last executing test programs:
27.585650722s ago: executing program 2:
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000800)={'wlan1\x00'})
socket$packet(0x11, 0x3, 0x300)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_MPP(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000500)={0x1c, r3, 0x301, 0x0, 0x0, {{0x11}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0x0)
27.458487583s ago: executing program 2:
r0 = gettid()
timer_create(0x0, &(0x7f0000000280)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r2=>0xffffffffffffffff})
write$binfmt_script(r2, &(0x7f0000000340), 0xffffff46)
dup3(r2, r1, 0x0)
sendmsg$netlink(r1, &(0x7f0000001300)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000001340)=ANY=[], 0x10}], 0x1}, 0x0)
rt_sigreturn()
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r3, 0x0)
accept4$packet(r3, 0x0, 0x0, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
recvmsg(0xffffffffffffffff, &(0x7f0000001300)={&(0x7f0000000100)=@in6={0xa, 0x0, 0x0, @local}, 0x80, 0x0, 0x0, 0x0, 0xffffff61}, 0x0)
27.238262828s ago: executing program 2:
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000000)='ext4_mark_inode_dirty\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000000)='ext4_mark_inode_dirty\x00', r0}, 0x10)
unlink(&(0x7f00000007c0)='./cgroup\x00')
27.03281887s ago: executing program 2:
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
write$FUSE_NOTIFY_STORE(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB='/'], 0x2)
mount$fuse(0x20000000, &(0x7f00000000c0)='./file0\x00', 0x0, 0xa6d214, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00')
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f0000002040), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0], 0x0, 0x0, 0x0)
read$FUSE(r0, &(0x7f00000021c0)={0x2020}, 0x2020)
26.085430859s ago: executing program 2:
r0 = eventfd2(0x0, 0x0)
write$FUSE_NOTIFY_INVAL_ENTRY(r0, &(0x7f0000000040)={0x21}, 0x21)
2.396797553s ago: executing program 0:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x8, &(0x7f0000001dc0)=ANY=[@ANYBLOB="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"/3816], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x49)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x0, 0x8, 0x5}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000700)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000680)=0x2, &(0x7f00000006c0)}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000200)={r2, 0x0, &(0x7f0000000740)=""/232}, 0x20)
2.261768184s ago: executing program 0:
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
connect$inet(r1, &(0x7f0000000380)={0x2, 0x0, @local}, 0x12)
r2 = dup3(r1, r0, 0x0)
recvfrom$packet(r2, 0x0, 0x5, 0x20, 0x0, 0xfffffffffffffee1)
1.510648783s ago: executing program 4:
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
poll(0x0, 0x0, 0x401)
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
rt_sigreturn()
mlockall(0x1)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
mount$9p_virtio(0x0, 0x0, &(0x7f00000000c0), 0x10000, &(0x7f0000000040)=ANY=[])
1.354445017s ago: executing program 4:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x4, 0x5, &(0x7f0000001dc0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000006100000085000000d000000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
1.33825233s ago: executing program 0:
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000080)='./bus\x00', 0x80, &(0x7f0000000040)=ANY=[@ANYRES16=0x0, @ANYRESOCT=0x0, @ANYRESDEC=0x0], 0x1, 0x1253, &(0x7f0000002b00)="$eJzs3EFrY1UUAOCTtNNmOrapOo7OLPSiG1dh2oUrQYp0QBpQxokwIwgZmmpoTEoTChGxzsqtS3+DuHSniH+gW3+Bu24GV12IT5qXTpuMHUftpKLft3kn795z77nvQeCFd7P/+pcfb250Kxv1XhQLhShuRaSDFCmKceTFtfx4+87aSrW6ejOlGyu3ll5LKS289MP7n37z8o+9S+99u/DdbOwtfrB/f/nnvSt7V/d/u/VRs5ua3dTu9FI93e10evW7rUZab3Y3Kym902rUu43UbHcb2yPtG63O1lY/1dvr83Nb241uN9Xb/bTZ6KdeJ/W2+6n+Yb3ZTpVKJc3PBae68Oddal8fZNn3EVl2IWYiy7LsYsxFIZ6K+ViIzyPi6Xgmno3L8Vxciefjhbg66DWJ8gEAAAAAAAAAAAAAAAAAAOD/42Cwm390//+l4f7/ciza/w8AAAAAAAAAAAAAAAAAAAAT8O7tO2sr1erqzZRKEa0vdmo7tfyYt69sRDNa0YjrUY5fY7D7P5fHN96qrl5PA1MRsTvM392pHX68fzhEnr80+DuBYf70YOyj/KU8P8W91on82ZjL5y9FRCOWoxyXT8xfOs5ffjh/ZqdWildfOVF/JcrZbkQnWrE+mPs4/7OllN58uzo2/7VBPwAAAPgvqKQHFkeff6fy9spp7Xn+X/h9YOz5ejquTZ/v2ono9j/ZrLdaje3RoPTQmScVRCHikX1mJ1LGHwdvPKLPzPAKji3nMCj+k0lnY+zM1IOm4kjTVz9FnM9l+ZcFpeGdOIsBC0+01KNKz3rke2ey9tHgnL6QmKjjm35aj4uTLQgAAAAAAAAAAIDH8jjvA/4Sf/stwukYf7MsK5/bWgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPidHTgWAAAAABDmb51GxwYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8FMAAAD//yfNvAE=")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x0, &(0x7f0000000080)=0x7)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000840), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
syz_open_procfs(0x0, 0x0)
ioctl$KVM_SET_MP_STATE(r2, 0x4004ae99, &(0x7f00000001c0)=0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000240)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000440)={"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"})
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000032680)=""/102400, 0x19000)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
1.287597308s ago: executing program 4:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000020240), 0x10010)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000003000/0x18000)=nil, &(0x7f0000000080)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0x200394})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10, r4, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x7, 0x10012, r0, 0x0)
1.117316224s ago: executing program 4:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x25)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TCSETSW(r3, 0x5403, &(0x7f0000000040)={0x0, 0x5, 0x1, 0x8, 0x0, "dadd1023b1df022dace17a32d21100000000de"})
ioctl$TIOCL_GETMOUSEREPORTING(r3, 0x5412, &(0x7f00000006c0)=0xd)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000000)='./file0\x00', 0x400, &(0x7f0000000180)=ANY=[@ANYBLOB="6572726f72733d72656d6f756e742d726f2c757466383d302c757365667265652c646973636172642c757466383d312c756e695f786c6174653d302c73686f72746e616d653d77696e39352c756e695f786c6174653d302c756e695f786c6174653d302c0008442895b66131b4e4d54b2ba6ae54da0e13047e9f62fbb85ccc774b3ec4c81a1a985232d16d0d934460e920a59172e764c68194b9d9d0be76c595bac1fc5a0a8256a7b77e071e9bdd6100f9ae"], 0xfd, 0x274, &(0x7f0000000500)="$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")
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents(r4, &(0x7f00000000c0)=""/43, 0x60)
getdents(r4, 0xfffffffffffffffd, 0x58)
973.602347ms ago: executing program 2:
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r1, <r2=>0xffffffffffffffff}, 0x4)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0xc, 0x25, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020040008500000082000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000800000085000000a5000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000140)={r4, r0}, 0xc)
701.93825ms ago: executing program 1:
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x8, &(0x7f0000001dc0)=ANY=[@ANYBLOB="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"/3816], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x49)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x0, 0x8, 0x5}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000700)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000680)=0x2, &(0x7f00000006c0)}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000200)={r2, 0x0, &(0x7f0000000740)=""/232}, 0x20)
639.77874ms ago: executing program 3:
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x19, 0x4, 0x0, 0x0, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, @empty, @remote, {[@timestamp={0x44, 0x1c, 0x0, 0x0, 0x0, [0x401, 0x0, 0x0, 0x0, 0x0, 0x0]}, @timestamp_prespec={0x44, 0x24, 0x0, 0x3, 0x0, [{@dev}, {@dev}, {}, {@broadcast, 0x52b3}]}, @noop, @noop, @lsrr={0x83, 0xb, 0x0, [@multicast2, @rand_addr]}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
r3 = dup(r1)
sendmmsg(0xffffffffffffffff, &(0x7f00000030c0)=[{{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x1}], 0x1}}], 0x1, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x10e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x44d, &(0x7f0000000a40)="$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")
chdir(&(0x7f0000000000)='./file0\x00')
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r4, 0xae9a)
ioctl$KVM_RUN(r4, 0xae80, 0x0)
632.278661ms ago: executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(r0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r1, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="1802000000c400000000000000000000850000003e00000095"], &(0x7f00000000c0)='GPL\x00'}, 0x90)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=@base={0x12, 0x4, 0x8, 0xb}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000001c0)={@map=r3, r2, 0x7}, 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={r3, &(0x7f0000000240), &(0x7f00000004c0)=@tcp6=r1}, 0x20)
sendmsg$IPCTNL_MSG_CT_DELETE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[], 0x14}}, 0x0)
sendto$inet6(r1, &(0x7f0000000040)="0b118f2b4190be586d04d99304c7975dfc", 0x11, 0x0, 0x0, 0x0)
sendmsg$IPSET_CMD_DESTROY(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000600)=ANY=[], 0x14}}, 0x0)
sendmsg$SOCK_DESTROY(r0, &(0x7f0000001100)={0x0, 0x0, &(0x7f00000010c0)={&(0x7f0000002440)={0x14}, 0xc3ec}}, 0x0)
541.706895ms ago: executing program 1:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x8, 0x7, 0x1000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000407b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffda3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='module_request\x00', r1}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='module_request\x00'}, 0x10)
socketpair(0x0, 0x0, 0x0, &(0x7f00000006c0))
434.678882ms ago: executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000002040)=ANY=[@ANYBLOB="01000000000000008f02"])
431.983782ms ago: executing program 1:
ioprio_set$uid(0x3, 0x0, 0x0)
sched_setattr(0x0, &(0x7f00000000c0)={0x38, 0x5}, 0x0)
syz_open_procfs(0x0, 0x0)
