last executing test programs:

3.186839279s ago: executing program 1 (id=1825):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0xc, &(0x7f0000000240)=@assoc_value, &(0x7f00000002c0)=0x8)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000280), &(0x7f00000002c0)=0x10)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r2, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r3=>0x0}, &(0x7f00000010c0)=0x8)
setsockopt$inet_sctp_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f0000000100)=ANY=[@ANYRES32=r3], 0xc)
setsockopt$inet_sctp_SCTP_AUTH_DEACTIVATE_KEY(r0, 0x84, 0x23, &(0x7f0000000080)={r3, 0x1000}, 0x8)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000e40)={0x11, 0xb, &(0x7f0000000ac0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f00000004c0)='sched_switch\x00', r4}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002000)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
pipe(&(0x7f00000001c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000940)={<r7=>0xffffffffffffffff})
writev(r6, &(0x7f0000000400)=[{&(0x7f0000000100)="92", 0x1}], 0x1)
pipe(&(0x7f0000000340)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
write$cgroup_pid(r8, &(0x7f0000000000), 0xffffff98)
splice(r5, 0x0, r8, 0x0, 0x80, 0x4)
write(r7, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, 0xffffffffffffffff, 0x0)
r9 = syz_open_dev$usbmon(&(0x7f0000000900), 0x7, 0x0)
ioctl$MON_IOCX_MFETCH(r9, 0xc0109207, &(0x7f0000000180)={0x0, 0x0, 0xfffffffd})
ioctl$MON_IOCH_MFLUSH(r9, 0x9208, 0x4)

3.012751547s ago: executing program 0 (id=1826):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000340)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000080)='./file0\x00', 0x280008a, &(0x7f00000007c0)=ANY=[@ANYBLOB="6e6f6e756d7461696c3d302c73686f72746e616d653d77696e39352c73686f72746e616d653d6c6f7765722c696f636861727365743d64656661756c742c756e695f786c6174653d302c6e6f6e756d7461696c3d302c757466383d302c616c6c6f775f7574696d653d30303030303030303030303030303030303030303030322c726f6469722c73686f72866e616d653d6d697865642c73686f72746e616d653d6d697865642c73686f72746e616d653d77696e39352c7569643d", @ANYRESHEX=0x0, @ANYBLOB=',uni_xlate=0,utf8=0,shortname=mixed,uni_xlate=0,shortname=winnt,\x00'], 0x96, 0x2a9, &(0x7f0000000500)="$eJzs3T9ra2UYAPDnpGkSdEgEJxE8oINTabu6pEgLxUxKBnXQYluQJggtFPyDsZOri6OriyC4+SVc/AaCq+BmwcKRk5xjkt40N+m9ae+f32/p2/c8z3ue9/QtpcN58vGr/ZPDNI4vvvojGo0kKu1ox2USrahE6ZuY0v4uAICn2WWWxd/ZyDJ5SUQ0VlcWALBCS//9/2XlJQEAK/be+x+8s9Pp7L6bpo3Y63973s3/s8+/jq7vHMen0Yuj2IxmXEVk/xuN97IsG1TTXCve6A/Ou3lm/6PfivV3/ooY5m9FM1rDqen8/c7uVjoykT/I63ihuH87z9+OZrw84/77nd3tGfnRrcWbr0/UvxHN+P2T+Cx6cTgsYpQflYivt9L07ez7f778MC8vz08G5936MG4sW7vjHw0AAAAAAAAAAAAAAAAAAAAAAM+wjaJ3Tj2G/XvyqaL/ztpV/s16pKXWdH+eUX5SLnStP9Agix/K/jybaZpmReA4vxqvVKN6P7sGAAAAAAAAAAAAAAAAAACAJ8vZ51+cHPR6R6ePZVB2Ayhf67/tOu2JmddifnB9fK9KMZyzcqyVMUnE3DLyTSxc879F24PbPbqXbqr5p58XXufHh++9GKwvEPOIg/J0nRwks59hPcqZRnlIfp2MqcWC96rddClb6vjVZl5qLr332ovDwWBOTCTzCnvrz9GTK2aS67uoDZ/qzPT1YjCRPh3TWPw8578pD0h06wAAAAAAAAAAAAAAAAAAgJUav/Q74+LF3NRKVl9ZWQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABwp8af/7/EYFAkLxBci9Oze94iAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAz4H/AgAA///uD2MO")
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket(0x10, 0x3, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0}, 0x18)
dup(0xffffffffffffffff)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@ipv4_newrule={0x1c, 0x20, 0x301, 0x70bd29, 0x0, {0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1a}}, 0x1c}}, 0x0)
io_setup(0x281, &(0x7f0000000100)=<r5=>0x0)
io_submit(r5, 0x1, &(0x7f0000000a00)=[&(0x7f0000001900)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0}])

2.634887741s ago: executing program 3 (id=1827):
openat$nvram(0xffffffffffffff9c, &(0x7f0000000000), 0x88002, 0x0)
sendmsg$can_bcm(0xffffffffffffffff, 0x0, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r0, 0xffffffffffffffff, 0x0)

1.929489538s ago: executing program 1 (id=1829):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0, 0x0, 0x3}, 0x18)
syz_mount_image$vfat(&(0x7f0000001200), &(0x7f0000001240)='./bus\x00', 0x0, &(0x7f0000000780)=ANY=[@ANYRESHEX=r0], 0x3, 0x11f4, &(0x7f0000001280)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x20000000000002b8, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0, 0x8000, 0x0, 0x0, 0x41000}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xb, 0x48, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x10)
socket$pppoe(0x18, 0x1, 0x0)
r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r4, 0x40345410, &(0x7f00000083c0)={{0x1}})
r5 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000200), 0x42082)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r5, 0x40345410, &(0x7f0000000040)={{0x1, 0x2}})
ioctl$SNDRV_TIMER_IOCTL_STATUS32(r5, 0xc0f85403, &(0x7f0000000040))
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="58000000020600000000000000004faa07800500150009000040050005000a00000005000100070000007d05008087221641845758020073797ad8b60000001300dc6f22260c7ee9d1bbbc25f15321fd030068"], 0x58}}, 0x20000000)
io_uring_setup(0x25b4, &(0x7f00000002c0)={0x0, 0x1670, 0x400, 0x2, 0x3d3})
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$TIPC_CMD_DISABLE_BEARER(r8, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="01002bbd7000fddbdf25010000000000000002410000000c0013", @ANYRESDEC=r8], 0x28}, 0x1, 0x0, 0x0, 0x4000802}, 0x4008000)
sendmsg$TIPC_CMD_GET_NODES(r6, &(0x7f0000000740)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x1c, r9, 0x200, 0x70bd29, 0x25dfdbfb, {}, ["", "", "", "", "", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x4008080}, 0x80040)
r10 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001600), 0x0, 0x0)
ioctl$TCSBRKP(r10, 0x5425, 0x0)
ioctl$TCSETSW2(r10, 0x5425, 0x0)
syz_emit_ethernet(0x376, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x0)

1.921361652s ago: executing program 3 (id=1830):
r0 = socket(0x10, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000060000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000180)='kfree\x00', r2}, 0x18)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r3, &(0x7f0000000340)={0xa, 0x3, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0xfffffffe}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r3, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x1, &(0x7f0000000080)=@gcm_128={{0x304}, "a6341a1a379332f5", "1fd33c81cf7995313c09de00fd6ded74", "62266bd8", "1e00040000000100"}, 0x28)
write$binfmt_script(r3, &(0x7f0000000500)={'#! ', './file0'}, 0xb)
close_range(r0, r3, 0x0)

1.806454524s ago: executing program 0 (id=1831):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000500000002"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f00000012c0)='sys_enter\x00', r1}, 0x10)
newfstatat(0xffffffffffffff9c, 0x0, 0x0, 0x0)

1.650460521s ago: executing program 3 (id=1834):
r0 = socket(0x40000000015, 0x5, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r1, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
recvmmsg(r0, &(0x7f0000001740)=[{{0x0, 0x0, 0x0}}], 0x1, 0x2, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[], 0xc4}}, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)

1.593929588s ago: executing program 0 (id=1835):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f0000000000), 0x4)

1.47030478s ago: executing program 3 (id=1838):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00'}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
unshare(0x2040400)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[], 0x33)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000001100)={r0, 0x0, 0x0}, 0x20)

1.398673485s ago: executing program 0 (id=1839):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0xc, &(0x7f0000000240)=@assoc_value, &(0x7f00000002c0)=0x8)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000280), &(0x7f00000002c0)=0x10)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r2, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r3=>0x0}, &(0x7f00000010c0)=0x8)
setsockopt$inet_sctp_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f0000000100)=ANY=[@ANYRES32=r3], 0xc)
setsockopt$inet_sctp_SCTP_AUTH_DEACTIVATE_KEY(r0, 0x84, 0x23, &(0x7f0000000080)={r3, 0x1000}, 0x8)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000e40)={0x11, 0xb, &(0x7f0000000ac0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f00000004c0)='sched_switch\x00', r4}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002000)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
pipe(&(0x7f00000001c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000940)={<r7=>0xffffffffffffffff})
writev(r6, &(0x7f0000000400)=[{&(0x7f0000000100)="92", 0x1}], 0x1)
pipe(&(0x7f0000000340)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
write$cgroup_pid(r8, &(0x7f0000000000), 0xffffff98)
splice(r5, 0x0, r8, 0x0, 0x80, 0x4)
write(r7, 0x0, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r9 = syz_open_dev$usbmon(&(0x7f0000000900), 0x7, 0x0)
ioctl$MON_IOCX_MFETCH(r9, 0xc0109207, &(0x7f0000000180)={0x0, 0x0, 0xfffffffd})
ioctl$MON_IOCH_MFLUSH(r9, 0x9208, 0x4)

1.32049983s ago: executing program 2 (id=1841):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
syz_usb_connect$uac1(0x4, 0x71, &(0x7f0000000580)=ANY=[], 0x0)
close_range(r1, 0xffffffffffffffff, 0x200000000000000)

1.250778172s ago: executing program 3 (id=1842):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000400)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000080)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = gettid()
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
r3 = socket(0x2b, 0x6, 0x401)
ioctl$sock_inet_SIOCRTMSG(r3, 0x890d, &(0x7f0000001880)={0x0, {0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x1f}}, {0x2, 0x4e22, @loopback}, {0x2, 0x4e20, @remote}, 0x210, 0x0, 0x0, 0x0, 0x101, &(0x7f0000000800)='veth0_vlan\x00', 0x3, 0x7, 0x1000})
write$RDMA_USER_CM_CMD_GET_EVENT(r2, &(0x7f0000000300)={0xc, 0x8, 0xfa00, {0x0}}, 0x10)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002ebd700e000000001400000018000180140002006e657464657673696d30000000000000050019000000000308001500f1ffff010500180001"], 0x44}}, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r2, &(0x7f0000000700)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000006c0)={<r5=>0xffffffffffffffff}, 0x2, 0x1}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r2, &(0x7f0000000740)={0x3, 0x40, 0xfa00, {{0xa, 0x4e24, 0xffffffff, @loopback, 0x6}, {0xa, 0x4e21, 0x5, @dev={0xfe, 0x80, '\x00', 0x2c}, 0x2}, r5, 0x9}}, 0x48)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
futex(0x0, 0xd, 0x0, 0x0, 0x0, 0x2)
socket$nl_rdma(0x10, 0x3, 0x14)

946.646946ms ago: executing program 1 (id=1843):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00'}, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$fou(&(0x7f0000002b40), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r0, &(0x7f0000002c00)={0x0, 0x0, &(0x7f0000002bc0)={&(0x7f0000002b80)={0x38, r1, 0x1, 0x0, 0x0, {}, [@FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e22}, @FOU_ATTR_AF={0x5, 0x2, 0xa}, @FOU_ATTR_PEER_V6={0x14, 0x9, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}]}, 0x38}}, 0x0)

863.412451ms ago: executing program 1 (id=1845):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x11, 0x13, &(0x7f0000000080)=ANY=[@ANYBLOB="18080000000001000000000000000000851000000600000018000000", @ANYRES32=0x0, @ANYBLOB="00000000000100006608000000000000180000000000000000000000000000009500000000000000360a020000000000180100002020782500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b50a000000000000850000000600000095"], &(0x7f0000000000)='GPL\x00', 0xa, 0x0, 0x0, 0x40f00, 0x8}, 0x94)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000a80)='kfree\x00', r0, 0x0, 0xfffffffffffffffd}, 0x18)
r1 = socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x50)
socket$key(0xf, 0x3, 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, 0x0}, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)=@newsa={0x16c, 0x10, 0x713, 0x0, 0x25dfdbfc, {{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, 0x0, 0x4e21, 0x2, 0x2, 0x0, 0x0, 0x3b, 0x0, 0xee00}, {@in6=@private1, 0xfe, 0x32}, @in6=@dev={0xfe, 0x80, '\x00', 0x1b}, {0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x543}, {0x4, 0x7fffffffffffffff}, {}, 0x70bd28, 0x3500, 0xa, 0x4}, [@algo_aead={0x60, 0x12, {{'rfc4106(gcm(aes))\x00'}, 0xa0, 0x60, "217d66d38547aa140db8a200000000c538c7cb7a"}}, @encap={0x1c, 0x4, {0x2, 0x4e24, 0x4e24, @in6=@dev={0xfe, 0x80, '\x00', 0x2e}}}]}, 0x16c}, 0x1, 0x0, 0x0, 0x880}, 0x0)
sync()
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_TXQLEN={0x8, 0xd, 0x6}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0)

806.992092ms ago: executing program 4 (id=1846):
r0 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000140)={'veth0_to_team\x00', &(0x7f0000000280)=@ethtool_channels={0x3d, 0x100, 0x0, 0x0, 0x4, 0x2, 0x1}})
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x65, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000002c0)={'veth0_to_team\x00', &(0x7f0000000000)=@ethtool_cmd={0x2c, 0x4, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}})
ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000040)={'veth0_to_team\x00', 0x800})

769.079086ms ago: executing program 4 (id=1847):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r0)
sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8004}, 0x4040000)
sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[], 0x4c}, 0x1, 0x0, 0x0, 0x24008000}, 0x4040000)

699.951202ms ago: executing program 4 (id=1848):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge0\x00'})
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)

559.053757ms ago: executing program 2 (id=1849):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$GIO_UNIMAP(r0, 0x4b66, &(0x7f00000001c0)={0x0, 0x0})

503.585735ms ago: executing program 0 (id=1850):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001740)=ANY=[@ANYBLOB], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000001800)={0x11, 0xc, &(0x7f0000000c00)=ANY=[@ANYBLOB="1800000000000000000000000000000018", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
quotactl$Q_SYNC(0xffffffff80000102, 0x22, 0x0, 0x0)

484.933326ms ago: executing program 2 (id=1851):
bpf$MAP_CREATE(0x0, &(0x7f0000001780)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

434.937782ms ago: executing program 4 (id=1852):
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
move_mount(r1, 0x0, r0, 0x0, 0x46)
close(r0)

406.073903ms ago: executing program 1 (id=1853):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r2, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000100)={0x2, 0x3, 0x0, 0x0, 0xe, 0x0, 0x70bd26, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @empty}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x3, 0xc}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @mcast1}}]}, 0x70}, 0x1, 0x7}, 0x0)

361.534319ms ago: executing program 0 (id=1854):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kfree\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r2 = io_uring_setup(0x1612, &(0x7f0000000200)={0x0, 0xfffffffc, 0x1, 0x2})
io_uring_register$IORING_REGISTER_BUFFERS2(r2, 0xf, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="07000000040000000802000021", @ANYRESDEC=0x0], 0x50)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r3}, 0x18)
syz_mount_image$ext4(&(0x7f0000000080)='ext2\x00', &(0x7f0000001100)='./file1\x00', 0x800020, &(0x7f0000000200)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@usrjquota}, {@errors_remount}, {@dioread_lock}, {@max_batch_time={'max_batch_time', 0x3d, 0x5}}, {@mblk_io_submit}, {@minixdf}, {@barrier_val}, {@nombcache}, {}]}, 0x45, 0x7b6, &(0x7f0000001140)="$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")
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x16, &(0x7f0000fcb000)=0xfffffffc, 0x4)
r4 = socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r5, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000340)={'syz_tun\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x2000000, 0x0, {0x0, 0x0, 0x0, r6, {}, {}, {0xfff3}}}, 0x24}}, 0x0)

326.93709ms ago: executing program 2 (id=1855):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00'}, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$fou(&(0x7f0000002b40), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r0, &(0x7f0000002c00)={0x0, 0x0, &(0x7f0000002bc0)={&(0x7f0000002b80)={0x38, r1, 0x1, 0x0, 0x0, {}, [@FOU_ATTR_PEER_PORT={0x6, 0xa, 0x4e22}, @FOU_ATTR_AF={0x5, 0x2, 0xa}, @FOU_ATTR_PEER_V6={0x14, 0x9, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}}]}, 0x38}}, 0x0)

