last executing test programs:

4.805610304s ago: executing program 3:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0xfff, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000640)={{r0}, &(0x7f00000005c0), &(0x7f0000000600)='%pI4   \x00'}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
getpriority(0x0, 0xffffffffffffffff)

4.772217989s ago: executing program 3:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
listen(r0, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r1, &(0x7f0000000200)=[{&(0x7f0000000580)="ad10a74bee5071c22490ae4920de8825e9afff6e6268846370374f1b36bce08f3a8c5a245491a2f65e5056d76ac0ef3a26375e61f34a3c9a5be7eedf21571ff0008beda1bd", 0x45}], 0x1)
r2 = accept4$unix(r0, 0x0, 0x0, 0x0)
recvmsg(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)=""/68, 0x44}], 0x1}, 0x0)

4.746182503s ago: executing program 3:
openat$tun(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xdc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10)
mkdir(0x0, 0x0)
r5 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
preadv(r5, 0x0, 0x0, 0x0, 0x0)

3.693848024s ago: executing program 3:
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000040)='./bus\x00', 0x1804010, &(0x7f0000000540)={[{@numtail}, {@shortname_winnt}, {@uni_xlate}, {@iocharset={'iocharset', 0x3d, 'iso8859-3'}}, {@numtail}, {@uni_xlateno}, {@utf8}, {@fat=@check_strict}, {@fat=@nfs_nostale_ro}, {@iocharset={'iocharset', 0x3d, 'iso8859-13'}}, {@shortname_lower}, {@shortname_mixed}, {@rodir}, {@shortname_win95}, {@utf8no}]}, 0x1, 0x355, &(0x7f00000001c0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)

3.32581087s ago: executing program 3:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
listen(r0, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r1, &(0x7f0000000200)=[{&(0x7f0000000580)="ad10a74bee5071c22490ae4920de8825e9afff6e6268846370374f1b36bce08f3a8c5a245491a2f65e5056d76ac0ef3a26375e61f34a3c9a5be7eedf21571ff0008beda1bd", 0x45}], 0x1)
r2 = accept4$unix(r0, 0x0, 0x0, 0x0)
recvmsg(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)=""/68, 0x44}], 0x1}, 0x0)

3.155021577s ago: executing program 3:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x18, 0x2, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000600000000005e00221a850000006d00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x6, 0x6}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{}, &(0x7f0000000080), &(0x7f0000000200)=r2}, 0x20)
r3 = open(&(0x7f0000000100)='.\x00', 0x555502, 0x0)
fcntl$setlease(r3, 0x400, 0x0)
dup3(0xffffffffffffffff, r3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r5 = syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000480)=ANY=[@ANYBLOB="12010700020000402505a1a440000102030109025c0002010000000904000001020d0000052406000105240000000d240f0100000000000000000006241a0000000905810300020000000904010000020d00000904010102020d0000090582020002fd0000090503020002"], 0x0)
syz_usb_control_io$cdc_ncm(r5, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r5, 0x0, 0x0)
syz_usb_control_io(r5, 0x0, &(0x7f0000000d00)={0x84, &(0x7f0000000840)=ANY=[@ANYBLOB="000017000000c4d333bee616376c47b579090000005ccfbc08d0d657b9"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ncm(r5, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r5, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r5, &(0x7f0000001040)={0x14, 0x0, &(0x7f0000001000)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)
r6 = syz_usb_connect(0x0, 0x24, &(0x7f0000000300)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec000000010902120001000000000904"], 0x0)
syz_usb_control_io(r6, 0x0, &(0x7f00000010c0)={0x84, &(0x7f00000000c0)=ANY=[@ANYBLOB="00000100000005"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
inotify_add_watch(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io(r6, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r6, 0x0, &(0x7f0000000240)={0x1c, &(0x7f0000000100)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], 0x0, 0x0})
syz_usb_control_io$cdc_ecm(r6, 0x0, &(0x7f0000000a80)={0x1c, &(0x7f0000000940)={0x0, 0x0, 0x10, "9b86856bd1d741b7089a4ff55285ab42"}, 0x0, 0x0})
r7 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r7, 0xae60)
eventfd(0x0)
eventfd(0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYRESHEX=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

2.710516125s ago: executing program 4:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000240)={[{@noinit_itable}, {}, {@barrier_val={'barrier', 0x3d, 0x4}}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@nodelalloc}, {@acl}, {@debug}]}, 0xfc, 0x575, &(0x7f0000000940)="$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")
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000002600)={'#! ', './file1/file0'}, 0x11)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000003, 0x11, r1, 0x0)
ioctl$KVM_GET_SUPPORTED_CPUID(r0, 0xc004ae02, &(0x7f0000000080)=""/1)

2.620807459s ago: executing program 4:
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000000)=<r0=>0x0)
getpriority(0x1, r0)
socket(0x25, 0x5, 0xa3f)
r1 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
close(r1)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000006bc0)={{}, &(0x7f0000006b40), &(0x7f0000006b80)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sys_enter\x00', r2}, 0x10)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000006ec0)={0x6, 0x2, &(0x7f0000006c00)=@raw=[@cb_func={0x18, 0x8, 0x4, 0x0, 0xfffffffffffffffa}], &(0x7f0000006c40)='GPL\x00', 0xffffffff, 0xca, &(0x7f0000006c80)=""/202, 0x41000, 0x20, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, &(0x7f0000006d80)={0x0, 0x3}, 0x8, 0x10, &(0x7f0000006dc0)={0x1, 0xc, 0x10001, 0x69}, 0x10, 0x0, 0x0, 0x8, &(0x7f0000006e00)=[0x1, 0x1, 0xffffffffffffffff, 0xffffffffffffffff], &(0x7f0000006e40)=[{0x1, 0x2, 0x7}, {0x4, 0x2, 0x3, 0xf}, {0x4, 0x1, 0x0, 0x7}, {0x4, 0x2, 0x5, 0xb}, {0x4, 0x3, 0xa, 0xb}, {0x0, 0x5, 0x5}, {0x4, 0x5, 0x6}, {0x2, 0x3, 0x10, 0x8}], 0x10, 0x2}, 0x90)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, &(0x7f00000073c0)={{{@in=@remote, @in=@broadcast}}, {{@in6}, 0x0, @in=@loopback}}, &(0x7f00000074c0)=0xe8)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000007500), &(0x7f0000007540)=0xc)
openat$random(0xffffffffffffff9c, &(0x7f0000007580), 0xa041, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x8, &(0x7f0000006880)=ANY=[@ANYBLOB="620af8ff0c200021bfa100000000000007010000f8ffffffb702000003000000bd1200000000000085000000b0000000b70000000000000095000000000000003faf4f1e7f2aa3d9b18ed81c0c869b51ec6c0af4e0e4a9447c7670568982b4e020f698393aa0f3881f9c24aa56f15199fad03c22624c9f87f9793f50bb546040677b0c5077da90fb982c1e9400e693146cea484a415b76966118b64f751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07a72c234664c0af9360a1f7a5e6b607130c89f18c0c1089d8b853289e01aa27ae8b09e00e79ab20b0b8e1148f49faf2ad0000000000000006fa03c6468972089b302d7bf6023cdcedb5e0125ebbc08dee510cb2364149215108333719acd97cfa107d40224edc5465a932b77e74e802a0d42bc6099ad2300000080006ef6c1ff0900000000000010c63a949e8b7955394ffa82b8e942c89112f4ab87b1bfeda7be586602d985430cea0162ab3fcf4591c926abfb0767192302000000b0eea24492a660583eecb42cbcd3de3a83209da17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3a4d6926b81e3b59c95c25a573dc2edcaea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80aff9fa740b5b7632f32030916f89c6dad7603f2ba2a790d62d6faec2fed44da4928b30142ba11de6c5d50b83bae613402216b5054d1e7c1fb1355d6f4a8245ffa4997da9c77af4c0eb97fca585ec6bf58351d564beb6d952aab9c70764b0a8a7583c90b3433b809bdb9fbd48bc873495cbff90326eea31ae4e0f7505ebf6c9d13330ca005ace1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223a0eb4fa39f6b5c02e6d6d90756ff57902a8f57000000009700cf0b4b8bc2294133000000000000000000030000000000000000000000000010008bc0d9559711e6e8861c46495ba585a4b2d02edc3e28dd271c896249ed85b980680b00002b435ac15fc0288c9b2a169cdcacc413038dafb7a2c8cb482bac0ac502d9ba96ffffff7f0000100000000000007d5ad897ef3b7cda42013d53046da21b40216e14ba2d6ad5656bfff17addaedab25b30002abbba7fa725f38400be7c1f001b2cd317902f19e385be9e48dccff729433282830689da6b53b263339863297771429d120000003341bf4abacac95900fca0493cf29b33dcc9ffffffffffffff0000ec2271ff01589646efd1cf870cd7bb2366fde41f94290c2a5ff870ce41fd3467decb05cfd9fcb32c8ed1dbd9d10a64c1083d5e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78100788f11f76161d46ea3abe0f34d30dc94ef241875f3b4ce0232fcea69c271d7fa29822aea68a660e717a04becff0f719197724f4fce1093b62d7e8c7123d8ec571be54c72d978cf906df0042e36acd37d7f9e119f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2ae582786105c7df8be5877050c91301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c4d75cf2458e3546c1c776da64fb5abee0acfd235f2f4632c9062ece84c99a061887a20639b41c8c12ee86c50804042b3fb5aac518a75f9e7d7101d5e186c489b3a06fb99e0aa7f23a054de2f4d92d6bd72ee2c9fdc75aaaf1e3e483b4ad05573af40326993947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f54c2d3335457acf37331766e472391e358c3b377327ac9ecc34f24c9ae153ec60ac0694dc55bff9f5f45f90400000000000000d6b2c5ea1393fdf24285bf16b99c9cc0ad1857216f1a985f369191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e66964ae09bb6d163118e4cbe024fd4500f8ff0700000000cc9d8046c216c1f895778cb25122a2a9f9b444aeadea2a40da8daccf790842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc9da71c5f99b355b72d538ba4958ea8e4aa37094191e10096e7e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250ddc8674152f94e3a409e2a3bce109b60000000000000000d6d5210d7503000000a87a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137abf9a404abde7750898b1b3be8672d70d1ab57075228a9f46ed9bd1f08fb8191bbab2dc51de3a61f0868afc4294859323e6c257a45319f18101288d139bd3da20fed05a8fe64680b0a3fc22dd70400000000946912d6c98cd1a9fbe1e7d58c08acaf30235b918a31d2eca55f74a23641f61f2d5b308cf0d031b0c7f0ced69993e9960ff5f76015e6009556237badf4e7965bbe2777e808fcba821aa8e8c5c39609ff854352cb4900000000000000000000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66418d169fc03aa188546b3ad2a182068e1e3a0e2505bc7f41019645466a53f1c96e0d4b3bc19faa5449209b0842bd334b47f067bbab40743b2a42010082008df75cf43f8ecc8d3726602111b40e761fd21081920386f14d12ca3c3431ee97471c7868dcda7eaa69eb7f7f80572fdd11bb1d0d1280fbc22bf73468788df51710d7d31c632fc5ed1762eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331945ecefa26b8471d42645288d7226bbd9ccd628ab84875f2c50ba891cea592b0430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9f96756ea5cce7daac4be29bcf58ff30159f6bcd75f0dda9de5532e71ae9e48b0ed0254a83100000000f6fbb869604d51a36a54c832e45b2569dc0d90b075225fde44c4e0973171ad47d6b0fdf974fcf36cbf6d148096b49a47613808bad959710300000000000000832d0a45fa4242e24c7e800003c9e8095e02985f28e678f66422436f949e2ab8f162d7e3f855e3c78b2a78f4a1f40b0c6fb2d4b205a800b6d713acebc5b014e61a543a5a194f9ac18d76b5440e3b1a569e7397dacafa86966d7ba19e720413267a6ccea9c439671d2c680f2753ca184eeeb843450368acb4383a01d25eb3d1e23e0f2645d1cdfa9fa410632f95a5f622f851c66ee7e30393cd574d67ff2a49c4f93c0984b5c2d4523497e4d64f95f08493564a1df87111c9bf3194fef97dcecc467ace45feeb685c5870d05f88a0f4630588d377442e1349acaf766218b54a9d2cd1fe21ba8eaab827624778e1c4e064c98e494198276eb2df7766411bef0ebb5000000000006065d635b0b7a00ee767221d8af9753387e0cd8d718f54a29df6eba3bd4c440e6e2172e3fcc01b8babb757b5c59217b80d0db3ba582814a604e4ef7a803e9ca7c85b35c9b93a9e0885e238b44ae1c2e64cce3b27083b8246829e64056000302bffff15405bd5f2eba20000000000000000000000000000000000009a9823fd8fbc5aa165099c5ed032b48ea12d8e0588dc52702e4084913a06d468d0928bad76d697e1f85ab030e788d38788ee5b5428d4a971cc97db9fd231088e570735ce129e7e77fc2777692664a1488fd8d6dff4dad618fd54f529d4555c6507009ee69dd1bc55258789b29637f3efbab71720f88c3c44b3b7486f979e8a3174b531f573fe0e175ec6f14dbf72cac91643b2fd99c29eca28a3c2e60d5e5b8795fae16a7c3ea57e728eca35eaf0155a39f97580e079175426c088a0208040982a0000000000002b77000000000051ceaaf0159fe61f2eade7603d0a7a56fb09cd119ac06adb6597155ae4ffffffffb423c024d8cbe9240b71ec6dc2124d3a19e2d714b273d95d1d3aa737cb04a33615ff2a73efb16d4b2db6421fd4e343fa23bad8240e51067d5d675d0104361c37c61a43b5afd865b60d4cae891b73220f17d25979a7f76834995e53a93a1c7b9eef267df691ca983a0b15bda7f6c5c1ca7aa50261a3089a1ebf0734c9b07e8951ff023263ad5aed8cfb49b49e128c697724c057d22c5df5aef27ce3db000100000000000076e1a87e2d7a510000a67ad026bf953e88f10447e125c2c0f1aebee1f3390a9e3ddad4e2a6e0f6e4569fdefa19e870e04acf9493b963f98e23cfc665e4f465fa3f801e1957c399e45f61d3459b1c606204368bb931345af2823c487d2fd99db6ea6e008e7f090000001551189d155bd077a79fe2c7e961352e56824f727d21d41eae78bfec4a2d7a7edbc8ef958c5ea599f7c25bf71c2340558aa12fdd24a88aaad5921aee7dae6a2f3009d9cb43ab0300d0f0aa565431b6abe585d75db04d1c9ba0b9de4ae8b0d3132bc6810cc9a693979f55174a72e1df9fdef35bc470f9e6e591982757f45c52c645d891bf63bb21fb66926ebe1a8525611fc3e8bb8795c36dc2a86b5ab46ff33cc74f61751b2dae92676db85c8d0c7a1b7ea4544bf51c95c86fcac1f434d09d1ee4928aafe23de66fed972e0dddfb33f64e64701b049239e7f552d816441d11c4c2647c014462344359198d97c4b6e9ed31ca18987b64de079b2bed641e8a92f13ca70844c65cb423d01950b0ebf44bd28e09c05d9ae5dd689fb880fb18d042219f5ac60c3a03b085abf3e8e3efc842a8d328733461f04c99607061c65ed14c61322a5ac2d371a95b8ad867ec92d13a4faa05207166b19a8758d8855400d8c6a7242dc207251e8797eca24ea4f487663e60f2f5e1f1424958fd148f846830e88a42d93e1fe9c0b4a4a2689217380400a9f3cb3811ac87c54c8ebc8bcfb4613cc3a997ff1579edbd4ade8020e3ad001b072b1a751b588ac4639f35a58e00a50c0270608c7a7f10132b1c25b9ea81232fbef665f6212f875b2a20ffffffff682139c58ac1deb039a691ad640e12c12fe11d70fe495906f2d5d71778acbd4eee53a3996cb0de84bd2b059d60c0f96a53ea44e0b293865aa68df494f87db976e36ad6c06912244d4c883c4aaa60b4a1392ce0b2f2c51966504652ff871e0f6dfff9f7d34ecf04be0a58c354fb7388ff7796d53174b67d1886e34b81ad8c60da56acc64739c3acab24aa8d0ac92d465074f915608b1b60a948bad401b1a7fb3627bbe6c45123ed44bfdf8cc143bd1b7a663dc3d0476b8e39becffc429e41f66b1e37ae52aacaff0f1dc8ea70b68c25072e20586b19127d75fa71577f265c51000000000000000000000000003bba840af65aff3d8261bc163b57a23d3e3ab2d8bbd314cd5c7699bd08f58b83c07e8c3d36261609e8d5461e2e7633e8377627ccf0613308155aaf7d746c08a685ea9ae0ab702ee4edc393d76a73d00452b1cc6eeadd186f549b56308cea77c416a4b2cbcfe37fc778621a3178baae78ff1b7ded218a3366712b3feb9415141ecb23abfb37f43a1c6dd6354a104b2cb17b90757b6a71459cc758463be2ca2d80aa285ff00fff4381bfcf659dd02147b74f784d06d0c3be24f26405ce09fb31688dbc5430c8a02079d2d128a6b72cc54d6c859d9a2fd8e87f87cd096ec92440c5c6d6905955d0e74a80385011e16f05d3eb815b65d3ca5f6d3cf82962a4ed240ef1bcd2ad552c00e10fb9dd9f0ea7987eb6187aa310dfc3d5e63c31118d284b253d8a52d0081eb36e502b6de0ae05836469bf82b5055feaeef92a3e07446d86a971bcfdd7ed1b1cb44ac59faa9fc81d405c65cf0b74709a000000001283bf8f1df0acd0edffa16ed206042809d15ca101afda8a461d1f0f48e28e8a5c8ccccc0d86a9ec1fac367a2b7c68790000000000000000000000000000000000000000000026f2c8f7dbaa13a1a3e08c052ca8eb071ae64a2afe0e355c2b21677b5555b9aac869a7a9424b9f482a023fbf15415455e0c521b2276efcbcc04038ff2de4ba9679281b022684ec6e7b583a52fa028c837996ae322ce9244da35742d5b348b9329174c32b925d21436002b8eadcf2c679cb5ed33e99f6402d191e0164c5979dbba7c0cb62ffae96f234921de8b4a8"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x90)
geteuid()