r0 = memfd_create(&(0x7f0000000180)='\x00\xac=W[[\x87\x12\x04\xd5\xbc\x80K\x06\xcd]4(\xa2\xee2>\xa1\x9c\x86x\x1c\x9f\x97\x87\xd9c\xecR\xd6\xe8\xf3Y\x121p^\xc1\x0f\x00\x00\x00\x00\x00\x00\x00t\x00\x00\x00\x00\x00\x00\x00\x05\x00\x00\x00\x00M\xc2N%\x93t[\xf3\xee\xa4\xb4\xfbf\x8dz7\\\x8e\xac\x18\x00\xfd\x89\xe1d\xfa\xcfb\xf3\xdc\xd4CY\x9a\xef\xa3\\\xa7\xa9^\xafL:[\x8e\x83U\xff\xfd\xb0\xfa\xdaL\xa99\x9b\xcfA\xe4n\xa0^\n\x1c\x84\x04\xc5a\xdf\xe5\xd4Hyn\xba:/\xa5\xf4\xaa\xfa\xcd\xc7T\x83\xf5N^\xf2n\xd0=\xb9\t\xdd-F\xacb\xac \xd3\xccj\x13\xa2\x9fLu\'\xed\x91\x867\xaa\xf5\xa0]\xb6\xaa\xea\xfd\xde\xa6\xec\b\x16\x86l:;\xf9\xdb\xcf\x88\"\xca\xe0E\xdb\xec\xf9\xb3\xed\a\x00\x00\x00\x00\x00\x00\x00\xd6.\xf7\x92\xc42\xdf\xefE\xce}\x1b\xda\xdd?\n6\xe1\xb1\xd8Y\x960\xd1\x00\x00\x00\x00\x00\x00MW\x8f\xc6\x82\xe4\x15\xf7\xe9\xd8\xc5b\x0e\x91\xc5\xc76$\x18\xa4\xbe\xe8V\x8d-\xe3\x8fC\xd5\xf5\xd6L\xe3\xce\xa1\x8dz\xce\xa7\xa5\xc8\xcbhM\x1b\xf8\x98\xc4\xfbD6\x88\xfd\xe5i\x8a\xd8\xcfm\x81Z\x19\xf0\xef\xc15\xe8\xcb\xf5\t\t\x00\x17\xfa\x1fqb\xe7\"\xcb4\xb8\xe5/\xd52\x17\x12\x1d\xd8\x87\xb9|\x8d\x83\xea\xcc\x94\xebZ\xae\xaf\x19\xa4\xb2\xc6\xe1\x926B\xb6\x89Z\xa9\xb5/\xbb\x9d&\xeeO\xb3\xb3\xd4\b`\xa9f\x84\xad\t\x1a\xc2\xd5\x88\xbfo\x80V\x93\x9fX\xd7\xff\x03\xb7J\xed\x183\xe3\x7f\xfaq,\xca\x06\xb0\xc9\x92\x93\xa5I\x89\xb7\x85\x90\xb7\x1b0\xce\xd7!\x8fD\x96\xe1 ^>\x9f\x04\x89<\xb7S\x7f\x1a\x88\xab$\xd3y\xc2\xe1\x99\xbch\xd3\x83\xcd\x7f\xc5n\xb1\xc1X \xe2\xbb\x1f\x01\x90\xb1O\x8d\x7f\xa8\xd4\xdbO\xef\x99\xf3\xd3M\x0f\t\x7f\n,\x84\x1f\xfa\xe2\xc8\x99\x97Oq\xae\x9b\x86h\xfa3\xb9\xfd\xbb\xd4^\xc0t\xa7]Y\xe9\x7f[\x11\xb1\xf3m\x17F\x9d\x18\xe2\xe1\x01\xb6f=-?\xbcI\xf2\xd9\xc4>-\xc0E\x9a\x82\xcc7S\xd4\xb6\'\xd2DY\xa5\x83,\xd1\xbc\xc7\xf6\xe0\x1f o\x06\xc2t\x14\xc2\xe0\x92\xc1\x8a\x85>@\xc9\xb0% \xc7\x13l\x8bJ\xe5\xec\x1dE\xf5\xc5\xe2\xe3\x10G7r#\xbc\x95&\x14\x1e\x97\xce\x83>Q@\xfb\xeb=\x1e\xb3\xd5H\x02\x86\xc6\xf3\xe1i\\\x1d\xf4\xc1\xacJC+\xc8}\x1b{\x86\x17\x00\n\"\xec\xa5x\xe6\xb1i\xeb\xb3\xb7I\x90\x9eai\xde\x01\xdc\xfeA\x05Sn\xe6\xe8^\xdf\x8c`\x17\xca\xbd\\QG\xb15\x82*=\xbd\xe9\xaf\x12<\xd7\xe1$\xa4\xdaU\xfb^\xd8!\xacxy\xd5X\xef\x03\xa7\x10\xa1C#S~\x0f\x17\t>X\\mv0\x9eZ\x89\xf4\xae\a\xc8\x16\xd2t\x16\xf3X%Q\xbd\xe9\x86V\xf2\x99^0\xe8xI(\xde-\x04s\x15\x06#2\xef\xef@\xa3t0d^^\xad\xf6\xad\xe0\x16\xf6\xa8\x99!\x0e\x9d+;D&\xebN\x94\x12\x04\x95o\xd6\x9fl\xcb\x16gc\xf5(\xaa_\xec\x9aiE\f\xd4\xc6\xf2\xae\x85n\x995\xcd\xa7\xbb\xf0pz\xaf\tC\x1cq\xaa\x92,Li\r\x95Z\x89\"\xaf]\x95\xb9b_\xe4\xba\xd4\x93\xab\xe1\xb9\xd8E[\xbb\xc9.M+\xbe\x81<z\xf2\xe8\xf4\x93\xe6h\x97\x7f\xaf\xc5\x06g\fI\xa58\xf5\x18x\xc9\xb9\x03\t\x06\x96gf5\xb0\xc8\x86\x14\xe2\x01\x1f\x80\xe7Ol\xba\x93\xaa\x15\x87I7W\x87\xc4;p\xc5\x1e\"K5r\xec6\xac\xf0;\xf8 \xad\xc9\xf0\x16\xce\x17\xa1%f\x12\x80\x03N[qz\xf0q\xbd\xb8s\xe5>N\xd2\xae\xf4\x18\xd0\xe7\x98\x90,\xce\ft\xc4\xc7\x02\xaa\xc7\xeb1;\x86b\x8f\x12{k#c\x1d@\xc31\x00\xd2}f\x8cX\xce\xed\xa4\xe4\xca`<_}\'\xce\x81\xb3O\xae\xa1\xbfwcN,\xf2#\x16\xc4\xad\a&\xb1U\x83w\xd0K\xaa\xdf\x84\xe5\xe4\xdb\xa3G(\x7fv\x93\xb8m\x96\xd89Kb\xa9\x852\xb9\xcaG\x8b\x11\x16\x16\xeeI\x14\xcb\xe4\x9a\x1e\xb6^\xa3\xaa^\xdc\xcfo\xfb\xd6<\xa2\xc6\xbdj\xc4\xb1B\xf3S}\xfeI\xe2e\xec}o\xcfB\xa6\x877\'\x80\x82\t\xec\xc1&\xb8\xa9\x82&\xb8XQ8M@\xaa\x1f\vj\x9aW\xec\x92\x19\xdb^\x9d\x94\x87-&\x00/z\xa2\xd7\x01\\\t\xae~\xed\no\x1a\x9cKG^+\xc9\xe0v\xc0\x96\xc4\xcc\xb7\xdd\xdf\xf9\x01\x91\xe5\to[\x97\xbe\x110\x93\x14\xf8\x8a\x8d\xeb\t\xe7?/C\xaa\xd9\xc4\xc9\xbe\x12\xed\xb3*f\xd1J\x14\x80Iy4\xa9\xf88C\xe3', 0x0)
write(r0, &(0x7f0000000140)='/', 0x1)
sendfile(r0, r0, &(0x7f0000001000), 0xfea)
410.410316ms ago: executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000020240), 0x10010)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000003000/0x18000)=nil, &(0x7f0000000080)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f00000001c0)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f0000000200)={[], 0x0, 0x200394})
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10, r4, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x7, 0x10012, r0, 0x0)
328.625539ms ago: executing program 3:
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@textreal={0x8, 0x0}], 0x0, 0x0, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010040000000000002034400000008000300", @ANYRES32=r2, @ANYBLOB="08002600851600000a00180000000000000000001c005a8018000180140002"], 0x4c}}, 0x0)
264.385479ms ago: executing program 1:
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000240)={<r0=>0xffffffffffffffff})
close(r0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
close(r0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000000)={0xffffffffffffffff, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffdb4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe15, 0x5, 0x0, 0x0, 0x0, 0x0, 0x8, 0xffffffffffffff4b, 0x0}}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r2, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r2}, 0x0, 0x0}, 0x20)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000740)={r2, &(0x7f0000000000), &(0x7f00000000c0)=""/109}, 0x20)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000600)={{r1}, &(0x7f0000000540), &(0x7f0000000580)='%pI4 \x00'}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='ext4_ext_rm_leaf\x00', r3}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
259.72076ms ago: executing program 3:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000086"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='ext4_unlink_exit\x00', r0}, 0x10)
unlink(&(0x7f0000000140)='./cgroup\x00')
183.867341ms ago: executing program 4:
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x0, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000b80)={{r1}, &(0x7f0000000980), &(0x7f0000000b40)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='block_bio_remap\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='block_bio_remap\x00', r3}, 0x10)
write$cgroup_type(r0, &(0x7f0000000000), 0x9)
143.901058ms ago: executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cgroup.controllers\x00', 0x275a, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f60000008500000043"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f00000001c0)='ext4_da_reserve_space\x00', r2}, 0x10)
write$cgroup_pid(r0, &(0x7f0000000580), 0x12)
114.820083ms ago: executing program 1:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000002040)=ANY=[@ANYBLOB="01000000000000008802"])
113.122972ms ago: executing program 3:
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000200b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='percpu_create_chunk\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc}, 0x48)
82.374878ms ago: executing program 4:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000480)={"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"})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000240)={0x2, 0x0, @ioapic={0x0, 0x0, 0x0, 0x7fffffff, 0x0, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x9}]}})
22.192277ms ago: executing program 3:
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = eventfd(0x0)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000080)={0x0, 0x0, 0x0, r2})
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f00000000c0)={0x0, 0x0, 0x0, r2, 0x4})
0s ago: executing program 0:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bf"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000dc0)={&(0x7f0000000040)='ext4_unlink_enter\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5}, 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000001100)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000001080), &(0x7f00000010c0)='%pI4 \x00'}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r2, <r3=>0xffffffffffffffff}, &(0x7f00000002c0), &(0x7f0000000300)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000067dfb4a518110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000060000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000dc0)={&(0x7f0000000040)='ext4_unlink_enter\x00', r4}, 0x10)
unlink(&(0x7f0000000140)='./cgroup\x00')
kernel console output (not intermixed with test programs):
de overlap system zone
[ 641.019568][T19606] EXT4-fs (loop4): failed to initialize system zone (-117)
[ 641.026748][T19606] EXT4-fs (loop4): mount failed
[ 641.269095][ T2992] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 255, using maximum allowed: 30
[ 641.369536][ T2992] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 641.376053][T19606] loop4: detected capacity change from 0 to 512
[ 641.380660][ T2992] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 641.418472][ T2992] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 255
[ 641.432082][T19606] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 641.441474][ T2992] usb 1-1: New USB device found, idVendor=056e, idProduct=00fe, bcdDevice= 0.00
[ 641.446121][T19606] ext4 filesystem being mounted at /root/syzkaller-testdir3212939480/syzkaller.0Tz34P/1/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[ 641.461723][ T2992] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 641.512451][T19577] EXT4-fs (loop4): unmounting filesystem.
[ 641.553384][ T2992] usb 1-1: config 0 descriptor??
[ 641.908540][ T2992] usbhid 1-1:0.0: can't add hid device: -71
[ 641.923942][ T2992] usbhid: probe of 1-1:0.0 failed with error -71
[ 641.938483][T11723] usb 4-1: new high-speed USB device number 98 using dummy_hcd
[ 641.946962][ T2992] usb 1-1: USB disconnect, device number 93
[ 642.068487][T12762] usb 2-1: new full-speed USB device number 105 using dummy_hcd
[ 642.122551][T19640] loop4: detected capacity change from 0 to 512
[ 642.130803][T19640] EXT4-fs error (device loop4): ext4_find_inline_data_nolock:164: inode #12: comm syz-executor.4: inline data xattr refers to an external xattr inode
[ 642.146086][T19640] EXT4-fs error (device loop4): ext4_orphan_get:1401: comm syz-executor.4: couldn't read orphan inode 12 (err -117)
[ 642.158618][T19640] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[ 642.172598][T19577] EXT4-fs (loop4): unmounting filesystem.
[ 642.208497][T11723] usb 4-1: Using ep0 maxpacket: 8
[ 642.268503][ T4302] usb 3-1: new full-speed USB device number 114 using dummy_hcd
[ 642.318776][T19648] syz-executor.0[19648] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 642.318868][T19648] syz-executor.0[19648] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 642.330669][T11723] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 642.358600][T11723] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 642.371681][T11723] usb 4-1: New USB device found, idVendor=04d8, idProduct=f372, bcdDevice= 0.00
[ 642.382342][T11723] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 642.391052][T11723] usb 4-1: config 0 descriptor??
[ 642.438494][T12762] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 255, using maximum allowed: 30
[ 642.450232][T12762] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 642.461507][T12762] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 642.472864][T12762] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 255
[ 642.486064][T12762] usb 2-1: New USB device found, idVendor=056e, idProduct=00fe, bcdDevice= 0.00
[ 642.495156][T12762] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 642.505353][T12762] usb 2-1: config 0 descriptor??