295.249407ms ago: executing program 4 (id=1856):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01030000000000000000010000000900010073797a310000000054000000030a01020000000000000000010000000900030073797a320000000028000480080002400000000008000140000000051400030076657468315f6d6163767461700000000900010073797a31000000004c000000050a01020000000000000000010020000c00024000000000000000010900010073797a3100000000200004801400030076657468315f6d6163767461700000000800014000000005"], 0xe8}, 0x1, 0x0, 0x0, 0x40040000}, 0x0)

294.12259ms ago: executing program 3 (id=1857):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c16, &(0x7f0000000040)={[{@nobh}, {@usrjquota}]}, 0xff, 0x240, &(0x7f00000002c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x8, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x11, 0x20000000000001d2, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000001000000000"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x30}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
ioctl$SG_NEXT_CMD_LEN(0xffffffffffffffff, 0x2283, &(0x7f0000000000)=0x3e)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
remap_file_pages(&(0x7f0000157000/0x2000)=nil, 0x1fffff, 0x0, 0x157, 0x0)
pwritev2(0xffffffffffffffff, 0x0, 0x0, 0xe7b, 0x0, 0x0)
listxattr(0x0, 0x0, 0x0)

199.768564ms ago: executing program 2 (id=1858):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r0)
sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x8004}, 0x4040000)
sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[], 0x4c}, 0x1, 0x0, 0x0, 0x24008000}, 0x4040000)

156.074628ms ago: executing program 4 (id=1859):
r0 = socket$inet6(0xa, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000c80)='./file1\x00', 0x210000, &(0x7f00000002c0)={[{@jqfmt_vfsv1}, {}, {@barrier_val}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@resuid}, {@nodiscard}, {@acl}, {@noinit_itable}]}, 0xfc, 0x572, &(0x7f0000000e40)="$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")
setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f00000002c0)=ANY=[], 0x8)
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x6000, 0x0)
setxattr$security_capability(0x0, &(0x7f0000000280), 0x0, 0x0, 0x0)
lsetxattr$security_capability(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), &(0x7f0000000040)=@v2={0x2000000, [{0x14d, 0x5}, {0x10000, 0x1}]}, 0x14, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f00000001c0)={0x30, 0x13, 0x1, 0x2, 0x25dfdbf6, "", [@typed={0x7, 0x0, 0x0, 0x0, @str='\x13\x00\x00'}, @typed={0x8, 0x3fff, 0x0, 0x0, @fd}, @nested={0x10, 0x1a, 0x0, 0x1, [@typed={0xc, 0x10c, 0x0, 0x0, @u64=0x7ff}]}]}, 0x30}], 0x1}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="1801000000000000000000006dfeff00850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
lgetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000280)=ANY=[], 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2000007, 0x31, 0xffffffffffffffff, 0x0)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000000)={0xffffffffffffffff, 0x0, &(0x7f0000001f00)=""/4090, 0x4}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000005c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), r4)
sendmsg$ETHTOOL_MSG_PAUSE_SET(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="310401080000030000001600000018000180140002006e657464657673696d3000000000000005000300010000000500040001000000050002"], 0x44}}, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000140)={r3, 0x34}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
pipe2$9p(&(0x7f0000000140)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x0)
r8 = dup(r7)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000340)={'trans=fd,', {'rfdno', 0x3d, r6}, 0x2c, {'wfdno', 0x3d, r8}, 0x2c, {[{@msize={'msize', 0x3d, 0x1000}}], [], 0x6b}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000340)='kfree\x00'}, 0x10)
r9 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r9, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newsa={0x138, 0x10, 0x713, 0x0, 0x0, {{@in=@broadcast, @in6=@remote}, {@in6=@remote, 0x0, 0x32}, @in=@dev, {}, {}, {}, 0x0, 0x0, 0xa}, [@algo_crypt={0x48, 0x2, {{'cbc(aes)\x00'}}}]}, 0x138}}, 0x0)

55.550407ms ago: executing program 1 (id=1860):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r0, 0x84, 0xc, &(0x7f0000000240)=@assoc_value, &(0x7f00000002c0)=0x8)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000280), &(0x7f00000002c0)=0x10)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r2, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r3=>0x0}, &(0x7f00000010c0)=0x8)
setsockopt$inet_sctp_SCTP_RESET_STREAMS(r1, 0x84, 0x77, &(0x7f0000000100)=ANY=[@ANYRES32=r3], 0xc)
setsockopt$inet_sctp_SCTP_AUTH_DEACTIVATE_KEY(r0, 0x84, 0x23, &(0x7f0000000080)={r3, 0x1000}, 0x8)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000e40)={0x11, 0xb, &(0x7f0000000ac0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f00000004c0)='sched_switch\x00', r4}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002000)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
pipe(&(0x7f00000001c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000940)={<r7=>0xffffffffffffffff})
writev(r6, &(0x7f0000000400)=[{&(0x7f0000000100)="92", 0x1}], 0x1)
pipe(&(0x7f0000000340)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
write$cgroup_pid(r8, &(0x7f0000000000), 0xffffff98)
splice(r5, 0x0, r8, 0x0, 0x80, 0x4)
write(r7, 0x0, 0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r9 = syz_open_dev$usbmon(&(0x7f0000000900), 0x7, 0x0)
ioctl$MON_IOCX_MFETCH(r9, 0xc0109207, &(0x7f0000000180)={0x0, 0x0, 0xfffffffd})
ioctl$MON_IOCH_MFLUSH(r9, 0x9208, 0x4)

0s ago: executing program 2 (id=1861):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r1, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r1, 0x84, 0x17, &(0x7f0000000380)=ANY=[], 0x9)

kernel console output (not intermixed with test programs):

