  252.809763][   T30] audit: type=1400 audit(2000000203.703:1268): avc:  denied  { getopt } for  pid=8924 comm="syz.0.3296" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  253.301101][  T307] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[  253.392231][ T8948] loop4: detected capacity change from 0 to 128
[  253.422939][ T8948] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  253.440976][ T8948] handle_bad_sector: 1 callbacks suppressed
[  253.440994][ T8948] attempt to access beyond end of device
[  253.440994][ T8948] loop4: rw=2049, want=145, limit=128
[  253.457771][ T8948] Buffer I/O error on dev loop4, logical block 144, lost async page write
[  253.466414][ T8948] attempt to access beyond end of device
[  253.466414][ T8948] loop4: rw=2049, want=185, limit=128
[  253.486810][  T762] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  253.510937][  T312] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  253.539285][ T8960] loop0: detected capacity change from 0 to 1024
[  253.575537][ T8960] EXT4-fs (loop0): mounted filesystem without journal. Opts: noauto_da_alloc,max_dir_size_kb=0x0000000000000001,dioread_lock,norecovery,discard,lazytime,noload,usrquota,noauto_da_alloc,,errors=continue. Quota mode: writeback.
[  253.600249][   T30] audit: type=1400 audit(2000000204.441:1269): avc:  denied  { write } for  pid=8959 comm="syz.0.3311" name="random" dev="devtmpfs" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[  253.690934][ T8962] loop4: detected capacity change from 0 to 40427
[  253.703514][  T307] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  253.713802][  T307] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  253.746842][  T762] usb 3-1: Using ep0 maxpacket: 8
[  253.747643][ T8962] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  253.759399][ T8962] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  253.770464][ T8962] F2FS-fs (loop4): Found nat_bits in checkpoint
[  253.801136][  T307] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  253.810194][  T307] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  253.823341][  T307] usb 2-1: SerialNumber: syz
[  253.828031][ T8962] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  253.835533][ T8962] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  253.852344][ T8975] loop0: detected capacity change from 0 to 1024
[  253.888631][ T8975] EXT4-fs (loop0): Journaled quota options ignored when QUOTA feature is enabled
[  253.897793][ T8975] EXT4-fs (loop0): Quota format mount options ignored when QUOTA feature is enabled
[  253.907149][ T8975] EXT4-fs (loop0): Ignoring removed nomblk_io_submit option
[  253.914465][ T8975] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  253.927697][ T8975] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e054c01c, mo2=0002]
[  253.935634][ T8975] System zones: 0-1, 3-36
[  253.940488][ T8975] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,nojournal_checksum,usrjquota=./file1,debug,dioread_nolock,jqfmt=vfsold,nomblk_io_submit,journal_dev=0x0000000000000006,nojournal_checksum,,errors=continue. Quota mode: writeback.
[  254.068663][ T8979] overlayfs: failed to resolve './file0': -2
[  254.207118][  T762] usb 3-1: New USB device found, idVendor=12d1, idProduct=fae2, bcdDevice=70.8b
[  254.216056][  T762] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  254.224035][  T762] usb 3-1: Product: syz
[  254.228058][  T762] usb 3-1: Manufacturer: syz
[  254.232519][  T762] usb 3-1: SerialNumber: syz
[  254.237776][  T762] usb 3-1: config 0 descriptor??
[  254.245934][  T307] usb 2-1: 0:2 : does not exist
[  254.252067][  T307] usb 2-1: USB disconnect, device number 23
[  254.375806][   T30] audit: type=1400 audit(2000000205.152:1270): avc:  denied  { relabelfrom } for  pid=8987 comm="syz.0.3318" name="NETLINK" dev="sockfs" ino=60565 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  254.375816][ T8988] SELinux:  Context system_u:object_r:restorecond_exec_t:s0 is not valid (left unmapped).
[  254.409608][   T30] audit: type=1400 audit(2000000205.189:1271): avc:  denied  { relabelto } for  pid=8987 comm="syz.0.3318" name="NETLINK" dev="sockfs" ino=60565 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=netlink_route_socket permissive=1 trawcon="system_u:object_r:restorecond_exec_t:s0"
[  254.506617][  T307] usb 3-1: USB disconnect, device number 19
[  254.777335][ T9007] loop4: detected capacity change from 0 to 1024
[  254.818699][   T20] usb 4-1: USB disconnect, device number 24
[  254.825921][ T9007] EXT4-fs (loop4): Journaled quota options ignored when QUOTA feature is enabled
[  254.838708][ T9007] EXT4-fs (loop4): Quota format mount options ignored when QUOTA feature is enabled
[  254.858578][ T9007] EXT4-fs (loop4): Ignoring removed nomblk_io_submit option
[  254.875167][ T9007] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  254.917343][ T9007] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e054c01c, mo2=0002]
[  254.928848][ T9007] System zones: 0-1, 3-36
[  254.938499][ T9007] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,nojournal_checksum,usrjquota=./file1,debug,dioread_nolock,jqfmt=vfsold,nomblk_io_submit,journal_dev=0x0000000000000006,nojournal_checksum,,errors=continue. Quota mode: writeback.
[  255.100235][ T9033] loop3: detected capacity change from 0 to 1024
[  255.144500][ T9033] EXT4-fs (loop3): Quota format mount options ignored when QUOTA feature is enabled
[  255.164134][ T9033] EXT4-fs (loop3): mounted filesystem without journal. Opts: grpquota,journal_ioprio=0x0000000000000003,resuid=0x0000000000000000,max_batch_time=0x0000000000000efe,data=ordered,jqfmt=vfsold,barrier=0x0000000000000648,barrier=0x0000000000000007,,errors=continue. Quota mode: writeback.
[  255.200481][ T9025] loop1: detected capacity change from 0 to 40427
[  255.239897][ T9025] F2FS-fs (loop1): invalid crc value
[  255.247074][ T9025] F2FS-fs (loop1): Found nat_bits in checkpoint
[  255.269575][ T9025] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  255.311742][ T7291] attempt to access beyond end of device
[  255.311742][ T7291] loop1: rw=2049, want=45104, limit=40427
[  255.415292][  T307] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[  255.557190][ T9041] loop4: detected capacity change from 0 to 40427
[  255.597672][ T9060] loop1: detected capacity change from 0 to 128
[  255.611131][ T9041] F2FS-fs (loop4): Invalid segment count (0)
[  255.617055][ T9041] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  255.625966][ T9060] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  255.638835][ T9041] F2FS-fs (loop4): invalid crc value
[  255.644311][ T9060] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  255.667439][  T526] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  255.681351][ T9041] F2FS-fs (loop4): Found nat_bits in checkpoint
[  255.726959][ T9041] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  255.741759][ T9041] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  255.793656][   T30] audit: type=1400 audit(2000000206.453:1272): avc:  denied  { link } for  pid=9040 comm="syz.4.3340" name="#27" dev="loop4" ino=27 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  255.816082][  T307] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  255.827368][  T307] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  255.839810][ T8516] attempt to access beyond end of device
[  255.839810][ T8516] loop4: rw=524288, want=45072, limit=40427
[  255.851178][ T8516] attempt to access beyond end of device
[  255.851178][ T8516] loop4: rw=0, want=45072, limit=40427
[  255.873649][  T526] attempt to access beyond end of device
[  255.873649][  T526] loop4: rw=2049, want=40992, limit=40427
[  255.913837][  T307] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  255.923334][  T307] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  255.940424][  T307] usb 3-1: SerialNumber: syz
[  255.996516][   T30] audit: type=1326 audit(2000000206.647:1273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9080 comm="syz.1.3351" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fea4411fae9 code=0x0
[  256.057564][ T9084] bridge0: port 1(bridge_slave_0) entered blocking state
[  256.064471][ T9084] bridge0: port 1(bridge_slave_0) entered disabled state
[  256.071687][ T9084] device bridge_slave_0 entered promiscuous mode
[  256.080536][ T9084] bridge0: port 2(bridge_slave_1) entered blocking state
[  256.087409][ T9084] bridge0: port 2(bridge_slave_1) entered disabled state
[  256.094566][ T9084] device bridge_slave_1 entered promiscuous mode
[  256.138926][ T9084] bridge0: port 2(bridge_slave_1) entered blocking state
[  256.145784][ T9084] bridge0: port 2(bridge_slave_1) entered forwarding state
[  256.152865][ T9084] bridge0: port 1(bridge_slave_0) entered blocking state
[  256.159648][ T9084] bridge0: port 1(bridge_slave_0) entered forwarding state
[  256.179660][  T306] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  256.187361][  T306] bridge0: port 1(bridge_slave_0) entered disabled state
[  256.194506][  T306] bridge0: port 2(bridge_slave_1) entered disabled state
[  256.218742][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  256.227399][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  256.228419][  T307] usb 3-1: 0:2 : does not exist
[  256.235433][   T20] bridge0: port 1(bridge_slave_0) entered blocking state
[  256.241594][  T307] usb 3-1: USB disconnect, device number 20
[  256.246728][   T20] bridge0: port 1(bridge_slave_0) entered forwarding state
[  256.246926][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  256.272839][   T20] bridge0: port 2(bridge_slave_1) entered blocking state
[  256.279682][   T20] bridge0: port 2(bridge_slave_1) entered forwarding state
[  256.286971][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  256.294958][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  256.305269][ T9084] device veth0_vlan entered promiscuous mode
[  256.320219][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  256.331845][ T9084] device veth1_macvtap entered promiscuous mode
[  256.340031][  T306] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  256.348381][  T306] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  256.355700][  T306] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  256.374985][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  256.383315][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  256.481922][ T9098] loop4: detected capacity change from 0 to 256
[  256.500287][ T9098] FAT-fs (loop4): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  256.540924][   T43] device bridge_slave_1 left promiscuous mode
[  256.547063][ T9107] loop3: detected capacity change from 0 to 256
[  256.547159][   T43] bridge0: port 2(bridge_slave_1) entered disabled state
[  256.561056][   T43] device bridge_slave_0 left promiscuous mode
[  256.567210][   T43] bridge0: port 1(bridge_slave_0) entered disabled state
[  256.575350][   T43] device veth1_macvtap left promiscuous mode
[  256.581176][   T43] device veth0_vlan left promiscuous mode
[  256.664599][ T9113] incfs: Options parsing error. -22
[  256.673157][ T9113] incfs: mount failed -22
[  256.712186][ T9109] loop4: detected capacity change from 0 to 1024
[  256.738271][ T9109] EXT4-fs (loop4): Journaled quota options ignored when QUOTA feature is enabled
[  256.747285][ T9109] EXT4-fs (loop4): Quota format mount options ignored when QUOTA feature is enabled
[  256.756612][ T9109] EXT4-fs (loop4): Ignoring removed nomblk_io_submit option
[  256.763820][ T9109] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  256.777177][ T9109] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e054c01c, mo2=0002]
[  256.785201][ T9109] System zones: 0-1, 3-36
[  256.790168][ T9109] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,nojournal_checksum,usrjquota=./file1,debug,dioread_nolock,jqfmt=vfsold,nomblk_io_submit,journal_dev=0x0000000000000006,nojournal_checksum,,errors=continue. Quota mode: writeback.
