last executing test programs:

13.146524101s ago: executing program 0 (id=1977):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x2c}}, 0x10)
connect$inet(r0, &(0x7f0000000280)={0x2, 0x4, @multicast1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000b00000000000802000005"], 0x48)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f00000000c0)={0x2, &(0x7f0000000240)=[{0x9, 0x4, 0x6}, {0x8000, 0x6, 0x6, 0x4}]}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, 0x0, &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[], 0x0}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r4}, 0x0, &(0x7f0000000180)}, 0x20)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
sendmmsg$inet(r0, &(0x7f0000004540)=[{{&(0x7f0000000040)={0x2, 0x4e22, @multicast1}, 0x7e1f, 0x0}, 0xee0000b0}, {{0x0, 0x0, &(0x7f00000012c0)=[{&(0x7f0000001100)="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", 0xc3}, {&(0x7f0000000d80)="7d68e6de85f9b0cbc9d710267f321ec64eab043ecad9af7e01e9463218ec45924a99867163e468d36a682fadd749caa325e685d75559a87139e02fae7271be8f55671cfd32a09896278d1941370174720838039d0989bc3394b8a4c4f4a30f0496be313d6d60fe47966c634a3ee1f659e8ef310647725bda0130d5de5028220a4cf5fc808a75694738ee26cb21302b4bba4265b845a5d5dce706d9820c6936b122f9658446d74a9016b94424971dd443a6907eb5c73b6b200e92b23f2c36a214729b0bc231511e4c", 0xc8}, {&(0x7f0000000380)="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", 0x9fd}], 0x3}}, {{0x0, 0x0, &(0x7f00000017c0)=[{&(0x7f0000001700)="a6", 0x1}], 0x300}}], 0x3, 0x0)

12.673664971s ago: executing program 1 (id=1983):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = socket$nl_audit(0x10, 0x3, 0x9)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000080)={'bridge0\x00', &(0x7f0000000000)=@ethtool_link_settings={0x4c, 0x0, 0x3, 0x2, 0x8, 0x0, 0x9, 0x0, 0x0, 0x3, [0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}})
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0xd, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x18, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
getrlimit(0x4, &(0x7f0000000480))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r4}, 0x10)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f0000000180)={[{@grpid}, {@mblk_io_submit}, {@nodioread_nolock}, {@test_dummy_encryption}, {@inode_readahead_blks}, {@nodelalloc}, {@minixdf}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x40}}]}, 0x4, 0xbaf, &(0x7f00000017c0)="$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")
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r5, &(0x7f0000000000)=ANY=[], 0x32600)

11.804699908s ago: executing program 0 (id=1984):
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(0x0, r0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180))
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, 0x0)
r1 = syz_open_pts(0xffffffffffffffff, 0x161e01)
ioctl$TIOCGICOUNT(r1, 0x545d, 0x0)
creat(0x0, 0xec)
gettid()
inotify_init()
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSBRKP(r2, 0x5425, 0x0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000001c0), 0x4b301, 0x0)
write(r3, 0x0, 0x0)

11.803824418s ago: executing program 3 (id=1985):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
lchown(0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, 0x0)
pread64(r3, &(0x7f0000000180)=""/43, 0xfd8a, 0x3c)

5.625300229s ago: executing program 2 (id=1988):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e40)=ANY=[@ANYBLOB="0b00000005000000020000000200000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000580)=ANY=[@ANYBLOB="1800000000160000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r2, &(0x7f0000000400)=@nameseq={0x1e, 0x1, 0x3, {0x42, 0x0, 0x2}}, 0x10)
r3 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r3, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x1, 0x4}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000240)={0x42, 0x1}, 0x10)
bind$tipc(r2, 0x0, 0x0)

5.508920431s ago: executing program 2 (id=1989):
unshare(0x62040200)
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000a40)=@raw={'raw\x00', 0x3c1, 0x3, 0x380, 0x1a8, 0x111, 0x4b4, 0x0, 0x700, 0x2b0, 0x278, 0x278, 0x2b0, 0x278, 0x3, 0x0, {[{{@ipv6={@private1={0xfc, 0x1, '\x00', 0x1}, @empty, [0x0, 0x0, 0x0, 0xff0000ff], [0x1fffffffe, 0x0, 0xffffff00, 0xff], 'vlan0\x00', 'veth0_vlan\x00', {}, {0xff}, 0x6}, 0x0, 0x140, 0x1a8, 0x0, {}, [@common=@inet=@multiport={{0x50}, {0x0, 0x0, [], [0x0, 0x0, 0x0, 0x0, 0x0, 0x20]}}, @common=@unspec=@helper={{0x48}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x3, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz0\x00'}}}, {{@ipv6={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @private2, [], [], 'geneve1\x00', 'erspan0\x00'}, 0x0, 0xe0, 0x108, 0x0, {}, [@common=@unspec=@statistic={{0x38}}]}, @common=@unspec=@NFQUEUE1={0x28, 'NFQUEUE\x00', 0x1, {0x67, 0x40}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3e0)

5.185481488s ago: executing program 2 (id=1990):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000080)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f00000001c0)={0x4, 0x1005}, 0x4)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="01000000040000000400000008"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x13)
socket$inet6(0xa, 0x3, 0x8000000003c)
setgroups(0x7, &(0x7f00000004c0)=[0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0])

5.142924369s ago: executing program 3 (id=1991):
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0xfd, 0x0, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd885000000"], 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000040)='9p_protocol_dump\x00', r0}, 0x10)
pipe2$9p(&(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000180)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r3 = dup(r2)
write$FUSE_BMAP(r3, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r3, &(0x7f00000000c0)={0x30, 0x5, 0x0, {0x0, 0x0, 0x20000000000000, 0xfffffe}}, 0x30)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])

4.932000603s ago: executing program 0 (id=1992):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000800007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x26, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, 0x0, &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket(0x10, 0x2, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r2, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
setsockopt$MRT6_ADD_MFC_PROXY(0xffffffffffffffff, 0x29, 0xd2, 0x0, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)

4.929649983s ago: executing program 1 (id=1993):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="340000001c00010428bd7000fddbdf2507000000", @ANYRES32=r1, @ANYBLOB="02002c010a0002000180c200000200000c000e800800", @ANYRES64], 0x34}, 0x1, 0x0, 0x0, 0x1}, 0x24040040)

4.781605996s ago: executing program 3 (id=1994):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0xd, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000240)={<r0=>0xffffffffffffffff})
close(r0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0xb, 0xb, 0x10001, 0x8, 0x1}, 0x50)
close(r0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r1, &(0x7f0000000080), &(0x7f0000000880)=""/166}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r2}, 0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
gettid()
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000a00)={'syz1\x00', {0x9, 0x24, 0x9, 0x1}, 0x4e, [0x9, 0x2, 0x8, 0x2, 0x5334, 0x400, 0x80000000, 0x5, 0x8, 0x7, 0x6, 0xf3, 0xfbfffffb, 0x39, 0x2, 0x8, 0x99, 0x10, 0x4, 0xfffffffb, 0x4, 0x3, 0x4, 0xf256, 0x80, 0x800, 0x300000, 0x7, 0xe, 0x4623f, 0x0, 0x0, 0x1ff, 0x8000, 0xc8, 0x40003, 0x5, 0x3, 0x36ff, 0x101, 0x1, 0x200, 0x2, 0x400008, 0xe, 0x4, 0x2, 0xde, 0x8, 0x9, 0x1, 0x199f, 0x8, 0x2, 0x9, 0xffffffff, 0x4, 0x6, 0x1000, 0x5, 0x42, 0xb, 0xa, 0x5], [0x6, 0x1e, 0x3, 0x8000, 0xfffffffe, 0x3, 0x6, 0x25, 0x7, 0xfffffffc, 0x4, 0x7fff, 0x72c, 0x1c33, 0x3, 0x5, 0x3, 0x400, 0x8001, 0x3, 0x1, 0x297, 0x5, 0x0, 0x981, 0x4, 0x8, 0x3ff, 0x0, 0xfffffffe, 0x0, 0xfffffe, 0x10, 0xfffffff9, 0xfffffffd, 0x9, 0x1, 0xffffffff, 0x6, 0x5, 0x800, 0x800, 0x6, 0x96, 0xfffffff9, 0x2, 0x0, 0x2, 0x401, 0xc, 0x3, 0x379, 0x5, 0xe, 0x5, 0x7, 0x6, 0x2, 0x1, 0x1, 0x8, 0x6, 0x200, 0x80003], [0x401, 0xc584, 0x9, 0xcd3, 0x4, 0x20, 0x404, 0x4, 0x8, 0x12, 0x7, 0x9, 0xe8b, 0xa, 0x80000001, 0x8, 0x3f93, 0x1000, 0x2, 0x10, 0x1, 0xfffffff9, 0xe55, 0x1000, 0x80000001, 0x4, 0x4, 0x5, 0x5, 0x2, 0x5, 0x80, 0x218c, 0x4, 0x47, 0x0, 0x3, 0x4, 0x3, 0xfffff000, 0x3, 0x8, 0x3, 0xbf23, 0x6, 0x9, 0x95e, 0x0, 0x3ff, 0x3, 0x6, 0x100fffd, 0x2005, 0x9, 0x4, 0xea, 0x9, 0xa0000005, 0x6, 0xd9, 0x0, 0x7d, 0x401, 0xc], [0x108e, 0xffff, 0x4, 0xffffffff, 0x88, 0x2, 0x6, 0x4, 0x50, 0x2, 0x763, 0xb, 0x402, 0x800, 0x5, 0x1000, 0x7f, 0x5, 0x7, 0x7, 0x0, 0x5, 0x1e2, 0x9, 0x9, 0x3, 0x3, 0x4, 0x200, 0x1000, 0x3b, 0x20000002, 0x5, 0x7fc, 0xa80a, 0x65f413f9, 0xfffffff8, 0x20008, 0x8a8, 0x7cea, 0x40, 0x40000409, 0x7, 0x4, 0x804, 0x10, 0x4, 0x0, 0x7fff, 0x0, 0xfffffff8, 0x401, 0x4, 0x202, 0x6, 0x2, 0xfffffffd, 0xa, 0xe, 0xff, 0xf, 0xf, 0x136, 0x6]}, 0x45c)
ioctl$UI_DEV_CREATE(r3, 0x5501)
readv(r3, &(0x7f0000001240)=[{&(0x7f00000012c0)=""/41, 0x29}], 0x1)
write$input_event(r3, &(0x7f0000000000)={{0x77359400}, 0x15}, 0xfe4f)

4.709660637s ago: executing program 1 (id=1995):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r3}, 0x10)
r4 = creat(&(0x7f0000000080)='./bus\x00', 0x20)
fsetxattr$system_posix_acl(r4, &(0x7f0000000000)='system.posix_acl_default\x00', 0x0, 0xfe44, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x20, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r5, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x73cea2d47785b264, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='sched_switch\x00', r6}, 0x18)
syz_clone(0x41200100, 0x0, 0x0, 0x0, 0x0, 0x0)

4.483280362s ago: executing program 3 (id=1996):
mkdir(&(0x7f00000020c0)='./file0\x00', 0x82)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000200)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18, 0x0, 0x0, {0x9}}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000002c00)=ANY=[@ANYBLOB="b0"], 0xb0)
getresuid(&(0x7f0000000440), &(0x7f0000000480), &(0x7f00000004c0)=<r3=>0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',privport,acc', @ANYRESDEC=r3])
setxattr$trusted_overlay_redirect(&(0x7f0000000400)='./file0\x00', &(0x7f0000000500), 0x0, 0x0, 0x0)

3.903594943s ago: executing program 3 (id=1997):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x400000000008d}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
getdents64(r4, &(0x7f0000000000)=""/78, 0x4e)
getdents(r4, &(0x7f0000000200)=""/251, 0xfb)
ioctl$PPPIOCGNPMODE(r4, 0xc008744c, &(0x7f0000000040)={0x0, 0x3})
syz_clone3(&(0x7f0000000380)={0x40800000, 0x0, 0x0, 0x0, {0x1b}, 0x0, 0x0, 0x0, 0x0}, 0x58)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000400)='locks_get_lock_context\x00'}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff})

3.54130366s ago: executing program 2 (id=1998):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x43, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_GET_MPATH(r3, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2062a040}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0x5c, 0x0, 0x1, 0x70bd2d, 0x25dfdbfd, {{}, {@void, @val={0xc, 0x99, {0x401, 0x24}}}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa}, @NL80211_ATTR_MPATH_NEXT_HOP={0xa, 0x1a, @device_b}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x5c}, 0x1, 0x0, 0x0, 0x10008800}, 0x8000)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000002020207b1af84000000000bfa100000000000007010000f8ffffffb702000008000000b7030000040000008500000006200000850000005000000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xd, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b7040000000000008500000057"], 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
syz_clone3(&(0x7f0000000340)={0x42107480, &(0x7f00000003c0), 0x0, 0x0, {0x19}, 0x0, 0x0, 0x0, 0x0}, 0x58)

3.54107241s ago: executing program 0 (id=1999):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
lchown(0x0, 0x0, 0x0)
r3 = syz_open_procfs(0x0, 0x0)
pread64(r3, &(0x7f0000000180)=""/43, 0xfd8a, 0x3c)

3.498832371s ago: executing program 1 (id=2000):
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(0x0, r0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180))
ioctl$TCSETS(0xffffffffffffffff, 0x40045431, 0x0)
r1 = syz_open_pts(0xffffffffffffffff, 0x161e01)
ioctl$TIOCGICOUNT(r1, 0x545d, 0x0)
creat(0x0, 0xec)
gettid()
inotify_init()
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSBRKP(r2, 0x5425, 0x0)
r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000001c0), 0x4b301, 0x0)
write(r3, 0x0, 0x0)

2.417207502s ago: executing program 1 (id=2001):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001400)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='kmem_cache_free\x00', r1}, 0x18)
gettid()
timer_create(0x0, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r2, &(0x7f0000000440), 0x10)
listen(r2, 0x0)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r3, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
accept4$unix(r2, 0x0, 0x0, 0x0)

1.177732697s ago: executing program 1 (id=2002):
r0 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @local, 0x4}, 0x1c)
write$binfmt_script(r0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
epoll_create(0x3ff)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0xfffffffe}, 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r4}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x2d)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000200)='fdb_delete\x00', r6}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r7, 0x8924, &(0x7f0000000000)={'bridge_slave_0\x00', @random="010000201000"})
r8 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r8, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02030609100000000000004c9e0000000200130002000000da16c16ad803f1f805000600200000000a00060000000000ff0000009061ca2b00001fffff0001000003f1dc7f7c6e7c0200010000000000004000020000000005000500000000000a"], 0x80}}, 0x0)
sendmsg(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2c}, 0x4)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e24, 0x4f, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x3a}}}, 0x1c)