thread+0x8a0/0xda0
[  254.605529][ T5962]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  254.605563][ T5962]  ? __kthread_parkme+0x7b/0x200
[  254.605598][ T5962]  kthread+0x70e/0x8a0
[  254.605620][ T5962]  ? __pfx_worker_thread+0x10/0x10
[  254.605640][ T5962]  ? __pfx_kthread+0x10/0x10
[  254.605660][ T5962]  ? _raw_spin_unlock_irq+0x23/0x50
[  254.605682][ T5962]  ? lockdep_hardirqs_on+0x9c/0x150
[  254.605703][ T5962]  ? __pfx_kthread+0x10/0x10
[  254.605721][ T5962]  ret_from_fork+0x3fc/0x770
[  254.605747][ T5962]  ? __pfx_ret_from_fork+0x10/0x10
[  254.605777][ T5962]  ? __switch_to_asm+0x39/0x70
[  254.605793][ T5962]  ? __switch_to_asm+0x33/0x70
[  254.605808][ T5962]  ? __pfx_kthread+0x10/0x10
[  254.605826][ T5962]  ret_from_fork_asm+0x1a/0x30
[  254.605869][ T5962]  </TASK>
[  254.605877][ T5962] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  255.291239][ T7504] ALSA: mixer_oss: invalid index 40000
[  255.393335][ T5899] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  255.412957][ T7505] netlink: 'syz.0.383': attribute type 64 has an invalid length.
[  255.454225][ T7505] netlink: 12 bytes leftover after parsing attributes in process `syz.0.383'.
[  256.779495][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  256.785858][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  256.926232][ T5899] usb 3-1: config 0 has no interfaces?
[  256.937670][ T5899] usb 3-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  257.050891][ T5899] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  257.705925][ T5899] usb 3-1: Product: syz
[  257.710124][ T5899] usb 3-1: Manufacturer: syz
[  257.715179][ T5899] usb 3-1: SerialNumber: syz
[  257.724162][ T5899] usb 3-1: config 0 descriptor??
[  257.977386][ T7517] ALSA: mixer_oss: invalid index 40000
[  259.322993][   T10] usb 3-1: USB disconnect, device number 3
[  261.068557][ T5899] usb 4-1: new full-speed USB device number 8 using dummy_hcd
[  261.241922][ T5899] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  261.436352][ T5843] Bluetooth: hci4: unexpected event for opcode 0x200d
[  261.455564][ T5899] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  261.466049][ T5899] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4
[  261.479566][ T5899] usb 4-1: New USB device found, idVendor=056a, idProduct=005d, bcdDevice= 0.00
[  261.488766][ T5899] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  261.856476][ T5899] usb 4-1: config 0 descriptor??
[  262.593070][   T24] usb 4-1: USB disconnect, device number 8
[  262.606293][ T7550] netlink: 32 bytes leftover after parsing attributes in process `syz.4.394'.
[  263.269709][ T7558] fuse: Bad value for 'fd'
[  263.603237][    T9] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  264.317848][ T5899] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  264.345642][    T9] usb 1-1: config 0 has no interfaces?
[  264.354029][    T9] usb 1-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  264.373344][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  264.406064][    T9] usb 1-1: Product: syz
[  264.410252][    T9] usb 1-1: Manufacturer: syz
[  264.446111][    T9] usb 1-1: SerialNumber: syz
[  264.456845][    T9] usb 1-1: config 0 descriptor??
[  264.496878][ T5899] usb 4-1: Using ep0 maxpacket: 16
[  264.523778][ T5899] usb 4-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  264.534242][ T5899] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  264.557117][ T5899] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  264.581322][ T7567] loop4: detected capacity change from 0 to 2048
[  264.590477][ T5899] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  264.608532][ T5899] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  264.833354][ T5899] usb 4-1: Product: syz
[  264.837651][ T5899] usb 4-1: Manufacturer: syz
[  264.842329][ T5899] usb 4-1: SerialNumber: syz
[  264.847356][ T5843] Bluetooth: hci2: unexpected event for opcode 0x200d
[  264.898536][ T7567] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  265.493786][ T5899] usb 4-1: 0:2 : does not exist
[  265.608813][ T7588] netlink: 200 bytes leftover after parsing attributes in process `syz.2.407'.
[  265.723194][   T24] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  265.930748][ T5836] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  266.044228][   T24] usb 2-1: Using ep0 maxpacket: 16
[  266.532234][   T24] usb 2-1: New USB device found, idVendor=054c, idProduct=0038, bcdDevice=16.f5
[  266.552988][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  266.564898][    C0] raw-gadget.1 gadget.3: ignoring, device is not running
[  266.573029][   T24] usb 2-1: Product: syz
[  266.581189][   T24] usb 2-1: Manufacturer: syz
[  266.583663][    C0] raw-gadget.1 gadget.3: ignoring, device is not running
[  266.592796][   T24] usb 2-1: SerialNumber: syz
[  266.605349][ T5976] usb 1-1: USB disconnect, device number 6
[  266.625622][   T24] usb 2-1: config 0 descriptor??
[  266.653565][ T5899] usb 4-1: 1:0: failed to get current value for ch 0 (-22)
[  266.737024][   T24] visor 2-1:0.0: Sony Clie 3.5 converter detected
[  267.125730][ T5899] usb 4-1: USB disconnect, device number 9
[  267.676722][ T6071] udevd[6071]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  268.038492][   T24] usb 2-1: clie_3_5_startup: get config number failed: -71
[  268.073629][   T24] visor 2-1:0.0: probe with driver visor failed with error -71
[  268.096464][   T24] usb 2-1: USB disconnect, device number 3
[  268.712628][ T5843] Bluetooth: hci4: unexpected event for opcode 0x200d
[  271.793345][   T24] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  271.963606][   T24] usb 2-1: Using ep0 maxpacket: 16
[  272.086711][   T24] usb 2-1: New USB device found, idVendor=054c, idProduct=0038, bcdDevice=16.f5
[  272.096147][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  272.104640][   T24] usb 2-1: Product: syz
[  272.110495][   T24] usb 2-1: Manufacturer: syz
[  272.115175][   T24] usb 2-1: SerialNumber: syz
[  272.314960][ T5976] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  272.392451][   T24] usb 2-1: config 0 descriptor??
[  272.416653][   T24] visor 2-1:0.0: Sony Clie 3.5 converter detected
[  272.565567][ T5976] usb 3-1: config 0 has no interfaces?
[  272.644147][ T5976] usb 3-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  272.661617][ T5976] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  272.686218][ T5976] usb 3-1: Product: syz
[  272.690448][ T5976] usb 3-1: Manufacturer: syz
[  272.695396][ T5976] usb 3-1: SerialNumber: syz
[  272.709162][ T5976] usb 3-1: config 0 descriptor??
[  272.927562][   T24] usb 2-1: clie_3_5_startup: get interface number failed: -71
[  272.944683][   T24] visor 2-1:0.0: probe with driver visor failed with error -71
[  272.957165][   T24] usb 2-1: USB disconnect, device number 4
[  273.682078][ T7643] orangefs_mount: mount request failed with -4
[  274.817556][ T5976] usb 3-1: USB disconnect, device number 4
[  275.906612][ T5843] Bluetooth: hci2: unexpected event for opcode 0x200d
[  276.555761][ T7675] team0: Port device bond0 removed
[  276.576199][ T7675] bridge_slave_0: left allmulticast mode
[  276.582101][ T7675] bridge_slave_0: left promiscuous mode
[  276.588529][ T7675] bridge0: port 1(bridge_slave_0) entered disabled state
[  276.648289][ T7675] bridge_slave_1: left allmulticast mode
[  276.654313][ T7675] bridge_slave_1: left promiscuous mode
[  276.660706][ T7675] bridge0: port 2(bridge_slave_1) entered disabled state
[  276.707611][ T7675] bond0: (slave bond_slave_0): Releasing backup interface
[  276.735174][ T7675] bond0: (slave bond_slave_1): Releasing backup interface
[  276.769552][ T7675] team0: Port device team_slave_0 removed
[  276.797952][ T7675] team0: Port device team_slave_1 removed
[  276.807707][ T7675] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  276.816522][ T7675] batman_adv: batadv0: Removing interface: batadv_slave_0
[  276.833770][ T7675] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  276.841476][ T7675] batman_adv: batadv0: Removing interface: batadv_slave_1
[  277.497429][ T7685] /dev/nullb0: Can't open blockdev
[  278.790790][   T30] kauditd_printk_skb: 47 callbacks suppressed
[  278.790802][   T30] audit: type=1326 audit(1751436259.553:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7689 comm="syz.4.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceb858e929 code=0x7ffc0000
[  278.826125][ T7690] netlink: 116 bytes leftover after parsing attributes in process `syz.4.434'.
[  278.912081][   T30] audit: type=1326 audit(1751436259.583:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7689 comm="syz.4.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=239 compat=0 ip=0x7fceb858e929 code=0x7ffc0000
[  279.029673][   T30] audit: type=1326 audit(1751436259.583:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7689 comm="syz.4.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceb858e929 code=0x7ffc0000
[  279.095312][ T7694] netlink: 28 bytes leftover after parsing attributes in process `syz.3.435'.
[  279.104467][ T7694] netlink: 28 bytes leftover after parsing attributes in process `syz.3.435'.
[  279.474275][   T30] audit: type=1326 audit(1751436259.583:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7689 comm="syz.4.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fceb858e929 code=0x7ffc0000
[  279.504133][   T30] audit: type=1326 audit(1751436259.583:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7689 comm="syz.4.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceb858e929 code=0x7ffc0000
[  279.533512][   T30] audit: type=1326 audit(1751436259.583:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7689 comm="syz.4.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fceb858e929 code=0x7ffc0000
[  279.563216][   T30] audit: type=1326 audit(1751436259.583:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7689 comm="syz.4.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceb858e929 code=0x7ffc0000
[  279.749912][ T7699] ALSA: mixer_oss: invalid index 40000
[  280.548976][   T30] audit: type=1326 audit(1751436259.583:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7689 comm="syz.4.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fceb858e929 code=0x7ffc0000
[  280.613206][   T30] audit: type=1326 audit(1751436259.583:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7689 comm="syz.4.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceb858e929 code=0x7ffc0000
[  280.635581][   T30] audit: type=1326 audit(1751436259.583:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7689 comm="syz.4.434" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fceb858e929 code=0x7ffc0000
[  280.657624][    C1] vkms_vblank_simulate: vblank timer overrun
[  280.949210][ T7706] netlink: 104 bytes leftover after parsing attributes in process `syz.3.440'.
[  283.633403][ T5976] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  284.253322][ T5976] usb 3-1: Using ep0 maxpacket: 16
[  285.000425][ T5976] usb 3-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  285.101814][ T5976] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  285.199831][ T5976] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  285.271458][ T5976] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  285.323451][ T5976] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  285.346496][ T5976] usb 3-1: Product: syz
[  285.363092][ T5976] usb 3-1: Manufacturer: syz
[  285.383881][ T5976] usb 3-1: SerialNumber: syz
[  286.118702][ T7740] netlink: 4 bytes leftover after parsing attributes in process `syz.1.449'.
[  286.137697][ T7740] erspan0: entered promiscuous mode
[  286.143554][ T7740] macvtap1: entered promiscuous mode
[  286.149061][ T7740] macvtap1: entered allmulticast mode
[  286.154919][ T7740] erspan0: entered allmulticast mode
[  286.354095][ T7741] loop3: detected capacity change from 0 to 256
[  286.381380][ T5976] usb 3-1: 0:2 : does not exist
[  286.395363][ T5976] usb 3-1: 1:0: cannot get min/max values for control 4 (id 1)
[  286.402411][ T7743] netlink: 104 bytes leftover after parsing attributes in process `syz.1.450'.
[  286.571450][ T5976] usb 3-1: USB disconnect, device number 5
[  286.764730][ T7752] fuse: Bad value for 'fd'
[  286.766517][ T6493] udevd[6493]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  289.685855][ T7784] netlink: 4 bytes leftover after parsing attributes in process `syz.2.461'.
[  290.134502][ T7784] erspan0: entered promiscuous mode
[  290.293328][ T7784] macvtap1: entered promiscuous mode
[  290.309325][ T7784] macvtap1: entered allmulticast mode
[  290.341387][ T7784] erspan0: entered allmulticast mode
[  290.559457][ T7800] netlink: 168 bytes leftover after parsing attributes in process `syz.3.465'.
[  291.429348][ T7806] netlink: 'syz.4.467': attribute type 10 has an invalid length.
[  291.473385][ T7806] 8021q: adding VLAN 0 to HW filter on device bond0
[  291.489622][ T7806] team0: Port device bond0 added
[  292.100919][ T7816] loop3: detected capacity change from 0 to 512
[  292.122645][ T7816] journal_path: Lookup failure for './file0/../file0/../file0/../file0'
[  292.143277][ T7816] EXT4-fs: error: could not find journal device path
[  294.344211][   T24] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  294.642992][   T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  294.676807][   T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  294.700088][   T24] usb 5-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  294.718802][   T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  294.742292][   T24] usb 5-1: config 0 descriptor??
[  294.934532][ T7843] fuse: Bad value for 'fd'
[  296.077757][   T24] uclogic 0003:256C:006D.0003: failed retrieving string descriptor #200: -71
[  296.117690][   T24] uclogic 0003:256C:006D.0003: failed retrieving pen parameters: -71
[  296.129785][   T24] uclogic 0003:256C:006D.0003: failed probing pen v2 parameters: -71
[  296.141087][   T24] uclogic 0003:256C:006D.0003: failed probing parameters: -71
[  296.151258][   T24] uclogic 0003:256C:006D.0003: probe with driver uclogic failed with error -71
[  296.226664][   T24] usb 5-1: USB disconnect, device number 11
[  297.470520][ T7861] netlink: 'syz.1.482': attribute type 10 has an invalid length.
[  297.565285][ T7861] 8021q: adding VLAN 0 to HW filter on device bond0
[  297.582161][ T7861] team0: Port device bond0 added
[  298.393231][ T5899] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  299.320017][ T5899] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  299.442355][ T5899] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  299.493902][ T5899] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  300.065717][ T5899] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  300.203851][ T5899] usb 3-1: config 0 descriptor??
[  300.280189][ T7892] fuse: Bad value for 'fd'
[  301.748962][ T5899] uclogic 0003:256C:006D.0004: failed retrieving string descriptor #200: -71
[  301.797611][ T5899] uclogic 0003:256C:006D.0004: failed retrieving pen parameters: -71
[  302.084644][ T5899] uclogic 0003:256C:006D.0004: failed probing pen v2 parameters: -71
[  302.097258][ T5899] uclogic 0003:256C:006D.0004: failed probing parameters: -71
[  303.129770][ T5899] uclogic 0003:256C:006D.0004: probe with driver uclogic failed with error -71
[  303.541724][ T5899] usb 3-1: USB disconnect, device number 6
[  306.391370][ T7933] sctp: failed to load transform for md5: -2
[  308.626351][ T7969] netlink: 'syz.4.511': attribute type 1 has an invalid length.
[  308.634456][ T7969] netlink: 224 bytes leftover after parsing attributes in process `syz.4.511'.
[  309.258238][ T7978] ubi: mtd0 is already attached to ubi31
[  309.508477][ T7982] loop4: detected capacity change from 0 to 4096
[  309.757572][ T7982] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  310.033257][ T7982] ntfs3(loop4): Failed to load $Extend (-22).
[  310.285893][ T7982] ntfs3(loop4): Failed to initialize $Extend.
[  312.798072][ T8007] loop4: detected capacity change from 0 to 16
[  313.615741][ T8007] erofs (device loop4): mounted with root inode @ nid 36.
[  317.476850][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  317.485784][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  317.617569][ T8018] netlink: 104 bytes leftover after parsing attributes in process `syz.0.525'.
[  318.217165][ T8034] ALSA: mixer_oss: invalid index 40000
[  319.613376][ T8032] netlink: 28 bytes leftover after parsing attributes in process `syz.1.528'.
[  319.622348][ T8032] netlink: 28 bytes leftover after parsing attributes in process `syz.1.528'.
[  320.727354][ T8046] loop3: detected capacity change from 0 to 256
[  320.799121][ T8046] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d)
[  321.078974][ T8056] exFAT-fs (loop3): error, data size is invalid(10)
[  321.089522][ T8056] exFAT-fs (loop3): error, data size is invalid(10)
[  321.538087][ T8058] xt_TCPMSS: Only works on TCP SYN packets
[  321.563219][ T5899] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  321.690706][ T8062] netlink: 4 bytes leftover after parsing attributes in process `syz.3.537'.
[  321.858712][ T5899] usb 1-1: Using ep0 maxpacket: 16
[  321.935661][ T5899] usb 1-1: New USB device found, idVendor=054c, idProduct=0038, bcdDevice=16.f5
[  321.953575][ T5899] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  321.961673][ T5899] usb 1-1: Product: syz
[  321.973313][ T5899] usb 1-1: Manufacturer: syz
[  321.978425][ T5899] usb 1-1: SerialNumber: syz
[  321.985993][ T5899] usb 1-1: config 0 descriptor??
[  322.007234][ T5899] visor 1-1:0.0: Sony Clie 3.5 converter detected
[  323.348678][ T5899] usb 1-1: clie_3_5_startup: get interface number failed: -32
[  323.369105][ T5899] visor 1-1:0.0: probe with driver visor failed with error -32
[  323.397912][ T5899] usb 1-1: USB disconnect, device number 7
[  323.588953][ T8069] /dev/nullb0: Can't open blockdev
[  324.090712][ T8075] netlink: 116 bytes leftover after parsing attributes in process `syz.1.540'.
[  324.329141][ T8080] Bluetooth: MGMT ver 1.23
[  330.158523][ T8115] netlink: 4 bytes leftover after parsing attributes in process `syz.1.549'.
[  331.301401][ T8143] netlink: 'syz.1.559': attribute type 1 has an invalid length.
[  331.309195][ T8143] netlink: 224 bytes leftover after parsing attributes in process `syz.1.559'.
[  333.022493][ T8154] loop3: detected capacity change from 0 to 256
[  333.607605][ T8154] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d)
[  334.218347][ T8162] exFAT-fs (loop3): error, data size is invalid(10)
[  334.226902][ T8162] exFAT-fs (loop3): error, data size is invalid(10)
[  334.276635][ T8160] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  334.523380][ T5976] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  334.735867][ T5976] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  334.805342][ T5976] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  334.848890][ T5976] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  334.903601][ T5976] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  335.117865][ T5976] usb 3-1: config 0 descriptor??
[  335.818979][   T30] kauditd_printk_skb: 17 callbacks suppressed
[  335.818997][   T30] audit: type=1326 audit(1751436316.583:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8180 comm="syz.3.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48e9b8e929 code=0x7ffc0000
[  335.853782][   T30] audit: type=1326 audit(1751436316.583:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8180 comm="syz.3.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48e9b8e929 code=0x7ffc0000
[  335.887316][ T8181] netlink: 116 bytes leftover after parsing attributes in process `syz.3.571'.
[  335.935817][   T30] audit: type=1326 audit(1751436316.623:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8180 comm="syz.3.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=239 compat=0 ip=0x7f48e9b8e929 code=0x7ffc0000
[  336.283475][ T5976] usb 3-1: string descriptor 0 read error: -71
[  336.436868][ T5976] uclogic 0003:256C:006D.0005: failed retrieving string descriptor #200: -71
[  336.463016][   T30] audit: type=1326 audit(1751436316.623:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8180 comm="syz.3.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48e9b8e929 code=0x7ffc0000
[  336.493217][   T30] audit: type=1326 audit(1751436316.623:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8180 comm="syz.3.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f48e9b8e929 code=0x7ffc0000
[  336.496672][ T5976] uclogic 0003:256C:006D.0005: failed retrieving pen parameters: -71
[  336.567992][ T5976] uclogic 0003:256C:006D.0005: failed probing pen v2 parameters: -71
[  336.582908][ T5976] uclogic 0003:256C:006D.0005: failed probing parameters: -71
[  336.588018][   T30] audit: type=1326 audit(1751436316.623:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8180 comm="syz.3.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48e9b8e929 code=0x7ffc0000
[  336.592532][ T5976] uclogic 0003:256C:006D.0005: probe with driver uclogic failed with error -71
[  336.643299][   T30] audit: type=1326 audit(1751436316.623:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8180 comm="syz.3.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f48e9b8e929 code=0x7ffc0000