[  256.830493][ T9122] loop2: detected capacity change from 0 to 256
[  257.196456][   T30] audit: type=1326 audit(2000000207.755:1274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9149 comm="syz.1.3387" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fea4411fae9 code=0x0
[  257.223415][ T9155] loop2: detected capacity change from 0 to 256
[  257.241853][ T9157] loop4: detected capacity change from 0 to 256
[  257.290500][ T9157] FAT-fs (loop4): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  257.301405][  T515] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[  257.312939][ T9159] incfs: Options parsing error. -22
[  257.318035][ T9159] incfs: mount failed -22
[  257.476135][ T9175] loop4: detected capacity change from 0 to 256
[  257.497746][ T9175] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  257.692481][ T9185] loop4: detected capacity change from 0 to 256
[  257.723984][ T9185] FAT-fs (loop4): Invalid FSINFO signature: 0x00fffff8, 0x00000000 (sector = 1)
[  257.735332][  T515] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  257.750227][  T515] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  257.957963][ T9177] loop2: detected capacity change from 0 to 131072
[  257.964611][  T515] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  257.973509][  T515] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  257.981243][  T515] usb 1-1: Product: syz
[  257.985440][  T515] usb 1-1: Manufacturer: syz
[  257.989827][  T515] usb 1-1: SerialNumber: syz
[  258.018568][ T9177] F2FS-fs (loop2): Found nat_bits in checkpoint
[  258.041076][ T9177] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  258.123903][ T1313] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[  258.513912][ T1313] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  258.524804][ T1313] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  258.534450][ T1313] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  258.543537][ T1313] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  258.552038][ T1313] usb 5-1: config 0 descriptor??
[  260.258230][  T515] cdc_ncm 1-1:1.0: SET_CRC_MODE failed
[  260.280362][  T515] cdc_ncm 1-1:1.0: SET_NTB_FORMAT failed
[  260.323311][  T515] cdc_ncm 1-1:1.0: bind() failure
[  260.328930][  T515] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found
[  260.335528][  T515] cdc_ncm 1-1:1.1: bind() failure
[  260.341278][   T30] audit: type=1326 audit(2000000210.653:1275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9228 comm="syz.1.3418" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fea4411fae9 code=0x0
[  260.399279][ T1313] hid (null): bogus close delimiter
[  260.488139][  T515] usb 1-1: USB disconnect, device number 25
[  260.637460][ T1313] usb 5-1: language id specifier not provided by device, defaulting to English
[  261.125869][ T1313] input: HID 256c:006d Pen as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:256C:006D.001D/input/input30
[  261.138323][ T1313] input: HID 256c:006d Pad as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:256C:006D.001D/input/input31
[  261.150634][ T1313] uclogic 0003:256C:006D.001D: input,hidraw0: USB HID v0.00 Keypad [HID 256c:006d] on usb-dummy_hcd.4-1/input0
[  261.390648][ T3568] usb 5-1: USB disconnect, device number 19
[  261.626225][ T9265] loop2: detected capacity change from 0 to 1024
[  261.657522][ T9265] EXT4-fs (loop2): Ignoring removed orlov option
[  261.663808][ T9265] EXT4-fs (loop2): Ignoring removed nomblk_io_submit option
[  261.684204][   T30] audit: type=1400 audit(2000000211.880:1276): avc:  denied  { audit_write } for  pid=9269 comm="syz.3.3434" capability=29  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  261.716079][   T30] audit: type=1107 audit(2000000211.880:1277): pid=9269 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg=''
[  261.739211][ T9265] EXT4-fs (loop2): mounted filesystem without journal. Opts: resgid=0x0000000000000000,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none.
[  261.785340][   T30] audit: type=1400 audit(2000000211.982:1278): avc:  denied  { execute } for  pid=9264 comm="syz.2.3432" name="file0" dev="loop2" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  261.817406][   T30] audit: type=1400 audit(2000000212.019:1279): avc:  denied  { execute_no_trans } for  pid=9264 comm="syz.2.3432" path="/root/syzkaller.2C32JI/58/file1/file0/file0" dev="loop2" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  263.223120][  T515] usb 1-1: new high-speed USB device number 26 using dummy_hcd
[  263.266099][   T30] audit: type=1400 audit(2000000213.357:1280): avc:  denied  { mount } for  pid=9282 comm="syz.3.3437" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  263.340847][ T9288] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[  263.497644][  T515] usb 1-1: Using ep0 maxpacket: 32
[  263.776889][ T9315] syz.3.3450[9315] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  263.777286][ T9315] syz.3.3450[9315] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  263.820983][  T515] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[  263.841688][  T515] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0
[  264.017761][  T515] usb 1-1: New USB device found, idVendor=0499, idProduct=1010, bcdDevice= 5.f5
[  264.026656][  T515] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  264.034453][  T515] usb 1-1: Product: syz
[  264.038415][  T515] usb 1-1: Manufacturer: syz
[  264.042928][  T515] usb 1-1: SerialNumber: syz
[  264.047894][  T515] usb 1-1: config 0 descriptor??
[  264.094190][  T515] snd-usb-audio: probe of 1-1:0.0 failed with error -12
[  264.147681][  T306] usb 4-1: new high-speed USB device number 25 using dummy_hcd
[  264.381789][  T515] usb 1-1: USB disconnect, device number 26
[  264.537850][  T306] usb 4-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 0
[  264.554175][ T9346] loop4: detected capacity change from 0 to 2048
[  264.615199][ T9346] EXT4-fs (loop4): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000000200000,,errors=continue. Quota mode: none.
[  264.629407][ T9346] ext4 filesystem being mounted at /root/syzkaller.DyNBI4/33/file0 supports timestamps until 2038 (0x7fffffff)
[  264.635331][  T306] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  264.651164][  T306] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  264.659048][  T306] usb 4-1: SerialNumber: syz
[  264.700570][  T306] cdc_ether: probe of 4-1:1.0 failed with error -22
[  264.738248][ T9346] fs-verity: sha512 using implementation "sha512-avx2"
[  264.844356][ T9361] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=9361 comm=syz.4.3470
[  265.523634][  T306] Bluetooth: hci0: command 0x1003 tx timeout
[  265.529619][ T1172] Bluetooth: hci0: sending frame failed (-49)
[  265.535846][  T306] usb 4-1: USB disconnect, device number 25
[  265.988232][ T9389] loop0: detected capacity change from 0 to 256
[  265.999043][ T9392] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3482'.