605.499528ms ago: executing program 3 (id=2003):
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000040), 0x208e24b)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
setsockopt$XDP_UMEM_REG(0xffffffffffffffff, 0x11b, 0x4, &(0x7f0000000080)={0x0, 0x0, 0x800, 0x0, 0x3}, 0x20)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000000))
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r1, 0x8048ae66, &(0x7f00000000c0)={[{0x0, 0x800, 0x0, 0x0, 0xd, 0xa5, 0xbd, 0x1, 0xa9, 0x4, 0x0, 0x0, 0x40000000}, {0x8, 0x5, 0x0, 0x0, 0x41, 0x0, 0x0, 0x0, 0x6, 0xff, 0x0, 0x40, 0x6}, {0x3fe, 0x9, 0x0, 0xfd, 0x3, 0x0, 0xb3, 0x0, 0x3, 0xfe, 0x80, 0xf6, 0x7}], 0x5})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text32={0x20, &(0x7f0000000180)="66ba4300f23e872fee0f01c40f01c5b9800000c00f3226670f577c000f30b80e0000000f23d80f21f80f23f8c9b9490300000f60b932c00a000000f30f06002fb90d090000b800680000ba000000000f30", 0x51}], 0x1, 0x3e, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

493.45761ms ago: executing program 2 (id=2004):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0xd, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000240)={<r0=>0xffffffffffffffff})
close(r0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0xb, 0xb, 0x10001, 0x8, 0x1}, 0x50)
close(r0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r1, &(0x7f0000000080), &(0x7f0000000880)=""/166}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r2}, 0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
gettid()
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$uinput_user_dev(r3, &(0x7f0000000a00)={'syz1\x00', {0x9, 0x24, 0x9, 0x1}, 0x4e, [0x9, 0x2, 0x8, 0x2, 0x5334, 0x400, 0x80000000, 0x5, 0x8, 0x7, 0x6, 0xf3, 0xfbfffffb, 0x39, 0x2, 0x8, 0x99, 0x10, 0x4, 0xfffffffb, 0x4, 0x3, 0x4, 0xf256, 0x80, 0x800, 0x300000, 0x7, 0xe, 0x4623f, 0x0, 0x0, 0x1ff, 0x8000, 0xc8, 0x40003, 0x5, 0x3, 0x36ff, 0x101, 0x1, 0x200, 0x2, 0x400008, 0xe, 0x4, 0x2, 0xde, 0x8, 0x9, 0x1, 0x199f, 0x8, 0x2, 0x9, 0xffffffff, 0x4, 0x6, 0x1000, 0x5, 0x42, 0xb, 0xa, 0x5], [0x6, 0x1e, 0x3, 0x8000, 0xfffffffe, 0x3, 0x6, 0x25, 0x7, 0xfffffffc, 0x4, 0x7fff, 0x72c, 0x1c33, 0x3, 0x5, 0x3, 0x400, 0x8001, 0x3, 0x1, 0x297, 0x5, 0x0, 0x981, 0x4, 0x8, 0x3ff, 0x0, 0xfffffffe, 0x0, 0xfffffe, 0x10, 0xfffffff9, 0xfffffffd, 0x9, 0x1, 0xffffffff, 0x6, 0x5, 0x800, 0x800, 0x6, 0x96, 0xfffffff9, 0x2, 0x0, 0x2, 0x401, 0xc, 0x3, 0x379, 0x5, 0xe, 0x5, 0x7, 0x6, 0x2, 0x1, 0x1, 0x8, 0x6, 0x200, 0x80003], [0x401, 0xc584, 0x9, 0xcd3, 0x4, 0x20, 0x404, 0x4, 0x8, 0x12, 0x7, 0x9, 0xe8b, 0xa, 0x80000001, 0x8, 0x3f93, 0x1000, 0x2, 0x10, 0x1, 0xfffffff9, 0xe55, 0x1000, 0x80000001, 0x4, 0x4, 0x5, 0x5, 0x2, 0x5, 0x80, 0x218c, 0x4, 0x47, 0x0, 0x3, 0x4, 0x3, 0xfffff000, 0x3, 0x8, 0x3, 0xbf23, 0x6, 0x9, 0x95e, 0x0, 0x3ff, 0x3, 0x6, 0x100fffd, 0x2005, 0x9, 0x4, 0xea, 0x9, 0xa0000005, 0x6, 0xd9, 0x0, 0x7d, 0x401, 0xc], [0x108e, 0xffff, 0x4, 0xffffffff, 0x88, 0x2, 0x6, 0x4, 0x50, 0x2, 0x763, 0xb, 0x402, 0x800, 0x5, 0x1000, 0x7f, 0x5, 0x7, 0x7, 0x0, 0x5, 0x1e2, 0x9, 0x9, 0x3, 0x3, 0x4, 0x200, 0x1000, 0x3b, 0x20000002, 0x5, 0x7fc, 0xa80a, 0x65f413f9, 0xfffffff8, 0x20008, 0x8a8, 0x7cea, 0x40, 0x40000409, 0x7, 0x4, 0x804, 0x10, 0x4, 0x0, 0x7fff, 0x0, 0xfffffff8, 0x401, 0x4, 0x202, 0x6, 0x2, 0xfffffffd, 0xa, 0xe, 0xff, 0xf, 0xf, 0x136, 0x6]}, 0x45c)
ioctl$UI_DEV_CREATE(r3, 0x5501)
readv(r3, &(0x7f0000001240)=[{&(0x7f00000012c0)=""/41, 0x29}], 0x1)
write$input_event(r3, &(0x7f0000000000)={{0x77359400}, 0x15}, 0xfe4f)

349.765393ms ago: executing program 0 (id=2005):
mkdir(&(0x7f00000020c0)='./file0\x00', 0x82)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000200)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18, 0x0, 0x0, {0x9}}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000002c00)=ANY=[@ANYBLOB="b0"], 0xb0)
getresuid(&(0x7f0000000440), &(0x7f0000000480), &(0x7f00000004c0)=<r3=>0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',privport,acc', @ANYRESDEC=r3])
setxattr$trusted_overlay_redirect(&(0x7f0000000400)='./file0\x00', &(0x7f0000000500), 0x0, 0x0, 0x0)

639.41µs ago: executing program 2 (id=2006):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x10000000013, &(0x7f0000000180)=0x1, 0x4)
setsockopt$inet_tcp_int(r3, 0x6, 0x14, 0x0, 0x0)
setsockopt$inet_tcp_TCP_QUEUE_SEQ(r3, 0x6, 0x15, &(0x7f00000002c0), 0x4)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r5}, 0x10)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800714, &(0x7f0000000500), 0xff, 0x485, &(0x7f0000001040)="$eJzs3M9rHFUcAPDvTJL+bhNrrba2Gq1i8UfSpFV78KCi4EFB0EM9xiSttdtGmgi2BI0i9SgF7+JR8C/w5kXUgwheFTxKoWgQmnqKzK9mu9mkSZpkbfbzgc2+t/Nm3/vOzNt9My+zAbSt3uxPErEjIn6LiO4ie3OB3uJpZnpy+Pr05HASs7Nv/JXk5a5NTw5XRav1tpeZw2lE+mkSzyfz6x2/cPHMUK02er7M90+cfa9//MLFp06fHTo1emr03ODx48eODjz7zODTqxJnFte1/R+OHdj3yluXXxs+cfntH7/JmrX3YLG8Po5but4koCZ6s63292yucdmjy2j7nWBnXTrpbGFDWJaOiMh2V1fe/7ujI+Z2Xne8/ElLGwesqey7afPCi6dmgQ0siVa3AGiN6os+O/+tHus09PhfuPpCxKYyPTM9OTxzI/7OSMvXu9aw/t6IODH175fZI5Z7HQIAYAXysc2TzcZ/aezNn4u5jl3lHEpPRNwVEbsj4u6I2BMR90TkZe+NiPuKlWe7l1h/b0N+/vgnvdK0zaskG/89Vzf2m6mLv3zq6ShzO/P4u5KTp2ujR8ptcji6Nmf5gUXq+O6lXz9faFn9+C97ZPVXY8GyAVc6Gy7QjQxNDK3WRrj6ccT+zmbxJzdmArIjYF9E7F/eW++qEqcf//rAQoVuHf8iVmGeafariMeK/T8VDfFXksXnJ/u3RG30SH91VMz30y+XXl+o/tuKfxVk+3/bzcd/Q4nuf5JivrYrarXR8+PLr+PS758teE6z0uN/U/JmPmf98zvFax8MTUycH4jYlLya56tzuvz1wbl1q3xVPov/8KHm/X93uU4W//0RkR3EByPigYh4sGz7QxHxcEQcWiT+H1585N1F4k8iiZbu/5Gmn383jv+epH6+fgWJjjPff7vQjPnS9v+xmMo/awv5598tLLWBt7n5AAAA4I6QRsSOSNK+It27I9K0r6/4H/49sS2tjY1PPHFy7P1zI8U9Aj3RlVZXurrrrocOJFPlOxb5wfJacbX8aHnd+IuOrXm+b3isNtLi2KHdbb+5/0fV/zN/drS6dcCac78WtK/G/p+2qB3A+lvK979zAdiYmvT/ra1oB7D+nP9D+2rW/z9qyBv/w8Y0v///0eQn64CNyPgf2pf+D+1L/4e2dDv39a88Ud0ssPL32bLkO/zbJVH94sVa1rU15l6JtOUht1Ei6zHrW+ncb6gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADcyf4LAAD///ss5ts=")
prlimit64(0x0, 0xe, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x4002, 0x0, 0x1, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000809, 0x0, 0x1, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000480)='./file1\x00', 0x1c0)
mount$overlay(0x0, &(0x7f0000000340)='./bus\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000200)={[{@lowerdir={'lowerdir', 0x3d, './bus'}}, {@upperdir={'upperdir', 0x3d, './file0/file0'}}, {@workdir={'workdir', 0x3d, './file1'}}, {@xino_on}]})

0s ago: executing program 0 (id=2014):
mkdir(&(0x7f00000020c0)='./file0\x00', 0x82)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000200)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18, 0x0, 0x0, {0x9}}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000002c00)=ANY=[@ANYBLOB="b0"], 0xb0)
getresuid(&(0x7f0000000440), &(0x7f0000000480), &(0x7f00000004c0)=<r3=>0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',privport,acc', @ANYRESDEC=r3])
setxattr$trusted_overlay_redirect(&(0x7f0000000400)='./file0\x00', &(0x7f0000000500), 0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