2.541923911s ago: executing program 4:
syz_open_procfs(0x0, 0x0)
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000040)='./bus\x00', 0x800000, &(0x7f0000006a80)=ANY=[@ANYBLOB="66617374626f6f742c71756f7461000018bbdecde39739fcd1df176dde746ec834120600000000003b814e50a959736d6572462abc30ef5b65c70f73ecea54b5e5bea9836c319f653557e79a002208ce996dda659bd5ba0f4ce5c2080002223dc60000000000000044cd0a1e3686873600000000005493b4b81d5b9fa9b40fe4d76afc3a989c6d60044e89eb96e44d01a1034e3797ffa86870b82939f41ffa0f3d726f085663c29cbdc4c766a7eb77cc36160191acf5ae7469c82ab4145b595b987d75912a0fcd1c061835294cc0c618aba204f8adaa20c80108d356cd88cc86177056b06e7068c40f807d9e539f8f5b64a8ee0725aa8d00000000007cb6020d90ea79b8027cf75964dd86c2ed2b5e75779677aa8c76b848dd03dab190b5f02ec52830a17b01eaae1c3df076000000000000000000000000000083a48a6b926c668b9b90195018ea3619f9d80a0b894e212178e1a19909d764666264fa29e2c055fd7f8e67c2acfb75f0a8d41692f4542a575ee42ed94a0014fba44985cca9df12fe93bfaccf0122a6e7e593613ac0111701b125cc6799c43aa4ff708dc4a00a6decad26f0378072a571da000000b1a6bdf03fd56697e348b5b494f6fddb9f56142a47a40ef81690a7eca421bd0ad198afa58ce69d61c29deaa93c0efea0df04f20020ee84075b4e1a2ad43d1be1138de4668e7b6137545708790c501f1ed7f6a571d500000000000000", @ANYRES64, @ANYBLOB="53d2d9de939847c9dd37ed564f2be0a4f9d29f7e23b3a032bbe730dc52348cbe87ceee766fd6025fe3e79ae4be665c25801faff43856dd4a90209ef9ad9a90beca5921e77f0b0248d2793d9a477240b4d3e13b1079fb066ea5b89316eaa679c336a781bafb6020144f23f787a4057fcb152a4a807a2fda22545953e4650264b5f42a2712642c0e"], 0x25, 0x558f, &(0x7f00000014c0)="$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")
r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0)
ioctl$F2FS_IOC_START_ATOMIC_WRITE(r0, 0xf501, 0x0)
open(0x0, 0x0, 0x0)
pwritev2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = open(&(0x7f0000000180)='./bus\x00', 0x14d27e, 0x0)
r2 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r2, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x0, 0x3)
fallocate(r1, 0x8, 0x0, 0x7000)

2.519138894s ago: executing program 1:
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000004000000b705000008000000850000006a00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = add_key$fscrypt_v1(&(0x7f0000000100), &(0x7f0000000140)={'fscrypt:', @desc1}, &(0x7f0000000180)={0x0, "696df3ac7cad48ab2867d8f5d5430319eb4da9be48d467c9f5bd630dd4955859e3a2d57b95ec2a61dadc24bb6151e95cbc3c32856686a62ab90452cf2bead3cc"}, 0x48, 0xfffffffffffffffd)
keyctl$search(0xa, r2, &(0x7f0000000280)='asymmetric\x00', &(0x7f00000002c0)={'syz', 0x1}, 0x0)

2.48045661s ago: executing program 1:
bpf$MAP_CREATE(0x0, &(0x7f0000000840), 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='ext4_es_find_extent_range_enter\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x5, 0x2, 0x7}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18af07decf000000000000000000000000000040", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000640), &(0x7f0000000740), 0x75, r2}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000002000000008000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='ext4_es_find_extent_range_enter\x00', r3}, 0x10)
mkdir(&(0x7f0000000080)='./file1\x00', 0x0)

2.447642715s ago: executing program 1:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x7}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r0}, &(0x7f0000000540), &(0x7f00000005c0)}, 0x20)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r1}, 0xc)

2.399759422s ago: executing program 1:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r0 = fsopen(&(0x7f0000000040)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
mknodat$loop(r1, &(0x7f0000000180)='./file0\x00', 0xc000, 0x0)
linkat(r1, &(0x7f0000000000)='./file0\x00', r1, &(0x7f0000000080)='./file1\x00', 0x0)
process_mrelease(0xffffffffffffffff, 0x0)
r2 = fsmount(r1, 0x1, 0x4)
epoll_pwait(r2, &(0x7f0000000100)=[{}, {}, {}, {}], 0x4, 0x8, &(0x7f0000000140), 0x8)

2.341355461s ago: executing program 1:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000009007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x10)
io_cancel(0x0, 0x0, 0x0)

2.28247439s ago: executing program 1:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000100007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b00)={&(0x7f0000000ac0)='mm_page_free_batched\x00', r1}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000047b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e8500000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='ext4_writepages_result\x00', r4}, 0x10)
write$cgroup_type(r2, &(0x7f0000000180), 0x2000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r5}, 0x4)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r6}, 0x10)
r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
fstat(r7, &(0x7f0000004300))
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs2/custom0\x00', 0x802, 0x0)
r8 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r8, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x12, 0x4, 0x8, 0xc}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00'}, 0x10)
syz_usb_control_io$hid(r8, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="00222200000096231306e53f070c0000002a9000070d00be0083"], 0x0}, 0x0)

1.525439546s ago: executing program 4:
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
listen(r0, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r1, &(0x7f0000000200)=[{&(0x7f0000000580)="ad10a74bee5071c22490ae4920de8825e9afff6e6268846370374f1b36bce08f3a8c5a245491a2f65e5056d76ac0ef3a26375e61f34a3c9a5be7eedf21571ff0008beda1bd", 0x45}], 0x1)
r2 = accept4$unix(r0, 0x0, 0x0, 0x0)
recvmsg(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000480)=""/68, 0x44}], 0x1}, 0x0)

1.092716343s ago: executing program 4:
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r0 = fsopen(&(0x7f0000000040)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
mknodat$loop(r1, &(0x7f0000000180)='./file0\x00', 0xc000, 0x0)
linkat(r1, &(0x7f0000000000)='./file0\x00', r1, &(0x7f0000000080)='./file1\x00', 0x0)
process_mrelease(0xffffffffffffffff, 0x0)
r2 = fsmount(r1, 0x1, 0x4)
epoll_pwait(r2, &(0x7f0000000100)=[{}, {}, {}, {}], 0x4, 0x8, &(0x7f0000000140), 0x8)

1.059401998s ago: executing program 4:
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0xe2, 0x54, 0x46, 0x10, 0x23a7, 0xfedc, 0xe00b, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x3, 0x42}}]}}]}}, 0x0)
syz_usb_control_io$uac1(r0, &(0x7f0000000040)={0x14, 0x0, &(0x7f0000000280)={0x0, 0x3, 0x4, @lang_id={0x4}}}, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x12, 0x5, 0x8, 0x1}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x11, 0xc, &(0x7f00000001c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000300)='kfree\x00', r2}, 0x10)
syz_usb_control_io$printer(r0, &(0x7f0000000300)={0x14, 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="000304000000040301"]}, 0x0)

783.53587ms ago: executing program 2:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xe, 0x4, 0x4, 0x6}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000d40)=ANY=[@ANYBLOB="180000000000e3ff000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000500000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x15, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="ceaa000000000000711010000000000095"], &(0x7f0000000480)='syzkaller\x00'}, 0x90)

746.524426ms ago: executing program 2:
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r0 = socket$igmp(0x2, 0x3, 0x2)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000001640)={&(0x7f0000000f00)=@ipv4_delroute={0x2c, 0x1a, 0x1, 0x0, 0x0, {0xa}, [@RTA_IP_PROTO={0x5}, @RTA_DPORT={0x6}]}, 0x2c}}, 0x0)
setsockopt$MRT_FLUSH(r0, 0x0, 0xd1, &(0x7f0000000000)=0x7, 0x4)
getsockopt$MRT(r0, 0x0, 0xce, 0x0, &(0x7f0000000440))
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)={0x14, r3, 0x1}, 0x14}}, 0x0)

716.35999ms ago: executing program 2:
r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0)
ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0xfffffffe)
mmap(&(0x7f0000701000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
ioctl$ASHMEM_SET_NAME(r0, 0x40087708, &(0x7f00000007c0)='\x00\x00\x03\x06\x00\x00\x00\x05\x00x\x92\x12\xac\x06^\xbewV\xf3\"\xc4\x04\xbb\x0642\x9c\x1a\xd1\xcb{\xb0\xd6\x1e\x00gQ\xca\x0eU\xf7\'\x8c\xc1\xc6\xbb\xc5\x1c\xf7\xaf\x95\x83=\t7\x96\x1a\xad\xd0\xd0\xee\x9c\x962\bu\xba\xfc\xae\xc2\x19\xeb\x91\xc9\t\xbc\xc1\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn(Q=v-<\r\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5\xd5\x80\xc0\xb4a \x15\x9a\x9f\xf0:\xfd$\xad\xbb\x9a|c\xfc\"\xee\xc4\x93Q\x82\x16\xbf\xe3c\x8d \x0f\xb1\xe9\xf2o \x00\x00\x00\x00\x00\x00\x00H\xaf\t\x18\xc8\x1b\x1e\xbe\xd8>\xec\x9f~\xa7\xf7\xafdd\xf1\xdbjE\x01\xd1sD\x89\x94&\\U\f\x18\x99]\xaba\xe93\x01\xa23\xc9hP1\xdc-\'\xd0\x9e}\x89\xff\x8c\xec^\x84\x19\x9f_D\xbdt/\'\xf6\xc3\x8c\xb8\vS\x80\xad\xf8\xbf\xa2\xa0\x99\xc2\x16=\xcc\xb0\x1b7\xe3-\'\x02\x16\xf5\xe6\x93\x02E\n\xe8\x00\x00\x8c\xed\x11\xf7\xf2J\xf6\x90A@\x01\x13\xc7`g\xcb\xd7\xdb\x1e\xb2\xc9\xfd\xf7\xa9\x96\xf8/0Xd\xcf\xb9\xa2\x1d\x13\x8fC\xd2&\xd8\x9d\x8b\xe0E\xd2\xc6\x1a\xf3\xa8\x0e\xba\xecOv$\xc8\"\a\xd7T\xfb\xfc\xfauT\xf8\x9e\x86\xef.\xf6<\xbfB\xe7\x80\x1a\a\t+x_B=\xe7\xa5\x89\xfb\xa2\xc6\x97\xeb\xdecY{\x0e\xc2\x00\x00\x00\x00\x00\x00\x00\a\xf4\x88\x06\xe3\xcb\xc8\xe0\xcc\vE\x18\"\x87\xa0\xa9:\xceY\xf0\xa2\xe0\x9d\x8c\x8e\x11\xb7\x98\xa5\xda$\x94D\xb4\xf2>\x01\x00+\xfa\xa9 \xe1\x13Y\x86\xd8\xbfH\xc6\x9c\x8cs4\r\xcd\xd1\x83JT\xf9\xa2\x83?\xb3\x0f\xc6&\x1d\xa3\xc4\xc3\xd2\xfd\xad\xa35o\xe8\xcd^/\xd8\xf4[n\x9fJ\xf4\n\x92c\xaa\xddT&L<+\x19R\a\xfc\xf2\x17\xb8$\xa9]\xc2\\\xda<\xc8d.w\x9c\xaf4\xbb\xe8Co\xb3\xd8\x82\x92\xba+\x99PXB\xdc\xbay\xa0s<\x92k\vJTRW\xc26\x06\x10\x92\xc7\xa55\x9fZ\xff*ir\x1e\xe8\a\x00\x00\x00\x00\x00\x00\x00\x88\x19\xf7\xdd\xa8\xef\xa0\x98\xcd\x81\x10>\xc7{\x84\xb9\xc0B\xe1\t\x00\xbaQj\x81\xc8\xf8\x146%Z\x83H\xabF\x18<\x86h\x01=\x03i\xc4\t\x8e/\x12\a\xdf\xe7zU\x1d\x15\x0e\xc1?\xeau\xb4\x84x\x00\x00X\xf4\xe9\x1f\xcd\x05\x0fz_\x8d,^\xde\xfd\xd1\xbed\xed\xa1\xf5\xc6(p\xb4;\x0e\x18\xf7/A\xfd\x92\xd0}ur\xaag\xdb&e$\f\rrT\xd8\x88~\x13\xc22t\xf6\xf4Fs\xc1\x05\xfa\x99\x15\x87\x14\x13$\t\xa8?\xee\x94W\x8e\xe1\xcc\xc3U\x84\xc6]:\x9a|W\xec\x84\x18\bb\x82\x8f\xc0\xab\xe3a\x99\x17\x85\x9a\x05\xb1\x12K\\\xf2\xd5\b^[D~~\x84\\\xe4\x00')
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
ioctl$ASHMEM_SET_NAME(r0, 0x40087708, &(0x7f0000000300)='\x00\x00\x00\v\x00\x00\x00\x01\x00x\x92\x12\xbc\x00\x00\xbb\x0642\x9c\x1a\xd1\xcbx\xb0\xd6\x1e\x10gQ\xca\x0e;\xf7\'\x8c\x95\x83=\t7\x96\x1a\xad\xd0\xd0\xee\x9c\x962\bu\xba\xfc\xae\xc2\x19\xeb\x91\xc9\t\xbc\xc1\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn\x05\x00\x00\x00-<\r\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5\xd5\x80\xc0\xb4a \xac\xc4K\x03\xfa\x13Vz\xbf\xe3c\x8d \x0f\xb1\xe9\xf2oci(\xcb\x82\x05\xfe[H\xaf\x01\x18\xc8\x1b\x1e\xbe\xd8>\xec\x9f~\xa7\xf7\xafd%\xf1\xdbjE\x01\xd1sD5hP1\xdc-\'\xd0\x9e}\x89\xff\x8c\x851Y9OB\xdeB\xe1\x02-&\"1hS\x92\xe4$-\x02\x00\xe4\x8e\"\x85\xc9x\xef\x81E.r\x89\xe5\x00\x9e\x97\x96\xb8j\x81\xf0\xdca\xfb\xa6\xff\xff\xff\xff\x00\x00\x00\x00d\xf0\xf1j\x11\x12\xc0\xbb\xfdq~#\xf7\xa8\"$,\xf4\x84|\x89o\x00<\xa6-\xb0\xd3\x80\xbe\xcf\a\x00\xfc\xa6\xb1\x05\x94\x84l\xbfA\xeb\xd8\t\x00\x00\x00CvNhx461\x04N<\xedV\xcet\xaa~\xf3j\x94\xec\x92\x86uY\xf6\xb5\t?,~\xa67\\\xb9\xc9K\xf8\x9d\x96\xc0\xb5\xc7wF\x99\x12\x97T\x90.\x9c\xe3\x9a\xf1\xb9\x9c\x13\xbc\x19\xde/\xaahB\t\x97\a03\xcd\xb3\xc8\xd5l\x14!\xf9Xg2\x1d\xeeB\xccT\x0e\xd8\xef\xc8\xe9\xb4\xf3l\xc3\xf2\x998\xc8\xc2|2\xee\xb4W\x99f.\xeb\xe9\x05\xcbkz3+\xdd\xe1*8\x95@0t0\xad\xe3#\xd7\x19\xe7Q\xdfmI\xe5\x1e\xe4\x87\xc9\x8f\xa7\xe0\xd9v\xf6\x01\x9d\x8f`,\x1a8\x81I\x86l\x8f2\r:\xc1\x02\xd6Z%\xa7Ks\x8bUolS\x05\xbe\x97\x1fGe\x94\xa6\xa3\xab\xdb\r\x17\xff[\xb1\x00\xff\x7f\x00\x00\x00\x00')

690.019784ms ago: executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
r1 = epoll_create1(0x0)
close_range(r1, 0xffffffffffffffff, 0x0)

666.014748ms ago: executing program 2:
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x47, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sys_enter\x00', r0}, 0x10)
inotify_rm_watch(0xffffffffffffffff, 0x0)

584.675971ms ago: executing program 2:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r0, &(0x7f0000000300)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x200040}, 0xc, &(0x7f00000002c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="36000b005bfa994d734061a55b0b43832e", @ANYRES16=r1, @ANYBLOB="000127bd7000fddbdf25140000000c000600000000000000000008000300", @ANYRES32=0x0, @ANYBLOB="0c0006000200000000000000"], 0x34}, 0x1, 0x0, 0x0, 0x20004001}, 0x48000)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000140)={0x2, &(0x7f0000000080)=[{0x28, 0x0, 0x0, 0xfffff010}, {0x80000006}]}, 0x10)
prlimit64(0x0, 0xe, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8d}, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x5)
futex(&(0x7f000000cffc)=0x1, 0x6, 0x0, 0x0, 0x0, 0x0)
r4 = open(&(0x7f0000000000)='./bus\x00', 0x141b42, 0x0)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
write$binfmt_misc(r5, &(0x7f00000000c0)=ANY=[], 0xfdef)
splice(r4, 0x0, r5, 0x0, 0x80, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r6}, 0x10)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x0, 0x7, 0x0, 0x0, 0x0, 0xffffffff})
openat$rtc(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x6)
r7 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={0x0, r7}, 0x10)
r8 = syz_open_procfs(0x0, &(0x7f0000000000)='net/netstat\x00')
read$FUSE(r8, &(0x7f0000007c80)={0x2020}, 0x2020)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r9 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000100)={'xfrm0\x00', <r10=>0x0})
r11 = socket$packet(0x11, 0x3, 0x300)
sendto$packet(r11, &(0x7f0000000180)='`', 0xca, 0x0, &(0x7f0000000240)={0x2f, 0x0, r10, 0x1, 0x0, 0x6, @random="4a99fee2a74d"}, 0x14)

552.088495ms ago: executing program 0:
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount$bpf(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f00000001c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='mode=0000000007777'])
r0 = open_tree(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0)
symlinkat(&(0x7f00000002c0)='./file0\x00', r0, &(0x7f0000000080)='./file0\x00')

525.248559ms ago: executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000300)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = socket(0x10, 0x803, 0x0)
fcntl$lock(r1, 0x5, &(0x7f0000000700))

484.103366ms ago: executing program 0:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xe, 0x4, 0x4, 0x6}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000d40)=ANY=[@ANYBLOB="180000000000e3ff000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000500000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x15, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="ceaa000000000000711010000000000095"], &(0x7f0000000480)='syzkaller\x00'}, 0x90)

462.045849ms ago: executing program 0:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000700000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b0af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020100008500000043"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='ext4_mballoc_alloc\x00', r1}, 0x10)
mkdir(&(0x7f0000000240)='./file0\x00', 0x0)

158.822236ms ago: executing program 0:
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r0 = socket$igmp(0x2, 0x3, 0x2)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000001640)={&(0x7f0000000f00)=@ipv4_delroute={0x2c, 0x1a, 0x1, 0x0, 0x0, {0xa}, [@RTA_IP_PROTO={0x5}, @RTA_DPORT={0x6}]}, 0x2c}}, 0x0)
setsockopt$MRT_FLUSH(r0, 0x0, 0xd1, &(0x7f0000000000)=0x7, 0x4)
getsockopt$MRT(r0, 0x0, 0xce, 0x0, &(0x7f0000000440))
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)={0x14, r3, 0x1}, 0x14}}, 0x0)

