last executing test programs:

12.066446822s ago: executing program 4 (id=15451):
r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x20000000000, 0x822b01)
sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000e40)={0x15a4, 0x0, 0x400, 0x70bd26, 0x25dfdbfe, {}, [@WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @a}, @WGDEVICE_A_PEERS={0x5a0, 0x8, 0x0, 0x1, [{0x4bc, 0x0, 0x0, 0x1, [@WGPEER_A_ALLOWEDIPS={0x190, 0x9, 0x0, 0x1, [{0x70, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0xb}}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5, 0x3, 0x1}}]}, {0x7c, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010101}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @ipv4={'\x00', '\xff\xff', @loopback}}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x5, 0x3, 0x2}}]}, {0xa0, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010102}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @local}, {0x5}}]}]}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e20, @broadcast}}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "e6b2cad9e28f16a8db5a75c5b08026cb6f37d352c42af1d8951a79a1b408538d"}, @WGPEER_A_ALLOWEDIPS={0x2c0, 0x9, 0x0, 0x1, [{0x7c, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @local}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x1}}]}, {0x88, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @private2={0xfc, 0x2, '\x00', 0x1}}, {0x5}}]}, {0x58, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5, 0x3, 0x3}}]}, {0x88, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private1}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @private0}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5}}]}, {0x7c, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @local}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5}}]}, {0x34, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5, 0x3, 0x3}}]}, {0x28, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, {0x5, 0x3, 0x3}}]}]}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e23, 0xf115, @private0, 0x9}}, @WGPEER_A_PROTOCOL_VERSION={0x8}]}, {0x7c, 0x0, 0x0, 0x1, [@WGPEER_A_PRESHARED_KEY={0x24, 0x2, "0563ab8bfbd97997c16aa5d3c33362a3871d1d22d1fa8bde899cf6ad1aa85650"}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e23, @loopback}}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e23, @remote}}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "707a45cb08f5873b243bb3c19448b964a775e2309d36f08cdf704a221bdd2bb2"}]}, {0x64, 0x0, 0x0, 0x1, [@WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e20, @private=0xa010101}}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @neg}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e24, 0xc0000, @loopback, 0xfffffff0}}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x8}]}]}, @WGDEVICE_A_PRIVATE_KEY={0x24, 0x3, @b}, @WGDEVICE_A_IFINDEX={0x8}, @WGDEVICE_A_PEERS={0xf90, 0x8, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0xe}]}, {0x504, 0x0, 0x0, 0x1, [@WGPEER_A_ALLOWEDIPS={0x4a8, 0x9, 0x0, 0x1, [{0x64, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @private2}, {0x5}}]}, {0x10c, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @local}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @local}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @local}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x2b}}, {0x5}}]}, {0xf4, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @private=0xa010100}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private2}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @local}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x1a}}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @private0={0xfc, 0x0, '\x00', 0x1}}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @rand_addr=' \x01\x00'}, {0x5, 0x3, 0x3}}]}, {0xdc, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @local}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @ipv4={'\x00', '\xff\xff', @multicast2}}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @private=0xa010102}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @local}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @rand_addr=' \x01\x00'}, {0x5, 0x3, 0x3}}]}, {0x4c, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @private2={0xfc, 0x2, '\x00', 0x1}}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x43}}, {0x5, 0x3, 0x2}}]}, {0x118, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0xe}}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private2}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @private1={0xfc, 0x1, '\x00', 0x1}}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @rand_addr=0x64010101}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}}, {0x5, 0x3, 0x3}}]}]}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0xa8c}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e22, 0x5, @mcast2, 0x4}}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e23, 0x4, @private2, 0x86}}, @WGPEER_A_PROTOCOL_VERSION={0x8}]}, {0x1e8, 0x0, 0x0, 0x1, [@WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e20, 0xa, @ipv4={'\x00', '\xff\xff', @multicast1}, 0x5}}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e24, @rand_addr=0x64010101}}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e21, 0x3, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x8}}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e24, 0x6, @private0={0xfc, 0x0, '\x00', 0x1}, 0x6f2}}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_ALLOWEDIPS={0x168, 0x9, 0x0, 0x1, [{0x40, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @local}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5, 0x3, 0x2}}]}, {0x124, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @mcast1}, {0x5, 0x3, 0x1}}, @ipv6={{0x6}, {0x14, 0x2, @private0}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @private0}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @local}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @local}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5, 0x3, 0x2}}]}]}]}, {0x24, 0x0, 0x0, 0x1, [@WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e24, 0xfffffc00, @private1={0xfc, 0x1, '\x00', 0x1}, 0x4a4a57db}}]}, {0x6c, 0x0, 0x0, 0x1, [@WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e20, 0xffffffff, @remote, 0x1}}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @neg}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @b_g}]}, {0x57c, 0x0, 0x0, 0x1, [@WGPEER_A_PRESHARED_KEY={0x24, 0x2, "34f4a6a5850259585e9ecf6a9003d1ef7735fa16335bbd2b70f376e764b1cc1d"}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @neg}, @WGPEER_A_FLAGS={0x8}, @WGPEER_A_ALLOWEDIPS={0x528, 0x9, 0x0, 0x1, [{0xb8, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @private1}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x22}}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x5, 0x3, 0x2}}]}, {0x4c, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @local}, {0x5, 0x3, 0x1}}]}, {0xdc, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @private2={0xfc, 0x2, '\x00', 0x1}}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @mcast1}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @private2}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @private=0xa010100}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @local}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @loopback}, {0x5, 0x3, 0x1}}]}, {0x64, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5}}]}, {0xc4, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @remote}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x1}}]}, {0xf4, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x35}}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @ipv4={'\x00', '\xff\xff', @local}}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @empty}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @private=0xa010102}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @broadcast}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @rand_addr=' \x01\x00'}, {0x5, 0x3, 0x3}}]}, {0x40, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @multicast2}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @private0}, {0x5}}]}, {0xe8, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x32}}}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @local}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @private=0xa010100}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x27}}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @dev={0xfe, 0x80, '\x00', 0x3c}}, {0x5, 0x3, 0x3}}]}]}]}, {0x1ec, 0x0, 0x0, 0x1, [@WGPEER_A_ALLOWEDIPS={0x1c8, 0x9, 0x0, 0x1, [{0x70, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @multicast1}, {0x5, 0x3, 0x3}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5, 0x3, 0x2}}, @ipv4={{0x6}, {0x8, 0x2, @loopback}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x1}}]}, {0x94, 0x0, 0x0, 0x1, [@ipv4={{0x6}, {0x8, 0x2, @private=0xa010102}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @private2}, {0x5, 0x3, 0x1}}, @ipv4={{0x6}, {0x8, 0x2, @local}, {0x5}}, @ipv6={{0x6}, {0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, {0x5}}, @ipv4={{0x6}, {0x8, 0x2, @remote}, {0x5, 0x3, 0x1}}]}, {0x28, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @private0}, {0x5}}]}, {0x28, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, {0x5}}]}, {0x70, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @mcast1}, {0x5, 0x3, 0x2}}, @ipv6={{0x6}, {0x14, 0x2, @mcast2}, {0x5, 0x3, 0x3}}, @ipv6={{0x6}, {0x14, 0x2, @rand_addr=' \x01\x00'}, {0x5, 0x3, 0x3}}]}]}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e23, 0x10, @mcast2, 0x8c3}}]}, {0x9c, 0x0, 0x0, 0x1, [@WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "57b738f192eb20476c5a144a7f84ac9958ba80e4e03cf1643c18d184458c5e82"}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @b_g}, @WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x400}, @WGPEER_A_PROTOCOL_VERSION={0x8}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "90bb97516b9b6fa342f12e424cfec723fded05c5662d20a58f66162e75801d38"}, @WGPEER_A_ENDPOINT4={0x14, 0x4, {0x2, 0x4e24, @empty}}]}]}, @WGDEVICE_A_IFINDEX={0x8}, @WGDEVICE_A_FWMARK={0x8, 0x7, 0x1000}]}, 0x15a4}, 0x1, 0x0, 0x0, 0x4000}, 0x8000)
write$char_usb(r0, &(0x7f0000000040)="e2", 0x1068)

11.994923027s ago: executing program 4 (id=15453):
r0 = syz_usb_connect(0x0, 0x10b, &(0x7f0000000000)=ANY=[@ANYBLOB="05010900b24b6a10e6040300770100000001090224000b010000000904000302ccd4280009050b02000000040009058a02"], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=@base={0xb, 0x5, 0x400, 0x49, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r1, &(0x7f0000000340), 0x0}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000002c0)='kfree\x00', r2}, 0x10)
syz_usb_control_io$hid(r0, 0x0, 0x0)

9.975276713s ago: executing program 4 (id=15462):
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000140)=ANY=[@ANYBLOB="1201000000000040ac054382408b0b00000109022400010000002009040000fd0301000009210000000122010009058103"], 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x4801})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000440)={0x0, &(0x7f0000000340)=""/200, 0x0, 0xc8, 0x1, 0x4}, 0x20)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)={0x1b, 0x0, 0x0, 0x2, 0x0, 0xffffffffffffffff, 0x101, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3, 0x2}, 0x48)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
write$binfmt_aout(r1, &(0x7f0000001240)=ANY=[], 0xfecc)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
r2 = open_tree(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fallocate(r2, 0x0, 0x0, 0x0)
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000240)='./file0\x00', 0x2000084c, &(0x7f0000000180)={[{@iocharset={'iocharset', 0x3d, 'ascii'}}, {@discard}, {@utf8}, {}, {@discard}, {@iocharset={'iocharset', 0x3d, 'iso8859-1'}}, {@gid}, {@uid={'uid', 0x3d, 0xee00}}, {@discard}]}, 0x81, 0x14fe, &(0x7f0000002a80)="$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")
r3 = socket(0x10, 0x3, 0x0)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r4=>0x0, <r5=>0x0}, &(0x7f0000cab000)=0xc)
setregid(0xffffffffffffffff, r5)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.events\x00', 0x275a, 0x0)
r7 = syz_mount_image$fuse(&(0x7f0000000780), &(0x7f00000007c0)='./file0\x00', 0x49000, &(0x7f0000000800)={{'fd', 0x3d, r6}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {}, 0x2c, {'group_id', 0x3d, r5}, 0x2c, {[{@allow_other}, {@default_permissions}, {@allow_other}, {@max_read={'max_read', 0x3d, 0x20}}, {@max_read={'max_read', 0x3d, 0x5}}], [{@smackfsroot={'smackfsroot', 0x3d, 'syzkaller\x00'}}, {@obj_role={'obj_role', 0x3d, '$\\'}}, {@obj_type={'obj_type', 0x3d, '](^^'}}, {@euid_lt={'euid<', r4}}, {@dont_hash}]}}, 0x1, 0x0, &(0x7f0000000980)="f049d0600254e646e3e184e904e427b32fad93514c11c59630543c84a2b50bb163e4b40d4f5cdf0d4cf762a60a9035186e64a20a292e68742bb355a7104dd1d64c1ae72ab30041d458bbf1520e71248552f2cf05bb0ca62f2b994fb5fd2609658b5e7f643c8b16f721b2d1ba816c54a9c7eb5981b25a765667510de98a")
utimensat(r7, 0x0, &(0x7f0000000080)={{0x0, 0x2710}, {0x0, 0x2710}}, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000200), 0x43400)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
syncfs(r8)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200))
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r9 = creat(&(0x7f0000000600)='./file0\x00', 0x0)
fadvise64(r9, 0x0, 0x1, 0x4)
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})

9.376642061s ago: executing program 0 (id=15465):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
ioctl$sock_inet_SIOCSIFBRDADDR(r0, 0x891a, &(0x7f0000000340)={'batadv0\x00', {0x2, 0x4e23, @rand_addr=0x64010100}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f00000000c0)='sched_switch\x00', r1}, 0x10)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000004000000000000000000008500000050000000850000005000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='ext4_ext_remove_space_done\x00', r2}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000086"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
ioctl$TUNSETVNETBE(0xffffffffffffffff, 0x400454de, &(0x7f0000000300)=0x1)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r0, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03859bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b037511bf746bec66ba", 0xffffffffffffff5a, 0x40000, 0x0, 0x27)
recvmsg(r0, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x200045ca}], 0x1, 0x0, 0x46, 0x407006}, 0x104)

8.492328914s ago: executing program 0 (id=15470):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000c500000001f0ffff95"], &(0x7f0000000280)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000002c0)={'syztnl2\x00', &(0x7f0000000680)={'ip6gre0\x00', <r1=>0x0, 0x4, 0xfd, 0x5, 0xd2, 0x4, @dev={0xfe, 0x80, '\x00', 0x10}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x700, 0x40, 0x9, 0xf8}})
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x7, 0x10, &(0x7f0000000740)=ANY=[@ANYBLOB="1b270e151bdaf2c9a949851a6050273cd092dd30b8568d5d1409cca397ad6dbabce28a0700000000000000e361e19b471844dd83818dfa6b51bd6b0111c4c7d0a9484e7a93af6d10ae2000000000000000f2478c746c59d308904869e8d34acd99d0bfe398c4fc032a3f877c20", @ANYBLOB="588f0351d05a945bfd616453f5ca350a3da0582720e019733b8455de114db2d215c64d1a7dd7dce5672fcf1f87f4bb7435e9d0faf3075559cf3e35859dfa4042647a50cc6d93fa1d63342f62991b33ff45e7586794d9fab5857d6a4f83d8cee5b5fbe59b58d6ee231d7d7253d063e8f69e63ac8867ad4cc937359a0c47e71f30c149858b6a5f6d81acf9df346f51eb5a41cc0a98eae7bbc360dbc2870b1d628559662739e373e7108e15846c2ddc1a0263fdb9dadf04587e", @ANYRES64], 0x0, 0x10, 0x0, 0x0, 0x0, 0x30, '\x00', r1, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x90)
r2 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14)
setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f0000000040)={@dev}, 0x14)
socket(0x200000000000011, 0x2, 0x0)
capset(&(0x7f0000000140)={0x20071026}, &(0x7f0000000040)={0x9, 0x8, 0x0, 0xffffffff, 0x3f})
setsockopt$inet6_mreq(r2, 0x29, 0x1c, &(0x7f00000001c0)={@remote}, 0x14)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000080)=0x3)
r3 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x46d, 0xc295, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x3}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0x7}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r3, 0x0, 0x0)
syz_usb_control_io(r3, &(0x7f0000000280)={0x2c, &(0x7f0000000080)=ANY=[@ANYBLOB="001d030000000300be"], 0x0, 0x0, 0x0, 0x0}, 0x0)
r4 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TCGETS2(r4, 0x5405, &(0x7f0000000000))
write$binfmt_elf32(r2, &(0x7f0000000640)=ANY=[], 0x33)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00'})
r6 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f0000000340)=@raw={'raw\x00', 0x3c1, 0x3, 0x2b0, 0x0, 0x111, 0x4b4, 0x0, 0xd4feffff, 0x1e0, 0x20a, 0x278, 0x1e0, 0x278, 0x3, 0x0, {[{{@ipv6={@rand_addr=' \x01\x00', @empty, [], [], 'macvtap0\x00', 'team_slave_0\x00', {}, {}, 0x6}, 0x0, 0xa8, 0xd0}, @common=@inet=@TCPMSS={0x28, 'TCPMSS\x00', 0x0, {0xffff}}}, {{@ipv6={@private2, @local, [], [], 'vlan0\x00', 'ip6erspan0\x00'}, 0x0, 0xa8, 0x110}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'pptp\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x310)
socket$nl_route(0x10, 0x3, 0x0)
socket$key(0xf, 0x3, 0x2)
r7 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000001580), 0x0, 0x0)
read$FUSE(r7, &(0x7f0000001d40)={0x2020}, 0x2020)
pread64(r6, &(0x7f00000000c0)=""/48, 0x30, 0x0)

7.965897967s ago: executing program 4 (id=15472):
openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x0, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, 0x0)
r1 = gettid()
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fc2, 0x1}, 0x48)
bpf$MAP_DELETE_ELEM(0x2, &(0x7f0000000400)={r2, &(0x7f00000004c0)="cf", 0x20000000}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000950000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x80000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
pipe2$9p(&(0x7f0000000240), 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000c00)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000500)=""/219, 0xdb}], 0x1, &(0x7f0000000600)=""/199, 0xc7}, 0x6}, {{&(0x7f0000000180)=@in6={0xa, 0x0, 0x0, @empty}, 0x80, &(0x7f0000000200)=[{&(0x7f0000000700)=""/208, 0xd0}, {&(0x7f0000000300)=""/133, 0x85}, {&(0x7f0000000cc0)=""/118, 0x76}], 0x3, &(0x7f0000000880)=""/145, 0x91}, 0x1}, {{&(0x7f0000000940)=@l2tp={0x2, 0x0, @local}, 0x80, &(0x7f0000000ac0)=[{&(0x7f0000000a40)=""/112, 0x70}], 0x1, &(0x7f0000000b00)=""/218, 0xda}, 0xc42}], 0x3, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x256c, 0x6d, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_TIMERSLACK(0x1d, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x0, 0x6}, 0x48)
r4 = syz_open_dev$evdev(&(0x7f0000000800), 0x0, 0x80000)
ioctl$EVIOCGREP(r4, 0x80084503, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
futex(&(0x7f000000cffc)=0x100000000000004, 0x0, 0x0, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)

6.636532366s ago: executing program 3 (id=15478):
r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x20000000000, 0x822b01)
sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x8000)
write$char_usb(r0, &(0x7f0000000040)="e2", 0x1068)

6.622127498s ago: executing program 3 (id=15479):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_usb_connect$cdc_ncm(0x0, 0x76, &(0x7f0000000240)=ANY=[@ANYBLOB="12010000020000402505a1a44000010203010902640002010000000904010001020d0000052406000105240000000d"], 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059000000"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

6.361597658s ago: executing program 0 (id=15480):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f00000000c0))
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000340)={0x0}, 0x1, 0x0, 0x0, 0x800}, 0x4000044)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0)
write$evdev(0xffffffffffffffff, &(0x7f0000000000), 0x100000008)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f0000000500)=@raw={'raw\x00', 0x9, 0x3, 0x250, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x1b8, 0xffffffff, 0xffffffff, 0x1b8, 0xffffffff, 0x3, &(0x7f0000000000), {[{{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @remote, 0x0, 0xff000000, 'gretap0\x00', 'nr0\x00', {}, {}, 0x0, 0x0, 0x25}, 0x0, 0xa0, 0x100, 0x0, {}, [@common=@addrtype={{0x30}, {0x0, 0x0, 0x0, 0x1}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x0, [0x5, 0x1, 0x0, 0x5], 0x1}, {0x1, [0x0, 0x4, 0x5, 0x0, 0x0, 0x2], 0x0, 0x6}}}}, {{@uncond, 0x0, 0x70, 0xb8}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x6, 0x0, 0xffffffff}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2b0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r5 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r5, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r5, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_mtu(r5, 0x0, 0xa, 0x0, 0x0)
write$binfmt_elf64(r5, &(0x7f0000000e40)=ANY=[], 0xfdef)
syz_open_dev$usbfs(&(0x7f0000000100), 0x205, 0x408003)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x0, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000008000000006ef176ec9657ef93000000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = gettid()
prctl$PR_SCHED_CORE(0x3e, 0x0, r6, 0x0, &(0x7f0000000bc0))
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000680)=ANY=[@ANYBLOB="12010de50000004010080200000000000001090224000100000000090400000103000000092100000001220300090581030000000000"], 0x0)

6.303993033s ago: executing program 2 (id=15481):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000380), 0x1a3900, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000300)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="000002f0d31209000000bc2e79e995"], 0x0)
pipe(&(0x7f0000000100))
write$binfmt_script(r2, &(0x7f0000000100), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x3e, 0x0, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff86dd600a843500140600fe80000000000000e5000000", @ANYRES32=0x41424344], 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000327000/0x18000)=nil, &(0x7f0000000040)=[@text16={0x10, &(0x7f0000000200)="66b9800000c00f326635000800000f300f0f1c9a65660ff3b20618baa000ec672e660f38803d004000000f285473ba6100b021ee66b9800000c00f146635004000000f300f20e06635800000000f22e0f30fa6c8", 0x54}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={0x0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext2\x00', &(0x7f0000000280)='./file1/file0\x00', 0x222e014, &(0x7f0000000580)={[{@barrier_val={'barrier', 0x3d, 0x9}}, {@nojournal_checksum}, {@bsdgroups}, {@auto_da_alloc}, {@data_writeback}], [{@smackfsfloor={'smackfsfloor', 0x3d, 'reno\x00'}}, {@fowner_gt}, {@smackfshat={'smackfshat', 0x3d, 'ext4\x00'}}, {@func={'func', 0x3d, 'PATH_CHECK'}}, {@dont_appraise}, {@appraise}, {@hash}]}, 0xfc, 0x55d, &(0x7f0000000980)="$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")
lsetxattr$system_posix_acl(&(0x7f00000000c0)='./file1/file0\x00', &(0x7f0000000140)='system.posix_acl_access\x00', 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x20000000000000ef, 0x0, &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff400c}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f00000001c0)='host1x_cdma_push_gather\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sendmsg$NL80211_CMD_GET_COALESCE(r2, &(0x7f0000000400)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000004c0)={&(0x7f0000000f00)=ANY=[@ANYBLOB="24000400", @ANYRESDEC=r1, @ANYBLOB="000229bd7000ffdbdf2564000000080001003500000008000300", @ANYRES32=0x0, @ANYBLOB="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", @ANYRES32=r2], 0x24}, 0x1, 0x0, 0x0, 0x44000}, 0x40040000)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00'}, 0x10)
r3 = getpid()
sched_setscheduler(r3, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)

5.476968341s ago: executing program 2 (id=15483):
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000140)=ANY=[@ANYBLOB="1201000000000040ac054382408b0b00000109022400010000002009040000fd0301000009210000000122010009058103"], 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x1c1842, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000440)={0x0, &(0x7f0000000340)=""/200, 0x0, 0xc8, 0x1, 0x4}, 0x20)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000004c0)={0x1b, 0x0, 0x0, 0x2, 0x0, 0xffffffffffffffff, 0x101, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3, 0x2}, 0x48)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
write$binfmt_aout(r1, &(0x7f0000001240)=ANY=[], 0xfecc)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
r2 = open_tree(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fallocate(r2, 0x0, 0x0, 0x0)
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000240)='./file0\x00', 0x2000084c, &(0x7f0000000180)={[{@iocharset={'iocharset', 0x3d, 'ascii'}}, {@discard}, {@utf8}, {}, {@discard}, {@iocharset={'iocharset', 0x3d, 'iso8859-1'}}, {@gid}, {@uid={'uid', 0x3d, 0xee00}}, {@discard}]}, 0x81, 0x14fe, &(0x7f0000002a80)="$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")
r3 = socket(0x10, 0x3, 0x0)
getsockopt$sock_cred(r3, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r4=>0x0, <r5=>0x0}, &(0x7f0000cab000)=0xc)
setregid(0xffffffffffffffff, r5)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.events\x00', 0x275a, 0x0)
r7 = syz_mount_image$fuse(&(0x7f0000000780), &(0x7f00000007c0)='./file0\x00', 0x49000, &(0x7f0000000800)={{'fd', 0x3d, r6}, 0x2c, {'rootmode', 0x3d, 0x4000}, 0x2c, {}, 0x2c, {'group_id', 0x3d, r5}, 0x2c, {[{@allow_other}, {@default_permissions}, {@allow_other}, {@max_read={'max_read', 0x3d, 0x20}}, {@max_read={'max_read', 0x3d, 0x5}}], [{@smackfsroot={'smackfsroot', 0x3d, 'syzkaller\x00'}}, {@obj_role={'obj_role', 0x3d, '$\\'}}, {@obj_type={'obj_type', 0x3d, '](^^'}}, {@euid_lt={'euid<', r4}}, {@dont_hash}]}}, 0x1, 0x0, &(0x7f0000000980)="f049d0600254e646e3e184e904e427b32fad93514c11c59630543c84a2b50bb163e4b40d4f5cdf0d4cf762a60a9035186e64a20a292e68742bb355a7104dd1d64c1ae72ab30041d458bbf1520e71248552f2cf05bb0ca62f2b994fb5fd2609658b5e7f643c8b16f721b2d1ba816c54a9c7eb5981b25a765667510de98a")
utimensat(r7, 0x0, &(0x7f0000000080)={{0x0, 0x2710}, {0x0, 0x2710}}, 0x0)
write$cgroup_int(0xffffffffffffffff, &(0x7f0000000200), 0x43400)
r8 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
syncfs(r8)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200))
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r9 = creat(&(0x7f0000000600)='./file0\x00', 0x0)
fadvise64(r9, 0x0, 0x1, 0x4)
ioctl$SIOCSIFHWADDR(r8, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})