535][ T5796] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  421.259058][ T5877] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  421.289548][ T5877] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  421.350153][ T5877] usb 4-1: config 0 descriptor??
[  421.374027][ T5877] hub 4-1:0.0: USB hub found
[  421.567255][ T5877] hub 4-1:0.0: config failed, can't read hub descriptor (err -22)
[  421.634138][ T8893] loop2: detected capacity change from 0 to 1024
[  421.662773][ T5877] usb 4-1: USB disconnect, device number 11
[  421.703592][ T8893] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a802c018, mo2=0002]
[  421.751541][ T8893] System zones: 0-1, 3-8
[  421.772964][ T8893] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  421.833139][ T8893] ext4 filesystem being mounted at /241/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  422.161425][ T8883] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  423.128253][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  423.259682][   T27] audit: type=1326 audit(1757100552.022:491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8899 comm="syz.0.921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  423.323458][   T27] audit: type=1326 audit(1757100552.022:492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8899 comm="syz.0.921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  423.382738][   T27] audit: type=1326 audit(1757100552.022:493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8899 comm="syz.0.921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  423.445980][   T27] audit: type=1326 audit(1757100552.022:494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8899 comm="syz.0.921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  423.536294][   T27] audit: type=1326 audit(1757100552.022:495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8899 comm="syz.0.921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  423.597971][   T27] audit: type=1326 audit(1757100552.022:496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8899 comm="syz.0.921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  423.663257][ T8909] loop0: detected capacity change from 0 to 256
[  423.669789][   T27] audit: type=1326 audit(1757100552.022:497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8899 comm="syz.0.921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  423.798854][   T27] audit: type=1326 audit(1757100552.022:498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8899 comm="syz.0.921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  423.916088][   T27] audit: type=1326 audit(1757100552.022:499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8899 comm="syz.0.921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  424.016546][   T27] audit: type=1326 audit(1757100552.022:500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8899 comm="syz.0.921" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  424.605878][ T8922] overlayfs: failed to resolve './file1': -2
[  427.016157][ T5877] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  427.221224][ T5877] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  427.296072][ T5877] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  427.341200][ T5877] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  427.372263][ T5877] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  427.390089][ T5877] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  427.424954][ T5877] usb 4-1: config 0 descriptor??
[  427.438940][ T5877] hub 4-1:0.0: USB hub found
[  427.642539][ T5877] hub 4-1:0.0: config failed, can't read hub descriptor (err -22)
[  427.708662][ T5877] usb 4-1: USB disconnect, device number 12
[  427.812760][ T8950] netlink: 452 bytes leftover after parsing attributes in process `syz.1.940'.
[  428.810601][   T27] kauditd_printk_skb: 8 callbacks suppressed
[  428.810638][   T27] audit: type=1326 audit(1757100557.572:509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8956 comm="syz.1.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  429.462860][   T27] audit: type=1326 audit(1757100557.632:510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8956 comm="syz.1.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  429.736343][   T27] audit: type=1326 audit(1757100557.672:511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8956 comm="syz.1.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  429.902563][   T27] audit: type=1326 audit(1757100557.672:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8956 comm="syz.1.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  430.032617][   T27] audit: type=1326 audit(1757100557.682:513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8956 comm="syz.1.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  430.160485][   T27] audit: type=1326 audit(1757100557.732:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8956 comm="syz.1.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  430.231101][   T27] audit: type=1326 audit(1757100557.732:515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8956 comm="syz.1.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  430.323556][   T27] audit: type=1326 audit(1757100557.732:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8956 comm="syz.1.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  430.434432][   T27] audit: type=1326 audit(1757100557.762:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8956 comm="syz.1.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  430.577257][   T27] audit: type=1326 audit(1757100557.812:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8956 comm="syz.1.941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  430.727143][ T8972] loop1: detected capacity change from 0 to 256
[  432.086200][ T8971] loop0: detected capacity change from 0 to 40427
[  432.131821][ T8971] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  432.167672][ T8971] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  432.220592][ T8971] F2FS-fs (loop0): invalid crc value
[  432.238976][ T8971] F2FS-fs (loop0): Found nat_bits in checkpoint
[  432.461073][ T8971] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  432.514719][ T8971] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  434.855493][ T9003] loop1: detected capacity change from 0 to 4096
[  434.880813][ T9003] EXT4-fs: quotafile must be on filesystem root
[  438.322643][ T9023] loop3: detected capacity change from 0 to 256
[  440.061084][ T9039] loop2: detected capacity change from 0 to 4096
[  440.072897][ T9039] EXT4-fs: Ignoring removed mblk_io_submit option
[  440.177922][ T9039] EXT4-fs (loop2): Test dummy encryption mode enabled
[  440.219979][ T9039] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  440.297353][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  440.315701][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  441.026847][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  443.126703][ T9063] loop0: detected capacity change from 0 to 256
[  446.187703][ T9093] loop3: detected capacity change from 0 to 512
[  446.243990][ T9093] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.980: invalid indirect mapped block 10 (level 1)
[  446.624701][ T9093] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.980: invalid indirect mapped block 8 (level 1)
[  446.880980][ T9093] EXT4-fs (loop3): 1 truncate cleaned up
[  446.907317][ T9093] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  447.119579][ T5788] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  447.148350][ T9099] loop1: detected capacity change from 0 to 256
[  449.046321][ T5840] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  449.278371][ T5840] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  449.307828][ T5840] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  449.377154][ T5840] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  449.411918][ T5840] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  449.438225][ T5840] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  449.468743][ T5840] usb 4-1: config 0 descriptor??
[  449.497288][ T5840] hub 4-1:0.0: USB hub found
[  449.686113][ T5840] hub 4-1:0.0: 14 ports detected
[  449.703510][ T5840] hub 4-1:0.0: insufficient power available to use all downstream ports
[  449.883010][ T5840] hub 4-1:0.0: hub_hub_status failed (err = -71)
[  449.902866][ T5840] hub 4-1:0.0: config failed, can't get hub status (err -71)
[  449.947444][ T5840] usb 4-1: USB disconnect, device number 13
[  451.226133][ T9134] loop3: detected capacity change from 0 to 256
[  452.752774][ T9151] loop2: detected capacity change from 0 to 512
[  452.777022][ T9151] EXT4-fs: Ignoring removed nobh option
[  452.814316][ T9151] EXT4-fs (loop2): Test dummy encryption mode enabled
[  452.846114][ T9151] EXT4-fs error (device loop2): __ext4_iget:5053: inode #11: block 1: comm syz.2.998: invalid block
[  452.866694][ T9151] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.998: couldn't read orphan inode 11 (err -117)
[  452.897886][ T9151] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  453.104149][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  456.276144][ T5877] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  456.576068][ T5877] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  456.589286][ T5877] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  456.625521][ T5877] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  456.676502][ T5877] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  456.706398][ T5877] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  456.726394][ T5877] usb 4-1: config 0 descriptor??
[  456.750310][ T5877] hub 4-1:0.0: USB hub found
[  457.723967][ T9194] loop0: detected capacity change from 0 to 512
[  457.772992][ T9194] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.1007: invalid indirect mapped block 10 (level 1)
[  457.787430][ T9194] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.1007: invalid indirect mapped block 8 (level 1)
[  457.796517][ T5877] hub 4-1:0.0: 14 ports detected
[  457.803785][ T9194] EXT4-fs (loop0): 1 truncate cleaned up
[  457.815179][ T9194] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  457.870182][ T5877] hub 4-1:0.0: config failed, can't get hub status (err -5)
[  457.972297][ T5877] usb 4-1: USB disconnect, device number 14
[  458.041222][ T5800] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  458.192560][ T9204] loop3: detected capacity change from 0 to 256
[  459.481256][ T9215] loop0: detected capacity change from 0 to 256
[  459.504655][ T9215] FAT-fs (loop0): Unrecognized mount option "shor�name=mixed" or missing value
[  462.755371][   T27] kauditd_printk_skb: 10 callbacks suppressed
[  462.755387][   T27] audit: type=1326 audit(1757100591.512:529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9238 comm="syz.1.1019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  462.799081][   T27] audit: type=1326 audit(1757100591.512:530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9238 comm="syz.1.1019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  462.806392][ T5877] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  462.827741][   T27] audit: type=1326 audit(1757100591.512:531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9238 comm="syz.1.1019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  462.859110][   T27] audit: type=1326 audit(1757100591.512:532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9238 comm="syz.1.1019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  462.913745][   T27] audit: type=1326 audit(1757100591.512:533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9238 comm="syz.1.1019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  462.941945][   T27] audit: type=1326 audit(1757100591.512:534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9238 comm="syz.1.1019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  462.971570][   T27] audit: type=1326 audit(1757100591.512:535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9238 comm="syz.1.1019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  463.009543][   T27] audit: type=1326 audit(1757100591.512:536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9238 comm="syz.1.1019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  463.038325][   T27] audit: type=1326 audit(1757100591.512:537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9238 comm="syz.1.1019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  463.066979][ T5877] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  463.068448][   T27] audit: type=1326 audit(1757100591.522:538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9238 comm="syz.1.1019" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  463.096040][ T5877] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  463.136049][ T5877] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  463.159936][ T5877] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  463.184686][ T5877] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  463.316017][ T5877] usb 3-1: config 0 descriptor??
[  463.440956][ T5877] hub 3-1:0.0: USB hub found
[  463.679987][ T5877] hub 3-1:0.0: 14 ports detected
[  463.754078][ T5877] hub 3-1:0.0: insufficient power available to use all downstream ports
[  464.037952][ T5877] hub 3-1:0.0: hub_hub_status failed (err = -71)
[  464.066530][ T5877] hub 3-1:0.0: config failed, can't get hub status (err -71)
[  464.138178][ T5877] usb 3-1: USB disconnect, device number 18
[  466.038088][ T9261] loop3: detected capacity change from 0 to 256
[  466.680134][ T9273] hub 8-0:1.0: USB hub found
[  466.689551][ T9273] hub 8-0:1.0: 1 port detected
[  470.223840][ T9284] A link change request failed with some changes committed already. Interface ip6_vti0 may have been left with an inconsistent configuration, please check.
[  470.461469][ T9290] 9pnet_fd: Insufficient options for proto=fd
[  470.656158][ T5854] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  470.983481][ T5854] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  471.155668][ T5854] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  471.379335][ T5854] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  471.440899][ T5854] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  471.509519][ T5854] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  471.557273][ T5854] usb 3-1: config 0 descriptor??
[  471.584648][ T5854] hub 3-1:0.0: USB hub found
[  471.772481][ T5854] hub 3-1:0.0: 14 ports detected
[  471.780819][ T5854] hub 3-1:0.0: insufficient power available to use all downstream ports
[  471.980876][ T5854] hub 3-1:0.0: hub_hub_status failed (err = -71)
[  472.000467][ T5854] hub 3-1:0.0: config failed, can't get hub status (err -71)
[  472.047315][ T5854] usb 3-1: USB disconnect, device number 19
[  473.548568][ T9312] loop3: detected capacity change from 0 to 256
[  473.922647][ T9320] loop0: detected capacity change from 0 to 128
[  473.969378][ T9320] FAT-fs (loop0): Directory bread(block 162) failed
[  473.996230][ T9320] FAT-fs (loop0): Directory bread(block 163) failed
[  474.023155][ T9320] FAT-fs (loop0): Directory bread(block 164) failed
[  474.035822][ T9320] FAT-fs (loop0): Directory bread(block 165) failed
[  474.053302][ T9320] FAT-fs (loop0): Directory bread(block 166) failed
[  474.063430][ T9320] FAT-fs (loop0): Directory bread(block 167) failed
[  474.080774][ T9320] FAT-fs (loop0): Directory bread(block 168) failed
[  474.096074][ T9320] FAT-fs (loop0): Directory bread(block 169) failed
[  474.129559][ T9320] FAT-fs (loop0): Directory bread(block 162) failed
[  474.148580][ T9320] FAT-fs (loop0): Directory bread(block 163) failed
[  474.651927][ T9330] 9pnet_fd: Insufficient options for proto=fd
[  477.027899][   T27] kauditd_printk_skb: 11 callbacks suppressed
[  477.027919][   T27] audit: type=1326 audit(1757100605.752:550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9340 comm="syz.1.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  477.161906][   T27] audit: type=1326 audit(1757100605.752:551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9340 comm="syz.1.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  477.310253][   T27] audit: type=1326 audit(1757100605.762:552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9340 comm="syz.1.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  477.352642][ T9345] loop1: detected capacity change from 0 to 512
[  477.406447][   T27] audit: type=1326 audit(1757100605.762:553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9340 comm="syz.1.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  477.498528][   T27] audit: type=1326 audit(1757100605.762:554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9340 comm="syz.1.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  477.543854][   T27] audit: type=1326 audit(1757100605.762:555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9340 comm="syz.1.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  477.573948][   T27] audit: type=1326 audit(1757100605.772:556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9340 comm="syz.1.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  477.606351][ T5854] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[  478.102454][ T5854] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  478.298587][   T27] audit: type=1326 audit(1757100605.772:557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9340 comm="syz.1.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  478.426015][ T5854] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  478.474314][ T5854] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  478.551114][   T27] audit: type=1326 audit(1757100605.772:558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9340 comm="syz.1.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  478.584191][ T5854] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  478.621827][ T9354] 9pnet_fd: Insufficient options for proto=fd
[  478.630822][ T5854] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  478.683563][ T5854] usb 3-1: config 0 descriptor??
[  478.706169][   T27] audit: type=1326 audit(1757100605.772:559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9340 comm="syz.1.1051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=120 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  478.747767][ T5854] hub 3-1:0.0: USB hub found
[  478.795632][ T9356] loop1: detected capacity change from 0 to 256
[  478.955595][ T5854] hub 3-1:0.0: 14 ports detected
[  478.966413][ T5854] hub 3-1:0.0: insufficient power available to use all downstream ports
[  479.937589][ T5854] hub 3-1:0.0: hub_hub_status failed (err = -71)
[  479.944085][ T5854] hub 3-1:0.0: config failed, can't get hub status (err -71)
[  479.987499][ T5854] usb 3-1: USB disconnect, device number 20
[  480.116613][ T9365] loop2: detected capacity change from 0 to 256