[ 642.628489][ T4302] usb 3-1: too many endpoints for config 0 interface 0 altsetting 0: 255, using maximum allowed: 30
[ 642.639206][ T4302] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 642.650345][ T4302] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 642.668456][ T4302] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 255
[ 642.688461][ T4302] usb 3-1: New USB device found, idVendor=056e, idProduct=00fe, bcdDevice= 0.00
[ 642.697787][ T4302] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 642.706437][ T4302] usb 3-1: config 0 descriptor??
[ 642.788486][ T2992] usb 1-1: new high-speed USB device number 94 using dummy_hcd
[ 642.838517][T12762] usbhid 2-1:0.0: can't add hid device: -71
[ 642.844297][T12762] usbhid: probe of 2-1:0.0 failed with error -71
[ 642.859197][T12762] usb 2-1: USB disconnect, device number 105
[ 643.038533][ T2992] usb 1-1: Using ep0 maxpacket: 32
[ 643.048517][ T4302] usbhid 3-1:0.0: can't add hid device: -71
[ 643.054361][ T4302] usbhid: probe of 3-1:0.0 failed with error -71
[ 643.062622][ T4302] usb 3-1: USB disconnect, device number 114
[ 643.389451][ T2992] usb 1-1: New USB device found, idVendor=1557, idProduct=8150, bcdDevice=29.ed
[ 643.438606][ T2992] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 643.447232][ T2992] usb 1-1: Product: syz
[ 643.451282][ T2992] usb 1-1: Manufacturer: syz
[ 643.455999][ T2992] usb 1-1: SerialNumber: syz
[ 644.091437][ T2992] usb 1-1: config 0 descriptor??
[ 644.098727][T19672] syz-executor.4[19672] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 644.098807][T19672] syz-executor.4[19672] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 644.608664][T11723] usbhid 4-1:0.0: can't add hid device: -71
[ 644.699426][T11723] usbhid: probe of 4-1:0.0 failed with error -71
[ 644.750140][T11723] usb 4-1: USB disconnect, device number 98
[ 645.397948][T19697] loop3: detected capacity change from 0 to 1024
[ 645.404886][T19697] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (29950!=20869)
[ 645.414969][T19697] EXT4-fs (loop3): invalid journal inode
[ 645.420642][ T348] usb 2-1: new high-speed USB device number 106 using dummy_hcd
[ 645.421631][T19697] EXT4-fs (loop3): can't get journal size
[ 645.434066][T19697] EXT4-fs error (device loop3): ext4_protect_reserved_inode:182: inode #2: comm syz-executor.3: blocks 48-48 from inode overlap system zone
[ 645.448545][T19697] EXT4-fs (loop3): failed to initialize system zone (-117)
[ 645.455664][T19697] EXT4-fs (loop3): mount failed
[ 645.531125][T19697] loop3: detected capacity change from 0 to 512
[ 645.540109][T19697] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 645.549104][T19697] ext4 filesystem being mounted at /root/syzkaller-testdir1971205743/syzkaller.weL35Q/4/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[ 645.587709][T19572] EXT4-fs (loop3): unmounting filesystem.
[ 645.767722][ T348] usb 2-1: Using ep0 maxpacket: 8
[ 645.899024][ T348] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 645.910876][ T348] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 645.921066][ T348] usb 2-1: New USB device found, idVendor=04d8, idProduct=f372, bcdDevice= 0.00
[ 645.930221][ T348] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 645.938829][ T348] usb 2-1: config 0 descriptor??
[ 647.559017][ T348] hid-led 0003:04D8:F372.00E2: hidraw0: USB HID v0.00 Device [HID 04d8:f372] on usb-dummy_hcd.1-1/input0
[ 647.573517][ T348] hid-led 0003:04D8:F372.00E2: Greynut Luxafor initialized
[ 647.623533][ T334] usb 5-1: new high-speed USB device number 101 using dummy_hcd
[ 647.708470][T11723] usb 3-1: new high-speed USB device number 115 using dummy_hcd
[ 647.868483][ T334] usb 5-1: Using ep0 maxpacket: 8
[ 647.958568][T11723] usb 3-1: Using ep0 maxpacket: 8
[ 647.988525][ T334] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 648.008439][ T334] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 648.028451][ T334] usb 5-1: New USB device found, idVendor=04d8, idProduct=f372, bcdDevice= 0.00
[ 648.037320][ T334] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 648.059154][ T334] usb 5-1: config 0 descriptor??
[ 648.088693][T11723] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 648.109210][T11723] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 648.128552][T11723] usb 3-1: New USB device found, idVendor=04d8, idProduct=f372, bcdDevice= 0.00
[ 648.137440][T11723] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 648.145889][T11723] usb 3-1: config 0 descriptor??
[ 648.173935][ T348] usb 2-1: USB disconnect, device number 106
[ 648.181250][T12762] leds luxafor0:blue:led5: Setting an LED's brightness failed (-38)
[ 648.191035][T12762] leds luxafor0:green:led5: Setting an LED's brightness failed (-38)
[ 648.209409][T12762] leds luxafor0:red:led5: Setting an LED's brightness failed (-38)
[ 648.217402][T12762] leds luxafor0:blue:led4: Setting an LED's brightness failed (-38)
[ 648.228473][T12762] leds luxafor0:green:led4: Setting an LED's brightness failed (-38)
[ 648.238309][T12762] leds luxafor0:red:led4: Setting an LED's brightness failed (-38)
[ 648.248996][T12762] leds luxafor0:blue:led3: Setting an LED's brightness failed (-38)
[ 648.258306][T12762] leds luxafor0:green:led3: Setting an LED's brightness failed (-38)
[ 648.267306][T12762] leds luxafor0:red:led3: Setting an LED's brightness failed (-38)
[ 648.275854][T12762] leds luxafor0:blue:led2: Setting an LED's brightness failed (-38)
[ 648.284425][T12762] leds luxafor0:green:led2: Setting an LED's brightness failed (-38)
[ 648.293182][T12762] leds luxafor0:red:led2: Setting an LED's brightness failed (-38)
[ 648.315781][T19753] loop3: detected capacity change from 0 to 512
[ 648.322185][T12762] leds luxafor0:blue:led1: Setting an LED's brightness failed (-38)
[ 648.324508][T19753] EXT4-fs error (device loop3): ext4_find_inline_data_nolock:164: inode #12: comm syz-executor.3: inline data xattr refers to an external xattr inode
[ 648.338687][T12762] leds luxafor0:green:led1: Setting an LED's brightness failed (-38)
[ 648.345239][T19753] EXT4-fs error (device loop3): ext4_orphan_get:1401: comm syz-executor.3: couldn't read orphan inode 12 (err -117)
[ 648.365267][T12762] leds luxafor0:red:led1: Setting an LED's brightness failed (-38)
[ 648.365303][T19753] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 648.383824][T12762] leds luxafor0:blue:led0: Setting an LED's brightness failed (-38)
[ 648.392022][T12762] leds luxafor0:green:led0: Setting an LED's brightness failed (-38)
[ 648.400892][T19572] EXT4-fs (loop3): unmounting filesystem.
[ 648.403484][T12762] leds luxafor0:red:led0: Setting an LED's brightness failed (-38)
[ 648.706252][ T334] hid-led 0003:04D8:F372.00E3: hidraw0: USB HID v0.00 Device [HID 04d8:f372] on usb-dummy_hcd.4-1/input0
[ 648.719882][ T334] hid-led 0003:04D8:F372.00E3: Greynut Luxafor initialized
[ 649.088972][ T2992] rtl8150 1-1:0.0: couldn't reset the device
[ 649.095175][ T2992] rtl8150: probe of 1-1:0.0 failed with error -5
[ 649.101410][ T28] audit: type=1326 audit(2000000679.305:28345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19762 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c4807cf29 code=0x7ffc0000
[ 649.126338][ T2992] usb 1-1: USB disconnect, device number 94
[ 649.131014][ T28] audit: type=1326 audit(2000000679.305:28346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19762 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9c4807cf29 code=0x7ffc0000
[ 649.156096][ T28] audit: type=1326 audit(2000000679.315:28347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19762 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c4807cf29 code=0x7ffc0000
[ 649.180185][ T28] audit: type=1326 audit(2000000679.315:28348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19762 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9c4807cf29 code=0x7ffc0000
[ 649.204360][ T28] audit: type=1326 audit(2000000679.315:28349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19762 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9c4807cf29 code=0x7ffc0000
[ 649.228652][ T28] audit: type=1326 audit(2000000679.315:28350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19762 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9c4807a6a7 code=0x7ffc0000
[ 649.252650][ T28] audit: type=1326 audit(2000000679.315:28351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19762 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9c48040379 code=0x7ffc0000
[ 649.276615][ T28] audit: type=1326 audit(2000000679.315:28352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19762 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=126 compat=0 ip=0x7f9c4807cf29 code=0x7ffc0000
[ 649.300802][ T28] audit: type=1326 audit(2000000679.315:28353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19762 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f9c4807a6a7 code=0x7ffc0000
[ 649.325220][ T28] audit: type=1326 audit(2000000679.315:28354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19762 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9c48040379 code=0x7ffc0000
[ 649.568454][ T2992] usb 1-1: new high-speed USB device number 95 using dummy_hcd
[ 649.708536][T11723] usbhid 3-1:0.0: can't add hid device: -71
[ 649.714416][T11723] usbhid: probe of 3-1:0.0 failed with error -71
[ 649.721404][T11723] usb 3-1: USB disconnect, device number 115
[ 649.774766][T19793] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 649.812277][ T4302] usb 5-1: USB disconnect, device number 101
[ 649.818492][ T2992] usb 1-1: Using ep0 maxpacket: 32
[ 649.823808][ T60] leds luxafor0:blue:led5: Setting an LED's brightness failed (-38)
[ 649.831980][ T60] leds luxafor0:green:led5: Setting an LED's brightness failed (-38)
[ 649.840185][T18973] leds luxafor0:red:led5: Setting an LED's brightness failed (-38)
[ 649.852592][T18973] leds luxafor0:blue:led4: Setting an LED's brightness failed (-38)
[ 649.860864][T18973] leds luxafor0:green:led4: Setting an LED's brightness failed (-38)
[ 649.869170][T18973] leds luxafor0:red:led4: Setting an LED's brightness failed (-38)
[ 649.877192][T18973] leds luxafor0:blue:led3: Setting an LED's brightness failed (-38)
[ 649.885598][T18973] leds luxafor0:green:led3: Setting an LED's brightness failed (-38)
[ 649.894076][T18973] leds luxafor0:red:led3: Setting an LED's brightness failed (-38)
[ 649.902107][T18973] leds luxafor0:blue:led2: Setting an LED's brightness failed (-38)
[ 649.910188][T18973] leds luxafor0:green:led2: Setting an LED's brightness failed (-38)
[ 649.921606][T18973] leds luxafor0:red:led2: Setting an LED's brightness failed (-38)
[ 649.930180][T18973] leds luxafor0:blue:led1: Setting an LED's brightness failed (-38)
[ 649.938848][T18973] leds luxafor0:green:led1: Setting an LED's brightness failed (-38)
[ 649.947455][T18973] leds luxafor0:red:led1: Setting an LED's brightness failed (-38)
[ 649.955939][T18973] leds luxafor0:blue:led0: Setting an LED's brightness failed (-38)
[ 649.964517][T18973] leds luxafor0:green:led0: Setting an LED's brightness failed (-38)
[ 649.974959][T18973] leds luxafor0:red:led0: Setting an LED's brightness failed (-38)
[ 650.074284][T19799] loop4: detected capacity change from 0 to 32768
[ 650.119004][T19799] loop4: p1 p2 p3 < p5 p6 >
[ 650.124300][T19799] loop4: p5 start 16780287 is beyond EOD, truncated
[ 650.208584][ T2992] usb 1-1: New USB device found, idVendor=1557, idProduct=8150, bcdDevice=29.ed
[ 650.218298][ T2992] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 650.226192][ T2992] usb 1-1: Product: syz
[ 650.230463][ T2992] usb 1-1: Manufacturer: syz
[ 650.234913][ T2992] usb 1-1: SerialNumber: syz
[ 650.240181][ T2992] usb 1-1: config 0 descriptor??