4.821985915s ago: executing program 4 (id=15485):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_usb_connect$cdc_ncm(0x0, 0x76, &(0x7f0000000240)=ANY=[@ANYBLOB="12010000020000402505a1a44000010203010902640002010000000904010001020d0000052406000105240000000d"], 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

3.842578785s ago: executing program 2 (id=15486):
syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./control\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000340)='ext4\x00', &(0x7f00000004c0)='./file2\x00', 0x40c2, &(0x7f0000000300), 0x1, 0x765, &(0x7f0000001040)="$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")
signalfd(0xffffffffffffffff, &(0x7f0000000280), 0x8)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x0, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8}, 0x48)

3.53490222s ago: executing program 3 (id=15487):
syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./control\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000340)='ext4\x00', &(0x7f00000004c0)='./file2\x00', 0x40c2, &(0x7f0000000300), 0x1, 0x765, &(0x7f0000001040)="$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")
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={0x0, r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{}, &(0x7f0000000200), &(0x7f0000000240)}, 0x20)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x6}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_emit_ethernet(0xae, &(0x7f00000005c0)=ANY=[@ANYBLOB="bbbbbbbbbbbbaaaaaaaaaaaa86dd60f4adf700383a0000000000000000000000000000000000ff020000000000000000000000000001"], 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
r5 = socket$inet(0x2, 0x1, 0x0)
bind$inet(r5, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)

3.111501185s ago: executing program 0 (id=15488):
syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./control\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000340)='ext4\x00', &(0x7f00000004c0)='./file2\x00', 0x40c2, &(0x7f0000000300), 0x1, 0x765, &(0x7f0000001040)="$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")
signalfd(0xffffffffffffffff, &(0x7f0000000280), 0x8)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x0, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8}, 0x48)

3.096975236s ago: executing program 1 (id=15489):
r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x20000000000, 0x822b01)
sendmsg$WG_CMD_SET_DEVICE(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x8000)
write$char_usb(r0, &(0x7f0000000040)="e2", 0x1068)

3.032014391s ago: executing program 1 (id=15490):
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x10, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000240)={<r3=>0xffffffffffffffff})
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0x6b, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
close(r3)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r5, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r4}, 0x0, 0x0}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000740)={r5, &(0x7f0000000000), &(0x7f00000000c0)=""/109}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r6}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000140)=ANY=[@ANYBLOB="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"/1548], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x90)
syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000e00)='./file0\x00', 0x90e, &(0x7f0000000e40)={[{@init_itable_val={'init_itable', 0x3d, 0x4}}, {@grpjquota}, {@dioread_lock}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@errors_remount}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x1}}]}, 0x3, 0x44d, &(0x7f0000000280)="$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")

2.946461038s ago: executing program 2 (id=15491):
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x10, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000240)={<r3=>0xffffffffffffffff})
close(r3)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x0, 0x10001, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0x6b, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000000)={0xffffffffffffffff, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffdb4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe15, 0x5, 0x0, 0x0, 0x0, 0x0, 0x8, 0xffffffffffffff4b, 0x0}}, 0x10)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r5, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r4}, 0x0, 0x0}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000140)=ANY=[@ANYBLOB="61154c000000000061138c0000000000bfa000000000000007000000080000002d0301000000000095000000000000006916000000000000bf67000000000000350607000fff07206706000020000000160302000ee60060bf500000000000000f650000000000006507f9ff0100000007070000cddfffff1e75000000000000bf54000000000000070400000400f9ffad4301000000000095000000000000001500000000000000950000000000000032ed3c12dc8c27df8ecf264e0f84f9f17d3c30e32f1754558f2278af6d71d79a5e12814cb1d8a5d4601d295c45a6a0b9bdb7dd3997f9c9c4f6f3be4b369289aa6812b8e007e733a9a4f1b0af3dda82ee45a010fb94fe9de57b9d8a814261bdb94a05000000c6c60bf70d742a81762bab8395fa64810b5b40d893ea8fe0185473d51b546cad3f1d5ab2af27546e7c955ccefa1f6ab689b555202da2e0ec2871b4a7e65836429a527dc47ebe84a423b6c8d345dc8da3085b0ab71ca1b901627b562ed04ae76002d4519af619e3cca4d69e0dee5eb106774a8f3e6916dfec88158f0200000000c8fb730a5c1bf2b2bb71a62951e532b33c57004ffc2e83361997a75fd552bdc206438b8ef4901fd03c16dfda44e2a2235c8ac86d8a297dff0445a15f21dce431e56723888fb126a163f16f920ae2fb494059bba8e3b680324a188076eb685d55c4e9b2ad9bc1172ba7cbebe174aba210d739a018f9bbec63222d20cecac4d03723f1c932b3a6aa57f1ad2e99e0e67ab93716d20000009f0f53acbb40b4f8e2738270b31562ed834f2af97787f696649a462e7ee4bcf8b07a10d6735154beb4000000000000000000000000004000bc00f679629709e7e78f4ddc211bc3ebe6bd9d42ca0140a7afaab43176e65ec1118d50d1e827f3472f4445d253880800000000000000690884f800031e03a651bb96589a7e2e509bcc1d161347623cb5e7ac4629c8ab04871bc47287cd31cc43010000007b40407d000000210000000000000000005f37d83f84e98a523d80bd970d703f37ca364a601ae899a56715a0a62a34c6c94cce6994521629ab028acfc1d926a0f6a5489af8dc2f17923f3c40dfd1970a55c22fe3a5ac000000000000000000000000000000c1eb2d91fb79ea00000000000000bb0d00000000000000000000e4007be511fe32fbc90e2364a55e9bb66ac64423d2d00fea2594e190deae46e26c596f84eba9000000000000003cc3aa39ee4b1386bab561cda886fa642994cacd473b543ccb5f0d7b63924f17c67b13631d22a11dc3c693962895496d4f6e9cc54db6c7205a6b068fff496d2da73c32bd1f61b007e1ff5f1be1969a1ba791ad46d800000000c7f26a0337302f3b41eae59809fd05d12f6186f117b062df67d3a63f3265dd1410eea68208a3f26b2989b832d8b34a34a4f08b34b3042065acaa10856e858d27adee7daf32903d3fc78700d429a2d4c8b6d803eb83eecfe4c7ff9e6ab5a52e83d089dad7a8710e0254f1b11cced7bc3c8da0c54d2ebf9f6f3ff3be4d1458077c2253b0c7c7a0a9fdd63bf910dc20e5cb2a88e59febc47f1212a21f631dbaa74f22bad050e9856b48ae3a03a497c37758537650fe6db88aa3c41fdc3d78e046f6160e1741299e8dc29906870e6431ed1eab5d067a183f064b060a8ec12725d42e3a74863d66bee966b1574f8e01b3f34a267ff0afa1e1c758a0079b747067312e9815a21cb3f1f8150d402a75fd7a55733360040855ed5d1c0d634fc5fb38f84d9d87b27f6b5d91217b728f13e3ee20e69e0ffb2780b1a7af137ff7b4ff139604faf0a4da65396174b4563d54b52f06c870edf0c5d744b5272b44c23488b2bdbff947c4dfa108cbb88202eeb81f428a5b3c299848649e1a6bff52f657a67463d7dbf85ae9321fc2b517dc4a29b9cba8ded5de8206c812439ab129ae818837ee1562078fc524b3baf49a0be9bb7d958d5e87c6c09bf71a894bad62934782cc308e936d7637e07c4a2a3bc87b0da23c00d9ef418cf19e7a8c4c328be0ce91798adc2dca871073f6bd61dc18402cde8bf777b2eaa45c940aabc86b94f8cbde4d470667bee722a6a2af483ad0d3415bd0f9db009acaba9eaea93f7a1d434e00000000000000000000d154ba10a8e51489a614e69722bac300"/1551], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2}, 0x48)

2.473209907s ago: executing program 3 (id=15492):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
ioctl$sock_inet_SIOCSIFBRDADDR(r0, 0x891a, &(0x7f0000000340)={'batadv0\x00', {0x2, 0x4e23, @rand_addr=0x64010100}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f00000000c0)='sched_switch\x00', r1}, 0x10)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000004000000000000000000008500000050000000850000005000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='ext4_ext_remove_space_done\x00', r2}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000002c0)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000086"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
ioctl$TUNSETVNETBE(0xffffffffffffffff, 0x400454de, &(0x7f0000000300)=0x1)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r0, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03859bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b037511bf746bec66ba", 0xffffffffffffff5a, 0x40000, 0x0, 0x27)
recvmsg(r0, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x200045ca}], 0x1, 0x0, 0x46, 0x407006}, 0x104)

2.237163596s ago: executing program 0 (id=15493):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000020000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r0}, 0x10)
futex(&(0x7f0000004000), 0x5, 0x0, 0x0, 0x0, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000200)='kmem_cache_free\x00'}, 0x10)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000000480)={0x1, &(0x7f00000002c0)=[{0x6, 0x0, 0x0, 0x5d0}]}, 0x10)
bpf$ITER_CREATE(0x21, &(0x7f0000000240), 0x8)
sendto$inet(r4, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r4, &(0x7f0000000700)="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", 0xfe6a, 0x40040, 0x0, 0xfffffffffffffe93)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
socket$xdp(0x2c, 0x3, 0x0)

2.203020349s ago: executing program 1 (id=15494):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000a850000000f000000850000009e00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
ioctl$TUNSETVNETBE(0xffffffffffffffff, 0x400454de, &(0x7f0000000300)=0x1)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, 0x0, 0x0)
sendto$inet(r0, &(0x7f00000012c0)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03859bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b037511bf746bec66ba", 0xffffffffffffff5a, 0x40000, 0x0, 0x27)
recvmsg(r0, &(0x7f0000001500)={0x0, 0xa, &(0x7f0000002200)=[{&(0x7f00000035c0)=""/4106, 0x200045ca}], 0x1, 0x0, 0x46, 0x407006}, 0x104)

2.100012018s ago: executing program 1 (id=15495):
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/tcp\x00')
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r1, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x10)
connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0xb, 0xfffffffffffffffe, 0x6, 0x0, 0x1}, 0x0, &(0x7f00000002c0)={0x5, 0x0, 0x0, 0x0, 0x6}, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000df00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r6 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b70200001400a685b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
write$cgroup_devices(r5, &(0x7f0000000100)=ANY=[], 0x10026)
getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000780)={{{@in6=@ipv4={""/10, ""/2, @broadcast}, @in6=@mcast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r8=>0x0}}, {{@in6=@private0}, 0x0, @in=@dev}}, &(0x7f0000000700)=0xe8)
getsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000002bc0)={{{@in=@private, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r9=>0x0}}, {{@in=@multicast2}}}, &(0x7f0000000900)=0xe8)
syz_open_procfs(0x0, &(0x7f0000000300)='mounts\x00')
read$FUSE(r0, &(0x7f0000002d80)={0x2020, 0x0, 0x0, <r10=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f00000053c0)="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", 0x2000, &(0x7f0000005280)={&(0x7f00000003c0)={0x50, 0xc4264de4b4753eb, 0x6, {0x7, 0x28, 0x8, 0x1000200, 0x5, 0x774, 0x3, 0x1}}, &(0x7f0000000280)={0x18, 0x0, 0x80000000, {0x7fffffffffffffff}}, &(0x7f0000000300)={0x18, 0xffffffffffffffda, 0x6, {0x2400000}}, &(0x7f0000000440)={0x18, 0xfffffffffffffff5, 0x401, {0x8000}}, &(0x7f0000000480)={0x18, 0x6d43736a117c7810, 0x2, {0xffff78bb}}, &(0x7f0000000540)={0x28, 0x0, 0x8, {{0x6, 0x17, 0x1}}}, &(0x7f0000000580)={0x60, 0x0, 0x6, {{0x101, 0x3, 0x8000000000000000, 0x8, 0xffffffffffff0000, 0x9, 0x9, 0x80000000}}}, &(0x7f0000000600)={0x18, 0x0, 0x8c, {0x7f}}, &(0x7f00000004c0)=ANY=[@ANYBLOB="1100000000000000cb0500cfa0982b7322e6e099000000000000"], &(0x7f0000000680)={0x20, 0x0, 0x1, {0x0, 0x8}}, &(0x7f0000000880)={0x78, 0x0, 0x0, {0x6, 0xc, 0x0, {0x5, 0x2a7c, 0x8, 0x3, 0xd6, 0x0, 0x4, 0x9, 0x1, 0xc000, 0x1, r8, 0xee01, 0x4fbb}}}, &(0x7f0000000a40)={0x90, 0x0, 0x0, {0x5, 0x0, 0x5, 0x8, 0x10001, 0x3, {0x4, 0xb, 0x10, 0xfffffffffffffff8, 0x5, 0x0, 0x7, 0x0, 0x3, 0x18000, 0x2, r9, 0xee01, 0x800000, 0x5}}}, &(0x7f0000000bc0)=ANY=[@ANYBLOB="b80000000000000000000000000000800700000000000000010000000100000008000000090000006e65742f746370000300000000000000040000000000000035000000030000007b930bd6b698420b460450f6241909ea3f6b03e13e51f6f97f607c253e4aa0509d16661200000000ffffffff00000000000000000000000003000000000000007f00000000000000080000000600f7006e65742f74637000060000000000000006000000000000000000000003000000ebe473d3d950d4d2db8fc18a8ead0b604e4eecc65955816339df7a3adda399744163a102f6ad0abe9b5f86e8fdff0d901cd94bbf4209f93f79cc947344458598b67b5072cb061d8b7bf89f5b99a70f894971da104c1e00e2"], &(0x7f0000004dc0)=ANY=[@ANYBLOB="50010000000000006c060000000000000300000000000000000000000000000008000000000000000400000000000000fa1600004e250000030000000000000007000000000000005706000000000000ff01000000000000000a00000000000009000000000000000100000001004e0a00000010000000000000", @ANYRES32, @ANYRES32, @ANYBLOB="0100000007000000000000000200000000000000090000000000000000000000768f00000300000000000000000000000000000099000000000000000100000000000000ff0f000001000080010000000000000007000000000000000100000000000000050000000000000076000000000000000700000000000000ff01000003000000a60000000080000000000000", @ANYRES32=r10, @ANYRES32=0xee00, @ANYBLOB="09000000fbffffff00000000010000000000000001000100000000000d0000000500000073636865645f73776974636800000000"], &(0x7f0000005180)={0xa0, 0x0, 0x1, {{0x2, 0x2000000000000001, 0x3, 0xfffffffffffff627, 0xa, 0x3, {0x5, 0x7, 0x7, 0x1, 0x401, 0x2, 0xfffffffe, 0xa0000000, 0x2, 0xc000, 0x7, r8, 0x0, 0xfffffffe, 0xe}}}}, &(0x7f0000005240)={0x20, 0x0, 0x46, {0xf, 0x0, 0x0, 0x20000}}})

1.974368048s ago: executing program 2 (id=15496):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000180)='./file0\x00', 0x3, &(0x7f0000002380)={[], [{@fowner_gt}]}, 0x1, 0x614, &(0x7f0000000ac0)="$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")
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
epoll_create1(0x0)
r0 = syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./bus\x00', 0x80048a, &(0x7f0000003f80)=ANY=[@ANYBLOB="726f6469722c7379735f696d6d757461626c652c6572726f72733d636f6e74696e75652c756e695f786c6174653d312c73686f72746e616d653d77696e6e742c756e695f786c6174653d302c636865636b3d7374726963742c636f6465706167653d3935302c696f636861727365743d63703836302c696f636861727365743d63703433372c73686f72746e616d653d77696e6e742c696f636861727365743d63703933322c6e6f6e756d7461696c3d302c6e66732c726f6469722c757466383d312c73686f72746e616d653d6d697865642c757466383d302c00e23bb66df271dc392ed708", @ANYRES16], 0x7, 0x2b2, &(0x7f0000004080)="$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")
syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f00000023c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x21408, 0x0, 0x0, 0x0, &(0x7f0000006380))
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f00000001c0)=ANY=[@ANYRESOCT=r0], &(0x7f0000000100)='GPL\x00', 0x2, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
setrlimit(0x8, &(0x7f0000000080))
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000240), &(0x7f0000000280)=0x5)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
setsockopt$sock_int(r3, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
sendto$inet(r3, 0x0, 0x0, 0xc806, &(0x7f0000000180)={0x2, 0x4e21, @multicast2}, 0x10)
sendto$inet(r3, &(0x7f0000000100)='J', 0xfdbe, 0x4004084, 0x0, 0x11000a00)

1.960211779s ago: executing program 2 (id=15497):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b70800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_usb_connect$cdc_ncm(0x0, 0x76, &(0x7f0000000240)=ANY=[@ANYBLOB="12010000020000402505a1a44000010203010902640002010000000904010001020d0000052406000105240000000d"], 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059000000"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$inet6_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

1.785635213s ago: executing program 4 (id=15498):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000e000000c500000001f0ffff95"], &(0x7f0000000280)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000000)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f00000002c0)={'syztnl2\x00', &(0x7f0000000680)={'ip6gre0\x00', <r1=>0x0, 0x4, 0xfd, 0x5, 0xd2, 0x4, @dev={0xfe, 0x80, '\x00', 0x10}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x700, 0x40, 0x9, 0xf8}})
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x7, 0x10, &(0x7f0000000740)=ANY=[@ANYBLOB="1b270e151bdaf2c9a949851a6050273cd092dd30b8568d5d1409cca397ad6dbabce28a0700000000000000e361e19b471844dd83818dfa6b51bd6b0111c4c7d0a9484e7a93af6d10ae2000000000000000f2478c746c59d308904869e8d34acd99d0bfe398c4fc032a3f877c20", @ANYBLOB="588f0351d05a945bfd616453f5ca350a3da0582720e019733b8455de114db2d215c64d1a7dd7dce5672fcf1f87f4bb7435e9d0faf3075559cf3e35859dfa4042647a50cc6d93fa1d63342f62991b33ff45e7586794d9fab5857d6a4f83d8cee5b5fbe59b58d6ee231d7d7253d063e8f69e63ac8867ad4cc937359a0c47e71f30c149858b6a5f6d81acf9df346f51eb5a41cc0a98eae7bbc360dbc2870b1d628559662739e373e7108e15846c2ddc1a0263fdb9dadf04587e", @ANYRES64], 0x0, 0x10, 0x0, 0x0, 0x0, 0x30, '\x00', r1, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x90)
r2 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14)
setsockopt$inet6_mreq(r2, 0x29, 0x1b, &(0x7f0000000040)={@dev}, 0x14)
capset(&(0x7f0000000140)={0x20071026}, &(0x7f0000000040)={0x9, 0x8, 0x0, 0xffffffff, 0x3f})
ioctl$PIO_UNISCRNMAP(0xffffffffffffffff, 0x4b6a, 0x0)
setsockopt$inet6_mreq(r2, 0x29, 0x1c, &(0x7f00000001c0)={@remote}, 0x14)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000080)=0x3)
r3 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x46d, 0xc295, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x3}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0x7}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r3, 0x0, 0x0)
syz_usb_control_io(r3, &(0x7f0000000280)={0x2c, &(0x7f0000000080)=ANY=[@ANYBLOB="001d030000000300be"], 0x0, 0x0, 0x0, 0x0}, 0x0)
r4 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TCGETS2(r4, 0x5405, &(0x7f0000000000))
write$binfmt_elf32(r2, &(0x7f0000000640)=ANY=[], 0x33)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00'})
r6 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r6, 0x29, 0x40, &(0x7f0000000340)=@raw={'raw\x00', 0x3c1, 0x3, 0x2b0, 0x0, 0x111, 0x4b4, 0x0, 0xd4feffff, 0x1e0, 0x20a, 0x278, 0x1e0, 0x278, 0x3, 0x0, {[{{@ipv6={@rand_addr=' \x01\x00', @empty, [], [], 'macvtap0\x00', 'team_slave_0\x00', {}, {}, 0x6}, 0x0, 0xa8, 0xd0}, @common=@inet=@TCPMSS={0x28, 'TCPMSS\x00', 0x0, {0xffff}}}, {{@ipv6={@private2, @local, [], [], 'vlan0\x00', 'ip6erspan0\x00'}, 0x0, 0xa8, 0x110}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, 'pptp\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x310)
socket$nl_route(0x10, 0x3, 0x0)
socket$key(0xf, 0x3, 0x2)
r7 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000001580), 0x0, 0x0)
read$FUSE(r7, &(0x7f0000001d40)={0x2020}, 0x2020)
pread64(r6, &(0x7f00000000c0)=""/48, 0x30, 0x0)

1.543756553s ago: executing program 3 (id=15499):
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000090024206d041cc340000000000109022400010000"], 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
syz_usb_connect$hid(0x6, 0x36, &(0x7f0000000280)={{0x12, 0x1, 0x300, 0x0, 0x0, 0x0, 0x8, 0x56a, 0x323, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x4, 0x1a0, 0x80, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x1, 0x0, 0x0, {0x9, 0x21, 0x2, 0x6, 0x1, {0x22, 0xf9e}}, {{{0x9, 0x5, 0x81, 0x3, 0x400, 0x7f, 0x8, 0x2}}}}}]}}]}}, &(0x7f0000001780)={0xa, &(0x7f0000000300)={0xa, 0x6, 0x300, 0x94, 0x8, 0x1, 0x40, 0xe}, 0x133, &(0x7f0000001640)={0x5, 0xf, 0x133, 0x6, [@ssp_cap={0xc, 0x10, 0xa, 0x3, 0x0, 0x50, 0xf0f, 0xb}, @ss_cap={0xa, 0x10, 0x3, 0x2, 0x8, 0x4, 0x5, 0x1}, @ss_cap={0xa, 0x10, 0x3, 0x0, 0x7, 0x9, 0xb, 0x101}, @ss_container_id={0x14, 0x10, 0x4, 0xef, "ff8f20504eba7acb21a47bef0994ca7e"}, @generic={0xe6, 0x10, 0x2, "283fa96f9407ad81ef4581b8d39125405a37d86b903518b9e5e2a137fa52a642d647b7efe5232c8d4cf75173a00791d7e5b41d7e5766ef818144864883ddd3a532bcc2b7857dce61095b786d41d7c5a8deb4bac6185958ca64023533ba46a769bca260f2fe6dcf9e8d522efcf46d9731ed61483f02e18b06e3d7c8abde7206bf178cdab56b186c8426ec00b9227b37ca5d032ea1a20fa716a4d94c480cf7a0fcd42747cf790e3fd4c3836039f9da26e575f0f550e8273e101a97a3eb905c3dcfeabf4f5ea7f6e11c6a3ab7da99ec7c903e56a2548779a031f531eedcd6a4d1a08ee93c"}, @ss_container_id={0x14, 0x10, 0x4, 0x5, "c85ba9bbf1ae3439301f370027772303"}]}, 0x1, [{0x4, &(0x7f0000000340)=@lang_id={0x4, 0x3, 0x809}}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00'}, 0x10)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020148100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
syz_emit_ethernet(0x47, &(0x7f0000000380)={@link_local={0x1, 0x80, 0xc2, 0x5}, @broadcast, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "010700", 0x11, 0x11, 0x0, @private1, @mcast2, {[], {0x0, 0xe22, 0x11, 0x0, @gue={{0x1, 0x0, 0x0, 0x0, 0x0, @void}, "d9005f7550"}}}}}}}, 0x0)