[  480.124263][ T9365] exfat: Unknown parameter '01777777777777777777777�����'
[  480.188490][ T5935] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  480.596595][ T5854] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[  480.797119][ T5854] usb 3-1: Using ep0 maxpacket: 16
[  480.821548][ T5854] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  480.865965][ T5854] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  480.909294][ T5854] usb 3-1: config 0 interface 0 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  480.962855][ T5854] usb 3-1: config 0 interface 0 has no altsetting 0
[  481.016996][ T5854] usb 3-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  481.047225][ T5854] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  481.081734][ T5854] usb 3-1: config 0 descriptor??
[  481.523322][ T5854] hid (null): report_id 23696 is invalid
[  481.529339][ T5854] hid (null): unknown global tag 0xc
[  481.534914][ T5854] hid (null): unknown global tag 0xe
[  481.540724][ T5854] hid (null): unknown global tag 0xe
[  481.546193][ T5854] hid (null): report_id 0 is invalid
[  481.551703][ T5854] hid (null): unknown global tag 0xd
[  481.557427][ T5854] hid (null): unknown global tag 0xf
[  481.563010][ T5854] hid (null): global environment stack underflow
[  481.569701][ T5854] hid (null): global environment stack underflow
[  481.730737][ T5854] usb 3-1: USB disconnect, device number 21
[  481.987871][ T9379] 9pnet_fd: Insufficient options for proto=fd
[  482.707004][   T23] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  483.096817][ T9387] loop3: detected capacity change from 0 to 4096
[  483.109298][ T9387] EXT4-fs: Ignoring removed mblk_io_submit option
[  483.144907][ T9387] EXT4-fs (loop3): Test dummy encryption mode enabled
[  483.201787][ T9387] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  483.857114][ T9391] syz.2.1068[9391] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  483.857341][ T9391] syz.2.1068[9391] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  483.905977][   T23] usb 2-1: Using ep0 maxpacket: 16
[  483.942716][   T23] usb 2-1: config 0 has an invalid interface number: 129 but max is 0
[  483.945398][ T5788] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  483.967598][ T9391] loop2: detected capacity change from 0 to 512
[  483.975994][   T23] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  483.981201][ T9391] EXT4-fs: Ignoring removed i_version option
[  484.000592][   T23] usb 2-1: config 0 has no interface number 0
[  484.006897][ T9391] EXT4-fs: Ignoring removed nobh option
[  484.012911][ T9391] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  484.035267][   T23] usb 2-1: New USB device found, idVendor=0fe6, idProduct=9700, bcdDevice=d1.9a
[  484.077812][   T23] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  484.098542][ T9391] EXT4-fs (loop2): 1 truncate cleaned up
[  484.117007][ T9391] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  484.147788][   T23] usb 2-1: Product: syz
[  484.152050][   T23] usb 2-1: Manufacturer: syz
[  484.191106][   T23] usb 2-1: SerialNumber: syz
[  484.228534][   T23] usb 2-1: config 0 descriptor??
[  484.258484][   T23] dm9601: probe of 2-1:0.129 failed with error -22
[  484.265520][   T23] sr9700: probe of 2-1:0.129 failed with error -22
[  484.313661][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  484.486202][   T42] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  484.782996][ T9404] loop2: detected capacity change from 0 to 256
[  485.048090][   T42] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  485.069884][   T42] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  485.085549][   T42] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  485.105282][   T42] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  485.114732][   T42] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  485.130109][   T42] usb 4-1: config 0 descriptor??
[  485.144063][   T42] hub 4-1:0.0: USB hub found
[  485.343501][   T42] hub 4-1:0.0: 14 ports detected
[  485.353454][   T42] hub 4-1:0.0: insufficient power available to use all downstream ports
[  485.558420][   T42] hub 4-1:0.0: hub_hub_status failed (err = -71)
[  485.565119][ T5877] usb 2-1: USB disconnect, device number 11
[  485.600683][   T42] hub 4-1:0.0: config failed, can't get hub status (err -71)
[  485.667012][   T42] usb 4-1: USB disconnect, device number 15
[  486.364397][ T9423] loop1: detected capacity change from 0 to 4096
[  486.372583][ T9423] EXT4-fs: Ignoring removed mblk_io_submit option
[  486.449407][ T9423] EXT4-fs (loop1): Test dummy encryption mode enabled
[  486.492019][ T9423] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  487.231411][ T9426] loop3: detected capacity change from 0 to 512
[  487.306387][ T9426] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2244: inode #15: comm syz.3.1080: corrupted in-inode xattr: invalid ea_ino
[  487.388058][ T9426] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.1080: couldn't read orphan inode 15 (err -117)
[  487.438727][ T5792] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  487.512751][ T9431] loop2: detected capacity change from 0 to 256
[  487.528996][ T9426] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000001000000 r/w without journal. Quota mode: none.
[  487.562862][ T9431] FAT-fs (loop2): Unrecognized mount option "shor�name=mixed" or missing value
[  488.703821][ T5788] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000001000000.
[  491.113306][ T9457] loop2: detected capacity change from 0 to 256
[  492.173734][ T9468] 9pnet_fd: Insufficient options for proto=fd
[  493.571630][ T9496] 9pnet_fd: Insufficient options for proto=fd
[  494.641538][ T9511] loop1: detected capacity change from 0 to 4096
[  494.718847][ T9511] EXT4-fs: Ignoring removed mblk_io_submit option
[  494.788740][ T9511] EXT4-fs (loop1): Test dummy encryption mode enabled
[  494.889942][ T9511] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  496.093501][ T9529] 9pnet_fd: Insufficient options for proto=fd
[  496.310991][ T9536] 9pnet_fd: Insufficient options for proto=fd
[  496.514755][ T9539] loop3: detected capacity change from 0 to 256
[  496.533179][ T9539] FAT-fs (loop3): Unrecognized mount option "shor�name=mixed" or missing value
[  498.850164][ T9556] 9pnet_fd: Insufficient options for proto=fd
[  500.378361][ T5792] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  500.712254][ T9572] loop3: detected capacity change from 0 to 256
[  500.816697][ T9574] loop1: detected capacity change from 0 to 4096
[  500.824241][ T9574] EXT4-fs: Ignoring removed mblk_io_submit option
[  500.869409][ T9574] EXT4-fs (loop1): Test dummy encryption mode enabled
[  500.936824][ T9572] FAT-fs (loop3): Unrecognized mount option "shor�name=mixed" or missing value
[  501.042363][ T9574] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  501.740168][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  501.749357][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  501.884726][ T5792] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  503.366008][   T27] kauditd_printk_skb: 2 callbacks suppressed
[  503.366028][   T27] audit: type=1326 audit(1757100632.052:562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9584 comm="syz.0.1131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  503.453690][   T27] audit: type=1326 audit(1757100632.052:563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9584 comm="syz.0.1131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  503.585308][   T27] audit: type=1326 audit(1757100632.072:564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9584 comm="syz.0.1131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  503.736829][   T27] audit: type=1326 audit(1757100632.072:565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9584 comm="syz.0.1131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  503.803824][ T9590] 9pnet_fd: Insufficient options for proto=fd
[  503.887185][   T27] audit: type=1326 audit(1757100632.072:566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9584 comm="syz.0.1131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  504.012584][   T27] audit: type=1326 audit(1757100632.072:567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9584 comm="syz.0.1131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  504.174116][   T27] audit: type=1326 audit(1757100632.072:568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9584 comm="syz.0.1131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  504.426455][   T27] audit: type=1326 audit(1757100632.082:569): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9584 comm="syz.0.1131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  504.466075][   T27] audit: type=1326 audit(1757100632.082:570): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9584 comm="syz.0.1131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  504.565975][   T27] audit: type=1326 audit(1757100632.082:571): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9584 comm="syz.0.1131" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  505.418336][ T9600] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1136'.
[  506.203753][ T9612] loop2: detected capacity change from 0 to 256
[  506.440776][ T9612] FAT-fs (loop2): Directory bread(block 64) failed
[  506.473921][ T9612] FAT-fs (loop2): Directory bread(block 65) failed
[  506.483549][ T9619] 9pnet_fd: Insufficient options for proto=fd
[  506.537172][ T9612] FAT-fs (loop2): Directory bread(block 66) failed
[  506.573309][ T9612] FAT-fs (loop2): Directory bread(block 67) failed
[  506.602885][ T9612] FAT-fs (loop2): Directory bread(block 68) failed
[  506.626483][ T9612] FAT-fs (loop2): Directory bread(block 69) failed
[  506.664521][ T9612] FAT-fs (loop2): Directory bread(block 70) failed
[  506.694941][ T9612] FAT-fs (loop2): Directory bread(block 71) failed
[  506.730574][ T9612] FAT-fs (loop2): Directory bread(block 72) failed
[  506.774405][ T9612] FAT-fs (loop2): Directory bread(block 73) failed
[  511.129763][ T9645] loop1: detected capacity change from 0 to 256
[  511.147486][ T9645] FAT-fs (loop1): Unrecognized mount option "shor�name=mixed" or missing value
[  512.361782][ T9657] loop1: detected capacity change from 0 to 1024
[  512.407124][ T9657] EXT4-fs: inline encryption not supported
[  512.413894][ T9657] EXT4-fs: Ignoring removed i_version option
[  512.509003][ T9657] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  512.617346][ T9657] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  514.038357][ T5792] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  516.321172][ T9689] loop2: detected capacity change from 0 to 256
[  516.366879][ T9689] exfat: Bad value for 'errors'
[  519.231157][ T9704] loop3: detected capacity change from 0 to 256
[  519.311948][   T27] kauditd_printk_skb: 2 callbacks suppressed
[  519.311966][   T27] audit: type=1326 audit(2000000015.980:574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9705 comm="syz.2.1169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb34b18ebe9 code=0x7ffc0000
[  519.427480][ T9699] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1166'.
[  519.427480][   T27] audit: type=1326 audit(2000000015.980:575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9705 comm="syz.2.1169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb34b18ebe9 code=0x7ffc0000
[  519.427534][   T27] audit: type=1326 audit(2000000016.010:576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9705 comm="syz.2.1169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7fb34b18ebe9 code=0x7ffc0000
[  519.637767][   T27] audit: type=1326 audit(2000000016.010:577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9705 comm="syz.2.1169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb34b18ebe9 code=0x7ffc0000
[  519.714265][   T27] audit: type=1326 audit(2000000016.020:578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9705 comm="syz.2.1169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=432 compat=0 ip=0x7fb34b18ebe9 code=0x7ffc0000
[  519.782124][   T27] audit: type=1326 audit(2000000016.020:579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9705 comm="syz.2.1169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb34b18ebe9 code=0x7ffc0000
[  519.865404][   T27] audit: type=1326 audit(2000000016.020:580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9705 comm="syz.2.1169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb34b18ebe9 code=0x7ffc0000
[  519.984602][   T27] audit: type=1326 audit(2000000016.430:581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9708 comm="syz.1.1170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  520.096051][   T27] audit: type=1326 audit(2000000016.430:582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9708 comm="syz.1.1170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  520.393685][   T27] audit: type=1326 audit(2000000016.430:583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9708 comm="syz.1.1170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb3a6d8ebe9 code=0x7ffc0000
[  521.739945][ T9727] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1177'.
[  523.197752][ T9733] loop2: detected capacity change from 0 to 4096
[  523.205480][ T9733] EXT4-fs: Ignoring removed mblk_io_submit option
[  523.343840][ T9733] EXT4-fs (loop2): Test dummy encryption mode enabled
[  523.555523][ T9733] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  524.090943][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  525.050826][ T9742] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12
[  525.060336][ T9742] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12
[  525.070099][ T9742] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  525.880882][   T23] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[  526.151643][ T9755] loop1: detected capacity change from 0 to 256
[  526.441905][ T9758] 9pnet_fd: Insufficient options for proto=fd
[  526.526381][   T23] usb 3-1: New USB device found, idVendor=07fd, idProduct=0004, bcdDevice=26.50
[  526.536139][   T23] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  526.545745][   T23] usb 3-1: Product: syz
[  526.550061][   T23] usb 3-1: Manufacturer: syz
[  526.554803][   T23] usb 3-1: SerialNumber: syz
[  526.562701][   T23] usb 3-1: config 0 descriptor??
[  526.577080][   T23] usb 3-1: Waiting for MOTU Microbook II to boot up...
[  526.584103][   T23] usb 3-1: failed setting the sample rate for Motu MicroBook II: -22
[  526.593427][   T23] snd-usb-audio: probe of 3-1:0.0 failed with error -22
[  526.996849][ T5877] usb 3-1: USB disconnect, device number 22
[  527.226079][   T23] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  527.346421][   T42] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  527.409179][   T23] usb 1-1: Using ep0 maxpacket: 16
[  527.416304][   T23] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  527.426860][   T23] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  527.439106][   T23] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  527.448273][   T23] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  527.456371][   T23] usb 1-1: Product: syz
[  527.460571][   T23] usb 1-1: Manufacturer: syz
[  527.467563][   T23] usb 1-1: SerialNumber: syz
[  527.605469][ T9769] loop2: detected capacity change from 0 to 256
[  527.617105][ T9769] exfat: Deprecated parameter 'utf8'
[  527.655367][ T9769] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d)
[  527.676455][   T42] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  527.693407][   T42] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  527.715815][   T23] usb 1-1: 0:2 : does not exist
[  527.721211][   T42] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  527.740549][   T23] usb 1-1: 5:0: failed to get current value for ch 0 (-22)
[  527.756201][   T42] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  527.783794][   T42] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  527.819709][   T23] usb 1-1: USB disconnect, device number 14
[  527.831078][   T42] usb 2-1: config 0 descriptor??
[  527.859237][   T42] hub 2-1:0.0: USB hub found
[  527.926415][ T5935] udevd[5935]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  528.066115][   T42] hub 2-1:0.0: 14 ports detected
[  528.076910][   T42] hub 2-1:0.0: insufficient power available to use all downstream ports
[  528.130602][ T9777] loop2: detected capacity change from 0 to 256
[  528.327472][   T42] hub 2-1:0.0: hub_hub_status failed (err = -71)
[  528.350765][   T42] hub 2-1:0.0: config failed, can't get hub status (err -71)
[  528.457487][   T42] usb 2-1: USB disconnect, device number 12
[  528.770501][ T9782] 9pnet_fd: Insufficient options for proto=fd
[  530.306773][ T9792] IPVS: wrr: UDP 224.0.0.2:0 - no destination available
[  530.315699][ T9775] loop3: detected capacity change from 0 to 40427
[  530.420780][ T9775] F2FS-fs (loop3): invalid crc value
[  530.446518][ T9775] F2FS-fs (loop3): Found nat_bits in checkpoint
[  530.676647][ T9775] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  531.673065][ T9810] loop2: detected capacity change from 0 to 256
[  531.742507][ T9812] loop1: detected capacity change from 0 to 256
[  531.789245][ T9812] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  532.248976][   T54] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  532.298914][ T9820] loop1: detected capacity change from 0 to 1024
[  532.312524][ T9820] EXT4-fs (loop1): filesystem is read-only
[  532.319075][ T9820] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[  532.359317][ T9820] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  532.418957][ T9820] EXT4-fs error (device loop1): ext4_get_journal_inode:5807: inode #32: comm syz.1.1209: iget: special inode unallocated
[  532.483752][ T9820] EXT4-fs (loop1): no journal found
[  532.500649][ T9820] EXT4-fs (loop1): can't get journal size
[  532.515356][ T9820] EXT4-fs (loop1): filesystem is read-only
[  532.542588][ T9820] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  532.781958][   T54] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  532.871446][ T9820] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  532.958701][   T54] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  533.227382][   T54] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  533.263471][   T54] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  533.285991][   T54] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  533.326412][   T54] usb 1-1: config 0 descriptor??
[  533.356855][   T54] hub 1-1:0.0: USB hub found
[  533.790135][   T54] hub 1-1:0.0: 14 ports detected
[  533.802450][   T54] hub 1-1:0.0: insufficient power available to use all downstream ports
[  533.990903][   T54] hub 1-1:0.0: hub_hub_status failed (err = -71)
[  534.009730][   T54] hub 1-1:0.0: config failed, can't get hub status (err -71)
[  534.055357][   T54] usb 1-1: USB disconnect, device number 15
[  535.743056][ T9856] loop1: detected capacity change from 0 to 4096