[  266.014039][ T9389] exfat: Deprecated parameter 'utf8'
[  266.023115][ T9389] exfat: Deprecated parameter 'utf8'
[  266.033801][ T9389] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  266.113608][ T9408] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3490'.
[  266.409917][  T762] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[  266.750856][ T9445] device pim6reg1 entered promiscuous mode
[  266.780430][ T3568] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[  266.856558][  T762] usb 2-1: Using ep0 maxpacket: 32
[  267.090641][ T3568] usb 5-1: Using ep0 maxpacket: 8
[  267.170466][  T762] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 129, changing to 11
[  267.191827][  T762] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 1023
[  267.235551][ T3568] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  267.398057][  T762] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  267.407029][  T762] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  267.414894][  T762] usb 2-1: Product: 摃¡扈䂘챢ꚺ剐觓肬㏖ཉꝉ슊␵伭骡퍥螰倠夑䉁탯㎿桶䦾㋳燀깞鿨薖暎䓕㹨㐢煋凚璼检棤
[  267.429924][  T762] usb 2-1: Manufacturer: 嬈塛䮜烠㪆ꄬî䎧䌧赓⭚Ⰽ쾸틒⣺奙໽蓅ꦄ勤ⱊ嗓숀벨韡㏟蚰囄ל픇됼섖멲縕㱉급綽뤙밺ퟝ땐ᚭ✇◡∌䡉荜ਉ챸׷垎۳靝㐴廀앥뿝⮾铛赠먚쒆
[  267.756372][ T3568] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.40
[  267.765306][ T3568] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  267.773644][ T3568] usb 5-1: Product: syz
[  267.777707][ T3568] usb 5-1: Manufacturer: syz
[  267.787997][ T7056] Bluetooth: hci0: command 0x1001 tx timeout
[  267.793429][ T3568] usb 5-1: SerialNumber: syz
[  267.814270][ T1172] Bluetooth: hci0: sending frame failed (-49)
[  268.026736][  T762] cdc_ncm 2-1:1.0: CDC Union missing and no IAD found
[  268.033378][  T762] cdc_ncm 2-1:1.0: bind() failure
[  268.038755][  T762] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found
[  268.045354][  T762] cdc_ncm 2-1:1.1: bind() failure
[  268.051085][  T762] usb 2-1: USB disconnect, device number 24
[  268.080885][ T3568] usbhid 5-1:1.0: couldn't find an input interrupt endpoint
[  268.697582][  T306] usb 5-1: USB disconnect, device number 20
[  269.048604][ T9483] device pim6reg1 entered promiscuous mode
[  269.058971][ T9485] loop1: detected capacity change from 0 to 256
[  269.141568][ T9493] SELinux:  Context system_u:object_r:newrole_exec_t:s0 is not valid (left unmapped).
[  269.151316][   T30] audit: type=1400 audit(2000000218.785:1281): avc:  denied  { relabelto } for  pid=9492 comm="syz.1.3524" name="control" dev="sda1" ino=2239 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:newrole_exec_t:s0"
[  269.339680][   T30] audit: type=1400 audit(2000000218.969:1282): avc:  denied  { rmdir } for  pid=7291 comm="syz-executor" name="control" dev="sda1" ino=2239 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:newrole_exec_t:s0"
[  269.369771][ T3568] usb 4-1: new high-speed USB device number 26 using dummy_hcd
[  269.656523][ T9513] device pim6reg1 entered promiscuous mode
[  269.691400][ T9515] loop1: detected capacity change from 0 to 256
[  269.783076][   T30] audit: type=1400 audit(2000000219.375:1283): avc:  denied  { setopt } for  pid=9518 comm="syz.1.3535" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  269.824862][ T3568] usb 4-1: Using ep0 maxpacket: 32
[  269.922332][  T306] usb 1-1: new high-speed USB device number 27 using dummy_hcd
[  269.954926][ T3568] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  269.965988][ T3568] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  269.975531][ T3568] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  269.984434][ T3568] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  270.030715][ T7056] Bluetooth: hci0: command 0x1009 tx timeout
[  270.031427][ T3568] hub 4-1:4.0: USB hub found
[  270.106523][  T762] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[  270.182379][  T306] usb 1-1: Using ep0 maxpacket: 32
[  270.256281][ T9534] loop4: detected capacity change from 0 to 256
[  270.301164][ T9534] incfs: Can't find or create .incomplete dir in ./file0
[  270.308595][ T9534] incfs: mount failed -28
[  270.312905][ T3568] hub 4-1:4.0: 7 ports detected
[  270.334200][ T3568] hub 4-1:4.0: insufficient power available to use all downstream ports
[  270.388227][  T762] usb 2-1: Using ep0 maxpacket: 8
[  270.399173][  T306] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 129, changing to 11
[  270.410280][  T306] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 1023
[  270.540011][  T762] usb 2-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  270.550800][ T3568] hub 4-1:4.0: hub_hub_status failed (err = -71)
[  270.558766][ T3568] hub 4-1:4.0: config failed, can't get hub status (err -71)
[  270.583315][  T306] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  270.592223][  T306] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  270.600566][ T3568] usb 4-1: USB disconnect, device number 26
[  270.606912][  T306] usb 1-1: Product: 摃¡扈䂘챢ꚺ剐觓肬㏖ཉꝉ슊␵伭骡퍥螰倠夑䉁탯㎿桶䦾㋳燀깞鿨薖暎䓕㹨㐢煋凚璼检棤
[  270.621855][  T306] usb 1-1: Manufacturer: 嬈塛䮜烠㪆ꄬî䎧䌧赓⭚Ⰽ쾸틒⣺奙໽蓅ꦄ勤ⱊ嗓숀벨韡㏟蚰囄ל픇됼섖멲縕㱉급綽뤙밺ퟝ땐ᚭ✇◡∌䡉荜ਉ챸׷垎۳靝㐴廀앥뿝⮾铛赠먚쒆
[  270.648296][ T7056] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  270.767471][  T762] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.40
[  270.776548][  T762] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  270.784307][  T762] usb 2-1: Product: syz
[  270.788310][  T762] usb 2-1: Manufacturer: syz
[  270.792716][  T762] usb 2-1: SerialNumber: syz
[  270.941532][  T306] cdc_ncm 1-1:1.0: CDC Union missing and no IAD found
[  270.948109][  T306] cdc_ncm 1-1:1.0: bind() failure
[  270.953603][  T306] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found
[  270.960166][  T306] cdc_ncm 1-1:1.1: bind() failure
[  270.965649][  T306] usb 1-1: USB disconnect, device number 27
[  271.071047][  T762] usbhid 2-1:1.0: couldn't find an input interrupt endpoint
[  271.103320][ T7056] usb 5-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 0
[  271.133583][ T9541] loop3: detected capacity change from 0 to 256
[  271.222493][ T7056] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  271.231397][ T7056] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  271.239372][ T7056] usb 5-1: SerialNumber: syz
[  271.287921][ T7056] cdc_ether: probe of 5-1:1.0 failed with error -22
[  271.300638][ T7056] usb 2-1: USB disconnect, device number 25
[  271.921124][ T9565] loop1: detected capacity change from 0 to 256
[  271.937529][ T7056] usb 1-1: new high-speed USB device number 28 using dummy_hcd
[  272.139287][  T306] usb 5-1: USB disconnect, device number 21
[  272.213218][ T9577] device pim6reg1 entered promiscuous mode
[  272.439060][ T9594] loop3: detected capacity change from 0 to 1024
[  272.492061][ T9594] EXT4-fs (loop3): Ignoring removed orlov option
[  272.498275][ T9594] EXT4-fs (loop3): Ignoring removed nomblk_io_submit option
[  272.513772][ T9594] EXT4-fs (loop3): mounted filesystem without journal. Opts: resgid=0x0000000000000000,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none.