0s ago: executing program 0:
r0 = openat$ashmem(0xffffffffffffff9c, &(0x7f0000000500), 0x0, 0x0)
ioctl$ASHMEM_SET_SIZE(r0, 0x40087703, 0xfffffffe)
mmap(&(0x7f0000701000/0x1000)=nil, 0x1000, 0x0, 0x12, r0, 0x0)
ioctl$ASHMEM_SET_NAME(r0, 0x40087708, &(0x7f00000007c0)='\x00\x00\x03\x06\x00\x00\x00\x05\x00x\x92\x12\xac\x06^\xbewV\xf3\"\xc4\x04\xbb\x0642\x9c\x1a\xd1\xcb{\xb0\xd6\x1e\x00gQ\xca\x0eU\xf7\'\x8c\xc1\xc6\xbb\xc5\x1c\xf7\xaf\x95\x83=\t7\x96\x1a\xad\xd0\xd0\xee\x9c\x962\bu\xba\xfc\xae\xc2\x19\xeb\x91\xc9\t\xbc\xc1\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn(Q=v-<\r\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5\xd5\x80\xc0\xb4a \x15\x9a\x9f\xf0:\xfd$\xad\xbb\x9a|c\xfc\"\xee\xc4\x93Q\x82\x16\xbf\xe3c\x8d \x0f\xb1\xe9\xf2o \x00\x00\x00\x00\x00\x00\x00H\xaf\t\x18\xc8\x1b\x1e\xbe\xd8>\xec\x9f~\xa7\xf7\xafdd\xf1\xdbjE\x01\xd1sD\x89\x94&\\U\f\x18\x99]\xaba\xe93\x01\xa23\xc9hP1\xdc-\'\xd0\x9e}\x89\xff\x8c\xec^\x84\x19\x9f_D\xbdt/\'\xf6\xc3\x8c\xb8\vS\x80\xad\xf8\xbf\xa2\xa0\x99\xc2\x16=\xcc\xb0\x1b7\xe3-\'\x02\x16\xf5\xe6\x93\x02E\n\xe8\x00\x00\x8c\xed\x11\xf7\xf2J\xf6\x90A@\x01\x13\xc7`g\xcb\xd7\xdb\x1e\xb2\xc9\xfd\xf7\xa9\x96\xf8/0Xd\xcf\xb9\xa2\x1d\x13\x8fC\xd2&\xd8\x9d\x8b\xe0E\xd2\xc6\x1a\xf3\xa8\x0e\xba\xecOv$\xc8\"\a\xd7T\xfb\xfc\xfauT\xf8\x9e\x86\xef.\xf6<\xbfB\xe7\x80\x1a\a\t+x_B=\xe7\xa5\x89\xfb\xa2\xc6\x97\xeb\xdecY{\x0e\xc2\x00\x00\x00\x00\x00\x00\x00\a\xf4\x88\x06\xe3\xcb\xc8\xe0\xcc\vE\x18\"\x87\xa0\xa9:\xceY\xf0\xa2\xe0\x9d\x8c\x8e\x11\xb7\x98\xa5\xda$\x94D\xb4\xf2>\x01\x00+\xfa\xa9 \xe1\x13Y\x86\xd8\xbfH\xc6\x9c\x8cs4\r\xcd\xd1\x83JT\xf9\xa2\x83?\xb3\x0f\xc6&\x1d\xa3\xc4\xc3\xd2\xfd\xad\xa35o\xe8\xcd^/\xd8\xf4[n\x9fJ\xf4\n\x92c\xaa\xddT&L<+\x19R\a\xfc\xf2\x17\xb8$\xa9]\xc2\\\xda<\xc8d.w\x9c\xaf4\xbb\xe8Co\xb3\xd8\x82\x92\xba+\x99PXB\xdc\xbay\xa0s<\x92k\vJTRW\xc26\x06\x10\x92\xc7\xa55\x9fZ\xff*ir\x1e\xe8\a\x00\x00\x00\x00\x00\x00\x00\x88\x19\xf7\xdd\xa8\xef\xa0\x98\xcd\x81\x10>\xc7{\x84\xb9\xc0B\xe1\t\x00\xbaQj\x81\xc8\xf8\x146%Z\x83H\xabF\x18<\x86h\x01=\x03i\xc4\t\x8e/\x12\a\xdf\xe7zU\x1d\x15\x0e\xc1?\xeau\xb4\x84x\x00\x00X\xf4\xe9\x1f\xcd\x05\x0fz_\x8d,^\xde\xfd\xd1\xbed\xed\xa1\xf5\xc6(p\xb4;\x0e\x18\xf7/A\xfd\x92\xd0}ur\xaag\xdb&e$\f\rrT\xd8\x88~\x13\xc22t\xf6\xf4Fs\xc1\x05\xfa\x99\x15\x87\x14\x13$\t\xa8?\xee\x94W\x8e\xe1\xcc\xc3U\x84\xc6]:\x9a|W\xec\x84\x18\bb\x82\x8f\xc0\xab\xe3a\x99\x17\x85\x9a\x05\xb1\x12K\\\xf2\xd5\b^[D~~\x84\\\xe4\x00')
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r1}, 0x10)
ioctl$ASHMEM_SET_NAME(r0, 0x40087708, &(0x7f0000000300)='\x00\x00\x00\v\x00\x00\x00\x01\x00x\x92\x12\xbc\x00\x00\xbb\x0642\x9c\x1a\xd1\xcbx\xb0\xd6\x1e\x10gQ\xca\x0e;\xf7\'\x8c\x95\x83=\t7\x96\x1a\xad\xd0\xd0\xee\x9c\x962\bu\xba\xfc\xae\xc2\x19\xeb\x91\xc9\t\xbc\xc1\xcb\xba\xe3\x8e\xf6\x89\xc2\'\xdfn\x05\x00\x00\x00-<\r\xd1?$\x8b\x17Bn\x17h\x1b\xac\xfc\x82\x1c\xf4\xd0\xf5\xd5\x80\xc0\xb4a \xac\xc4K\x03\xfa\x13Vz\xbf\xe3c\x8d \x0f\xb1\xe9\xf2oci(\xcb\x82\x05\xfe[H\xaf\x01\x18\xc8\x1b\x1e\xbe\xd8>\xec\x9f~\xa7\xf7\xafd%\xf1\xdbjE\x01\xd1sD5hP1\xdc-\'\xd0\x9e}\x89\xff\x8c\x851Y9OB\xdeB\xe1\x02-&\"1hS\x92\xe4$-\x02\x00\xe4\x8e\"\x85\xc9x\xef\x81E.r\x89\xe5\x00\x9e\x97\x96\xb8j\x81\xf0\xdca\xfb\xa6\xff\xff\xff\xff\x00\x00\x00\x00d\xf0\xf1j\x11\x12\xc0\xbb\xfdq~#\xf7\xa8\"$,\xf4\x84|\x89o\x00<\xa6-\xb0\xd3\x80\xbe\xcf\a\x00\xfc\xa6\xb1\x05\x94\x84l\xbfA\xeb\xd8\t\x00\x00\x00CvNhx461\x04N<\xedV\xcet\xaa~\xf3j\x94\xec\x92\x86uY\xf6\xb5\t?,~\xa67\\\xb9\xc9K\xf8\x9d\x96\xc0\xb5\xc7wF\x99\x12\x97T\x90.\x9c\xe3\x9a\xf1\xb9\x9c\x13\xbc\x19\xde/\xaahB\t\x97\a03\xcd\xb3\xc8\xd5l\x14!\xf9Xg2\x1d\xeeB\xccT\x0e\xd8\xef\xc8\xe9\xb4\xf3l\xc3\xf2\x998\xc8\xc2|2\xee\xb4W\x99f.\xeb\xe9\x05\xcbkz3+\xdd\xe1*8\x95@0t0\xad\xe3#\xd7\x19\xe7Q\xdfmI\xe5\x1e\xe4\x87\xc9\x8f\xa7\xe0\xd9v\xf6\x01\x9d\x8f`,\x1a8\x81I\x86l\x8f2\r:\xc1\x02\xd6Z%\xa7Ks\x8bUolS\x05\xbe\x97\x1fGe\x94\xa6\xa3\xab\xdb\r\x17\xff[\xb1\x00\xff\x7f\x00\x00\x00\x00')

kernel console output (not intermixed with test programs):