[  535.874828][ T9856] EXT4-fs (loop1): Test dummy encryption mode enabled
[  535.906074][ T9856] EXT4-fs (loop1): unsupported descriptor size 255
[  537.366994][ T9869] binder: 9864:9869 ioctl c0306201 200000000080 returned -14
[  541.034434][ T5854] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  541.134373][ T9896] loop2: detected capacity change from 0 to 256
[  541.322398][ T5854] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  541.334766][ T5854] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  541.357242][ T5854] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  541.466577][ T5854] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  542.279058][ T5854] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  542.537531][ T5854] usb 4-1: config 0 descriptor??
[  542.619942][ T5854] usb 4-1: can't set config #0, error -71
[  542.678537][ T5854] usb 4-1: USB disconnect, device number 16
[  544.285346][ T9929] binder: 9928:9929 ioctl c0306201 200000000080 returned -14
[  544.306341][ T5854] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  545.181841][ T9933] loop2: detected capacity change from 0 to 256
[  545.246243][ T9933] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  545.328278][ T5854] usb 2-1: Using ep0 maxpacket: 8
[  545.340605][ T5854] usb 2-1: config 37 has an invalid interface number: 13 but max is 0
[  545.377400][ T5854] usb 2-1: config 37 has no interface number 0
[  545.412068][ T5854] usb 2-1: config 37 interface 13 has no altsetting 0
[  545.467765][ T5854] usb 2-1: New USB device found, idVendor=0421, idProduct=0420, bcdDevice=e4.c4
[  545.503329][ T9937] loop3: detected capacity change from 0 to 256
[  545.529136][ T5854] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  545.560323][ T5854] usb 2-1: Product: syz
[  545.574631][ T5854] usb 2-1: Manufacturer: syz
[  546.656361][ T5854] usb 2-1: SerialNumber: syz
[  546.993924][ T5854] usb 2-1: bad CDC descriptors
[  547.018736][ T5854] usb 2-1: bad CDC descriptors
[  547.035363][ T5854] cdc_acm 2-1:37.13: Zero length descriptor references
[  547.047870][ T5854] cdc_acm: probe of 2-1:37.13 failed with error -22
[  547.273138][ T5854] usb 2-1: USB disconnect, device number 13
[  547.320454][  T787] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[  547.517693][  T787] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  547.536047][  T787] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  547.548205][  T787] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  547.561353][  T787] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  547.586083][  T787] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  547.617183][  T787] usb 3-1: config 0 descriptor??
[  547.624420][  T787] hub 3-1:0.0: USB hub found
[  547.842637][  T787] hub 3-1:0.0: 14 ports detected
[  547.858889][  T787] hub 3-1:0.0: insufficient power available to use all downstream ports
[  548.479655][ T9966] syz.3.1253[9966] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  548.481833][ T9966] syz.3.1253[9966] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  548.670000][   T27] kauditd_printk_skb: 8 callbacks suppressed
[  548.670016][   T27] audit: type=1326 audit(2000000045.340:592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9965 comm="syz.3.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd293b8ebe9 code=0x7ffc0000
[  548.825226][   T27] audit: type=1326 audit(2000000045.380:593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9965 comm="syz.3.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7fd293b8ebe9 code=0x7ffc0000
[  548.841713][  T787] hub 3-1:0.0: hub_hub_status failed (err = -71)
[  548.855742][  T787] hub 3-1:0.0: config failed, can't get hub status (err -71)
[  548.900023][  T787] usb 3-1: USB disconnect, device number 23
[  548.955963][   T27] audit: type=1326 audit(2000000045.380:594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9965 comm="syz.3.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd293b8ebe9 code=0x7ffc0000
[  549.032707][ T9971] loop1: detected capacity change from 0 to 256
[  549.402633][   T27] audit: type=1326 audit(2000000045.380:595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9965 comm="syz.3.1253" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd293b8ebe9 code=0x7ffc0000
[  549.706379][ T9979] netlink: 'syz.3.1254': attribute type 15 has an invalid length.
[  550.394746][ T9988] loop2: detected capacity change from 0 to 128
[  550.657165][ T9988] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  550.690924][ T9998] loop1: detected capacity change from 0 to 512
[  550.713854][ T9988] ext4 filesystem being mounted at /334/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  551.675654][ T9998] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  551.727414][ T9998] ext4 filesystem being mounted at /309/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  551.876361][ T5796] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  552.115743][ T5854] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  552.207243][T10011] loop2: detected capacity change from 0 to 256
[  552.497871][ T5854] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  552.516009][ T5854] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  552.548264][ T5854] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  552.576920][ T5854] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  552.595992][ T5854] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  552.621728][ T5854] usb 4-1: config 0 descriptor??
[  552.638296][ T5854] hub 4-1:0.0: USB hub found
[  552.864820][ T5854] hub 4-1:0.0: 14 ports detected
[  552.870549][ T5854] hub 4-1:0.0: insufficient power available to use all downstream ports
[  553.167032][ T5854] hub 4-1:0.0: hub_hub_status failed (err = -71)
[  553.182663][ T5854] hub 4-1:0.0: config failed, can't get hub status (err -71)
[  553.228130][ T5854] usb 4-1: USB disconnect, device number 17
[  554.626728][T10026] loop3: detected capacity change from 0 to 512
[  554.944375][T10026] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  555.224569][T10026] ext4 filesystem being mounted at /309/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  556.747008][ T5788] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  557.190738][T10051] loop2: detected capacity change from 0 to 256
[  558.606062][ T5854] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  559.476093][ T5877] usb 3-1: new high-speed USB device number 24 using dummy_hcd
[  559.515990][ T5854] usb 4-1: Using ep0 maxpacket: 8
[  559.524865][ T5854] usb 4-1: config 37 has an invalid interface number: 13 but max is 0
[  559.547309][ T5854] usb 4-1: config 37 has no interface number 0
[  559.654231][ T5854] usb 4-1: config 37 interface 13 has no altsetting 0
[  559.668630][ T5854] usb 4-1: New USB device found, idVendor=0421, idProduct=0420, bcdDevice=e4.c4
[  559.678388][ T5854] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  559.686960][ T5854] usb 4-1: Product: syz
[  559.691226][ T5854] usb 4-1: Manufacturer: syz
[  559.696500][ T5854] usb 4-1: SerialNumber: syz
[  559.763669][ T5877] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  559.782742][ T5877] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  559.804657][ T5877] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  559.846168][ T5877] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  559.882877][ T5877] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  559.907897][ T5877] usb 3-1: config 0 descriptor??
[  559.944405][ T5877] hub 3-1:0.0: USB hub found
[  560.004790][ T5854] usb 4-1: bad CDC descriptors
[  560.814420][ T5854] usb 4-1: bad CDC descriptors
[  560.819508][ T5877] hub 3-1:0.0: 14 ports detected
[  560.825378][ T5854] cdc_acm 4-1:37.13: Zero length descriptor references
[  560.832603][ T5877] hub 3-1:0.0: config failed, can't get hub status (err -5)
[  560.840087][ T5854] cdc_acm: probe of 4-1:37.13 failed with error -22
[  560.899486][ T5877] usb 3-1: USB disconnect, device number 24
[  560.909554][ T5854] usb 4-1: USB disconnect, device number 18
[  562.258928][T10085] loop2: detected capacity change from 0 to 4096
[  562.266609][T10085] EXT4-fs: Ignoring removed mblk_io_submit option
[  562.370908][T10085] EXT4-fs (loop2): Test dummy encryption mode enabled
[  562.452193][T10085] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  562.909960][T10090] loop3: detected capacity change from 0 to 256
[  563.158985][ T5792] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  563.196194][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  563.211893][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  563.251968][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  564.370534][T10099] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1289'.
[  564.463966][T10109] loop1: detected capacity change from 0 to 128
[  564.491339][T10109] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  564.623302][T10109] ext4 filesystem being mounted at /311/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  564.826116][   T23] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[  565.026361][   T23] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  565.161831][   T23] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  565.411015][   T23] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  565.475060][   T23] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  565.524294][ T5792] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  565.543901][   T23] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  565.578404][   T23] usb 4-1: config 0 descriptor??
[  565.642149][   T23] hub 4-1:0.0: USB hub found
[  565.834669][   T23] hub 4-1:0.0: 14 ports detected
[  565.858377][   T23] hub 4-1:0.0: insufficient power available to use all downstream ports
[  566.036246][   T23] hub 4-1:0.0: hub_hub_status failed (err = -71)
[  566.052186][   T23] hub 4-1:0.0: config failed, can't get hub status (err -71)
[  566.171142][   T23] usb 4-1: USB disconnect, device number 19
[  566.249409][T10129] loop1: detected capacity change from 0 to 256
[  569.781411][T10161] loop3: detected capacity change from 0 to 128
[  571.957078][T10161] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  572.046370][T10161] ext4 filesystem being mounted at /317/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  572.229207][T10176] loop1: detected capacity change from 0 to 512
[  572.244898][T10176] EXT4-fs: Ignoring removed i_version option
[  572.253666][T10176] EXT4-fs: Ignoring removed nobh option
[  572.265194][T10176] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  572.283813][T10176] EXT4-fs (loop1): 1 truncate cleaned up
[  572.291298][T10176] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  572.394054][ T5788] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  572.507625][ T5854] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  572.559905][T10179] netlink: 84 bytes leftover after parsing attributes in process `syz.1.1311'.
[  572.665517][T10182] loop3: detected capacity change from 0 to 256
[  572.724534][ T5854] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  572.765273][ T5854] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  572.799389][ T5854] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  572.850216][ T5854] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  572.894161][ T5854] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  572.931881][ T5854] usb 1-1: config 0 descriptor??
[  572.942700][ T5854] hub 1-1:0.0: USB hub found
[  573.149334][ T5792] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  573.169751][ T5854] hub 1-1:0.0: 14 ports detected
[  573.188708][ T5854] hub 1-1:0.0: insufficient power available to use all downstream ports
[  573.389137][ T5854] hub 1-1:0.0: hub_hub_status failed (err = -71)
[  573.405320][ T5854] hub 1-1:0.0: config failed, can't get hub status (err -71)
[  573.468476][ T5854] usb 1-1: USB disconnect, device number 16
[  573.798600][T10196] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1317'.
[  574.125427][T10205] loop1: detected capacity change from 0 to 256
[  576.582150][T10218] loop1: detected capacity change from 0 to 256
[  576.885295][T10219] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1324'.
[  578.215994][ T1195] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[  578.225966][   T23] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  578.428991][   T23] usb 2-1: Using ep0 maxpacket: 16
[  578.513839][   T23] usb 2-1: config 0 interface 0 altsetting 9 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  578.631728][   T23] usb 2-1: config 0 interface 0 has no altsetting 0
[  578.737237][   T23] usb 2-1: New USB device found, idVendor=1e7d, idProduct=30d4, bcdDevice= 0.00
[  578.919243][   T23] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  578.993577][   T23] usb 2-1: config 0 descriptor??
[  579.199330][   T27] audit: type=1326 audit(2000000075.860:596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10246 comm="syz.0.1333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  579.224450][ T1195] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  579.253660][   T27] audit: type=1326 audit(2000000075.860:597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10246 comm="syz.0.1333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  579.255988][ T1195] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  579.315933][   T27] audit: type=1326 audit(2000000075.860:598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10246 comm="syz.0.1333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  579.348401][ T1195] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  579.405991][ T1195] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  579.414436][   T27] audit: type=1326 audit(2000000075.890:599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10246 comm="syz.0.1333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  579.438312][ T1195] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  579.456568][   T23] arvo 0003:1E7D:30D4.0007: unknown main item tag 0x0
[  579.471561][   T23] arvo 0003:1E7D:30D4.0007: unknown main item tag 0x0
[  579.477156][ T1195] usb 4-1: config 0 descriptor??
[  579.478909][   T27] audit: type=1326 audit(2000000075.890:600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10246 comm="syz.0.1333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  579.521728][   T23] arvo 0003:1E7D:30D4.0007: unknown main item tag 0x0
[  579.534403][   T23] arvo 0003:1E7D:30D4.0007: unknown main item tag 0x0
[  579.541444][   T23] arvo 0003:1E7D:30D4.0007: unknown main item tag 0x0
[  579.555759][   T27] audit: type=1326 audit(2000000075.890:601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10246 comm="syz.0.1333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  579.579771][   T23] arvo 0003:1E7D:30D4.0007: hidraw0: USB HID v0.05 Device [HID 1e7d:30d4] on usb-dummy_hcd.1-1/input0
[  579.670702][   T23] usb 2-1: USB disconnect, device number 14
[  579.691617][   T27] audit: type=1326 audit(2000000075.890:602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10246 comm="syz.0.1333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  579.718290][ T1195] hub 4-1:0.0: USB hub found
[  579.795999][   T27] audit: type=1326 audit(2000000075.890:603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10246 comm="syz.0.1333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  579.845997][   T27] audit: type=1326 audit(2000000075.890:604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10246 comm="syz.0.1333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  579.929403][   T27] audit: type=1326 audit(2000000075.890:605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10246 comm="syz.0.1333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  579.952591][T10250] fido_id[10250]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  579.967433][ T1195] hub 4-1:0.0: 14 ports detected
[  579.986796][ T1195] hub 4-1:0.0: insufficient power available to use all downstream ports
[  580.129084][ T1195] hub 4-1:0.0: hub_hub_status failed (err = -71)
[  580.135693][ T1195] hub 4-1:0.0: config failed, can't get hub status (err -71)
[  580.187327][ T1195] usb 4-1: USB disconnect, device number 20
[  583.349601][T10291] loop3: detected capacity change from 0 to 256
[  583.816586][ T5878] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[  584.770353][T10298] loop1: detected capacity change from 0 to 256
[  584.815646][ T5878] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  584.843354][ T5878] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  584.864187][ T5878] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  585.089966][ T5878] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  585.175726][   T27] kauditd_printk_skb: 2 callbacks suppressed
[  585.175742][   T27] audit: type=1326 audit(2000000081.780:608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10305 comm="syz.0.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  585.326395][ T5854] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[  585.344746][   T27] audit: type=1326 audit(2000000081.780:609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10305 comm="syz.0.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  585.502809][   T27] audit: type=1326 audit(2000000081.780:610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10305 comm="syz.0.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  585.684039][ T5878] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  585.694812][ T5878] usb 3-1: config 0 descriptor??
[  585.702189][ T5878] hub 3-1:0.0: USB hub found
[  585.726055][   T27] audit: type=1326 audit(2000000081.780:611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10305 comm="syz.0.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  585.788715][ T5854] usb 4-1: Using ep0 maxpacket: 32
[  585.797144][ T5854] usb 4-1: New USB device found, idVendor=046d, idProduct=c29c, bcdDevice= 0.00
[  585.809132][ T5854] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  585.835611][   T27] audit: type=1326 audit(2000000081.780:612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10305 comm="syz.0.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  585.924199][   T27] audit: type=1326 audit(2000000081.780:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10305 comm="syz.0.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=263 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  586.023181][ T5854] usb 4-1: config 0 descriptor??
[  586.469885][   T27] audit: type=1326 audit(2000000081.780:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10305 comm="syz.0.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  586.615799][   T27] audit: type=1326 audit(2000000081.800:615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10305 comm="syz.0.1352" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  586.673778][ T5854] logitech 0003:046D:C29C.0008: unknown main item tag 0x0