[ 650.366832][T19823] loop3: detected capacity change from 0 to 256
[ 650.948539][ T2992] (unnamed net_device) (uninitialized): Assigned a random MAC address: c2:f6:37:66:e6:71
[ 650.960530][ T2992] rtl8150 1-1:0.0: eth1: rtl8150 is detected
[ 650.967092][ T2992] usb 1-1: USB disconnect, device number 95
[ 651.171544][T19853] loop4: detected capacity change from 0 to 40427
[ 651.178393][T19853] F2FS-fs (loop4): Invalid Fs Meta Ino: node(1) meta(2) root(0)
[ 651.185901][T19853] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[ 651.194709][T19853] F2FS-fs (loop4): invalid crc value
[ 651.201287][T19853] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 651.225340][T19853] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[ 651.232427][T19853] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 651.254654][T19577] bio_check_eod: 5 callbacks suppressed
[ 651.254669][T19577] syz-executor.4: attempt to access beyond end of device
[ 651.254669][T19577] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 656.158743][ T28] kauditd_printk_skb: 37 callbacks suppressed
[ 656.158760][ T28] audit: type=1326 audit(2000000686.375:28392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19966 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f982de7cf29 code=0x7ffc0000
[ 656.244537][ T28] audit: type=1326 audit(2000000686.405:28393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19966 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f982de7cf29 code=0x7ffc0000
[ 656.277479][T19985] netlink: 'syz-executor.4': attribute type 11 has an invalid length.
[ 656.295099][ T28] audit: type=1326 audit(2000000686.405:28394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19966 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=273 compat=0 ip=0x7f982de7cf29 code=0x7ffc0000
[ 656.310991][T19987] loop3: detected capacity change from 0 to 8192
[ 656.332909][ T28] audit: type=1326 audit(2000000686.405:28395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19966 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f982de7cf29 code=0x7ffc0000
[ 656.351384][T19987] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 656.357424][ T28] audit: type=1326 audit(2000000686.405:28396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19966 comm="syz-executor.3" exe="/root/syz-executor.3" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f982de7cf29 code=0x7ffc0000
[ 656.414917][T19997] loop4: detected capacity change from 0 to 256
[ 656.427184][T19987] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[ 656.448710][T19987] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 657.038667][ T4302] usb 2-1: new high-speed USB device number 107 using dummy_hcd
[ 657.278592][ T4302] usb 2-1: Using ep0 maxpacket: 8
[ 657.348759][ T28] audit: type=1400 audit(2000000687.555:28397): avc: denied { write } for pid=20024 comm="syz-executor.0" name="binder-control" dev="binder" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[ 657.449382][ T4302] usb 2-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 657.458328][ T4302] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 657.466817][ T4302] usb 2-1: config 0 descriptor??
[ 657.768602][ T4302] asix 2-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random
[ 657.925497][T20045] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[ 657.954557][T20045] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 657.998606][ T4302] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[ 658.021615][ T4302] asix 2-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffb9
[ 658.032412][ T4302] asix: probe of 2-1:0.0 failed with error -71
[ 658.041917][ T4302] usb 2-1: USB disconnect, device number 107
[ 658.391742][T20062] netlink: 'syz-executor.4': attribute type 2 has an invalid length.
[ 658.420019][T20062] netlink: 'syz-executor.4': attribute type 8 has an invalid length.
[ 658.440864][T20062] netlink: 'syz-executor.4': attribute type 1 has an invalid length.
[ 658.449021][T20062] netlink: 'syz-executor.4': attribute type 1 has an invalid length.
[ 658.457222][T20062] bridge0: port 1(bridge_slave_0) entered disabled state
[ 658.675958][T20081] loop4: detected capacity change from 0 to 8192
[ 658.749051][T20081] loop4: p1 p2 p3 p4 < >
[ 658.753280][T20081] loop4: p1 size 67108859 extends beyond EOD, truncated
[ 658.760483][T20081] loop4: p2 start 65535 is beyond EOD, truncated
[ 658.830856][T20098] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 658.850951][T20095] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[ 658.859227][T20095] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 658.902403][ T28] audit: type=1400 audit(2000000689.115:28398): avc: denied { transfer } for pid=20104 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=binder permissive=1
[ 658.991572][T20117] loop4: detected capacity change from 0 to 2048
[ 659.008458][ T4302] usb 2-1: new high-speed USB device number 108 using dummy_hcd
[ 659.038769][T20117] loop4: p1 < > p3 p4 < >
[ 659.044862][T20117] loop4: p3 start 4284289 is beyond EOD, truncated
[ 659.057797][ T28] audit: type=1400 audit(2000000689.265:28399): avc: denied { mounton } for pid=20116 comm="syz-executor.4" path="/dev/loop4p4" dev="devtmpfs" ino=1305 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[ 659.288694][ T60] usb 4-1: new high-speed USB device number 99 using dummy_hcd
[ 659.338469][ T4302] usb 2-1: Using ep0 maxpacket: 8
[ 659.441915][T20138] bridge0: port 1(bridge_slave_0) entered blocking state
[ 659.449012][T20138] bridge0: port 1(bridge_slave_0) entered disabled state
[ 659.456439][T20138] device bridge_slave_0 entered promiscuous mode
[ 659.462708][ T4302] usb 2-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 659.471680][ T4302] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 659.480515][ T4302] usb 2-1: config 0 descriptor??
[ 659.485444][T20138] bridge0: port 2(bridge_slave_1) entered blocking state
[ 659.492508][T20138] bridge0: port 2(bridge_slave_1) entered disabled state
[ 659.499907][T20138] device bridge_slave_1 entered promiscuous mode
[ 659.528451][ T60] usb 4-1: Using ep0 maxpacket: 32
[ 659.560746][T20138] bridge0: port 2(bridge_slave_1) entered blocking state
[ 659.567655][T20138] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 659.574745][T20138] bridge0: port 1(bridge_slave_0) entered blocking state
[ 659.581516][T20138] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 659.605764][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 659.613433][ T348] bridge0: port 1(bridge_slave_0) entered disabled state
[ 659.621617][ T348] bridge0: port 2(bridge_slave_1) entered disabled state
[ 659.632119][ T364] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 659.640127][ T364] bridge0: port 1(bridge_slave_0) entered blocking state
[ 659.646963][ T364] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 659.655228][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 659.663275][ T348] bridge0: port 2(bridge_slave_1) entered blocking state
[ 659.668527][ T60] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 659.670123][ T348] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 659.680207][ T60] usb 4-1: config 0 has no interfaces?
[ 659.699719][ T2992] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 659.707780][ T2992] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 659.715605][ T2992] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 659.730913][ T934] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 659.738797][ T934] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 659.746009][ T934] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 659.753224][ T4302] asix 2-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random
[ 659.764563][T20138] device veth0_vlan entered promiscuous mode
[ 659.778043][ T934] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 659.787651][T20138] device veth1_macvtap entered promiscuous mode
[ 659.802035][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 659.815744][ T2992] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 659.848543][ T60] usb 4-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[ 659.858262][ T60] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 659.868624][ T60] usb 4-1: Product: syz
[ 659.872701][ T60] usb 4-1: Manufacturer: syz
[ 659.877112][ T60] usb 4-1: SerialNumber: syz
[ 659.889639][ T60] usb 4-1: config 0 descriptor??
[ 659.899543][T17483] device bridge_slave_1 left promiscuous mode
[ 659.905600][T17483] bridge0: port 2(bridge_slave_1) entered disabled state
[ 659.913243][T17483] device bridge_slave_0 left promiscuous mode
[ 659.919570][T17483] bridge0: port 1(bridge_slave_0) entered disabled state
[ 659.927412][T17483] device veth1_macvtap left promiscuous mode
[ 659.933419][T17483] device veth0_vlan left promiscuous mode
[ 659.958511][ T4302] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[ 659.972841][ T4302] asix 2-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffb9
[ 660.007535][ T4302] asix: probe of 2-1:0.0 failed with error -71
[ 660.020566][ T4302] usb 2-1: USB disconnect, device number 108
[ 660.145436][T20173] loop4: detected capacity change from 0 to 2048
[ 660.148750][ T934] usb 4-1: USB disconnect, device number 99
[ 660.198775][T20173] loop4: p3 < > p4 < >
[ 660.202815][T20173] loop4: partition table partially beyond EOD, truncated
[ 660.219941][T20173] loop4: p3 start 4284289 is beyond EOD, truncated
[ 660.451162][T20190] netlink: 'syz-executor.4': attribute type 4 has an invalid length.
[ 660.511358][T17483] tipc: Left network mode
[ 660.561016][T20196] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 660.576786][ T28] audit: type=1400 audit(2000000690.795:28400): avc: denied { mounton } for pid=20191 comm="syz-executor.1" path="/proc/20191/cgroup" dev="proc" ino=115008 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=file permissive=1
[ 660.600549][T18973] usb 1-1: new high-speed USB device number 96 using dummy_hcd
[ 660.627421][ T28] audit: type=1400 audit(2000000690.795:28401): avc: denied { mounton } for pid=20191 comm="syz-executor.1" path="/proc/20191/cgroup" dev="nsfs" ino=4026532443 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 660.663807][T20193] bridge0: port 1(bridge_slave_0) entered blocking state
[ 660.680750][T20193] bridge0: port 1(bridge_slave_0) entered disabled state
[ 660.691746][T20193] device bridge_slave_0 entered promiscuous mode
[ 660.703595][T20193] bridge0: port 2(bridge_slave_1) entered blocking state
[ 660.710624][T20193] bridge0: port 2(bridge_slave_1) entered disabled state
[ 660.717935][T20193] device bridge_slave_1 entered promiscuous mode
[ 660.805834][T20193] bridge0: port 2(bridge_slave_1) entered blocking state
[ 660.813019][T20193] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 660.820093][T20193] bridge0: port 1(bridge_slave_0) entered blocking state
[ 660.826847][T20193] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 660.866775][ T934] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 660.874779][ T934] bridge0: port 1(bridge_slave_0) entered disabled state
[ 660.883297][ T934] bridge0: port 2(bridge_slave_1) entered disabled state
[ 660.902226][ T60] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 660.911537][ T60] bridge0: port 1(bridge_slave_0) entered blocking state
[ 660.918427][ T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 660.925781][ T60] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 660.942395][ T60] bridge0: port 2(bridge_slave_1) entered blocking state
[ 660.949294][ T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 660.968047][ T60] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 660.978613][T18973] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 660.989477][ T4302] usb 4-1: new high-speed USB device number 100 using dummy_hcd
[ 661.009308][T18973] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 661.029746][T20193] device veth0_vlan entered promiscuous mode
[ 661.037330][T20219] binder: BINDER_SET_CONTEXT_MGR already set
[ 661.045534][T20219] binder: 20218:20219 ioctl 4018620d 20000040 returned -16
[ 661.053352][T18973] usb 1-1: New USB device found, idVendor=1038, idProduct=12b6, bcdDevice= 0.00
[ 661.070015][T20193] device veth1_macvtap entered promiscuous mode
[ 661.078355][T18973] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 661.103137][T18973] usb 1-1: config 0 descriptor??