[  272.686086][ T7056] usb 1-1: Using ep0 maxpacket: 32
[  272.815213][ T7056] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  272.826319][ T7056] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  272.835917][ T7056] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  272.844992][ T7056] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  272.891211][ T7056] hub 1-1:4.0: USB hub found
[  272.974235][   T30] audit: type=1400 audit(2000000222.310:1284): avc:  denied  { ioctl } for  pid=9627 comm="syz.4.3581" path="/dev/fuse" dev="devtmpfs" ino=91 ioctlcmd=0xe57e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  273.259705][ T7056] hub 1-1:4.0: 7 ports detected
[  273.281207][ T7056] hub 1-1:4.0: insufficient power available to use all downstream ports
[  273.530141][  T306] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  273.790167][  T306] usb 5-1: Using ep0 maxpacket: 32
[  273.871031][ T7056] hub 1-1:4.0: hub_hub_status failed (err = -71)
[  273.878357][ T7056] hub 1-1:4.0: config failed, can't get hub status (err -71)
[  273.909544][ T7056] usb 1-1: USB disconnect, device number 28
[  273.931564][  T306] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[  273.941209][  T306] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 0
[  274.169533][  T306] usb 5-1: New USB device found, idVendor=0499, idProduct=1010, bcdDevice= 5.f5
[  274.178390][  T306] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  274.186264][  T306] usb 5-1: Product: syz
[  274.190178][  T306] usb 5-1: Manufacturer: syz
[  274.194689][  T306] usb 5-1: SerialNumber: syz
[  274.199583][  T306] usb 5-1: config 0 descriptor??
[  274.434286][  T306] snd-usb-audio: probe of 5-1:0.0 failed with error -12
[  274.541760][  T438] usb 5-1: USB disconnect, device number 22
[  274.561708][ T9688] bridge0: port 1(bridge_slave_0) entered blocking state
[  274.568606][ T9688] bridge0: port 1(bridge_slave_0) entered disabled state
[  274.576175][ T9688] device bridge_slave_0 entered promiscuous mode
[  274.583627][ T9688] bridge0: port 2(bridge_slave_1) entered blocking state
[  274.590707][ T9688] bridge0: port 2(bridge_slave_1) entered disabled state
[  274.598225][ T9688] device bridge_slave_1 entered promiscuous mode
[  274.686739][ T9688] bridge0: port 2(bridge_slave_1) entered blocking state
[  274.693688][ T9688] bridge0: port 2(bridge_slave_1) entered forwarding state
[  274.700883][ T9688] bridge0: port 1(bridge_slave_0) entered blocking state
[  274.707765][ T9688] bridge0: port 1(bridge_slave_0) entered forwarding state
[  274.735235][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  274.743126][   T20] bridge0: port 1(bridge_slave_0) entered disabled state
[  274.750954][   T20] bridge0: port 2(bridge_slave_1) entered disabled state
[  274.771063][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  274.779219][   T20] bridge0: port 1(bridge_slave_0) entered blocking state
[  274.786172][   T20] bridge0: port 1(bridge_slave_0) entered forwarding state
[  274.793601][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  274.801856][   T20] bridge0: port 2(bridge_slave_1) entered blocking state
[  274.808809][   T20] bridge0: port 2(bridge_slave_1) entered forwarding state
[  274.825698][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  274.833783][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  274.849369][  T515] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  274.861357][ T9688] device veth0_vlan entered promiscuous mode
[  274.867723][  T515] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  274.883401][  T515] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  274.891015][  T515] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  274.903065][ T9688] device veth1_macvtap entered promiscuous mode
[  274.910514][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  274.923940][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  274.939987][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  274.986995][ T9698] loop2: detected capacity change from 0 to 2048
[  275.085241][ T9698] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  275.114369][ T9698] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.3606: bg 0: block 234: padding at end of block bitmap is not set
[  275.128926][ T9698] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 65568 with max blocks 2 with error 117
[  275.142177][ T9698] EXT4-fs (loop2): This should not happen!! Data will be lost
[  275.142177][ T9698] 
[  275.296180][ T7056] usb 1-1: new high-speed USB device number 29 using dummy_hcd
[  275.362067][  T526] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  275.388949][  T526] EXT4-fs (loop2): This should not happen!! Data will be lost
[  275.388949][  T526] 
[  275.437456][  T526] EXT4-fs (loop2): Total free blocks count 0
[  275.443284][  T526] EXT4-fs (loop2): Free/Dirty block details
[  275.453458][  T526] EXT4-fs (loop2): free_blocks=0
[  275.458250][  T526] EXT4-fs (loop2): dirty_blocks=64
[  275.463457][  T526] EXT4-fs (loop2): Block reservation details
[  275.469339][  T526] EXT4-fs (loop2): i_reserved_data_blocks=4
[  275.475750][ T9714] loop4: detected capacity change from 0 to 256
[  275.536531][ T9714] FAT-fs (loop4): Unrecognized mount option "shortnaqe=lower" or missing value
[  275.914497][ T9730] loop4: detected capacity change from 0 to 16
[  276.107538][ T7056] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  276.119822][ T9730] erofs: (device loop4): mounted with root inode @ nid 36.
[  276.126897][ T9730] SELinux: (dev loop4, type erofs) getxattr errno 117
[  276.152106][ T7056] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  276.210189][ T7056] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  276.219354][ T7056] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  276.228569][ T7056] usb 1-1: config 0 descriptor??
[  276.651690][ T9759] loop1: detected capacity change from 0 to 16
[  276.673195][    T8] device bridge_slave_1 left promiscuous mode
[  276.674734][ T9759] erofs: (device loop1): mounted with root inode @ nid 36.
[  276.679208][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[  276.693795][    T8] device bridge_slave_0 left promiscuous mode
[  276.699832][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[  276.709053][ T7291] erofs: (device loop1): erofs_fill_dentries: bogus dirent @ nid 46
[  276.723284][ T7291] erofs: (device loop1): erofs_readdir: invalid de[0].nameoff 0 @ nid 89
[  276.732852][ T7291] erofs: (device loop1): erofs_readdir: invalid de[0].nameoff 0 @ nid 89
[  276.750182][    T8] device veth1_macvtap left promiscuous mode
[  276.765266][    T8] device veth0_vlan left promiscuous mode
[  276.838876][ T7056] plantronics 0003:047F:FFFF.001E: unknown main item tag 0x0
[  276.868003][ T7056] plantronics 0003:047F:FFFF.001E: No inputs registered, leaving
[  276.912310][ T7056] plantronics 0003:047F:FFFF.001E: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  277.011116][ T9764] device syzkaller0 entered promiscuous mode
[  277.257475][  T515] usb 1-1: USB disconnect, device number 29
[  277.305128][   T30] audit: type=1326 audit(2000000226.316:1285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9671 comm="syz.0.3598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceddd4dae9 code=0x7ffc0000
[  277.347574][   T30] audit: type=1326 audit(2000000226.335:1286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9671 comm="syz.0.3598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceddd4dae9 code=0x7ffc0000
[  277.380853][   T30] audit: type=1326 audit(2000000226.344:1287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9671 comm="syz.0.3598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=282 compat=0 ip=0x7fceddd4dae9 code=0x7ffc0000
[  277.404946][   T30] audit: type=1326 audit(2000000226.344:1288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9671 comm="syz.0.3598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceddd4dae9 code=0x7ffc0000
[  277.428529][   T30] audit: type=1326 audit(2000000226.344:1289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9671 comm="syz.0.3598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceddd4dae9 code=0x7ffc0000
[  277.451956][   T30] audit: type=1326 audit(2000000226.344:1290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9671 comm="syz.0.3598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fceddd4dae9 code=0x7ffc0000
[  277.475463][   T30] audit: type=1326 audit(2000000226.344:1291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9671 comm="syz.0.3598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceddd4dae9 code=0x7ffc0000
[  277.504445][   T30] audit: type=1326 audit(2000000226.344:1292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9671 comm="syz.0.3598" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceddd4dae9 code=0x7ffc0000
[  277.641139][ T9789] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3639'.
[  277.673561][   T30] audit: type=1326 audit(2000000226.658:1293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9788 comm="syz.4.3639" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f352fa1dae9 code=0x0
[  277.787389][ T9797] loop4: detected capacity change from 0 to 512
[  278.242107][ T9802] loop3: detected capacity change from 0 to 8192
[  278.313759][ T9802] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  280.488833][ T9811] loop1: detected capacity change from 0 to 256
[  280.756733][ T9811] exfat: Unknown parameter '18446744073709551615;z�\Ŭ��A[�x񇫻�
[  280.756733][ T9811] �'
[  281.593167][  T438] usb 1-1: new high-speed USB device number 30 using dummy_hcd
[  281.704173][ T9836] loop2: detected capacity change from 0 to 40427
[  281.767826][ T9836] F2FS-fs (loop2): Found nat_bits in checkpoint
[  281.803724][ T9836] F2FS-fs (loop2): Cannot turn on quotas: -2 on 2
[  281.810579][ T9836] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  281.831265][ T9836] attempt to access beyond end of device
[  281.831265][ T9836] loop2: rw=2049, want=53376, limit=40427
[  281.882621][ T9688] attempt to access beyond end of device
[  281.882621][ T9688] loop2: rw=2049, want=45104, limit=40427
[  282.034988][ T3568] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[  282.363894][ T9851] loop2: detected capacity change from 0 to 8192
[  282.372372][ T7056] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  282.413561][ T9851] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  282.482668][  T438] usb 1-1: Using ep0 maxpacket: 32
[  282.533579][ T3568] usb 4-1: Using ep0 maxpacket: 16
[  282.696295][ T3568] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  282.710512][ T3568] usb 4-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  282.719862][ T3568] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  282.732227][ T3568] usb 4-1: config 0 descriptor??