[  336.686772][ T5976] usb 3-1: USB disconnect, device number 7
[  336.939131][   T30] audit: type=1326 audit(1751436316.623:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8180 comm="syz.3.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48e9b8e929 code=0x7ffc0000
[  336.961506][   T30] audit: type=1326 audit(1751436316.623:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8180 comm="syz.3.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f48e9b8e929 code=0x7ffc0000
[  337.857052][   T30] audit: type=1326 audit(1751436316.623:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8180 comm="syz.3.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48e9b8e929 code=0x7ffc0000
[  338.046897][ T8201] netlink: 4 bytes leftover after parsing attributes in process `syz.3.576'.
[  338.308019][ T8209] loop4: detected capacity change from 0 to 128
[  343.015043][ T8239] ALSA: mixer_oss: invalid index 40000
[  346.783256][   T30] kauditd_printk_skb: 17 callbacks suppressed
[  346.783273][   T30] audit: type=1326 audit(1751436327.543:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8262 comm="syz.2.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63a298e929 code=0x7ffc0000
[  346.831657][ T8265] netlink: 116 bytes leftover after parsing attributes in process `syz.2.596'.
[  347.594427][   T30] audit: type=1326 audit(1751436327.543:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8262 comm="syz.2.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63a298e929 code=0x7ffc0000
[  347.616732][    C0] vkms_vblank_simulate: vblank timer overrun
[  347.705942][ T8276] ALSA: mixer_oss: invalid index 40000
[  349.134558][   T30] audit: type=1326 audit(1751436327.543:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8262 comm="syz.2.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=239 compat=0 ip=0x7f63a298e929 code=0x7ffc0000
[  349.530157][   T30] audit: type=1326 audit(1751436327.543:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8262 comm="syz.2.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63a298e929 code=0x7ffc0000
[  349.609949][   T30] audit: type=1326 audit(1751436327.543:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8262 comm="syz.2.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f63a298e929 code=0x7ffc0000
[  349.632138][    C0] vkms_vblank_simulate: vblank timer overrun
[  349.969725][   T30] audit: type=1326 audit(1751436327.543:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8262 comm="syz.2.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63a298e929 code=0x7ffc0000
[  350.000917][   T30] audit: type=1326 audit(1751436327.543:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8262 comm="syz.2.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f63a298e929 code=0x7ffc0000
[  350.042231][   T30] audit: type=1326 audit(1751436327.543:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8262 comm="syz.2.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63a298e929 code=0x7ffc0000
[  350.064464][    C0] vkms_vblank_simulate: vblank timer overrun
[  350.103525][   T30] audit: type=1326 audit(1751436327.583:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8262 comm="syz.2.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f63a298e929 code=0x7ffc0000
[  350.132244][   T30] audit: type=1326 audit(1751436327.583:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8262 comm="syz.2.596" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63a298e929 code=0x7ffc0000
[  353.246439][ T8319] xt_TCPMSS: Only works on TCP SYN packets
[  358.673780][ T5900] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  358.925252][ T5900] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  358.990007][ T5900] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  359.060659][ T5900] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  359.131697][ T5900] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  359.255794][ T5900] usb 3-1: config 0 descriptor??
[  359.476056][ T8376] netlink: 4 bytes leftover after parsing attributes in process `syz.3.628'.
[  360.190745][ T8382] loop4: detected capacity change from 0 to 2048
[  360.259361][ T8382] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  360.351398][ T5900] usb 3-1: string descriptor 0 read error: -71
[  360.362454][ T5900] uclogic 0003:256C:006D.0006: failed retrieving string descriptor #200: -71
[  360.376266][ T5900] uclogic 0003:256C:006D.0006: failed retrieving pen parameters: -71
[  360.388134][ T5900] uclogic 0003:256C:006D.0006: failed probing pen v2 parameters: -71
[  360.400510][ T5900] uclogic 0003:256C:006D.0006: failed probing parameters: -71
[  360.409833][ T5900] uclogic 0003:256C:006D.0006: probe with driver uclogic failed with error -71
[  360.424262][ T5900] usb 3-1: USB disconnect, device number 8
[  360.558754][ T8394] loop3: detected capacity change from 0 to 512
[  360.572416][ T8394] journal_path: Lookup failure for './file0/../file0/../file0/../file0'
[  361.021887][ T8396] xt_cgroup: path and classid specified
[  361.057548][ T8394] EXT4-fs: error: could not find journal device path
[  361.068527][ T5836] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  363.405853][ T8414] 9pnet_fd: Insufficient options for proto=fd
[  364.464145][ T8431] xt_cgroup: path and classid specified
[  366.040878][ T5847] Bluetooth: hci4: command 0x0406 tx timeout
[  366.356209][ T8451] xt_cgroup: path and classid specified
[  368.535560][ T5900] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  369.301996][ T5900] usb 5-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  369.311299][ T5900] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  369.436028][ T5900] usb 5-1: config 0 descriptor??
[  370.414125][ T5900] elan 0003:04F3:0755.0007: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.4-1/input0
[  370.538780][ T5900] usb 5-1: USB disconnect, device number 12
[  370.833649][ T8498] netlink: 8 bytes leftover after parsing attributes in process `syz.3.656'.
[  371.484505][ T8494] fido_id[8494]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory
[  372.357069][ T8509] netlink: 4 bytes leftover after parsing attributes in process `syz.0.661'.
[  372.374096][ T8509] macvtap2: entered promiscuous mode
[  372.379406][ T8509] bond0: entered promiscuous mode
[  372.393322][ T8509] macvtap2: entered allmulticast mode
[  372.398726][ T8509] bond0: entered allmulticast mode
[  372.408032][ T8509] 8021q: adding VLAN 0 to HW filter on device macvtap2
[  374.089801][ T8533] xt_TCPMSS: Only works on TCP SYN packets
[  374.258216][ T8535] xt_TCPMSS: Only works on TCP SYN packets
[  376.730683][ T8548] netlink: 8 bytes leftover after parsing attributes in process `syz.1.670'.
[  377.146012][ T8552] netlink: 4 bytes leftover after parsing attributes in process `syz.0.675'.
[  377.186120][ T8552] macvtap3: entered promiscuous mode
[  377.303429][ T8552] macvtap3: entered allmulticast mode
[  377.367697][ T8552] 8021q: adding VLAN 0 to HW filter on device macvtap3
[  378.224738][   T30] kauditd_printk_skb: 17 callbacks suppressed
[  378.224755][   T30] audit: type=1326 audit(1751436358.993:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8569 comm="syz.0.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  378.278136][   T30] audit: type=1326 audit(1751436358.993:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8569 comm="syz.0.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  378.301707][ T8571] netlink: 116 bytes leftover after parsing attributes in process `syz.0.681'.
[  378.323445][   T30] audit: type=1326 audit(1751436359.043:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8569 comm="syz.0.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=239 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  378.508589][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  378.515283][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  378.866371][   T30] audit: type=1326 audit(1751436359.043:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8569 comm="syz.0.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  378.888659][   T30] audit: type=1326 audit(1751436359.043:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8569 comm="syz.0.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  378.911264][   T30] audit: type=1326 audit(1751436359.043:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8569 comm="syz.0.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  378.934972][   T30] audit: type=1326 audit(1751436359.043:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8569 comm="syz.0.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  378.957898][   T30] audit: type=1326 audit(1751436359.043:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8569 comm="syz.0.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  378.985245][   T30] audit: type=1326 audit(1751436359.043:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8569 comm="syz.0.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  379.106216][   T30] audit: type=1326 audit(1751436359.043:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8569 comm="syz.0.681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  379.170298][ T8574] netlink: 'syz.0.682': attribute type 1 has an invalid length.
[  379.266877][ T8580] netlink: 8 bytes leftover after parsing attributes in process `syz.0.682'.
[  379.289733][ T8580] netlink: 16 bytes leftover after parsing attributes in process `syz.0.682'.
[  379.492823][ T8585] netlink: 8 bytes leftover after parsing attributes in process `syz.2.683'.
[  380.056302][ T8587] netlink: 28 bytes leftover after parsing attributes in process `syz.0.682'.
[  380.576054][ T8587] 8021q: adding VLAN 0 to HW filter on device bond1
[  380.683250][ T8593] xt_cgroup: path and classid specified
[  381.953533][ T5976] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  382.459762][ T5976] usb 3-1: config 0 has no interfaces?
[  382.551386][ T5976] usb 3-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  382.718618][ T5976] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  382.733747][ T5976] usb 3-1: Product: syz
[  382.737945][ T5976] usb 3-1: Manufacturer: syz
[  382.742541][ T5976] usb 3-1: SerialNumber: syz
[  382.831030][ T8611] ubi: mtd0 is already attached to ubi31
[  383.396889][ T5976] usb 3-1: config 0 descriptor??
[  383.519003][ T8615] ALSA: mixer_oss: invalid index 40000
[  385.376101][ T8619] netlink: 8 bytes leftover after parsing attributes in process `syz.0.691'.
[  385.877244][ T5976] usb 3-1: USB disconnect, device number 9
[  386.724115][ T8633] xt_cgroup: path and classid specified
[  386.842146][ T8630] loop4: detected capacity change from 0 to 512
[  386.856461][ T8630] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  386.869712][ T8630] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  386.998345][ T8630] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2848: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  387.012207][ T8630] EXT4-fs (loop4): 1 truncate cleaned up
[  387.030299][ T8630] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  387.763284][ T8636] netlink: 'syz.2.698': attribute type 1 has an invalid length.
[  387.877820][ T5836] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  387.961054][ T8641] netlink: 8 bytes leftover after parsing attributes in process `syz.2.698'.
[  387.970368][ T8641] netlink: 16 bytes leftover after parsing attributes in process `syz.2.698'.
[  389.204034][ T8636] netlink: 28 bytes leftover after parsing attributes in process `syz.2.698'.
[  389.358298][ T8636] 8021q: adding VLAN 0 to HW filter on device bond1
[  389.772937][ T8661] loop3: detected capacity change from 0 to 2048
[  389.802318][ T8661] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  390.043644][ T5921] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  390.147222][ T5833] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  390.245522][ T8669] loop4: detected capacity change from 0 to 256
[  390.508016][ T5921] usb 2-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  390.526858][ T5921] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  390.590046][ T8671] /dev/nullb0: Can't open blockdev
[  391.162114][ T5921] usb 2-1: config 0 descriptor??
[  391.173716][ T5921] usb 2-1: can't set config #0, error -71
[  391.183436][ T5921] usb 2-1: USB disconnect, device number 5
[  391.765831][  T979] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  392.156764][ T8685] loop4: detected capacity change from 0 to 512
[  392.179952][ T8685] EXT4-fs: Ignoring removed i_version option
[  392.204445][ T8685] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  392.225850][  T979] usb 3-1: config 0 has no interfaces?
[  392.260552][  T979] usb 3-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  392.320457][  T979] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  392.334020][  T979] usb 3-1: Product: syz
[  392.336941][ T8685] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  392.338620][  T979] usb 3-1: Manufacturer: syz
[  392.355980][  T979] usb 3-1: SerialNumber: syz
[  392.369313][  T979] usb 3-1: config 0 descriptor??
[  392.577181][ T8685] ext4 filesystem being mounted at /136/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  393.576423][ T8685] EXT4-fs error (device loop4): ext4_do_update_inode:5567: inode #2: comm syz.4.710: corrupted inode contents
[  393.585581][ T5859] usb 3-1: USB disconnect, device number 10
[  393.612194][ T8685] EXT4-fs (loop4): Remounting filesystem read-only
[  393.680986][ T8685] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  394.167099][ T3564] __quota_error: 17 callbacks suppressed
[  394.167118][ T3564] Quota error (device loop4): dquot_write_dquot: Can't write quota structure (error -30). Quota may get out of sync!
[  395.912932][ T8714] af_packet: tpacket_rcv: packet too big, clamped from 65024 to 3952. macoff=96
[  395.933388][ T8714] netlink: 'syz.0.717': attribute type 1 has an invalid length.
[  396.024129][ T8721] 8021q: adding VLAN 0 to HW filter on device bond0
[  396.039040][ T8721] bond0: (slave rose0): Enslaving as an active interface with an up link
[  396.096759][ T8714] ipvlan2: entered promiscuous mode
[  396.112080][ T8714] ipvlan2: entered allmulticast mode
[  396.120870][ T8714] ip6gretap0: entered allmulticast mode
[  396.752266][ T8743] netlink: 8 bytes leftover after parsing attributes in process `syz.0.721'.
[  398.074185][ T8755] block device autoloading is deprecated and will be removed.
[  398.131179][ T8753] loop3: detected capacity change from 0 to 512
[  398.222522][ T8753] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  398.362466][ T8753] ext4 filesystem being mounted at /127/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  398.521094][ T8753] netlink: 'syz.3.723': attribute type 1 has an invalid length.
[  398.788281][ T8757] ipvlan2: entered promiscuous mode
[  398.828084][ T8757] ipvlan2: entered allmulticast mode
[  398.861335][ T8757] ip6gretap0: entered allmulticast mode
[  399.095241][ T5833] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  402.177992][ T8801] loop3: detected capacity change from 0 to 8
[  402.704968][  T979] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  402.770315][ T8809] netlink: 156 bytes leftover after parsing attributes in process `syz.0.734'.
[  402.905590][  T979] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  402.959580][  T979] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  403.033474][  T979] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  403.194066][  T979] usb 4-1: SerialNumber: syz
[  404.543817][ T8824] vlan2: entered promiscuous mode
[  404.548926][ T8824] bridge0: entered promiscuous mode
[  404.663857][ T5921] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  404.674112][  T979] usb 4-1: can't set config #1, error -71
[  404.681441][  T979] usb 4-1: USB disconnect, device number 10
[  404.923358][ T5921] usb 2-1: Using ep0 maxpacket: 16
[  404.963065][ T5921] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  404.993781][ T5921] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  405.029283][ T5921] usb 2-1: New USB device found, idVendor=054c, idProduct=002e, bcdDevice= 1.26
[  405.048866][ T5921] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  405.057963][ T5921] usb 2-1: Product: syz
[  405.062133][ T5921] usb 2-1: Manufacturer: syz
[  405.067064][ T2151] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  405.078526][ T5921] usb 2-1: SerialNumber: syz
[  405.103263][ T5921] usb 2-1: config 0 descriptor??
[  405.554609][ T2151] usb 3-1: config 0 has no interfaces?
[  405.632730][ T2151] usb 3-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  405.686691][ T2151] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  405.698311][ T5921] usb 2-1: USB disconnect, device number 6
[  405.721761][ T2151] usb 3-1: Product: syz
[  405.749867][ T2151] usb 3-1: Manufacturer: syz
[  405.761189][ T2151] usb 3-1: SerialNumber: syz
[  405.781314][ T2151] usb 3-1: config 0 descriptor??
[  406.700036][ T5921] usb 3-1: USB disconnect, device number 11
[  407.523419][  T979] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  407.773217][  T979] usb 4-1: Using ep0 maxpacket: 32
[  407.790753][  T979] usb 4-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  407.812474][  T979] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  408.814724][  T979] usb 4-1: config 0 descriptor??
[  409.791526][  T979] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  409.815243][  T979] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  409.826936][  T979] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  409.839659][  T979] usb 4-1: media controller created
[  410.759335][ T5976] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  410.804934][  T979] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  414.494901][ T8907] netlink: 4 bytes leftover after parsing attributes in process `syz.4.753'.
[  414.561889][  T979] az6027: usb out operation failed. (-71)
[  414.574470][  T979] az6027: usb out operation failed. (-71)
[  414.580209][  T979] stb0899_attach: Driver disabled by Kconfig
[  414.588030][  T979] az6027: no front-end attached
[  414.588030][  T979] 
[  414.597029][  T979] az6027: usb out operation failed. (-71)
[  414.602771][  T979] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  414.619891][  T979] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.3/usb4/4-1/input/input8
[  414.647491][  T979] dvb-usb: schedule remote query interval to 400 msecs.
[  414.662186][  T979] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  414.713569][  T979] usb 4-1: USB disconnect, device number 11
[  414.867475][ T8364] udevd[8364]: setting owner of /dev/input/event4 to uid=0, gid=104 failed: No such file or directory
[  415.846750][ T2151] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  415.988748][  T979] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  416.023226][ T2151] usb 3-1: Using ep0 maxpacket: 16
[  416.042120][ T2151] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  416.071184][ T2151] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  416.094461][ T2151] usb 3-1: New USB device found, idVendor=054c, idProduct=002e, bcdDevice= 1.26
[  416.114048][ T2151] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  416.125024][ T2151] usb 3-1: Product: syz
[  416.129555][ T2151] usb 3-1: Manufacturer: syz
[  416.134644][ T2151] usb 3-1: SerialNumber: syz
[  416.173020][ T2151] usb 3-1: config 0 descriptor??
[  416.289572][   T30] audit: type=1326 audit(1751436397.053:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8932 comm="syz.1.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef4c78e929 code=0x7ffc0000
[  416.320916][ T8933] netlink: 116 bytes leftover after parsing attributes in process `syz.1.760'.
[  416.333056][   T30] audit: type=1326 audit(1751436397.073:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8932 comm="syz.1.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=239 compat=0 ip=0x7fef4c78e929 code=0x7ffc0000
[  416.366028][   T30] audit: type=1326 audit(1751436397.073:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8932 comm="syz.1.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef4c78e929 code=0x7ffc0000
[  416.548527][   T30] audit: type=1326 audit(1751436397.083:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8932 comm="syz.1.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef4c78e929 code=0x7ffc0000
[  416.558138][  T979] usb 3-1: USB disconnect, device number 13
[  416.770556][   T30] audit: type=1326 audit(1751436397.083:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8932 comm="syz.1.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fef4c78e929 code=0x7ffc0000
[  416.994056][   T30] audit: type=1326 audit(1751436397.083:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8932 comm="syz.1.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef4c78e929 code=0x7ffc0000
[  417.016277][    C0] vkms_vblank_simulate: vblank timer overrun
[  417.036784][   T30] audit: type=1326 audit(1751436397.083:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8932 comm="syz.1.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fef4c78e929 code=0x7ffc0000