[ 661.120248][ T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 661.137477][ T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 661.153340][ T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 661.172058][ T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 661.191210][ T60] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 661.211683][ T60] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 661.231161][ T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 661.239472][ T4302] usb 4-1: Using ep0 maxpacket: 16
[ 661.255372][ T60] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 661.358550][ T4302] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 661.369770][ T4302] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 661.531023][T17483] device bridge_slave_1 left promiscuous mode
[ 661.539380][ T4302] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 661.543214][T17483] bridge0: port 2(bridge_slave_1) entered disabled state
[ 661.557222][ T4302] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 661.578665][T17483] device veth1_macvtap left promiscuous mode
[ 661.607882][T17483] device veth0_vlan left promiscuous mode
[ 661.673547][T18973] hid-generic 0003:1038:12B6.00E4: unknown main item tag 0x0
[ 661.702671][ T4302] usb 4-1: config 0 descriptor??
[ 661.707561][T18973] hid-generic 0003:1038:12B6.00E4: unknown main item tag 0x0
[ 661.714855][T18973] hid-generic 0003:1038:12B6.00E4: unknown main item tag 0x0
[ 661.722290][T18973] hid-generic 0003:1038:12B6.00E4: unknown main item tag 0x0
[ 661.729651][T18973] hid-generic 0003:1038:12B6.00E4: unknown main item tag 0x0
[ 661.739588][T18973] hid-generic 0003:1038:12B6.00E4: hidraw0: USB HID v0.00 Device [HID 1038:12b6] on usb-dummy_hcd.0-1/input0
[ 661.800223][T11723] usb 1-1: USB disconnect, device number 96
[ 661.823923][T20234] loop4: detected capacity change from 0 to 16
[ 661.831101][T20234] erofs: (device loop4): mounted with root inode @ nid 36.
[ 661.965032][T20235] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop4 ino=46
[ 662.179530][ T4302] microsoft 0003:045E:07DA.00E5: No inputs registered, leaving
[ 662.192704][ T4302] microsoft 0003:045E:07DA.00E5: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[ 662.210124][ T4302] microsoft 0003:045E:07DA.00E5: no inputs found
[ 662.220409][ T4302] microsoft 0003:045E:07DA.00E5: could not initialize ff, continuing anyway
[ 662.357626][T20241] bridge0: port 1(bridge_slave_0) entered blocking state
[ 662.365333][T20241] bridge0: port 1(bridge_slave_0) entered disabled state
[ 662.373231][T20241] device bridge_slave_0 entered promiscuous mode
[ 662.380131][T20241] bridge0: port 2(bridge_slave_1) entered blocking state
[ 662.389628][T20206] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 662.398644][T20206] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 662.406267][T20241] bridge0: port 2(bridge_slave_1) entered disabled state
[ 662.413956][T20241] device bridge_slave_1 entered promiscuous mode
[ 662.493361][T20241] bridge0: port 2(bridge_slave_1) entered blocking state
[ 662.500259][T20241] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 662.507336][T20241] bridge0: port 1(bridge_slave_0) entered blocking state
[ 662.514156][T20241] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 662.724909][ T2992] usb 4-1: USB disconnect, device number 100
[ 662.811161][ T348] bridge0: port 1(bridge_slave_0) entered disabled state
[ 662.826314][ T348] bridge0: port 2(bridge_slave_1) entered disabled state
[ 662.834174][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 662.841461][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 662.859629][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 662.867604][ T348] bridge0: port 1(bridge_slave_0) entered blocking state
[ 662.874442][ T348] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 662.881953][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 662.890740][ T348] bridge0: port 2(bridge_slave_1) entered blocking state
[ 662.897601][ T348] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 662.906608][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 662.914774][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 662.930080][ T1445] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 662.941682][ T1445] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 662.949516][ T1445] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 662.956722][ T1445] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 662.967129][T20241] device veth0_vlan entered promiscuous mode
[ 662.976997][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 662.986090][T20241] device veth1_macvtap entered promiscuous mode
[ 662.995107][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 663.008510][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 663.158515][ T331] usb 5-1: new high-speed USB device number 102 using dummy_hcd
[ 663.220233][T17483] device bridge_slave_1 left promiscuous mode
[ 663.226585][T17483] bridge0: port 2(bridge_slave_1) entered disabled state
[ 663.235239][T17483] device bridge_slave_0 left promiscuous mode
[ 663.242429][T17483] bridge0: port 1(bridge_slave_0) entered disabled state
[ 663.252754][T17483] device veth1_macvtap left promiscuous mode
[ 663.258880][T17483] device veth0_vlan left promiscuous mode
[ 663.402963][ T28] audit: type=1400 audit(2000000693.615:28402): avc: denied { ioctl } for pid=20286 comm="syz-executor.3" path="socket:[115707]" dev="sockfs" ino=115707 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[ 663.518696][ T331] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 663.558221][ T331] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 663.601785][ T331] usb 5-1: New USB device found, idVendor=1038, idProduct=12b6, bcdDevice= 0.00
[ 663.629243][ T331] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 663.649481][ T331] usb 5-1: config 0 descriptor??
[ 663.988490][ T1445] usb 4-1: new high-speed USB device number 101 using dummy_hcd
[ 664.129622][ T331] hid-generic 0003:1038:12B6.00E6: unknown main item tag 0x0
[ 664.137006][ T331] hid-generic 0003:1038:12B6.00E6: unknown main item tag 0x0
[ 664.144387][ T331] hid-generic 0003:1038:12B6.00E6: unknown main item tag 0x0
[ 664.152011][ T331] hid-generic 0003:1038:12B6.00E6: unknown main item tag 0x0
[ 664.159390][ T331] hid-generic 0003:1038:12B6.00E6: unknown main item tag 0x0
[ 664.170889][ T331] hid-generic 0003:1038:12B6.00E6: hidraw0: USB HID v0.00 Device [HID 1038:12b6] on usb-dummy_hcd.4-1/input0
[ 664.239700][ T1445] usb 4-1: Using ep0 maxpacket: 32
[ 664.341450][ T4302] usb 5-1: USB disconnect, device number 102
[ 664.408864][ T1445] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 664.418847][ T1445] usb 4-1: config 0 has no interfaces?
[ 664.608526][ T1445] usb 4-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[ 664.617448][ T1445] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 664.625204][ T1445] usb 4-1: Product: syz
[ 664.629222][ T1445] usb 4-1: Manufacturer: syz
[ 664.633599][ T1445] usb 4-1: SerialNumber: syz
[ 664.638554][ T1445] usb 4-1: config 0 descriptor??
[ 664.911898][ T2992] usb 4-1: USB disconnect, device number 101
[ 665.368548][ T331] usb 1-1: new high-speed USB device number 97 using dummy_hcd
[ 665.554699][T20343] loop3: detected capacity change from 0 to 256
[ 665.611322][T20343] FAT-fs (loop3): Directory bread(block 64) failed
[ 665.622606][T20343] FAT-fs (loop3): Directory bread(block 65) failed
[ 665.629153][T20343] FAT-fs (loop3): Directory bread(block 66) failed
[ 665.635532][T20343] FAT-fs (loop3): Directory bread(block 67) failed
[ 665.642068][T20343] FAT-fs (loop3): Directory bread(block 68) failed
[ 665.648473][T20343] FAT-fs (loop3): Directory bread(block 69) failed
[ 665.654847][T20343] FAT-fs (loop3): Directory bread(block 70) failed
[ 665.661826][T20343] FAT-fs (loop3): Directory bread(block 71) failed
[ 665.668355][T20343] FAT-fs (loop3): Directory bread(block 72) failed
[ 665.674797][T20343] FAT-fs (loop3): Directory bread(block 73) failed
[ 665.691648][ T331] usb 1-1: Using ep0 maxpacket: 8
[ 665.710300][T17488] kworker/u4:30: attempt to access beyond end of device
[ 665.710300][T17488] loop3: rw=1, sector=1224, nr_sectors = 12 limit=256
[ 665.813188][ T331] usb 1-1: config index 0 descriptor too short (expected 301, got 45)
[ 665.821354][ T331] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 665.832003][ T331] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 665.841704][ T331] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 665.851482][ T331] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 665.864410][ T331] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 665.873271][ T331] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 666.005666][T20368] loop3: detected capacity change from 0 to 40427
[ 666.014469][T20368] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 666.037488][T20368] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 666.239509][T20382] loop3: detected capacity change from 0 to 256
[ 666.259807][T20384] netlink: 15 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 666.328494][ T331] usb 2-1: new high-speed USB device number 109 using dummy_hcd
[ 666.464492][T20389] loop3: detected capacity change from 0 to 512
[ 666.475272][T20389] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 219 vs 220 free clusters
[ 666.489623][T20389] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz-executor.3: invalid indirect mapped block 1 (level 1)
[ 666.503800][T20389] EXT4-fs (loop3): 1 truncate cleaned up
[ 666.509300][T20389] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 666.536515][T20394] loop4: detected capacity change from 0 to 256
[ 666.552789][T20394] FAT-fs (loop4): Directory bread(block 64) failed
[ 666.559617][T20394] FAT-fs (loop4): Directory bread(block 65) failed
[ 666.566073][T20394] FAT-fs (loop4): Directory bread(block 66) failed
[ 666.572469][T20394] FAT-fs (loop4): Directory bread(block 67) failed
[ 666.578821][T20394] FAT-fs (loop4): Directory bread(block 68) failed
[ 666.585105][T20394] FAT-fs (loop4): Directory bread(block 69) failed
[ 666.591512][T20394] FAT-fs (loop4): Directory bread(block 70) failed
[ 666.597869][T20394] FAT-fs (loop4): Directory bread(block 71) failed
[ 666.604291][T20394] FAT-fs (loop4): Directory bread(block 72) failed
[ 666.610674][T20394] FAT-fs (loop4): Directory bread(block 73) failed
[ 666.838563][ T331] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[ 667.837188][ T331] usb 2-1: New USB device found, idVendor=046d, idProduct=1017, bcdDevice= 0.00
[ 667.846127][ T331] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 667.846889][T19572] EXT4-fs (loop3): unmounting filesystem.
[ 667.854482][ T331] usb 2-1: config 0 descriptor??
[ 667.898952][ T331] usbhid 2-1:0.0: couldn't find an input interrupt endpoint
[ 667.975690][ T28] audit: type=1326 audit(2000000698.185:28403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20415 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcbe967cf29 code=0x7ffc0000
[ 668.003374][T20417] netlink: 15 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 668.005860][ T28] audit: type=1326 audit(2000000698.185:28404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20415 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcbe967cf29 code=0x7ffc0000
[ 668.036452][ T28] audit: type=1326 audit(2000000698.185:28405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20415 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fcbe967cf29 code=0x7ffc0000
[ 668.060771][ T28] audit: type=1326 audit(2000000698.185:28406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20415 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcbe967cf29 code=0x7ffc0000
[ 668.085304][ T28] audit: type=1326 audit(2000000698.185:28407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20415 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcbe967cf29 code=0x7ffc0000
[ 668.109595][ T28] audit: type=1326 audit(2000000698.185:28408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20415 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fcbe967cf29 code=0x7ffc0000
[ 668.118461][ T1445] usb 1-1: USB disconnect, device number 97
[ 668.144258][ T28] audit: type=1326 audit(2000000698.185:28409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20415 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcbe967cf29 code=0x7ffc0000
[ 668.148031][ T2992] usb 2-1: USB disconnect, device number 109
[ 668.171862][ T28] audit: type=1326 audit(2000000698.185:28410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20415 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcbe967cf29 code=0x7ffc0000
[ 668.460320][T20452] device syzkaller0 entered promiscuous mode
[ 668.664850][T20460] loop4: detected capacity change from 0 to 40427
[ 668.671656][T20460] F2FS-fs (loop4): Insane cp_payload (553648128 >= 504)
[ 668.678515][T20460] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[ 668.687166][T20460] F2FS-fs (loop4): invalid crc value
[ 668.693401][T20460] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 668.716319][T20460] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[ 668.723221][T20460] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 668.821167][T20138] syz-executor.4: attempt to access beyond end of device
[ 668.821167][T20138] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 668.902312][T20481] loop4: detected capacity change from 0 to 512
[ 668.910551][T20481] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2213: inode #15: comm syz-executor.4: corrupted in-inode xattr
[ 668.922978][T20481] EXT4-fs error (device loop4): ext4_orphan_get:1401: comm syz-executor.4: couldn't read orphan inode 15 (err -117)
[ 668.935789][T20481] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 668.947408][T20481] EXT4-fs warning (device loop4): __ext4fs_dirhash:283: invalid/unsupported hash tree version 135
[ 668.958017][T20481] EXT4-fs warning (device loop4): __ext4fs_dirhash:283: invalid/unsupported hash tree version 135
[ 668.968646][T20481] EXT4-fs error (device loop4): ext4_inlinedir_to_tree:1432: inode #12: block 7: comm syz-executor.4: path /root/syzkaller-testdir414750897/syzkaller.4Hxb1A/38/file0/file0: bad entry in directory: rec_len is smaller than minimal - offset=4, inode=67108877, rec_len=0, size=60 fake=0
[ 669.010925][T20138] EXT4-fs (loop4): unmounting filesystem.