[  282.846731][  T438] usb 1-1: New USB device found, idVendor=04e6, idProduct=000a, bcdDevice= 2.00
[  283.203989][  T438] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  283.217722][ T9839] UDC core: couldn't find an available UDC or it's busy: -16
[  283.221621][  T438] usb 1-1: Product: syz
[  283.225339][ T9839] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  283.235072][  T438] usb 1-1: Manufacturer: syz
[  283.247167][  T438] usb 1-1: SerialNumber: syz
[  283.255748][  T438] usb 1-1: config 0 descriptor??
[  283.271972][ T3568] hid (null): unknown global tag 0xd
[  283.277095][ T3568] hid (null): unknown global tag 0xe
[  283.283473][ T3568] hid-generic 0003:0158:0100.001F: unknown main item tag 0x1
[  283.290681][ T3568] hid-generic 0003:0158:0100.001F: unexpected long global item
[  283.298518][ T3568] hid-generic: probe of 0003:0158:0100.001F failed with error -22
[  283.302995][  T438] usb-storage 1-1:0.0: USB Mass Storage device detected
[  283.324442][ T9868] netlink: 8 bytes leftover after parsing attributes in process `syz.1.3665'.
[  283.454447][ T7056] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 189, changing to 11
[  283.468108][ T7056] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 58801, setting to 1024
[  283.495724][ T7056] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  283.498629][ T3568] usb 4-1: USB disconnect, device number 27
[  283.684102][ T7056] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  283.693449][ T7056] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  283.694046][  T515] usb 1-1: USB disconnect, device number 30
[  283.709572][ T7056] usb 5-1: config 0 descriptor??
[  283.736132][ T9830] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  284.946211][ T9898] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3676'.
[  284.956786][ T9887] loop2: detected capacity change from 0 to 131072
[  285.026497][ T9887] F2FS-fs (loop2): Test dummy encryption mode enabled
[  285.045392][ T7056] plantronics 0003:047F:FFFF.0020: unknown main item tag 0xd
[  285.050711][ T9887] F2FS-fs (loop2): Found nat_bits in checkpoint
[  285.054417][ T7056] plantronics 0003:047F:FFFF.0020: No inputs registered, leaving
[  285.081058][ T7056] plantronics 0003:047F:FFFF.0020: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  285.115426][ T9887] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  286.415984][ T7056] usb 5-1: USB disconnect, device number 23
[  286.817475][ T9953] loop0: detected capacity change from 0 to 131072
[  286.833409][ T9975] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3706'.
[  286.870310][ T9953] F2FS-fs (loop0): Test dummy encryption mode enabled
[  286.895240][ T9953] F2FS-fs (loop0): Found nat_bits in checkpoint
[  287.126334][ T9953] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  287.320175][ T9989] loop4: detected capacity change from 0 to 40427
[  287.345892][ T9989] F2FS-fs (loop4): invalid crc value
[  287.359315][ T9989] F2FS-fs (loop4): Found nat_bits in checkpoint
[  287.414963][T10001] kvm: pic: level sensitive irq not supported
[  287.415022][T10001] kvm: pic: non byte read
[  287.431078][T10001] kvm: pic: level sensitive irq not supported
[  287.431133][T10001] kvm: pic: non byte read
[  287.431767][ T9989] F2FS-fs (loop4): Cannot turn on quotas: -2 on 1
[  287.448305][ T9989] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  287.515826][ T9989] attempt to access beyond end of device
[  287.515826][ T9989] loop4: rw=2049, want=45104, limit=40427
[  287.561453][   T30] audit: type=1326 audit(2000000235.786:1294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10015 comm="syz.0.3718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceddd4dae9 code=0x7ffc0000
[  287.592845][   T30] audit: type=1326 audit(2000000235.795:1295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10015 comm="syz.0.3718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceddd4dae9 code=0x7ffc0000
[  287.616867][   T30] audit: type=1326 audit(2000000235.805:1296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10015 comm="syz.0.3718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=94 compat=0 ip=0x7fceddd4dae9 code=0x7ffc0000
[  287.640394][   T30] audit: type=1326 audit(2000000235.805:1297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10015 comm="syz.0.3718" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceddd4dae9 code=0x7ffc0000
[  288.225758][T10037] loop4: detected capacity change from 0 to 1024
[  288.257053][T10037] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  288.299641][  T515] usb 1-1: new high-speed USB device number 31 using dummy_hcd
[  288.871744][  T515] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 189, changing to 11
[  288.910128][  T515] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 58801, setting to 1024
[  288.959242][  T515] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  289.015838][  T515] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  289.016471][ T7056] usb 2-1: new high-speed USB device number 26 using dummy_hcd
[  289.035517][  T515] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  289.055067][  T515] usb 1-1: config 0 descriptor??
[  289.077329][T10018] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  289.115930][T10067] loop4: detected capacity change from 0 to 40427
[  289.175586][T10067] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  289.183144][T10067] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  289.194331][T10067] F2FS-fs (loop4): Found nat_bits in checkpoint
[  289.214978][T10067] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  289.226127][T10067] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  289.233258][T10067] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  289.258807][T10067] overlayfs: failed to resolve './file0': -2
[  289.304789][ T7056] usb 2-1: Using ep0 maxpacket: 32
[  289.576309][  T515] plantronics 0003:047F:FFFF.0021: unknown main item tag 0xd
[  289.584242][  T515] plantronics 0003:047F:FFFF.0021: No inputs registered, leaving
[  289.592479][  T515] plantronics 0003:047F:FFFF.0021: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  289.608249][ T7056] usb 2-1: New USB device found, idVendor=04e6, idProduct=000a, bcdDevice= 2.00
[  289.617255][ T7056] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  289.625155][ T7056] usb 2-1: Product: syz
[  289.628019][T10083] serio: Serial port pts0
[  289.629205][ T7056] usb 2-1: Manufacturer: syz
[  289.637656][ T7056] usb 2-1: SerialNumber: syz
[  289.642815][ T7056] usb 2-1: config 0 descriptor??
[  289.684339][ T7056] usb-storage 2-1:0.0: USB Mass Storage device detected
[  289.695105][T10085] loop2: detected capacity change from 0 to 1024
[  289.716506][   T56] usb 4-1: new high-speed USB device number 28 using dummy_hcd
[  289.728791][T10085] EXT4-fs (loop2): Ignoring removed nomblk_io_submit option
[  289.739223][T10085] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a003c018, mo2=0002]
[  289.747215][T10085] System zones: 0-1, 3-12
[  289.751655][T10085] EXT4-fs (loop2): mounted filesystem without journal. Opts: nodiscard,bsddf,auto_da_alloc=0x0000000000000000,nomblk_io_submit,debug_want_extra_isize=0x0000000000000080,lazytime,nodelalloc,acl,debug,,errors=continue. Quota mode: none.
[  289.775542][   T30] audit: type=1400 audit(2000000237.826:1298): avc:  denied  { setattr } for  pid=10084 comm="syz.2.3744" name="file1" dev="loop2" ino=14 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1
[  289.777029][T10085] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2739: inode #14: comm syz.2.3744: corrupted in-inode xattr
[  289.798199][   T30] audit: type=1400 audit(2000000237.826:1299): avc:  denied  { read } for  pid=10084 comm="syz.2.3744" name="file1" dev="loop2" ino=14 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1
[  289.833165][T10085] EXT4-fs (loop2): re-mounted. Opts: (null). Quota mode: none.
[  289.902211][  T515] usb 1-1: USB disconnect, device number 31
[  289.915754][ T7056] usb 2-1: USB disconnect, device number 26
[  290.193410][   T56] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  290.242862][   T56] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  290.288343][   T56] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  290.327877][   T56] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  290.336342][   T56] usb 4-1: config 0 descriptor??
[  290.523492][T10101] loop4: detected capacity change from 0 to 256
[  290.562084][T10101] FAT-fs (loop4): Unrecognized mount option "shortnaqe=lower" or missing value
[  290.586287][T10104] capability: warning: `syz.0.3750' uses 32-bit capabilities (legacy support in use)
[  290.830090][T10116] loop4: detected capacity change from 0 to 16
[  291.201666][T10116] erofs: (device loop4): mounted with root inode @ nid 36.