[  417.096342][   T30] audit: type=1326 audit(1751436397.083:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8932 comm="syz.1.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef4c78e929 code=0x7ffc0000
[  417.118534][    C0] vkms_vblank_simulate: vblank timer overrun
[  417.511027][   T30] audit: type=1326 audit(1751436397.083:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8932 comm="syz.1.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fef4c78e929 code=0x7ffc0000
[  417.533180][    C0] vkms_vblank_simulate: vblank timer overrun
[  417.615502][   T30] audit: type=1326 audit(1751436397.083:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8932 comm="syz.1.760" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef4c78e929 code=0x7ffc0000
[  418.852239][ T8954] loop3: detected capacity change from 0 to 256
[  421.550088][ T8982] netlink: 8 bytes leftover after parsing attributes in process `syz.2.772'.
[  421.687853][ T8982] netlink: 20 bytes leftover after parsing attributes in process `syz.2.772'.
[  421.712232][ T8982] syz_tun: entered promiscuous mode
[  421.763218][ T5900] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  422.519447][ T5900] usb 2-1: Using ep0 maxpacket: 16
[  422.526515][ T5900] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  422.563177][ T5900] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  422.585206][ T5900] usb 2-1: New USB device found, idVendor=054c, idProduct=002e, bcdDevice= 1.26
[  422.613230][ T5900] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  422.621240][ T5900] usb 2-1: Product: syz
[  423.386086][ T5900] usb 2-1: Manufacturer: syz
[  423.390717][ T5900] usb 2-1: SerialNumber: syz
[  423.536284][ T5900] usb 2-1: config 0 descriptor??
[  423.751895][ T8836] usb 2-1: USB disconnect, device number 7
[  424.683368][ T9008] overlayfs: failed to clone upperpath
[  425.742532][ T9022] netlink: 8 bytes leftover after parsing attributes in process `syz.3.780'.
[  426.621214][ T9030] loop3: detected capacity change from 0 to 512
[  426.698693][ T9030] journal_path: Lookup failure for './file0/../file0/../file0/../file0'
[  426.791249][ T9030] EXT4-fs: error: could not find journal device path
[  427.647629][ T9043] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  429.478922][ T9050] loop1: detected capacity change from 0 to 256
[  431.403931][ T9091] netlink: 8 bytes leftover after parsing attributes in process `syz.0.801'.
[  431.597999][ T9088] loop3: detected capacity change from 0 to 4096
[  431.634728][ T9094] netlink: 'syz.4.805': attribute type 1 has an invalid length.
[  431.636336][ T9088] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[  431.699207][ T9088] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 4096)
[  431.725680][ T8364] udevd[8364]: incorrect nilfs2 checksum on /dev/loop3
[  431.834620][ T9096] netlink: 28 bytes leftover after parsing attributes in process `syz.4.805'.
[  431.843862][ T9098] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  431.885215][ T9096] 8021q: adding VLAN 0 to HW filter on device bond1
[  433.006054][ T9113] netlink: 8 bytes leftover after parsing attributes in process `syz.4.810'.
[  437.121772][ T9157] overlayfs: failed to clone upperpath
[  437.852434][ T9152] loop3: detected capacity change from 0 to 131072
[  437.922596][ T9152] F2FS-fs (loop3): Wrong CP boundary, start(512) end(1536) blocks(0)
[  437.930809][ T9152] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  437.949667][ T9152] F2FS-fs (loop3): invalid crc value
[  438.511773][ T9152] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  438.518996][ T9152] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  440.257892][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  440.264947][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  440.979745][ T9169] ptrace attach of ""[9186] was attempted by "./syz-executor exec"[9169]
[  441.961448][ T9200] netlink: 8 bytes leftover after parsing attributes in process `syz.4.830'.
[  444.064136][ T9219] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  446.083098][ T9224] loop3: detected capacity change from 0 to 131072
[  446.126837][ T9224] F2FS-fs (loop3): Wrong CP boundary, start(512) end(1536) blocks(0)
[  446.135086][ T9224] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  446.155390][ T9224] F2FS-fs (loop3): invalid crc value
[  446.296075][ T9226] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=none:owns=io+mem
[  446.396433][ T9224] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  446.403568][ T9224] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  447.150628][ T9243] loop1: detected capacity change from 0 to 512
[  448.334213][ T9243] EXT4-fs: Ignoring removed i_version option
[  448.635447][ T9243] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  449.647254][ T9243] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  449.678701][ T9243] ext4 filesystem being mounted at /156/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  449.964987][ T5835] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  451.053354][ T5976] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  451.254060][ T9281] netlink: 8 bytes leftover after parsing attributes in process `syz.2.851'.
[  451.265959][ T5976] usb 2-1: config index 0 descriptor too short (expected 45, got 36)
[  451.341902][ T5976] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  451.535125][ T5976] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  451.874258][ T5976] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  451.906082][ T5976] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  451.933196][ T5976] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  451.942247][ T5976] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  452.025869][ T5976] usb 2-1: config 0 descriptor??
[  452.073862][ T9277] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  452.542588][ T9286] No such timeout policy "syz0"
[  452.736356][ T5976] usbhid 2-1:0.0: can't add hid device: -71
[  452.743602][ T5976] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  452.838614][ T5976] usb 2-1: USB disconnect, device number 8
[  461.694947][ T9349] netlink: 'syz.4.867': attribute type 1 has an invalid length.
[  461.863017][ T5843] Bluetooth: hci1: unexpected event for opcode 0x1003
[  461.923410][ T9355] netlink: 28 bytes leftover after parsing attributes in process `syz.4.867'.
[  461.950164][ T9355] 8021q: adding VLAN 0 to HW filter on device bond2
[  462.269521][ T9358] loop3: detected capacity change from 0 to 256
[  465.140009][ T5843] Bluetooth: hci3: unexpected event for opcode 0x1003
[  465.222843][ T9393] binder_alloc: 9374: binder_alloc_buf, no vma
[  466.126689][ T5843] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  466.135461][ T5843] Bluetooth: hci1: Injecting HCI hardware error event
[  466.144424][ T5847] Bluetooth: hci1: hardware error 0x00
[  466.342952][ T2151] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  467.034142][ T9398] loop1: detected capacity change from 0 to 131072
[  467.063769][ T2151] usb 3-1: Using ep0 maxpacket: 32
[  467.383814][ T9398] F2FS-fs (loop1): Wrong CP boundary, start(512) end(1536) blocks(0)
[  467.387142][ T2151] usb 3-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[  467.391964][ T9398] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  467.424887][ T9398] F2FS-fs (loop1): invalid crc value
[  467.596543][ T9398] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  467.604353][ T9404] netlink: 8 bytes leftover after parsing attributes in process `syz.0.881'.
[  467.613204][ T9398] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4
[  467.613926][ T2151] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  467.750918][ T2151] usb 3-1: config 0 descriptor??
[  468.206685][ T2151] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[  468.274164][ T2151] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  468.339649][ T2151] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[  468.758607][ T2151] usb 3-1: media controller created
[  468.807958][ T2151] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  469.110204][ T9421] xt_TCPMSS: Only works on TCP SYN packets
[  469.153716][ T5843] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  469.213469][ T5843] Bluetooth: hci3: Injecting HCI hardware error event
[  469.223830][ T5843] Bluetooth: hci3: hardware error 0x00
[  469.476166][ T5847] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  470.327898][ T9426] netlink: 8 bytes leftover after parsing attributes in process `syz.0.885'.
[  471.796686][ T5843] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  471.804963][ T2151] az6027: usb out operation failed. (-110)
[  471.810783][ T2151] stb0899_attach: Driver disabled by Kconfig
[  471.833199][ T2151] az6027: no front-end attached
[  471.833199][ T2151] 
[  472.872351][ T2151] az6027: usb out operation failed. (-32)
[  472.878155][ T2151] dvb-usb: no frontend was attached by 'Elgato EyeTV Sat'
[  472.896924][ T2151] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.2/usb3/3-1/input/input9
[  472.949454][ T2151] dvb-usb: schedule remote query interval to 400 msecs.
[  472.989757][ T2151] dvb-usb: Elgato EyeTV Sat successfully initialized and connected.
[  474.360008][ T9458] netlink: 8 bytes leftover after parsing attributes in process `syz.1.894'.
[  475.322602][   T24] usb 3-1: USB disconnect, device number 14
[  475.866387][ T9466] netlink: 4 bytes leftover after parsing attributes in process `syz.0.896'.
[  475.902477][   T24] dvb-usb: Elgato EyeTV Sat successfully deinitialized and disconnected.
[  475.938547][ T9466] macvtap4: entered promiscuous mode
[  475.966900][ T9466] team0: entered promiscuous mode
[  475.999819][ T9466] macvtap4: entered allmulticast mode
[  476.013617][ T9466] team0: entered allmulticast mode
[  476.024398][ T9466] 8021q: adding VLAN 0 to HW filter on device macvtap4
[  476.647752][ T9474] loop1: detected capacity change from 0 to 256
[  476.704531][ T9474] exfat: Deprecated parameter 'utf8'
[  476.733238][ T9474] exfat: Deprecated parameter 'utf8'
[  476.738678][ T9474] exfat: Deprecated parameter 'utf8'
[  476.853928][ T9474] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d)
[  478.193007][ T9495] netlink: 8 bytes leftover after parsing attributes in process `syz.2.905'.
[  479.012886][ T9502] netlink: 8 bytes leftover after parsing attributes in process `syz.0.903'.
[  479.603483][ T9499] loop3: detected capacity change from 0 to 131072
[  479.694672][ T9499] F2FS-fs (loop3): Wrong CP boundary, start(512) end(1536) blocks(0)
[  479.694700][ T9499] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  479.702440][ T9499] F2FS-fs (loop3): invalid crc value
[  479.788576][ T9514] netlink: 8 bytes leftover after parsing attributes in process `syz.1.906'.
[  479.788600][ T9514] netlink: 20 bytes leftover after parsing attributes in process `syz.1.906'.
[  479.955361][ T9499] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  479.955390][ T9499] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  480.690547][ T9514] ip6gretap0: entered promiscuous mode
[  481.171106][ T5843] Bluetooth: hci4: unexpected event for opcode 0x1003
[  483.977122][ T9552] loop1: detected capacity change from 0 to 512
[  483.988482][ T9552] EXT4-fs: Ignoring removed oldalloc option
[  485.415899][ T5843] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  485.424553][ T5843] Bluetooth: hci4: Injecting HCI hardware error event
[  485.432753][ T5847] Bluetooth: hci4: hardware error 0x00
[  485.590265][ T9552] EXT4-fs error (device loop1): ext4_xattr_inode_iget:433: comm syz.1.916: Parent and EA inode have the same ino 15
[  485.624145][ T9552] EXT4-fs (loop1): 1 orphan inode deleted
[  485.631634][ T9552] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  485.681163][ T9545] EXT4-fs error (device loop1): __ext4_iget:5378: inode #13: block 2: comm syz.1.916: invalid block
[  486.154236][ T5835] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  486.834649][ T9561] No such timeout policy "syz0"
[  487.928819][ T5847] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  488.333429][ T9568] loop1: detected capacity change from 0 to 4096
[  488.386980][ T9568] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[  488.419209][ T9568] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 4096)
[  488.450602][ T8364] udevd[8364]: incorrect nilfs2 checksum on /dev/loop1
[  488.473484][ T9577] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  488.841253][ T9580] netlink: 8 bytes leftover after parsing attributes in process `syz.3.926'.
[  489.860524][ T9590] loop1: detected capacity change from 0 to 256
[  489.891229][ T9590] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d)
[  490.918663][ T9602] exFAT-fs (loop1): error, data size is invalid(10)
[  490.925891][ T9602] exFAT-fs (loop1): error, data size is invalid(10)
[  492.811481][ T9624] xt_TCPMSS: Only works on TCP SYN packets
[  494.490871][ T9642] loop3: detected capacity change from 0 to 256
[  494.510084][ T9642] exfat: Deprecated parameter 'utf8'
[  494.516369][ T9642] exfat: Deprecated parameter 'utf8'
[  494.522232][ T9642] exfat: Deprecated parameter 'utf8'
[  494.590868][ T9642] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d)
[  497.463322][ T9665] ubi: mtd0 is already attached to ubi31
[  501.389926][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  501.396448][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  505.202851][ T9715] netlink: 'syz.0.954': attribute type 1 has an invalid length.
[  505.408314][ T9718] netlink: 28 bytes leftover after parsing attributes in process `syz.0.954'.
[  505.510412][ T9718] 8021q: adding VLAN 0 to HW filter on device bond2
[  510.086567][ T9748] loop3: detected capacity change from 0 to 512
[  510.098287][ T9748] EXT4-fs: Ignoring removed oldalloc option
[  510.620164][ T9748] EXT4-fs error (device loop3): ext4_xattr_inode_iget:433: comm syz.3.965: Parent and EA inode have the same ino 15
[  510.633088][ T9748] EXT4-fs (loop3): 1 orphan inode deleted
[  510.640607][ T9748] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  510.680019][ T9743] EXT4-fs error (device loop3): __ext4_iget:5378: inode #13: block 2: comm syz.3.965: invalid block
[  510.955260][ T5833] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  511.218614][ T9761] hfsplus: unable to find HFS+ superblock
[  513.028189][ T9772] loop1: detected capacity change from 0 to 256
[  513.367647][ T9775] /dev/nullb0: Can't open blockdev
[  515.910511][ T9784] loop3: detected capacity change from 0 to 32768
[  515.918015][ T9784] btrfs: Deprecated parameter 'usebackuproot'
[  515.924124][ T9784] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  515.933436][ T9784] btrfs: Unknown parameter 'fscontext'
[  518.353269][   T24] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  520.377689][   T24] usb 4-1: device not accepting address 12, error -71
[  523.052059][ T9835] netlink: 'syz.0.989': attribute type 1 has an invalid length.
[  523.204512][ T9837] netlink: 76 bytes leftover after parsing attributes in process `syz.0.989'.
[  524.161999][ T9847] netlink: 28 bytes leftover after parsing attributes in process `syz.0.989'.
[  524.743429][ T9852] hfsplus: unable to find HFS+ superblock
[  525.019462][ T9847] 8021q: adding VLAN 0 to HW filter on device bond3
[  525.765253][ T9859] loop3: detected capacity change from 0 to 131072
[  525.804998][ T9859] F2FS-fs (loop3): Wrong CP boundary, start(512) end(1536) blocks(0)
[  525.813106][ T9859] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  525.823282][ T9859] F2FS-fs (loop3): invalid crc value
[  526.274333][ T9859] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  526.281407][ T9859] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  528.290285][ T9882] loop1: detected capacity change from 0 to 512
[  528.302794][ T9882] EXT4-fs: Ignoring removed oldalloc option
[  528.647414][ T9882] EXT4-fs error (device loop1): ext4_xattr_inode_iget:433: comm syz.1.996: Parent and EA inode have the same ino 15
[  528.662275][ T9882] EXT4-fs (loop1): 1 orphan inode deleted
[  528.669560][ T9882] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  529.020173][ T5835] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  532.489443][ T9912] loop1: detected capacity change from 0 to 512
[  532.501011][ T9912] EXT4-fs: Ignoring removed oldalloc option
[  532.834539][ T9912] EXT4-fs error (device loop1): ext4_xattr_inode_iget:433: comm syz.1.1006: Parent and EA inode have the same ino 15
[  532.863386][ T9912] EXT4-fs (loop1): 1 orphan inode deleted
[  532.870634][ T9912] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  532.915075][ T9909] EXT4-fs error (device loop1): __ext4_iget:5378: inode #13: block 2: comm syz.1.1006: invalid block
[  532.941906][ T9918] netlink: 'syz.2.1008': attribute type 1 has an invalid length.
[  532.971542][ T9918] netlink: 76 bytes leftover after parsing attributes in process `syz.2.1008'.
[  533.203325][ T9920] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1008'.
[  533.509164][ T9920] 8021q: adding VLAN 0 to HW filter on device bond2
[  533.531824][ T5835] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  533.873838][ T9925] netlink: 116 bytes leftover after parsing attributes in process `syz.4.1011'.
[  533.901904][   T30] kauditd_printk_skb: 19 callbacks suppressed
[  533.901919][   T30] audit: type=1326 audit(1751436514.493:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9924 comm="syz.4.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceb858e929 code=0x7ffc0000
[  533.969872][   T30] audit: type=1326 audit(1751436514.493:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9924 comm="syz.4.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceb858e929 code=0x7ffc0000
[  534.800412][   T30] audit: type=1326 audit(1751436514.503:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9924 comm="syz.4.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=239 compat=0 ip=0x7fceb858e929 code=0x7ffc0000
[  535.240749][   T30] audit: type=1326 audit(1751436514.503:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9924 comm="syz.4.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceb858e929 code=0x7ffc0000
[  535.530610][   T30] audit: type=1326 audit(1751436514.503:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9924 comm="syz.4.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceb858e929 code=0x7ffc0000
[  536.461081][   T30] audit: type=1326 audit(1751436514.503:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9924 comm="syz.4.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fceb858e929 code=0x7ffc0000
[  536.483600][   T30] audit: type=1326 audit(1751436514.503:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9924 comm="syz.4.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceb858e929 code=0x7ffc0000
[  536.506276][   T30] audit: type=1326 audit(1751436514.503:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9924 comm="syz.4.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceb858e929 code=0x7ffc0000
[  537.140730][   T30] audit: type=1326 audit(1751436514.503:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9924 comm="syz.4.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fceb858e929 code=0x7ffc0000
[  537.183377][   T30] audit: type=1326 audit(1751436514.503:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9924 comm="syz.4.1011" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceb858e929 code=0x7ffc0000
[  540.293971][ T9966] /dev/nullb0: Can't open blockdev
[  540.378679][ T9963] xt_cgroup: path and classid specified
[  541.877547][ T9977] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1022'.
[  541.941383][ T9977] macvtap2: entered promiscuous mode
[  542.158403][ T9983] xt_cgroup: path and classid specified
[  543.006289][ T9977] team0: entered promiscuous mode
[  543.019572][ T9977] bond0: entered promiscuous mode
[  543.033762][ T9977] macvtap2: entered allmulticast mode
[  543.050821][ T9977] team0: entered allmulticast mode
[  543.065363][ T9977] bond0: entered allmulticast mode
[  543.071088][ T9977] 8021q: adding VLAN 0 to HW filter on device macvtap2
[  543.401410][ T9991] loop3: detected capacity change from 0 to 1764
[  545.077152][T10007] netlink: 'syz.3.1030': attribute type 1 has an invalid length.
[  545.123103][T10007] netlink: 76 bytes leftover after parsing attributes in process `syz.3.1030'.
[  545.189276][T10010] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1030'.
[  546.291885][T10010] 8021q: adding VLAN 0 to HW filter on device bond1
[  551.676972][T10049] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1035'.
[  551.786771][T10054] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1040'.
[  551.855760][T10054] bridge0: entered promiscuous mode
[  551.901604][T10054] macvtap5: entered promiscuous mode
[  551.924785][T10054] macvtap5: entered allmulticast mode
[  551.930195][T10054] bridge0: entered allmulticast mode
[  552.389132][T10067] ubi: mtd0 is already attached to ubi31
[  554.113244][ T5921] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  554.275314][ T5921] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  554.303521][ T5921] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  554.322686][ T5921] usb 3-1: New USB device found, idVendor=13e5, idProduct=0001, bcdDevice=4e.53