[  586.704766][ T5878] hub 3-1:0.0: 14 ports detected
[  586.711357][ T5878] hub 3-1:0.0: config failed, can't get hub status (err -5)
[  586.723517][ T5854] logitech 0003:046D:C29C.0008: unknown main item tag 0x0
[  586.755666][ T5878] usb 3-1: USB disconnect, device number 25
[  586.761822][ T5854] logitech 0003:046D:C29C.0008: unknown main item tag 0x0
[  586.761855][ T5854] logitech 0003:046D:C29C.0008: unknown main item tag 0x0
[  586.761882][ T5854] logitech 0003:046D:C29C.0008: unknown main item tag 0x0
[  586.798937][ T5854] logitech 0003:046D:C29C.0008: unbalanced collection at end of report description
[  586.818441][ T5854] logitech 0003:046D:C29C.0008: parse failed
[  586.829589][ T5854] logitech: probe of 0003:046D:C29C.0008 failed with error -22
[  586.895993][ T5854] usb 4-1: USB disconnect, device number 21
[  589.549614][T10321] loop2: detected capacity change from 0 to 8192
[  589.777517][   T27] audit: type=1800 audit(2000000086.400:616): pid=10332 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1357" name="bus" dev="loop2" ino=1048639 res=0 errno=0
[  589.976890][T10340] loop3: detected capacity change from 0 to 256
[  592.019457][T10349] overlayfs: fs on './bus' does not support file handles, falling back to index=off,nfs_export=off.
[  592.046310][T10349] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior.
[  595.250795][T10376] loop3: detected capacity change from 0 to 4096
[  595.258539][T10376] EXT4-fs: Ignoring removed mblk_io_submit option
[  595.548274][T10376] EXT4-fs (loop3): Test dummy encryption mode enabled
[  595.656838][T10376] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  596.261657][ T5788] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  597.238730][T10393] serio: Serial port ptm1
[  597.416024][   T42] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  597.657315][T10405] loop3: detected capacity change from 0 to 256
[  598.818876][   T42] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  598.840917][   T42] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  598.869489][   T42] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  598.909405][   T42] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  598.935026][   T42] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  599.173238][   T42] usb 1-1: config 0 descriptor??
[  599.181461][   T42] hub 1-1:0.0: USB hub found
[  599.994599][   T42] hub 1-1:0.0: 14 ports detected
[  600.004756][   T42] hub 1-1:0.0: insufficient power available to use all downstream ports
[  600.125995][   T42] hub 1-1:0.0: hub_hub_status failed (err = -71)
[  600.132557][   T42] hub 1-1:0.0: config failed, can't get hub status (err -71)
[  600.186869][   T42] usb 1-1: USB disconnect, device number 17
[  601.836104][ T5877] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  602.046313][ T5877] usb 1-1: Using ep0 maxpacket: 32
[  602.055178][ T5877] usb 1-1: New USB device found, idVendor=046d, idProduct=c29c, bcdDevice= 0.00
[  602.056245][T10435] loop1: detected capacity change from 0 to 256
[  602.068229][ T5877] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  602.097313][ T5877] usb 1-1: config 0 descriptor??
[  603.417036][ T5877] logitech 0003:046D:C29C.0009: unknown main item tag 0x0
[  603.460216][ T5877] logitech 0003:046D:C29C.0009: unknown main item tag 0x0
[  603.519542][ T5877] logitech 0003:046D:C29C.0009: unknown main item tag 0x0
[  603.551478][ T5877] logitech 0003:046D:C29C.0009: unknown main item tag 0x0
[  603.612440][ T5877] logitech 0003:046D:C29C.0009: unknown main item tag 0x0
[  603.656011][ T5877] logitech 0003:046D:C29C.0009: unbalanced collection at end of report description
[  603.714630][ T5877] logitech 0003:046D:C29C.0009: parse failed
[  603.775994][ T5877] logitech: probe of 0003:046D:C29C.0009 failed with error -22
[  603.788733][ T5877] usb 1-1: USB disconnect, device number 18
[  606.457529][T10468] loop2: detected capacity change from 0 to 256
[  607.966090][ T5877] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[  608.052997][   T23] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  608.260947][T10488] xt_hashlimit: max too large, truncated to 1048576
[  609.045195][   T23] usb 2-1: Using ep0 maxpacket: 16
[  609.054366][   T23] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  609.084925][   T23] usb 2-1: New USB device found, idVendor=056a, idProduct=0027, bcdDevice= 0.00
[  609.117115][ T5877] usb 3-1: Using ep0 maxpacket: 32
[  609.134615][ T5877] usb 3-1: New USB device found, idVendor=046d, idProduct=c29c, bcdDevice= 0.00
[  609.137497][   T23] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  609.155018][ T5877] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  609.167768][ T5877] usb 3-1: config 0 descriptor??
[  609.386470][   T23] usb 2-1: config 0 descriptor??
[  610.288404][ T5877] logitech 0003:046D:C29C.000A: unknown main item tag 0x0
[  610.295729][ T5877] logitech 0003:046D:C29C.000A: unknown main item tag 0x0
[  610.305052][ T5877] logitech 0003:046D:C29C.000A: unknown main item tag 0x0
[  610.313899][ T5877] logitech 0003:046D:C29C.000A: unknown main item tag 0x0
[  610.321445][ T5877] logitech 0003:046D:C29C.000A: unknown main item tag 0x0
[  610.328977][ T5877] logitech 0003:046D:C29C.000A: unbalanced collection at end of report description
[  610.339633][ T5877] logitech 0003:046D:C29C.000A: parse failed
[  610.346314][ T5877] logitech: probe of 0003:046D:C29C.000A failed with error -22
[  610.361488][ T5877] usb 3-1: USB disconnect, device number 26
[  610.410769][   T23] wacom 0003:056A:0027.000B: Unknown device_type for 'HID 056a:0027'. Assuming pen.
[  610.473135][   T23] wacom 0003:056A:0027.000B: hidraw0: USB HID v0.00 Device [HID 056a:0027] on usb-dummy_hcd.1-1/input0
[  610.510462][   T23] input: Wacom Intuos5 touch M Pen as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:056A:0027.000B/input/input16
[  610.525850][T10501] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1413'.
[  610.657854][   T23] usb 2-1: USB disconnect, device number 15
[  610.744096][T10505] loop3: detected capacity change from 0 to 256
[  613.826009][T10521] xt_hashlimit: max too large, truncated to 1048576
[  615.509552][T10516] loop1: detected capacity change from 0 to 8192
[  615.598821][T10539] bridge_slave_1: left allmulticast mode
[  615.604587][T10539] bridge_slave_1: left promiscuous mode
[  615.612727][T10539] bridge0: port 2(bridge_slave_1) entered disabled state
[  615.639919][T10539] bridge_slave_0: left promiscuous mode
[  615.645764][T10539] bridge0: port 1(bridge_slave_0) entered disabled state
[  615.795653][T10543] loop3: detected capacity change from 0 to 256
[  620.660913][T10569] loop1: detected capacity change from 0 to 512
[  620.722069][T10569] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  620.817388][T10569] ext4 filesystem being mounted at /342/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  621.011798][ T5792] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  621.857059][T10580] loop1: detected capacity change from 0 to 128
[  621.929374][T10580] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  621.985067][T10580] ext4 filesystem being mounted at /344/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  623.908184][T10599] loop2: detected capacity change from 0 to 512
[  623.983664][   T27] audit: type=1326 audit(2000000120.650:617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10601 comm="syz.3.1445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd293b8ebe9 code=0x7ffc0000
[  624.016080][   T27] audit: type=1326 audit(2000000120.680:618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10601 comm="syz.3.1445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd293b8ebe9 code=0x7ffc0000
[  624.084073][T10599] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  624.130149][   T27] audit: type=1326 audit(2000000120.680:619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10601 comm="syz.3.1445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=271 compat=0 ip=0x7fd293b8ebe9 code=0x7ffc0000
[  624.166699][T10599] ext4 filesystem being mounted at /381/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  624.169448][   T27] audit: type=1326 audit(2000000120.720:620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10601 comm="syz.3.1445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd293b8ebe9 code=0x7ffc0000
[  624.201479][   T27] audit: type=1326 audit(2000000120.720:621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10601 comm="syz.3.1445" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd293b8ebe9 code=0x7ffc0000
[  624.224060][ T5792] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  624.617159][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  624.623734][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  624.970272][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  625.168718][T10612] loop3: detected capacity change from 0 to 256
[  628.170267][T10639] loop2: detected capacity change from 0 to 1024
[  628.211032][T10639] EXT4-fs: Ignoring removed orlov option
[  628.467642][T10639] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  628.755061][   T27] audit: type=1800 audit(2000000125.420:622): pid=10639 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1457" name="file1" dev="loop2" ino=15 res=0 errno=0
[  629.239191][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  629.337753][T10654] loop3: detected capacity change from 0 to 256
[  630.775385][T10668] loop3: detected capacity change from 0 to 4096
[  630.783918][T10668] EXT4-fs: Ignoring removed mblk_io_submit option
[  630.807711][T10668] EXT4-fs (loop3): Test dummy encryption mode enabled
[  630.910967][T10668] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  631.411474][T10676] loop1: detected capacity change from 0 to 512
[  631.543779][T10676] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  631.609240][T10676] ext4 filesystem being mounted at /348/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  631.993287][ T5792] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  632.624914][T10690] loop2: detected capacity change from 0 to 256
[  632.662234][ T5788] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  638.513992][T10743] IPVS: Unknown mcast interface: syzkaller1
[  639.435778][T10759] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1491'.
[  639.622108][T10764] loop2: detected capacity change from 0 to 256
[  639.646816][T10765] loop1: detected capacity change from 0 to 128
[  641.282673][T10782] loop2: detected capacity change from 0 to 512
[  641.355562][T10782] EXT4-fs: Ignoring removed orlov option
[  641.382197][T10782] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  641.533399][T10782] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002]
[  641.559901][T10782] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2244: inode #15: comm syz.2.1500: corrupted in-inode xattr: e_value size too large
[  641.608373][T10782] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.1500: couldn't read orphan inode 15 (err -117)
[  641.626701][T10782] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  641.847445][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  642.399376][T10796] loop2: detected capacity change from 0 to 512
[  642.423146][T10796] EXT4-fs: Ignoring removed oldalloc option
[  642.635013][T10796] EXT4-fs error (device loop2): ext4_xattr_inode_iget:436: comm syz.2.1503: Parent and EA inode have the same ino 15
[  643.919970][T10796] EXT4-fs error (device loop2): ext4_xattr_inode_iget:436: comm syz.2.1503: Parent and EA inode have the same ino 15
[  643.983673][T10796] EXT4-fs (loop2): 1 orphan inode deleted
[  644.086769][T10805] loop3: detected capacity change from 0 to 40427
[  644.117534][T10796] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  644.149058][T10805] F2FS-fs (loop3): Wrong secs_per_zone / total_sections (769, 24)
[  644.157056][T10805] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock
[  644.177271][T10805] F2FS-fs (loop3): invalid crc value
[  644.228965][T10805] F2FS-fs (loop3): Found nat_bits in checkpoint
[  644.565536][T10805] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0
[  644.573009][T10805] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  645.292623][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  645.336398][T10817] loop1: detected capacity change from 0 to 4096
[  645.344014][T10817] EXT4-fs: Ignoring removed mblk_io_submit option
[  645.376149][T10817] EXT4-fs (loop1): Test dummy encryption mode enabled
[  645.412015][T10817] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  645.567422][ T5792] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  646.315700][T10841] loop3: detected capacity change from 0 to 256
[  647.232250][T10846] loop2: detected capacity change from 0 to 1024
[  647.348414][T10846] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  647.596480][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  648.126876][T10856] loop3: detected capacity change from 0 to 4096
[  648.135702][T10856] EXT4-fs: Ignoring removed mblk_io_submit option
[  648.526868][T10857] loop2: detected capacity change from 0 to 40427
[  648.643727][T10856] EXT4-fs (loop3): Test dummy encryption mode enabled
[  648.662403][T10857] F2FS-fs (loop2): Wrong secs_per_zone / total_sections (769, 24)
[  648.670480][T10857] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock
[  648.736063][T10856] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  648.792925][T10857] F2FS-fs (loop2): invalid crc value
[  649.177241][T10857] F2FS-fs (loop2): Found nat_bits in checkpoint
[  649.260363][T10857] F2FS-fs (loop2): Try to recover 2th superblock, ret: 0
[  649.267561][T10857] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4
[  649.343163][ T5788] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  651.297383][   T27] audit: type=1326 audit(2000000147.960:623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10886 comm="syz.3.1529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd293b8ebe9 code=0x7ffc0000
[  651.623570][T10887] loop3: detected capacity change from 0 to 256
[  651.637788][   T27] audit: type=1326 audit(2000000147.990:624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10886 comm="syz.3.1529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd293b8ebe9 code=0x7ffc0000
[  651.730087][T10887] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xf4000b1f, utbl_chksum : 0xe619d30d)
[  651.791265][   T27] audit: type=1326 audit(2000000148.230:625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10886 comm="syz.3.1529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd293b8ebe9 code=0x7ffc0000
[  651.833220][T10889] loop1: detected capacity change from 0 to 1024
[  651.887604][T10889] EXT4-fs: Ignoring removed orlov option
[  651.894037][   T27] audit: type=1326 audit(2000000148.230:626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10886 comm="syz.3.1529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd293b8ebe9 code=0x7ffc0000
[  651.918406][   T27] audit: type=1326 audit(2000000148.230:627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10886 comm="syz.3.1529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd293b8ebe9 code=0x7ffc0000
[  652.007475][   T27] audit: type=1326 audit(2000000148.250:628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10886 comm="syz.3.1529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd293b8ebe9 code=0x7ffc0000
[  652.041750][   T27] audit: type=1326 audit(2000000148.250:629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10886 comm="syz.3.1529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd293b8ebe9 code=0x7ffc0000
[  652.042955][T10889] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a002c118, mo2=0002]
[  652.066548][   T27] audit: type=1326 audit(2000000148.250:630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10886 comm="syz.3.1529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd293b8ebe9 code=0x7ffc0000
[  652.097393][   T27] audit: type=1326 audit(2000000148.260:631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10886 comm="syz.3.1529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd293b8ebe9 code=0x7ffc0000
[  652.120580][   T27] audit: type=1326 audit(2000000148.260:632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10886 comm="syz.3.1529" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd293b8ebe9 code=0x7ffc0000
[  652.155987][T10889] System zones: 0-1, 3-12
[  652.191129][T10889] EXT4-fs (loop1): mounted filesystem 00000000-0500-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  653.145645][T10904] loop2: detected capacity change from 0 to 512
[  653.644283][T10904] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  653.883648][ T5792] EXT4-fs (loop1): unmounting filesystem 00000000-0500-0000-0000-000000000000.
[  655.401941][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  658.351032][T10935] loop2: detected capacity change from 0 to 256
[  659.292894][T10938] loop1: detected capacity change from 0 to 512
[  659.370037][T10938] EXT4-fs: Ignoring removed oldalloc option
[  659.378148][T10938] EXT4-fs: inline encryption not supported
[  659.384205][T10938] EXT4-fs: Ignoring removed mblk_io_submit option
[  659.394146][T10938] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  659.886027][T10938] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.1544: bg 0: block 64: padding at end of block bitmap is not set
[  660.001320][T10938] __quota_error: 27 callbacks suppressed
[  660.001339][T10938] Quota error (device loop1): write_blk: dquota write failed
[  660.037402][T10938] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  660.047964][T10938] EXT4-fs error (device loop1): ext4_acquire_dquot:6940: comm syz.1.1544: Failed to acquire dquot type 0
[  660.066442][T10938] EXT4-fs (loop1): 1 truncate cleaned up
[  660.085466][T10938] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  660.390581][T10950] loop2: detected capacity change from 0 to 256
[  661.562967][T10957] loop3: detected capacity change from 0 to 512
[  661.695565][T10957] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  662.418962][ T5792] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  664.787816][ T5788] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  665.242862][   T27] audit: type=1326 audit(2000000161.910:660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10985 comm="syz.0.1558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  665.244604][T10984] loop3: detected capacity change from 0 to 512
[  665.275700][   T27] audit: type=1326 audit(2000000161.910:661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10985 comm="syz.0.1558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  665.303325][T10984] EXT4-fs: Ignoring removed oldalloc option
[  665.311451][T10984] EXT4-fs: inline encryption not supported
[  665.317648][T10984] EXT4-fs: Ignoring removed mblk_io_submit option