ce loop1): ext4_dirty_inode:6074: inode #3: comm syz-executor.1: mark_inode_dirty error
[  140.692058][ T2264] EXT4-fs error (device loop1): ext4_do_update_inode:5212: inode #3: comm syz-executor.1: corrupted inode contents
[  140.729481][ T2051] usb 4-1: config 0 has an invalid interface number: 155 but max is 0
[  140.804667][ T2273] tipc: Failed to remove unknown binding: 66,1,1/0:3338752142/3338752144
[  140.817091][ T2273] tipc: Failed to remove unknown binding: 66,1,1/0:3338752142/3338752144
[  140.902513][ T2051] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  141.012701][ T2264] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #3: comm syz-executor.1: mark_inode_dirty error
[  141.101594][ T2051] usb 4-1: config 0 has no interface number 0
[  141.156469][ T2275] loop4: detected capacity change from 0 to 128
[  141.166632][ T2051] usb 4-1: config 0 interface 155 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  141.189544][ T2264] Quota error (device loop1): write_blk: dquota write failed
[  141.488809][ T2264] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  141.527052][ T2051] usb 4-1: config 0 interface 155 altsetting 0 has an invalid endpoint with address 0x0, skipping
[  141.541697][ T2264] EXT4-fs (loop1): 1 orphan inode deleted
[  141.547393][ T2264] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  141.558810][ T2275] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000401)
[  141.566675][ T2275] FAT-fs (loop4): Filesystem has been set read-only
[  141.596437][ T2264] ext4 filesystem being mounted at /root/syzkaller-testdir3271171660/syzkaller.BRf8hA/39/file1 supports timestamps until 2038 (0x7fffffff)
[  141.624187][   T10] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  141.629235][   T28] audit: type=1400 audit(1718132650.732:246): avc:  denied  { mounton } for  pid=2263 comm="syz-executor.1" path="/root/syzkaller-testdir3271171660/syzkaller.BRf8hA/39/file1" dev="loop1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  141.666489][ T2264] 9pnet_fd: Insufficient options for proto=fd
[  141.750814][ T2051] usb 4-1: New USB device found, idVendor=05d1, idProduct=1002, bcdDevice=c5.61
[  141.773940][ T2051] usb 4-1: New USB device strings: Mfr=225, Product=1, SerialNumber=3
[  141.782937][ T1413] EXT4-fs (loop1): unmounting filesystem.
[  141.796962][ T2051] usb 4-1: Product: syz
[  141.806508][ T2051] usb 4-1: Manufacturer: syz
[  141.811026][ T2051] usb 4-1: SerialNumber: syz
[  141.828106][ T2051] usb 4-1: config 0 descriptor??
[  141.876336][ T2051] ftdi_sio 4-1:0.155: FTDI USB Serial Device converter detected
[  141.899592][ T2051] ftdi_sio ttyUSB0: unknown device type: 0xc561
[  141.902636][ T2294] x_tables: duplicate underflow at hook 2
[  142.091127][  T344] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  142.152179][ T2051] usb 4-1: USB disconnect, device number 4
[  142.171910][ T2051] ftdi_sio 4-1:0.155: device disconnected
[  142.519015][   T28] audit: type=1400 audit(1718132651.382:247): avc:  denied  { read } for  pid=2299 comm="syz-executor.2" name="ppp" dev="devtmpfs" ino=138 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  142.755562][   T28] audit: type=1400 audit(1718132651.382:248): avc:  denied  { open } for  pid=2299 comm="syz-executor.2" path="/dev/ppp" dev="devtmpfs" ino=138 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  142.906309][   T28] audit: type=1400 audit(1718132651.412:249): avc:  denied  { connect } for  pid=2299 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  143.031136][  T344] usb 5-1: Using ep0 maxpacket: 8
[  143.141641][ T2310] loop2: detected capacity change from 0 to 128
[  143.151050][  T344] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  143.168764][  T344] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  143.180376][  T344] usb 5-1: New USB device found, idVendor=5543, idProduct=0004, bcdDevice= 0.00
[  143.204501][ T2310] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000401)
[  143.218718][ T2310] FAT-fs (loop2): Filesystem has been set read-only
[  143.229114][  T344] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  143.262067][  T344] usb 5-1: config 0 descriptor??
[  143.378231][ T2317] loop2: detected capacity change from 0 to 512
[  143.420201][ T2314] device syzkaller0 entered promiscuous mode
[  143.428860][ T2317] EXT4-fs error (device loop2): ext4_do_update_inode:5212: inode #3: comm syz-executor.2: corrupted inode contents
[  143.447308][ T2317] EXT4-fs error (device loop2): ext4_dirty_inode:6074: inode #3: comm syz-executor.2: mark_inode_dirty error
[  143.469754][ T2317] EXT4-fs error (device loop2): ext4_do_update_inode:5212: inode #3: comm syz-executor.2: corrupted inode contents
[  143.503175][ T2317] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #3: comm syz-executor.2: mark_inode_dirty error
[  143.533834][ T2317] EXT4-fs (loop2): 1 orphan inode deleted
[  143.541271][ T2317] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  143.559455][ T2317] ext4 filesystem being mounted at /root/syzkaller-testdir28189273/syzkaller.n5DEI8/116/file1 supports timestamps until 2038 (0x7fffffff)
[  143.608328][ T2317] 9pnet_fd: Insufficient options for proto=fd
[  143.695450][ T1376] EXT4-fs (loop2): unmounting filesystem.
[  143.743632][  T344] uclogic 0003:5543:0004.0004: unknown main item tag 0x3
[  143.752630][ T2332] loop0: detected capacity change from 0 to 512
[  143.766588][ T2332] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  143.766854][  T344] uclogic 0003:5543:0004.0004: No inputs registered, leaving
[  143.826726][  T344] uclogic 0003:5543:0004.0004: hidraw0: USB HID v0.00 Device [HID 5543:0004] on usb-dummy_hcd.4-1/input0
[  143.862101][ T2332] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  143.871541][ T2332] ext4 filesystem being mounted at /root/syzkaller-testdir3517279343/syzkaller.THHqzX/212/bus supports timestamps until 2038 (0x7fffffff)
[  143.905559][  T824] EXT4-fs (loop0): unmounting filesystem.
[  143.973347][  T344] usb 5-1: USB disconnect, device number 5
[  144.233194][ T2349] loop0: detected capacity change from 0 to 512
[  144.265228][ T2349] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  144.290555][ T2349] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802c01c, mo2=0002]
[  144.298711][ T2349] System zones: 1-12
[  144.304211][ T2349] EXT4-fs (loop0): couldn't mount RDWR because of unsupported optional features (80)
[  144.318231][ T2349] EXT4-fs (loop0): Skipping orphan cleanup due to unknown ROCOMPAT features
[  144.328189][ T2349] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  144.341459][ T2349] EXT4-fs (loop0): couldn't mount RDWR because of unsupported optional features (80)
[  144.374522][  T824] EXT4-fs (loop0): unmounting filesystem.
[  144.478805][  T344] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  144.551925][ T2363] loop0: detected capacity change from 0 to 512
[  144.571769][ T2365] loop4: detected capacity change from 0 to 512
[  144.577631][ T2363] EXT4-fs error (device loop0): ext4_do_update_inode:5212: inode #3: comm syz-executor.0: corrupted inode contents
[  144.590362][ T2365] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  144.601705][ T2363] EXT4-fs error (device loop0): ext4_dirty_inode:6074: inode #3: comm syz-executor.0: mark_inode_dirty error
[  144.614929][ T2363] EXT4-fs error (device loop0): ext4_do_update_inode:5212: inode #3: comm syz-executor.0: corrupted inode contents
[  144.630103][ T2363] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #3: comm syz-executor.0: mark_inode_dirty error
[  144.642854][ T2363] __quota_error: 9 callbacks suppressed
[  144.642889][ T2363] Quota error (device loop0): write_blk: dquota write failed
[  144.644648][ T2365] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  144.650016][ T2363] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  144.660626][ T2365] ext4 filesystem being mounted at /root/syzkaller-testdir401475831/syzkaller.Zu2x4t/53/bus supports timestamps until 2038 (0x7fffffff)
[  144.673649][ T2363] EXT4-fs (loop0): 1 orphan inode deleted
[  144.699892][    T8] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  144.715936][ T2363] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  144.727703][ T2363] ext4 filesystem being mounted at /root/syzkaller-testdir3517279343/syzkaller.THHqzX/219/file1 supports timestamps until 2038 (0x7fffffff)
[  144.732231][ T1476] EXT4-fs (loop4): unmounting filesystem.
[  144.800837][ T2363] 9pnet_fd: Insufficient options for proto=fd
[  144.833690][  T824] EXT4-fs (loop0): unmounting filesystem.
[  145.048565][ T2051] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  145.048749][  T344] usb 3-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[  145.065286][  T344] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  145.073459][  T344] usb 3-1: Product: syz
[  145.077609][  T344] usb 3-1: Manufacturer: syz
[  145.082245][  T344] usb 3-1: SerialNumber: syz
[  145.088874][  T344] usb 3-1: config 0 descriptor??
[  145.140196][  T344] usb-storage 3-1:0.0: USB Mass Storage device detected
[  145.288565][ T2051] usb 5-1: Using ep0 maxpacket: 32
[  145.385039][   T41] usb 3-1: USB disconnect, device number 4
[  145.418832][ T2051] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  145.438785][ T2051] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  145.450861][ T2051] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  145.460605][ T2051] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  145.479102][ T2051] usb 5-1: config 0 descriptor??
[  145.530290][ T2051] hub 5-1:0.0: USB hub found
[  145.649376][ T2405] loop1: detected capacity change from 0 to 512
[  145.658201][ T2405] EXT4-fs (loop1): Test dummy encryption mode enabled
[  145.670453][ T2405] EXT4-fs error (device loop1): ext4_find_inline_data_nolock:164: inode #12: comm syz-executor.1: inline data xattr refers to an external xattr inode
[  145.686058][ T2405] EXT4-fs error (device loop1): ext4_orphan_get:1401: comm syz-executor.1: couldn't read orphan inode 12 (err -117)
[  145.699094][ T2405] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  145.715336][ T2405] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[  145.727297][ T2405] fscrypt: AES-256-XTS using implementation "xts-aes-aesni"
[  145.737210][   T28] audit: type=1400 audit(1718132654.842:256): avc:  denied  { link } for  pid=2404 comm="syz-executor.1" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop1" ino=19 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  145.738781][ T2051] hub 5-1:0.0: 1 port detected
[  145.782372][  T344] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  145.796608][   T28] audit: type=1400 audit(1718132654.842:257): avc:  denied  { create } for  pid=2404 comm="syz-executor.1" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[  145.797209][ T2405] EXT4-fs error (device loop1): dx_make_map:1327: inode #2: block 37: comm syz-executor.1: bad entry in directory: inode out of bounds - offset=0, inode=1633771873, rec_len=1024, size=1024 fake=0
[  145.860121][ T2405] EXT4-fs error (device loop1) in do_split:2092: Corrupt filesystem
[  145.870335][   T28] audit: type=1400 audit(1718132654.982:258): avc:  denied  { rmdir } for  pid=2404 comm="syz-executor.1" name="file1" dev="loop1" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  145.952406][ T1413] EXT4-fs (loop1): unmounting filesystem.
[  146.055108][ T2422] loop1: detected capacity change from 0 to 512
[  146.068824][  T344] usb 4-1: Using ep0 maxpacket: 8
[  146.090141][ T2424] loop2: detected capacity change from 0 to 512
[  146.092981][ T2422] EXT4-fs error (device loop1): ext4_find_inline_data_nolock:164: inode #12: comm syz-executor.1: inline data xattr refers to an external xattr inode
[  146.112528][ T2422] EXT4-fs error (device loop1): ext4_orphan_get:1401: comm syz-executor.1: couldn't read orphan inode 12 (err -117)
[  146.112661][ T2424] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  146.130508][ T2422] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  146.133394][ T2424] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802c01c, mo2=0002]
[  146.166751][ T2424] System zones: 1-12
[  146.173750][ T2424] EXT4-fs (loop2): couldn't mount RDWR because of unsupported optional features (80)
[  146.175326][ T1413] EXT4-fs (loop1): unmounting filesystem.
[  146.183539][ T2424] EXT4-fs (loop2): Skipping orphan cleanup due to unknown ROCOMPAT features
[  146.198264][ T2424] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  146.209056][  T344] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  146.228568][  T344] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  146.231487][ T2051] usb 5-1: USB disconnect, device number 6
[  146.248668][  T344] usb 4-1: New USB device found, idVendor=5543, idProduct=0004, bcdDevice= 0.00
[  146.257670][  T344] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  146.277515][  T344] usb 4-1: config 0 descriptor??
[  146.287995][ T2428] x_tables: duplicate underflow at hook 2
[  146.295637][ T2424] EXT4-fs (loop2): couldn't mount RDWR because of unsupported optional features (80)
[  146.331054][ T1376] EXT4-fs (loop2): unmounting filesystem.
[  146.472573][ T2431] loop2: detected capacity change from 0 to 256
[  146.480009][ T2431] exfat: Deprecated parameter 'utf8'
[  146.485361][ T2431] exfat: Deprecated parameter 'utf8'
[  146.509203][ T2431] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  147.252096][   T28] audit: type=1400 audit(1718132656.302:259): avc:  denied  { map } for  pid=2430 comm="syz-executor.2" path="/root/syzkaller-testdir28189273/syzkaller.n5DEI8/123/file0/bus" dev="loop2" ino=1048659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  147.336233][  T344] uclogic 0003:5543:0004.0005: unknown main item tag 0x3
[  147.346449][  T344] uclogic 0003:5543:0004.0005: No inputs registered, leaving
[  147.369859][  T344] uclogic 0003:5543:0004.0005: hidraw0: USB HID v0.00 Device [HID 5543:0004] on usb-dummy_hcd.3-1/input0
[  147.384697][  T344] usb 4-1: USB disconnect, device number 5
[  147.415875][   T28] audit: type=1400 audit(1718132656.312:260): avc:  denied  { execute } for  pid=2430 comm="syz-executor.2" path="/root/syzkaller-testdir28189273/syzkaller.n5DEI8/123/file0/bus" dev="loop2" ino=1048659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  147.575631][ T2439] loop2: detected capacity change from 0 to 256
[  147.618789][ T2439] FAT-fs (loop2): Directory bread(block 64) failed
[  147.625240][ T2439] FAT-fs (loop2): Directory bread(block 65) failed
[  147.648997][ T2439] FAT-fs (loop2): Directory bread(block 66) failed
[  147.666012][ T2439] FAT-fs (loop2): Directory bread(block 67) failed
[  147.683123][ T2439] FAT-fs (loop2): Directory bread(block 68) failed
[  147.692437][ T2439] FAT-fs (loop2): Directory bread(block 69) failed
[  147.708625][ T2439] FAT-fs (loop2): Directory bread(block 70) failed
[  147.715170][ T2439] FAT-fs (loop2): Directory bread(block 71) failed
[  147.728608][ T2439] FAT-fs (loop2): Directory bread(block 72) failed
[  147.755880][ T2439] FAT-fs (loop2): Directory bread(block 73) failed
[  148.007560][ T2454] loop0: detected capacity change from 0 to 512
[  148.056265][ T2454] EXT4-fs error (device loop0): ext4_find_inline_data_nolock:164: inode #12: comm syz-executor.0: inline data xattr refers to an external xattr inode
[  148.072438][ T2454] EXT4-fs error (device loop0): ext4_orphan_get:1401: comm syz-executor.0: couldn't read orphan inode 12 (err -117)
[  148.086465][ T2454] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  148.187122][   T28] audit: type=1400 audit(1718132657.282:261): avc:  denied  { mount } for  pid=2469 comm="syz-executor.4" name="/" dev="configfs" ino=5562 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  148.230777][  T824] EXT4-fs (loop0): unmounting filesystem.
[  148.310866][ T2472] loop4: detected capacity change from 0 to 512
[  148.332228][ T2472] EXT4-fs (loop4): Test dummy encryption mode enabled
[  148.354107][ T2472] EXT4-fs error (device loop4): ext4_find_inline_data_nolock:164: inode #12: comm syz-executor.4: inline data xattr refers to an external xattr inode
[  148.375597][ T2472] EXT4-fs error (device loop4): ext4_orphan_get:1401: comm syz-executor.4: couldn't read orphan inode 12 (err -117)
[  148.389373][ T2472] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  148.408631][  T344] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  148.449308][ T2472] EXT4-fs error (device loop4): dx_make_map:1327: inode #2: block 37: comm syz-executor.4: bad entry in directory: inode out of bounds - offset=0, inode=1633771873, rec_len=1024, size=1024 fake=0
[  148.469099][ T2472] EXT4-fs error (device loop4) in do_split:2092: Corrupt filesystem
[  148.500079][ T1476] EXT4-fs (loop4): unmounting filesystem.
[  148.545561][ T2483] loop0: detected capacity change from 0 to 256
[  148.584072][ T2483] FAT-fs (loop0): Directory bread(block 64) failed
[  148.599185][ T2483] FAT-fs (loop0): Directory bread(block 65) failed
[  148.621774][ T2483] FAT-fs (loop0): Directory bread(block 66) failed
[  148.638666][ T2483] FAT-fs (loop0): Directory bread(block 67) failed
[  148.648941][ T2483] FAT-fs (loop0): Directory bread(block 68) failed
[  148.665611][ T2483] FAT-fs (loop0): Directory bread(block 69) failed
[  148.677851][ T2483] FAT-fs (loop0): Directory bread(block 70) failed
[  148.696186][ T2483] FAT-fs (loop0): Directory bread(block 71) failed
[  148.706378][ T2483] FAT-fs (loop0): Directory bread(block 72) failed
[  148.713903][ T2483] FAT-fs (loop0): Directory bread(block 73) failed
[  148.748811][ T2051] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  148.768831][  T344] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  148.788550][  T344] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  148.810191][  T344] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  148.828970][  T344] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  148.838308][  T344] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  148.862332][  T344] usb 3-1: config 0 descriptor??
[  148.878812][ T2468] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  148.892573][   T28] audit: type=1400 audit(1718132658.002:262): avc:  denied  { bind } for  pid=2499 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  148.996190][ T2506] loop4: detected capacity change from 0 to 512
[  149.003318][ T2051] usb 4-1: Using ep0 maxpacket: 8
[  149.022003][ T2508] loop1: detected capacity change from 0 to 512
[  149.025566][ T2510] loop0: detected capacity change from 0 to 512
[  149.049783][ T2510] EXT4-fs error (device loop0): ext4_orphan_get:1396: inode #15: comm syz-executor.0: casefold flag without casefold feature
[  149.050355][ T2508] EXT4-fs (loop1): Test dummy encryption mode enabled
[  149.074152][ T2506] EXT4-fs error (device loop4): ext4_find_inline_data_nolock:164: inode #12: comm syz-executor.4: inline data xattr refers to an external xattr inode
[  149.077429][ T2510] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #2: comm syz-executor.0: missing EA_INODE flag
[  149.103710][ T2506] EXT4-fs error (device loop4): ext4_orphan_get:1401: comm syz-executor.4: couldn't read orphan inode 12 (err -117)
[  149.107524][ T2508] EXT4-fs error (device loop1): ext4_find_inline_data_nolock:164: inode #12: comm syz-executor.1: inline data xattr refers to an external xattr inode
[  149.121833][ T2510] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz-executor.0: error while reading EA inode 2 err=-117
[  149.135096][ T2508] EXT4-fs error (device loop1): ext4_orphan_get:1401: comm syz-executor.1: couldn't read orphan inode 12 (err -117)
[  149.147016][ T2051] usb 4-1: New USB device found, idVendor=09d8, idProduct=0320, bcdDevice=fb.a3
[  149.160208][ T2508] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  149.170067][ T2051] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  149.186101][ T2506] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  149.193556][ T2510] EXT4-fs (loop0): 1 orphan inode deleted
[  149.203876][ T2510] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  149.231765][ T2508] EXT4-fs error (device loop1): dx_make_map:1327: inode #2: block 37: comm syz-executor.1: bad entry in directory: inode out of bounds - offset=0, inode=1633771873, rec_len=1024, size=1024 fake=0
[  149.231845][ T2051] usb 4-1: config 0 descriptor??
[  149.262963][ T2510] EXT4-fs warning (device loop0): ext4_rename_delete:3735: inode #2: comm syz-executor.0: Deleting old file: nlink 4, error=-2
[  149.263121][ T2508] EXT4-fs error (device loop1) in do_split:2092: Corrupt filesystem
[  149.285538][ T1476] EXT4-fs (loop4): unmounting filesystem.
[  149.317853][  T824] EXT4-fs (loop0): unmounting filesystem.
[  149.381070][  T344] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  149.399046][  T344] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  149.418672][  T344] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  149.433000][  T344] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  149.445783][  T344] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  149.453318][  T344] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  149.461444][  T344] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  149.470545][  T344] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  149.472078][ T1413] EXT4-fs (loop1): unmounting filesystem.
[  149.477950][  T344] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  149.527975][  T344] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  149.547513][  T344] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  149.574647][  T344] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  149.587775][  T344] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  149.597214][  T344] plantronics 0003:047F:FFFF.0006: No inputs registered, leaving
[  149.607147][ T2116] usb 4-1: USB disconnect, device number 6
[  149.634928][  T344] plantronics 0003:047F:FFFF.0006: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  149.681209][  T344] usb 3-1: USB disconnect, device number 5
[  149.788812][ T2541] loop1: detected capacity change from 0 to 512
[  149.820857][ T2541] EXT4-fs error (device loop1): ext4_find_inline_data_nolock:164: inode #12: comm syz-executor.1: inline data xattr refers to an external xattr inode
[  149.838696][ T2541] EXT4-fs error (device loop1): ext4_orphan_get:1401: comm syz-executor.1: couldn't read orphan inode 12 (err -117)
[  149.853253][ T2541] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  149.927615][ T1413] EXT4-fs (loop1): unmounting filesystem.
[  151.218152][ T2576] loop2: detected capacity change from 0 to 256
[  151.246724][ T2577] syz-executor.3[2577] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  151.246870][ T2577] syz-executor.3[2577] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  151.329832][ T2576] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  151.400122][ T2576] FAT-fs (loop2): Directory bread(block 64) failed
[  151.838665][ T2576] FAT-fs (loop2): Directory bread(block 65) failed
[  151.858303][ T2576] FAT-fs (loop2): Directory bread(block 66) failed
[  151.868621][ T2576] FAT-fs (loop2): Directory bread(block 67) failed
[  151.880572][ T2576] FAT-fs (loop2): Directory bread(block 68) failed
[  151.898715][ T2576] FAT-fs (loop2): Directory bread(block 69) failed
[  151.916816][ T2576] FAT-fs (loop2): Directory bread(block 70) failed
[  151.928658][ T2576] FAT-fs (loop2): Directory bread(block 71) failed
[  151.938389][ T2576] FAT-fs (loop2): Directory bread(block 72) failed
[  151.952443][ T2576] FAT-fs (loop2): Directory bread(block 73) failed
[  152.235554][   T28] kauditd_printk_skb: 2 callbacks suppressed
[  152.235584][   T28] audit: type=1400 audit(1718132661.342:265): avc:  denied  { mounton } for  pid=2591 comm="syz-executor.3" path="/proc/2591/task" dev="proc" ino=25345 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  152.323997][   T28] audit: type=1400 audit(1718132661.372:266): avc:  denied  { mount } for  pid=2591 comm="syz-executor.3" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  152.414069][ T2589] loop4: detected capacity change from 0 to 8192
[  152.434785][ T2589] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  152.759422][ T2586] loop1: detected capacity change from 0 to 40427
[  152.819423][ T2586] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  152.834386][ T2586] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  152.852029][ T2586] F2FS-fs (loop1): invalid crc value
[  153.602236][ T2586] F2FS-fs (loop1): Found nat_bits in checkpoint