1.33514223s ago: executing program 0 (id=15500):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(0xffffffffffffffff, 0x8933, 0x0)
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f00000000c0))
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000340)={0x0}, 0x1, 0x0, 0x0, 0x800}, 0x4000044)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x0)
write$evdev(0xffffffffffffffff, &(0x7f0000000000), 0x100000008)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f0000000500)=@raw={'raw\x00', 0x9, 0x3, 0x250, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x1b8, 0xffffffff, 0xffffffff, 0x1b8, 0xffffffff, 0x3, &(0x7f0000000000), {[{{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @remote, 0x0, 0xff000000, 'gretap0\x00', 'nr0\x00', {}, {}, 0x0, 0x0, 0x25}, 0x0, 0xa0, 0x100, 0x0, {}, [@common=@addrtype={{0x30}, {0x0, 0x0, 0x0, 0x1}}]}, @common=@SET={0x60, 'SET\x00', 0x0, {{0x0, [0x5, 0x1, 0x0, 0x5], 0x1}, {0x1, [0x0, 0x4, 0x5, 0x0, 0x0, 0x2], 0x0, 0x6}}}}, {{@uncond, 0x0, 0x70, 0xb8}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x6, 0x0, 0xffffffff}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2b0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r5 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r5, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r5, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_mtu(r5, 0x0, 0xa, 0x0, 0x0)
write$binfmt_elf64(r5, &(0x7f0000000e40)=ANY=[], 0xfdef)
syz_open_dev$usbfs(&(0x7f0000000100), 0x205, 0x408003)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x0, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000008000000006ef176ec9657ef93000000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r6 = gettid()
prctl$PR_SCHED_CORE(0x3e, 0x0, r6, 0x0, &(0x7f0000000bc0))
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000680)=ANY=[@ANYBLOB="12010de50000004010080200000000000001090224000100000000090400000103000000092100000001220300090581030000000000"], 0x0)

1.124916898s ago: executing program 1 (id=15501):
syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./control\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000340)='ext4\x00', &(0x7f00000004c0)='./file2\x00', 0x40c2, &(0x7f0000000300), 0x1, 0x765, &(0x7f0000001040)="$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")
signalfd(0xffffffffffffffff, &(0x7f0000000280), 0x8)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8}, 0x48)

186.694274ms ago: executing program 1 (id=15502):
syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./control\x00', 0x0)
syz_mount_image$ext4(&(0x7f0000000340)='ext4\x00', &(0x7f00000004c0)='./file2\x00', 0x40c2, &(0x7f0000000300), 0x1, 0x765, &(0x7f0000001040)="$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")
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={0x0, r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{}, &(0x7f0000000200), &(0x7f0000000240)}, 0x20)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x6}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
syz_emit_ethernet(0xae, &(0x7f00000005c0)=ANY=[@ANYBLOB="bbbbbbbbbbbbaaaaaaaaaaaa86dd60f4adf700383a0000000000000000000000000000000000ff020000000000000000000000000001"], 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10)
r5 = socket$inet(0x2, 0x1, 0x0)
bind$inet(r5, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)

0s ago: executing program 3 (id=15503):
r0 = socket$nl_route(0x10, 0x3, 0x0)
connect$netlink(r0, 0x0, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000004c0)='./file2\x00', 0x40c2, &(0x7f0000000300), 0x1, 0x751, &(0x7f0000002880)="$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")
signalfd(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x0, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="c8010000", @ANYRES16=r5, @ANYBLOB="0100000000000000000001000000060006000000000024000300a0cb879a47f5bc644c0e693fa6d031c74a1553b6e901b9ff2f518c78042fb5426c010880f4000080060005000180000024000100dbffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff240002001bc715ee4868b12a49f4df11bc05475489f6a27c4d6483ad2fa5e45903b0ce851400040002000000ac1414aa00000000000000008c00098028000080060001000a00000014000200ff020000000000000000000000000001050003000000000028000080060001000a000000140002000000000000000000000000000000000105000300030000001c000080060001000200da0008000200e000000105000300000000001c000080060001000200000008000200ac141400050003000000000074000080200004000a004e2200000000fc0000000000000000000000000000000400000024000100dbffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff080003000100000024000200cde20bc0d9b90ac13642d7b66459dd9db5e20b4b16d3d23f2cb03a8aa417dce6080007000000000014000200776730"], 0x1c8}}, 0x0)

kernel console output (not intermixed with test programs):