[  665.362596][   T27] audit: type=1326 audit(2000000161.950:662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10985 comm="syz.0.1558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  665.396469][T10984] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  665.446105][   T27] audit: type=1326 audit(2000000161.950:663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10985 comm="syz.0.1558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  665.560301][T10984] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.1557: bg 0: block 64: padding at end of block bitmap is not set
[  665.586320][   T27] audit: type=1326 audit(2000000161.950:664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10985 comm="syz.0.1558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  665.596742][T10984] Quota error (device loop3): write_blk: dquota write failed
[  665.635882][   T27] audit: type=1326 audit(2000000161.950:665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10985 comm="syz.0.1558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  665.696413][T10984] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  665.726164][T10984] EXT4-fs error (device loop3): ext4_acquire_dquot:6940: comm syz.3.1557: Failed to acquire dquot type 0
[  665.750716][   T27] audit: type=1326 audit(2000000162.010:666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10985 comm="syz.0.1558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  665.778607][T10984] EXT4-fs (loop3): 1 truncate cleaned up
[  665.785739][T10984] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  665.826035][   T27] audit: type=1326 audit(2000000162.010:667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10985 comm="syz.0.1558" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  665.924833][T10998] loop1: detected capacity change from 0 to 256
[  667.430315][ T5788] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  670.480661][T11030] loop1: detected capacity change from 0 to 256
[  671.719224][T11040] loop2: detected capacity change from 0 to 512
[  671.752632][T11040] EXT4-fs: Ignoring removed oldalloc option
[  671.801609][T11040] EXT4-fs: inline encryption not supported
[  671.834395][T11040] EXT4-fs: Ignoring removed mblk_io_submit option
[  671.894528][T11040] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  672.319036][T11040] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.1573: bg 0: block 64: padding at end of block bitmap is not set
[  672.587630][T11040] Quota error (device loop2): write_blk: dquota write failed
[  672.617748][T11040] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  672.659597][T11040] EXT4-fs error (device loop2): ext4_acquire_dquot:6940: comm syz.2.1573: Failed to acquire dquot type 0
[  672.729294][T11040] EXT4-fs (loop2): 1 truncate cleaned up
[  672.759645][T11040] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  674.031153][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  674.364400][T11066] loop2: detected capacity change from 0 to 128
[  674.464922][T11066] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  674.487203][T11066] ext4 filesystem being mounted at /410/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  674.787028][ T5796] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  674.893449][T11074] loop2: detected capacity change from 0 to 256
[  677.787526][T11088] loop3: detected capacity change from 0 to 4096
[  677.795053][T11088] EXT4-fs: Ignoring removed mblk_io_submit option
[  677.908171][T11088] EXT4-fs (loop3): Test dummy encryption mode enabled
[  677.936343][T11088] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  678.960012][ T5788] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  680.591587][T11118] loop1: detected capacity change from 0 to 256
[  682.533086][T11137] loop1: detected capacity change from 0 to 512
[  682.753145][T11137] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  682.766221][T11137] ext4 filesystem being mounted at /384/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  682.877397][T11143] No source specified
[  682.883137][T11137] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1600'.
[  683.636355][ T1195] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[  683.671169][T11153] loop2: detected capacity change from 0 to 128
[  683.856145][ T1195] usb 4-1: Using ep0 maxpacket: 32
[  683.878405][ T1195] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  683.922435][ T1195] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  683.958926][ T1195] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  683.995352][ T1195] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  684.051412][ T1195] usb 4-1: config 0 descriptor??
[  684.525577][T11161] loop2: detected capacity change from 0 to 256
[  684.552435][ T1195] savu 0003:1E7D:2D5A.000C: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.3-1/input0
[  684.862650][ T5792] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  686.327355][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  686.349694][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  688.291423][T11179] 9pnet_fd: Insufficient options for proto=fd
[  688.814748][  T969] usb 4-1: USB disconnect, device number 22
[  690.052156][T11199] loop2: detected capacity change from 0 to 16
[  690.097947][T11199] erofs: (device loop2): mounted with root inode @ nid 36.
[  690.316578][T11209] loop3: detected capacity change from 0 to 256
[  692.376599][T11225] No source specified
[  692.382095][T11225] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1623'.
[  695.419905][T11242] loop1: detected capacity change from 0 to 4096
[  695.513263][T11242] EXT4-fs: Ignoring removed mblk_io_submit option
[  695.663845][T11242] EXT4-fs (loop1): Test dummy encryption mode enabled
[  695.789980][T11242] workqueue: Failed to create a rescuer kthread for wq "ext4-rsv-conversion": -EINTR
[  695.790402][T11242] EXT4-fs: failed to create workqueue
[  695.844759][T11242] EXT4-fs (loop1): mount failed
[  697.175755][T11262] loop3: detected capacity change from 0 to 256
[  698.419089][T11272] loop3: detected capacity change from 0 to 16
[  698.483700][T11272] erofs: (device loop3): mounted with root inode @ nid 36.
[  702.453365][T11304] loop2: detected capacity change from 0 to 256
[  705.229522][T11325] loop3: detected capacity change from 0 to 4096
[  705.240573][T11325] EXT4-fs: Ignoring removed mblk_io_submit option
[  705.267937][T11325] EXT4-fs (loop3): Test dummy encryption mode enabled
[  705.308801][T11325] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  706.121505][ T5788] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  706.156084][T10068] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  706.408524][T10068] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  706.429264][T10068] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  706.485875][T10068] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  706.534410][T10068] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  706.587109][T10068] usb 2-1: config 0 descriptor??
[  706.606972][T10068] hub 2-1:0.0: bad descriptor, ignoring hub
[  706.612961][T10068] hub: probe of 2-1:0.0 failed with error -5
[  706.633600][T11337] netlink: 'syz.3.1654': attribute type 3 has an invalid length.
[  708.706197][   T54] usb 2-1: USB disconnect, device number 16
[  708.733249][T11349] loop1: detected capacity change from 0 to 256
[  714.048607][T11372] loop1: detected capacity change from 0 to 4096
[  714.056288][T11372] EXT4-fs: Ignoring removed mblk_io_submit option
[  714.145268][T11372] EXT4-fs (loop1): Test dummy encryption mode enabled
[  714.210099][T11372] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  714.861427][ T5792] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  715.858335][T11382] loop2: detected capacity change from 0 to 2048
[  715.950684][T11382] EXT4-fs (loop2): cluster size (1024) smaller than block size (4096)
[  727.646355][T11470] loop1: detected capacity change from 0 to 256
[  727.846848][T11470] FAT-fs (loop1): Directory bread(block 64) failed
[  727.853617][T11470] FAT-fs (loop1): Directory bread(block 65) failed
[  727.861754][T11470] FAT-fs (loop1): Directory bread(block 66) failed
[  727.868642][T11470] FAT-fs (loop1): Directory bread(block 67) failed
[  727.875829][T11470] FAT-fs (loop1): Directory bread(block 68) failed
[  727.882547][T11470] FAT-fs (loop1): Directory bread(block 69) failed
[  727.889733][T11470] FAT-fs (loop1): Directory bread(block 70) failed
[  727.896561][T11470] FAT-fs (loop1): Directory bread(block 71) failed
[  727.903893][T11470] FAT-fs (loop1): Directory bread(block 72) failed
[  727.910667][T11470] FAT-fs (loop1): Directory bread(block 73) failed
[  728.665968][ T5854] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[  729.709084][ T5854] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  729.719827][ T5854] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  729.733671][ T5854] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  729.742984][ T5854] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  729.767045][ T5854] usb 4-1: config 0 descriptor??
[  729.816304][ T5854] hub 4-1:0.0: bad descriptor, ignoring hub
[  729.822375][ T5854] hub: probe of 4-1:0.0 failed with error -5
[  731.901803][ T1195] usb 4-1: USB disconnect, device number 23
[  734.859406][T11521] loop3: detected capacity change from 0 to 256
[  735.262679][T11521] FAT-fs (loop3): Directory bread(block 64) failed
[  735.269606][T11521] FAT-fs (loop3): Directory bread(block 65) failed
[  735.276928][T11521] FAT-fs (loop3): Directory bread(block 66) failed
[  735.283731][T11521] FAT-fs (loop3): Directory bread(block 67) failed
[  735.290911][T11521] FAT-fs (loop3): Directory bread(block 68) failed
[  735.297627][T11521] FAT-fs (loop3): Directory bread(block 69) failed
[  735.304871][T11521] FAT-fs (loop3): Directory bread(block 70) failed
[  735.311632][T11521] FAT-fs (loop3): Directory bread(block 71) failed
[  735.318906][T11521] FAT-fs (loop3): Directory bread(block 72) failed
[  735.325624][T11521] FAT-fs (loop3): Directory bread(block 73) failed
[  736.115565][T11528] loop3: detected capacity change from 0 to 256
[  736.326253][ T1195] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  737.339329][ T5854] hid-generic 0000:0004:0000.000D: unknown main item tag 0x0
[  737.352022][ T5854] hid-generic 0000:0004:0000.000D: unknown main item tag 0x0
[  737.361474][ T1195] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  737.377966][ T5854] hid-generic 0000:0004:0000.000D: unknown main item tag 0x0
[  737.391332][ T1195] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  737.405239][ T5854] hid-generic 0000:0004:0000.000D: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  737.425029][ T1195] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  737.467802][ T1195] usb 1-1: config 0 descriptor??
[  737.498380][ T1195] hub 1-1:0.0: bad descriptor, ignoring hub
[  737.504381][ T1195] hub: probe of 1-1:0.0 failed with error -5
[  737.617111][T11533] fido_id[11533]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  737.665639][T11535] input: syz1 as /devices/virtual/input/input20
[  737.888035][T11540] loop1: detected capacity change from 0 to 4096
[  737.896537][T11540] EXT4-fs: Ignoring removed mblk_io_submit option
[  737.919818][T11540] EXT4-fs (loop1): Test dummy encryption mode enabled
[  738.111904][T11540] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  738.904859][ T5792] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  739.177523][  T969] usb 1-1: USB disconnect, device number 19
[  741.256643][T11564] syz.3.1721[11564] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  741.256860][T11564] syz.3.1721[11564] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  741.393800][T11564] loop3: detected capacity change from 0 to 256
[  741.558312][T11564] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  742.214279][   T27] audit: type=1326 audit(2000000238.880:668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11572 comm="syz.0.1725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  742.283552][   T27] audit: type=1326 audit(2000000238.910:669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11572 comm="syz.0.1725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  742.313397][   T50] Bluetooth: hci3: command 0x0406 tx timeout
[  742.350537][   T27] audit: type=1326 audit(2000000238.930:670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11572 comm="syz.0.1725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  742.415855][   T27] audit: type=1326 audit(2000000238.930:671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11572 comm="syz.0.1725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  742.456159][   T27] audit: type=1326 audit(2000000238.930:672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11572 comm="syz.0.1725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  742.570527][   T27] audit: type=1326 audit(2000000238.930:673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11572 comm="syz.0.1725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  742.725218][   T27] audit: type=1326 audit(2000000238.930:674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11572 comm="syz.0.1725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  742.866099][   T27] audit: type=1326 audit(2000000238.930:675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11572 comm="syz.0.1725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  742.926012][   T27] audit: type=1326 audit(2000000238.940:676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11572 comm="syz.0.1725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  742.987332][   T27] audit: type=1326 audit(2000000238.940:677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11572 comm="syz.0.1725" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  744.167463][T11591] loop1: detected capacity change from 0 to 4096
[  744.195206][T11591] EXT4-fs (loop1): Test dummy encryption mode enabled
[  744.214634][T11591] EXT4-fs (loop1): unsupported descriptor size 255
[  745.485163][T11606] input: syz1 as /devices/virtual/input/input21
[  748.408080][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  748.414658][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  751.397374][T11654] loop3: detected capacity change from 0 to 4096
[  751.404991][T11654] EXT4-fs: Ignoring removed mblk_io_submit option
[  753.524933][T11654] EXT4-fs (loop3): Test dummy encryption mode enabled
[  753.722633][T11654] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  754.230186][ T5788] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  754.508208][T11671] loop3: detected capacity change from 0 to 256
[  754.545301][T11671] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x46ae1815, utbl_chksum : 0xe619d30d)
[  754.586211][T11671] exFAT-fs (loop3): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  754.653706][   T27] kauditd_printk_skb: 20 callbacks suppressed
[  754.653721][   T27] audit: type=1800 audit(2000000251.320:698): pid=11671 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1750" name="file1" dev="loop3" ino=1048646 res=0 errno=0
[  754.729513][T11671] syz.3.1750: attempt to access beyond end of device
[  754.729513][T11671] loop3: rw=0, sector=256, nr_sectors = 8 limit=256
[  756.182518][T11682] netlink: 76 bytes leftover after parsing attributes in process `syz.3.1754'.
[  757.175180][T11690] xt_bpf: check failed: parse error
[  758.070782][T11700] loop2: detected capacity change from 0 to 4096
[  758.076084][T11700] EXT4-fs: Ignoring removed mblk_io_submit option
[  758.188070][T11700] EXT4-fs (loop2): Test dummy encryption mode enabled
[  758.227817][T11700] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  758.963764][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  760.451358][T11724] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1767'.
[  761.225343][T11733] loop1: detected capacity change from 0 to 128
[  761.234884][T11733] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  761.282512][T11733] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  761.458121][T11662] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  763.080006][T11753] loop1: detected capacity change from 0 to 512
[  763.271184][T11753] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  763.283986][T11753] ext4 filesystem being mounted at /430/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  763.888500][ T5792] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  765.671746][T11780] loop1: detected capacity change from 0 to 1024
[  765.739302][ T5935] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  766.037175][T11789] loop3: detected capacity change from 0 to 4096
[  766.049646][T11789] EXT4-fs: Ignoring removed mblk_io_submit option
[  766.153745][T11789] EXT4-fs (loop3): Test dummy encryption mode enabled
[  766.209993][T11789] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  766.879074][ T5788] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  768.990052][T11813] loop1: detected capacity change from 0 to 1024
[  769.039275][T11813] EXT4-fs: Ignoring removed orlov option
[  769.120587][T11813] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  769.144296][   T27] audit: type=1800 audit(2000000265.810:699): pid=11813 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1791" name="file1" dev="loop1" ino=15 res=0 errno=0
[  769.364095][ T5792] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  769.810600][T11826] loop2: detected capacity change from 0 to 4096
[  769.822361][T11826] EXT4-fs: Ignoring removed mblk_io_submit option
[  769.865078][T11826] EXT4-fs (loop2): Test dummy encryption mode enabled
[  769.924658][T11826] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  772.369460][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  772.822800][T11849] loop3: detected capacity change from 0 to 512
[  772.837056][T11849] EXT4-fs: Ignoring removed bh option
[  772.869294][T11849] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  772.975097][T11849] EXT4-fs (loop3): 1 truncate cleaned up
[  772.982787][T11849] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  773.101858][T11849] EXT4-fs warning (device loop3): ext4_group_add:1742: No reserved GDT blocks, can't resize
[  773.243329][ T5788] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  773.471007][T11863] tipc: Failed to remove unknown binding: 66,1,1/0:3173037031/3173037033
[  773.565505][T11863] loop1: detected capacity change from 0 to 4096
[  773.582910][T11863] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  773.609042][T11863] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  773.787508][T11863] overlayfs: failed to resolve 'w��5�T��)�`)Y�F�nA��@T<�3�ڂ$���r�cnH�<�p�r��>�wC�" ��-������8/': -2
[  774.861655][ T5792] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  775.463305][T11876] loop1: detected capacity change from 0 to 512
[  775.546091][ T5935] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  776.540835][T11893] xt_hashlimit: size too large, truncated to 1048576