[  153.739502][ T2586] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  153.746862][ T2586] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  153.759073][   T28] audit: type=1400 audit(1718132662.872:267): avc:  denied  { mount } for  pid=2585 comm="syz-executor.1" name="/" dev="loop1" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  153.809665][   T28] audit: type=1400 audit(1718132662.912:268): avc:  denied  { ioctl } for  pid=2585 comm="syz-executor.1" path="/root/syzkaller-testdir3271171660/syzkaller.BRf8hA/69/bus/freezer.state" dev="loop1" ino=455 ioctlcmd=0xf510 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  153.863347][   T28] audit: type=1400 audit(1718132662.972:269): avc:  denied  { unmount } for  pid=1413 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  153.902948][  T382] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  153.924903][  T382] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  153.951357][ T2624] syz-executor.4[2624] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  153.951534][ T2624] syz-executor.4[2624] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  154.087908][ T2628] process 'syz-executor.2' launched './file1' with NULL argv: empty string added
[  154.133148][  T350] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  154.669311][  T350] usb 4-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[  154.731187][  T350] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  155.018300][  T350] usb 4-1: Product: syz
[  155.022512][  T350] usb 4-1: Manufacturer: syz
[  155.110598][  T350] usb 4-1: SerialNumber: syz
[  155.116920][  T350] usb 4-1: config 0 descriptor??
[  155.124971][ T2631] loop2: detected capacity change from 0 to 8192
[  155.147272][ T2631] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  155.164801][  T350] usb-storage 4-1:0.0: USB Mass Storage device detected
[  155.251871][   T28] audit: type=1400 audit(1718132664.362:270): avc:  denied  { write } for  pid=2643 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  155.306293][ T2639] xt_CT: You must specify a L4 protocol and not use inversions on it
[  155.334657][   T28] audit: type=1400 audit(1718132664.432:271): avc:  denied  { map } for  pid=2638 comm="syz-executor.0" path="socket:[25623]" dev="sockfs" ino=25623 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  155.377008][   T41] usb 4-1: USB disconnect, device number 7
[  155.388649][   T28] audit: type=1400 audit(1718132664.432:272): avc:  denied  { read write } for  pid=2638 comm="syz-executor.0" path="socket:[25623]" dev="sockfs" ino=25623 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  155.414785][   T28] audit: type=1400 audit(1718132664.482:273): avc:  denied  { getopt } for  pid=2648 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  156.608407][ T2654] loop4: detected capacity change from 0 to 40427
[  156.637309][ T2654] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  156.667676][ T2654] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  156.704617][ T2654] F2FS-fs (loop4): invalid crc value
[  156.755815][ T2654] F2FS-fs (loop4): Found nat_bits in checkpoint
[  156.948015][ T2679] loop3: detected capacity change from 0 to 1024
[  157.013877][ T2677] syz-executor.2[2677] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  157.016912][ T2677] syz-executor.2[2677] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  157.164504][ T2679] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  157.773788][ T1403] EXT4-fs (loop3): unmounting filesystem.
[  157.826315][ T2654] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  157.841854][ T2690] device pim6reg1 entered promiscuous mode
[  157.848968][ T2654] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  158.100849][  T381] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  158.141164][  T381] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  158.208922][   T41] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  158.616758][ T2698] loop3: detected capacity change from 0 to 8192
[  158.751667][ T2698] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  158.789158][   T41] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  158.990229][   T41] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  159.001618][   T41] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  159.015150][   T41] usb 3-1: New USB device found, idVendor=0477, idProduct=c52b, bcdDevice= 0.00
[  159.024121][   T41] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  159.080653][   T41] usb 3-1: config 0 descriptor??
[  159.560930][ T2677] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  159.576758][ T2677] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  159.586776][   T28] audit: type=1400 audit(1718132668.692:274): avc:  denied  { ioctl } for  pid=2676 comm="syz-executor.2" path="/dev/fuse" dev="devtmpfs" ino=93 ioctlcmd=0xe500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  159.616011][ T2677] tmpfs: Bad value for 'huge'
[  159.626231][ T2677] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  159.635950][ T2677] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  159.808762][  T344] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  159.856431][ T2729] loop3: detected capacity change from 0 to 40427
[  159.865520][ T2729] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  159.873976][ T2729] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  159.886131][ T2729] F2FS-fs (loop3): invalid crc value
[  159.895270][ T2729] F2FS-fs (loop3): Found nat_bits in checkpoint
[  159.997899][ T2729] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  160.005479][ T2729] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  160.052161][   T10] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  160.062787][   T10] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  160.212947][   T41] usbhid 3-1:0.0: can't add hid device: -71
[  160.229264][   T41] usbhid: probe of 3-1:0.0 failed with error -71
[  160.229569][ T2738] loop1: detected capacity change from 0 to 256
[  160.250543][ T2737] syz-executor.2[2737] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  160.250726][ T2737] syz-executor.2[2737] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  160.264045][   T41] usb 3-1: USB disconnect, device number 6
[  160.288893][ T2738] FAT-fs (loop1): bogus logical sector size 0
[  160.294891][ T2738] FAT-fs (loop1): Can't find a valid FAT filesystem
[  160.368627][  T344] usb 5-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[  160.400772][   T28] audit: type=1400 audit(1718132669.512:275): avc:  denied  { map } for  pid=2736 comm="syz-executor.1" path="/dev/ashmem" dev="devtmpfs" ino=177 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  160.401276][  T344] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  160.508610][   T28] audit: type=1400 audit(1718132669.562:276): avc:  denied  { mount } for  pid=2736 comm="syz-executor.1" name="/" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  160.569001][  T344] usb 5-1: Product: syz
[  160.571137][   T28] audit: type=1400 audit(1718132669.682:277): avc:  denied  { bind } for  pid=2742 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  160.573045][  T344] usb 5-1: Manufacturer: syz
[  160.573089][  T344] usb 5-1: SerialNumber: syz
[  160.606221][   T28] audit: type=1400 audit(1718132669.702:278): avc:  denied  { name_bind } for  pid=2742 comm="syz-executor.1" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1
[  160.630633][   T28] audit: type=1400 audit(1718132669.702:279): avc:  denied  { node_bind } for  pid=2742 comm="syz-executor.1" saddr=ff02::1 src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[  160.663361][  T344] usb 5-1: config 0 descriptor??
[  160.720972][  T344] usb-storage 5-1:0.0: USB Mass Storage device detected
[  160.841790][ T2754] loop1: detected capacity change from 0 to 1024
[  161.067414][ T2754] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  161.300216][  T344] usb 5-1: USB disconnect, device number 7
[  161.684678][ T1413] EXT4-fs (loop1): unmounting filesystem.
[  161.909253][ T2770] loop1: detected capacity change from 0 to 8192
[  162.018607][  T809] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  162.161971][ T2761] loop2: detected capacity change from 0 to 40427
[  162.174943][ T2761] F2FS-fs (loop2): Invalid Fs Meta Ino: node(0) meta(2) root(0)
[  162.185222][ T2761] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  162.197390][ T2761] F2FS-fs (loop2): invalid crc value
[  162.227081][ T2761] F2FS-fs (loop2): Found nat_bits in checkpoint
[  162.267751][ T2782] syz-executor.4[2782] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  162.267913][ T2782] syz-executor.4[2782] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  162.354470][ T2761] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  162.377176][ T2761] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4
[  162.434371][  T809] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  162.445851][  T809] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  162.465249][  T809] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  162.475223][  T809] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  162.493149][ T2761] syz-executor.2: attempt to access beyond end of device
[  162.493149][ T2761] loop2: rw=2049, sector=77824, nr_sectors = 512 limit=40427
[  162.498377][  T809] usb 4-1: config 0 descriptor??
[  162.548229][ T1376] syz-executor.2: attempt to access beyond end of device
[  162.548229][ T1376] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  162.707200][ T2795] loop4: detected capacity change from 0 to 512
[  162.753397][ T2795] EXT4-fs: Ignoring removed nobh option
[  162.760293][ T2795] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  162.826226][ T2795] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  162.835306][ T2795] ext4 filesystem being mounted at /root/syzkaller-testdir401475831/syzkaller.Zu2x4t/90/file0 supports timestamps until 2038 (0x7fffffff)
[  162.889357][   T28] audit: type=1400 audit(1718132671.992:280): avc:  denied  { mounton } for  pid=2794 comm="syz-executor.4" path="/root/syzkaller-testdir401475831/syzkaller.Zu2x4t/90/file0/file1" dev="loop4" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  162.922438][ T2795] EXT4-fs: Ignoring removed nobh option
[  162.928859][ T2795] EXT4-fs: Cannot change journaled quota options when quota turned on
[  162.943888][   T28] audit: type=1400 audit(1718132672.032:281): avc:  denied  { remount } for  pid=2794 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  162.984453][ T1476] EXT4-fs (loop4): unmounting filesystem.
[  163.021391][  T809] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  163.036128][  T809] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  163.051969][  T809] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  163.078567][  T809] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  163.117887][  T809] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  163.137942][  T809] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  163.145728][  T809] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  163.153632][  T809] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  163.162080][  T809] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  163.170344][  T809] plantronics 0003:047F:FFFF.0007: unknown main item tag 0x0
[  163.178260][  T809] plantronics 0003:047F:FFFF.0007: No inputs registered, leaving
[  163.252762][  T809] plantronics 0003:047F:FFFF.0007: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0
[  163.299912][  T809] usb 4-1: USB disconnect, device number 8
[  163.848499][ T2116] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  164.072347][ T2833] loop1: detected capacity change from 0 to 8192
[  164.098672][ T2116] usb 3-1: Using ep0 maxpacket: 32
[  164.394348][ T2824] loop3: detected capacity change from 0 to 40427
[  164.401104][ T2116] usb 3-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=e2.de
[  164.410772][ T2116] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  164.430977][ T2116] usb 3-1: Product: syz
[  164.435238][ T2116] usb 3-1: Manufacturer: syz
[  164.440955][ T2116] usb 3-1: SerialNumber: syz
[  164.447726][ T2116] usb 3-1: config 0 descriptor??
[  164.457134][ T2824] F2FS-fs (loop3): Invalid Fs Meta Ino: node(0) meta(2) root(0)
[  164.479439][ T2824] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  164.494395][ T2824] F2FS-fs (loop3): invalid crc value
[  164.505090][ T2824] F2FS-fs (loop3): Found nat_bits in checkpoint
[  164.634021][ T2824] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  164.641448][ T2824] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  165.450011][ T2824] syz-executor.3: attempt to access beyond end of device
[  165.450011][ T2824] loop3: rw=2049, sector=77824, nr_sectors = 512 limit=40427
[  165.512133][ T1403] syz-executor.3: attempt to access beyond end of device
[  165.512133][ T1403] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  165.677484][ T2116] CoreChips: probe of 3-1:0.0 failed with error -71
[  165.693830][ T2116] usb 3-1: USB disconnect, device number 7
[  165.967266][ T2860] loop3: detected capacity change from 0 to 256
[  165.974156][   T28] audit: type=1400 audit(1718132675.082:282): avc:  denied  { mounton } for  pid=2861 comm="syz-executor.0" path="/root/syzkaller-testdir3517279343/syzkaller.THHqzX/248/file0" dev="sda1" ino=1964 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=sock_file permissive=1
[  166.008754][ T2051] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  166.020600][ T2860] FAT-fs (loop3): bogus logical sector size 0
[  166.028085][ T2860] FAT-fs (loop3): Can't find a valid FAT filesystem
[  166.175657][ T2868] loop3: detected capacity change from 0 to 8192
[  166.228018][   T28] audit: type=1400 audit(1718132675.332:283): avc:  denied  { remount } for  pid=2870 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  166.378789][ T2051] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  166.409983][ T2051] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  166.438563][ T2051] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  166.468110][ T2051] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  166.491501][ T2051] usb 2-1: config 0 descriptor??
[  166.748593][ T2116] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  166.819500][ T2876] loop2: detected capacity change from 0 to 40427
[  166.843455][ T2876] F2FS-fs (loop2): Invalid Fs Meta Ino: node(0) meta(2) root(0)
[  166.857827][ T2876] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  166.868020][ T2876] F2FS-fs (loop2): invalid crc value
[  166.878053][ T2876] F2FS-fs (loop2): Found nat_bits in checkpoint
[  166.951147][ T2051] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  166.966592][ T2051] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  166.982023][ T2051] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  166.988540][ T2116] usb 4-1: Using ep0 maxpacket: 8
[  166.997303][ T2051] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  167.000465][ T2876] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  167.012349][ T2876] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4
[  167.012560][ T2051] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  167.034892][ T2051] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  167.048691][ T2051] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  167.060814][ T2051] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  167.072968][ T2051] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  167.084953][ T2051] plantronics 0003:047F:FFFF.0008: unknown main item tag 0x0
[  167.098292][ T2051] plantronics 0003:047F:FFFF.0008: No inputs registered, leaving
[  167.108635][ T2116] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  167.125544][ T2051] plantronics 0003:047F:FFFF.0008: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  167.128542][ T2116] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  167.179637][ T2116] usb 4-1: config 0 descriptor??
[  167.188256][ T2876] syz-executor.2: attempt to access beyond end of device
[  167.188256][ T2876] loop2: rw=2049, sector=77824, nr_sectors = 512 limit=40427
[  167.553827][  T350] usb 2-1: USB disconnect, device number 4
[  168.284666][ T2116] asix 4-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random
[  168.294574][ T1376] syz-executor.2: attempt to access beyond end of device
[  168.294574][ T1376] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  168.308603][ T2116] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  168.318381][ T2116] asix 4-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffb9
[  168.333786][ T2116] asix: probe of 4-1:0.0 failed with error -71
[  168.350697][ T2116] usb 4-1: USB disconnect, device number 9
[  168.704344][ T2912] capability: warning: `syz-executor.3' uses deprecated v2 capabilities in a way that may be insecure
[  168.745661][   T28] audit: type=1326 audit(1718132677.852:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2915 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a72e7cea9 code=0x7ffc0000
[  168.802982][   T28] audit: type=1326 audit(1718132677.882:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2915 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a72e7cea9 code=0x7ffc0000
[  168.888974][   T28] audit: type=1326 audit(1718132677.892:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2915 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9a72e7cea9 code=0x7ffc0000
[  168.960702][   T28] audit: type=1326 audit(1718132677.892:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2915 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a72e7cea9 code=0x7ffc0000
[  169.003047][   T28] audit: type=1326 audit(1718132677.892:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2915 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a72e7cea9 code=0x7ffc0000
[  169.028247][ T2914] loop2: detected capacity change from 0 to 8192
[  169.051708][   T28] audit: type=1326 audit(1718132677.902:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2915 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9a72e7cea9 code=0x7ffc0000
[  169.078104][   T28] audit: type=1326 audit(1718132677.902:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2915 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9a72e7cea9 code=0x7ffc0000
[  169.116913][   T28] audit: type=1326 audit(1718132677.902:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2915 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9a72e7a627 code=0x7ffc0000
[  169.258559][  T324] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  169.545314][ T2051] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  169.713205][  T324] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  169.724772][  T324] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  170.348454][    C0] sched: RT throttling activated
[  170.350676][  T324] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  170.365267][  T324] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  170.374966][  T324] usb 2-1: config 0 descriptor??
[  170.987657][ T2051] usb 3-1: Using ep0 maxpacket: 8
[  171.420020][ T2051] usb 3-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  171.448181][ T2051] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  171.468200][ T2051] usb 3-1: config 0 descriptor??
[  171.491747][ T2953] tipc: Failed to remove unknown binding: 66,1,1/0:587289752/587289754
[  171.501908][ T2953] tipc: Failed to remove unknown binding: 66,1,1/0:587289752/587289754
[  171.738774][ T2051] asix 3-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random
[  171.760842][  T324] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  171.768125][  T324] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  171.794549][ T2966] loop3: detected capacity change from 0 to 8192
[  171.796037][  T324] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  171.808555][  T324] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  171.816128][  T324] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  171.824320][  T324] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  171.832427][  T324] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  171.841891][  T324] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  171.849579][  T324] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  171.857525][  T324] plantronics 0003:047F:FFFF.0009: unknown main item tag 0x0
[  171.865636][  T324] plantronics 0003:047F:FFFF.0009: No inputs registered, leaving
[  171.876100][  T324] plantronics 0003:047F:FFFF.0009: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  171.948604][ T2051] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  171.958639][ T2051] asix 3-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffb9
[  172.008624][ T2051] asix: probe of 3-1:0.0 failed with error -71
[  172.026828][ T2051] usb 3-1: USB disconnect, device number 8
[  172.126303][  T324] usb 2-1: USB disconnect, device number 5
[  172.293363][ T2960] loop0: detected capacity change from 0 to 65536
[  172.625806][ T2959] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  172.634723][ T2959] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[  172.642856][ T2959] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  172.708843][   T28] kauditd_printk_skb: 37 callbacks suppressed
[  172.708895][   T28] audit: type=1400 audit(1718132681.732:329): avc:  denied  { mounton } for  pid=2958 comm="syz-executor.0" path="/root/syzkaller-testdir3517279343/syzkaller.THHqzX/256/file0/bus" dev="loop0" ino=1048675 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=dir permissive=1
[  173.026756][ T2969] loop3: detected capacity change from 0 to 40427
[  173.072263][ T2969] F2FS-fs (loop3): Invalid Fs Meta Ino: node(0) meta(2) root(0)
[  173.114992][ T2969] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  173.185739][ T2969] F2FS-fs (loop3): invalid crc value
[  173.220518][ T2969] F2FS-fs (loop3): Found nat_bits in checkpoint
[  174.205964][ T2969] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  174.229478][ T2969] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  174.241409][ T3003] tipc: Failed to remove unknown binding: 66,1,1/0:1636742833/1636742835
[  174.264700][ T3005] loop0: detected capacity change from 0 to 512
[  174.278881][ T3003] tipc: Failed to remove unknown binding: 66,1,1/0:1636742833/1636742835
[  174.317520][ T3005] EXT4-fs (loop0): can't mount with journal_checksum, fs mounted w/o journal
[  174.335752][ T2969] syz-executor.3: attempt to access beyond end of device
[  174.335752][ T2969] loop3: rw=2049, sector=77824, nr_sectors = 512 limit=40427
[  174.391357][   T28] audit: type=1400 audit(1718132683.502:330): avc:  denied  { read } for  pid=3004 comm="syz-executor.0" name="loop-control" dev="devtmpfs" ino=113 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  174.449903][   T28] audit: type=1400 audit(1718132683.502:331): avc:  denied  { open } for  pid=3004 comm="syz-executor.0" path="/dev/loop-control" dev="devtmpfs" ino=113 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  174.456622][ T1403] syz-executor.3: attempt to access beyond end of device
[  174.456622][ T1403] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  174.506398][   T28] audit: type=1400 audit(1718132683.502:332): avc:  denied  { ioctl } for  pid=3004 comm="syz-executor.0" path="/dev/loop-control" dev="devtmpfs" ino=113 ioctlcmd=0x4c80 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  174.715635][ T2992] loop1: detected capacity change from 0 to 40427
[  174.742017][ T2992] F2FS-fs (loop1): invalid crc value
[  174.743759][ T3020] loop2: detected capacity change from 0 to 512
[  174.780945][ T2992] F2FS-fs (loop1): Found nat_bits in checkpoint
[  174.787174][ T3020] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  174.821536][ T3020] ext4 filesystem being mounted at /root/syzkaller-testdir28189273/syzkaller.n5DEI8/156/file0 supports timestamps until 2038 (0x7fffffff)
[  174.896514][ T1376] EXT4-fs (loop2): unmounting filesystem.
[  175.042489][ T2992] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4
[  175.103450][   T28] audit: type=1400 audit(1718132684.212:333): avc:  denied  { map } for  pid=3004 comm="syz-executor.0" path="/root/syzkaller-testdir3517279343/syzkaller.THHqzX/258/bus" dev="devtmpfs" ino=114 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  175.116479][ T2992] syz-executor.1: attempt to access beyond end of device
[  175.116479][ T2992] loop1: rw=34817, sector=77824, nr_sectors = 128 limit=40427
[  175.252488][ T2992] syz-executor.1: attempt to access beyond end of device