[  291.208727][T10116] SELinux: (dev loop4, type erofs) getxattr errno 117
[  291.254954][  T515] usb 1-1: new high-speed USB device number 32 using dummy_hcd
[  291.481654][T10126] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  291.647222][T10115] device wireguard0 entered promiscuous mode
[  291.655861][  T515] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  291.666620][  T515] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  291.676097][  T515] usb 1-1: New USB device found, idVendor=046d, idProduct=c222, bcdDevice= 0.00
[  291.685113][  T515] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  291.693502][  T515] usb 1-1: config 0 descriptor??
[  291.710045][   T56] usbhid 4-1:0.0: can't add hid device: -71
[  291.715873][   T56] usbhid: probe of 4-1:0.0 failed with error -71
[  291.723161][   T56] usb 4-1: USB disconnect, device number 28
[  291.766855][   T30] audit: type=1400 audit(2000000239.663:1300): avc:  denied  { write } for  pid=10145 comm="syz.3.3767" name="uhid" dev="devtmpfs" ino=171 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  291.802757][T10148] loop3: detected capacity change from 0 to 256
[  291.808945][  T306] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[  291.841111][T10148] FAT-fs (loop3): Unrecognized mount option "shortnaqe=lower" or missing value
[  293.333793][T10164] loop3: detected capacity change from 0 to 16
[  294.982873][T10164] erofs: (device loop3): mounted with root inode @ nid 36.
[  294.989943][T10164] SELinux: (dev loop3, type erofs) getxattr errno 117
[  295.025297][  T306] usb 5-1: device descriptor read/all, error -71
[  295.242723][T10183] bridge0: port 1(bridge_slave_0) entered blocking state
[  295.249626][T10183] bridge0: port 1(bridge_slave_0) entered disabled state
[  295.256859][T10183] device bridge_slave_0 entered promiscuous mode
[  295.263813][T10183] bridge0: port 2(bridge_slave_1) entered blocking state
[  295.270681][T10183] bridge0: port 2(bridge_slave_1) entered disabled state
[  295.277870][T10183] device bridge_slave_1 entered promiscuous mode
[  295.285411][  T515] usbhid 1-1:0.0: can't add hid device: -71
[  295.291674][  T515] usbhid: probe of 1-1:0.0 failed with error -71
[  295.298726][  T515] usb 1-1: USB disconnect, device number 32
[  295.347552][T10183] bridge0: port 2(bridge_slave_1) entered blocking state
[  295.354424][T10183] bridge0: port 2(bridge_slave_1) entered forwarding state
[  295.361507][T10183] bridge0: port 1(bridge_slave_0) entered blocking state
[  295.368293][T10183] bridge0: port 1(bridge_slave_0) entered forwarding state
[  295.404773][ T1355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  295.412343][ T1355] bridge0: port 1(bridge_slave_0) entered disabled state
[  295.419629][ T1355] bridge0: port 2(bridge_slave_1) entered disabled state
[  295.429216][ T9850] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  295.437392][ T9850] bridge0: port 1(bridge_slave_0) entered blocking state
[  295.444354][ T9850] bridge0: port 1(bridge_slave_0) entered forwarding state
[  295.462006][ T9850] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  295.478359][ T9850] bridge0: port 2(bridge_slave_1) entered blocking state
[  295.485234][ T9850] bridge0: port 2(bridge_slave_1) entered forwarding state
[  295.503728][ T9850] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  295.521732][ T1355] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  295.534051][ T1355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  295.542134][   T56] usb 4-1: new high-speed USB device number 29 using dummy_hcd
[  295.546926][T10183] device veth0_vlan entered promiscuous mode
[  295.556648][  T753] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  295.564946][  T753] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  295.572990][  T753] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  295.591133][ T1355] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  295.598943][   T30] audit: type=1326 audit(2000000243.198:1301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10199 comm="syz.1.3785" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fea4411fae9 code=0x0
[  295.622370][T10183] device veth1_macvtap entered promiscuous mode
[  295.632212][ T9850] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  295.643084][ T9850] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  295.673894][T10204] loop4: detected capacity change from 0 to 256
[  295.708527][T10204] FAT-fs (loop4): Unrecognized mount option "shortnaqe=lower" or missing value
[  295.871272][  T526] device bridge_slave_1 left promiscuous mode
[  295.877516][  T526] bridge0: port 2(bridge_slave_1) entered disabled state
[  295.886456][  T526] device bridge_slave_0 left promiscuous mode
[  295.902373][  T526] bridge0: port 1(bridge_slave_0) entered disabled state
[  295.910590][  T526] device veth1_macvtap left promiscuous mode
[  295.916864][  T526] device veth0_vlan left promiscuous mode
[  295.935917][   T56] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  295.947741][T10211] loop4: detected capacity change from 0 to 16
[  295.959560][   T56] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  295.975810][   T56] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  295.984918][   T56] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  295.994367][T10211] erofs: (device loop4): mounted with root inode @ nid 36.
[  296.001483][T10211] SELinux: (dev loop4, type erofs) getxattr errno 117
[  296.009066][   T56] usb 4-1: config 0 descriptor??
[  296.211993][T10226] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3794'.
[  296.278610][   T30] audit: type=1326 audit(2000000243.826:1302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10225 comm="syz.0.3794" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceddd4dae9 code=0x7ffc0000
[  296.302126][   T30] audit: type=1326 audit(2000000243.826:1303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10225 comm="syz.0.3794" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceddd4dae9 code=0x7ffc0000
[  296.326344][   T30] audit: type=1326 audit(2000000243.826:1304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10225 comm="syz.0.3794" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fceddd4dae9 code=0x7ffc0000
[  296.350072][   T30] audit: type=1326 audit(2000000243.826:1305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10225 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceddd4dae9 code=0x7ffc0000
[  296.375390][   T30] audit: type=1326 audit(2000000243.826:1306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10225 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceddd4dae9 code=0x7ffc0000
[  296.401354][   T30] audit: type=1326 audit(2000000243.872:1307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10225 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fceddd4dae9 code=0x7ffc0000
[  296.426601][   T30] audit: type=1326 audit(2000000243.872:1308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10225 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceddd4dae9 code=0x7ffc0000
[  296.451852][   T30] audit: type=1326 audit(2000000243.872:1309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10225 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceddd4dae9 code=0x7ffc0000
[  296.482521][   T30] audit: type=1326 audit(2000000243.872:1310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10225 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7fceddd4dae9 code=0x7ffc0000
[  296.699573][   T56] usbhid 4-1:0.0: can't add hid device: -71
[  296.838637][   T56] usbhid: probe of 4-1:0.0 failed with error -71
[  296.870165][   T56] usb 4-1: USB disconnect, device number 29
[  297.144483][T10253] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=10253 comm=syz.1.3806
[  297.157458][T10251] netlink: 'syz.4.3804': attribute type 12 has an invalid length.
[  297.444852][T10262] loop4: detected capacity change from 0 to 8192
[  298.345723][T10262] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  302.424108][T10281] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3818'.