294967295 subj=root:sysadm_r:sysadm_t pid=23558 comm="syz.4.15186" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f857001c299 code=0x7ffc0000
[ 2722.388193][T23561] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[ 2722.552160][T23561] EXT4-fs (loop3): Errors on filesystem, clearing orphan list.
[ 2722.559696][T23561] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2722.632733][T23573] loop1: detected capacity change from 0 to 512
[ 2722.668577][T23573] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 2722.682963][T23573] EXT4-fs (loop1): 1 orphan inode deleted
[ 2722.688566][T23573] EXT4-fs (loop1): 1 truncate cleaned up
[ 2722.694000][T23573] EXT4-fs (loop1): mounted filesystem without journal. Opts: init_itable=0x0000000000000004,grpjquota=,dioread_lock,inode_readahead_blks=0x0000000000010000,errors=remount-ro,journal_ioprio=0x0000000000000001,. Quota mode: none.
[ 2722.735686][   T26] usbhid 3-1:0.0: can't add hid device: -71
[ 2722.747641][   T26] usbhid: probe of 3-1:0.0 failed with error -71
[ 2722.841879][   T26] usb 3-1: USB disconnect, device number 121
[ 2723.512211][T23598] UDC core: couldn't find an available UDC or it's busy: -16
[ 2723.520407][T23598] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[ 2724.156769][T23606] loop4: detected capacity change from 0 to 1024
[ 2724.196014][T23606] EXT4-fs (loop4): Ignoring removed orlov option
[ 2724.202278][T23606] EXT4-fs (loop4): Ignoring removed nomblk_io_submit option
[ 2724.216819][T23606] EXT4-fs (loop4): mounted filesystem without journal. Opts: noblock_validity,sb=0xffffffffffffffe0,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none.
[ 2724.330036][T23615] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[ 2724.445706][T20067] usb 4-1: new high-speed USB device number 73 using dummy_hcd
[ 2724.855738][T20067] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[ 2724.904630][T20067] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2724.931446][T20067] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2724.941395][T20067] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[ 2725.045536][T20067] usb 4-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[ 2725.054440][T20067] usb 4-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[ 2725.062671][T20067] usb 4-1: Manufacturer: syz
[ 2725.067885][T20067] usb 4-1: config 0 descriptor??
[ 2725.095723][T23637] FAULT_INJECTION: forcing a failure.
[ 2725.095723][T23637] name failslab, interval 1, probability 0, space 0, times 0
[ 2725.108263][T23637] CPU: 1 PID: 23637 Comm: syz.4.15209 Not tainted 5.15.151-syzkaller-00059-g5356d2f17edf #0
[ 2725.118133][T23637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2725.128026][T23637] Call Trace:
[ 2725.131150][T23637]  <TASK>
[ 2725.133927][T23637]  dump_stack_lvl+0x151/0x1b7
[ 2725.138442][T23637]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 2725.143908][T23637]  ? __kasan_slab_alloc+0xc3/0xe0
[ 2725.148771][T23637]  ? __kasan_slab_alloc+0xb1/0xe0
[ 2725.153633][T23637]  ? slab_post_alloc_hook+0x53/0x2c0
[ 2725.158752][T23637]  ? dup_task_struct+0x53/0xc60
[ 2725.163435][T23637]  ? copy_process+0x5c4/0x3290
[ 2725.168036][T23637]  ? kernel_clone+0x21e/0x9e0
[ 2725.172550][T23637]  dump_stack+0x15/0x17
[ 2725.176543][T23637]  should_fail+0x3c6/0x510
[ 2725.180795][T23637]  __should_failslab+0xa4/0xe0
[ 2725.185397][T23637]  should_failslab+0x9/0x20
[ 2725.189737][T23637]  slab_pre_alloc_hook+0x37/0xd0
[ 2725.194508][T23637]  kmem_cache_alloc_trace+0x48/0x210
[ 2725.199631][T23637]  ? __get_vm_area_node+0x117/0x360
[ 2725.204664][T23637]  __get_vm_area_node+0x117/0x360
[ 2725.209526][T23637]  __vmalloc_node_range+0xe2/0x8d0
[ 2725.214469][T23637]  ? copy_process+0x5c4/0x3290
[ 2725.219072][T23637]  ? slab_post_alloc_hook+0x72/0x2c0
[ 2725.224189][T23637]  ? dup_task_struct+0x53/0xc60
[ 2725.228879][T23637]  ? dup_task_struct+0x53/0xc60
[ 2725.233564][T23637]  dup_task_struct+0x416/0xc60
[ 2725.238164][T23637]  ? copy_process+0x5c4/0x3290
[ 2725.242762][T23637]  ? __kasan_check_write+0x14/0x20
[ 2725.247712][T23637]  copy_process+0x5c4/0x3290
[ 2725.252140][T23637]  ? __kasan_check_write+0x14/0x20
[ 2725.257084][T23637]  ? proc_fail_nth_write+0x20b/0x290
[ 2725.262204][T23637]  ? selinux_file_permission+0x2c4/0x570
[ 2725.267673][T23637]  ? fsnotify_perm+0x6a/0x5d0
[ 2725.272187][T23637]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[ 2725.277134][T23637]  ? vfs_write+0x9ec/0x1110
[ 2725.281474][T23637]  ? kmem_cache_free+0x116/0x2e0
[ 2725.286247][T23637]  kernel_clone+0x21e/0x9e0
[ 2725.290587][T23637]  ? file_end_write+0x1c0/0x1c0
[ 2725.295272][T23637]  ? create_io_thread+0x1e0/0x1e0
[ 2725.300133][T23637]  ? mutex_unlock+0xb2/0x260
[ 2725.304559][T23637]  ? __mutex_lock_slowpath+0x10/0x10
[ 2725.309682][T23637]  __x64_sys_clone+0x23f/0x290
[ 2725.314283][T23637]  ? __do_sys_vfork+0x130/0x130
[ 2725.318967][T23637]  ? ksys_write+0x260/0x2c0
[ 2725.323306][T23637]  ? debug_smp_processor_id+0x17/0x20
[ 2725.328514][T23637]  ? fpregs_assert_state_consistent+0xb6/0xe0
[ 2725.334416][T23637]  ? exit_to_user_mode_prepare+0x39/0xa0
[ 2725.339885][T23637]  do_syscall_64+0x3d/0xb0
[ 2725.344138][T23637]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 2725.349867][T23637] RIP: 0033:0x7f857001c299
[ 2725.354119][T23637] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2725.373561][T23637] RSP: 002b:00007f856ec9bff8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2725.381804][T23637] RAX: ffffffffffffffda RBX: 00007f85701aaf80 RCX: 00007f857001c299
[ 2725.389615][T23637] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 2725.397426][T23637] RBP: 00007f856ec9c0a0 R08: 0000000000000000 R09: 0000000000000000
[ 2725.405326][T23637] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2725.413135][T23637] R13: 000000000000000b R14: 00007f85701aaf80 R15: 00007ffd78233e68
[ 2725.420952][T23637]  </TASK>
[ 2725.427463][T23637] syz.4.15209: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz4,mems_allowed=0
[ 2725.448783][T23608] loop3: detected capacity change from 0 to 256
[ 2725.454923][T23637] CPU: 0 PID: 23637 Comm: syz.4.15209 Not tainted 5.15.151-syzkaller-00059-g5356d2f17edf #0
[ 2725.464738][T23637] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2725.474633][T23637] Call Trace:
[ 2725.477755][T23637]  <TASK>
[ 2725.480531][T23637]  dump_stack_lvl+0x151/0x1b7
[ 2725.485045][T23637]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 2725.490514][T23637]  ? pr_cont_kernfs_name+0xf0/0x100
[ 2725.495547][T23637]  dump_stack+0x15/0x17
[ 2725.499538][T23637]  warn_alloc+0x21a/0x390
[ 2725.503706][T23637]  ? should_failslab+0x9/0x20
[ 2725.508218][T23637]  ? zone_watermark_ok_safe+0x270/0x270
[ 2725.513599][T23637]  ? __get_vm_area_node+0x347/0x360
[ 2725.518633][T23637]  __vmalloc_node_range+0x2c1/0x8d0
[ 2725.523666][T23637]  ? slab_post_alloc_hook+0x72/0x2c0
[ 2725.528787][T23637]  ? dup_task_struct+0x53/0xc60
[ 2725.533474][T23637]  ? dup_task_struct+0x53/0xc60
[ 2725.538160][T23637]  dup_task_struct+0x416/0xc60
[ 2725.542764][T23637]  ? copy_process+0x5c4/0x3290
[ 2725.547361][T23637]  ? __kasan_check_write+0x14/0x20
[ 2725.552309][T23637]  copy_process+0x5c4/0x3290
[ 2725.556735][T23637]  ? __kasan_check_write+0x14/0x20
[ 2725.561682][T23637]  ? proc_fail_nth_write+0x20b/0x290
[ 2725.566837][T23637]  ? selinux_file_permission+0x2c4/0x570
[ 2725.572271][T23637]  ? fsnotify_perm+0x6a/0x5d0
[ 2725.576785][T23637]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[ 2725.581734][T23637]  ? vfs_write+0x9ec/0x1110
[ 2725.586070][T23637]  ? kmem_cache_free+0x116/0x2e0
[ 2725.590844][T23637]  kernel_clone+0x21e/0x9e0
[ 2725.595187][T23637]  ? file_end_write+0x1c0/0x1c0
[ 2725.599871][T23637]  ? create_io_thread+0x1e0/0x1e0
[ 2725.604731][T23637]  ? mutex_unlock+0xb2/0x260
[ 2725.609157][T23637]  ? __mutex_lock_slowpath+0x10/0x10
[ 2725.614279][T23637]  __x64_sys_clone+0x23f/0x290
[ 2725.618878][T23637]  ? __do_sys_vfork+0x130/0x130
[ 2725.623562][T23637]  ? ksys_write+0x260/0x2c0
[ 2725.627917][T23637]  ? debug_smp_processor_id+0x17/0x20
[ 2725.633114][T23637]  ? fpregs_assert_state_consistent+0xb6/0xe0
[ 2725.639017][T23637]  ? exit_to_user_mode_prepare+0x39/0xa0
[ 2725.644488][T23637]  do_syscall_64+0x3d/0xb0
[ 2725.648734][T23637]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 2725.654462][T23637] RIP: 0033:0x7f857001c299
[ 2725.658719][T23637] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2725.678154][T23637] RSP: 002b:00007f856ec9bff8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2725.686400][T23637] RAX: ffffffffffffffda RBX: 00007f85701aaf80 RCX: 00007f857001c299
[ 2725.694211][T23637] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 2725.702022][T23637] RBP: 00007f856ec9c0a0 R08: 0000000000000000 R09: 0000000000000000
[ 2725.709834][T23637] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2725.717646][T23637] R13: 000000000000000b R14: 00007f85701aaf80 R15: 00007ffd78233e68
[ 2725.725464][T23637]  </TASK>
[ 2725.737773][T23637] Mem-Info:
[ 2725.740753][T23637] active_anon:145 inactive_anon:12457 isolated_anon:0
[ 2725.740753][T23637]  active_file:18771 inactive_file:4043 isolated_file:0
[ 2725.740753][T23637]  unevictable:0 dirty:212 writeback:0
[ 2725.740753][T23637]  slab_reclaimable:7537 slab_unreclaimable:22885
[ 2725.740753][T23637]  mapped:26100 shmem:228 pagetables:612 bounce:0
[ 2725.740753][T23637]  kernel_misc_reclaimable:0
[ 2725.740753][T23637]  free:1586404 free_pcp:21615 free_cma:0
[ 2725.786350][T23637] Node 0 active_anon:580kB inactive_anon:50228kB active_file:75084kB inactive_file:16172kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:104400kB dirty:948kB writeback:0kB shmem:912kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:5036kB pagetables:2448kB all_unreclaimable? no
[ 2725.816691][T11344] usb 2-1: new high-speed USB device number 54 using dummy_hcd
[ 2725.825923][T23608] exfat: Deprecated parameter 'utf8'
[ 2725.828459][T23637] DMA32 free:2974676kB min:62568kB low:78208kB high:93848kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3145324kB managed:2978980kB mlocked:0kB bounce:0kB free_pcp:4304kB local_pcp:1828kB free_cma:0kB
[ 2725.902824][T23608] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xa4dad179, utbl_chksum : 0xe619d30d)
[ 2725.912997][T23637] lowmem_reserve[]: 0 3941 3941
[ 2725.919558][T23637] Normal free:3370556kB min:84884kB low:106104kB high:127324kB reserved_highatomic:0KB active_anon:556kB inactive_anon:63520kB active_file:75044kB inactive_file:16172kB unevictable:0kB writepending:1040kB present:5242880kB managed:4035584kB mlocked:0kB bounce:0kB free_pcp:68580kB local_pcp:18388kB free_cma:0kB
[ 2725.948996][T23637] lowmem_reserve[]: 0 0 0
[ 2725.953152][T23637] DMA32: 3*4kB (M) 1*8kB (M) 2*16kB (M) 3*32kB (M) 3*64kB (M) 3*128kB (M) 3*256kB (M) 3*512kB (M) 4*1024kB (UM) 3*2048kB (UM) 723*4096kB (M) = 2974676kB
[ 2725.968529][T23637] Normal: 1289*4kB (UME) 1231*8kB (UME) 1248*16kB (UME) 863*32kB (UME) 1093*64kB (UME) 759*128kB (UME) 275*256kB (UM) 137*512kB (UME) 100*1024kB (UM) 33*2048kB (UM) 691*4096kB (UM) = 3370556kB
[ 2725.987970][T23637] 26079 total pagecache pages
[ 2725.992779][T23637] 193 pages in swap cache
[ 2725.997249][T23637] Swap cache stats: add 5597, delete 5404, find 2057/2057
[ 2726.004336][T23637] Free swap  = 123880kB
[ 2726.008899][T23637] Total swap = 124996kB
[ 2726.012916][T23637] 2097051 pages RAM
[ 2726.016824][T23637] 0 pages HighMem/MovableOnly
[ 2726.021330][T23637] 343410 pages reserved
[ 2726.025321][T23637] 0 pages cma reserved
[ 2726.105548][T11344] usb 2-1: Using ep0 maxpacket: 32
[ 2726.445552][T11344] usb 2-1: New USB device found, idVendor=0b54, idProduct=62a0, bcdDevice=a0.56
[ 2726.454564][T11344] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2726.462356][T11344] usb 2-1: Product: syz
[ 2726.466440][T11344] usb 2-1: Manufacturer: syz
[ 2726.470815][T11344] usb 2-1: SerialNumber: syz
[ 2726.475930][T11344] usb 2-1: config 0 descriptor??
[ 2726.645537][T20067] usbhid 4-1:0.0: can't add hid device: -71
[ 2726.651347][T20067] usbhid: probe of 4-1:0.0 failed with error -71
[ 2726.658553][T20067] usb 4-1: USB disconnect, device number 73
[ 2726.721743][T20122] usb 2-1: USB disconnect, device number 54
[ 2727.452904][T23670] loop3: detected capacity change from 0 to 1024
[ 2727.459446][T23672] FAULT_INJECTION: forcing a failure.
[ 2727.459446][T23672] name failslab, interval 1, probability 0, space 0, times 0
[ 2727.471936][T23672] CPU: 1 PID: 23672 Comm: syz.0.15220 Not tainted 5.15.151-syzkaller-00059-g5356d2f17edf #0
[ 2727.481738][T23672] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2727.491634][T23672] Call Trace:
[ 2727.494843][T23672]  <TASK>
[ 2727.497623][T23672]  dump_stack_lvl+0x151/0x1b7
[ 2727.502223][T23672]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 2727.507687][T23672]  ? kmem_cache_free+0x116/0x2e0
[ 2727.512549][T23672]  ? kasan_set_track+0x5d/0x70
[ 2727.517162][T23672]  ? kasan_set_free_info+0x23/0x40
[ 2727.522093][T23672]  ? ____kasan_slab_free+0x126/0x160
[ 2727.527215][T23672]  ? __kasan_slab_free+0x11/0x20
[ 2727.531989][T23672]  ? kmem_cache_free+0x116/0x2e0
[ 2727.536847][T23672]  ? putname+0xfa/0x150
[ 2727.540844][T23672]  dump_stack+0x15/0x17
[ 2727.544835][T23672]  should_fail+0x3c6/0x510
[ 2727.549088][T23672]  __should_failslab+0xa4/0xe0
[ 2727.553688][T23672]  should_failslab+0x9/0x20
[ 2727.558029][T23672]  slab_pre_alloc_hook+0x37/0xd0
[ 2727.562801][T23672]  __kmalloc+0x6d/0x270
[ 2727.566799][T23672]  ? bpf_test_init+0x101/0x1b0
[ 2727.571393][T23672]  bpf_test_init+0x101/0x1b0
[ 2727.575820][T23672]  bpf_prog_test_run_skb+0x268/0x1420
[ 2727.581025][T23672]  ? __kasan_check_write+0x14/0x20
[ 2727.585974][T23672]  ? proc_fail_nth_write+0x20b/0x290
[ 2727.591094][T23672]  ? selinux_file_permission+0x2c4/0x570
[ 2727.596562][T23672]  ? proc_fail_nth_read+0x210/0x210
[ 2727.601594][T23672]  ? fsnotify_perm+0x6a/0x5d0
[ 2727.606110][T23672]  ? __bpf_prog_test_run_raw_tp+0x1d0/0x1d0
[ 2727.611956][T23672]  ? __kasan_check_write+0x14/0x20
[ 2727.616894][T23672]  ? fput_many+0x160/0x1b0
[ 2727.621148][T23672]  ? __bpf_prog_test_run_raw_tp+0x1d0/0x1d0
[ 2727.626873][T23672]  bpf_prog_test_run+0x3b0/0x630
[ 2727.631647][T23672]  ? bpf_prog_query+0x220/0x220
[ 2727.636337][T23672]  ? selinux_bpf+0xd2/0x100
[ 2727.640679][T23672]  ? security_bpf+0x82/0xb0
[ 2727.645099][T23672]  __sys_bpf+0x525/0x760
[ 2727.649183][T23672]  ? fput_many+0x160/0x1b0
[ 2727.653435][T23672]  ? bpf_link_show_fdinfo+0x2d0/0x2d0
[ 2727.658639][T23672]  ? debug_smp_processor_id+0x17/0x20
[ 2727.663845][T23672]  ? fpregs_assert_state_consistent+0xb6/0xe0
[ 2727.669841][T23672]  __x64_sys_bpf+0x7c/0x90
[ 2727.674097][T23672]  do_syscall_64+0x3d/0xb0
[ 2727.678349][T23672]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 2727.684075][T23672] RIP: 0033:0x7fefb5e5d299
[ 2727.688334][T23672] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2727.707769][T23672] RSP: 002b:00007fefb4add048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 2727.716013][T23672] RAX: ffffffffffffffda RBX: 00007fefb5febf80 RCX: 00007fefb5e5d299
[ 2727.723824][T23672] RDX: 0000000000000048 RSI: 0000000020000300 RDI: 000000000000000a
[ 2727.731637][T23672] RBP: 00007fefb4add0a0 R08: 0000000000000000 R09: 0000000000000000
[ 2727.739454][T23672] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2727.747259][T23672] R13: 000000000000004d R14: 00007fefb5febf80 R15: 00007ffc403e8678
[ 2727.755073][T23672]  </TASK>
[ 2727.806327][T23670] EXT4-fs (loop3): Ignoring removed orlov option
[ 2727.832746][T23670] EXT4-fs (loop3): Ignoring removed nomblk_io_submit option
[ 2727.856257][T23670] EXT4-fs (loop3): mounted filesystem without journal. Opts: noblock_validity,sb=0xffffffffffffffe0,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none.
[ 2727.956780][T20122] usb 2-1: new high-speed USB device number 55 using dummy_hcd
[ 2727.975625][   T30] kauditd_printk_skb: 692 callbacks suppressed
[ 2727.975640][   T30] audit: type=1326 audit(1721969699.411:7237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23659 comm="syz.1.15216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f83ef4c5e9b code=0x7ffc0000
[ 2728.007284][   T30] audit: type=1326 audit(1721969699.441:7238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23659 comm="syz.1.15216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f83ef4c5e9b code=0x7ffc0000
[ 2729.095983][T23694] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 2729.125538][  T313] usb 5-1: new high-speed USB device number 60 using dummy_hcd
[ 2729.280145][T20122] usb 2-1: Using ep0 maxpacket: 8
[ 2729.446748][   T30] audit: type=1326 audit(1721969700.881:7239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23659 comm="syz.1.15216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f83ef4c5e9b code=0x7ffc0000
[ 2729.508911][   T30] audit: type=1326 audit(1721969700.911:7240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23659 comm="syz.1.15216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f83ef4c5e9b code=0x7ffc0000
[ 2729.545190][ T8304] usb 4-1: new high-speed USB device number 74 using dummy_hcd
[ 2729.570089][   T30] audit: type=1326 audit(1721969701.001:7241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23659 comm="syz.1.15216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f83ef4c5e9b code=0x7ffc0000
[ 2729.599638][   T30] audit: type=1326 audit(1721969701.031:7242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23659 comm="syz.1.15216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f83ef4c5e9b code=0x7ffc0000
[ 2729.626281][   T30] audit: type=1326 audit(1721969701.061:7243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23659 comm="syz.1.15216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f83ef4c5e9b code=0x7ffc0000
[ 2729.650251][T20122] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2729.660688][T20122] usb 2-1: New USB device found, idVendor=046d, idProduct=c295, bcdDevice= 0.00
[ 2729.669615][   T30] audit: type=1326 audit(1721969701.081:7244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23659 comm="syz.1.15216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f83ef4c5e9b code=0x7ffc0000
[ 2729.693057][T20122] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2729.701853][T20122] usb 2-1: config 0 descriptor??
[ 2729.725664][   T30] audit: type=1326 audit(1721969701.161:7245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23659 comm="syz.1.15216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f83ef4c5e9b code=0x7ffc0000
[ 2729.749142][   T30] audit: type=1326 audit(1721969701.161:7246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=23659 comm="syz.1.15216" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f83ef4c5e9b code=0x7ffc0000
[ 2729.755541][  T313] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[ 2729.783398][T20122] usb 2-1: can't set config #0, error -71
[ 2729.789744][T20122] usb 2-1: USB disconnect, device number 55
[ 2729.795925][  T313] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2729.803676][T23708] loop1: detected capacity change from 0 to 2048
[ 2729.807720][  T313] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2729.822916][  T313] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[ 2729.897028][T23708] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 2729.907523][T23708] ext4 filesystem being mounted at /20/file0 supports timestamps until 2038 (0x7fffffff)
[ 2729.917385][  T313] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[ 2729.929068][  T313] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[ 2729.937191][  T313] usb 5-1: Manufacturer: syz
[ 2729.949293][  T313] usb 5-1: config 0 descriptor??
[ 2729.955628][ T8304] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 2729.965860][ T8304] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 2729.975685][ T8304] usb 4-1: config 1 has no interface number 0
[ 2729.989864][ T8304] usb 4-1: config 1 interface 1 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 2730.026431][T23716] fs-verity (loop1, inode 13): Unknown hash algorithm number: 0
[ 2730.624569][T23682] loop4: detected capacity change from 0 to 256
[ 2730.687815][T23682] exfat: Deprecated parameter 'utf8'
[ 2730.765210][T23682] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xa4dad179, utbl_chksum : 0xe619d30d)
[ 2730.885561][ T8304] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 2730.896910][ T8304] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2730.905486][ T8304] usb 4-1: Product: syz
[ 2730.909458][ T8304] usb 4-1: Manufacturer: syz
[ 2730.913883][ T8304] usb 4-1: SerialNumber: syz
[ 2731.001856][ T8304] cdc_ncm 4-1:1.1: skipping garbage
[ 2731.006958][ T8304] cdc_ncm 4-1:1.1: NCM or ECM functional descriptors missing
[ 2731.014190][ T8304] cdc_ncm 4-1:1.1: bind() failure
[ 2731.607646][ T8303] usb 4-1: USB disconnect, device number 74
[ 2731.714798][T23740] loop4: detected capacity change from 0 to 1024
[ 2731.759290][T23740] EXT4-fs (loop4): Ignoring removed orlov option
[ 2731.765635][  T313] usbhid 5-1:0.0: can't add hid device: -71
[ 2731.771378][  T313] usbhid: probe of 5-1:0.0 failed with error -71
[ 2731.785503][T23740] EXT4-fs (loop4): Ignoring removed nomblk_io_submit option
[ 2731.805171][  T313] usb 5-1: USB disconnect, device number 60
[ 2731.821655][T23742] loop1: detected capacity change from 0 to 512
[ 2731.828545][T23740] EXT4-fs (loop4): mounted filesystem without journal. Opts: noblock_validity,sb=0xffffffffffffffe0,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none.
[ 2731.916218][T23742] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 2731.947544][T23742] EXT4-fs (loop1): 1 orphan inode deleted
[ 2731.955531][T23742] EXT4-fs (loop1): 1 truncate cleaned up
[ 2731.964734][T23742] EXT4-fs (loop1): mounted filesystem without journal. Opts: init_itable=0x0000000000000004,grpjquota=,dioread_lock,inode_readahead_blks=0x0000000000010000,errors=remount-ro,journal_ioprio=0x0000000000000001,. Quota mode: none.
[ 2732.095458][   T26] usb 3-1: new high-speed USB device number 122 using dummy_hcd
[ 2732.309567][T23757] loop3: detected capacity change from 0 to 512
[ 2732.366446][T23757] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 2732.376168][   T26] usb 3-1: Using ep0 maxpacket: 8
[ 2732.406619][T23757] EXT4-fs (loop3): 1 orphan inode deleted
[ 2732.412206][T23757] EXT4-fs (loop3): 1 truncate cleaned up
[ 2732.417737][T23757] EXT4-fs (loop3): mounted filesystem without journal. Opts: init_itable=0x0000000000000004,grpjquota=,dioread_lock,inode_readahead_blks=0x0000000000010000,errors=remount-ro,journal_ioprio=0x0000000000000001,. Quota mode: none.
[ 2732.505809][   T26] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2732.542839][   T26] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2732.586845][   T26] usb 3-1: New USB device found, idVendor=06a3, idProduct=0ccd, bcdDevice= 0.00
[ 2732.596628][   T26] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2732.616638][   T26] usb 3-1: config 0 descriptor??
[ 2732.813228][T23766] loop4: detected capacity change from 0 to 512
[ 2733.088192][T23766] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 2733.133610][T23766] EXT4-fs (loop4): 1 orphan inode deleted
[ 2733.140261][T23766] EXT4-fs (loop4): 1 truncate cleaned up
[ 2733.151934][T23766] EXT4-fs (loop4): mounted filesystem without journal. Opts: init_itable=0x0000000000000004,grpjquota=,dioread_lock,inode_readahead_blks=0x0000000000010000,errors=remount-ro,journal_ioprio=0x0000000000000001,. Quota mode: none.
[ 2733.311160][T23776] loop3: detected capacity change from 0 to 40427
[ 2733.387696][T23776] F2FS-fs (loop3): invalid crc value
[ 2733.396758][T23776] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 2733.424516][T23776] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 2734.087673][T23782] FAULT_INJECTION: forcing a failure.
[ 2734.087673][T23782] name fail_page_alloc, interval 1, probability 0, space 0, times 0
[ 2734.100841][T23782] CPU: 0 PID: 23782 Comm: syz.3.15244 Not tainted 5.15.151-syzkaller-00059-g5356d2f17edf #0
[ 2734.110720][T23782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2734.120611][T23782] Call Trace:
[ 2734.123734][T23782]  <TASK>
[ 2734.126511][T23782]  dump_stack_lvl+0x151/0x1b7
[ 2734.131025][T23782]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 2734.136494][T23782]  dump_stack+0x15/0x17
[ 2734.140484][T23782]  should_fail+0x3c6/0x510
[ 2734.144739][T23782]  should_fail_alloc_page+0x5a/0x80
[ 2734.149772][T23782]  prepare_alloc_pages+0x15c/0x700
[ 2734.154718][T23782]  ? __sched_text_start+0x8/0x8
[ 2734.159407][T23782]  ? __alloc_pages_bulk+0xe40/0xe40
[ 2734.164439][T23782]  ? __kasan_check_read+0x11/0x20
[ 2734.169299][T23782]  ? preempt_schedule_irq+0xe7/0x140
[ 2734.174420][T23782]  __alloc_pages+0x18c/0x8f0
[ 2734.178847][T23782]  ? prep_new_page+0x110/0x110
[ 2734.183447][T23782]  ? irqentry_exit+0x30/0x40
[ 2734.187874][T23782]  ? sysvec_reschedule_ipi+0x7d/0x150
[ 2734.193082][T23782]  new_slab+0x9a/0x4e0
[ 2734.196987][T23782]  ? __cond_resched+0x20/0x20
[ 2734.201499][T23782]  ___slab_alloc+0x39e/0x830
[ 2734.205926][T23782]  ? f2fs_getxattr+0x338/0x11a0
[ 2734.210614][T23782]  ? f2fs_getxattr+0x338/0x11a0