[  175.252488][ T2992] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  175.376760][ T3043] tipc: Failed to remove unknown binding: 66,1,1/0:3733510065/3733510067
[  175.386541][ T3043] tipc: Failed to remove unknown binding: 66,1,1/0:3733510065/3733510067
[  175.510724][   T28] audit: type=1400 audit(1718132684.612:334): avc:  denied  { unmount } for  pid=824 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  175.748928][  T324] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  175.793640][ T3067] tipc: Failed to remove unknown binding: 66,1,1/0:2469972790/2469972792
[  175.809504][ T3067] tipc: Failed to remove unknown binding: 66,1,1/0:2469972790/2469972792
[  175.933208][   T28] audit: type=1400 audit(1718132685.042:335): avc:  denied  { setopt } for  pid=3081 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  176.028550][  T324] usb 4-1: Using ep0 maxpacket: 8
[  176.154863][ T3098] tipc: Failed to remove unknown binding: 66,1,1/0:1343578692/1343578694
[  176.164309][ T3098] tipc: Failed to remove unknown binding: 66,1,1/0:1343578692/1343578694
[  176.178979][  T324] usb 4-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  176.200776][  T324] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  176.214506][  T324] usb 4-1: config 0 descriptor??
[  176.318624][  T344] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  176.453015][ T3094] loop1: detected capacity change from 0 to 40427
[  176.462392][ T3094] F2FS-fs (loop1): invalid crc value
[  176.474288][ T3094] F2FS-fs (loop1): Found nat_bits in checkpoint
[  176.488773][  T324] asix 4-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random
[  176.600204][ T3094] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4
[  176.617791][ T3094] syz-executor.1: attempt to access beyond end of device
[  176.617791][ T3094] loop1: rw=34817, sector=77824, nr_sectors = 128 limit=40427
[  176.635244][ T3094] syz-executor.1: attempt to access beyond end of device
[  176.635244][ T3094] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  176.684470][ T3124] loop0: detected capacity change from 0 to 512
[  176.691544][  T344] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  176.704893][  T344] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  176.708820][  T324] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  176.727648][  T344] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  176.740236][  T344] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  176.748612][  T324] asix 4-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffb9
[  176.752510][ T3124] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  176.768595][  T324] asix: probe of 4-1:0.0 failed with error -71
[  176.776932][  T344] usb 5-1: config 0 descriptor??
[  176.784540][  T324] usb 4-1: USB disconnect, device number 10
[  176.810416][ T3124] ext4 filesystem being mounted at /root/syzkaller-testdir3517279343/syzkaller.THHqzX/278/file0 supports timestamps until 2038 (0x7fffffff)
[  176.937587][  T824] EXT4-fs (loop0): unmounting filesystem.
[  177.044981][ T3135] loop1: detected capacity change from 0 to 512
[  177.052504][ T3135] EXT4-fs: Ignoring removed mblk_io_submit option
[  177.059909][ T3135] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  177.085436][ T3135] EXT4-fs (loop1): 1 truncate cleaned up
[  177.091236][ T3135] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  177.156525][ T1413] EXT4-fs (loop1): unmounting filesystem.
[  177.270982][  T344] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  177.278693][  T344] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  177.285967][  T344] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  177.303633][  T344] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  177.323682][  T344] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  177.333373][  T344] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  177.347993][ T3155] loop0: detected capacity change from 0 to 512
[  177.354796][  T344] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  177.362858][  T344] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  177.371818][  T344] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  177.379692][  T344] plantronics 0003:047F:FFFF.000A: unknown main item tag 0x0
[  177.387931][  T344] plantronics 0003:047F:FFFF.000A: No inputs registered, leaving
[  177.402201][   T28] audit: type=1400 audit(1718132686.512:336): avc:  denied  { write } for  pid=3157 comm="syz-executor.3" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  177.427548][   T28] audit: type=1400 audit(1718132686.512:337): avc:  denied  { open } for  pid=3157 comm="syz-executor.3" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
[  177.438794][  T344] plantronics 0003:047F:FFFF.000A: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  177.479735][ T3155] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  177.490916][ T3155] ext4 filesystem being mounted at /root/syzkaller-testdir3517279343/syzkaller.THHqzX/282/file0 supports timestamps until 2038 (0x7fffffff)
[  177.533618][  T824] EXT4-fs (loop0): unmounting filesystem.
[  177.548775][ T2116] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  177.619859][  T324] usb 5-1: USB disconnect, device number 8
[  177.786982][ T3165] loop1: detected capacity change from 0 to 40427
[  177.788611][ T2116] usb 3-1: Using ep0 maxpacket: 16
[  177.797831][ T3165] F2FS-fs (loop1): invalid crc value
[  177.807546][ T3165] F2FS-fs (loop1): Found nat_bits in checkpoint
[  177.912038][ T3165] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4
[  177.933332][ T3165] syz-executor.1: attempt to access beyond end of device
[  177.933332][ T3165] loop1: rw=34817, sector=77824, nr_sectors = 128 limit=40427
[  177.952134][ T3165] syz-executor.1: attempt to access beyond end of device
[  177.952134][ T3165] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  178.088701][ T2116] usb 3-1: New USB device found, idVendor=23a7, idProduct=fedc, bcdDevice=e0.0b
[  178.098139][ T2116] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  178.106150][ T2116] usb 3-1: Product: syz
[  178.110626][ T2116] usb 3-1: Manufacturer: syz
[  178.115210][ T2116] usb 3-1: SerialNumber: syz
[  178.131359][ T2116] usb 3-1: config 0 descriptor??
[  178.788980][ T2051] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  179.048740][ T2051] usb 4-1: Using ep0 maxpacket: 16
[  179.368823][ T2116] usb 3-1: MIDIStreaming interface descriptor not found
[  179.458653][ T2051] usb 4-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  179.480624][ T2116] usb 3-1: USB disconnect, device number 9
[  179.496269][ T2051] usb 4-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  179.535624][ T2051] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  179.718748][ T2051] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  179.738166][ T2051] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  179.747077][ T2051] usb 4-1: Product: syz
[  179.751617][ T2051] usb 4-1: Manufacturer: syz
[  179.756555][ T2051] usb 4-1: SerialNumber: syz
[  180.092069][ T3229] bridge0: port 1(bridge_slave_0) entered blocking state
[  180.099245][ T3229] bridge0: port 1(bridge_slave_0) entered disabled state
[  180.107404][ T3229] device bridge_slave_0 entered promiscuous mode
[  180.122783][ T3229] bridge0: port 2(bridge_slave_1) entered blocking state
[  180.130542][ T3229] bridge0: port 2(bridge_slave_1) entered disabled state
[  180.138878][ T3229] device bridge_slave_1 entered promiscuous mode
[  180.189052][   T28] audit: type=1326 audit(1718132689.302:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3242 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21aee7cea9 code=0x7ffc0000
[  180.225807][ T3223] loop1: detected capacity change from 0 to 40427
[  180.233563][   T28] audit: type=1326 audit(1718132689.302:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3242 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21aee7cea9 code=0x7ffc0000
[  180.257997][ T3223] F2FS-fs (loop1): Wrong MAIN_AREA boundary, start(4096) end(12800) block(12288)
[  180.262198][   T28] audit: type=1326 audit(1718132689.302:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3242 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f21aee7cea9 code=0x7ffc0000
[  180.301276][   T28] audit: type=1326 audit(1718132689.302:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3242 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21aee7cea9 code=0x7ffc0000
[  180.303168][ T3223] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  180.326196][   T28] audit: type=1326 audit(1718132689.302:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3242 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21aee7cea9 code=0x7ffc0000
[  180.371965][   T28] audit: type=1326 audit(1718132689.302:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3242 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f21aee7cea9 code=0x7ffc0000
[  180.397492][ T3223] F2FS-fs (loop1): invalid crc value
[  180.414484][ T3223] F2FS-fs (loop1): Wrong journal entry on segno 65538
[  180.423849][ T3223] F2FS-fs (loop1): Failed to initialize F2FS segment manager (-117)
[  180.439870][   T28] audit: type=1326 audit(1718132689.342:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3242 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21aee7cea9 code=0x7ffc0000
[  180.464602][   T28] audit: type=1326 audit(1718132689.352:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3242 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f21aee7a627 code=0x7ffc0000
[  180.489720][   T28] audit: type=1326 audit(1718132689.352:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3242 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f21aee402e9 code=0x7ffc0000
[  180.499097][ T2051] usb 4-1: 0:2 : does not exist
[  180.520699][   T28] audit: type=1326 audit(1718132689.352:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3242 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f21aee7cea9 code=0x7ffc0000
[  180.536114][ T2051] usb 4-1: USB disconnect, device number 11
[  180.651808][  T381] device bridge_slave_1 left promiscuous mode
[  180.661643][  T381] bridge0: port 2(bridge_slave_1) entered disabled state
[  180.679194][  T381] device bridge_slave_0 left promiscuous mode
[  180.693157][  T381] bridge0: port 1(bridge_slave_0) entered disabled state
[  180.713171][  T381] device veth1_macvtap left promiscuous mode
[  180.730000][  T381] device veth0_vlan left promiscuous mode
[  181.218615][ T3268] loop3: detected capacity change from 0 to 512
[  181.256079][ T3268] EXT4-fs (loop3): can't mount with journal_checksum, fs mounted w/o journal
[  181.413538][  T344] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  181.422726][  T344] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  181.460336][ T2116] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  181.469802][ T2116] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  181.478253][ T2116] bridge0: port 1(bridge_slave_0) entered blocking state
[  181.485381][ T2116] bridge0: port 1(bridge_slave_0) entered forwarding state
[  181.495820][ T2116] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  181.505050][ T2116] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  181.519013][ T2116] bridge0: port 2(bridge_slave_1) entered blocking state
[  181.527455][ T2116] bridge0: port 2(bridge_slave_1) entered forwarding state
[  181.600290][  T344] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  181.609319][  T344] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  181.618987][  T344] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  181.627582][  T344] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  181.636511][  T344] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  181.750927][  T324] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  181.760602][  T324] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  181.794932][ T3229] device veth0_vlan entered promiscuous mode
[  181.820455][  T324] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  181.829029][  T324] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  181.859972][  T324] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  181.867948][  T324] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  181.878395][ T3251] loop2: detected capacity change from 0 to 65536
[  181.883073][ T3229] device veth1_macvtap entered promiscuous mode
[  181.900368][ T2051] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  181.949092][  T324] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  181.958195][  T324] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  182.215760][  T324] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  182.224791][  T324] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  182.311900][ T3250] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  182.320510][ T3250] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[  182.328653][ T3250] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  182.854087][ T3305] syz-executor.4[3305] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  182.854338][ T3305] syz-executor.4[3305] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  182.906092][ T3305] syz-executor.4[3305] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  182.944569][ T3305] syz-executor.4[3305] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  183.476079][ T3336] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=3336 comm=syz-executor.1
[  183.498252][ T3339] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  183.535509][ T3339] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  183.837610][ T3370] netlink: 'syz-executor.3': attribute type 1 has an invalid length.
[  183.878078][ T3370] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  184.252844][ T3392] device syzkaller0 entered promiscuous mode
[  184.367443][ T3402] netlink: 'syz-executor.4': attribute type 1 has an invalid length.
[  184.376849][ T3402] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[  184.418937][ T3404] loop4: detected capacity change from 0 to 256
[  184.524970][ T3408] device pim6reg1 entered promiscuous mode
[  184.580129][ T3397] bridge0: port 1(bridge_slave_0) entered blocking state
[  184.588270][ T3397] bridge0: port 1(bridge_slave_0) entered disabled state
[  184.604077][ T3397] device bridge_slave_0 entered promiscuous mode
[  184.630615][ T3397] bridge0: port 2(bridge_slave_1) entered blocking state
[  184.638109][ T3397] bridge0: port 2(bridge_slave_1) entered disabled state
[  184.647982][ T3397] device bridge_slave_1 entered promiscuous mode
[  184.916392][    T8] device veth1_macvtap left promiscuous mode
[  185.002878][    T8] device veth0_vlan left promiscuous mode
[  185.508009][   T28] kauditd_printk_skb: 47 callbacks suppressed
[  185.508042][   T28] audit: type=1326 audit(1718132694.612:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3422 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5da87cea9 code=0x7ffc0000
[  185.596296][   T28] audit: type=1326 audit(1718132694.652:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3422 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc5da87cea9 code=0x7ffc0000
[  185.620790][   T28] audit: type=1326 audit(1718132694.652:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3422 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5da87cea9 code=0x7ffc0000
[  185.645543][   T28] audit: type=1326 audit(1718132694.662:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3422 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc5da87cea9 code=0x7ffc0000
[  185.670347][   T28] audit: type=1326 audit(1718132694.662:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3422 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5da87cea9 code=0x7ffc0000
[  185.716432][   T28] audit: type=1326 audit(1718132694.662:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3422 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fc5da87a627 code=0x7ffc0000
[  185.729798][ T3427] netlink: 'syz-executor.1': attribute type 1 has an invalid length.
[  185.748847][   T28] audit: type=1326 audit(1718132694.662:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3422 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc5da8402e9 code=0x7ffc0000
[  185.751333][ T3427] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  185.777397][   T28] audit: type=1326 audit(1718132694.662:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3422 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fc5da87a627 code=0x7ffc0000
[  185.809038][   T28] audit: type=1326 audit(1718132694.662:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3422 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fc5da8402e9 code=0x7ffc0000
[  185.840609][   T28] audit: type=1326 audit(1718132694.662:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3422 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fc5da87a627 code=0x7ffc0000
[  187.426324][ T3451] device pim6reg1 entered promiscuous mode
[  187.496569][ T3453] device syzkaller0 entered promiscuous mode
[  187.583909][ T3462] netlink: 'syz-executor.1': attribute type 1 has an invalid length.
[  187.614049][ T3462] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  187.678374][ T3469] syz-executor.4 (pid 3469) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  187.711528][ T3469] fscrypt: Adiantum using implementation "adiantum(xchacha12-simd,aes-aesni,nhpoly1305-generic)"
[  187.875598][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  187.885395][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  187.930395][ T2116] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  187.942990][ T2116] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  187.952735][ T2116] bridge0: port 1(bridge_slave_0) entered blocking state
[  187.960345][ T2116] bridge0: port 1(bridge_slave_0) entered forwarding state
[  187.989076][ T2116] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  188.005310][ T2116] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  188.015483][ T2116] bridge0: port 2(bridge_slave_1) entered blocking state
[  188.022601][ T2116] bridge0: port 2(bridge_slave_1) entered forwarding state
[  188.032155][ T2116] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  188.044096][ T3487] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[  188.087863][ T2116] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  188.108226][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  188.162418][ T2116] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  188.194413][ T2116] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  188.204112][ T2116] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  188.212602][ T2116] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  188.246237][ T3397] device veth0_vlan entered promiscuous mode
[  188.283267][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  188.296480][ T3397] device veth1_macvtap entered promiscuous mode
[  188.314725][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  188.324129][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  188.349717][ T3417] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  188.363859][ T3417] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  188.446716][ T3500] device syzkaller0 entered promiscuous mode
[  188.823556][ T3522] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'.
[  189.203984][ T3541] loop3: detected capacity change from 0 to 256
[  189.280519][ T3497] loop4: detected capacity change from 0 to 65536
[  189.565242][ T3496] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  189.574078][ T3496] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[  189.582247][ T3496] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  189.691946][ T3552] loop3: detected capacity change from 0 to 256
[  189.779583][ T3552] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xb22115ea, utbl_chksum : 0xe619d30d)
[  190.128514][   T24] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  191.378597][   T24] usb 2-1: Using ep0 maxpacket: 32
[  191.454719][ T3584] loop2: detected capacity change from 0 to 256
[  191.472142][ T3584] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xb22115ea, utbl_chksum : 0xe619d30d)
[  191.509001][   T24] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  191.528493][   T24] usb 2-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  191.648044][ T3592] device syzkaller0 entered promiscuous mode
[  191.668603][   T24] usb 2-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  191.680574][ T3600] loop2: detected capacity change from 0 to 128
[  191.698183][   T24] usb 2-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  191.708477][   T24] usb 2-1: Product: syz
[  191.712542][   T24] usb 2-1: Manufacturer: syz
[  191.769931][   T24] hub 2-1:4.0: USB hub found
[  191.999935][   T28] kauditd_printk_skb: 27 callbacks suppressed
[  191.999970][   T28] audit: type=1400 audit(1718132701.112:432): avc:  denied  { map } for  pid=3612 comm="syz-executor.3" path="/dev/bus/usb/006/001" dev="devtmpfs" ino=159 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  192.030953][   T24] hub 2-1:4.0: config failed, hub has too many ports! (err -19)
[  192.074490][   T28] audit: type=1400 audit(1718132701.152:433): avc:  denied  { execute } for  pid=3612 comm="syz-executor.3" path="/dev/bus/usb/006/001" dev="devtmpfs" ino=159 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1
[  192.307798][   T28] audit: type=1400 audit(1718132701.412:434): avc:  denied  { nlmsg_read } for  pid=3629 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[  192.368735][  T344] usb 2-1: USB disconnect, device number 6
[  192.470144][ T3641] loop2: detected capacity change from 0 to 512
[  192.478932][ T3641] EXT4-fs (loop2): filesystem is read-only
[  193.432309][ T3677] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.3'.
[  193.449296][   T28] audit: type=1400 audit(1718132702.502:435): avc:  denied  { create } for  pid=3670 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  193.768170][   T28] audit: type=1400 audit(1718132702.512:436): avc:  denied  { getopt } for  pid=3670 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  194.250624][ T3611] loop4: detected capacity change from 0 to 131072
[  194.267529][ T3611] F2FS-fs (loop4): Found nat_bits in checkpoint
[  194.591883][ T3611] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  196.260068][   T28] audit: type=1326 audit(1718132704.592:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3701 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f026787cea9 code=0x0
[  196.722702][ T3722] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.2'.
[  198.817310][ T3752] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  199.273791][   T28] audit: type=1326 audit(1718132708.232:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3750 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f838a87cea9 code=0x0
[  199.827901][ T3768] loop4: detected capacity change from 0 to 512
[  199.849468][ T3768] EXT4-fs: Ignoring removed mblk_io_submit option
[  199.865015][ T3768] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  199.920816][ T3775] Zero length message leads to an empty skb
[  199.939232][ T3768] EXT4-fs error (device loop4): ext4_orphan_get:1396: inode #17: comm syz-executor.4: iget: bad i_size value: -6917529027641081756
[  199.995252][ T3768] EXT4-fs error (device loop4): ext4_orphan_get:1401: comm syz-executor.4: couldn't read orphan inode 17 (err -117)
[  200.008837][ T3768] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  200.169810][ T3229] EXT4-fs (loop4): unmounting filesystem.
[  200.520625][ T3790] syz-executor.1[3790] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  200.536008][ T3790] syz-executor.1[3790] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  201.044663][ T3797] netlink: 120 bytes leftover after parsing attributes in process `syz-executor.0'.
[  201.100156][   T28] audit: type=1400 audit(1718132710.212:439): avc:  denied  { lock } for  pid=3798 comm="syz-executor.2" path="socket:[31497]" dev="sockfs" ino=31497 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1
[  201.189512][ T3723] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  201.247306][   T28] audit: type=1400 audit(1718132710.352:440): avc:  denied  { setopt } for  pid=3808 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  201.296296][   T28] audit: type=1400 audit(1718132710.382:441): avc:  denied  { block_suspend } for  pid=3808 comm="syz-executor.3" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  201.335890][   T28] audit: type=1400 audit(1718132710.382:442): avc:  denied  { shutdown } for  pid=3808 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  201.389836][   T28] audit: type=1326 audit(1718132710.492:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3816 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5da87cea9 code=0x7ffc0000