[ 669.586202][T20533] loop3: detected capacity change from 0 to 512
[ 669.613465][T20533] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2213: inode #15: comm syz-executor.3: corrupted in-inode xattr
[ 669.638485][T20533] EXT4-fs error (device loop3): ext4_orphan_get:1401: comm syz-executor.3: couldn't read orphan inode 15 (err -117)
[ 669.680425][T20533] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 669.692369][T20545] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 669.708168][T20533] EXT4-fs warning (device loop3): __ext4fs_dirhash:283: invalid/unsupported hash tree version 135
[ 669.723329][T20545] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 669.737109][T20533] EXT4-fs warning (device loop3): __ext4fs_dirhash:283: invalid/unsupported hash tree version 135
[ 669.749853][T20545] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 669.764384][T20545] netlink: 'syz-executor.0': attribute type 1 has an invalid length.
[ 669.773478][T20533] EXT4-fs error (device loop3): ext4_inlinedir_to_tree:1432: inode #12: block 7: comm syz-executor.3: path /root/syzkaller-testdir1971205743/syzkaller.weL35Q/74/file0/file0: bad entry in directory: rec_len is smaller than minimal - offset=4, inode=67108877, rec_len=0, size=60 fake=0
[ 669.804514][T20545] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 669.844353][T19572] EXT4-fs (loop3): unmounting filesystem.
[ 669.931115][T20561] loop3: detected capacity change from 0 to 128
[ 669.949119][T20561] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 669.964191][T20561] ext4 filesystem being mounted at /root/syzkaller-testdir1971205743/syzkaller.weL35Q/76/mnt supports timestamps until 2038 (0x7fffffff)
[ 669.983675][T20561] EXT4-fs warning (device loop3): verify_group_input:169: Last group not full
[ 669.995786][T19572] EXT4-fs (loop3): unmounting filesystem.
[ 670.145035][T20597] loop4: detected capacity change from 0 to 256
[ 670.161681][T20597] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 670.376545][T20608] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[ 670.435207][T20603] bridge0: port 1(bridge_slave_0) entered blocking state
[ 670.457324][T20603] bridge0: port 1(bridge_slave_0) entered disabled state
[ 670.475325][T20603] device bridge_slave_0 entered promiscuous mode
[ 670.493589][T20603] bridge0: port 2(bridge_slave_1) entered blocking state
[ 670.505239][T20603] bridge0: port 2(bridge_slave_1) entered disabled state
[ 670.516794][T20603] device bridge_slave_1 entered promiscuous mode
[ 670.518477][T20575] loop3: detected capacity change from 0 to 131072
[ 670.530095][T20575] F2FS-fs (loop3): Invalid log sectors per block(3) log sectorsize(12)
[ 670.538179][T20575] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[ 670.546509][T20575] F2FS-fs (loop3): Unrecognized mount option "errors=remount-ro" or missing value
[ 670.633871][T20615] bridge0: port 1(bridge_slave_0) entered blocking state
[ 670.640972][T20615] bridge0: port 1(bridge_slave_0) entered disabled state
[ 670.648366][T20615] device bridge_slave_0 entered promiscuous mode
[ 670.661959][T20615] bridge0: port 2(bridge_slave_1) entered blocking state
[ 670.668917][T20615] bridge0: port 2(bridge_slave_1) entered disabled state
[ 670.676162][T20615] device bridge_slave_1 entered promiscuous mode
[ 670.739938][ T2992] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 670.747446][ T2992] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 670.757458][ T2992] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 670.765620][ T2992] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 670.773845][ T2992] bridge0: port 1(bridge_slave_0) entered blocking state
[ 670.780690][ T2992] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 670.798990][ T1445] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 670.806370][ T1445] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 670.814469][ T1445] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 670.822439][ T1445] bridge0: port 2(bridge_slave_1) entered blocking state
[ 670.829283][ T1445] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 670.836424][ T1445] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 670.844591][ T1445] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 670.856824][T17483] device bridge_slave_1 left promiscuous mode
[ 670.863162][T17483] bridge0: port 2(bridge_slave_1) entered disabled state
[ 670.871306][T17483] device veth1_macvtap left promiscuous mode
[ 670.877170][T17483] device veth0_vlan left promiscuous mode
[ 671.010121][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 671.036483][T20603] device veth0_vlan entered promiscuous mode
[ 671.044004][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 671.052603][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 671.060833][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 671.080023][T20603] device veth1_macvtap entered promiscuous mode
[ 671.088279][ T348] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 671.107696][T20652] serio: Serial port pts0
[ 671.113448][ T1445] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 671.122171][ T1445] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 671.142262][ T2992] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 671.152339][ T2992] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 671.160451][ T2992] bridge0: port 1(bridge_slave_0) entered blocking state
[ 671.167312][ T2992] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 671.184216][ T2992] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 671.193265][ T2992] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 671.203726][ T2992] bridge0: port 2(bridge_slave_1) entered blocking state
[ 671.210593][ T2992] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 671.218648][ T2992] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 671.226502][ T2992] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 671.245520][T20615] device veth0_vlan entered promiscuous mode
[ 671.251675][T20659] loop3: detected capacity change from 0 to 8192
[ 671.253167][ T1445] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 671.259681][T20659] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 671.266946][ T1445] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 671.285148][ T1445] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 671.293590][ T1445] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 671.336263][ T1445] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 671.342568][T20659] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[ 671.364449][T20659] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 671.371854][T20615] device veth1_macvtap entered promiscuous mode
[ 671.389841][ T28] audit: type=1326 audit(2000000701.605:28411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20665 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f6587cf29 code=0x7ffc0000
[ 671.415549][ T28] audit: type=1326 audit(2000000701.625:28412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20665 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f6587cf29 code=0x7ffc0000
[ 671.442417][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 671.452079][ T28] audit: type=1326 audit(2000000701.625:28413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20665 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2f6587cf29 code=0x7ffc0000
[ 671.456098][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 671.514831][ T28] audit: type=1326 audit(2000000701.625:28414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20665 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f6587cf29 code=0x7ffc0000
[ 671.540198][ T28] audit: type=1326 audit(2000000701.625:28415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20665 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f6587cf29 code=0x7ffc0000
[ 671.565751][ T28] audit: type=1326 audit(2000000701.625:28416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20665 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2f6587cf29 code=0x7ffc0000
[ 671.591631][ T28] audit: type=1326 audit(2000000701.705:28417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20665 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2f6587cf29 code=0x7ffc0000
[ 671.615756][ T28] audit: type=1326 audit(2000000701.705:28418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20665 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2f6587a6a7 code=0x7ffc0000
[ 671.645818][ T28] audit: type=1326 audit(2000000701.705:28419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20665 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f2f65840379 code=0x7ffc0000
[ 671.673251][ T28] audit: type=1326 audit(2000000701.705:28420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20665 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f2f6587a6a7 code=0x7ffc0000
[ 672.249333][T20710] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 672.311193][T20712] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[ 672.319753][T20712] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 672.343042][T20719] loop4: detected capacity change from 0 to 512
[ 672.351945][T20719] EXT4-fs error (device loop4): ext4_orphan_get:1422: comm syz-executor.4: bad orphan inode 12
[ 672.362370][T20719] EXT4-fs (loop4): Remounting filesystem read-only
[ 672.368838][T20719] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 672.380835][T20716] EXT4-fs error (device loop4): ext4_empty_dir:3093: inode #2: comm syz-executor.4: Directory hole found for htree leaf block
[ 672.395691][T20716] EXT4-fs (loop4): Remounting filesystem read-only
[ 672.437112][T20615] EXT4-fs (loop4): unmounting filesystem.
[ 672.478627][ T1445] usb 3-1: new high-speed USB device number 116 using dummy_hcd
[ 672.711108][T17483] device bridge_slave_1 left promiscuous mode
[ 672.718055][T17483] bridge0: port 2(bridge_slave_1) entered disabled state
[ 672.827786][T17483] device bridge_slave_0 left promiscuous mode
[ 672.834022][T17483] bridge0: port 1(bridge_slave_0) entered disabled state
[ 672.845269][T17483] device veth1_macvtap left promiscuous mode
[ 672.854315][T17483] device veth0_vlan left promiscuous mode
[ 672.859122][T20748] tmpfs: Unsupported parameter 'mpol'
[ 673.268527][ T1445] usb 3-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[ 673.283771][ T1445] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 673.315212][ T1445] usb 3-1: config 0 descriptor??
[ 673.354844][T20762] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 673.361551][T20764] 9pnet_fd: Insufficient options for proto=fd
[ 673.372264][T20762] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 673.398504][T20762] netlink: 31 bytes leftover after parsing attributes in process `syz-executor.3'.
[ 673.891142][T20791] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 673.900366][T20791] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 673.909599][T20791] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 673.951544][T20804] 9pnet_fd: Insufficient options for proto=fd
[ 673.959353][T20804] loop3: detected capacity change from 0 to 256
[ 673.967234][T20804] FAT-fs (loop3): Unrecognized mount option "�c�vw!�discard" or missing value
[ 673.980992][T20812] loop4: detected capacity change from 0 to 256
[ 674.445331][ T348] usb 1-1: new low-speed USB device number 98 using dummy_hcd
[ 674.449945][T20849] loop3: detected capacity change from 0 to 256
[ 674.485914][T20851] loop3: detected capacity change from 0 to 1024
[ 674.492731][T20851] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 674.499594][T20851] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 674.511306][T20851] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 674.520752][T20851] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[ 674.528782][T20851] System zones: 0-1, 3-36
[ 674.535438][T20851] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 674.552995][T19572] EXT4-fs (loop3): unmounting filesystem.
[ 674.575037][T20858] loop3: detected capacity change from 0 to 256
[ 674.584921][T20858] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xdc42f586, utbl_chksum : 0xe619d30d)
[ 674.617194][T20860] loop3: detected capacity change from 0 to 128
[ 674.868540][ T348] usb 1-1: config index 0 descriptor too short (expected 1307, got 27)
[ 674.876810][ T348] usb 1-1: config 0 has an invalid interface number: 0 but max is -1
[ 674.884790][ T348] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 0
[ 674.893512][ T348] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[ 674.968304][T20865] loop4: detected capacity change from 0 to 512
[ 674.980054][T20865] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 674.987893][T20869] binder: BINDER_SET_CONTEXT_MGR already set
[ 674.989341][T20865] ext4 filesystem being mounted at /root/syzkaller-testdir904218355/syzkaller.QKGgST/21/file0 supports timestamps until 2038 (0x7fffffff)
[ 674.994831][T20869] binder: 20868:20869 ioctl 40046207 0 returned -16
[ 675.019895][T20615] EXT4-fs (loop4): unmounting filesystem.