[ 2734.215297][T23782]  __slab_alloc+0x4a/0x90
[ 2734.219463][T23782]  ? f2fs_getxattr+0x338/0x11a0
[ 2734.224151][T23782]  kmem_cache_alloc+0x134/0x200
[ 2734.228839][T23782]  f2fs_getxattr+0x338/0x11a0
[ 2734.233354][T23782]  f2fs_xattr_generic_get+0x132/0x180
[ 2734.238560][T23782]  ? f2fs_xattr_user_list+0xa0/0xa0
[ 2734.243593][T23782]  __vfs_getxattr+0x3c3/0x3f0
[ 2734.248107][T23782]  cap_inode_need_killpriv+0x45/0x60
[ 2734.253227][T23782]  security_inode_need_killpriv+0x62/0x90
[ 2734.258782][T23782]  file_remove_privs+0x243/0x610
[ 2734.263557][T23782]  ? dentry_needs_remove_privs+0x100/0x100
[ 2734.269199][T23782]  ? rwsem_write_trylock+0x153/0x340
[ 2734.274318][T23782]  ? rwsem_mark_wake+0x770/0x770
[ 2734.279092][T23782]  ? generic_write_checks+0x3b9/0x470
[ 2734.284300][T23782]  file_modified+0x1b/0xb0
[ 2734.288552][T23782]  f2fs_file_write_iter+0x385/0x2920
[ 2734.293675][T23782]  ? f2fs_file_read_iter+0x1050/0x1050
[ 2734.298967][T23782]  ? _raw_spin_lock+0x1b0/0x1b0
[ 2734.303654][T23782]  ? __kasan_check_read+0x11/0x20
[ 2734.308511][T23782]  ? preempt_schedule_irq+0xe7/0x140
[ 2734.313633][T23782]  ? __cond_resched+0x20/0x20
[ 2734.318145][T23782]  ? sysvec_reschedule_ipi+0x7d/0x150
[ 2734.323354][T23782]  ? asm_sysvec_reschedule_ipi+0x1b/0x20
[ 2734.328820][T23782]  ? irqentry_exit_cond_resched+0x2a/0x30
[ 2734.334377][T23782]  ? irqentry_exit+0x30/0x40
[ 2734.338805][T23782]  ? sysvec_reschedule_ipi+0x7d/0x150
[ 2734.344011][T23782]  ? asm_sysvec_reschedule_ipi+0x1b/0x20
[ 2734.349479][T23782]  ? iov_iter_init+0x53/0x190
[ 2734.354078][T23782]  vfs_write+0xd5d/0x1110
[ 2734.358244][T23782]  ? bpf_trace_run2+0x210/0x210
[ 2734.362933][T23782]  ? file_end_write+0x1c0/0x1c0
[ 2734.367618][T23782]  ? mutex_lock+0xb6/0x1e0
[ 2734.371874][T23782]  ? wait_for_completion_killable_timeout+0x10/0x10
[ 2734.378293][T23782]  ? __fdget_pos+0x2e7/0x3a0
[ 2734.382720][T23782]  ? ksys_write+0x77/0x2c0
[ 2734.386973][T23782]  ksys_write+0x199/0x2c0
[ 2734.391138][T23782]  ? __ia32_sys_read+0x90/0x90
[ 2734.395742][T23782]  ? __kasan_check_read+0x11/0x20
[ 2734.400601][T23782]  __x64_sys_write+0x7b/0x90
[ 2734.405025][T23782]  do_syscall_64+0x3d/0xb0
[ 2734.409278][T23782]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 2734.415006][T23782] RIP: 0033:0x7f2392054299
[ 2734.419259][T23782] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2734.438709][T23782] RSP: 002b:00007f2390c92048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 2734.446944][T23782] RAX: ffffffffffffffda RBX: 00007f23921e3130 RCX: 00007f2392054299
[ 2734.454755][T23782] RDX: 000000000000024c RSI: 0000000020001400 RDI: 0000000000000005
[ 2734.462569][T23782] RBP: 00007f2390c920a0 R08: 0000000000000000 R09: 0000000000000000
[ 2734.470379][T23782] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2734.478190][T23782] R13: 000000000000006e R14: 00007f23921e3130 R15: 00007fffd9e29948
[ 2734.486008][T23782]  </TASK>
[ 2734.523217][T23789] loop4: detected capacity change from 0 to 2048
[ 2734.554357][T23791] loop1: detected capacity change from 0 to 2048
[ 2734.581396][T23789] EXT4-fs error (device loop4): ext4_fill_super:4831: inode #2: comm syz.4.15247: casefold flag without casefold feature
[ 2734.582025][T23791] EXT4-fs error (device loop1): ext4_fill_super:4831: inode #2: comm syz.1.15248: casefold flag without casefold feature
[ 2734.597679][T23789] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[ 2734.607194][T23791] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[ 2734.627192][T23789] EXT4-fs (loop4): Errors on filesystem, clearing orphan list.
[ 2734.634720][T23791] EXT4-fs (loop1): Errors on filesystem, clearing orphan list.
[ 2734.642439][T23791] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2734.654208][ T6317] attempt to access beyond end of device
[ 2734.654208][ T6317] loop3: rw=2049, want=45104, limit=40427
[ 2734.665342][T23789] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2734.765478][ T8303] usb 1-1: new high-speed USB device number 87 using dummy_hcd
[ 2735.215642][   T26] usbhid 3-1:0.0: can't add hid device: -71
[ 2735.241644][   T26] usbhid: probe of 3-1:0.0 failed with error -71
[ 2735.273244][   T26] usb 3-1: USB disconnect, device number 122
[ 2735.355532][ T8303] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[ 2735.388763][ T8303] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2735.399689][ T8303] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2735.409364][ T8303] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[ 2735.575435][ T8303] usb 1-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[ 2735.585356][ T8303] usb 1-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[ 2735.593520][ T8303] usb 1-1: Manufacturer: syz
[ 2735.602584][ T8303] usb 1-1: config 0 descriptor??
[ 2735.675948][T23811] FAULT_INJECTION: forcing a failure.
[ 2735.675948][T23811] name failslab, interval 1, probability 0, space 0, times 0
[ 2735.694469][T23811] CPU: 0 PID: 23811 Comm: syz.1.15252 Not tainted 5.15.151-syzkaller-00059-g5356d2f17edf #0
[ 2735.704353][T23811] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2735.714248][T23811] Call Trace:
[ 2735.717367][T23811]  <TASK>
[ 2735.720144][T23811]  dump_stack_lvl+0x151/0x1b7
[ 2735.724662][T23811]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 2735.730127][T23811]  dump_stack+0x15/0x17
[ 2735.734118][T23811]  should_fail+0x3c6/0x510
[ 2735.738371][T23811]  __should_failslab+0xa4/0xe0
[ 2735.742971][T23811]  should_failslab+0x9/0x20
[ 2735.747311][T23811]  slab_pre_alloc_hook+0x37/0xd0
[ 2735.752083][T23811]  ? tipc_msg_reverse+0x22d/0x9b0
[ 2735.756943][T23811]  __kmalloc_track_caller+0x6c/0x260
[ 2735.762065][T23811]  ? tipc_msg_reverse+0x22d/0x9b0
[ 2735.766928][T23811]  ? tipc_msg_reverse+0x22d/0x9b0
[ 2735.771787][T23811]  __alloc_skb+0x10c/0x550
[ 2735.776041][T23811]  tipc_msg_reverse+0x22d/0x9b0
[ 2735.780728][T23811]  tipc_sk_respond+0x151/0x460
[ 2735.785326][T23811]  ? tipc_sk_sock_err+0x330/0x330
[ 2735.790189][T23811]  __tipc_shutdown+0x1252/0x1510
[ 2735.794963][T23811]  ? tipc_recvstream+0xf70/0xf70
[ 2735.799736][T23811]  ? sock_init_data+0xc0/0xc0
[ 2735.804245][T23811]  ? wait_woken+0x170/0x170
[ 2735.808586][T23811]  ? __kasan_record_aux_stack+0xd3/0xf0
[ 2735.813966][T23811]  ? kasan_record_aux_stack+0xe/0x10
[ 2735.819089][T23811]  ? task_work_add+0x27/0x1d0
[ 2735.823600][T23811]  ? fput_many+0xef/0x1b0
[ 2735.827767][T23811]  ? fput+0x1a/0x20
[ 2735.831411][T23811]  ? filp_close+0x106/0x150
[ 2735.835750][T23811]  ? close_fd+0x74/0x80
[ 2735.839745][T23811]  ? locks_remove_posix+0x610/0x610
[ 2735.844779][T23811]  tipc_release+0xd7/0x1300
[ 2735.849120][T23811]  ? rwsem_write_trylock+0x153/0x340
[ 2735.854238][T23811]  ? tipc_sock_destruct+0x190/0x190
[ 2735.859273][T23811]  sock_close+0xdf/0x270
[ 2735.863352][T23811]  ? sock_mmap+0xa0/0xa0
[ 2735.867429][T23811]  __fput+0x3fe/0x910
[ 2735.871251][T23811]  ____fput+0x15/0x20
[ 2735.875068][T23811]  task_work_run+0x129/0x190
[ 2735.879496][T23811]  exit_to_user_mode_loop+0xc4/0xe0
[ 2735.884526][T23811]  exit_to_user_mode_prepare+0x5a/0xa0
[ 2735.889821][T23811]  syscall_exit_to_user_mode+0x26/0x160
[ 2735.895204][T23811]  do_syscall_64+0x49/0xb0
[ 2735.899462][T23811]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 2735.905187][T23811] RIP: 0033:0x7f83ef4c6299
[ 2735.909440][T23811] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2735.928878][T23811] RSP: 002b:00007f83ee146048 EFLAGS: 00000246 ORIG_RAX: 0000000000000003
[ 2735.937124][T23811] RAX: 0000000000000000 RBX: 00007f83ef654f80 RCX: 00007f83ef4c6299
[ 2735.944934][T23811] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[ 2735.952834][T23811] RBP: 00007f83ee1460a0 R08: 0000000000000000 R09: 0000000000000000
[ 2735.960642][T23811] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2735.968456][T23811] R13: 000000000000000b R14: 00007f83ef654f80 R15: 00007ffec37c5d88
[ 2735.976271][T23811]  </TASK>
[ 2735.994642][T23815] loop4: detected capacity change from 0 to 512
[ 2736.154442][ T2991] usb 4-1: new high-speed USB device number 75 using dummy_hcd
[ 2736.166520][T23815] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 2736.196776][T23819] loop1: detected capacity change from 0 to 512
[ 2736.245776][T23815] EXT4-fs (loop4): 1 orphan inode deleted
[ 2736.251334][T23815] EXT4-fs (loop4): 1 truncate cleaned up
[ 2736.258043][T23819] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 2736.263583][T23815] EXT4-fs (loop4): mounted filesystem without journal. Opts: init_itable=0x0000000000000004,grpjquota=,dioread_lock,inode_readahead_blks=0x0000000000010000,errors=remount-ro,journal_ioprio=0x0000000000000001,. Quota mode: none.
[ 2736.332336][T23819] EXT4-fs (loop1): 1 orphan inode deleted
[ 2736.339052][T23819] EXT4-fs (loop1): 1 truncate cleaned up
[ 2736.345302][T23819] EXT4-fs (loop1): mounted filesystem without journal. Opts: init_itable=0x0000000000000004,grpjquota=,dioread_lock,inode_readahead_blks=0x0000000000010000,errors=remount-ro,journal_ioprio=0x0000000000000001,. Quota mode: none.
[ 2736.649082][ T2991] usb 4-1: Using ep0 maxpacket: 16
[ 2736.732899][T23834] loop4: detected capacity change from 0 to 2048
[ 2736.785507][ T2991] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 11
[ 2736.785810][ T8303] usbhid 1-1:0.0: can't add hid device: -71
[ 2736.794383][ T2991] usb 4-1: config 1 interface 0 altsetting 3 endpoint 0xB has invalid wMaxPacketSize 0
[ 2736.800155][ T8303] usbhid: probe of 1-1:0.0 failed with error -71
[ 2736.809821][ T2991] usb 4-1: config 1 interface 0 altsetting 3 bulk endpoint 0xB has invalid maxpacket 0
[ 2736.817609][ T8303] usb 1-1: USB disconnect, device number 87
[ 2736.825406][ T2991] usb 4-1: config 1 interface 0 altsetting 3 endpoint 0x8A has invalid wMaxPacketSize 0
[ 2736.840636][ T2991] usb 4-1: config 1 interface 0 altsetting 3 bulk endpoint 0x8A has invalid maxpacket 0
[ 2736.870138][T23834] EXT4-fs error (device loop4): ext4_fill_super:4831: inode #2: comm syz.4.15257: casefold flag without casefold feature
[ 2737.071263][ T2991] usb 4-1: config 1 interface 0 has no altsetting 0
[ 2737.078013][ T2991] usb 4-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77
[ 2737.103424][T23834] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[ 2737.113969][T23834] EXT4-fs (loop4): Errors on filesystem, clearing orphan list.
[ 2737.122854][T23834] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2737.125335][ T2991] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2737.177343][ T2991] ums-sddr09 4-1:1.0: USB Mass Storage device detected
[ 2737.204335][T23843] loop1: detected capacity change from 0 to 128
[ 2737.409811][ T2991] scsi host1: usb-storage 4-1:1.0
[ 2737.427488][T23843] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 2737.437933][T23843] ext4 filesystem being mounted at /28/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[ 2737.555523][T21288] usb 3-1: new high-speed USB device number 123 using dummy_hcd
[ 2737.592886][T23849] loop1: detected capacity change from 0 to 2048
[ 2737.617354][ T2991] usb 4-1: USB disconnect, device number 75
[ 2737.646466][T23849] EXT4-fs error (device loop1): ext4_fill_super:4831: inode #2: comm syz.1.15261: casefold flag without casefold feature
[ 2737.654106][T23855] loop4: detected capacity change from 0 to 2048
[ 2737.659388][T23849] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[ 2737.676040][T23849] EXT4-fs (loop1): Errors on filesystem, clearing orphan list.
[ 2737.683400][T23849] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2737.703493][T23855] EXT4-fs error (device loop4): ext4_fill_super:4831: inode #2: comm syz.4.15263: casefold flag without casefold feature
[ 2737.721210][T23855] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[ 2737.731530][T23855] EXT4-fs (loop4): Errors on filesystem, clearing orphan list.
[ 2737.739472][T23855] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2737.835476][T21288] usb 3-1: Using ep0 maxpacket: 8
[ 2738.024422][T23863] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[ 2738.195585][T21288] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2738.220838][T21288] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2738.242166][T21288] usb 3-1: New USB device found, idVendor=06a3, idProduct=0ccd, bcdDevice= 0.00
[ 2738.254309][T21288] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2738.270613][T21288] usb 3-1: config 0 descriptor??
[ 2738.290987][T23869] loop1: detected capacity change from 0 to 512
[ 2738.320557][T23869] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 2738.344483][T23867] loop3: detected capacity change from 0 to 40427
[ 2738.353793][T23869] EXT4-fs (loop1): 1 orphan inode deleted
[ 2738.361218][T23869] EXT4-fs (loop1): 1 truncate cleaned up
[ 2738.366775][T23869] EXT4-fs (loop1): mounted filesystem without journal. Opts: init_itable=0x0000000000000004,grpjquota=,dioread_lock,inode_readahead_blks=0x0000000000010000,errors=remount-ro,journal_ioprio=0x0000000000000001,. Quota mode: none.
[ 2738.396918][T23867] F2FS-fs (loop3): Unrecognized mount option "background^gc=on" or missing value
[ 2738.489094][T23872] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[ 2738.579747][T23867] loop3: detected capacity change from 0 to 512
[ 2738.648038][T23867] EXT4-fs (loop3): Unrecognized mount option "euid=00000000000000000000" or missing value
[ 2738.696943][T23881] loop3: detected capacity change from 0 to 2048
[ 2738.705857][T23882] loop4: detected capacity change from 0 to 512
[ 2738.723370][T23881] EXT4-fs error (device loop3): ext4_fill_super:4831: inode #2: comm syz.3.15270: casefold flag without casefold feature
[ 2738.739879][T23882] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 2738.750208][T23881] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[ 2738.761286][T23882] EXT4-fs (loop4): 1 orphan inode deleted
[ 2738.768668][T23881] EXT4-fs (loop3): Errors on filesystem, clearing orphan list.
[ 2738.776137][T23882] EXT4-fs (loop4): 1 truncate cleaned up
[ 2738.781534][T23881] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2738.792651][T23882] EXT4-fs (loop4): mounted filesystem without journal. Opts: init_itable=0x0000000000000004,grpjquota=,dioread_lock,inode_readahead_blks=0x0000000000010000,errors=remount-ro,journal_ioprio=0x0000000000000001,. Quota mode: none.
[ 2738.815482][ T2991] usb 1-1: new high-speed USB device number 88 using dummy_hcd
[ 2739.495553][ T2991] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[ 2739.508637][ T2991] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2739.539150][ T2991] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2739.549196][ T2991] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[ 2739.805401][T23896] loop3: detected capacity change from 0 to 2048
[ 2739.857475][T23896] EXT4-fs error (device loop3): ext4_fill_super:4831: inode #2: comm syz.3.15273: casefold flag without casefold feature
[ 2739.870083][ T2991] usb 1-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[ 2739.870344][T23896] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[ 2739.878981][ T2991] usb 1-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[ 2739.889757][T23896] EXT4-fs (loop3): Errors on filesystem, clearing orphan list.
[ 2739.896097][ T2991] usb 1-1: Manufacturer: syz
[ 2739.899816][ T2991] usb 1-1: config 0 descriptor??
[ 2739.903837][T23896] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2740.379301][T23910] loop4: detected capacity change from 0 to 2048
[ 2740.415574][T21288] usbhid 3-1:0.0: can't add hid device: -71
[ 2740.421411][T21288] usbhid: probe of 3-1:0.0 failed with error -71
[ 2740.428161][T21288] usb 3-1: USB disconnect, device number 123
[ 2740.447138][T23910] EXT4-fs error (device loop4): ext4_fill_super:4831: inode #2: comm syz.4.15277: casefold flag without casefold feature
[ 2740.464180][T23910] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[ 2740.474479][T23910] EXT4-fs (loop4): Errors on filesystem, clearing orphan list.
[ 2740.482075][T23910] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2740.515807][T23914] overlayfs: missing 'lowerdir'
[ 2740.695662][T23922] loop3: detected capacity change from 0 to 2048
[ 2740.756690][T23922] EXT4-fs error (device loop3): ext4_fill_super:4831: inode #2: comm syz.3.15281: casefold flag without casefold feature
[ 2740.769558][T23922] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[ 2740.780057][T23922] EXT4-fs (loop3): Errors on filesystem, clearing orphan list.
[ 2740.787636][T23922] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2740.955510][ T2991] usbhid 1-1:0.0: can't add hid device: -71
[ 2740.961388][ T2991] usbhid: probe of 1-1:0.0 failed with error -71
[ 2741.196111][ T2991] usb 1-1: USB disconnect, device number 88
[ 2741.296967][T23937] loop1: detected capacity change from 0 to 2048
[ 2741.358226][T23937] EXT4-fs error (device loop1): ext4_fill_super:4831: inode #2: comm syz.1.15285: casefold flag without casefold feature
[ 2741.374907][T23937] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[ 2741.385338][T23937] EXT4-fs (loop1): Errors on filesystem, clearing orphan list.
[ 2741.392928][T23937] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2741.635640][ T8303] usb 5-1: new high-speed USB device number 61 using dummy_hcd
[ 2741.905510][ T8303] usb 5-1: Using ep0 maxpacket: 32
[ 2742.025736][ T8303] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 2742.044146][ T8303] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 2742.085101][ T8303] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 2742.108373][ T8303] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2742.127964][ T8303] usb 5-1: config 0 descriptor??
[ 2742.224145][T23960] loop1: detected capacity change from 0 to 512
[ 2742.233582][T23960] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 2742.248026][T23960] EXT4-fs (loop1): 1 truncate cleaned up
[ 2742.253521][T23960] EXT4-fs (loop1): mounted filesystem without journal. Opts: quota,inode_readahead_blks=0x0000000000000080,barrier=0x0000000000000003,stripe=0x0000000000000004,block_validity,debug_want_extra_isize=0x000000000000002e,,errors=continue. Quota mode: writeback.
[ 2742.741142][  T373] usb 5-1: USB disconnect, device number 61
[ 2743.027936][T23980] overlayfs: missing 'lowerdir'
[ 2743.067951][T23982] loop1: detected capacity change from 0 to 512
[ 2743.113741][T23985] loop3: detected capacity change from 0 to 2048
[ 2743.150960][T23985] EXT4-fs error (device loop3): ext4_fill_super:4831: inode #2: comm syz.3.15297: casefold flag without casefold feature
[ 2743.164491][T23985] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[ 2743.176020][T23982] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 2743.208121][T23982] EXT4-fs (loop1): 1 orphan inode deleted
[ 2743.213815][T23985] EXT4-fs (loop3): Errors on filesystem, clearing orphan list.
[ 2743.221313][T23982] EXT4-fs (loop1): 1 truncate cleaned up
[ 2743.227375][T23985] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2743.238456][T23982] EXT4-fs (loop1): mounted filesystem without journal. Opts: init_itable=0x0000000000000004,grpjquota=,dioread_lock,inode_readahead_blks=0x0000000000010000,errors=remount-ro,journal_ioprio=0x0000000000000001,. Quota mode: none.
[ 2743.310856][T23989] loop4: detected capacity change from 0 to 2048
[ 2743.336277][T23989] EXT4-fs error (device loop4): ext4_fill_super:4831: inode #2: comm syz.4.15298: casefold flag without casefold feature
[ 2743.351313][T23989] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[ 2743.361321][T23989] EXT4-fs (loop4): Errors on filesystem, clearing orphan list.
[ 2743.368901][T23989] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2743.756595][T23998] device pim6reg1 entered promiscuous mode
[ 2743.818420][T24002] loop1: detected capacity change from 0 to 2048
[ 2743.825877][T24007] FAULT_INJECTION: forcing a failure.
[ 2743.825877][T24007] name failslab, interval 1, probability 0, space 0, times 0
[ 2743.838444][T24007] CPU: 0 PID: 24007 Comm: syz.2.15304 Not tainted 5.15.151-syzkaller-00059-g5356d2f17edf #0
[ 2743.848318][T24007] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2743.858215][T24007] Call Trace:
[ 2743.861336][T24007]  <TASK>
[ 2743.864116][T24007]  dump_stack_lvl+0x151/0x1b7
[ 2743.868629][T24007]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 2743.874097][T24007]  dump_stack+0x15/0x17
[ 2743.878090][T24007]  should_fail+0x3c6/0x510
[ 2743.882341][T24007]  __should_failslab+0xa4/0xe0
[ 2743.886938][T24007]  ? prepare_creds+0x2f/0x6a0
[ 2743.891460][T24007]  should_failslab+0x9/0x20
[ 2743.895796][T24007]  slab_pre_alloc_hook+0x37/0xd0
[ 2743.900564][T24007]  ? prepare_creds+0x2f/0x6a0
[ 2743.905076][T24007]  kmem_cache_alloc+0x44/0x200
[ 2743.909688][T24007]  ? _raw_spin_lock_irqsave+0xf9/0x210
[ 2743.914970][T24007]  prepare_creds+0x2f/0x6a0
[ 2743.919310][T24007]  copy_creds+0xf0/0x630
[ 2743.923390][T24007]  ? dup_task_struct+0x7e6/0xc60
[ 2743.928164][T24007]  copy_process+0x7c3/0x3290
[ 2743.932591][T24007]  ? __kasan_check_write+0x14/0x20
[ 2743.937551][T24007]  ? proc_fail_nth_write+0x20b/0x290
[ 2743.942661][T24007]  ? selinux_file_permission+0x2c4/0x570
[ 2743.948129][T24007]  ? fsnotify_perm+0x6a/0x5d0
[ 2743.952642][T24007]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[ 2743.957589][T24007]  ? vfs_write+0x9ec/0x1110
[ 2743.961933][T24007]  ? kmem_cache_free+0x116/0x2e0
[ 2743.966702][T24007]  kernel_clone+0x21e/0x9e0
[ 2743.971039][T24007]  ? file_end_write+0x1c0/0x1c0
[ 2743.975726][T24007]  ? create_io_thread+0x1e0/0x1e0
[ 2743.980584][T24007]  ? mutex_unlock+0xb2/0x260
[ 2743.985011][T24007]  ? __mutex_lock_slowpath+0x10/0x10
[ 2743.990135][T24007]  __x64_sys_clone+0x23f/0x290
[ 2743.994732][T24007]  ? __do_sys_vfork+0x130/0x130
[ 2743.999423][T24007]  ? __bpf_trace_sys_enter+0x62/0x70
[ 2744.004539][T24007]  ? syscall_enter_from_user_mode+0x14d/0x1b0
[ 2744.010530][T24007]  do_syscall_64+0x3d/0xb0
[ 2744.014780][T24007]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 2744.020509][T24007] RIP: 0033:0x7fdb37640299
[ 2744.024770][T24007] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2744.044210][T24007] RSP: 002b:00007fdb362bfff8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 2744.052448][T24007] RAX: ffffffffffffffda RBX: 00007fdb377cef80 RCX: 00007fdb37640299
[ 2744.060259][T24007] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 2744.068071][T24007] RBP: 00007fdb362c00a0 R08: 0000000000000000 R09: 0000000000000000
[ 2744.075887][T24007] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2744.083694][T24007] R13: 000000000000004d R14: 00007fdb377cef80 R15: 00007ffcfe0063b8
[ 2744.091513][T24007]  </TASK>
[ 2744.118143][T24002] EXT4-fs error (device loop1): ext4_fill_super:4831: inode #2: comm syz.1.15301: casefold flag without casefold feature
[ 2744.130886][T24002] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[ 2744.141318][T24002] EXT4-fs (loop1): Errors on filesystem, clearing orphan list.
[ 2744.367166][T24002] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2745.732629][T24034] loop1: detected capacity change from 0 to 2048
[ 2745.825824][T24034] EXT4-fs error (device loop1): ext4_fill_super:4831: inode #2: comm syz.1.15312: casefold flag without casefold feature
[ 2745.852917][T24034] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[ 2745.881443][T24034] EXT4-fs (loop1): Errors on filesystem, clearing orphan list.
[ 2745.905488][T24034] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2745.935462][T20067] usb 1-1: new high-speed USB device number 89 using dummy_hcd
[ 2745.970744][T24041] loop4: detected capacity change from 0 to 512
[ 2746.062387][T24021] loop3: detected capacity change from 0 to 131072
[ 2746.107324][T24021] F2FS-fs (loop3): invalid crc value
[ 2746.123886][T24021] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (15359802341028777995, 275811881701387)
[ 2746.135978][T24041] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 2746.197063][T24041] EXT4-fs (loop4): 1 orphan inode deleted
[ 2746.202905][T24021] F2FS-fs (loop3): Mounted with checkpoint version = 753bd00b
[ 2746.209785][T24041] EXT4-fs (loop4): 1 truncate cleaned up
[ 2746.218129][T20067] usb 1-1: Using ep0 maxpacket: 32
[ 2746.248014][T24041] EXT4-fs (loop4): mounted filesystem without journal. Opts: init_itable=0x0000000000000004,grpjquota=,dioread_lock,inode_readahead_blks=0x0000000000010000,errors=remount-ro,journal_ioprio=0x0000000000000001,. Quota mode: none.
[ 2746.561232][T24053] loop3: detected capacity change from 0 to 16
[ 2746.571451][T24053] erofs: (device loop3): mounted with root inode @ nid 36.
[ 2746.632285][T24056] loop1: detected capacity change from 0 to 2048
[ 2746.722502][T24056] EXT4-fs error (device loop1): ext4_fill_super:4831: inode #2: comm syz.1.15317: casefold flag without casefold feature
[ 2746.741133][T24056] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[ 2746.751676][T24056] EXT4-fs (loop1): Errors on filesystem, clearing orphan list.
[ 2746.761097][T24056] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2746.781613][T24064] device pim6reg1 entered promiscuous mode
[ 2747.275558][T20067] usb 1-1: New USB device found, idVendor=0421, idProduct=04d8, bcdDevice=6a.33