[  201.424586][ T3815] loop2: detected capacity change from 0 to 512
[  201.431705][ T3815] EXT4-fs: Ignoring removed mblk_io_submit option
[  201.438144][   T28] audit: type=1326 audit(1718132710.492:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3816 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5da87cea9 code=0x7ffc0000
[  201.478264][   T28] audit: type=1326 audit(1718132710.502:445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3816 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7fc5da87cea9 code=0x7ffc0000
[  201.507476][   T28] audit: type=1326 audit(1718132710.502:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3816 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5da87cea9 code=0x7ffc0000
[  201.531857][ T3815] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  201.558957][   T28] audit: type=1326 audit(1718132710.502:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3816 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc5da87cea9 code=0x7ffc0000
[  201.591604][ T3826] syz-executor.0[3826] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  201.591988][ T3826] syz-executor.0[3826] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  201.614206][ T3815] EXT4-fs error (device loop2): ext4_orphan_get:1396: inode #17: comm syz-executor.2: iget: bad i_size value: -6917529027641081756
[  201.645592][ T3791] loop4: detected capacity change from 0 to 40427
[  201.653566][ T3791] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  201.661388][ T3791] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  201.671978][ T3815] EXT4-fs error (device loop2): ext4_orphan_get:1401: comm syz-executor.2: couldn't read orphan inode 17 (err -117)
[  201.685564][ T3832] netlink: 120 bytes leftover after parsing attributes in process `syz-executor.1'.
[  201.687697][ T3815] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  201.719280][ T3723] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  201.720682][ T3791] F2FS-fs (loop4): Found nat_bits in checkpoint
[  201.748703][ T3723] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  201.862836][ T3791] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  201.869936][ T3791] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  201.939825][  T523] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  201.953426][ T3397] EXT4-fs (loop2): unmounting filesystem.
[  202.089527][ T3860] netlink: 120 bytes leftover after parsing attributes in process `syz-executor.0'.
[  202.128645][ T2116] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  202.424712][ T3887] netlink: 120 bytes leftover after parsing attributes in process `syz-executor.0'.
[  202.451468][ T3889] loop4: detected capacity change from 0 to 1024
[  202.488986][ T2116] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  202.491623][ T3889] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  202.673226][ T3892] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.3'.
[  203.259631][ T2116] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  203.391278][ T3229] EXT4-fs (loop4): unmounting filesystem.
[  203.514934][ T3905] SELinux:  Context d is not valid (left unmapped).
[  203.718538][  T523] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  203.747486][ T3921] loop4: detected capacity change from 0 to 1024
[  203.753782][ T3876] loop2: detected capacity change from 0 to 40427
[  203.755408][ T3876] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  203.761116][    C1] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  203.772637][ T3921] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  203.777313][ T3876] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  203.800769][ T3876] F2FS-fs (loop2): Found nat_bits in checkpoint
[  203.819525][ T3229] EXT4-fs (loop4): unmounting filesystem.
[  203.906640][ T3876] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  203.913762][ T3876] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  204.207177][  T523] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  204.425129][ T3935] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.2'.
[  204.659327][  T523] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  204.742685][  T523] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  204.832865][  T523] usb 4-1: Product: syz
[  204.880140][  T523] usb 4-1: Manufacturer: syz
[  205.049959][  T523] usb 4-1: SerialNumber: syz
[  205.062072][   T28] kauditd_printk_skb: 18 callbacks suppressed
[  205.062119][   T28] audit: type=1400 audit(1718132714.172:466): avc:  denied  { wake_alarm } for  pid=3937 comm="syz-executor.1" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  205.291015][   T28] audit: type=1326 audit(1718132714.402:467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3956 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f838a87cea9 code=0x0
[  205.321808][ T3959] loop4: detected capacity change from 0 to 256
[  205.335637][ T3959] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  205.447404][   T28] audit: type=1400 audit(1718132714.552:468): avc:  denied  { mounton } for  pid=3971 comm="syz-executor.4" path="/root/syzkaller-testdir675936803/syzkaller.VUegV8/51/file0" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[  205.631807][ T3986] loop4: detected capacity change from 0 to 256
[  205.646849][ T3986] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  206.229186][   T28] audit: type=1326 audit(1718132715.332:469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3990 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc5da87cea9 code=0x0
[  206.768743][  T523] cdc_ncm 4-1:1.0: MAC-Address: 42:42:42:42:42:42
[  206.775582][  T523] cdc_ncm 4-1:1.0: setting rx_max = 16384
[  206.916952][   T28] audit: type=1400 audit(1718132716.022:470): avc:  denied  { setopt } for  pid=4012 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  206.951152][ T4019] netlink: 2 bytes leftover after parsing attributes in process `syz-executor.0'.
[  206.960696][   T28] audit: type=1400 audit(1718132716.052:471): avc:  denied  { write } for  pid=4012 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  206.981332][ T3899] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  207.000192][ T3899] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  207.059937][   T28] audit: type=1326 audit(1718132716.172:472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4022 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f21aee7cea9 code=0x0
[  207.178738][  T523] cdc_ncm 4-1:1.0: setting tx_max = 16384
[  207.230672][  T523] cdc_ncm 4-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.3-1, CDC NCM (NO ZLP), 42:42:42:42:42:42
[  207.282601][  T523] usb 4-1: USB disconnect, device number 12
[  207.298954][  T523] cdc_ncm 4-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.3-1, CDC NCM (NO ZLP)
[  207.312566][ T4027] loop4: detected capacity change from 0 to 2048
[  207.363864][ T4027] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  207.374962][ T4027] ext4 filesystem being mounted at /root/syzkaller-testdir675936803/syzkaller.VUegV8/59/file0 supports timestamps until 2038 (0x7fffffff)
[  207.470145][ T3229] EXT4-fs (loop4): unmounting filesystem.
[  208.694810][   T28] audit: type=1326 audit(1718132717.402:473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4040 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f40b867cea9 code=0x0
[  209.442510][  T523] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  209.659064][ T4099] overlayfs: unrecognized mount option "/" or missing value
[  209.688996][  T523] usb 3-1: Using ep0 maxpacket: 8
[  209.692770][ T4101] loop1: detected capacity change from 0 to 2048
[  209.755343][ T4101] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  209.764710][ T4101] ext4 filesystem being mounted at /root/syzkaller-testdir3271171660/syzkaller.BRf8hA/197/file0 supports timestamps until 2038 (0x7fffffff)
[  209.858720][  T523] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  209.870584][  T523] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8
[  209.872794][ T1413] EXT4-fs (loop1): unmounting filesystem.
[  209.886612][  T523] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 8
[  209.989036][  T523] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a5, bcdDevice= 0.40
[  210.006580][  T523] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  210.032717][  T523] usb 3-1: SerialNumber: syz
[  210.079981][ T4071] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  210.221337][ T4071] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  210.551894][ T4071] bridge: RTM_NEWNEIGH with invalid ether address
[  210.572665][ T4071] syz-executor.2[4071] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  210.572848][ T4071] syz-executor.2[4071] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  210.745850][ T4120] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.3'.
[  211.030216][ T4071] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  211.102620][ T4071] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  211.679406][   T28] audit: type=1400 audit(1718132720.792:474): avc:  denied  { read } for  pid=4132 comm="syz-executor.1" lport=58 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  211.817426][ T4138] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  211.969459][  T523] cdc_ether: probe of 3-1:1.0 failed with error -71
[  211.991206][  T523] usb-storage 3-1:1.0: USB Mass Storage device detected
[  212.068287][ T4137] loop3: detected capacity change from 0 to 128
[  212.156452][  T523] usb-storage 3-1:1.0: Quirks match for vid 0525 pid a4a5: 10000
[  212.301564][ T4137] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  212.315766][  T523] scsi host1: usb-storage 3-1:1.0
[  212.340482][  T523] usb 3-1: USB disconnect, device number 10
[  212.410233][    T8] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  214.244833][ T4167] netlink: 44 bytes leftover after parsing attributes in process `syz-executor.2'.
[  214.348850][  T350] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  215.067473][ T4174] netlink: 'syz-executor.0': attribute type 2 has an invalid length.
[  218.557252][   T28] audit: type=1326 audit(1718132725.532:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4175 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f838a87cea9 code=0x0
[  218.660836][ T4184] loop2: detected capacity change from 0 to 128
[  218.709272][ T4184] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  218.866891][  T381] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1)
[  219.031233][ T4198] loop4: detected capacity change from 0 to 512
[  219.049224][ T4198] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  219.140335][ T4198] EXT4-fs (loop4): 1 orphan inode deleted
[  219.147362][ T4198] EXT4-fs (loop4): 1 truncate cleaned up
[  219.153932][ T4198] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  219.301943][  T350] usb 2-1: device not accepting address 7, error -71
[  219.378775][ T3723] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  220.038262][ T3229] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  220.091321][ T3229] EXT4-fs (loop4): Remounting filesystem read-only
[  220.098179][ T3229] EXT4-fs error (device loop4): ext4_lookup:1855: inode #16: comm syz-executor.4: iget: bad extra_isize 46 (inode size 256)
[  220.111611][  T350] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  220.122988][ T3229] EXT4-fs error (device loop4): ext4_lookup:1855: inode #16: comm syz-executor.4: iget: bad extra_isize 46 (inode size 256)
[  220.136260][ T3723] usb 4-1: config 1 has an invalid descriptor of length 102, skipping remainder of the config
[  220.159975][ T3723] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  220.224760][ T3229] EXT4-fs (loop4): unmounting filesystem.
[  220.286186][ T4224] netlink: 'syz-executor.2': attribute type 2 has an invalid length.
[  221.238838][ T3723] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  221.255537][ T3723] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  221.279185][ T3723] usb 4-1: SerialNumber: syz
[  221.408640][  T350] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  221.430248][  T350] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  221.440250][  T350] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  221.453421][  T350] usb 2-1: New USB device found, idVendor=046d, idProduct=c293, bcdDevice= 0.00
[  221.462456][  T350] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  221.472217][  T350] usb 2-1: config 0 descriptor??
[  221.540698][ T3723] usb 4-1: 0:2 : does not exist
[  221.671221][  T381] device bridge_slave_1 left promiscuous mode
[  221.677453][  T381] bridge0: port 2(bridge_slave_1) entered disabled state
[  221.686098][  T381] device bridge_slave_0 left promiscuous mode
[  221.693245][  T381] bridge0: port 1(bridge_slave_0) entered disabled state
[  221.703529][  T381] device veth1_macvtap left promiscuous mode
[  221.718860][  T381] device veth0_vlan left promiscuous mode
[  221.930722][  T350] logitech 0003:046D:C293.000B: item fetching failed at offset 6/7
[  221.939217][  T350] logitech 0003:046D:C293.000B: parse failed
[  221.945301][  T350] logitech: probe of 0003:046D:C293.000B failed with error -22
[  221.995307][ T3723] usb 4-1: USB disconnect, device number 13
[  222.010916][   T28] audit: type=1326 audit(1718132731.122:476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4253 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f21aee7cea9 code=0x0
[  222.083466][ T4244] bridge0: port 1(bridge_slave_0) entered blocking state
[  222.090640][ T4244] bridge0: port 1(bridge_slave_0) entered disabled state
[  222.099018][ T4244] device bridge_slave_0 entered promiscuous mode
[  222.107744][ T4244] bridge0: port 2(bridge_slave_1) entered blocking state
[  222.116363][ T4244] bridge0: port 2(bridge_slave_1) entered disabled state
[  222.124511][ T4244] device bridge_slave_1 entered promiscuous mode
[  222.151371][  T809] usb 2-1: USB disconnect, device number 8
[  222.305563][ T4244] bridge0: port 2(bridge_slave_1) entered blocking state
[  222.312570][ T4244] bridge0: port 2(bridge_slave_1) entered forwarding state
[  222.319823][ T4244] bridge0: port 1(bridge_slave_0) entered blocking state
[  222.326728][ T4244] bridge0: port 1(bridge_slave_0) entered forwarding state
[  222.335891][ T4178] bridge0: port 1(bridge_slave_0) entered disabled state
[  222.343439][ T4178] bridge0: port 2(bridge_slave_1) entered disabled state
[  222.395169][ T3723] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  222.404158][ T3723] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  222.422351][ T3723] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  222.431820][ T3723] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  222.440631][ T3723] bridge0: port 1(bridge_slave_0) entered blocking state
[  222.447609][ T3723] bridge0: port 1(bridge_slave_0) entered forwarding state
[  222.455549][ T3723] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  222.464411][ T3723] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  222.474252][ T3723] bridge0: port 2(bridge_slave_1) entered blocking state
[  222.481321][ T3723] bridge0: port 2(bridge_slave_1) entered forwarding state
[  222.518777][ T4178] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  222.531725][ T4178] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  222.541305][ T4178] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  222.550217][ T4178] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  222.577471][ T4178] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  222.587051][ T4178] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  222.610107][ T3723] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  222.619635][ T3723] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  222.631273][ T4244] device veth0_vlan entered promiscuous mode
[  222.638656][ T3723] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  222.647113][ T3723] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  222.666399][ T3723] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  222.676723][ T3723] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  222.682607][ T4244] device veth1_macvtap entered promiscuous mode
[  222.712362][ T4178] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  222.722129][ T4178] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  222.731845][ T4178] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  222.751997][  T350] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  222.763335][  T350] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  223.017832][ T4287] loop4: detected capacity change from 0 to 512
[  223.035455][ T4287] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  223.084459][ T4287] EXT4-fs (loop4): 1 orphan inode deleted
[  223.091326][ T4287] EXT4-fs (loop4): 1 truncate cleaned up
[  223.096916][ T4287] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  223.168593][ T4244] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  223.169077][ T4244] EXT4-fs (loop4): Remounting filesystem read-only
[  223.169343][ T4244] EXT4-fs error (device loop4): ext4_lookup:1855: inode #16: comm syz-executor.4: iget: bad extra_isize 46 (inode size 256)
[  223.169812][ T4244] EXT4-fs error (device loop4): ext4_lookup:1855: inode #16: comm syz-executor.4: iget: bad extra_isize 46 (inode size 256)
[  223.274591][ T4244] EXT4-fs (loop4): unmounting filesystem.
[  223.308681][ T3723] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  223.376533][   T28] audit: type=1400 audit(1718132732.482:477): avc:  denied  { accept } for  pid=4308 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  223.431081][ T4316] xt_l2tp: wrong L2TP version: 0
[  223.474277][ T4318] syz-executor.2[4318] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  223.475027][ T4318] syz-executor.2[4318] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  223.947900][ T3723] usb 4-1: config 1 has an invalid descriptor of length 102, skipping remainder of the config
[  224.189238][ T3723] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  224.458949][   T28] audit: type=1400 audit(1718132733.572:478): avc:  denied  { relabelfrom } for  pid=4333 comm="syz-executor.1" name="" dev="pipefs" ino=32459 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[  224.559129][ T3723] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  224.598627][ T3723] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  224.618520][ T3723] usb 4-1: SerialNumber: syz
[  224.690318][  T381] device bridge_slave_1 left promiscuous mode
[  224.697924][  T381] bridge0: port 2(bridge_slave_1) entered disabled state
[  224.706356][  T381] device bridge_slave_0 left promiscuous mode
[  224.713242][  T381] bridge0: port 1(bridge_slave_0) entered disabled state
[  224.723598][  T381] device veth1_macvtap left promiscuous mode
[  224.730162][  T381] device veth0_vlan left promiscuous mode
[  224.906202][ T3723] usb 4-1: 0:2 : does not exist
[  224.978744][  T350] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  225.023920][ T4335] bridge0: port 1(bridge_slave_0) entered blocking state
[  225.031216][ T4335] bridge0: port 1(bridge_slave_0) entered disabled state
[  225.039369][ T4335] device bridge_slave_0 entered promiscuous mode
[  225.047424][ T4335] bridge0: port 2(bridge_slave_1) entered blocking state
[  225.054570][ T4335] bridge0: port 2(bridge_slave_1) entered disabled state
[  225.062702][ T4335] device bridge_slave_1 entered promiscuous mode
[  225.112801][ T4367] syz-executor.0[4367] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  225.112954][ T4367] syz-executor.0[4367] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  225.188808][  T809] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  225.285204][ T4335] bridge0: port 2(bridge_slave_1) entered blocking state
[  225.292413][ T4335] bridge0: port 2(bridge_slave_1) entered forwarding state
[  225.299789][ T4335] bridge0: port 1(bridge_slave_0) entered blocking state
[  225.306919][ T4335] bridge0: port 1(bridge_slave_0) entered forwarding state
[  225.328630][  T350] usb 3-1: Using ep0 maxpacket: 8
[  225.342827][ T3723] usb 4-1: USB disconnect, device number 14
[  225.381736][  T440] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  225.390834][  T440] bridge0: port 1(bridge_slave_0) entered disabled state
[  225.402212][  T440] bridge0: port 2(bridge_slave_1) entered disabled state
[  225.610007][  T350] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  225.669343][  T350] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8
[  225.724366][  T350] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 8
[  225.825198][ T2051] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  225.851713][ T2051] bridge0: port 1(bridge_slave_0) entered blocking state
[  225.858712][ T2051] bridge0: port 1(bridge_slave_0) entered forwarding state
[  225.868626][ T2051] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  225.879252][  T350] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a5, bcdDevice= 0.40
[  225.891364][ T2051] bridge0: port 2(bridge_slave_1) entered blocking state
[  225.898513][ T2051] bridge0: port 2(bridge_slave_1) entered forwarding state
[  225.906871][  T350] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  225.914950][  T350] usb 3-1: SerialNumber: syz
[  226.088681][  T809] usb 2-1: Using ep0 maxpacket: 8
[  226.100497][ T4335] device veth0_vlan entered promiscuous mode
[  226.134675][ T4335] device veth1_macvtap entered promiscuous mode
[  226.208772][  T809] usb 2-1: config 135 has an invalid interface number: 230 but max is 0
[  226.218843][ T4349] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  226.222293][  T809] usb 2-1: config 135 has an invalid descriptor of length 0, skipping remainder of the config
[  226.226868][  T440] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  226.238974][ T4349] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  226.246441][  T440] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  226.261529][  T440] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  226.270473][  T440] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  226.282922][  T440] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  226.284854][  T809] usb 2-1: config 135 has no interface number 0
[  226.290993][  T440] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  226.302153][  T809] usb 2-1: config 135 interface 230 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  226.307176][  T440] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  226.329502][  T440] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  226.338110][  T440] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  226.409342][ T4384] xt_l2tp: wrong L2TP version: 0
[  226.479402][  T809] usb 2-1: New USB device found, idVendor=18ec, idProduct=3288, bcdDevice=3f.3a
[  226.490953][  T809] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  226.508492][  T809] usb 2-1: Product: syz
[  226.512848][  T809] usb 2-1: Manufacturer: syz
[  226.517335][  T809] usb 2-1: SerialNumber: syz
[  226.540524][ T4349] bridge: RTM_NEWNEIGH with invalid ether address
[  226.548588][ T4349] syz-executor.2[4349] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  226.548741][ T4349] syz-executor.2[4349] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  226.563034][ T4349] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  226.582798][ T4349] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  226.588154][   T28] audit: type=1326 audit(1718132735.692:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4394 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21aee7cea9 code=0x7ffc0000
[  226.614157][   T28] audit: type=1326 audit(1718132735.692:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4394 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f21aee7cea9 code=0x7ffc0000
[  226.641609][   T28] audit: type=1326 audit(1718132735.692:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4394 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21aee7cea9 code=0x7ffc0000
[  226.666429][   T28] audit: type=1326 audit(1718132735.692:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4394 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=328 compat=0 ip=0x7f21aee7cea9 code=0x7ffc0000