[  302.469367][T10283] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=10283 comm=syz.0.3819
[  302.499316][   T30] kauditd_printk_skb: 2304 callbacks suppressed
[  302.499332][   T30] audit: type=1326 audit(2000000249.567:3615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10280 comm="syz.2.3818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f635a121ae9 code=0x7ffc0000
[  302.529080][   T30] audit: type=1326 audit(2000000249.567:3616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10280 comm="syz.2.3818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f635a121ae9 code=0x7ffc0000
[  302.553580][   T30] audit: type=1326 audit(2000000249.594:3617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10280 comm="syz.2.3818" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f635a121ae9 code=0x7ffc0000
[  302.577023][   T30] audit: type=1326 audit(2000000249.594:3618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10280 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f635a121ae9 code=0x7ffc0000
[  302.615199][   T30] audit: type=1326 audit(2000000249.594:3619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10280 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f635a121ae9 code=0x7ffc0000
[  302.654572][   T30] audit: type=1326 audit(2000000249.613:3620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10280 comm=6C2586CE36DB0CCF197CC94F7FCE8F exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f635a121ae9 code=0x7ffc0000
[  411.059878][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  411.066656][    C0] 	(detected by 0, t=10002 jiffies, g=45005, q=454)
[  411.073068][    C0] rcu: All QSes seen, last rcu_preempt kthread activity 10003 (4294976050-4294966047), jiffies_till_next_fqs=1, root ->qsmask 0x0
[  411.086348][    C0] rcu: rcu_preempt kthread starved for 10004 jiffies! g45005 f0x2 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[  411.097373][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  411.107195][    C0] rcu: RCU grace-period kthread stack dump:
[  411.113021][    C0] task:rcu_preempt     state:R  running task     stack:27976 pid:   14 ppid:     2 flags:0x00004000
[  411.123619][    C0] Call Trace:
[  411.126735][    C0]  <TASK>
[  411.129534][    C0]  __schedule+0xccc/0x1590
[  411.133771][    C0]  ? __sched_text_start+0x8/0x8
[  411.138635][    C0]  ? __kasan_check_write+0x14/0x20
[  411.143662][    C0]  schedule+0x11f/0x1e0
[  411.147655][    C0]  schedule_timeout+0x18c/0x370
[  411.152437][    C0]  ? _raw_spin_unlock_irq+0x4e/0x70
[  411.157469][    C0]  ? console_conditional_schedule+0x30/0x30
[  411.163186][    C0]  ? update_process_times+0x200/0x200
[  411.168480][    C0]  ? prepare_to_swait_event+0x308/0x320
[  411.173864][    C0]  rcu_gp_fqs_loop+0x2af/0xf80
[  411.178465][    C0]  ? debug_smp_processor_id+0x17/0x20
[  411.183669][    C0]  ? __note_gp_changes+0x4ab/0x920
[  411.188630][    C0]  ? rcu_gp_init+0xc30/0xc30
[  411.193316][    C0]  ? _raw_spin_unlock_irq+0x4e/0x70
[  411.198686][    C0]  ? rcu_gp_init+0x9cf/0xc30
[  411.203114][    C0]  rcu_gp_kthread+0xa4/0x350
[  411.207540][    C0]  ? _raw_spin_lock+0x1b0/0x1b0
[  411.212224][    C0]  ? wake_nocb_gp+0x1e0/0x1e0
[  411.216739][    C0]  ? __kasan_check_read+0x11/0x20
[  411.221598][    C0]  ? __kthread_parkme+0xb2/0x200
[  411.226430][    C0]  kthread+0x421/0x510
[  411.230279][    C0]  ? wake_nocb_gp+0x1e0/0x1e0
[  411.234790][    C0]  ? kthread_blkcg+0xd0/0xd0
[  411.239222][    C0]  ret_from_fork+0x1f/0x30
[  411.243579][    C0]  </TASK>
[  411.246492][    C0] rcu: Stack dump where RCU GP kthread last ran:
[  411.252601][    C0] NMI backtrace for cpu 0
[  411.257233][    C0] CPU: 0 PID: 10298 Comm: syz.3.3825 Not tainted 5.15.150-syzkaller-00330-g9044d25b8ff5 #0
[  411.267005][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  411.277167][    C0] Call Trace:
[  411.280271][    C0]  <IRQ>
[  411.282962][    C0]  dump_stack_lvl+0x151/0x1b7
[  411.287484][    C0]  ? io_uring_drop_tctx_refs+0x190/0x190
[  411.292942][    C0]  dump_stack+0x15/0x17
[  411.296930][    C0]  nmi_cpu_backtrace+0x2f7/0x300
[  411.301707][    C0]  ? nmi_trigger_cpumask_backtrace+0x270/0x270
[  411.307879][    C0]  ? panic+0x751/0x751
[  411.311775][    C0]  ? arch_trigger_cpumask_backtrace+0x20/0x20
[  411.317684][    C0]  nmi_trigger_cpumask_backtrace+0x15d/0x270
[  411.323492][    C0]  ? arch_trigger_cpumask_backtrace+0x20/0x20
[  411.329432][    C0]  arch_trigger_cpumask_backtrace+0x10/0x20
[  411.335124][    C0]  rcu_check_gp_kthread_starvation+0x1e3/0x250
[  411.341199][    C0]  print_other_cpu_stall+0x112d/0x1340
[  411.346583][    C0]  ? try_invoke_on_locked_down_task+0x2a0/0x2a0
[  411.352665][    C0]  ? print_cpu_stall+0x5f0/0x5f0
[  411.357525][    C0]  ? __kasan_check_write+0x14/0x20
[  411.362461][    C0]  rcu_sched_clock_irq+0xaec/0x12f0
[  411.367496][    C0]  ? rcu_boost_kthread_setaffinity+0x340/0x340
[  411.373840][    C0]  ? hrtimer_run_queues+0x15f/0x440
[  411.378863][    C0]  update_process_times+0x198/0x200
[  411.383912][    C0]  tick_sched_timer+0x188/0x240
[  411.388595][    C0]  ? tick_setup_sched_timer+0x480/0x480
[  411.393968][    C0]  __hrtimer_run_queues+0x41a/0xad0
[  411.399002][    C0]  ? hrtimer_interrupt+0xaa0/0xaa0
[  411.404034][    C0]  ? clockevents_program_event+0x22f/0x300
[  411.409677][    C0]  ? ktime_get_update_offsets_now+0x2ba/0x2d0
[  411.415582][    C0]  hrtimer_interrupt+0x40c/0xaa0
[  411.420360][    C0]  __sysvec_apic_timer_interrupt+0xfd/0x3c0
[  411.426078][    C0]  sysvec_apic_timer_interrupt+0x95/0xc0
[  411.431548][    C0]  </IRQ>
[  411.434323][    C0]  <TASK>
[  411.437099][    C0]  asm_sysvec_apic_timer_interrupt+0x1b/0x20
[  411.442924][    C0] RIP: 0010:_raw_spin_unlock_irq+0x49/0x70
[  411.448559][    C0] Code: 08 00 74 0c 48 c7 c7 d8 54 8d 86 e8 b1 45 e9 fc 48 83 3d 31 29 c4 01 00 74 2a 48 89 df e8 e3 bb 8b fc 66 90 fb bf 01 00 00 00 <e8> 02 ff 82 fc 65 8b 05 c3 41 39 7b 85 c0 74 03 5b 5d c3 e8 c3 55
[  411.468001][    C0] RSP: 0018:ffffc90000d37bb8 EFLAGS: 00000246
[  411.473910][    C0] RAX: 0000000000000001 RBX: ffff888104d9e900 RCX: dffffc0000000000
[  411.481713][    C0] RDX: ffffc90001d61000 RSI: 000000000003ffff RDI: 0000000000000001
[  411.489535][    C0] RBP: ffffc90000d37bc0 R08: ffffffff81456eda R09: fffff520001a6fc0
[  411.497441][    C0] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff888104d9e900
[  411.505232][    C0] R13: ffff888104d9ed20 R14: 0000000000000021 R15: dffffc0000000000
[  411.513051][    C0]  ? get_signal+0x151a/0x1630
[  411.517563][    C0]  ? _raw_spin_unlock_irq+0x41/0x70
[  411.522601][    C0]  get_signal+0x1562/0x1630
[  411.526934][    C0]  arch_do_signal_or_restart+0xbd/0x1680
[  411.532400][    C0]  ? __do_compat_sys_x32_rt_sigreturn+0x1e0/0x1e0
[  411.538648][    C0]  ? _raw_spin_lock_irq+0xa5/0x1b0
[  411.543595][    C0]  ? __kasan_check_write+0x14/0x20
[  411.548645][    C0]  ? _copy_from_user+0x96/0xd0
[  411.553277][    C0]  ? restore_altstack+0x274/0x400
[  411.558101][    C0]  ? get_sigframe_size+0x10/0x10
[  411.562954][    C0]  ? __ia32_sys_sigaltstack+0x70/0x70
[  411.568166][    C0]  ? __do_sys_rt_sigreturn+0x160/0x1e0
[  411.573503][    C0]  exit_to_user_mode_loop+0xa0/0xe0
[  411.578500][    C0]  exit_to_user_mode_prepare+0x5a/0xa0
[  411.583787][    C0]  syscall_exit_to_user_mode+0x26/0x160
[  411.589164][    C0]  do_syscall_64+0x49/0xb0
[  411.593431][    C0]  ? sysvec_apic_timer_interrupt+0x55/0xc0
[  411.599060][    C0]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  411.604806][    C0] RIP: 0033:0x7fec37fa3ae7
[  411.609047][    C0] Code: ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 <0f> 05 48 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89
[  411.628577][    C0] RSP: 002b:00007fec372250f8 EFLAGS: 00000246
[  411.634472][    C0] RAX: 00000000000000ca RBX: 00007fec38131fa8 RCX: 00007fec37fa3ae9
[  411.642386][    C0] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fec38131fa8
[  411.650618][    C0] RBP: 00007fec38131fa0 R08: 00007fec372256c0 R09: 00007fec372256c0
[  411.658435][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fec38131fac
[  411.666491][    C0] R13: 000000000000000b R14: 00007ffd60be6820 R15: 00007ffd60be6908
[  411.674324][    C0]  </TASK>
[  454.917055][    C0] BUG: workqueue lockup - pool cpus=1 node=0 flags=0x0 nice=0 stuck for 140s!