[  554.339434][ T5921] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  554.351809][ T5921] usb 3-1: config 0 descriptor??
[  555.254133][ T5921] usb 3-1: USB disconnect, device number 15
[  556.614830][T10071] udevd[10071]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  558.222816][T10125] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1058'.
[  558.403752][T10123] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1054'.
[  559.664511][T10123] macvtap3: entered promiscuous mode
[  559.677261][T10123] macvtap3: entered allmulticast mode
[  559.894947][T10123] 8021q: adding VLAN 0 to HW filter on device macvtap3
[  561.306935][T10158] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1064'.
[  562.602908][T10151] team0: Port device bond0 removed
[  562.831332][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  562.842485][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  566.653474][ T5921] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  566.846802][T10200] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1073'.
[  566.864474][ T5921] usb 4-1: Using ep0 maxpacket: 16
[  566.900925][ T5921] usb 4-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  567.297411][ T5921] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  567.317773][ T5921] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  567.440270][ T5921] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  567.713753][ T5921] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  567.721831][ T5921] usb 4-1: Product: syz
[  567.731371][ T5921] usb 4-1: Manufacturer: syz
[  567.736245][ T5921] usb 4-1: SerialNumber: syz
[  567.811392][T10205] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1077'.
[  568.171223][ T5921] usb 4-1: 0:2 : does not exist
[  568.929281][T10211] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1079'.
[  571.449796][ T5921] usb 4-1: 1:0: failed to get current value for ch 0 (-22)
[  571.459458][ T8836] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  571.547528][ T5921] usb 4-1: USB disconnect, device number 14
[  571.637064][T10230] xt_cgroup: path and classid specified
[  571.817871][ T8836] usb 3-1: Using ep0 maxpacket: 32
[  571.904292][T10233] No such timeout policy "syz0"
[  572.665272][T10033] udevd[10033]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  572.965262][ T8836] usb 3-1: device descriptor read/all, error -71
[  576.315231][T10268] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1091'.
[  577.028274][T10273] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1095'.
[  577.966292][T10284] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1098'.
[  579.351768][T10296] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1101'.
[  580.147053][T10302] loop1: detected capacity change from 0 to 256
[  580.192357][T10302] exfat: Deprecated parameter 'utf8'
[  580.246037][T10302] exfat: Deprecated parameter 'utf8'
[  580.323598][T10302] exfat: Deprecated parameter 'utf8'
[  580.376083][T10302] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d)
[  585.623232][ T5843] Bluetooth: hci2: command 0x0406 tx timeout
[  585.822916][T10330] ipvlan2: entered promiscuous mode
[  585.839890][T10330] ipvlan2: entered allmulticast mode
[  585.993225][T10330] ip6gretap0: entered allmulticast mode
[  586.752362][T10354] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  587.282008][T10365] loop1: detected capacity change from 0 to 512
[  587.457454][T10365] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  587.666708][T10365] ext4 filesystem being mounted at /212/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  587.759406][T10379] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  588.046319][T10381] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  588.744295][T10388] loop3: detected capacity change from 0 to 1024
[  588.884982][T10385] xt_TCPMSS: Only works on TCP SYN packets
[  589.867397][T10388] syz.3.1125: attempt to access beyond end of device
[  589.867397][T10388] loop3: rw=0, sector=5778, nr_sectors = 2 limit=1024
[  589.957322][ T5835] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  590.894947][T10405] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  592.034076][T10418] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1133'.
[  593.555571][T10433] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  595.884394][T10446] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1137'.
[  597.641176][T10462] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1144'.
[  598.622937][T10473] loop3: detected capacity change from 0 to 4096
[  598.766795][T10473] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[  598.829431][T10473] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 4096)
[  598.899944][T10475] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  601.029518][T10492] loop1: detected capacity change from 0 to 128
[  601.044448][T10492] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  601.087831][T10492] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  603.303519][    T9] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  603.475170][    T9] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  603.493244][    T9] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  603.535118][    T9] usb 2-1: New USB device found, idVendor=13e5, idProduct=0001, bcdDevice=4e.53
[  603.565240][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  603.615910][    T9] usb 2-1: config 0 descriptor??
[  604.203860][T10500] 9pnet_fd: Insufficient options for proto=fd
[  605.734451][    T9] usb 2-1: string descriptor 0 read error: -71
[  606.573250][    T9] usb 2-1: USB disconnect, device number 9
[  608.789634][T10541] 9pnet_fd: Insufficient options for proto=fd
[  611.516404][T10560] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1170'.
[  612.110703][T10566] loop1: detected capacity change from 0 to 1024
[  612.375273][T10566] syz.1.1172: attempt to access beyond end of device
[  612.375273][T10566] loop1: rw=0, sector=5778, nr_sectors = 2 limit=1024
[  612.464505][T10575] /dev/nullb0: Can't open blockdev
[  614.303421][  T979] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[  614.758905][  T979] usb 3-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  614.826097][  T979] usb 3-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  614.887699][  T979] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 66
[  614.992951][  T979] usb 3-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  615.612097][  T979] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  615.688410][  T979] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  615.778652][  T979] usb 3-1: Product: syz
[  615.792242][  T979] usb 3-1: Manufacturer: syz
[  615.852516][  T979] cdc_wdm 3-1:1.0: skipping garbage
[  616.008143][  T979] cdc_wdm 3-1:1.0: skipping garbage
[  616.019690][  T979] cdc_wdm 3-1:1.0: skipping garbage
[  616.026188][  T979] cdc_wdm 3-1:1.0: probe with driver cdc_wdm failed with error -22
[  617.285699][  T979] usb 3-1: USB disconnect, device number 18
[  620.974784][T10624] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1189'.
[  623.154849][T10634] loop1: detected capacity change from 0 to 2048
[  623.172773][T10634] UDF-fs: error (device loop1): udf_process_sequence: Primary Volume Descriptor not found!
[  623.192072][T10634] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  624.453497][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  624.460064][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  624.541947][T10646] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1194'.
[  626.433932][ T5921] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  627.151790][T10669] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  627.703095][ T5921] usb 2-1: device descriptor read/all, error -71
[  628.562459][T10686] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  630.576069][T10699] xt_cgroup: path and classid specified
[  631.677553][T10722] syz.2.1213 uses obsolete (PF_INET,SOCK_PACKET)
[  632.709809][T10731] 9pnet_fd: Insufficient options for proto=fd
[  634.300174][T10750] loop1: detected capacity change from 0 to 2048
[  634.339920][T10750] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  634.934335][ T5835] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  636.070717][T10771] 9pnet_fd: Insufficient options for proto=fd
[  636.373425][ T2151] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  637.211461][ T2151] usb 4-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  637.248807][ T2151] usb 4-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  637.260308][ T2151] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 66
[  637.269335][ T2151] usb 4-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xF7, changing to 0x87
[  637.283369][ T2151] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x87 has invalid maxpacket 14129, setting to 64
[  637.387884][ T2151] usb 4-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  637.416348][ T2151] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  637.437714][ T2151] usb 4-1: Product: syz
[  637.694126][ T2151] usb 4-1: Manufacturer: syz
[  637.756838][ T2151] cdc_wdm 4-1:1.0: skipping garbage
[  637.839823][ T2151] cdc_wdm 4-1:1.0: skipping garbage
[  637.851085][ T2151] cdc_wdm 4-1:1.0: probe with driver cdc_wdm failed with error -22
[  638.158930][ T2151] usb 4-1: USB disconnect, device number 15
[  639.332362][T10806] 9pnet_fd: Insufficient options for proto=fd
[  642.853906][T10828] ubi: mtd0 is already attached to ubi31
[  644.406751][T10848] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  645.241340][T10857] loop1: detected capacity change from 0 to 4096
[  645.297085][T10857] NILFS (loop1): invalid segment: Checksum error in segment payload
[  645.319679][T10857] NILFS (loop1): trying rollback from an earlier position
[  645.341459][T10861] loop3: detected capacity change from 0 to 1024
[  645.370443][T10857] NILFS (loop1): recovery complete
[  645.427981][T10862] ipvlan2: entered promiscuous mode
[  645.433514][T10863] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  645.468656][T10861] syz.3.1261: attempt to access beyond end of device
[  645.468656][T10861] loop3: rw=0, sector=5778, nr_sectors = 2 limit=1024
[  645.488223][T10862] ipvlan2: entered allmulticast mode
[  645.891741][T10871] netlink: 'syz.0.1264': attribute type 1 has an invalid length.
[  646.472229][T10871] ipvlan2: entered promiscuous mode
[  646.486641][T10879] loop1: detected capacity change from 0 to 256
[  646.501926][T10871] ipvlan2: entered allmulticast mode
[  646.511830][T10879] exfat: Deprecated parameter 'utf8'
[  646.547717][T10879] exfat: Deprecated parameter 'utf8'
[  646.555684][T10879] exfat: Deprecated parameter 'utf8'
[  646.592009][T10879] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d)
[  647.787083][T10896] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1273'.
[  648.163872][T10899] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1272'.
[  649.050890][T10906] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  650.103867][  T979] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  650.155383][T10902] loop3: detected capacity change from 0 to 32768
[  650.177802][T10902] btrfs: Deprecated parameter 'usebackuproot'
[  650.204175][T10902] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  650.263250][T10902] btrfs: Unknown parameter 'fscontext'
[  650.288903][  T979] usb 2-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  650.307870][  T979] usb 2-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  650.338612][  T979] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 66
[  650.369029][  T979] usb 2-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xF7, changing to 0x87
[  650.419654][  T979] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x87 has invalid maxpacket 14129, setting to 64
[  650.447296][  T979] usb 2-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  650.463252][  T979] usb 2-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  650.472265][  T979] usb 2-1: Product: syz
[  650.478322][  T979] usb 2-1: Manufacturer: syz
[  650.631464][  T979] cdc_wdm 2-1:1.0: skipping garbage
[  650.636846][  T979] cdc_wdm 2-1:1.0: skipping garbage
[  650.642304][  T979] cdc_wdm 2-1:1.0: probe with driver cdc_wdm failed with error -22
[  651.123706][   T24] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  651.148480][  T979] usb 2-1: USB disconnect, device number 12
[  651.703539][   T24] usb 4-1: Using ep0 maxpacket: 32
[  651.977462][   T24] usb 4-1: device descriptor read/all, error -71
[  652.158960][T10943] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1285'.
[  652.276441][T10947] loop3: detected capacity change from 0 to 512
[  652.367820][T10947] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  652.533056][T10947] ext4 filesystem being mounted at /221/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  652.572719][T10956] loop1: detected capacity change from 0 to 512
[  652.646169][T10960] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  653.404438][T10956] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  653.429092][T10956] ext4 filesystem being mounted at /243/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  653.922372][T10972] ip6gretap0: Device is already in use.
[  655.410127][ T5833] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  655.463096][ T5835] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  655.773044][T10990] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1296'.
[  658.127531][T11013] loop3: detected capacity change from 0 to 256
[  658.161400][T11013] exfat: Deprecated parameter 'utf8'
[  658.169626][T11013] exfat: Deprecated parameter 'utf8'
[  658.175454][T11013] exfat: Deprecated parameter 'utf8'
[  658.356675][T11013] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d)
[  658.400950][T11017] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1307'.
[  663.990766][T11043] loop3: detected capacity change from 0 to 2048
[  663.991322][T11048] loop1: detected capacity change from 0 to 512
[  664.048749][T11048] ext4: Unknown parameter 'euid'
[  664.080462][T11043] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  664.433248][ T5900] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  664.583585][ T5900] usb 2-1: Using ep0 maxpacket: 32
[  664.604936][ T5900] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 219
[  664.633452][ T5900] usb 2-1: New USB device found, idVendor=0499, idProduct=1010, bcdDevice= 5.f5
[  664.666403][ T5900] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  664.710428][ T5900] usb 2-1: Product: syz
[  664.726789][ T5900] usb 2-1: Manufacturer: syz
[  664.740290][ T5900] usb 2-1: SerialNumber: syz
[  664.778986][ T5900] usb 2-1: config 0 descriptor??
[  664.861402][T11059] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1320'.
[  664.910113][T11048] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  665.218089][ T5900] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[  665.433258][ T5900] usb 2-1: USB disconnect, device number 13
[  666.151590][T11078] loop3: detected capacity change from 0 to 512
[  666.765066][T11078] EXT4-fs error (device loop3): ext4_orphan_get:1419: comm syz.3.1327: bad orphan inode 15
[  666.834588][T11087] loop1: detected capacity change from 0 to 256
[  666.841740][T11087] exfat: Deprecated parameter 'utf8'
[  666.927625][T11087] exfat: Deprecated parameter 'utf8'
[  666.933060][T11087] exfat: Deprecated parameter 'utf8'
[  666.974304][T11078] ext4_test_bit(bit=14, block=18) = 1
[  667.006961][T11078] is_bad_inode(inode)=0
[  667.022518][T11087] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d)
[  667.060209][T11078] NEXT_ORPHAN(inode)=1023
[  667.070042][T11094] udevd[11094]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  667.151009][T11078] max_ino=32
[  667.868836][T11078] i_nlink=0
[  668.057169][T11078] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2962: inode #15: comm syz.3.1327: corrupted xattr block 19: invalid header
[  668.095833][T11078] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -117)
[  668.412720][T11078] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0009-000000000000 r/w without journal. Quota mode: none.
[  668.436252][T11078] ext4 filesystem being mounted at /227/éq‰Y’3aK supports timestamps until 2038-01-19 (0x7fffffff)
[  668.521607][ T5833] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0009-000000000000.
[  673.023872][T11150] loop3: detected capacity change from 0 to 128
[  673.050912][T11150] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  673.516135][T11150] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  674.457840][T11146] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1339'.
[  682.133197][T11247] loop1: detected capacity change from 0 to 512
[  682.877770][ T2151] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  684.874761][T11247] EXT4-fs: error -4 creating inode table initialization thread
[  684.883713][T11247] EXT4-fs (loop1): mount failed
[  686.023834][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  686.030158][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  686.464440][T11266] loop1: detected capacity change from 0 to 512
[  687.276785][T11266] EXT4-fs error (device loop1): ext4_orphan_get:1419: comm syz.1.1371: bad orphan inode 15
[  687.292907][T11266] ext4_test_bit(bit=14, block=18) = 1
[  687.298426][T11266] is_bad_inode(inode)=0
[  687.302644][T11266] NEXT_ORPHAN(inode)=1023
[  687.307140][T11266] max_ino=32
[  687.310403][T11266] i_nlink=0
[  688.243175][T11266] EXT4-fs error (device loop1): ext4_xattr_delete_inode:2962: inode #15: comm syz.1.1371: corrupted xattr block 19: invalid header
[  688.294819][T11266] EXT4-fs warning (device loop1): ext4_evict_inode:274: xattr delete (err -117)
[  688.305725][T11266] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0009-000000000000 r/w without journal. Quota mode: none.
[  688.374595][T11266] ext4 filesystem being mounted at /255/éq‰Y’3aK supports timestamps until 2038-01-19 (0x7fffffff)
[  689.306653][ T5921] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  689.482832][ T5835] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0009-000000000000.
[  689.675235][T11284] loop1: detected capacity change from 0 to 2048
[  689.863997][T11284] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  692.085368][T11286] loop3: detected capacity change from 0 to 512
[  692.713197][ T5921] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  692.898087][ T5921] usb 2-1: Using ep0 maxpacket: 16
[  692.913400][T11286] EXT4-fs error (device loop3): ext4_orphan_get:1419: comm syz.3.1378: bad orphan inode 15
[  692.935521][ T5921] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  692.946500][ T5921] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  692.956377][T11286] ext4_test_bit(bit=14, block=18) = 1
[  693.189302][T11286] is_bad_inode(inode)=0
[  693.191345][ T5921] usb 2-1: New USB device found, idVendor=054c, idProduct=002e, bcdDevice= 1.26
[  693.199044][T11286] NEXT_ORPHAN(inode)=1023
[  693.211250][ T5921] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  693.216372][T11286] max_ino=32
[  693.222689][ T5921] usb 2-1: Product: syz
[  693.225880][T11286] i_nlink=0
[  693.975297][T11286] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2962: inode #15: comm syz.3.1378: corrupted xattr block 19: invalid header
[  694.186261][ T5921] usb 2-1: Manufacturer: syz
[  694.190902][ T5921] usb 2-1: SerialNumber: syz
[  694.219700][ T5921] usb 2-1: config 0 descriptor??
[  694.229657][T11286] EXT4-fs warning (device loop3): ext4_evict_inode:274: xattr delete (err -117)
[  695.007242][T11286] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0009-000000000000 r/w without journal. Quota mode: none.
[  696.051034][ T5900] usb 2-1: USB disconnect, device number 14
[  696.295479][T11286] ext4 filesystem being mounted at /236/éq‰Y’3aK supports timestamps until 2038-01-19 (0x7fffffff)
[  697.650479][T11317] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 449: padding at end of block bitmap is not set
[  701.263049][T11378] pim6reg1: entered promiscuous mode
[  701.292068][T11378] pim6reg1: entered allmulticast mode
[  701.491245][T11385] pim6reg1: entered promiscuous mode
[  701.508392][T11385] pim6reg1: entered allmulticast mode
[  702.396438][T11420] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1417'.
[  702.419489][T11420] openvswitch: netlink: Flow key attr not present in new flow.
[  702.536501][T11425] futex_wake_op: syz.4.1420 tries to shift op by -1; fix this program
[  703.507627][ T5833] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0009-000000000000.
[  704.028416][T11447] 9pnet: Could not find request transport: rˆæ¶*
[  704.179326][T11454] loop3: detected capacity change from 0 to 1024
[  704.188621][T11454] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  704.200538][T11454] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  704.215592][T11454] JBD2: no valid journal superblock found
[  704.222296][T11454] EXT4-fs (loop3): Could not load journal inode
[  704.672993][T11462] loop3: detected capacity change from 0 to 1024