[  226.692283][   T28] audit: type=1326 audit(1718132735.702:483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4394 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21aee7cea9 code=0x7ffc0000
[  226.708738][   T19] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  226.717737][   T28] audit: type=1326 audit(1718132735.702:484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4394 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21aee7cea9 code=0x7ffc0000
[  226.819006][  T809] usb 2-1: Found UVC 0.00 device syz (18ec:3288)
[  226.825641][  T809] usb 2-1: No valid video chain found.
[  226.836709][  T809] usb 2-1: USB disconnect, device number 9
[  226.891668][   T28] audit: type=1400 audit(1718132736.002:485): avc:  denied  { mount } for  pid=4410 comm="syz-executor.0" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  226.914419][   T28] audit: type=1400 audit(1718132736.002:486): avc:  denied  { mounton } for  pid=4410 comm="syz-executor.0" path="/root/syzkaller-testdir3517279343/syzkaller.THHqzX/402/file0" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=dir permissive=1
[  226.914861][ T4411] cgroup: Unknown subsys name 'devices'
[  226.941404][   T28] audit: type=1400 audit(1718132736.002:487): avc:  denied  { unmount } for  pid=4410 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  227.079532][  T350] cdc_ether: probe of 3-1:1.0 failed with error -71
[  227.086438][  T350] usb-storage 3-1:1.0: USB Mass Storage device detected
[  227.096213][  T350] usb-storage 3-1:1.0: Quirks match for vid 0525 pid a4a5: 10000
[  227.104748][  T350] scsi host1: usb-storage 3-1:1.0
[  227.112860][  T350] usb 3-1: USB disconnect, device number 11
[  227.128719][   T19] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  227.298752][   T19] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  227.323034][   T19] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  227.353419][   T19] usb 5-1: Product: syz
[  227.363952][   T19] usb 5-1: Manufacturer: syz
[  227.374476][   T19] usb 5-1: SerialNumber: syz
[  227.407135][ T4442] cgroup: Unknown subsys name 'devices'
[  227.432502][ T4444] loop1: detected capacity change from 0 to 512
[  227.441568][ T4444] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  227.499611][ T4444] EXT4-fs error (device loop1): ext4_orphan_get:1396: inode #17: comm syz-executor.1: iget: bad i_size value: -6917529027641081756
[  227.530395][ T4444] EXT4-fs error (device loop1): ext4_orphan_get:1401: comm syz-executor.1: couldn't read orphan inode 17 (err -117)
[  227.563372][ T4444] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  227.620611][ T1413] EXT4-fs (loop1): unmounting filesystem.
[  227.692727][ T4459] loop1: detected capacity change from 0 to 1024
[  227.726155][ T4459] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=2002c118, mo2=0002]
[  227.744947][ T4459] System zones: 0-1, 3-12
[  227.755831][ T4459] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  227.822313][ T1413] EXT4-fs (loop1): unmounting filesystem.
[  228.123546][ T4481] loop1: detected capacity change from 0 to 512
[  228.140948][ T4481] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  228.236199][ T4486] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  228.474237][ T4481] EXT4-fs error (device loop1): ext4_orphan_get:1396: inode #17: comm syz-executor.1: iget: bad i_size value: -6917529027641081756
[  228.583905][ T4481] EXT4-fs error (device loop1): ext4_orphan_get:1401: comm syz-executor.1: couldn't read orphan inode 17 (err -117)
[  228.681017][ T4481] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  229.029761][ T1413] EXT4-fs (loop1): unmounting filesystem.
[  229.098716][   T19] cdc_ncm 5-1:1.0: MAC-Address: 42:42:42:42:42:42
[  229.108494][   T19] cdc_ncm 5-1:1.0: setting rx_max = 16384
[  229.131569][ T4497] cgroup: Unknown subsys name 'devices'
[  229.299491][ T4386] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  229.316280][ T4386] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  229.359182][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  229.365571][ T4518] loop1: detected capacity change from 0 to 1024
[  229.401588][ T4518] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  229.411657][ T4518] ext4 filesystem being mounted at /root/syzkaller-testdir3271171660/syzkaller.BRf8hA/233/file1 supports timestamps until 2038 (0x7fffffff)
[  229.430291][ T4518] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'.
[  229.448655][   T19] cdc_ncm 5-1:1.0: setting tx_max = 16384
[  229.471951][   T19] cdc_ncm 5-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.4-1, CDC NCM (NO ZLP), 42:42:42:42:42:42
[  229.493948][ T1413] EXT4-fs (loop1): unmounting filesystem.
[  229.505848][   T19] usb 5-1: USB disconnect, device number 9
[  229.527113][   T19] cdc_ncm 5-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.4-1, CDC NCM (NO ZLP)
[  229.848643][  T809] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  230.871803][ T4550] loop3: detected capacity change from 0 to 256
[  230.878550][  T809] usb 3-1: Using ep0 maxpacket: 8
[  230.951143][ T4550] FAT-fs (loop3): Directory bread(block 64) failed
[  230.961380][ T4550] FAT-fs (loop3): Directory bread(block 65) failed
[  230.979468][ T4550] FAT-fs (loop3): Directory bread(block 66) failed
[  230.985886][ T4550] FAT-fs (loop3): Directory bread(block 67) failed
[  230.998619][  T809] usb 3-1: config 135 has an invalid interface number: 230 but max is 0
[  231.007105][ T4550] FAT-fs (loop3): Directory bread(block 68) failed
[  231.013609][  T809] usb 3-1: config 135 has an invalid descriptor of length 0, skipping remainder of the config
[  231.025030][ T4550] FAT-fs (loop3): Directory bread(block 69) failed
[  231.032506][  T809] usb 3-1: config 135 has no interface number 0
[  231.039102][  T809] usb 3-1: config 135 interface 230 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  231.052616][ T4550] FAT-fs (loop3): Directory bread(block 70) failed
[  231.059190][ T4550] FAT-fs (loop3): Directory bread(block 71) failed
[  231.065726][ T4550] FAT-fs (loop3): Directory bread(block 72) failed
[  231.088512][ T4550] FAT-fs (loop3): Directory bread(block 73) failed
[  231.153163][ T4558] loop4: detected capacity change from 0 to 1024
[  231.201868][ T4558] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  231.235898][ T4558] ext4 filesystem being mounted at /root/syzkaller-testdir1177519787/syzkaller.lVMwrr/7/file1 supports timestamps until 2038 (0x7fffffff)
[  231.254377][  T809] usb 3-1: New USB device found, idVendor=18ec, idProduct=3288, bcdDevice=3f.3a
[  231.255798][   T28] kauditd_printk_skb: 11 callbacks suppressed
[  231.255832][   T28] audit: type=1400 audit(1718132740.362:499): avc:  denied  { create } for  pid=4567 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=caif_socket permissive=1
[  231.263990][  T809] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  231.274031][ T4558] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[  231.289889][  T809] usb 3-1: Product: syz
[  231.311675][  T809] usb 3-1: Manufacturer: syz
[  231.316356][  T809] usb 3-1: SerialNumber: syz
[  231.321030][   T28] audit: type=1400 audit(1718132740.422:500): avc:  denied  { bind } for  pid=4567 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  231.404145][ T4335] EXT4-fs (loop4): unmounting filesystem.
[  231.512308][   T28] audit: type=1400 audit(1718132740.622:501): avc:  denied  { read } for  pid=4579 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  231.601343][   T28] audit: type=1400 audit(1718132740.672:502): avc:  denied  { setopt } for  pid=4579 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  231.638657][  T809] usb 3-1: Found UVC 0.00 device syz (18ec:3288)
[  231.646326][  T809] usb 3-1: No valid video chain found.
[  231.654320][  T809] usb 3-1: USB disconnect, device number 12
[  231.688735][ T4178] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  231.824003][ T4596] netlink: 'syz-executor.1': attribute type 32 has an invalid length.
[  231.842413][ T4598] loop4: detected capacity change from 0 to 1024
[  231.861353][ T4598] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=2002c118, mo2=0002]
[  231.869624][ T4598] System zones: 0-1, 3-12
[  231.875304][ T4598] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  231.906465][ T4604] loop1: detected capacity change from 0 to 1024
[  231.910146][ T4335] EXT4-fs (loop4): unmounting filesystem.
[  231.932103][ T4604] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  231.940810][ T4604] ext4 filesystem being mounted at /root/syzkaller-testdir3271171660/syzkaller.BRf8hA/239/file1 supports timestamps until 2038 (0x7fffffff)
[  231.959738][ T4604] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.1'.
[  232.005538][ T1413] EXT4-fs (loop1): unmounting filesystem.
[  232.079546][ T4178] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  232.142334][   T28] audit: type=1400 audit(1718132741.252:503): avc:  denied  { mount } for  pid=4617 comm="syz-executor.1" name="/" dev="ramfs" ino=35218 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  232.258788][ T4178] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  232.272277][ T4178] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  232.290812][ T4178] usb 4-1: Product: syz
[  232.294863][ T4178] usb 4-1: Manufacturer: syz
[  232.299475][ T4178] usb 4-1: SerialNumber: syz
[  232.605988][ T4610] loop4: detected capacity change from 0 to 40427
[  232.626908][ T4610] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  232.645236][ T4610] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  232.667083][ T4610] F2FS-fs (loop4): invalid crc value
[  232.700769][ T4610] F2FS-fs (loop4): Found nat_bits in checkpoint
[  232.889197][ T4610] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  232.896560][ T4610] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  232.925221][ T4610] syz-executor.4: attempt to access beyond end of device
[  232.925221][ T4610] loop4: rw=2049, sector=77824, nr_sectors = 952 limit=40427
[  232.963302][ T4610] syz-executor.4: attempt to access beyond end of device
[  232.963302][ T4610] loop4: rw=2049, sector=53248, nr_sectors = 888 limit=40427
[  233.198516][   T19] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  233.249878][ T4667] netlink: 'syz-executor.2': attribute type 32 has an invalid length.
[  233.449144][   T19] usb 2-1: Using ep0 maxpacket: 16
[  233.546913][ T4694] netlink: 'syz-executor.2': attribute type 32 has an invalid length.
[  233.568778][   T19] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  233.579752][   T19] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  233.590021][   T19] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  233.603563][   T19] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  233.612562][   T19] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  233.622334][   T19] usb 2-1: config 0 descriptor??
[  233.658783][ T4178] cdc_ncm 4-1:1.0: MAC-Address: 42:42:42:42:42:42
[  233.666856][ T4178] cdc_ncm 4-1:1.0: setting rx_max = 16384
[  233.673912][ T4700] netlink: 'syz-executor.2': attribute type 3 has an invalid length.
[  233.684745][ T4700] loop2: detected capacity change from 0 to 16
[  233.694044][ T4700] erofs: (device loop2): mounted with root inode @ nid 36.
[  233.718843][ T4700] IPv6: syztnl2: Disabled Multicast RS
[  233.768670][  T350] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  233.859161][ T4714] syz-executor.0[4714] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  233.859316][ T4714] syz-executor.0[4714] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  233.859346][ T4572] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  233.859560][ T4572] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  234.000083][   T28] audit: type=1400 audit(1718132743.112:504): avc:  denied  { unmount } for  pid=824 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[  234.021308][  T350] usb 5-1: Using ep0 maxpacket: 16
[  234.027170][   T28] audit: type=1400 audit(1718132743.132:505): avc:  denied  { lock } for  pid=4725 comm="syz-executor.0" path="socket:[34324]" dev="sockfs" ino=34324 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_route_socket permissive=1
[  234.068633][ T4178] cdc_ncm 4-1:1.0: setting tx_max = 16384
[  234.081681][   T28] audit: type=1326 audit(1718132743.192:506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4718 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f838a87cea9 code=0x7ffc0000
[  234.083859][ T4178] cdc_ncm 4-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.3-1, CDC NCM (NO ZLP), 42:42:42:42:42:42
[  234.108679][   T28] audit: type=1326 audit(1718132743.192:507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4718 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f838a87cea9 code=0x7ffc0000
[  234.122706][ T4178] usb 4-1: USB disconnect, device number 15
[  234.167481][   T28] audit: type=1326 audit(1718132743.222:508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4718 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f838a87cea9 code=0x7ffc0000
[  234.182285][   T19] microsoft 0003:045E:07DA.000C: unknown main item tag 0x0
[  234.230997][ T4178] cdc_ncm 4-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.3-1, CDC NCM (NO ZLP)
[  234.255868][   T19] microsoft 0003:045E:07DA.000C: unknown main item tag 0x0
[  234.311120][   T19] microsoft 0003:045E:07DA.000C: unknown main item tag 0x0
[  234.331405][   T19] microsoft 0003:045E:07DA.000C: unknown main item tag 0x0
[  234.340122][   T19] microsoft 0003:045E:07DA.000C: unknown main item tag 0x0
[  234.356462][   T19] microsoft 0003:045E:07DA.000C: unknown main item tag 0x0
[  234.370006][   T19] microsoft 0003:045E:07DA.000C: unknown main item tag 0x0
[  234.380574][   T19] microsoft 0003:045E:07DA.000C: unknown main item tag 0x0
[  234.391130][   T19] microsoft 0003:045E:07DA.000C: unknown main item tag 0x0
[  234.408258][   T19] microsoft 0003:045E:07DA.000C: unknown main item tag 0x0
[  234.462188][   T19] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.000C/input/input14
[  234.545685][   T19] microsoft 0003:045E:07DA.000C: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0
[  234.599873][   T19] usb 2-1: USB disconnect, device number 10
[  234.667862][ T4178] ==================================================================
[  234.675801][ T4178] BUG: KASAN: use-after-free in __list_del_entry_valid+0xa6/0x130
[  234.683541][ T4178] Read of size 8 at addr ffff8881157f2cf0 by task kworker/0:6/4178
[  234.685513][  T350] usb 5-1: New USB device found, idVendor=23a7, idProduct=fedc, bcdDevice=e0.0b
[  234.691267][ T4178] 
[  234.691284][ T4178] CPU: 0 PID: 4178 Comm: kworker/0:6 Not tainted 6.1.78-syzkaller-00002-g65aed0e2f758 #0
[  234.691347][ T4178] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  234.691397][ T4178] Workqueue: events linkwatch_event
[  234.691490][ T4178] Call Trace:
[  234.691506][ T4178]  <TASK>
[  234.691528][ T4178]  dump_stack_lvl+0x151/0x1b7
[  234.700524][  T350] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  234.702561][ T4178]  ? nf_tcp_handle_invalid+0x3f1/0x3f1
[  234.712316][  T350] usb 5-1: Product: syz
[  234.722182][ T4178]  ? _printk+0xd1/0x111
[  234.722278][ T4178]  ? __virt_addr_valid+0x242/0x2f0
[  234.742452][  T350] usb 5-1: Manufacturer: syz
[  234.745796][ T4178]  print_report+0x158/0x4e0
[  234.751261][  T350] usb 5-1: SerialNumber: syz
[  234.755195][ T4178]  ? __virt_addr_valid+0x242/0x2f0
[  234.782278][ T4178]  ? kasan_complete_mode_report_info+0x90/0x1b0
[  234.788455][ T4178]  ? __list_del_entry_valid+0xa6/0x130
[  234.793763][ T4178]  kasan_report+0x13c/0x170
[  234.798098][ T4178]  ? __list_del_entry_valid+0xa6/0x130
[  234.803411][ T4178]  __asan_report_load8_noabort+0x14/0x20
[  234.809132][ T4178]  __list_del_entry_valid+0xa6/0x130
[  234.814418][ T4178]  process_one_work+0x4d7/0xcb0
[  234.819467][ T4178]  worker_thread+0xa60/0x1260
[  234.824274][ T4178]  kthread+0x26d/0x300
[  234.828736][ T4178]  ? worker_clr_flags+0x1a0/0x1a0
[  234.833706][ T4178]  ? kthread_blkcg+0xd0/0xd0
[  234.838358][ T4178]  ret_from_fork+0x1f/0x30
[  234.843599][ T4178]  </TASK>
[  234.846455][ T4178] 
[  234.848729][ T4178] Allocated by task 4178:
[  234.852924][ T4178]  kasan_set_track+0x4b/0x70
[  234.857582][ T4178]  kasan_save_alloc_info+0x1f/0x30
[  234.862684][ T4178]  __kasan_kmalloc+0x9c/0xb0
[  234.867253][ T4178]  __kmalloc_node+0xb4/0x1e0
[  234.871843][ T4178]  kvmalloc_node+0x221/0x640
[  234.876406][ T4178]  alloc_netdev_mqs+0x8c/0xf90
[  234.881112][ T4178]  alloc_etherdev_mqs+0x36/0x40
[  234.886092][ T4178]  usbnet_probe+0x207/0x27c0
[  234.890650][ T4178]  usb_probe_interface+0x5b6/0xa90
[  234.895958][ T4178]  really_probe+0x2b8/0x920
[  234.900300][ T4178]  __driver_probe_device+0x1a0/0x310
[  234.905685][ T4178]  driver_probe_device+0x54/0x3d0
[  234.910696][ T4178]  __device_attach_driver+0x2e3/0x490
[  234.916547][ T4178]  bus_for_each_drv+0x183/0x200
[  234.921395][ T4178]  __device_attach+0x312/0x510
[  234.926004][ T4178]  device_initial_probe+0x1a/0x20
[  234.931078][ T4178]  bus_probe_device+0xbe/0x1e0
[  234.935821][ T4178]  device_add+0xb60/0xf10
[  234.940194][ T4178]  usb_set_configuration+0x190f/0x1e80
[  234.945502][ T4178]  usb_generic_driver_probe+0x8b/0x150
[  234.950919][ T4178]  usb_probe_device+0x144/0x260
[  234.955612][ T4178]  really_probe+0x2b8/0x920
[  234.959949][ T4178]  __driver_probe_device+0x1a0/0x310
[  234.965081][ T4178]  driver_probe_device+0x54/0x3d0
[  234.970025][ T4178]  __device_attach_driver+0x2e3/0x490
[  234.975548][ T4178]  bus_for_each_drv+0x183/0x200
[  234.980356][ T4178]  __device_attach+0x312/0x510
[  234.985117][ T4178]  device_initial_probe+0x1a/0x20
[  234.990344][ T4178]  bus_probe_device+0xbe/0x1e0
[  234.995159][ T4178]  device_add+0xb60/0xf10
[  234.999519][ T4178]  usb_new_device+0xf32/0x1810
[  235.004128][ T4178]  hub_event+0x2db1/0x4830
[  235.008481][ T4178]  process_one_work+0x73d/0xcb0
[  235.013289][ T4178]  worker_thread+0xa60/0x1260
[  235.017823][ T4178]  kthread+0x26d/0x300
[  235.021847][ T4178]  ret_from_fork+0x1f/0x30
[  235.026103][ T4178] 
[  235.028265][ T4178] Freed by task 4178:
[  235.032107][ T4178]  kasan_set_track+0x4b/0x70
[  235.036655][ T4178]  kasan_save_free_info+0x2b/0x40
[  235.041646][ T4178]  ____kasan_slab_free+0x131/0x180
[  235.046804][ T4178]  __kasan_slab_free+0x11/0x20
[  235.051531][ T4178]  __kmem_cache_free+0x218/0x3b0
[  235.056454][ T4178]  kfree+0x7a/0xf0
[  235.060125][ T4178]  kvfree+0x35/0x40
[  235.063874][ T4178]  netdev_freemem+0x3f/0x60
[  235.068316][ T4178]  netdev_release+0x7f/0xb0
[  235.072746][ T4178]  device_release+0x95/0x1c0
[  235.077321][ T4178]  kobject_put+0x178/0x260
[  235.081667][ T4178]  put_device+0x1f/0x30
[  235.085702][ T4178]  free_netdev+0x393/0x480
[  235.090034][ T4178]  usbnet_disconnect+0x245/0x390
[  235.094812][ T4178]  usb_unbind_interface+0x1fa/0x8c0
[  235.100039][ T4178]  device_release_driver_internal+0x53e/0x870
[  235.105944][ T4178]  device_release_driver+0x19/0x20
[  235.110888][ T4178]  bus_remove_device+0x2fa/0x360
[  235.115663][ T4178]  device_del+0x663/0xe90
[  235.119891][ T4178]  usb_disable_device+0x380/0x720
[  235.125292][ T4178]  usb_disconnect+0x32a/0x890
[  235.130136][ T4178]  hub_event+0x1ed8/0x4830
[  235.134654][ T4178]  process_one_work+0x73d/0xcb0
[  235.139623][ T4178]  worker_thread+0xd71/0x1260
[  235.144160][ T4178]  kthread+0x26d/0x300
[  235.148040][ T4178]  ret_from_fork+0x1f/0x30
[  235.152417][ T4178] 
[  235.154584][ T4178] Last potentially related work creation:
[  235.160144][ T4178]  kasan_save_stack+0x3b/0x60
[  235.164781][ T4178]  __kasan_record_aux_stack+0xb4/0xc0
[  235.169975][ T4178]  kasan_record_aux_stack_noalloc+0xb/0x10
[  235.175905][ T4178]  insert_work+0x56/0x310
[  235.180059][ T4178]  __queue_work+0x9b6/0xd70
[  235.184405][ T4178]  queue_work_on+0x105/0x170
[  235.188914][ T4178]  usbnet_link_change+0xeb/0x100
[  235.193996][ T4178]  usbnet_probe+0x1dbe/0x27c0
[  235.199050][ T4178]  usb_probe_interface+0x5b6/0xa90
[  235.203974][ T4178]  really_probe+0x2b8/0x920
[  235.208317][ T4178]  __driver_probe_device+0x1a0/0x310
[  235.213630][ T4178]  driver_probe_device+0x54/0x3d0
[  235.218480][ T4178]  __device_attach_driver+0x2e3/0x490
[  235.224183][ T4178]  bus_for_each_drv+0x183/0x200
[  235.228946][ T4178]  __device_attach+0x312/0x510
[  235.233550][ T4178]  device_initial_probe+0x1a/0x20
[  235.238411][ T4178]  bus_probe_device+0xbe/0x1e0
[  235.243011][ T4178]  device_add+0xb60/0xf10
[  235.247192][ T4178]  usb_set_configuration+0x190f/0x1e80
[  235.252642][ T4178]  usb_generic_driver_probe+0x8b/0x150
[  235.257939][ T4178]  usb_probe_device+0x144/0x260
[  235.262615][ T4178]  really_probe+0x2b8/0x920
[  235.266961][ T4178]  __driver_probe_device+0x1a0/0x310
[  235.272086][ T4178]  driver_probe_device+0x54/0x3d0
[  235.276945][ T4178]  __device_attach_driver+0x2e3/0x490
[  235.282171][ T4178]  bus_for_each_drv+0x183/0x200
[  235.287309][ T4178]  __device_attach+0x312/0x510
[  235.292081][ T4178]  device_initial_probe+0x1a/0x20
[  235.296956][ T4178]  bus_probe_device+0xbe/0x1e0
[  235.301790][ T4178]  device_add+0xb60/0xf10
[  235.306050][ T4178]  usb_new_device+0xf32/0x1810
[  235.310852][ T4178]  hub_event+0x2db1/0x4830
[  235.315302][ T4178]  process_one_work+0x73d/0xcb0
[  235.320081][ T4178]  worker_thread+0xa60/0x1260
[  235.324601][ T4178]  kthread+0x26d/0x300
[  235.328526][ T4178]  ret_from_fork+0x1f/0x30
[  235.332765][ T4178] 
[  235.334933][ T4178] The buggy address belongs to the object at ffff8881157f2000
[  235.334933][ T4178]  which belongs to the cache kmalloc-4k of size 4096
[  235.348828][ T4178] The buggy address is located 3312 bytes inside of
[  235.348828][ T4178]  4096-byte region [ffff8881157f2000, ffff8881157f3000)
[  235.362294][ T4178] 
[  235.364465][ T4178] The buggy address belongs to the physical page:
[  235.370934][ T4178] page:ffffea000455fc00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1157f0
[  235.381268][ T4178] head:ffffea000455fc00 order:3 compound_mapcount:0 compound_pincount:0
[  235.389509][ T4178] flags: 0x4000000000010200(slab|head|zone=1)
[  235.395574][ T4178] raw: 4000000000010200 dead000000000100 dead000000000122 ffff888100043380
[  235.404076][ T4178] raw: 0000000000000000 0000000000040004 00000001ffffffff 0000000000000000
[  235.412635][ T4178] page dumped because: kasan: bad access detected
[  235.418912][ T4178] page_owner tracks the page as allocated
[  235.424440][ T4178] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 101, tgid 101 (udevd), ts 8997132704, free_ts 0
[  235.444089][ T4178]  post_alloc_hook+0x213/0x220
[  235.448772][ T4178]  prep_new_page+0x1b/0x110
[  235.453119][ T4178]  get_page_from_freelist+0x27ea/0x2870
[  235.458491][ T4178]  __alloc_pages+0x3a1/0x780
[  235.463017][ T4178]  alloc_slab_page+0x6c/0xf0
[  235.467554][ T4178]  new_slab+0x90/0x3e0
[  235.471555][ T4178]  ___slab_alloc+0x6f9/0xb80
[  235.475989][ T4178]  __slab_alloc+0x5d/0xa0
[  235.480149][ T4178]  __kmem_cache_alloc_node+0x1af/0x250
[  235.485570][ T4178]  __kmalloc_node+0xa3/0x1e0
[  235.490085][ T4178]  kvmalloc_node+0x221/0x640
[  235.494519][ T4178]  seq_read_iter+0x1ff/0xd00
[  235.498949][ T4178]  kernfs_fop_read_iter+0x145/0x470
[  235.504294][ T4178]  vfs_read+0x771/0xad0
[  235.508393][ T4178]  ksys_read+0x199/0x2c0
[  235.512470][ T4178]  __x64_sys_read+0x7b/0x90
[  235.516803][ T4178] page_owner free stack trace missing
[  235.522020][ T4178] 
[  235.524179][ T4178] Memory state around the buggy address:
[  235.529842][ T4178]  ffff8881157f2b80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  235.537887][ T4178]  ffff8881157f2c00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  235.546474][ T4178] >ffff8881157f2c80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  235.554360][ T4178]                                                              ^
[  235.561939][ T4178]  ffff8881157f2d00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  235.569830][ T4178]  ffff8881157f2d80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  235.577798][ T4178] ==================================================================
[  235.585788][ T4178] Disabling lock debugging due to kernel taint
2024/06/11 19:05:44 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF
[  235.692363][  T350] usb 5-1: config 0 descriptor??
[  236.048682][  T350] usb 5-1: can't set config #0, error -71
[  236.061337][  T350] usb 5-1: USB disconnect, device number 10