[ 2747.284487][T20067] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2747.293236][T20067] usb 1-1: config 0 descriptor??
[ 2747.336316][T20067] usb 1-1: bad CDC descriptors
[ 2747.341132][T20067] cdc_acm 1-1:0.0: Zero length descriptor references
[ 2747.347717][T20067] cdc_acm: probe of 1-1:0.0 failed with error -22
[ 2747.406696][T24072] FAULT_INJECTION: forcing a failure.
[ 2747.406696][T24072] name failslab, interval 1, probability 0, space 0, times 0
[ 2747.419321][T24072] CPU: 1 PID: 24072 Comm: syz.3.15322 Not tainted 5.15.151-syzkaller-00059-g5356d2f17edf #0
[ 2747.429199][T24072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2747.439094][T24072] Call Trace:
[ 2747.442216][T24072]  <TASK>
[ 2747.444994][T24072]  dump_stack_lvl+0x151/0x1b7
[ 2747.449508][T24072]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 2747.455060][T24072]  ? avc_has_perm+0x16f/0x260
[ 2747.459578][T24072]  dump_stack+0x15/0x17
[ 2747.463566][T24072]  should_fail+0x3c6/0x510
[ 2747.467819][T24072]  __should_failslab+0xa4/0xe0
[ 2747.472422][T24072]  ? __alloc_skb+0xbe/0x550
[ 2747.476758][T24072]  should_failslab+0x9/0x20
[ 2747.481106][T24072]  slab_pre_alloc_hook+0x37/0xd0
[ 2747.485878][T24072]  ? __alloc_skb+0xbe/0x550
[ 2747.490216][T24072]  kmem_cache_alloc+0x44/0x200
[ 2747.494816][T24072]  __alloc_skb+0xbe/0x550
[ 2747.498982][T24072]  sock_wmalloc+0xb2/0x130
[ 2747.503239][T24072]  pppol2tp_sendmsg+0x178/0x5e0
[ 2747.507923][T24072]  ? security_socket_sendmsg+0x82/0xb0
[ 2747.513214][T24072]  ? pppol2tp_getsockopt+0x580/0x580
[ 2747.518337][T24072]  sock_write_iter+0x39b/0x530
[ 2747.522938][T24072]  ? sock_read_iter+0x480/0x480
[ 2747.527626][T24072]  do_iter_readv_writev+0x58e/0x790
[ 2747.532657][T24072]  ? generic_file_rw_checks+0x270/0x270
[ 2747.538035][T24072]  ? fsnotify_perm+0x6a/0x5d0
[ 2747.542549][T24072]  ? security_file_permission+0x86/0xb0
[ 2747.547929][T24072]  do_iter_write+0x1f5/0x760
[ 2747.552355][T24072]  vfs_writev+0x2ac/0x560
[ 2747.556523][T24072]  ? do_writev+0x340/0x340
[ 2747.560775][T24072]  ? __fget_files+0x31e/0x380
[ 2747.565286][T24072]  ? __fdget_pos+0x209/0x3a0
[ 2747.569711][T24072]  ? do_writev+0x7b/0x340
[ 2747.573877][T24072]  do_writev+0x1aa/0x340
[ 2747.578194][T24072]  ? bpf_trace_run1+0x1c0/0x1c0
[ 2747.582883][T24072]  ? do_readv+0x460/0x460
[ 2747.587049][T24072]  ? __bpf_trace_sys_enter+0x62/0x70
[ 2747.592167][T24072]  __x64_sys_writev+0x7d/0x90
[ 2747.596682][T24072]  do_syscall_64+0x3d/0xb0
[ 2747.600934][T24072]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 2747.606663][T24072] RIP: 0033:0x7f2392054299
[ 2747.610916][T24072] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2747.630357][T24072] RSP: 002b:00007f2390cd4048 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[ 2747.638621][T24072] RAX: ffffffffffffffda RBX: 00007f23921e2f80 RCX: 00007f2392054299
[ 2747.646587][T24072] RDX: 0000000000000001 RSI: 0000000020000180 RDI: 0000000000000003
[ 2747.654399][T24072] RBP: 00007f2390cd40a0 R08: 0000000000000000 R09: 0000000000000000
[ 2747.662207][T24072] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2747.670051][T24072] R13: 000000000000004d R14: 00007f23921e2f80 R15: 00007fffd9e29948
[ 2747.677836][T24072]  </TASK>
[ 2747.735077][  T373] usb 1-1: USB disconnect, device number 89
[ 2747.759594][   T30] kauditd_printk_skb: 3 callbacks suppressed
[ 2747.759607][   T30] audit: type=1400 audit(1721969719.191:7250): avc:  denied  { create } for  pid=24079 comm="syz.4.15325" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_connector_socket permissive=1
[ 2747.821425][T24084] loop1: detected capacity change from 0 to 2048
[ 2747.844454][T24086] loop4: detected capacity change from 0 to 2048
[ 2747.939400][T24084] EXT4-fs error (device loop1): ext4_fill_super:4831: inode #2: comm syz.1.15324: casefold flag without casefold feature
[ 2747.941030][T24086] EXT4-fs error (device loop4): ext4_fill_super:4831: inode #2: comm syz.4.15327: casefold flag without casefold feature
[ 2747.952430][T24084] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[ 2747.974601][T24084] EXT4-fs (loop1): Errors on filesystem, clearing orphan list.
[ 2747.982221][T24084] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2747.999143][T24086] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[ 2748.015648][T24086] EXT4-fs (loop4): Errors on filesystem, clearing orphan list.
[ 2748.025507][T24086] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2748.941136][T24112] loop3: detected capacity change from 0 to 16
[ 2749.007197][T24112] erofs: (device loop3): mounted with root inode @ nid 36.
[ 2749.017813][T24116] loop1: detected capacity change from 0 to 2048
[ 2749.063999][T24116] EXT4-fs error (device loop1): ext4_fill_super:4831: inode #2: comm syz.1.15334: casefold flag without casefold feature
[ 2749.081592][T24116] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[ 2749.092485][T24116] EXT4-fs (loop1): Errors on filesystem, clearing orphan list.
[ 2749.099995][T24116] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2750.742148][T24142] FAULT_INJECTION: forcing a failure.
[ 2750.742148][T24142] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2750.755684][T24142] CPU: 0 PID: 24142 Comm: syz.3.15344 Not tainted 5.15.151-syzkaller-00059-g5356d2f17edf #0
[ 2750.765570][T24142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2750.775472][T24142] Call Trace:
[ 2750.778592][T24142]  <TASK>
[ 2750.781369][T24142]  dump_stack_lvl+0x151/0x1b7
[ 2750.785883][T24142]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 2750.791345][T24142]  ? arch_stack_walk+0xf3/0x140
[ 2750.796032][T24142]  dump_stack+0x15/0x17
[ 2750.800020][T24142]  should_fail+0x3c6/0x510
[ 2750.804276][T24142]  should_fail_usercopy+0x1a/0x20
[ 2750.809135][T24142]  _copy_from_user+0x20/0xd0
[ 2750.813561][T24142]  iovec_from_user+0xc7/0x330
[ 2750.818077][T24142]  __import_iovec+0x6d/0x420
[ 2750.822499][T24142]  ? __kasan_slab_free+0x11/0x20
[ 2750.827276][T24142]  ? slab_free_freelist_hook+0xbd/0x190
[ 2750.832657][T24142]  ? kmem_cache_free+0x116/0x2e0
[ 2750.837427][T24142]  ? putname+0xfa/0x150
[ 2750.841426][T24142]  ? do_sys_openat2+0x71c/0x830
[ 2750.846115][T24142]  import_iovec+0xe5/0x120
[ 2750.850365][T24142]  ___sys_recvmsg+0x56b/0x690
[ 2750.854969][T24142]  ? __sys_recvmsg+0x260/0x260
[ 2750.859572][T24142]  ? __fdget+0x1bc/0x240
[ 2750.863641][T24142]  ? do_recvmmsg+0x160/0x8b0
[ 2750.868069][T24142]  do_recvmmsg+0x36b/0x8b0
[ 2750.872327][T24142]  ? __sys_recvmmsg+0x270/0x270
[ 2750.877008][T24142]  ? __kasan_check_write+0x14/0x20
[ 2750.881955][T24142]  ? mutex_unlock+0xb2/0x260
[ 2750.886384][T24142]  ? __kasan_check_write+0x14/0x20
[ 2750.891334][T24142]  __x64_sys_recvmmsg+0x195/0x240
[ 2750.896190][T24142]  ? do_recvmmsg+0x8b0/0x8b0
[ 2750.900616][T24142]  ? debug_smp_processor_id+0x17/0x20
[ 2750.905822][T24142]  ? exit_to_user_mode_prepare+0x39/0xa0
[ 2750.911291][T24142]  do_syscall_64+0x3d/0xb0
[ 2750.915542][T24142]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 2750.921269][T24142] RIP: 0033:0x7f2392054299
[ 2750.925524][T24142] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2750.944964][T24142] RSP: 002b:00007f2390cd4048 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[ 2750.953208][T24142] RAX: ffffffffffffffda RBX: 00007f23921e2f80 RCX: 00007f2392054299
[ 2750.961020][T24142] RDX: 0000000000000001 RSI: 0000000020003700 RDI: 0000000000000003
[ 2750.968830][T24142] RBP: 00007f2390cd40a0 R08: 0000000000000000 R09: 0000000000000000
[ 2750.976642][T24142] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2750.984454][T24142] R13: 000000000000004d R14: 00007f23921e2f80 R15: 00007fffd9e29948
[ 2750.992271][T24142]  </TASK>
[ 2751.056073][T24148] loop3: detected capacity change from 0 to 2048
[ 2751.095108][T24151] fuse: Unknown parameter 'æd'
[ 2751.145465][  T313] usb 5-1: new high-speed USB device number 62 using dummy_hcd
[ 2751.165743][T24148] EXT4-fs error (device loop3): ext4_fill_super:4831: inode #2: comm syz.3.15345: casefold flag without casefold feature
[ 2751.185704][T24148] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[ 2751.204142][T24148] EXT4-fs (loop3): Errors on filesystem, clearing orphan list.
[ 2751.213771][T24148] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2751.256740][   T30] audit: type=1326 audit(1721969722.691:7251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24161 comm="syz.0.15349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefb5e5d299 code=0x7ffc0000
[ 2751.280249][   T30] audit: type=1326 audit(1721969722.691:7252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24161 comm="syz.0.15349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fefb5e5d299 code=0x7ffc0000
[ 2751.304551][   T30] audit: type=1326 audit(1721969722.691:7253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24161 comm="syz.0.15349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefb5e5d299 code=0x7ffc0000
[ 2751.328612][   T30] audit: type=1326 audit(1721969722.691:7254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24161 comm="syz.0.15349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fefb5e5d299 code=0x7ffc0000
[ 2751.352164][   T30] audit: type=1326 audit(1721969722.691:7255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24161 comm="syz.0.15349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefb5e5d299 code=0x7ffc0000
[ 2751.375694][   T30] audit: type=1326 audit(1721969722.691:7256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24161 comm="syz.0.15349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fefb5e5d299 code=0x7ffc0000
[ 2751.395462][  T313] usb 5-1: Using ep0 maxpacket: 32
[ 2751.404181][   T30] audit: type=1326 audit(1721969722.691:7257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24161 comm="syz.0.15349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefb5e5d299 code=0x7ffc0000
[ 2751.427888][   T30] audit: type=1326 audit(1721969722.691:7258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24161 comm="syz.0.15349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fefb5e5d299 code=0x7ffc0000
[ 2751.451836][   T30] audit: type=1326 audit(1721969722.691:7259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24161 comm="syz.0.15349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefb5e5d299 code=0x7ffc0000
[ 2751.545544][T21288] usb 1-1: new high-speed USB device number 90 using dummy_hcd
[ 2751.705552][  T313] usb 5-1: New USB device found, idVendor=1557, idProduct=8150, bcdDevice=29.ed
[ 2751.714412][  T313] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2751.735446][  T313] usb 5-1: Product: syz
[ 2751.739428][  T313] usb 5-1: Manufacturer: syz
[ 2751.775938][  T313] usb 5-1: SerialNumber: syz
[ 2751.794850][  T313] usb 5-1: config 0 descriptor??
[ 2751.805459][T21288] usb 1-1: Using ep0 maxpacket: 8
[ 2751.925692][T21288] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2751.945396][T21288] usb 1-1: New USB device found, idVendor=046d, idProduct=c295, bcdDevice= 0.00
[ 2751.954669][T21288] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2751.979597][T21288] usb 1-1: config 0 descriptor??
[ 2752.089552][T24183] FAULT_INJECTION: forcing a failure.
[ 2752.089552][T24183] name failslab, interval 1, probability 0, space 0, times 0
[ 2752.102186][T24183] CPU: 1 PID: 24183 Comm: syz.1.15355 Not tainted 5.15.151-syzkaller-00059-g5356d2f17edf #0
[ 2752.112062][T24183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2752.121983][T24183] Call Trace:
[ 2752.125076][T24183]  <TASK>
[ 2752.127855][T24183]  dump_stack_lvl+0x151/0x1b7
[ 2752.132367][T24183]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 2752.137836][T24183]  ? stack_trace_save+0x113/0x1c0
[ 2752.142703][T24183]  ? stack_trace_snprint+0xf0/0xf0
[ 2752.147643][T24183]  dump_stack+0x15/0x17
[ 2752.151644][T24183]  should_fail+0x3c6/0x510
[ 2752.155888][T24183]  __should_failslab+0xa4/0xe0
[ 2752.160489][T24183]  should_failslab+0x9/0x20
[ 2752.164832][T24183]  slab_pre_alloc_hook+0x37/0xd0
[ 2752.169607][T24183]  __kmalloc+0x6d/0x270
[ 2752.173596][T24183]  ? kvmalloc_node+0x1f0/0x4d0
[ 2752.178200][T24183]  kvmalloc_node+0x1f0/0x4d0
[ 2752.182621][T24183]  ? kstrtouint_from_user+0x20a/0x2a0
[ 2752.187830][T24183]  ? vm_mmap+0xb0/0xb0
[ 2752.191733][T24183]  ? kstrtol_from_user+0x300/0x310
[ 2752.196682][T24183]  __htab_map_lookup_and_delete_batch+0x4aa/0x1eb0
[ 2752.203018][T24183]  ? __kasan_check_write+0x14/0x20
[ 2752.207963][T24183]  ? proc_fail_nth_write+0x20b/0x290
[ 2752.213082][T24183]  ? selinux_file_permission+0x2c4/0x570
[ 2752.218550][T24183]  ? proc_fail_nth_read+0x210/0x210
[ 2752.223587][T24183]  ? __fget_files+0x31e/0x380
[ 2752.228099][T24183]  ? htab_free_prealloced_timers+0x2e0/0x2e0
[ 2752.233918][T24183]  htab_percpu_map_lookup_batch+0x30/0x40
[ 2752.239470][T24183]  ? __htab_percpu_map_update_elem+0x600/0x600
[ 2752.245459][T24183]  bpf_map_do_batch+0x2dc/0x620
[ 2752.250144][T24183]  __sys_bpf+0x5dc/0x760
[ 2752.254221][T24183]  ? fput_many+0x160/0x1b0
[ 2752.258475][T24183]  ? bpf_link_show_fdinfo+0x2d0/0x2d0
[ 2752.263684][T24183]  ? debug_smp_processor_id+0x17/0x20
[ 2752.268890][T24183]  ? fpregs_assert_state_consistent+0xb6/0xe0
[ 2752.274793][T24183]  __x64_sys_bpf+0x7c/0x90
[ 2752.279046][T24183]  do_syscall_64+0x3d/0xb0
[ 2752.283297][T24183]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 2752.289024][T24183] RIP: 0033:0x7f83ef4c6299
[ 2752.293281][T24183] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2752.312722][T24183] RSP: 002b:00007f83ee146048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 2752.320971][T24183] RAX: ffffffffffffffda RBX: 00007f83ef654f80 RCX: 00007f83ef4c6299
[ 2752.328774][T24183] RDX: 0000000000000038 RSI: 0000000020000080 RDI: 0000000000000018
[ 2752.336586][T24183] RBP: 00007f83ee1460a0 R08: 0000000000000000 R09: 0000000000000000
[ 2752.344398][T24183] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2752.352208][T24183] R13: 000000000000000b R14: 00007f83ef654f80 R15: 00007ffec37c5d88
[ 2752.360024][T24183]  </TASK>
[ 2753.007475][   T30] kauditd_printk_skb: 72 callbacks suppressed
[ 2753.007491][   T30] audit: type=1326 audit(1721969724.441:7332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24161 comm="syz.0.15349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefb5e5d299 code=0x7ffc0000
[ 2753.022601][T21288] logitech 0003:046D:C295.0052: item fetching failed at offset 0/3
[ 2753.044720][T21288] logitech 0003:046D:C295.0052: parse failed
[ 2753.051257][T21288] logitech: probe of 0003:046D:C295.0052 failed with error -22
[ 2753.058788][  T313] (unnamed net_device) (uninitialized): Assigned a random MAC address: 82:bd:47:bd:f2:dd
[ 2753.072718][  T313] rtl8150 5-1:0.0: eth1: rtl8150 is detected
[ 2753.075509][T11344] usb 3-1: new high-speed USB device number 124 using dummy_hcd
[ 2753.079380][  T313] usb 5-1: USB disconnect, device number 62
[ 2753.096767][   T30] audit: type=1326 audit(1721969724.441:7333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24161 comm="syz.0.15349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefb5e5d299 code=0x7ffc0000
[ 2753.148336][   T30] audit: type=1326 audit(1721969724.581:7334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24191 comm="syz.2.15358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fdb3763fe9b code=0x7ffc0000
[ 2753.177673][   T30] audit: type=1326 audit(1721969724.611:7335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24191 comm="syz.2.15358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fdb3763fe9b code=0x7ffc0000
[ 2753.252172][   T30] audit: type=1326 audit(1721969724.681:7336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24161 comm="syz.0.15349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fefb5e5bcd0 code=0x7ffc0000
[ 2753.278830][T24162] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[ 2753.296174][  T373] usb 1-1: USB disconnect, device number 90
[ 2753.296398][   T30] audit: type=1326 audit(1721969724.711:7337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24161 comm="syz.0.15349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefb5e5d299 code=0x7ffc0000
[ 2753.329134][   T30] audit: type=1326 audit(1721969724.711:7338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24161 comm="syz.0.15349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefb5e5d299 code=0x7ffc0000
[ 2753.355487][   T30] audit: type=1326 audit(1721969724.711:7339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24161 comm="syz.0.15349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fefb5e5d299 code=0x7ffc0000
[ 2753.394127][   T30] audit: type=1326 audit(1721969724.711:7340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24161 comm="syz.0.15349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefb5e5d299 code=0x7ffc0000
[ 2753.418159][T11344] usb 3-1: Using ep0 maxpacket: 8
[ 2753.420817][T24226] loop1: detected capacity change from 0 to 2048
[ 2753.428399][   T30] audit: type=1326 audit(1721969724.711:7341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24161 comm="syz.0.15349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fefb5e5d299 code=0x7ffc0000
[ 2753.461828][T24229] loop3: detected capacity change from 0 to 2048
[ 2753.483442][T24226] EXT4-fs error (device loop1): ext4_fill_super:4831: inode #2: comm syz.1.15362: casefold flag without casefold feature
[ 2753.504301][T24226] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[ 2753.508173][T24229] EXT4-fs error (device loop3): ext4_fill_super:4831: inode #2: comm syz.3.15363: casefold flag without casefold feature
[ 2753.515283][T24226] EXT4-fs (loop1): Errors on filesystem, clearing orphan list.
[ 2753.526792][T24229] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[ 2753.533710][T24226] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2753.543908][T24229] EXT4-fs (loop3): Errors on filesystem, clearing orphan list.
[ 2753.560888][T24229] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2753.572323][T11344] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2753.581974][T11344] usb 3-1: New USB device found, idVendor=046d, idProduct=c295, bcdDevice= 0.00
[ 2753.615449][T11344] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2753.645721][T11344] usb 3-1: config 0 descriptor??
[ 2754.126352][T11344] logitech 0003:046D:C295.0053: item fetching failed at offset 0/3
[ 2754.134268][T11344] logitech 0003:046D:C295.0053: parse failed
[ 2754.140130][T11344] logitech: probe of 0003:046D:C295.0053 failed with error -22
[ 2754.334034][T24192] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[ 2754.350585][T11344] usb 3-1: USB disconnect, device number 124
[ 2754.355898][T24253] loop1: detected capacity change from 0 to 2048
[ 2754.431006][T24253] EXT4-fs error (device loop1): ext4_fill_super:4831: inode #2: comm syz.1.15368: casefold flag without casefold feature
[ 2754.447365][T24253] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[ 2754.457713][T24253] EXT4-fs (loop1): Errors on filesystem, clearing orphan list.
[ 2754.465123][T24253] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2754.500687][T24255] loop3: detected capacity change from 0 to 256
[ 2754.555928][T24255] exfat: Deprecated parameter 'utf8'
[ 2754.561142][T24255] exfat: Deprecated parameter 'namecase'
[ 2754.566625][T24255] exfat: Deprecated parameter 'utf8'
[ 2754.574023][T24255] exFAT-fs (loop3): failed to load upcase table (idx : 0x00012153, chksum : 0xc3dffc2e, utbl_chksum : 0xe619d30d)
[ 2754.828148][T24255] syz.3.15367[24255] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2754.828234][T24255] syz.3.15367[24255] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 2754.852887][T24261] loop4: detected capacity change from 0 to 2048
[ 2754.881003][T24261] EXT4-fs error (device loop4): ext4_fill_super:4831: inode #2: comm syz.4.15369: casefold flag without casefold feature
[ 2754.913367][T24261] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[ 2754.923986][T24261] EXT4-fs (loop4): Errors on filesystem, clearing orphan list.
[ 2754.931739][T24261] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2755.303247][ T8304] usb 1-1: new high-speed USB device number 91 using dummy_hcd
[ 2755.546891][ T8304] usb 1-1: Using ep0 maxpacket: 8
[ 2755.716304][ T8304] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2755.735496][ T8304] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2755.746675][ T8304] usb 1-1: New USB device found, idVendor=06a3, idProduct=0ccd, bcdDevice= 0.00
[ 2755.757177][ T8304] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2755.815343][T24286] loop3: detected capacity change from 0 to 512
[ 2755.827099][ T8304] usb 1-1: config 0 descriptor??
[ 2755.887923][T24286] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 2755.898123][T24288] loop4: detected capacity change from 0 to 2048
[ 2755.919485][T24286] EXT4-fs (loop3): 1 orphan inode deleted
[ 2755.925244][T24286] EXT4-fs (loop3): 1 truncate cleaned up
[ 2755.931971][T24286] EXT4-fs (loop3): mounted filesystem without journal. Opts: init_itable=0x0000000000000004,grpjquota=,dioread_lock,inode_readahead_blks=0x0000000000010000,errors=remount-ro,journal_ioprio=0x0000000000000001,. Quota mode: none.
[ 2756.027255][T24288] EXT4-fs error (device loop4): ext4_fill_super:4831: inode #2: comm syz.4.15377: casefold flag without casefold feature
[ 2756.069745][T24288] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[ 2757.005871][T24288] EXT4-fs (loop4): Errors on filesystem, clearing orphan list.
[ 2757.013256][T24288] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2757.062015][T24302] loop1: detected capacity change from 0 to 256
[ 2757.704794][T24316] FAULT_INJECTION: forcing a failure.
[ 2757.704794][T24316] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 2757.718065][T24316] CPU: 1 PID: 24316 Comm: syz.4.15384 Not tainted 5.15.151-syzkaller-00059-g5356d2f17edf #0
[ 2757.727942][T24316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2757.737841][T24316] Call Trace:
[ 2757.740963][T24316]  <TASK>
[ 2757.743740][T24316]  dump_stack_lvl+0x151/0x1b7
[ 2757.748252][T24316]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 2757.753720][T24316]  ? kmem_cache_free+0x116/0x2e0
[ 2757.758499][T24316]  dump_stack+0x15/0x17
[ 2757.762482][T24316]  should_fail+0x3c6/0x510
[ 2757.766736][T24316]  should_fail_usercopy+0x1a/0x20
[ 2757.771599][T24316]  _copy_from_user+0x20/0xd0
[ 2757.776022][T24316]  __copy_msghdr_from_user+0x587/0x7c0
[ 2757.781320][T24316]  ? __ia32_sys_shutdown+0x70/0x70
[ 2757.786273][T24316]  ___sys_sendmsg+0x166/0x2e0
[ 2757.790776][T24316]  ? __sys_sendmsg+0x260/0x260
[ 2757.795380][T24316]  ? __fdget+0x1bc/0x240
[ 2757.799456][T24316]  __se_sys_sendmsg+0x19a/0x260
[ 2757.804142][T24316]  ? __x64_sys_sendmsg+0x90/0x90
[ 2757.808915][T24316]  ? ksys_write+0x260/0x2c0
[ 2757.813256][T24316]  ? debug_smp_processor_id+0x17/0x20
[ 2757.818463][T24316]  ? fpregs_assert_state_consistent+0xb6/0xe0
[ 2757.824365][T24316]  __x64_sys_sendmsg+0x7b/0x90
[ 2757.828965][T24316]  do_syscall_64+0x3d/0xb0
[ 2757.833218][T24316]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 2757.838947][T24316] RIP: 0033:0x7f857001c299
[ 2757.843201][T24316] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2757.862641][T24316] RSP: 002b:00007f856ec9c048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 2757.870885][T24316] RAX: ffffffffffffffda RBX: 00007f85701aaf80 RCX: 00007f857001c299
[ 2757.878782][T24316] RDX: 0000000000000000 RSI: 0000000020004440 RDI: 0000000000000005
[ 2757.886592][T24316] RBP: 00007f856ec9c0a0 R08: 0000000000000000 R09: 0000000000000000
[ 2757.894405][T24316] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 2757.902216][T24316] R13: 000000000000000b R14: 00007f85701aaf80 R15: 00007ffd78233e68
[ 2757.910031][T24316]  </TASK>
[ 2757.950981][T24318] loop3: detected capacity change from 0 to 2048
[ 2758.024254][T24318] EXT4-fs error (device loop3): ext4_fill_super:4831: inode #2: comm syz.3.15385: casefold flag without casefold feature
[ 2758.037202][T24318] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[ 2758.064634][T24318] EXT4-fs (loop3): Errors on filesystem, clearing orphan list.
[ 2758.072657][T24318] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2758.442463][ T8304] usbhid 1-1:0.0: can't add hid device: -71
[ 2758.462696][ T8304] usbhid: probe of 1-1:0.0 failed with error -71
[ 2758.626692][ T8304] usb 1-1: USB disconnect, device number 91
[ 2759.803941][T24345] loop1: detected capacity change from 0 to 2048
[ 2759.805269][T24349] loop4: detected capacity change from 0 to 2048
[ 2759.830713][T24349] EXT4-fs error (device loop4): ext4_fill_super:4831: inode #2: comm syz.4.15394: casefold flag without casefold feature
[ 2759.841082][T24345] EXT4-fs error (device loop1): ext4_fill_super:4831: inode #2: comm syz.1.15392: casefold flag without casefold feature
[ 2759.847442][T24349] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[ 2759.855963][T24345] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[ 2759.866204][T24349] EXT4-fs (loop4): Errors on filesystem, clearing orphan list.
[ 2759.875598][T24345] EXT4-fs (loop1): Errors on filesystem, clearing orphan list.