[  704.725723][T11462] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  704.817361][T11462] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.1437: Allocating blocks 497-513 which overlap fs metadata
[  704.846418][T11462] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 2 with max blocks 3 with error 117
[  704.860512][T11462] EXT4-fs (loop3): This should not happen!! Data will be lost
[  704.860512][T11462] 
[  704.921704][ T5833] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  705.313241][   T30] kauditd_printk_skb: 18 callbacks suppressed
[  705.313258][   T30] audit: type=1326 audit(1751436686.073:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11475 comm="syz.0.1442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  705.372262][   T30] audit: type=1326 audit(1751436686.073:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11475 comm="syz.0.1442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  705.401735][   T30] audit: type=1326 audit(1751436686.073:326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11475 comm="syz.0.1442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  705.456250][   T30] audit: type=1326 audit(1751436686.073:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11475 comm="syz.0.1442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  705.487802][   T30] audit: type=1326 audit(1751436686.073:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11475 comm="syz.0.1442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  705.598635][   T30] audit: type=1326 audit(1751436686.123:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11475 comm="syz.0.1442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  705.661194][   T30] audit: type=1326 audit(1751436686.123:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11475 comm="syz.0.1442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  705.684805][   T30] audit: type=1326 audit(1751436686.123:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11475 comm="syz.0.1442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  705.763319][   T30] audit: type=1326 audit(1751436686.123:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11475 comm="syz.0.1442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  705.825752][   T30] audit: type=1326 audit(1751436686.123:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11475 comm="syz.0.1442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  705.885235][T11492] loop3: detected capacity change from 0 to 1024
[  705.975106][T11498] netlink: 3 bytes leftover after parsing attributes in process `syz.4.1451'.
[  705.999186][T11498] batadv1: entered promiscuous mode
[  706.004555][T11498] batadv1: entered allmulticast mode
[  706.012041][T11492] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  706.201960][T11492] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4113: comm syz.3.1448: Allocating blocks 497-513 which overlap fs metadata
[  706.227684][T11491] EXT4-fs (loop3): pa ffff888054ba2000: logic 32, phys. 161, len 22
[  706.236430][T11491] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5364: group 0, free 0, pa_free 1
[  706.331468][ T5833] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  706.559610][T11515] sg_write: data in/out 2012/14 bytes for SCSI command 0x0-- guessing data in;
[  706.559610][T11515]    program syz.1.1458 not setting count and/or reply_len properly
[  706.753901][T11522] usb usb1: usbfs: interface 0 claimed by hub while '+}[@' sets config #0
[  706.972097][T11528] skbuff: bad partial csum: csum=65489/0 headroom=64 headlen=65491
[  707.045150][T11528] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1460'.
[  707.498750][T11535] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1465'.
[  707.686340][T11538] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1465'.
[  707.686828][T11528] syz.3.1460 (11528) used greatest stack depth: 16904 bytes left
[  707.899240][T11537] 8021q: adding VLAN 0 to HW filter on device bond2
[  707.964958][T11537] bond1: (slave bond2): Enslaving as an active interface with an up link
[  707.995651][T11538] 8021q: adding VLAN 0 to HW filter on device bond1
[  708.628156][T11572] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1477'.
[  708.668426][T11571] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1479'.
[  709.462109][T11587] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  709.577083][T11587] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  709.670284][T11587] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  709.724903][T11587] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  709.873464][ T2996] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  709.919648][ T2996] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  709.954490][ T2996] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  709.988940][ T2996] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  710.216052][T11615] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1496'.
[  710.478139][T11615] hsr_slave_1 (unregistering): left promiscuous mode
[  710.602789][T11636] 9pnet: p9_errstr2errno: server reported unknown error 
[  710.614988][T11634] mmap: syz.2.1502 (11634) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  710.781800][T11617] loop3: detected capacity change from 0 to 512
[  710.817372][T11617] EXT4-fs: Ignoring removed nobh option
[  710.856255][T11617] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  710.927840][T11648] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1507'.
[  710.972388][T11617] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  710.972554][T11648] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1507'.
[  711.003297][T11617] ext4 filesystem being mounted at /255/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  711.121973][T11648] wireguard0: entered promiscuous mode
[  711.140812][T11648] wireguard0: entered allmulticast mode
[  711.283531][T11664] IPVS: sh: UDP 224.0.0.2:0 - no destination available
[  711.296592][   T24] IPVS: starting estimator thread 0...
[  711.341383][T11670] loop1: detected capacity change from 0 to 512
[  711.373084][T11670] ext4: Unknown parameter 'context'
[  711.423330][T11669] IPVS: using max 28 ests per chain, 67200 per kthread
[  712.078453][T11691] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  712.236942][T11694] loop1: detected capacity change from 0 to 1024
[  712.249044][T11694] EXT4-fs: Ignoring removed oldalloc option
[  712.255255][T11694] EXT4-fs: Ignoring removed orlov option
[  712.261905][T11694] EXT4-fs: Ignoring removed orlov option
[  712.266277][T11691] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  712.294928][T11696] bridge0: entered allmulticast mode
[  712.302099][T11696] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1521'.
[  712.323433][T11694] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  712.361560][T11696] bridge0 (unregistering): left allmulticast mode
[  712.427234][T11694] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4113: comm syz.1.1520: Allocating blocks 497-513 which overlap fs metadata
[  712.472611][T11691] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  712.517960][T11701] xt_hashlimit: max too large, truncated to 1048576
[  712.611436][T11701] syzkaller0: entered promiscuous mode
[  712.618391][T11701] syzkaller0: entered allmulticast mode
[  712.631609][ T5835] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  712.687085][T11691] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  712.772536][T11706] loop1: detected capacity change from 0 to 164
[  712.817449][T11706] rock: corrupted directory entry. extent=28, offset=16056320, size=0
[  714.979318][ T3564] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  715.060468][   T13] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  715.111206][ T5962] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  715.188534][   T13] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  715.211526][T11728] netlink: 'syz.2.1535': attribute type 4 has an invalid length.
[  715.247626][T11728] netlink: 17 bytes leftover after parsing attributes in process `syz.2.1535'.
[  715.289701][   T30] kauditd_printk_skb: 71 callbacks suppressed
[  715.289718][   T30] audit: type=1326 audit(1751436696.053:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11730 comm="syz.1.1536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef4c78e929 code=0x7ffc0000
[  715.383320][   T30] audit: type=1326 audit(1751436696.053:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11730 comm="syz.1.1536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef4c78e929 code=0x7ffc0000
[  715.454548][   T30] audit: type=1326 audit(1751436696.053:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11730 comm="syz.1.1536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fef4c78e929 code=0x7ffc0000
[  715.547092][T11737] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1538'.
[  715.575502][ T5833] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  715.587494][   T30] audit: type=1326 audit(1751436696.053:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11730 comm="syz.1.1536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef4c78e929 code=0x7ffc0000
[  715.672599][   T30] audit: type=1326 audit(1751436696.053:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11730 comm="syz.1.1536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef4c78e929 code=0x7ffc0000
[  715.765214][   T30] audit: type=1326 audit(1751436696.053:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11730 comm="syz.1.1536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fef4c78e929 code=0x7ffc0000
[  715.877069][   T30] audit: type=1326 audit(1751436696.063:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11730 comm="syz.1.1536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef4c78e929 code=0x7ffc0000
[  716.006547][   T30] audit: type=1326 audit(1751436696.063:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11730 comm="syz.1.1536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fef4c78e929 code=0x7ffc0000
[  716.109536][   T30] audit: type=1326 audit(1751436696.063:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11730 comm="syz.1.1536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef4c78e929 code=0x7ffc0000
[  716.696081][   T30] audit: type=1326 audit(1751436696.063:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11730 comm="syz.1.1536" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fef4c78e929 code=0x7ffc0000
[  717.116685][T11770] loop1: detected capacity change from 0 to 512
[  717.192394][T11770] EXT4-fs (loop1): orphan cleanup on readonly fs
[  717.235930][T11770] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1550: bg 0: block 248: padding at end of block bitmap is not set
[  717.275065][T11770] EXT4-fs error (device loop1): ext4_acquire_dquot:6933: comm syz.1.1550: Failed to acquire dquot type 1
[  717.353655][T11770] EXT4-fs (loop1): 1 truncate cleaned up
[  717.388610][T11770] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  717.393402][T11788] loop3: detected capacity change from 0 to 512
[  717.447619][T11782] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  717.460564][T11788] EXT4-fs: Ignoring removed mblk_io_submit option
[  717.466620][T11770] EXT4-fs error (device loop1): ext4_lookup:1791: inode #2: comm syz.1.1550: deleted inode referenced: 12
[  717.484589][T11788] ext4: Unknown parameter 'seclabel'
[  717.505975][T11770] EXT4-fs error (device loop1): ext4_lookup:1791: inode #2: comm syz.1.1550: deleted inode referenced: 12
[  717.535602][T11770] EXT4-fs error (device loop1): ext4_lookup:1791: inode #2: comm syz.1.1550: deleted inode referenced: 12
[  717.723012][T11782] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  717.729302][T11770] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  717.861497][T11782] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  718.100222][ T2965] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  718.155846][ T2965] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  718.169590][ T2965] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  718.178486][ T2965] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  719.075465][T11829] raw_sendmsg: syz.1.1567 forgot to set AF_INET. Fix it!
[  719.083450][T11827] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1571'.
[  719.092328][T11827] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1571'.
[  719.257988][T11817] infiniband syz!: set down
[  719.273392][T11817] infiniband syz!: added team_slave_0
[  719.461079][T11843] pimreg: entered allmulticast mode
[  719.476267][T11817] RDS/IB: syz!: added
[  719.480921][T11817] smc: adding ib device syz! with port count 1
[  719.520224][T11843] netlink: 'syz.1.1577': attribute type 10 has an invalid length.
[  719.540272][T11817] smc:    ib device syz! port 1 has pnetid 
[  719.570316][T11847] netlink: 'syz.1.1577': attribute type 10 has an invalid length.
[  719.606253][T11843] dummy0: entered promiscuous mode
[  719.622005][T11843] dummy0: entered allmulticast mode
[  719.645003][T11843] team0: Port device dummy0 added
[  719.700441][T11847] dummy0: left allmulticast mode
[  719.743318][T11847] team0: Port device dummy0 removed
[  719.750853][T11847] dummy0: left promiscuous mode
[  719.791296][T11847] dummy0: entered promiscuous mode
[  719.813557][T11847] dummy0: entered allmulticast mode
[  719.838840][T11847] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  719.909363][T11853] pimreg: left allmulticast mode
[  720.530349][   T30] kauditd_printk_skb: 84 callbacks suppressed
[  720.530368][   T30] audit: type=1326 audit(1751436701.293:497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11880 comm="syz.4.1594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceb858e929 code=0x7ffc0000
[  720.623313][   T30] audit: type=1326 audit(1751436701.293:498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11880 comm="syz.4.1594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceb858e929 code=0x7ffc0000
[  720.693254][   T30] audit: type=1326 audit(1751436701.333:499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11880 comm="syz.4.1594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fceb858e929 code=0x7ffc0000
[  720.746455][   T30] audit: type=1326 audit(1751436701.333:500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11880 comm="syz.4.1594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceb858e929 code=0x7ffc0000
[  720.791288][   T30] audit: type=1326 audit(1751436701.333:501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11880 comm="syz.4.1594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceb858e929 code=0x7ffc0000
[  720.823070][   T30] audit: type=1326 audit(1751436701.333:502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11880 comm="syz.4.1594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=216 compat=0 ip=0x7fceb858e929 code=0x7ffc0000
[  720.850625][   T30] audit: type=1326 audit(1751436701.343:503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11880 comm="syz.4.1594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceb858e929 code=0x7ffc0000
[  720.877544][   T30] audit: type=1326 audit(1751436701.343:504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11880 comm="syz.4.1594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceb858e929 code=0x7ffc0000
[  720.902881][   T30] audit: type=1326 audit(1751436701.353:505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11880 comm="syz.4.1594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7fceb858e929 code=0x7ffc0000
[  720.927077][   T30] audit: type=1326 audit(1751436701.353:506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11880 comm="syz.4.1594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fceb858e929 code=0x7ffc0000
[  721.169643][T11895] loop1: detected capacity change from 0 to 128
[  721.217211][T11895] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  721.273658][T11895] ext4 filesystem being mounted at /285/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  721.391071][ T5835] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  721.419805][T11900] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  721.431145][T11899] IPVS: stopping master sync thread 11900 ...
[  721.535814][T11903] netlink: 76 bytes leftover after parsing attributes in process `syz.4.1602'.
[  721.754093][T11910] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1606'.
[  721.786050][T11910] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1606'.
[  721.797935][T11910] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  723.104194][T11979] sch_fq: defrate 4294967295 ignored.
[  723.262749][T11987] random: crng reseeded on system resumption
[  723.404420][T11992] loop3: detected capacity change from 0 to 128
[  723.471055][T11992] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  723.590852][T11992] ext4 filesystem being mounted at /264/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  723.944112][T12006] netlink: 'syz.2.1645': attribute type 10 has an invalid length.
[  724.004162][T12011] netlink: 'syz.2.1645': attribute type 10 has an invalid length.
[  724.014832][T12006] team0: Port device dummy0 added
[  724.024171][ T5833] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  724.073028][T12011] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  724.154078][T12011] team0: Failed to send options change via netlink (err -105)
[  724.161778][T12011] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  724.204448][T12011] team0: Port device dummy0 removed
[  724.253065][T12011] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  724.264006][T12015] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1651'.
[  724.436261][T12026] loop1: detected capacity change from 0 to 2048
[  724.470516][T12015] hsr_slave_0 (unregistering): left promiscuous mode
[  724.489295][T11090]  loop1: p1 < > p4
[  724.513187][T11090] loop1: p4 size 8388608 extends beyond EOD, truncated
[  724.549321][T12026]  loop1: p1 < > p4
[  724.577035][T12026] loop1: p4 size 8388608 extends beyond EOD, truncated
[  724.762990][T12035] loop3: detected capacity change from 0 to 128
[  724.812564][T12035] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  724.846211][T12035] ext4 filesystem being mounted at /268/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  724.995306][T11093] udevd[11093]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  725.005428][T11090] udevd[11090]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  725.060670][T11093] udevd[11093]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  725.079668][T11090] udevd[11090]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  725.207715][ T5833] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  725.360756][T12055] Illegal XDP return value 4294967274 on prog  (id 573) dev syz_tun, expect packet loss!
[  725.448224][T12059] IPv6: Can't replace route, no match found
[  725.909825][T12084] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1679'.
[  726.126423][T12084] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  726.415961][T12084] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  726.662641][T12084] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  727.060196][ T5962] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  727.127673][ T3564] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  727.265212][T12108] hub 9-0:1.0: USB hub found
[  727.276891][T12108] hub 9-0:1.0: 1 port detected
[  727.683934][   T59] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  727.836376][   T59] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  728.012273][T12114] netlink: 104 bytes leftover after parsing attributes in process `syz.2.1690'.
[  728.067291][T12116] xt_hashlimit: max too large, truncated to 1048576
[  728.573393][T12135] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1700'.
[  729.124295][T12150] 8021q: VLANs not supported on ip6gre0
[  729.167772][   T30] kauditd_printk_skb: 103 callbacks suppressed
[  729.167790][   T30] audit: type=1326 audit(1751436709.933:610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12151 comm="syz.3.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48e9b8e929 code=0x7ffc0000
[  729.276479][   T30] audit: type=1326 audit(1751436709.963:611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12151 comm="syz.3.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7f48e9b8e929 code=0x7ffc0000
[  729.367151][   T30] audit: type=1326 audit(1751436709.963:612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12151 comm="syz.3.1707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48e9b8e929 code=0x7ffc0000
[  729.482946][   T30] audit: type=1326 audit(1751436710.133:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12155 comm="syz.0.1709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  729.552370][   T30] audit: type=1326 audit(1751436710.133:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12155 comm="syz.0.1709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  729.663278][   T30] audit: type=1326 audit(1751436710.133:615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12155 comm="syz.0.1709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  729.751491][   T30] audit: type=1326 audit(1751436710.133:616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12155 comm="syz.0.1709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  729.801024][T12169] loop3: detected capacity change from 0 to 512