[ 675.128237][T20873] loop4: detected capacity change from 0 to 40427
[ 675.137581][T20873] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 675.172929][T20873] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 675.180371][ T348] usb 1-1: string descriptor 0 read error: -22
[ 675.189500][ T348] usb 1-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=c3.de
[ 675.198874][ T348] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 675.207200][T20615] syz-executor.4: attempt to access beyond end of device
[ 675.207200][T20615] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 675.207587][ T348] usb 1-1: config 0 descriptor??
[ 675.225381][T20880] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[ 675.236811][T17426] usb 3-1: USB disconnect, device number 116
[ 675.242648][T20880] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 675.259904][T20829] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[ 675.278771][ T348] hub 1-1:0.0: bad descriptor, ignoring hub
[ 675.285724][ T348] hub: probe of 1-1:0.0 failed with error -5
[ 675.301262][ T348] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input136
[ 675.426052][T20903] loop4: detected capacity change from 0 to 512
[ 675.450278][T20903] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 675.459250][T20903] ext4 filesystem being mounted at /root/syzkaller-testdir904218355/syzkaller.QKGgST/26/file0 supports timestamps until 2038 (0x7fffffff)
[ 675.494262][T12762] usb 1-1: USB disconnect, device number 98
[ 675.501104][T20615] EXT4-fs (loop4): unmounting filesystem.
[ 675.568545][T20920] loop3: detected capacity change from 0 to 256
[ 675.575534][T20920] exfat: Unknown parameter '�'
[ 677.108533][T17426] usb 5-1: new high-speed USB device number 103 using dummy_hcd
[ 677.331754][T20954] device wg2 entered promiscuous mode
[ 677.348515][T17426] usb 5-1: Using ep0 maxpacket: 8
[ 677.438098][ T28] kauditd_printk_skb: 294 callbacks suppressed
[ 677.438114][ T28] audit: type=1326 audit(2000000707.645:28715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20978 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f982de7cf29 code=0x0
[ 677.468320][T12762] usb 2-1: new high-speed USB device number 110 using dummy_hcd
[ 677.468560][T17426] usb 5-1: config 179 has an invalid interface number: 65 but max is 0
[ 677.485536][T17426] usb 5-1: config 179 has no interface number 0
[ 677.491638][T17426] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[ 677.504039][T17426] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[ 677.518014][T17426] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 677.529002][T17426] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[ 677.540233][T17426] usb 5-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 677.553341][T17426] usb 5-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[ 677.562217][T17426] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 677.571132][T20988] netlink: 3 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 677.598500][T20918] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 677.848514][T12762] usb 2-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[ 677.857439][T12762] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 677.865566][T12762] usb 2-1: config 0 descriptor??
[ 678.025646][T12762] usb 5-1: USB disconnect, device number 103
[ 678.038460][ C0] xpad 5-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[ 678.749469][T21038] loop4: detected capacity change from 0 to 8192
[ 678.756792][T21038] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 679.008475][ T934] usb 3-1: new high-speed USB device number 117 using dummy_hcd
[ 679.368511][ T934] usb 3-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[ 679.377526][ T934] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 679.385860][ T934] usb 3-1: config 0 descriptor??
[ 679.598547][T12762] usb 1-1: new high-speed USB device number 99 using dummy_hcd
[ 679.863435][T21057] loop4: detected capacity change from 0 to 131072
[ 679.870436][T21057] F2FS-fs (loop4): Wrong NAT boundary, start(2560) end(9728) blocks(1024)
[ 679.878794][T12762] usb 1-1: Using ep0 maxpacket: 8
[ 679.878984][T21057] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[ 679.892431][T21057] F2FS-fs (loop4): invalid crc value
[ 679.899502][T21057] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 679.922642][T21057] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[ 679.929556][T21057] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4
[ 680.008516][T12762] usb 1-1: config 179 has an invalid interface number: 65 but max is 0
[ 680.016758][T12762] usb 1-1: config 179 has no interface number 0
[ 680.022941][T12762] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[ 680.034950][T12762] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[ 680.046134][T12762] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 680.057272][T12762] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[ 680.068653][T12762] usb 1-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 680.082045][T12762] usb 1-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[ 680.091163][T12762] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 680.128529][T21053] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22
[ 680.178678][T12762] usb 2-1: USB disconnect, device number 110
[ 680.301462][ T28] audit: type=1400 audit(2000000710.515:28716): avc: denied { getopt } for pid=21079 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[ 680.350096][T21085] loop4: detected capacity change from 0 to 8192
[ 680.357395][T21085] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 680.553004][ T1445] usb 1-1: USB disconnect, device number 99
[ 680.558753][ C1] xpad 1-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[ 680.558777][ C1] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[ 680.648465][T12762] usb 2-1: new high-speed USB device number 111 using dummy_hcd
[ 680.908456][T12762] usb 2-1: Using ep0 maxpacket: 8
[ 681.068544][T12762] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 681.079376][T12762] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 681.088999][T12762] usb 2-1: New USB device found, idVendor=046a, idProduct=0023, bcdDevice= 0.00
[ 681.097859][T12762] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 681.106250][T12762] usb 2-1: config 0 descriptor??
[ 681.287307][ T28] audit: type=1400 audit(2000000711.495:28717): avc: denied { bind } for pid=21100 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[ 681.471791][T21113] loop4: detected capacity change from 0 to 8192
[ 681.479466][T21113] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 681.599264][T12762] cherry 0003:046A:0023.00E7: item fetching failed at offset 0/7
[ 681.607716][T12762] cherry: probe of 0003:046A:0023.00E7 failed with error -22
[ 681.743158][T12762] usb 3-1: USB disconnect, device number 117
[ 681.802283][T17426] usb 2-1: USB disconnect, device number 111
[ 682.364892][T21184] loop4: detected capacity change from 0 to 1024
[ 682.375770][T21184] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 682.397168][T20615] EXT4-fs (loop4): unmounting filesystem.
[ 682.403339][T12762] usb 1-1: new high-speed USB device number 100 using dummy_hcd
[ 682.495856][T21200] loop4: detected capacity change from 0 to 256
[ 682.512122][T21200] FAT-fs (loop4): Directory bread(block 64) failed
[ 682.521334][T21200] FAT-fs (loop4): Directory bread(block 65) failed
[ 682.534148][T21200] FAT-fs (loop4): Directory bread(block 66) failed
[ 682.541340][T21200] FAT-fs (loop4): Directory bread(block 67) failed
[ 682.552354][T21200] FAT-fs (loop4): Directory bread(block 68) failed
[ 682.566806][T21200] FAT-fs (loop4): Directory bread(block 69) failed
[ 682.574299][T21200] FAT-fs (loop4): Directory bread(block 70) failed
[ 682.581775][T21200] FAT-fs (loop4): Directory bread(block 71) failed
[ 682.588132][T21200] FAT-fs (loop4): Directory bread(block 72) failed
[ 682.594652][T21200] FAT-fs (loop4): Directory bread(block 73) failed
[ 682.655150][T17483] kworker/u4:26: attempt to access beyond end of device
[ 682.655150][T17483] loop4: rw=1, sector=1224, nr_sectors = 128 limit=256
[ 682.789114][T12762] usb 1-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[ 682.798333][T12762] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 682.807121][T12762] usb 1-1: config 0 descriptor??
[ 683.023849][T21234] 9pnet_virtio: no channels available for device syz
[ 683.111981][T21237] loop4: detected capacity change from 0 to 512
[ 683.118685][T21237] EXT4-fs: Ignoring removed mblk_io_submit option
[ 683.125320][T21237] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 683.141439][T21237] EXT4-fs (loop4): 1 truncate cleaned up
[ 683.147087][T21237] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 683.163090][T20615] EXT4-fs error (device loop4): ext4_readdir:260: inode #11: block 54: comm syz-executor.4: path /root/syzkaller-testdir904218355/syzkaller.QKGgST/67/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[ 683.190158][T20615] EXT4-fs error (device loop4): ext4_empty_dir:3131: inode #11: block 54: comm syz-executor.4: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[ 683.211648][T20615] EXT4-fs error (device loop4): ext4_readdir:260: inode #11: block 54: comm syz-executor.4: path /root/syzkaller-testdir904218355/syzkaller.QKGgST/67/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[ 683.237792][T20615] EXT4-fs error (device loop4): ext4_empty_dir:3131: inode #11: block 54: comm syz-executor.4: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[ 683.266521][T20615] EXT4-fs error (device loop4): ext4_readdir:260: inode #11: block 54: comm syz-executor.4: path /root/syzkaller-testdir904218355/syzkaller.QKGgST/67/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[ 683.294375][T20615] EXT4-fs error (device loop4): ext4_empty_dir:3131: inode #11: block 54: comm syz-executor.4: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[ 683.315591][T20615] EXT4-fs error (device loop4): ext4_readdir:260: inode #11: block 54: comm syz-executor.4: path /root/syzkaller-testdir904218355/syzkaller.QKGgST/67/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[ 683.341777][T20615] EXT4-fs error (device loop4): ext4_empty_dir:3131: inode #11: block 54: comm syz-executor.4: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[ 683.361844][T20615] EXT4-fs error (device loop4): ext4_readdir:260: inode #11: block 54: comm syz-executor.4: path /root/syzkaller-testdir904218355/syzkaller.QKGgST/67/bus/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[ 683.396467][T20615] EXT4-fs error (device loop4): ext4_empty_dir:3131: inode #11: block 54: comm syz-executor.4: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[ 683.418018][T21242] input: syz1 as /devices/virtual/input/input137
[ 683.525634][T20615] EXT4-fs (loop4): unmounting filesystem.
[ 683.691413][T21249] bridge0: port 1(bridge_slave_0) entered blocking state
[ 683.698509][T21249] bridge0: port 1(bridge_slave_0) entered disabled state
[ 683.705983][T21249] device bridge_slave_0 entered promiscuous mode
[ 683.712974][T21249] bridge0: port 2(bridge_slave_1) entered blocking state
[ 683.720013][T21249] bridge0: port 2(bridge_slave_1) entered disabled state
[ 683.727367][T21249] device bridge_slave_1 entered promiscuous mode
[ 683.793553][T21249] bridge0: port 2(bridge_slave_1) entered blocking state
[ 683.800635][T21249] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 683.807708][T21249] bridge0: port 1(bridge_slave_0) entered blocking state
[ 683.814509][T21249] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 683.839620][T12762] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 683.847402][T12762] bridge0: port 1(bridge_slave_0) entered disabled state
[ 683.856614][T12762] bridge0: port 2(bridge_slave_1) entered disabled state
[ 683.876614][T12762] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 683.885032][T12762] bridge0: port 1(bridge_slave_0) entered blocking state
[ 683.891904][T12762] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 683.899208][T12762] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 683.907230][T12762] bridge0: port 2(bridge_slave_1) entered blocking state
[ 683.914115][T12762] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 683.921384][T12762] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 683.930086][T12762] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 683.950156][T12762] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 683.960836][T17426] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 683.972570][ T934] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 683.979988][ T934] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 683.987792][T21249] device veth0_vlan entered promiscuous mode
[ 684.005518][ T934] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 684.015167][T21249] device veth1_macvtap entered promiscuous mode
[ 684.029082][ T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 684.041910][T12762] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 684.086077][T21257] loop4: detected capacity change from 0 to 256
[ 684.094937][T21257] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[ 684.119305][T17488] device bridge_slave_1 left promiscuous mode
[ 684.127401][T17488] bridge0: port 2(bridge_slave_1) entered disabled state
[ 684.145968][T17488] device bridge_slave_0 left promiscuous mode
[ 684.152038][T17488] bridge0: port 1(bridge_slave_0) entered disabled state
[ 684.160976][T17488] device veth1_macvtap left promiscuous mode
[ 684.166894][T17488] device veth0_vlan left promiscuous mode
[ 684.261395][T21263] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.1'.