[ 2760.247929][T24349] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2760.251030][T24345] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2760.934988][   T30] kauditd_printk_skb: 84 callbacks suppressed
[ 2760.935003][   T30] audit: type=1326 audit(1721969732.361:7426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24372 comm="syz.1.15400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83ef4c6299 code=0x7ffc0000
[ 2760.964746][  T373] usb 4-1: new high-speed USB device number 76 using dummy_hcd
[ 2760.965484][   T30] audit: type=1326 audit(1721969732.361:7427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24372 comm="syz.1.15400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83ef4c6299 code=0x7ffc0000
[ 2760.995607][   T30] audit: type=1326 audit(1721969732.371:7428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24372 comm="syz.1.15400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f83ef4c6299 code=0x7ffc0000
[ 2761.019244][   T30] audit: type=1326 audit(1721969732.371:7429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24372 comm="syz.1.15400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83ef4c6299 code=0x7ffc0000
[ 2761.042972][   T30] audit: type=1326 audit(1721969732.371:7430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24372 comm="syz.1.15400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f83ef4c6299 code=0x7ffc0000
[ 2761.066598][   T30] audit: type=1326 audit(1721969732.371:7431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24372 comm="syz.1.15400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83ef4c6299 code=0x7ffc0000
[ 2761.085479][ T1103] usb 5-1: new high-speed USB device number 63 using dummy_hcd
[ 2761.090408][   T30] audit: type=1326 audit(1721969732.371:7432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24372 comm="syz.1.15400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f83ef4c6299 code=0x7ffc0000
[ 2761.121208][   T30] audit: type=1326 audit(1721969732.371:7433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24372 comm="syz.1.15400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83ef4c6299 code=0x7ffc0000
[ 2761.145118][   T30] audit: type=1326 audit(1721969732.371:7434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24372 comm="syz.1.15400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f83ef4c4cd0 code=0x7ffc0000
[ 2761.169144][   T30] audit: type=1326 audit(1721969732.371:7435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24372 comm="syz.1.15400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83ef4c6299 code=0x7ffc0000
[ 2761.245507][  T373] usb 4-1: Using ep0 maxpacket: 8
[ 2761.405517][  T373] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2761.416293][  T373] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2761.425768][  T373] usb 4-1: New USB device found, idVendor=06a3, idProduct=0ccd, bcdDevice= 0.00
[ 2761.434651][  T373] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2761.443463][  T373] usb 4-1: config 0 descriptor??
[ 2761.455539][ T1103] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 2761.465780][ T1103] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 2761.474471][ T1103] usb 5-1: config 1 has no interface number 0
[ 2761.480618][ T1103] usb 5-1: config 1 interface 1 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 2761.831611][ T1103] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 2761.840502][ T1103] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2761.848328][ T1103] usb 5-1: Product: syz
[ 2761.852287][ T1103] usb 5-1: Manufacturer: syz
[ 2761.856837][ T1103] usb 5-1: SerialNumber: syz
[ 2761.872260][T24386] loop1: detected capacity change from 0 to 2048
[ 2761.906031][ T1103] cdc_ncm 5-1:1.1: skipping garbage
[ 2761.911121][ T1103] cdc_ncm 5-1:1.1: NCM or ECM functional descriptors missing
[ 2761.920902][ T1103] cdc_ncm 5-1:1.1: bind() failure
[ 2761.926612][T24386] EXT4-fs error (device loop1): ext4_fill_super:4831: inode #2: comm syz.1.15404: casefold flag without casefold feature
[ 2761.940378][T24386] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[ 2761.950402][T24386] EXT4-fs (loop1): Errors on filesystem, clearing orphan list.
[ 2761.957923][T24386] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2763.108529][T24407] loop1: detected capacity change from 0 to 2048
[ 2763.181509][T24407] EXT4-fs error (device loop1): ext4_fill_super:4831: inode #2: comm syz.1.15409: casefold flag without casefold feature
[ 2763.194215][T24407] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[ 2763.204292][T24407] EXT4-fs (loop1): Errors on filesystem, clearing orphan list.
[ 2763.211678][T24407] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2763.697410][T24414] loop3: detected capacity change from 0 to 512
[ 2763.779079][T24414] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 2763.796008][T24414] EXT4-fs (loop3): 1 orphan inode deleted
[ 2763.804631][T24414] EXT4-fs (loop3): 1 truncate cleaned up
[ 2763.810315][  T373] usbhid 4-1:0.0: can't add hid device: -71
[ 2763.816120][T20067] usb 3-1: new high-speed USB device number 125 using dummy_hcd
[ 2763.823615][  T373] usbhid: probe of 4-1:0.0 failed with error -71
[ 2763.833817][T24414] EXT4-fs (loop3): mounted filesystem without journal. Opts: init_itable=0x0000000000000004,grpjquota=,dioread_lock,inode_readahead_blks=0x0000000000010000,errors=remount-ro,journal_ioprio=0x0000000000000001,. Quota mode: none.
[ 2763.856737][  T373] usb 4-1: USB disconnect, device number 76
[ 2763.986664][T24423] loop1: detected capacity change from 0 to 1024
[ 2764.066011][T24423] EXT4-fs (loop1): Ignoring removed orlov option
[ 2764.072267][T24423] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option
[ 2764.085527][T20067] usb 3-1: Using ep0 maxpacket: 16
[ 2764.087150][T24423] EXT4-fs (loop1): mounted filesystem without journal. Opts: noblock_validity,sb=0xffffffffffffffe0,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none.
[ 2764.145073][ T8304] usb 5-1: USB disconnect, device number 63
[ 2764.210986][T24430] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 2764.345620][  T373] usb 4-1: new high-speed USB device number 77 using dummy_hcd
[ 2764.366022][T20067] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 11
[ 2764.381189][T20067] usb 3-1: config 1 interface 0 altsetting 3 endpoint 0xB has invalid wMaxPacketSize 0
[ 2764.454765][T20067] usb 3-1: config 1 interface 0 altsetting 3 bulk endpoint 0xB has invalid maxpacket 0
[ 2764.464577][T24435] loop4: detected capacity change from 0 to 2048
[ 2764.464615][T20067] usb 3-1: config 1 interface 0 altsetting 3 endpoint 0x8A has invalid wMaxPacketSize 0
[ 2764.480567][T20067] usb 3-1: config 1 interface 0 altsetting 3 bulk endpoint 0x8A has invalid maxpacket 0
[ 2764.490238][T20067] usb 3-1: config 1 interface 0 has no altsetting 0
[ 2764.496720][T20067] usb 3-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77
[ 2764.505533][T20067] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2764.526858][T24435] EXT4-fs error (device loop4): ext4_fill_super:4831: inode #2: comm syz.4.15417: casefold flag without casefold feature
[ 2764.539562][T24435] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[ 2764.549871][T24435] EXT4-fs (loop4): Errors on filesystem, clearing orphan list.
[ 2764.556024][T20067] ums-sddr09 3-1:1.0: USB Mass Storage device detected
[ 2764.558531][T24435] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2764.616651][  T373] usb 4-1: Using ep0 maxpacket: 8
[ 2764.765761][  T373] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2764.779699][  T373] usb 4-1: New USB device found, idVendor=046d, idProduct=c295, bcdDevice= 0.00
[ 2764.792953][  T373] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2764.815885][T20067] scsi host1: usb-storage 3-1:1.0
[ 2764.873280][  T373] usb 4-1: config 0 descriptor??
[ 2764.997592][ T8304] usb 3-1: USB disconnect, device number 125
[ 2765.175486][T20067] usb 2-1: new high-speed USB device number 56 using dummy_hcd
[ 2765.366327][  T373] logitech 0003:046D:C295.0054: item fetching failed at offset 0/3
[ 2765.374185][  T373] logitech 0003:046D:C295.0054: parse failed
[ 2765.380384][  T373] logitech: probe of 0003:046D:C295.0054 failed with error -22
[ 2765.435471][T20067] usb 2-1: Using ep0 maxpacket: 8
[ 2765.496175][T24462] loop4: detected capacity change from 0 to 2048
[ 2765.511266][T24462] EXT4-fs error (device loop4): ext4_fill_super:4831: inode #2: comm syz.4.15424: casefold flag without casefold feature
[ 2765.524279][T24462] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[ 2765.534780][T24462] EXT4-fs (loop4): Errors on filesystem, clearing orphan list.
[ 2765.542188][T24462] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2765.571021][T24421] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[ 2765.583148][ T8304] usb 4-1: USB disconnect, device number 77
[ 2765.585560][T20067] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2765.612429][T20067] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2765.622224][T20067] usb 2-1: New USB device found, idVendor=06a3, idProduct=0ccd, bcdDevice= 0.00
[ 2765.631101][T20067] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2765.640011][T20067] usb 2-1: config 0 descriptor??
[ 2765.939366][   T30] kauditd_printk_skb: 446 callbacks suppressed
[ 2765.939383][   T30] audit: type=1326 audit(1721969737.371:7882): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24464 comm="syz.2.15425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fdb376372e7 code=0x7ffc0000
[ 2765.968941][   T30] audit: type=1326 audit(1721969737.371:7883): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24464 comm="syz.2.15425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fdb375dbcb9 code=0x7ffc0000
[ 2765.992422][   T30] audit: type=1326 audit(1721969737.371:7884): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24464 comm="syz.2.15425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=19 compat=0 ip=0x7fdb37640299 code=0x7ffc0000
[ 2766.017926][   T30] audit: type=1326 audit(1721969737.401:7885): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24464 comm="syz.2.15425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fdb376372e7 code=0x7ffc0000
[ 2766.042606][   T30] audit: type=1326 audit(1721969737.401:7886): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24464 comm="syz.2.15425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fdb375dbcb9 code=0x7ffc0000
[ 2766.068611][   T30] audit: type=1326 audit(1721969737.401:7887): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24464 comm="syz.2.15425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=19 compat=0 ip=0x7fdb37640299 code=0x7ffc0000
[ 2766.092336][   T30] audit: type=1326 audit(1721969737.401:7888): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24464 comm="syz.2.15425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fdb376372e7 code=0x7ffc0000
[ 2766.116057][   T30] audit: type=1326 audit(1721969737.401:7889): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24464 comm="syz.2.15425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fdb375dbcb9 code=0x7ffc0000
[ 2766.147219][   T30] audit: type=1326 audit(1721969737.401:7890): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24464 comm="syz.2.15425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=19 compat=0 ip=0x7fdb37640299 code=0x7ffc0000
[ 2766.170862][   T30] audit: type=1326 audit(1721969737.421:7891): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24464 comm="syz.2.15425" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fdb376372e7 code=0x7ffc0000
[ 2766.243264][T24490] loop3: detected capacity change from 0 to 2048
[ 2766.257996][T24490] EXT4-fs error (device loop3): ext4_fill_super:4831: inode #2: comm syz.3.15433: casefold flag without casefold feature
[ 2766.271192][T24490] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[ 2766.282061][T24490] EXT4-fs (loop3): Errors on filesystem, clearing orphan list.
[ 2766.289826][T24490] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2766.665502][   T26] usb 3-1: new high-speed USB device number 126 using dummy_hcd
[ 2766.777284][T24497] loop4: detected capacity change from 0 to 40427
[ 2766.831384][T24497] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 2766.855169][T24497] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 2767.055514][   T26] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 2767.065681][   T26] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 2767.093341][   T26] usb 3-1: config 1 has no interface number 0
[ 2767.099636][   T26] usb 3-1: config 1 interface 1 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 2767.230977][T24511] loop3: detected capacity change from 0 to 16
[ 2767.295537][   T26] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 2767.304468][   T26] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2767.312250][   T26] usb 3-1: Product: syz
[ 2767.316474][   T26] usb 3-1: Manufacturer: syz
[ 2767.320972][T24511] erofs: (device loop3): mounted with root inode @ nid 36.
[ 2767.328019][   T26] usb 3-1: SerialNumber: syz
[ 2767.375936][   T26] cdc_ncm 3-1:1.1: skipping garbage
[ 2767.380995][   T26] cdc_ncm 3-1:1.1: NCM or ECM functional descriptors missing
[ 2767.388232][   T26] cdc_ncm 3-1:1.1: bind() failure
[ 2767.526985][T22696] attempt to access beyond end of device
[ 2767.526985][T22696] loop4: rw=2049, want=45104, limit=40427
[ 2768.072292][   T26] usb 3-1: USB disconnect, device number 126
[ 2768.078874][T20067] usbhid 2-1:0.0: can't add hid device: -71
[ 2768.085463][T20067] usbhid: probe of 2-1:0.0 failed with error -71
[ 2768.099724][T20067] usb 2-1: USB disconnect, device number 56
[ 2768.115909][T24528] loop4: detected capacity change from 0 to 16
[ 2768.138243][T24534] loop3: detected capacity change from 0 to 2048
[ 2768.142225][T24528] erofs: (device loop4): mounted with root inode @ nid 36.
[ 2768.241749][T24534] EXT4-fs error (device loop3): ext4_fill_super:4831: inode #2: comm syz.3.15445: casefold flag without casefold feature
[ 2768.254469][T24534] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[ 2768.264995][T24534] EXT4-fs (loop3): Errors on filesystem, clearing orphan list.
[ 2768.272408][T24534] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2768.497182][T20067] usb 2-1: new high-speed USB device number 57 using dummy_hcd
[ 2768.775459][T20067] usb 2-1: Using ep0 maxpacket: 8
[ 2768.938119][T24543] loop4: detected capacity change from 0 to 2048
[ 2768.947219][T20067] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2768.959064][T20067] usb 2-1: New USB device found, idVendor=046d, idProduct=c295, bcdDevice= 0.00
[ 2768.982003][T24543] EXT4-fs error (device loop4): ext4_fill_super:4831: inode #2: comm syz.4.15447: casefold flag without casefold feature
[ 2768.995768][T24543] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[ 2769.007647][T24543] EXT4-fs (loop4): Errors on filesystem, clearing orphan list.
[ 2769.015113][T24543] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2769.032853][T20067] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2769.097876][T20067] usb 2-1: config 0 descriptor??
[ 2769.130604][T24549] FAULT_INJECTION: forcing a failure.
[ 2769.130604][T24549] name failslab, interval 1, probability 0, space 0, times 0
[ 2769.143260][T24549] CPU: 1 PID: 24549 Comm: syz.2.15448 Not tainted 5.15.151-syzkaller-00059-g5356d2f17edf #0
[ 2769.153140][T24549] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2769.163035][T24549] Call Trace:
[ 2769.166158][T24549]  <TASK>
[ 2769.168934][T24549]  dump_stack_lvl+0x151/0x1b7
[ 2769.173449][T24549]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 2769.178918][T24549]  dump_stack+0x15/0x17
[ 2769.182915][T24549]  should_fail+0x3c6/0x510
[ 2769.187161][T24549]  __should_failslab+0xa4/0xe0
[ 2769.191760][T24549]  ? audit_log_start+0x42f/0xa80
[ 2769.196532][T24549]  should_failslab+0x9/0x20
[ 2769.200873][T24549]  slab_pre_alloc_hook+0x37/0xd0
[ 2769.205646][T24549]  ? audit_log_start+0x42f/0xa80
[ 2769.210417][T24549]  kmem_cache_alloc+0x44/0x200
[ 2769.215017][T24549]  audit_log_start+0x42f/0xa80
[ 2769.219622][T24549]  ? audit_serial+0x30/0x30
[ 2769.223957][T24549]  ? _raw_spin_lock+0xa4/0x1b0
[ 2769.228556][T24549]  ? _raw_spin_trylock_bh+0x190/0x190
[ 2769.233763][T24549]  ? preempt_schedule+0xd9/0xe0
[ 2769.238482][T24549]  ? _raw_spin_unlock_irqrestore+0x5c/0x80
[ 2769.244092][T24549]  ? slow_avc_audit+0x3c0/0x3c0
[ 2769.248780][T24549]  common_lsm_audit+0xd8/0x18b0
[ 2769.253465][T24549]  ? avc_audit_pre_callback+0x2b0/0x2b0
[ 2769.258850][T24549]  ? ipv6_skb_to_auditdata+0xd90/0xd90
[ 2769.264144][T24549]  ? rcu_read_unlock_special+0xdb/0x4c0
[ 2769.269524][T24549]  ? __rcu_read_unlock+0xd0/0xd0
[ 2769.274297][T24549]  slow_avc_audit+0x26c/0x3c0
[ 2769.278984][T24549]  ? __rcu_read_unlock+0x7e/0xd0
[ 2769.283755][T24549]  ? avc_get_hash_stats+0x180/0x180
[ 2769.288789][T24549]  ? avc_has_perm_noaudit+0x2dd/0x430
[ 2769.293998][T24549]  ? finish_task_switch+0x167/0x7b0
[ 2769.299033][T24549]  avc_has_perm+0x1f5/0x260
[ 2769.303372][T24549]  ? __kasan_check_write+0x14/0x20
[ 2769.308321][T24549]  ? avc_has_perm_noaudit+0x430/0x430
[ 2769.313527][T24549]  selinux_mmap_file+0x22d/0x390
[ 2769.318299][T24549]  ? selinux_file_ioctl_compat+0x90/0x90
[ 2769.323766][T24549]  ? rcu_read_unlock_special+0xdb/0x4c0
[ 2769.329149][T24549]  ? irqentry_exit+0x30/0x40
[ 2769.333579][T24549]  ? sysvec_reschedule_ipi+0x7d/0x150
[ 2769.338785][T24549]  security_mmap_file+0x122/0x170
[ 2769.343640][T24549]  vm_mmap_pgoff+0x136/0x450
[ 2769.348070][T24549]  ? account_locked_vm+0x270/0x270
[ 2769.353015][T24549]  ksys_mmap_pgoff+0x15d/0x1e0
[ 2769.357627][T24549]  __x64_sys_mmap+0x103/0x120
[ 2769.362195][T24549]  do_syscall_64+0x3d/0xb0
[ 2769.366381][T24549]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 2769.372109][T24549] RIP: 0033:0x7fdb37640299
[ 2769.376363][T24549] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2769.395811][T24549] RSP: 002b:00007fdb3627e048 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 2769.404049][T24549] RAX: ffffffffffffffda RBX: 00007fdb377cf130 RCX: 00007fdb37640299
[ 2769.411951][T24549] RDX: 0000000000000000 RSI: 0000000000003000 RDI: 0000000020001000
[ 2769.419758][T24549] RBP: 00007fdb3627e0a0 R08: 0000000000000009 R09: 0000000000000000
[ 2769.427567][T24549] R10: 0000000000000013 R11: 0000000000000246 R12: 0000000000000001
[ 2769.435388][T24549] R13: 000000000000006e R14: 00007fdb377cf130 R15: 00007ffcfe0063b8
[ 2769.443196][T24549]  </TASK>
[ 2770.036446][T20067] logitech 0003:046D:C295.0055: item fetching failed at offset 0/3
[ 2770.044361][T20067] logitech 0003:046D:C295.0055: parse failed
[ 2770.052711][T20067] logitech: probe of 0003:046D:C295.0055 failed with error -22
[ 2770.135468][   T26] usb 5-1: new high-speed USB device number 64 using dummy_hcd
[ 2770.145586][T11344] usb 3-1: new high-speed USB device number 127 using dummy_hcd
[ 2770.242651][T24525] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[ 2770.255342][T20067] usb 2-1: USB disconnect, device number 57
[ 2770.395543][   T26] usb 5-1: Using ep0 maxpacket: 16
[ 2770.525614][T11344] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 2770.535770][   T26] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 11
[ 2770.544465][   T26] usb 5-1: config 1 interface 0 altsetting 3 endpoint 0xB has invalid wMaxPacketSize 0
[ 2770.554319][T11344] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 2770.563306][T11344] usb 3-1: config 1 has no interface number 0
[ 2770.569387][   T26] usb 5-1: config 1 interface 0 altsetting 3 bulk endpoint 0xB has invalid maxpacket 0
[ 2770.579143][T11344] usb 3-1: config 1 interface 1 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 2770.592061][   T26] usb 5-1: config 1 interface 0 altsetting 3 endpoint 0x8A has invalid wMaxPacketSize 0
[ 2770.601735][   T26] usb 5-1: config 1 interface 0 altsetting 3 bulk endpoint 0x8A has invalid maxpacket 0
[ 2770.611321][   T26] usb 5-1: config 1 interface 0 has no altsetting 0
[ 2770.617845][   T26] usb 5-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77
[ 2770.626723][   T26] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2770.695961][   T26] ums-sddr09 5-1:1.0: USB Mass Storage device detected
[ 2770.775505][T11344] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 2770.782442][T24579] loop1: detected capacity change from 0 to 2048
[ 2770.791352][T11344] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2770.799589][T11344] usb 3-1: Product: syz
[ 2770.804549][T11344] usb 3-1: Manufacturer: syz
[ 2770.809287][T11344] usb 3-1: SerialNumber: syz
[ 2770.821540][T24579] EXT4-fs error (device loop1): ext4_fill_super:4831: inode #2: comm syz.1.15459: casefold flag without casefold feature
[ 2770.831684][T24582] loop3: detected capacity change from 0 to 2048
[ 2770.843763][T24579] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[ 2770.854706][T24582] EXT4-fs error (device loop3): ext4_fill_super:4831: inode #2: comm syz.3.15460: casefold flag without casefold feature
[ 2770.857609][T24579] EXT4-fs (loop1): Errors on filesystem, clearing orphan list.
[ 2770.868413][T11344] cdc_ncm 3-1:1.1: skipping garbage
[ 2770.874910][T24579] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2770.880248][T11344] cdc_ncm 3-1:1.1: NCM or ECM functional descriptors missing
[ 2770.891560][T24582] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[ 2770.897627][T11344] cdc_ncm 3-1:1.1: bind() failure
[ 2770.915150][T24582] EXT4-fs (loop3): Errors on filesystem, clearing orphan list.
[ 2770.922918][T24582] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2770.934273][   T26] scsi host1: usb-storage 5-1:1.0
[ 2770.949238][   T30] kauditd_printk_skb: 540 callbacks suppressed
[ 2770.949251][   T30] audit: type=1326 audit(1721969742.381:8430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24574 comm="syz.0.15458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fefb5e542e7 code=0x7ffc0000
[ 2770.979527][   T30] audit: type=1326 audit(1721969742.381:8431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24574 comm="syz.0.15458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fefb5df8cb9 code=0x7ffc0000
[ 2771.004254][   T30] audit: type=1326 audit(1721969742.381:8432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24574 comm="syz.0.15458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=19 compat=0 ip=0x7fefb5e5d299 code=0x7ffc0000
[ 2771.033398][   T30] audit: type=1326 audit(1721969742.421:8433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24574 comm="syz.0.15458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fefb5e542e7 code=0x7ffc0000
[ 2771.057113][   T30] audit: type=1326 audit(1721969742.421:8434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24574 comm="syz.0.15458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fefb5df8cb9 code=0x7ffc0000
[ 2771.080779][   T30] audit: type=1326 audit(1721969742.421:8435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24574 comm="syz.0.15458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=19 compat=0 ip=0x7fefb5e5d299 code=0x7ffc0000
[ 2771.125258][ T1179] usb 5-1: USB disconnect, device number 64
[ 2771.144735][   T30] audit: type=1326 audit(1721969742.441:8436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24574 comm="syz.0.15458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fefb5e542e7 code=0x7ffc0000
[ 2771.191812][   T30] audit: type=1326 audit(1721969742.441:8437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24574 comm="syz.0.15458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fefb5df8cb9 code=0x7ffc0000
[ 2771.251336][   T30] audit: type=1326 audit(1721969742.441:8438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24574 comm="syz.0.15458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=19 compat=0 ip=0x7fefb5e5d299 code=0x7ffc0000
[ 2771.318204][   T30] audit: type=1326 audit(1721969742.461:8439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24574 comm="syz.0.15458" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fefb5e542e7 code=0x7ffc0000
[ 2771.999801][T24601] loop1: detected capacity change from 0 to 2048
[ 2772.025348][T24603] loop3: detected capacity change from 0 to 2048
[ 2772.037322][T24601] EXT4-fs error (device loop1): ext4_fill_super:4831: inode #2: comm syz.1.15463: casefold flag without casefold feature
[ 2772.050048][T24601] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[ 2772.060215][T24601] EXT4-fs (loop1): Errors on filesystem, clearing orphan list.
[ 2772.067852][T24601] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2772.097659][T24603] EXT4-fs error (device loop3): ext4_fill_super:4831: inode #2: comm syz.3.15464: casefold flag without casefold feature
[ 2772.110657][T24603] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[ 2772.121662][T24603] EXT4-fs (loop3): Errors on filesystem, clearing orphan list.
[ 2772.129520][T24603] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2772.195448][ T1179] usb 5-1: new high-speed USB device number 65 using dummy_hcd