[  729.830874][T12169] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  729.863855][   T30] audit: type=1326 audit(1751436710.133:617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12155 comm="syz.0.1709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  729.903704][   T30] audit: type=1326 audit(1751436710.163:618): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12155 comm="syz.0.1709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  729.933205][   T30] audit: type=1326 audit(1751436710.163:619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12155 comm="syz.0.1709" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  729.975795][T12169] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  730.043308][T12169] ext4 filesystem being mounted at /279/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  730.180728][ T5833] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  731.253245][T12208] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1729'.
[  731.662336][T12229] loop1: detected capacity change from 0 to 128
[  731.678618][T12224] loop3: detected capacity change from 0 to 2048
[  731.738424][T12229] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  731.854015][T12229] ext4 filesystem being mounted at /312/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  731.879837][T11093]  loop3: p1 < > p4
[  731.904981][T11093] loop3: p4 size 8388608 extends beyond EOD, truncated
[  731.966947][T12224]  loop3: p1 < > p4
[  731.980707][T12224] loop3: p4 size 8388608 extends beyond EOD, truncated
[  732.170726][T11093] udevd[11093]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[  732.181230][T11090] udevd[11090]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  732.285960][T11090] udevd[11090]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  732.298047][T11093] udevd[11093]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[  732.321383][ T5835] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  733.802058][T12287] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  733.862699][T12287] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  733.886395][T12290] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1762'.
[  734.195015][T12298] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[  734.240819][T12298] loop1: detected capacity change from 0 to 512
[  734.345929][T12298] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  734.423252][T12298] ext4 filesystem being mounted at /318/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  734.664643][T12318] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1775'.
[  735.044964][ T5835] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  735.064272][   T30] kauditd_printk_skb: 65 callbacks suppressed
[  735.064287][   T30] audit: type=1326 audit(1751436715.833:685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12336 comm="syz.0.1780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  735.128046][   T30] audit: type=1326 audit(1751436715.833:686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12336 comm="syz.0.1780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  735.200017][   T30] audit: type=1326 audit(1751436715.833:687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12336 comm="syz.0.1780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  735.246103][   T30] audit: type=1326 audit(1751436715.833:688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12336 comm="syz.0.1780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  735.299100][   T30] audit: type=1326 audit(1751436715.833:689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12336 comm="syz.0.1780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  735.377434][   T30] audit: type=1326 audit(1751436715.833:690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12336 comm="syz.0.1780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  735.457501][T12354] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1787'.
[  735.466770][   T30] audit: type=1326 audit(1751436715.833:691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12336 comm="syz.0.1780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  735.500199][T12357] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1788'.
[  735.536391][   T30] audit: type=1326 audit(1751436715.833:692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12336 comm="syz.0.1780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  735.617095][   T30] audit: type=1326 audit(1751436715.833:693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12336 comm="syz.0.1780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  735.689569][   T30] audit: type=1326 audit(1751436715.833:694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12336 comm="syz.0.1780" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  735.732576][T12365] veth0: entered promiscuous mode
[  735.757977][T12365] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1793'.
[  736.395283][T12400] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1801'.
[  736.866345][T12434] loop1: detected capacity change from 0 to 128
[  736.902299][T12434] syz.1.1805: attempt to access beyond end of device
[  736.902299][T12434] loop1: rw=0, sector=2071, nr_sectors = 1 limit=128
[  737.147196][T12446] loop1: detected capacity change from 0 to 256
[  737.210394][T12446] FAT-fs (loop1): Directory bread(block 64) failed
[  737.229714][T12446] FAT-fs (loop1): Directory bread(block 65) failed
[  737.260524][T12446] FAT-fs (loop1): Directory bread(block 66) failed
[  737.293601][T12446] FAT-fs (loop1): Directory bread(block 67) failed
[  737.316933][T12446] FAT-fs (loop1): Directory bread(block 68) failed
[  737.343924][T12446] FAT-fs (loop1): Directory bread(block 69) failed
[  737.403754][T12446] FAT-fs (loop1): Directory bread(block 70) failed
[  737.423503][T12446] FAT-fs (loop1): Directory bread(block 71) failed
[  737.434468][T12446] FAT-fs (loop1): Directory bread(block 72) failed
[  737.452357][T12446] FAT-fs (loop1): Directory bread(block 73) failed
[  737.559774][T12446] process 'syz.1.1807' launched '/dev/fd/7' with NULL argv: empty string added
[  737.607002][T12446] syz.1.1807: attempt to access beyond end of device
[  737.607002][T12446] loop1: rw=524288, sector=1160, nr_sectors = 4 limit=256
[  737.663811][T12446] syz.1.1807: attempt to access beyond end of device
[  737.663811][T12446] loop1: rw=0, sector=1160, nr_sectors = 4 limit=256
[  737.992594][T12458] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1814'.
[  738.134521][T12458] IPVS: Error joining to the multicast group
[  738.714147][T12464] siw: device registration error -23
[  738.947559][T12471] loop1: detected capacity change from 0 to 128
[  739.000669][T12471] syz.1.1819: attempt to access beyond end of device
[  739.000669][T12471] loop1: rw=0, sector=2071, nr_sectors = 1 limit=128
[  739.245241][T12484] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1823'.
[  740.476722][   T30] kauditd_printk_skb: 47 callbacks suppressed
[  740.476740][   T30] audit: type=1326 audit(1751436721.243:742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12490 comm="syz.0.1826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  740.545512][   T30] audit: type=1326 audit(1751436721.243:743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12490 comm="syz.0.1826" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f165d58e929 code=0x7ffc0000
[  740.932502][T12501] loop1: detected capacity change from 0 to 8192
[  740.955533][T12501] vfat: Unknown parameter '0xffffffffffffffff'
[  742.284942][T12576] loop3: detected capacity change from 0 to 128
[  742.316491][T12576] EXT4-fs: Ignoring removed nobh option
[  742.347326][T12576] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  742.402377][T12583] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1854'.
[  742.423941][T12576] ext4 filesystem being mounted at /303/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  742.528451][T12581] ==================================================================
[  742.536543][T12581] BUG: KASAN: slab-out-of-bounds in pause_parse_request+0x40/0x160
[  742.544450][T12581] Read of size 8 at addr ffff88807e5916b0 by task syz.4.1859/12581
[  742.552338][T12581] 
[  742.554678][T12581] CPU: 0 UID: 0 PID: 12581 Comm: syz.4.1859 Not tainted 6.16.0-rc4-next-20250630-syzkaller #0 PREEMPT(full) 
[  742.554701][T12581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  742.554717][T12581] Call Trace:
[  742.554725][T12581]  <TASK>
[  742.554734][T12581]  dump_stack_lvl+0x189/0x250
[  742.554770][T12581]  ? __virt_addr_valid+0x1c8/0x5c0
[  742.554787][T12581]  ? rcu_is_watching+0x15/0xb0
[  742.554810][T12581]  ? __kasan_check_byte+0x12/0x40
[  742.554837][T12581]  ? __pfx_dump_stack_lvl+0x10/0x10
[  742.554862][T12581]  ? rcu_is_watching+0x15/0xb0
[  742.554884][T12581]  ? lock_release+0x4b/0x3e0
[  742.554906][T12581]  ? __virt_addr_valid+0x1c8/0x5c0
[  742.554923][T12581]  ? __virt_addr_valid+0x4a5/0x5c0
[  742.554939][T12581]  print_report+0xd2/0x2b0
[  742.554962][T12581]  ? pause_parse_request+0x40/0x160
[  742.554985][T12581]  kasan_report+0x118/0x150
[  742.555002][T12581]  ? pause_parse_request+0x40/0x160
[  742.555029][T12581]  ? __pfx_pause_parse_request+0x10/0x10
[  742.555052][T12581]  pause_parse_request+0x40/0x160
[  742.555077][T12581]  ? __pfx_pause_parse_request+0x10/0x10
[  742.555101][T12581]  ethnl_default_set_doit+0x2c1/0xa40
[  742.555120][T12581]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  742.555147][T12581]  genl_family_rcv_msg_doit+0x215/0x300
[  742.555172][T12581]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  742.555200][T12581]  ? bpf_lsm_capable+0x9/0x20
[  742.555223][T12581]  ? security_capable+0x7e/0x2e0
[  742.555247][T12581]  genl_rcv_msg+0x60e/0x790
[  742.555271][T12581]  ? __pfx_genl_rcv_msg+0x10/0x10
[  742.555290][T12581]  ? ref_tracker_free+0x63a/0x7d0
[  742.555312][T12581]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[  742.555332][T12581]  ? __pfx_ref_tracker_free+0x10/0x10
[  742.555358][T12581]  netlink_rcv_skb+0x205/0x470
[  742.555375][T12581]  ? __pfx_genl_rcv_msg+0x10/0x10
[  742.555397][T12581]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  742.555429][T12581]  ? down_read+0x1ad/0x2e0
[  742.555448][T12581]  genl_rcv+0x28/0x40
[  742.555467][T12581]  netlink_unicast+0x758/0x8d0
[  742.555495][T12581]  netlink_sendmsg+0x805/0xb30
[  742.555517][T12581]  ? __pfx_netlink_sendmsg+0x10/0x10
[  742.555536][T12581]  ? aa_sock_msg_perm+0xf1/0x1d0
[  742.555559][T12581]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  742.555579][T12581]  ? __pfx_netlink_sendmsg+0x10/0x10
[  742.555596][T12581]  __sock_sendmsg+0x21c/0x270
[  742.555621][T12581]  ____sys_sendmsg+0x505/0x830
[  742.555644][T12581]  ? __pfx_____sys_sendmsg+0x10/0x10
[  742.555667][T12581]  ? import_iovec+0x74/0xa0
[  742.555689][T12581]  ___sys_sendmsg+0x21f/0x2a0
[  742.555709][T12581]  ? __pfx____sys_sendmsg+0x10/0x10
[  742.555746][T12581]  ? __fget_files+0x2a/0x420
[  742.555769][T12581]  ? __fget_files+0x3a0/0x420
[  742.555792][T12581]  __x64_sys_sendmsg+0x19b/0x260
[  742.555814][T12581]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  742.555839][T12581]  ? rcu_is_watching+0x15/0xb0
[  742.555865][T12581]  ? do_syscall_64+0xbe/0x3b0
[  742.555883][T12581]  do_syscall_64+0xfa/0x3b0
[  742.555899][T12581]  ? lockdep_hardirqs_on+0x9c/0x150
[  742.555923][T12581]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  742.555940][T12581]  ? clear_bhb_loop+0x60/0xb0
[  742.555959][T12581]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  742.555982][T12581] RIP: 0033:0x7fceb858e929
[  742.556003][T12581] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  742.556019][T12581] RSP: 002b:00007fceb94b5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  742.556039][T12581] RAX: ffffffffffffffda RBX: 00007fceb87b5fa0 RCX: 00007fceb858e929
[  742.556054][T12581] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000009
[  742.556065][T12581] RBP: 00007fceb8610b39 R08: 0000000000000000 R09: 0000000000000000
[  742.556077][T12581] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  742.556089][T12581] R13: 0000000000000000 R14: 00007fceb87b5fa0 R15: 00007ffc7b239fe8
[  742.556111][T12581]  </TASK>
[  742.556117][T12581] 
[  742.937336][T12581] Allocated by task 12581:
[  742.941738][T12581]  kasan_save_track+0x3e/0x80
[  742.946406][T12581]  __kasan_kmalloc+0x93/0xb0
[  742.951000][T12581]  __kmalloc_noprof+0x27a/0x4f0
[  742.955859][T12581]  genl_family_rcv_msg_attrs_parse+0xa3/0x2a0
[  742.961925][T12581]  genl_family_rcv_msg_doit+0xb8/0x300
[  742.967386][T12581]  genl_rcv_msg+0x60e/0x790
[  742.971870][T12581]  netlink_rcv_skb+0x205/0x470
[  742.976630][T12581]  genl_rcv+0x28/0x40
[  742.980596][T12581]  netlink_unicast+0x758/0x8d0
[  742.985339][T12581]  netlink_sendmsg+0x805/0xb30
[  742.990077][T12581]  __sock_sendmsg+0x21c/0x270
[  742.994746][T12581]  ____sys_sendmsg+0x505/0x830
[  742.999499][T12581]  ___sys_sendmsg+0x21f/0x2a0
[  743.004168][T12581]  __x64_sys_sendmsg+0x19b/0x260
[  743.009085][T12581]  do_syscall_64+0xfa/0x3b0
[  743.013567][T12581]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  743.019436][T12581] 
[  743.021767][T12581] The buggy address belongs to the object at ffff88807e591680
[  743.021767][T12581]  which belongs to the cache kmalloc-64 of size 64
[  743.035630][T12581] The buggy address is located 8 bytes to the right of
[  743.035630][T12581]  allocated 40-byte region [ffff88807e591680, ffff88807e5916a8)
[  743.050036][T12581] 
[  743.052362][T12581] The buggy address belongs to the physical page:
[  743.058778][T12581] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7e591
[  743.067542][T12581] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  743.074664][T12581] page_type: f5(slab)
[  743.078650][T12581] raw: 00fff00000000000 ffff88801a4418c0 dead000000000122 0000000000000000
[  743.087236][T12581] raw: 0000000000000000 0000000080200020 00000000f5000000 0000000000000000
[  743.095814][T12581] page dumped because: kasan: bad access detected
[  743.102232][T12581] page_owner tracks the page as allocated
[  743.107947][T12581] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x252800(GFP_NOWAIT|__GFP_NORETRY|__GFP_COMP|__GFP_THISNODE), pid 12581, tgid 12580 (syz.4.1859), ts 742517837646, free_ts 742517705636
[  743.127653][T12581]  post_alloc_hook+0x240/0x2a0
[  743.132408][T12581]  get_page_from_freelist+0x21e4/0x22c0
[  743.137936][T12581]  __alloc_frozen_pages_noprof+0x181/0x370
[  743.143727][T12581]  allocate_slab+0x65/0x370
[  743.148215][T12581]  ___slab_alloc+0xbeb/0x1410
[  743.152870][T12581]  __kmalloc_node_noprof+0x2fd/0x4e0
[  743.158142][T12581]  allocate_slab+0x16a/0x370
[  743.162708][T12581]  ___slab_alloc+0xbeb/0x1410
[  743.167360][T12581]  __kmalloc_cache_noprof+0x296/0x3d0
[  743.172712][T12581]  bpf_prog_alloc_no_stats+0xdb/0x4e0
[  743.178069][T12581]  bpf_check+0x15bfb/0x1a2d0
[  743.182646][T12581]  bpf_prog_load+0x1318/0x1930
[  743.187386][T12581]  __sys_bpf+0x5f1/0x860
[  743.191602][T12581]  __x64_sys_bpf+0x7c/0x90
[  743.195995][T12581]  do_syscall_64+0xfa/0x3b0
[  743.200473][T12581]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  743.206344][T12581] page last free pid 12581 tgid 12580 stack trace:
[  743.212829][T12581]  __free_frozen_pages+0xb80/0xd80
[  743.217946][T12581]  kasan_populate_vmalloc+0x118/0x1a0
[  743.223319][T12581]  alloc_vmap_area+0xd51/0x1490
[  743.228173][T12581]  __get_vm_area_node+0x1f8/0x300
[  743.233202][T12581]  __vmalloc_node_range_noprof+0x301/0x12f0
[  743.239094][T12581]  __vmalloc_noprof+0xb1/0xf0
[  743.243772][T12581]  bpf_prog_alloc_no_stats+0x4a/0x4e0
[  743.249149][T12581]  bpf_check+0x15bfb/0x1a2d0
[  743.253745][T12581]  bpf_prog_load+0x1318/0x1930
[  743.258509][T12581]  __sys_bpf+0x5f1/0x860
[  743.262752][T12581]  __x64_sys_bpf+0x7c/0x90
[  743.267167][T12581]  do_syscall_64+0xfa/0x3b0
[  743.271672][T12581]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  743.277574][T12581] 
[  743.279894][T12581] Memory state around the buggy address:
[  743.285518][T12581]  ffff88807e591580: fa fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc
[  743.293578][T12581]  ffff88807e591600: 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc fc
[  743.301637][T12581] >ffff88807e591680: 00 00 00 00 00 fc fc fc fc fc fc fc fc fc fc fc
[  743.309691][T12581]                                      ^
[  743.315325][T12581]  ffff88807e591700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  743.323385][T12581]  ffff88807e591780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  743.331441][T12581] ==================================================================
[  743.366591][T12581] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  743.373807][T12581] CPU: 1 UID: 0 PID: 12581 Comm: syz.4.1859 Not tainted 6.16.0-rc4-next-20250630-syzkaller #0 PREEMPT(full) 
[  743.385354][T12581] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  743.395413][T12581] Call Trace:
[  743.398704][T12581]  <TASK>
[  743.401638][T12581]  dump_stack_lvl+0x99/0x250
[  743.406245][T12581]  ? __asan_memcpy+0x40/0x70
[  743.410856][T12581]  ? __pfx_dump_stack_lvl+0x10/0x10
[  743.416049][T12581]  ? __pfx__printk+0x10/0x10
[  743.420635][T12581]  panic+0x2db/0x790
[  743.424523][T12581]  ? __pfx_panic+0x10/0x10
[  743.428935][T12581]  ? _raw_spin_unlock_irqrestore+0xfd/0x110
[  743.434820][T12581]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  743.441218][T12581]  ? print_memory_metadata+0x314/0x400
[  743.446661][T12581]  ? pause_parse_request+0x40/0x160
[  743.451847][T12581]  check_panic_on_warn+0x89/0xb0
[  743.456777][T12581]  ? pause_parse_request+0x40/0x160
[  743.461963][T12581]  end_report+0x78/0x160
[  743.466193][T12581]  kasan_report+0x129/0x150
[  743.470679][T12581]  ? pause_parse_request+0x40/0x160
[  743.475867][T12581]  ? __pfx_pause_parse_request+0x10/0x10
[  743.481484][T12581]  pause_parse_request+0x40/0x160
[  743.486502][T12581]  ? __pfx_pause_parse_request+0x10/0x10
[  743.492129][T12581]  ethnl_default_set_doit+0x2c1/0xa40
[  743.497498][T12581]  ? genl_family_rcv_msg_attrs_parse+0x1c9/0x2a0
[  743.503821][T12581]  genl_family_rcv_msg_doit+0x215/0x300
[  743.509362][T12581]  ? __pfx_genl_family_rcv_msg_doit+0x10/0x10
[  743.515429][T12581]  ? bpf_lsm_capable+0x9/0x20
[  743.520104][T12581]  ? security_capable+0x7e/0x2e0
[  743.525032][T12581]  genl_rcv_msg+0x60e/0x790
[  743.529540][T12581]  ? __pfx_genl_rcv_msg+0x10/0x10
[  743.534569][T12581]  ? ref_tracker_free+0x63a/0x7d0
[  743.539583][T12581]  ? __pfx_ethnl_default_set_doit+0x10/0x10
[  743.545460][T12581]  ? __pfx_ref_tracker_free+0x10/0x10
[  743.550825][T12581]  netlink_rcv_skb+0x205/0x470
[  743.555575][T12581]  ? __pfx_genl_rcv_msg+0x10/0x10
[  743.560586][T12581]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  743.565868][T12581]  ? down_read+0x1ad/0x2e0
[  743.570269][T12581]  genl_rcv+0x28/0x40
[  743.574236][T12581]  netlink_unicast+0x758/0x8d0
[  743.579078][T12581]  netlink_sendmsg+0x805/0xb30
[  743.583831][T12581]  ? __pfx_netlink_sendmsg+0x10/0x10
[  743.589097][T12581]  ? aa_sock_msg_perm+0xf1/0x1d0
[  743.594022][T12581]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[  743.599292][T12581]  ? __pfx_netlink_sendmsg+0x10/0x10
[  743.604558][T12581]  __sock_sendmsg+0x21c/0x270
[  743.609221][T12581]  ____sys_sendmsg+0x505/0x830
[  743.613969][T12581]  ? __pfx_____sys_sendmsg+0x10/0x10
[  743.619238][T12581]  ? import_iovec+0x74/0xa0
[  743.623724][T12581]  ___sys_sendmsg+0x21f/0x2a0
[  743.628384][T12581]  ? __pfx____sys_sendmsg+0x10/0x10
[  743.633575][T12581]  ? __fget_files+0x2a/0x420
[  743.638147][T12581]  ? __fget_files+0x3a0/0x420
[  743.642806][T12581]  __x64_sys_sendmsg+0x19b/0x260
[  743.647730][T12581]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[  743.653182][T12581]  ? rcu_is_watching+0x15/0xb0
[  743.657943][T12581]  ? do_syscall_64+0xbe/0x3b0
[  743.662600][T12581]  do_syscall_64+0xfa/0x3b0
[  743.667082][T12581]  ? lockdep_hardirqs_on+0x9c/0x150
[  743.672266][T12581]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  743.678313][T12581]  ? clear_bhb_loop+0x60/0xb0
[  743.682974][T12581]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  743.688850][T12581] RIP: 0033:0x7fceb858e929
[  743.693248][T12581] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  743.712834][T12581] RSP: 002b:00007fceb94b5038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  743.721234][T12581] RAX: ffffffffffffffda RBX: 00007fceb87b5fa0 RCX: 00007fceb858e929
[  743.729187][T12581] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000009
[  743.737143][T12581] RBP: 00007fceb8610b39 R08: 0000000000000000 R09: 0000000000000000
[  743.745099][T12581] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  743.753054][T12581] R13: 0000000000000000 R14: 00007fceb87b5fa0 R15: 00007ffc7b239fe8
[  743.761013][T12581]  </TASK>
[  743.764241][T12581] Kernel Offset: disabled
[  743.768546][T12581] Rebooting in 86400 seconds..