[  454.925853][    C0] BUG: workqueue lockup - pool cpus=1 node=0 flags=0x0 nice=-20 stuck for 140s!
[  454.934725][    C0] Showing busy workqueues and worker pools:
[  454.940445][    C0] workqueue events: flags=0x0
[  454.944949][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=4/256 refcnt=5
[  454.944988][    C0]     in-flight: 39:bpf_prog_free_deferred
[  454.945020][    C0]     pending: bpf_map_free_deferred, psi_avgs_work, kfree_rcu_monitor
[  454.945070][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=2/256 refcnt=3
[  454.945103][    C0]     pending: vmstat_shepherd, kfree_rcu_monitor
[  454.945140][    C0] workqueue events_long: flags=0x0
[  454.985054][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  454.985098][    C0]     pending: br_fdb_cleanup
[  454.985124][    C0] workqueue events_unbound: flags=0x2
[  455.002231][    C0]   pwq 4: cpus=0-1 flags=0x4 nice=0 active=2/512 refcnt=4
[  455.002266][    C0]     pending: toggle_allocation_gate, flush_memcg_stats_dwork
[  455.002307][    C0] workqueue events_power_efficient: flags=0x80
[  455.022622][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=2/256 refcnt=3
[  455.022663][    C0]     pending: wg_ratelimiter_gc_entries, check_lifetime
[  455.022701][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=3/256 refcnt=4
[  455.022736][    C0]     pending: neigh_periodic_work, neigh_periodic_work, gc_worker
[  455.022784][    C0] workqueue rcu_gp: flags=0x8
[  455.056769][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  455.056809][    C0]     pending: process_srcu
[  455.056838][    C0] workqueue mm_percpu_wq: flags=0x8
[  455.073712][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  455.073751][    C0]     pending: vmstat_update
[  455.073776][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  455.073810][    C0]     pending: vmstat_update
[  455.073834][    C0] workqueue pm: flags=0x4
[  455.101670][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  455.101708][    C0]     in-flight: 306:hcd_resume_work
[  455.101741][    C0] workqueue writeback: flags=0x4a
[  455.119107][    C0]   pwq 4: cpus=0-1 flags=0x4 nice=0 active=2/256 refcnt=4
[  455.119147][    C0]     pending: wb_update_bandwidth_workfn, wb_workfn
[  455.119189][    C0] workqueue kblockd: flags=0x18
[  455.137337][    C0]   pwq 3: cpus=1 node=0 flags=0x0 nice=-20 active=1/256 refcnt=2
[  455.137374][    C0]     pending: blk_mq_timeout_work
[  455.137396][    C0]   pwq 1: cpus=0 node=0 flags=0x0 nice=-20 active=1/256 refcnt=2
[  455.137428][    C0]     pending: blk_mq_timeout_work
[  455.137456][    C0] workqueue dm_bufio_cache: flags=0x8
[  455.167712][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  455.167757][    C0]     pending: work_fn
[  455.167781][    C0] workqueue mld: flags=0x40008
[  455.183674][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/1 refcnt=4
[  455.183711][    C0]     pending: mld_dad_work
[  455.183732][    C0]     inactive: mld_dad_work, mld_dad_work
[  455.183761][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/1 refcnt=2
[  455.183793][    C0]     pending: mld_dad_work
[  455.183814][    C0] workqueue ipv6_addrconf: flags=0x40008
[  455.218150][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/1 refcnt=2
[  455.218193][    C0]     pending: addrconf_verify_work
[  455.218233][    C0] workqueue wg-crypt-wg0: flags=0x28
[  455.235601][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  455.235640][    C0]     pending: wg_packet_encrypt_worker
[  455.235668][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  455.235703][    C0]     pending: wg_packet_encrypt_worker
[  455.235729][    C0] workqueue wg-crypt-wg1: flags=0x28
[  455.266513][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  455.266553][    C0]     pending: wg_packet_encrypt_worker
[  455.266577][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  455.266611][    C0]     pending: wg_packet_encrypt_worker
[  455.266637][    C0] workqueue wg-crypt-wg2: flags=0x28
[  455.297324][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  455.297367][    C0]     pending: wg_packet_encrypt_worker
[  455.297392][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  455.297428][    C0]     pending: wg_packet_encrypt_worker
[  455.297454][    C0] workqueue wg-kex-wg0: flags=0x6
[  455.327970][    C0]   pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3
[  455.328006][    C0]     pending: wg_packet_handshake_send_worker
[  455.328033][    C0] workqueue wg-crypt-wg0: flags=0x28
[  455.346107][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  455.346151][    C0]     pending: wg_packet_encrypt_worker
[  455.346178][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  455.346211][    C0]     pending: wg_packet_encrypt_worker
[  455.346236][    C0] workqueue wg-kex-wg1: flags=0x6
[  455.376742][    C0]   pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3
[  455.376778][    C0]     pending: wg_packet_handshake_send_worker
[  455.376806][    C0] workqueue wg-crypt-wg1: flags=0x28
[  455.394891][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  455.394932][    C0]     pending: wg_packet_encrypt_worker
[  455.394957][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  455.394993][    C0]     pending: wg_packet_encrypt_worker
[  455.395021][    C0] workqueue wg-kex-wg0: flags=0x6
[  455.425538][    C0]   pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3
[  455.425576][    C0]     pending: wg_packet_handshake_send_worker
[  455.425603][    C0] workqueue wg-crypt-wg0: flags=0x28
[  455.443675][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  455.443716][    C0]     pending: wg_packet_encrypt_worker
[  455.443745][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  455.443779][    C0]     pending: wg_packet_encrypt_worker
[  455.443804][    C0] workqueue wg-kex-wg1: flags=0x6
[  455.474237][    C0]   pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3
[  455.474274][    C0]     pending: wg_packet_handshake_send_worker
[  455.474300][    C0] workqueue wg-crypt-wg1: flags=0x28
[  455.492374][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  455.492415][    C0]     pending: wg_packet_encrypt_worker
[  455.492439][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  455.492474][    C0]     pending: wg_packet_encrypt_worker
[  455.492503][    C0] workqueue wg-crypt-wg0: flags=0x28
[  455.523280][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  455.523321][    C0]     pending: wg_packet_encrypt_worker
[  455.523346][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  455.523379][    C0]     pending: wg_packet_encrypt_worker
[  455.523404][    C0] workqueue wg-crypt-wg1: flags=0x28
[  455.554178][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  455.554226][    C0]     pending: wg_packet_encrypt_worker
[  455.554258][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  455.554296][    C0]     pending: wg_packet_encrypt_worker
[  455.554322][    C0] workqueue wg-crypt-wg2: flags=0x28
[  455.585186][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  455.585243][    C0]     pending: wg_packet_encrypt_worker
[  455.585271][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  455.585305][    C0]     pending: wg_packet_encrypt_worker
[  455.585332][    C0] workqueue wg-kex-wg0: flags=0x6
[  455.615934][    C0]   pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3
[  455.615974][    C0]     pending: wg_packet_handshake_send_worker
[  455.616004][    C0] workqueue wg-crypt-wg0: flags=0x28
[  455.634249][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  455.634300][    C0]     pending: wg_packet_encrypt_worker
[  455.634334][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  455.634368][    C0]     pending: wg_packet_encrypt_worker
[  455.634395][    C0] workqueue wg-crypt-wg1: flags=0x28
[  455.665185][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  455.665233][    C0]     pending: wg_packet_encrypt_worker
[  455.665261][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  455.665297][    C0]     pending: wg_packet_encrypt_worker
[  455.665321][    C0] workqueue wg-kex-wg2: flags=0x6
[  455.695837][    C0]   pwq 4: cpus=0-1 flags=0x4 nice=0 active=1/256 refcnt=3
[  455.695881][    C0]     pending: wg_packet_handshake_send_worker
[  455.695913][    C0] workqueue wg-crypt-wg2: flags=0x28
[  455.714157][    C0]   pwq 2: cpus=1 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  455.714207][    C0]     pending: wg_packet_encrypt_worker
[  455.714238][    C0]   pwq 0: cpus=0 node=0 flags=0x0 nice=0 active=1/256 refcnt=2
[  455.714276][    C0]     pending: wg_packet_encrypt_worker
[  455.714302][    C0] pool 0: cpus=0 node=0 flags=0x0 nice=0 hung=141s workers=7 idle: 515 753 1355 289 3568 20
[  455.714373][    C0] pool 2: cpus=1 node=0 flags=0x0 nice=0 hung=141s workers=9 idle: 56 9850 7056 762 438 26 307 1313