[ 2772.795514][ T1179] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[ 2772.806181][ T1179] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2772.816828][ T1179] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2772.826352][ T1179] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[ 2772.915832][ T1179] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[ 2772.924821][ T1179] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[ 2772.932994][ T1179] usb 5-1: Manufacturer: syz
[ 2772.938805][ T1179] usb 5-1: config 0 descriptor??
[ 2772.967599][T11344] usb 3-1: USB disconnect, device number 127
[ 2773.013091][T24622] loop1: detected capacity change from 0 to 16
[ 2773.095953][T24622] erofs: (device loop1): mounted with root inode @ nid 36.
[ 2773.190189][T24599] loop4: detected capacity change from 0 to 256
[ 2773.215456][ T8304] usb 4-1: new high-speed USB device number 78 using dummy_hcd
[ 2773.235728][T24599] exfat: Deprecated parameter 'utf8'
[ 2773.278142][T24599] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xa4dad179, utbl_chksum : 0xe619d30d)
[ 2773.385474][T11344] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[ 2773.455457][ T8304] usb 4-1: Using ep0 maxpacket: 32
[ 2773.575570][ T8304] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 2773.585569][ T8304] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 2773.594354][ T8304] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 2773.603252][ T8304] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2773.612031][ T8304] usb 4-1: config 0 descriptor??
[ 2773.635515][T11344] usb 3-1: Using ep0 maxpacket: 32
[ 2773.645620][   T26] usb 1-1: new high-speed USB device number 92 using dummy_hcd
[ 2773.785548][T11344] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 2773.795655][T11344] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 2773.804474][T11344] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 2773.813416][T11344] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2773.822131][T11344] usb 3-1: config 0 descriptor??
[ 2773.877394][ T8304] usb 4-1: USB disconnect, device number 78
[ 2773.885866][   T26] usb 1-1: Using ep0 maxpacket: 8
[ 2773.913216][T24629] loop1: detected capacity change from 0 to 2048
[ 2773.985536][ T1179] usbhid 5-1:0.0: can't add hid device: -71
[ 2773.991442][ T1179] usbhid: probe of 5-1:0.0 failed with error -71
[ 2773.998933][T24629] EXT4-fs error (device loop1): ext4_fill_super:4831: inode #2: comm syz.1.15473: casefold flag without casefold feature
[ 2774.006279][ T1179] usb 5-1: USB disconnect, device number 65
[ 2774.013595][T24629] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[ 2774.027351][T24629] EXT4-fs (loop1): Errors on filesystem, clearing orphan list.
[ 2774.034705][T24629] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2774.055522][   T26] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2774.075538][   T26] usb 1-1: New USB device found, idVendor=046d, idProduct=c295, bcdDevice= 0.00
[ 2774.090316][   T26] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2774.106336][   T26] usb 1-1: config 0 descriptor??
[ 2774.111491][ T8304] usb 3-1: USB disconnect, device number 2
[ 2774.375486][ T1179] usb 5-1: new high-speed USB device number 66 using dummy_hcd
[ 2774.586445][   T26] logitech 0003:046D:C295.0056: item fetching failed at offset 0/3
[ 2774.594376][   T26] logitech 0003:046D:C295.0056: parse failed
[ 2774.600187][   T26] logitech: probe of 0003:046D:C295.0056 failed with error -22
[ 2774.918315][T24625] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[ 2774.931109][ T1103] usb 1-1: USB disconnect, device number 92
[ 2774.945548][ T1179] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2774.956508][ T1179] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2774.966490][ T1179] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[ 2774.975355][ T1179] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2774.984426][ T1179] usb 5-1: config 0 descriptor??
[ 2775.040487][T24646] loop1: detected capacity change from 0 to 2048
[ 2775.106654][T24646] EXT4-fs error (device loop1): ext4_fill_super:4831: inode #2: comm syz.1.15477: casefold flag without casefold feature
[ 2775.119376][T24646] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[ 2775.129472][T24646] EXT4-fs (loop1): Errors on filesystem, clearing orphan list.
[ 2775.137078][T24646] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2775.732157][T24662] x_tables: duplicate underflow at hook 3
[ 2775.947543][T20067] usb 4-1: new high-speed USB device number 79 using dummy_hcd
[ 2776.115484][   T26] usb 1-1: new high-speed USB device number 93 using dummy_hcd
[ 2776.325537][T20067] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 2776.335626][T20067] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 2776.344344][T20067] usb 4-1: config 1 has no interface number 0
[ 2776.350332][T20067] usb 4-1: config 1 interface 1 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 2776.515559][T20067] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 2776.524537][T20067] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2776.532434][T20067] usb 4-1: Product: syz
[ 2776.536412][T20067] usb 4-1: Manufacturer: syz
[ 2776.540760][T20067] usb 4-1: SerialNumber: syz
[ 2776.585957][T20067] cdc_ncm 4-1:1.1: skipping garbage
[ 2776.591187][T20067] cdc_ncm 4-1:1.1: NCM or ECM functional descriptors missing
[ 2776.598407][T20067] cdc_ncm 4-1:1.1: bind() failure
[ 2776.675515][ T1103] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[ 2777.055504][ T1179] usbhid 5-1:0.0: can't add hid device: -71
[ 2777.061343][ T1103] usb 3-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[ 2777.071960][ T1179] usbhid: probe of 5-1:0.0 failed with error -71
[ 2777.083362][ T1103] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2777.098166][ T1179] usb 5-1: USB disconnect, device number 66
[ 2777.108281][ T1103] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2777.118109][ T1103] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[ 2777.235530][ T1103] usb 3-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[ 2777.244435][ T1103] usb 3-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[ 2777.252318][ T1103] usb 3-1: Manufacturer: syz
[ 2777.257628][ T1103] usb 3-1: config 0 descriptor??
[ 2777.285497][T20122] usb 2-1: new high-speed USB device number 58 using dummy_hcd
[ 2777.485464][ T1179] usb 5-1: new high-speed USB device number 67 using dummy_hcd
[ 2777.535564][T20122] usb 2-1: Using ep0 maxpacket: 32
[ 2777.685562][T20122] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 2777.695520][T20122] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 2777.704536][T20122] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 2777.713437][T20122] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2777.721997][T20122] usb 2-1: config 0 descriptor??
[ 2777.865506][ T1179] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 2777.875477][ T1179] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 2777.884112][ T1179] usb 5-1: config 1 has no interface number 0
[ 2777.890084][ T1179] usb 5-1: config 1 interface 1 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 2777.968622][ T8303] usb 2-1: USB disconnect, device number 58
[ 2778.085638][ T1179] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 2778.094586][ T1179] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2778.102355][ T1179] usb 5-1: Product: syz
[ 2778.106524][ T1179] usb 5-1: Manufacturer: syz
[ 2778.110947][ T1179] usb 5-1: SerialNumber: syz
[ 2778.125499][ T1103] usbhid 3-1:0.0: can't add hid device: -71
[ 2778.131391][ T1103] usbhid: probe of 3-1:0.0 failed with error -71
[ 2778.143427][ T1103] usb 3-1: USB disconnect, device number 3
[ 2778.155866][ T1179] cdc_ncm 5-1:1.1: skipping garbage
[ 2778.163972][ T1179] cdc_ncm 5-1:1.1: NCM or ECM functional descriptors missing
[ 2778.173147][ T1179] cdc_ncm 5-1:1.1: bind() failure
[ 2778.300812][ T8303] usb 4-1: USB disconnect, device number 79
[ 2778.335754][T24683] loop3: detected capacity change from 0 to 2048
[ 2778.405939][T24683] EXT4-fs error (device loop3): ext4_fill_super:4831: inode #2: comm syz.3.15487: casefold flag without casefold feature
[ 2778.418826][T24683] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[ 2778.429055][T24683] EXT4-fs (loop3): Errors on filesystem, clearing orphan list.
[ 2778.436594][T24683] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2778.615598][   T26] usb 1-1: unable to get BOS descriptor or descriptor too short
[ 2778.718755][   T26] usb 1-1: unable to read config index 0 descriptor/start: -71
[ 2778.773025][   T26] usb 1-1: can't read configurations, error -71
[ 2778.850298][T24695] loop1: detected capacity change from 0 to 512
[ 2778.896237][T24695] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 2778.917820][T24695] EXT4-fs (loop1): 1 orphan inode deleted
[ 2778.923399][T24695] EXT4-fs (loop1): 1 truncate cleaned up
[ 2778.928998][T24695] EXT4-fs (loop1): mounted filesystem without journal. Opts: init_itable=0x0000000000000004,grpjquota=,dioread_lock,inode_readahead_blks=0x0000000000010000,errors=remount-ro,journal_ioprio=0x0000000000000001,. Quota mode: none.
[ 2780.072739][   T26] usb 5-1: USB disconnect, device number 67
[ 2780.085665][   T30] kauditd_printk_skb: 188 callbacks suppressed
[ 2780.085681][   T30] audit: type=1326 audit(1721969751.521:8628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24721 comm="syz.4.15498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f857001c299 code=0x7ffc0000
[ 2780.116265][   T30] audit: type=1326 audit(1721969751.521:8629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24721 comm="syz.4.15498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f857001c299 code=0x7ffc0000
[ 2780.140111][   T30] audit: type=1326 audit(1721969751.531:8630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24721 comm="syz.4.15498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f857001c299 code=0x7ffc0000
[ 2780.163549][   T30] audit: type=1326 audit(1721969751.531:8631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24721 comm="syz.4.15498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f857001c299 code=0x7ffc0000
[ 2780.186884][ T1103] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[ 2780.192144][   T30] audit: type=1326 audit(1721969751.531:8632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24721 comm="syz.4.15498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f857001c299 code=0x7ffc0000
[ 2780.217584][   T30] audit: type=1326 audit(1721969751.531:8633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24721 comm="syz.4.15498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f857001c299 code=0x7ffc0000
[ 2780.241185][   T30] audit: type=1326 audit(1721969751.531:8634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24721 comm="syz.4.15498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f857001c299 code=0x7ffc0000
[ 2780.265096][   T30] audit: type=1326 audit(1721969751.531:8635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24721 comm="syz.4.15498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f857001c299 code=0x7ffc0000
[ 2780.289419][   T30] audit: type=1326 audit(1721969751.531:8636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24721 comm="syz.4.15498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f857001c299 code=0x7ffc0000
[ 2780.313342][   T30] audit: type=1326 audit(1721969751.531:8637): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=24721 comm="syz.4.15498" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f857001c299 code=0x7ffc0000
[ 2780.517484][   T26] usb 5-1: new high-speed USB device number 68 using dummy_hcd
[ 2780.595508][  T373] usb 4-1: new high-speed USB device number 80 using dummy_hcd
[ 2780.636784][T24729] x_tables: duplicate underflow at hook 3
[ 2780.785525][   T26] usb 5-1: Using ep0 maxpacket: 8
[ 2780.786576][ T1103] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 2780.800320][ T1103] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 2780.810582][ T1103] usb 3-1: config 1 has no interface number 0
[ 2780.816639][ T1103] usb 3-1: config 1 interface 1 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 2780.823227][T24731] loop1: detected capacity change from 0 to 2048
[ 2780.865461][  T373] usb 4-1: Using ep0 maxpacket: 32
[ 2780.915516][   T26] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2780.925185][   T26] usb 5-1: New USB device found, idVendor=046d, idProduct=c295, bcdDevice= 0.00
[ 2780.934143][ T8303] usb 1-1: new high-speed USB device number 95 using dummy_hcd
[ 2780.941569][   T26] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2780.944889][T24731] EXT4-fs error (device loop1): ext4_fill_super:4831: inode #2: comm syz.1.15501: casefold flag without casefold feature
[ 2780.952738][   T26] usb 5-1: config 0 descriptor??
[ 2780.962495][T24731] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[ 2780.976788][T24731] EXT4-fs (loop1): Errors on filesystem, clearing orphan list.
[ 2780.984137][T24731] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2780.985794][  T373] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 2781.004994][  T373] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 2781.005525][ T1103] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 2781.023176][  T373] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 2781.023457][ T1103] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2781.040207][ T1103] usb 3-1: Product: syz
[ 2781.042371][  T373] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2781.044178][ T1103] usb 3-1: Manufacturer: syz
[ 2781.056570][ T1103] usb 3-1: SerialNumber: syz
[ 2781.065650][  T373] usb 4-1: config 0 descriptor??
[ 2781.096030][ T1103] cdc_ncm 3-1:1.1: skipping garbage
[ 2781.101095][ T1103] cdc_ncm 3-1:1.1: NCM or ECM functional descriptors missing
[ 2781.108566][ T1103] cdc_ncm 3-1:1.1: bind() failure
[ 2781.316953][ T1103] usb 4-1: USB disconnect, device number 80
[ 2781.476175][   T26] logitech 0003:046D:C295.0057: item fetching failed at offset 0/3
[ 2781.484054][   T26] logitech 0003:046D:C295.0057: parse failed
[ 2781.490003][   T26] logitech: probe of 0003:046D:C295.0057 failed with error -22
[ 2781.665998][T24722] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[ 2781.678080][ T1103] usb 5-1: USB disconnect, device number 68
[ 2781.738590][T24741] loop1: detected capacity change from 0 to 2048
[ 2781.831385][T24741] EXT4-fs error (device loop1): ext4_fill_super:4831: inode #2: comm syz.1.15502: casefold flag without casefold feature
[ 2781.833732][T24743] loop3: detected capacity change from 0 to 2048
[ 2781.846763][T24741] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[ 2781.860840][T24741] EXT4-fs (loop1): Errors on filesystem, clearing orphan list.
[ 2781.865630][T24743] EXT4-fs error (device loop3): ext4_fill_super:4831: inode #2: comm syz.3.15503: casefold flag without casefold feature
[ 2781.868828][T24741] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[ 2781.881209][T24743] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[ 2781.901333][T24743] ==================================================================
[ 2781.909204][T24743] BUG: KASAN: use-after-free in __ext4_iget+0x2ee/0x3f00
[ 2781.916059][T24743] Read of size 8 at addr ffff88812f8faf78 by task syz.3.15503/24743
[ 2781.923874][T24743] 
[ 2781.926038][T24743] CPU: 0 PID: 24743 Comm: syz.3.15503 Not tainted 5.15.151-syzkaller-00059-g5356d2f17edf #0
[ 2781.935933][T24743] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 2781.945828][T24743] Call Trace:
[ 2781.948952][T24743]  <TASK>
[ 2781.951729][T24743]  dump_stack_lvl+0x151/0x1b7
[ 2781.956243][T24743]  ? io_uring_drop_tctx_refs+0x190/0x190
[ 2781.961714][T24743]  ? panic+0x751/0x751
[ 2781.965704][T24743]  ? __kasan_check_write+0x14/0x20
[ 2781.970647][T24743]  print_address_description+0x87/0x3b0
[ 2781.976114][T24743]  ? __se_sys_mount+0x2c4/0x3b0
[ 2781.980799][T24743]  ? __x64_sys_mount+0xbf/0xd0
[ 2781.985404][T24743]  kasan_report+0x179/0x1c0
[ 2781.989742][T24743]  ? __ext4_iget+0x2ee/0x3f00
[ 2781.994254][T24743]  ? __ext4_iget+0x2ee/0x3f00
[ 2781.998768][T24743]  __asan_report_load8_noabort+0x14/0x20
[ 2782.004246][T24743]  __ext4_iget+0x2ee/0x3f00
[ 2782.008573][T24743]  ? xas_nomem+0x19a/0x1d0
[ 2782.012833][T24743]  ? ida_alloc_range+0x9fd/0xa80
[ 2782.017608][T24743]  ? __kasan_kmalloc+0x9/0x10
[ 2782.022123][T24743]  ? ext4_get_projid+0x140/0x140
[ 2782.026890][T24743]  ? __kasan_check_write+0x14/0x20
[ 2782.031837][T24743]  ? _raw_write_lock+0xa4/0x170
[ 2782.036526][T24743]  ? __proc_create+0x65a/0xa00
[ 2782.041124][T24743]  ? ext4_init_orphan_info+0x161/0x1080
[ 2782.046507][T24743]  ext4_enable_quotas+0x556/0x980
[ 2782.051366][T24743]  ? ext4_force_commit+0xc0/0xc0
[ 2782.056140][T24743]  ? proc_create+0x2b0/0x2b0
[ 2782.060564][T24743]  ? ext4_register_sysfs+0x281/0x2c0
[ 2782.065690][T24743]  ext4_fill_super+0x8b95/0x96e0
[ 2782.070466][T24743]  ? ext4_mount+0x40/0x40
[ 2782.074625][T24743]  ? vscnprintf+0x80/0x80
[ 2782.078792][T24743]  ? set_blocksize+0x1f0/0x380
[ 2782.083391][T24743]  ? sb_set_blocksize+0xa8/0xf0
[ 2782.088077][T24743]  mount_bdev+0x282/0x3b0
[ 2782.092243][T24743]  ? ext4_mount+0x40/0x40
[ 2782.096409][T24743]  ext4_mount+0x34/0x40
[ 2782.100400][T24743]  legacy_get_tree+0xf1/0x190
[ 2782.104914][T24743]  ? ext4_errno_to_code+0x140/0x140
[ 2782.109948][T24743]  vfs_get_tree+0x88/0x290
[ 2782.114202][T24743]  do_new_mount+0x2ba/0xb30
[ 2782.118545][T24743]  ? do_move_mount_old+0x160/0x160
[ 2782.123488][T24743]  ? security_capable+0x87/0xb0
[ 2782.128177][T24743]  ? ns_capable+0x89/0xe0
[ 2782.132342][T24743]  path_mount+0x671/0x1070
[ 2782.136597][T24743]  __se_sys_mount+0x2c4/0x3b0
[ 2782.141106][T24743]  ? exc_page_fault+0x47a/0x830
[ 2782.145795][T24743]  ? __x64_sys_mount+0xd0/0xd0
[ 2782.150397][T24743]  __x64_sys_mount+0xbf/0xd0
[ 2782.154820][T24743]  do_syscall_64+0x3d/0xb0
[ 2782.159073][T24743]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 2782.164802][T24743] RIP: 0033:0x7f239205599a
[ 2782.169057][T24743] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 7e 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 2782.188495][T24743] RSP: 002b:00007f2390cd3e78 EFLAGS: 00000202 ORIG_RAX: 00000000000000a5
[ 2782.196739][T24743] RAX: ffffffffffffffda RBX: 00007f2390cd3f00 RCX: 00007f239205599a
[ 2782.204552][T24743] RDX: 0000000020000780 RSI: 00000000200004c0 RDI: 00007f2390cd3ec0
[ 2782.212361][T24743] RBP: 0000000020000780 R08: 00007f2390cd3f00 R09: 00000000000040c2
[ 2782.220174][T24743] R10: 00000000000040c2 R11: 0000000000000202 R12: 00000000200004c0
[ 2782.227990][T24743] R13: 00007f2390cd3ec0 R14: 0000000000000751 R15: 0000000020000300
[ 2782.235803][T24743]  </TASK>
[ 2782.238661][T24743] 
[ 2782.240830][T24743] Allocated by task 10544:
[ 2782.245082][T24743]  __kasan_slab_alloc+0xb1/0xe0
[ 2782.249771][T24743]  slab_post_alloc_hook+0x53/0x2c0
[ 2782.254714][T24743]  kmem_cache_alloc+0xf5/0x200
[ 2782.259316][T24743]  f2fs_alloc_inode+0x26/0x340
[ 2782.263914][T24743]  iget_locked+0x174/0x860
[ 2782.268167][T24743]  f2fs_iget+0x55/0x5040
[ 2782.272246][T24743]  f2fs_fill_super+0x4eed/0x8170
[ 2782.277194][T24743]  mount_bdev+0x282/0x3b0
[ 2782.281360][T24743]  f2fs_mount+0x34/0x40
[ 2782.285353][T24743]  legacy_get_tree+0xf1/0x190
[ 2782.289864][T24743]  vfs_get_tree+0x88/0x290
[ 2782.294117][T24743]  do_new_mount+0x2ba/0xb30
[ 2782.298460][T24743]  path_mount+0x671/0x1070
[ 2782.302711][T24743]  __se_sys_mount+0x2c4/0x3b0
[ 2782.307225][T24743]  __x64_sys_mount+0xbf/0xd0
[ 2782.311650][T24743]  do_syscall_64+0x3d/0xb0
[ 2782.315902][T24743]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 2782.321632][T24743] 
[ 2782.323802][T24743] Last potentially related work creation:
[ 2782.329356][T24743]  kasan_save_stack+0x3b/0x60
[ 2782.333868][T24743]  __kasan_record_aux_stack+0xd3/0xf0
[ 2782.339076][T24743]  kasan_record_aux_stack_noalloc+0xb/0x10
[ 2782.344718][T24743]  call_rcu+0x135/0x1310
[ 2782.348800][T24743]  evict+0x5df/0x630
[ 2782.352530][T24743]  iput+0x63b/0x7e0
[ 2782.356175][T24743]  f2fs_put_super+0x683/0xc10
[ 2782.360689][T24743]  generic_shutdown_super+0x157/0x2e0
[ 2782.365897][T24743]  kill_block_super+0x7e/0xe0
[ 2782.370408][T24743]  kill_f2fs_super+0x2f9/0x3c0
[ 2782.375009][T24743]  deactivate_locked_super+0xad/0x110
[ 2782.380217][T24743]  deactivate_super+0xbe/0xf0
[ 2782.384728][T24743]  cleanup_mnt+0x45c/0x510
[ 2782.388981][T24743]  __cleanup_mnt+0x19/0x20
[ 2782.393241][T24743]  task_work_run+0x129/0x190
[ 2782.397667][T24743]  exit_to_user_mode_loop+0xc4/0xe0
[ 2782.402782][T24743]  exit_to_user_mode_prepare+0x5a/0xa0
[ 2782.408076][T24743]  syscall_exit_to_user_mode+0x26/0x160
[ 2782.413455][T24743]  do_syscall_64+0x49/0xb0
[ 2782.417710][T24743]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 2782.423438][T24743] 
[ 2782.425608][T24743] Second to last potentially related work creation:
[ 2782.432032][T24743]  kasan_save_stack+0x3b/0x60
[ 2782.436545][T24743]  __kasan_record_aux_stack+0xd3/0xf0
[ 2782.441751][T24743]  kasan_record_aux_stack_noalloc+0xb/0x10
[ 2782.447393][T24743]  call_rcu+0x135/0x1310
[ 2782.451480][T24743]  evict+0x5df/0x630
[ 2782.455293][T24743]  iput+0x63b/0x7e0
[ 2782.458949][T24743]  f2fs_put_super+0x683/0xc10
[ 2782.463450][T24743]  generic_shutdown_super+0x157/0x2e0
[ 2782.468758][T24743]  kill_block_super+0x7e/0xe0
[ 2782.473264][T24743]  kill_f2fs_super+0x2f9/0x3c0
[ 2782.477864][T24743]  deactivate_locked_super+0xad/0x110
[ 2782.483073][T24743]  deactivate_super+0xbe/0xf0
[ 2782.487588][T24743]  cleanup_mnt+0x45c/0x510
[ 2782.491841][T24743]  __cleanup_mnt+0x19/0x20
[ 2782.496093][T24743]  task_work_run+0x129/0x190
[ 2782.500517][T24743]  exit_to_user_mode_loop+0xc4/0xe0
[ 2782.505552][T24743]  exit_to_user_mode_prepare+0x5a/0xa0
[ 2782.510847][T24743]  syscall_exit_to_user_mode+0x26/0x160
[ 2782.516231][T24743]  do_syscall_64+0x49/0xb0
[ 2782.520481][T24743]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 2782.526210][T24743] 
[ 2782.528378][T24743] The buggy address belongs to the object at ffff88812f8faa70
[ 2782.528378][T24743]  which belongs to the cache f2fs_inode_cache of size 1424
[ 2782.542875][T24743] The buggy address is located 1288 bytes inside of
[ 2782.542875][T24743]  1424-byte region [ffff88812f8faa70, ffff88812f8fb000)
[ 2782.556156][T24743] The buggy address belongs to the page:
[ 2782.561633][T24743] page:ffffea0004be3e00 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff88812f8ff940 pfn:0x12f8f8
[ 2782.572991][T24743] head:ffffea0004be3e00 order:3 compound_mapcount:0 compound_pincount:0
[ 2782.581159][T24743] flags: 0x4000000000010200(slab|head|zone=1)
[ 2782.587076][T24743] raw: 4000000000010200 ffffea0004be7200 0000000300000003 ffff8881003f1080
[ 2782.595478][T24743] raw: ffff88812f8ff940 000000008015000f 00000001ffffffff 0000000000000000
[ 2782.603889][T24743] page dumped because: kasan: bad access detected
[ 2782.610149][T24743] page_owner tracks the page as allocated
[ 2782.615688][T24743] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0x1d2050(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL|__GFP_RECLAIMABLE), pid 1531, ts 104309566741, free_ts 0
[ 2782.636179][T24743]  post_alloc_hook+0x1a3/0x1b0
[ 2782.640777][T24743]  prep_new_page+0x1b/0x110
[ 2782.645116][T24743]  get_page_from_freelist+0x3550/0x35d0
[ 2782.650493][T24743]  __alloc_pages+0x27e/0x8f0
[ 2782.654919][T24743]  new_slab+0x9a/0x4e0
[ 2782.658824][T24743]  ___slab_alloc+0x39e/0x830
[ 2782.663251][T24743]  __slab_alloc+0x4a/0x90
[ 2782.667416][T24743]  kmem_cache_alloc+0x134/0x200
[ 2782.672101][T24743]  f2fs_alloc_inode+0x26/0x340
[ 2782.676704][T24743]  new_inode_pseudo+0x64/0x220
[ 2782.681304][T24743]  new_inode+0x28/0x1c0
[ 2782.685294][T24743]  f2fs_new_inode+0x10e/0x1410
[ 2782.689893][T24743]  f2fs_mkdir+0x12f/0x570
[ 2782.694064][T24743]  vfs_mkdir+0x3f6/0x610
[ 2782.698139][T24743]  ovl_mkdir_real+0x59/0x1a0
[ 2782.702568][T24743]  ovl_workdir_create+0x3b8/0x7a0
[ 2782.707428][T24743] page_owner free stack trace missing
[ 2782.712633][T24743] 
[ 2782.714801][T24743] Memory state around the buggy address:
[ 2782.720277][T24743]  ffff88812f8fae00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2782.728173][T24743]  ffff88812f8fae80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2782.736074][T24743] >ffff88812f8faf00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2782.743968][T24743]                                                                 ^
[ 2782.751781][T24743]  ffff88812f8faf80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2782.759677][T24743]  ffff88812f8fb000: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 2782.767572][T24743] ==================================================================
[ 2782.775472][T24743] Disabling lock debugging due to kernel taint
[ 2782.784471][T24743] EXT4-fs warning (device loop3): ext4_enable_quotas:6410: Failed to enable quota tracking (type=0, err=-13, ino=3). Please run e2fsck to fix.
[ 2782.799425][T24743] EXT4-fs (loop3): mount failed
[ 2782.919574][   T26] usb 3-1: USB disconnect, device number 4
[ 2783.545489][ T8303] usb 1-1: unable to get BOS descriptor or descriptor too short
[ 2783.605495][ T8303] usb 1-1: unable to read config index 0 descriptor/start: -71
[ 2783.612902][ T8303] usb 1-1: can't read configurations, error -71