[  778.096093][T11913] loop3: detected capacity change from 0 to 256
[  778.104723][T11913] exfat: Unknown parameter '�-�ڴgB�B�gλ��#���;2��!"��|��Xa�X����������ǩ'
[  778.575970][   T23] hid-generic 0000:0004:0000.000E: unknown main item tag 0x0
[  778.629589][   T23] hid-generic 0000:0004:0000.000E: unknown main item tag 0x0
[  778.673376][   T23] hid-generic 0000:0004:0000.000E: unknown main item tag 0x0
[  778.726541][   T23] hid-generic 0000:0004:0000.000E: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  779.031183][T11916] fido_id[11916]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  779.433553][T11924] loop3: detected capacity change from 0 to 512
[  779.725722][T11910] syz.2.1823[11910] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  779.744926][T11924] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  779.769123][T11924] ext4 filesystem being mounted at /456/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  779.838955][T11910] syz.2.1823[11910] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  780.713203][ T5788] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  781.268665][T11943] loop3: detected capacity change from 0 to 256
[  781.294576][T11943] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  781.846342][   T23] usb 4-1: new high-speed USB device number 24 using dummy_hcd
[  782.287936][   T23] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  782.300796][   T23] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  782.310631][   T23] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  782.324814][   T23] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  782.334078][   T23] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  782.354416][   T23] usb 4-1: config 0 descriptor??
[  782.373994][   T23] hub 4-1:0.0: USB hub found
[  782.588714][   T23] hub 4-1:0.0: config failed, can't read hub descriptor (err -22)
[  782.643444][   T23] usb 4-1: USB disconnect, device number 24
[  782.804844][T11962] loop2: detected capacity change from 0 to 4096
[  782.836766][T11962] EXT4-fs: Ignoring removed mblk_io_submit option
[  782.852839][T11962] EXT4-fs (loop2): Test dummy encryption mode enabled
[  782.871595][T11962] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  783.318106][T11972] tipc: Failed to remove unknown binding: 66,1,1/0:2583527091/2583527093
[  783.437414][T11972] loop3: detected capacity change from 0 to 4096
[  783.463039][T11972] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  783.493966][T11972] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  783.684897][T11972] overlayfs: failed to resolve 'w��5�T��)�`)Y�F�nA��@T<�3�ڂ$���r�cnH�<�p�r��>�wC�" ��-������8/': -2
[  783.824082][ T5788] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  785.848573][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  786.671490][T11999] loop3: detected capacity change from 0 to 256
[  786.705346][T11999] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011a39, chksum : 0xd54015fb, utbl_chksum : 0xe619d30d)
[  786.766969][   T23] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  786.963412][   T23] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  786.995879][   T23] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  787.017956][   T23] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  787.065684][   T23] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  787.076724][   T23] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  787.089283][   T23] usb 2-1: config 0 descriptor??
[  787.098532][   T23] hub 2-1:0.0: USB hub found
[  787.306596][   T23] hub 2-1:0.0: config failed, can't read hub descriptor (err -22)
[  787.376840][   T23] usb 2-1: USB disconnect, device number 17
[  789.934019][T12056] syz.1.1874: attempt to access beyond end of device
[  789.934019][T12056] loop3: rw=0, sector=0, nr_sectors = 1 limit=0
[  789.947079][T12056] FAT-fs (loop3): unable to read boot sector
[  790.066733][   T23] usb 4-1: new high-speed USB device number 25 using dummy_hcd
[  790.280728][   T23] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  790.306122][   T23] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  790.334092][   T23] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  790.348510][   T23] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  790.357672][   T23] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  790.370180][   T23] usb 4-1: config 0 descriptor??
[  790.378463][   T23] hub 4-1:0.0: USB hub found
[  790.599459][   T23] hub 4-1:0.0: config failed, can't read hub descriptor (err -22)
[  790.736062][   T23] usb 4-1: USB disconnect, device number 25
[  793.365933][T10068] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[  793.580525][T10068] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  793.597923][T10068] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  793.617202][T10068] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  793.651511][T10068] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  793.664336][T10068] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  793.677374][T10068] usb 3-1: config 0 descriptor??
[  793.699200][T10068] hub 3-1:0.0: USB hub found
[  793.941893][T12107] loop1: detected capacity change from 0 to 4096
[  793.953623][T12107] EXT4-fs: Ignoring removed mblk_io_submit option
[  793.990090][T12107] EXT4-fs (loop1): Test dummy encryption mode enabled
[  794.040249][T10068] hub 3-1:0.0: config failed, can't read hub descriptor (err -22)
[  794.079210][T12107] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  794.509000][T10068] usb 3-1: USB disconnect, device number 27
[  794.759402][ T5792] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  796.172368][T12123] loop1: detected capacity change from 0 to 40427
[  796.186090][T12123] F2FS-fs (loop1): Insane cp_payload (553648128 >= 504)
[  796.201763][T12123] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  796.226608][T12123] F2FS-fs (loop1): build fault injection attr: rate: 17008, type: 0x7ffff
[  796.236437][T12123] F2FS-fs (loop1): build fault injection attr: rate: 0, type: 0x1f8
[  796.252103][T12123] F2FS-fs (loop1): invalid crc value
[  796.278603][T12123] F2FS-fs (loop1): Found nat_bits in checkpoint
[  796.343966][T12123] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  796.351354][T12123] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  796.465144][T12131] F2FS-fs (loop1): Stopped filesystem due to reason: 0
[  796.940335][T12091] netlink: 96 bytes leftover after parsing attributes in process `syz.0.1888'.
[  797.146633][T12138] loop2: detected capacity change from 0 to 256
[  797.176001][T12138] exfat: Deprecated parameter 'utf8'
[  797.181419][T12138] exfat: Deprecated parameter 'namecase'
[  797.219195][T12138] exfat: Deprecated parameter 'namecase'
[  797.224929][T12138] exfat: Deprecated parameter 'utf8'
[  797.277544][T12138] exFAT-fs (loop2): failed to load upcase table (idx : 0x00012153, chksum : 0xc9bffad0, utbl_chksum : 0xe619d30d)
[  797.612011][T12150] 9pnet_fd: Insufficient options for proto=fd
[  797.632711][T12150] netlink: 'syz.2.1908': attribute type 12 has an invalid length.
[  798.250935][T12158] loop2: detected capacity change from 0 to 40427
[  798.262195][T12158] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  798.278046][T12158] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  798.296578][T12158] F2FS-fs (loop2): Found nat_bits in checkpoint
[  798.365978][T12158] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  798.383970][T12158] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  798.594373][T12171] F2FS-fs (loop2): Unrecognized mount option "kmem_cache_free" or missing value
[  798.867647][ T5796] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  798.881277][ T5796] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  798.890765][ T5796] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  799.016854][   T54] usb 4-1: new high-speed USB device number 26 using dummy_hcd
[  799.107927][ T5796] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  799.283974][ T5796] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  799.338179][   T54] usb 4-1: Using ep0 maxpacket: 16
[  799.537048][   T54] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  799.549570][ T5796] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  799.568819][ T5796] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  799.590255][   T54] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  799.639448][   T54] usb 4-1: config 0 interface 0 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  799.708120][   T54] usb 4-1: config 0 interface 0 has no altsetting 0
[  799.714823][   T54] usb 4-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  799.761695][   T54] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  799.788198][   T54] usb 4-1: config 0 descriptor??
[  800.201565][   T54] usbhid 4-1:0.0: can't add hid device: -71
[  800.230337][   T54] usbhid: probe of 4-1:0.0 failed with error -71
[  800.256813][   T54] usb 4-1: USB disconnect, device number 26
[  800.615665][T12198] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  801.228051][T12212] loop3: detected capacity change from 0 to 4096
[  801.258042][T12212] EXT4-fs (loop3): Test dummy encryption mode enabled
[  801.295611][T12212] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  801.564196][ T5788] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  801.770174][T12225] loop3: detected capacity change from 0 to 256
[  801.783473][T12225] exfat: Deprecated parameter 'utf8'
[  801.802911][T12225] exfat: Deprecated parameter 'namecase'
[  801.815468][T12225] exfat: Deprecated parameter 'namecase'
[  801.821563][T12225] exfat: Deprecated parameter 'utf8'
[  801.839514][T12225] exFAT-fs (loop3): failed to load upcase table (idx : 0x00012153, chksum : 0xc9bffad0, utbl_chksum : 0xe619d30d)
[  802.050745][T12233] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[  802.764122][T12243] loop3: detected capacity change from 0 to 2048
[  802.808277][T12243] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  802.822998][T12243] ext4 filesystem being mounted at /485/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  802.974709][T12247] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1938'.
[  803.168810][T12249] loop2: detected capacity change from 0 to 4096
[  803.202075][T12249] EXT4-fs (loop2): Test dummy encryption mode enabled
[  803.228216][T12249] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  803.677453][ T5796] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  804.665947][   T23] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  804.863676][   T23] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  804.885523][   T23] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21
[  804.925800][   T23] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  804.945254][   T23] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  804.970979][   T23] usb 2-1: config 0 descriptor??
[  804.989586][   T23] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[  807.333347][ T5788] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  807.474503][    T8] usb 2-1: USB disconnect, device number 18
[  807.575041][T12302] input: syz1 as /devices/virtual/input/input23
[  808.654683][   T27] audit: type=1326 audit(2000000305.320:700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12320 comm="syz.0.1966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  808.713925][T12327] loop2: detected capacity change from 0 to 512
[  808.733337][   T27] audit: type=1326 audit(2000000305.320:701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12320 comm="syz.0.1966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  808.767065][T12327] ext4: Unknown parameter 'usrquota.subj_role'
[  808.796271][   T27] audit: type=1326 audit(2000000305.320:702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12320 comm="syz.0.1966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  808.904542][   T27] audit: type=1326 audit(2000000305.320:703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12320 comm="syz.0.1966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  808.941411][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  808.948107][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  809.010304][   T27] audit: type=1326 audit(2000000305.320:704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12320 comm="syz.0.1966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  809.010350][T12331] loop3: detected capacity change from 0 to 256
[  809.069844][T12333] input: syz1 as /devices/virtual/input/input24
[  809.085332][   T27] audit: type=1326 audit(2000000305.320:705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12320 comm="syz.0.1966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=312 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  809.152609][   T27] audit: type=1326 audit(2000000305.320:706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12320 comm="syz.0.1966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  809.236002][   T27] audit: type=1326 audit(2000000305.320:707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12320 comm="syz.0.1966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f42f698ebe9 code=0x7ffc0000
[  813.660549][T12366] input: syz1 as /devices/virtual/input/input25
[  814.854010][T12376] loop1: detected capacity change from 0 to 4096
[  814.874719][T12376] EXT4-fs: Ignoring removed mblk_io_submit option
[  819.331669][T12376] EXT4-fs (loop1): Test dummy encryption mode enabled
[  819.339891][T12376] workqueue: Failed to create a rescuer kthread for wq "ext4-rsv-conversion": -EINTR
[  819.340300][T12376] EXT4-fs: failed to create workqueue
[  819.355627][T12376] EXT4-fs (loop1): mount failed
[  820.723322][T12403] input: syz1 as /devices/virtual/input/input26
[  825.249735][T12450] input: syz1 as /devices/virtual/input/input27
[  825.504161][T12455] general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN
[  825.516040][T12455] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[  825.524503][T12455] CPU: 1 PID: 12455 Comm: syz.1.2002 Not tainted syzkaller #0
[  825.532008][T12455] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  825.542103][T12455] RIP: 0010:__xfrm_state_insert+0x1250/0x1700
[  825.548222][T12455] Code: 00 00 00 00 00 fc ff df 80 3c 03 00 74 08 4c 89 ff e8 d4 2d bf f8 49 8b 1f 48 89 d8 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df <80> 3c 08 00 74 08 48 89 df e8 52 2e bf f8 4c 89 2b 48 b8 00 00 00
[  825.567858][T12455] RSP: 0018:ffffc900052174e0 EFLAGS: 00010246
[  825.573941][T12455] RAX: 0000000000000000 RBX: 0000000000000000 RCX: dffffc0000000000
[  825.581933][T12455] RDX: ffffc90010833000 RSI: 00000000000249b0 RDI: 00000000000249b1
[  825.589921][T12455] RBP: 1ffff1100bac0906 R08: dffffc0000000000 R09: 0000000000000002
[  825.597914][T12455] R10: 000000000000000a R11: 0000000000000002 R12: ffff88805d604828
[  825.605908][T12455] R13: ffff88805d605428 R14: ffff88805d605400 R15: ffff88805d605430
[  825.613892][T12455] FS:  00007fb3a7ca06c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  825.622840][T12455] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  825.629447][T12455] CR2: 00007fb34b3912f8 CR3: 0000000060c36000 CR4: 00000000003506e0
[  825.637441][T12455] Call Trace:
[  825.640740][T12455]  <TASK>
[  825.643713][T12455]  ? xfrm_state_insert+0x44/0x60
[  825.648683][T12455]  xfrm_state_insert+0x54/0x60
[  825.653475][T12455]  ipcomp6_init_state+0x5ab/0x7f0
[  825.658533][T12455]  __xfrm_init_state+0xd8b/0x11c0
[  825.663577][T12455]  ? __xfrm_init_state+0x7fc/0x11c0
[  825.668792][T12455]  xfrm_init_state+0x1f/0x80
[  825.673408][T12455]  pfkey_add+0x1cee/0x2da0
[  825.677874][T12455]  ? pfkey_getspi+0xed0/0xed0
[  825.682586][T12455]  ? kmem_cache_free+0xf8/0x280
[  825.687472][T12455]  pfkey_sendmsg+0xbed/0x1050
[  825.692183][T12455]  ? pfkey_release+0x320/0x320
[  825.696987][T12455]  ? aa_sock_msg_perm+0x94/0x150
[  825.701938][T12455]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  825.707238][T12455]  ? security_socket_sendmsg+0x80/0xa0
[  825.712711][T12455]  ? pfkey_release+0x320/0x320
[  825.717488][T12455]  ____sys_sendmsg+0x5bf/0x950
[  825.722268][T12455]  ? __asan_memset+0x22/0x40
[  825.726938][T12455]  ? __sys_sendmsg_sock+0x30/0x30
[  825.732068][T12455]  ? __import_iovec+0x5f2/0x860
[  825.736945][T12455]  ? import_iovec+0x73/0xa0
[  825.741484][T12455]  ___sys_sendmsg+0x220/0x290
[  825.746181][T12455]  ? __sys_sendmsg+0x270/0x270
[  825.751003][T12455]  __se_sys_sendmsg+0x1a5/0x270
[  825.755879][T12455]  ? __x64_sys_sendmsg+0x80/0x80
[  825.760863][T12455]  ? lockdep_hardirqs_on+0x98/0x150
[  825.766193][T12455]  do_syscall_64+0x55/0xb0
[  825.770650][T12455]  ? clear_bhb_loop+0x40/0x90
[  825.775342][T12455]  ? clear_bhb_loop+0x40/0x90
[  825.780058][T12455]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  825.786004][T12455] RIP: 0033:0x7fb3a6d8ebe9
[  825.790453][T12455] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  825.810091][T12455] RSP: 002b:00007fb3a7ca0038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  825.818547][T12455] RAX: ffffffffffffffda RBX: 00007fb3a6fc6180 RCX: 00007fb3a6d8ebe9
[  825.826535][T12455] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 000000000000000c
[  825.834516][T12455] RBP: 00007fb3a6e11e19 R08: 0000000000000000 R09: 0000000000000000
[  825.842504][T12455] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  825.850497][T12455] R13: 00007fb3a6fc6218 R14: 00007fb3a6fc6180 R15: 00007ffc4b844088
[  825.858508][T12455]  </TASK>
[  825.861549][T12455] Modules linked in:
[  825.865569][T12455] ---[ end trace 0000000000000000 ]---
[  825.871097][T12455] RIP: 0010:__xfrm_state_insert+0x1250/0x1700
[  825.877244][T12455] Code: 00 00 00 00 00 fc ff df 80 3c 03 00 74 08 4c 89 ff e8 d4 2d bf f8 49 8b 1f 48 89 d8 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df <80> 3c 08 00 74 08 48 89 df e8 52 2e bf f8 4c 89 2b 48 b8 00 00 00
[  825.896927][T12455] RSP: 0018:ffffc900052174e0 EFLAGS: 00010246
[  825.903033][T12455] RAX: 0000000000000000 RBX: 0000000000000000 RCX: dffffc0000000000
[  825.911063][T12455] RDX: ffffc90010833000 RSI: 00000000000249b0 RDI: 00000000000249b1
[  825.919089][T12455] RBP: 1ffff1100bac0906 R08: dffffc0000000000 R09: 0000000000000002
[  825.927117][T12455] R10: 000000000000000a R11: 0000000000000002 R12: ffff88805d604828
[  825.935225][T12455] R13: ffff88805d605428 R14: ffff88805d605400 R15: ffff88805d605430
[  825.943247][T12455] FS:  00007fb3a7ca06c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  825.952227][T12455] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  825.958972][T12455] CR2: 00007fb34b3912f8 CR3: 0000000060c36000 CR4: 00000000003506e0
[  825.967016][T12455] Kernel panic - not syncing: Fatal exception in interrupt
[  825.974480][T12455] Kernel Offset: disabled
[  825.978811][T12455] Rebooting in 86400 seconds..