[ 684.418508][ T334] usb 5-1: new high-speed USB device number 104 using dummy_hcd
[ 684.638626][T12762] usb 3-1: new high-speed USB device number 118 using dummy_hcd
[ 684.808493][ T334] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[ 684.819184][ T334] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 684.829982][ T334] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 684.839931][ T334] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[ 684.958706][ T334] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[ 684.967722][ T334] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[ 684.975584][ T334] usb 5-1: Manufacturer: syz
[ 684.980562][ T334] usb 5-1: config 0 descriptor??
[ 685.028531][T12762] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 685.038921][T12762] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 685.136993][ T1445] usb 1-1: USB disconnect, device number 100
[ 685.143671][T12762] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[ 685.153259][T12762] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 685.161421][T12762] usb 3-1: SerialNumber: syz
[ 685.439576][T12762] usb 3-1: 0:2 : does not exist
[ 685.446123][T12762] usb 3-1: USB disconnect, device number 118
[ 685.459308][ T334] appleir 0003:05AC:8243.00E8: unknown main item tag 0x0
[ 685.466588][ T334] appleir 0003:05AC:8243.00E8: No inputs registered, leaving
[ 685.474827][ T334] appleir 0003:05AC:8243.00E8: hiddev96,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.4-1/input0
[ 685.541869][ T28] audit: type=1400 audit(2000000715.755:28718): avc: denied { write } for pid=21332 comm="syz-executor.0" name="urandom" dev="devtmpfs" ino=8 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:urandom_device_t tclass=chr_file permissive=1
[ 685.749042][T17426] usb 5-1: USB disconnect, device number 104
[ 686.053519][T21374] device bridge1 entered promiscuous mode
[ 686.198511][T12762] usb 3-1: new high-speed USB device number 119 using dummy_hcd
[ 686.628563][T12762] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 686.638555][T12762] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 686.738503][T17426] usb 5-1: new high-speed USB device number 105 using dummy_hcd
[ 686.748505][T12762] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[ 686.757571][T12762] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 686.765454][T12762] usb 3-1: SerialNumber: syz
[ 687.039133][T12762] usb 3-1: 0:2 : does not exist
[ 687.045181][T12762] usb 3-1: USB disconnect, device number 119
[ 687.098564][T17426] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[ 687.109385][T17426] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 687.120285][T17426] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 687.129961][T17426] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[ 687.218571][T17426] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[ 687.227571][T17426] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[ 687.235572][T17426] usb 5-1: Manufacturer: syz
[ 687.240519][T17426] usb 5-1: config 0 descriptor??
[ 687.624226][ T28] audit: type=1400 audit(2000000717.835:28719): avc: denied { unmount } for pid=20241 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[ 687.719306][T17426] appleir 0003:05AC:8243.00E9: unknown main item tag 0x0
[ 687.726392][T17426] appleir 0003:05AC:8243.00E9: No inputs registered, leaving
[ 687.744380][T17426] appleir 0003:05AC:8243.00E9: hiddev96,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.4-1/input0
[ 687.989196][T17426] usb 5-1: USB disconnect, device number 105
[ 688.918517][T12762] usb 5-1: new high-speed USB device number 106 using dummy_hcd
[ 688.935445][T21505] input: syz0 as /devices/virtual/input/input138
[ 689.308564][T12762] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[ 689.319990][T12762] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 689.331382][T12762] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 689.341673][T12762] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[ 689.438591][T12762] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[ 689.442787][T21533] input: syz0 as /devices/virtual/input/input139
[ 689.453858][T12762] usb 5-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[ 689.461924][T12762] usb 5-1: Manufacturer: syz
[ 689.468981][T12762] usb 5-1: config 0 descriptor??
[ 689.578506][ T334] usb 1-1: new high-speed USB device number 101 using dummy_hcd
[ 689.969415][T12762] appleir 0003:05AC:8243.00EA: unknown main item tag 0x0
[ 689.981833][T12762] appleir 0003:05AC:8243.00EA: No inputs registered, leaving
[ 689.990308][T12762] appleir 0003:05AC:8243.00EA: hiddev96,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.4-1/input0
[ 690.001473][ T334] usb 1-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 690.011083][ T334] usb 1-1: config 1 has an invalid descriptor of length 110, skipping remainder of the config
[ 690.021377][ T334] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 690.030264][ T334] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 101, changing to 10
[ 690.041408][ T334] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 10100, setting to 1024
[ 690.172495][ T334] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 690.181822][ T334] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 690.189657][ T334] usb 1-1: Product: syz
[ 690.193738][ T334] usb 1-1: Manufacturer: syz
[ 690.218558][T21521] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22
[ 690.249750][T12762] usb 5-1: USB disconnect, device number 106
[ 690.256337][ T334] cdc_wdm 1-1:1.0: skipping garbage
[ 690.263215][ T334] cdc_wdm 1-1:1.0: skipping garbage
[ 690.269329][ T334] cdc_wdm 1-1:1.0: cdc-wdm0: USB WDM device
[ 690.464097][ T331] usb 1-1: USB disconnect, device number 101
[ 690.658471][T17426] usb 2-1: new high-speed USB device number 112 using dummy_hcd
[ 690.898477][T17426] usb 2-1: Using ep0 maxpacket: 8
[ 691.048546][T17426] usb 2-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 691.057608][T17426] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 691.071475][T17426] usb 2-1: config 0 descriptor??
[ 691.328514][T17426] asix 2-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random
[ 691.897002][ T28] audit: type=1400 audit(2000000722.105:28720): avc: denied { getopt } for pid=21575 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 691.926144][T21577] serio: Serial port pts0
[ 691.988493][T17426] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[ 691.998566][T17426] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to write GPIO value 0x00b0: ffffffb9
[ 692.038502][T17426] asix: probe of 2-1:0.0 failed with error -71
[ 692.045403][T17426] usb 2-1: USB disconnect, device number 112
[ 692.724022][T21598] loop4: detected capacity change from 0 to 1024
[ 692.730934][T21598] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[ 692.740411][T21598] EXT4-fs (loop4): external journal device major/minor numbers have changed
[ 692.748855][T21598] EXT4-fs (loop4): filesystem has both journal inode and journal device!
[ 692.772158][T21598] loop4: detected capacity change from 0 to 512
[ 692.781458][T21598] EXT4-fs (sda1): changing journal_checksum during remount not supported; ignoring
[ 692.790629][T21598] EXT4-fs (sda1): re-mounted. Quota mode: none.
[ 693.186163][T21604] loop4: detected capacity change from 0 to 512
[ 693.668463][T12762] usb 2-1: new high-speed USB device number 113 using dummy_hcd
[ 693.678814][ T334] usb 5-1: new high-speed USB device number 107 using dummy_hcd
[ 693.820983][T21635] overlayfs: overlapping lowerdir path
[ 693.908521][T12762] usb 2-1: Using ep0 maxpacket: 8
[ 693.928584][ T334] usb 5-1: Using ep0 maxpacket: 8
[ 694.028601][T12762] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 694.038969][T12762] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 694.048015][T12762] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 100, changing to 10
[ 694.059519][ T334] usb 5-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 694.068632][T12762] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24936, setting to 1024
[ 694.079963][ T334] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 694.088847][T12762] usb 2-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[ 694.099832][ T334] usb 5-1: config 0 descriptor??
[ 694.105112][T12762] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 694.152283][T12762] hub 2-1:1.0: bad descriptor, ignoring hub
[ 694.158156][T12762] hub: probe of 2-1:1.0 failed with error -5
[ 694.164887][T12762] cdc_wdm 2-1:1.0: skipping garbage
[ 694.170249][T12762] cdc_wdm 2-1:1.0: skipping garbage
[ 694.177449][T12762] cdc_wdm 2-1:1.0: cdc-wdm0: USB WDM device
[ 694.348586][ T334] asix 5-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random
[ 694.349819][T21617] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 694.366803][T21617] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 694.498724][T12762] usb 2-1: USB disconnect, device number 113
[ 694.628160][ T28] audit: type=1400 audit(2000000724.835:28721): avc: denied { append } for pid=21644 comm="syz-executor.0" name="urandom" dev="devtmpfs" ino=8 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:urandom_device_t tclass=chr_file permissive=1
[ 694.719170][T18973] usb 3-1: new high-speed USB device number 120 using dummy_hcd
[ 694.958557][T18973] usb 3-1: Using ep0 maxpacket: 8
[ 694.998591][ T334] asix 5-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[ 695.008546][ T334] asix 5-1:0.0 (unnamed net_device) (uninitialized): Failed to write GPIO value 0x00b0: ffffffb9
[ 695.048595][ T334] asix: probe of 5-1:0.0 failed with error -71
[ 695.056791][ T334] usb 5-1: USB disconnect, device number 107
[ 695.078694][T18973] usb 3-1: config 179 has an invalid interface number: 65 but max is 0
[ 695.086859][T18973] usb 3-1: config 179 has no interface number 0
[ 695.093499][T18973] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[ 695.104459][T18973] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[ 695.115565][T18973] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 695.126745][T18973] usb 3-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 695.139977][T18973] usb 3-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[ 695.148905][T18973] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 695.494691][T21643] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 695.610791][T21653] binder: Bad value for 'max'
[ 695.738913][ T934] input: Generic X-Box pad as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:179.65/input/input141
[ 695.920901][T21658] loop4: detected capacity change from 0 to 256
[ 695.923694][ T934] usb 3-1: USB disconnect, device number 120
[ 695.932182][T21658] exfat: Deprecated parameter 'utf8'
[ 695.938064][T21658] exfat: Deprecated parameter 'utf8'
[ 695.938449][ C0] xpad 3-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[ 695.951645][ T934] xpad 3-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[ 695.953435][T21658] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[ 695.981277][ T28] audit: type=1400 audit(2000000726.195:28722): avc: denied { getopt } for pid=21656 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[ 697.040293][ T28] audit: type=1400 audit(2000000727.255:28723): avc: denied { listen } for pid=21688 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 698.078499][ T331] usb 1-1: new high-speed USB device number 102 using dummy_hcd
[ 698.225777][T21724] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 698.345338][T21721] overlayfs: failed to resolve './file0': -2
[ 698.468596][ T331] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 127, changing to 10
[ 698.479689][ T331] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 698.489317][ T331] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[ 698.498915][ T331] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[ 698.508514][ T331] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[ 698.518008][ T331] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[ 698.718648][ T331] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 698.727585][ T331] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 698.735385][ T331] usb 1-1: Product: syz
[ 698.739321][ T331] usb 1-1: Manufacturer: syz
[ 698.743720][ T331] usb 1-1: SerialNumber: syz
[ 698.788731][ T331] cdc_ncm 1-1:1.0: CDC Union missing and no IAD found
[ 698.795415][ T331] cdc_ncm 1-1:1.0: bind() failure
[ 698.800740][ T331] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found
[ 698.807313][ T331] cdc_ncm 1-1:1.1: bind() failure
[ 698.991907][ T331] usb 1-1: USB disconnect, device number 102
[ 700.404714][ T28] audit: type=1326 audit(2000000730.615:28724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21773 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc02007cf29 code=0x7ffc0000
[ 700.428637][ T28] audit: type=1326 audit(2000000730.615:28725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21773 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc02007bb20 code=0x7ffc0000
[ 700.452532][ T28] audit: type=1326 audit(2000000730.615:28726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21773 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc02007cf29 code=0x7ffc0000
[ 700.476457][ T28] audit: type=1326 audit(2000000730.615:28727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21773 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=296 compat=0 ip=0x7fc02007cf29 code=0x7ffc0000
[ 700.500388][ T28] audit: type=1326 audit(2000000730.615:28728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21773 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc02007cf29 code=0x7ffc0000
[ 701.502967][ T28] audit: type=1400 audit(2000000731.715:28729): avc: denied { mount } for pid=21809 comm="syz-executor.4" name="/" dev="pstore" ino=13331 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:pstore_t tclass=filesystem permissive=1
[ 701.550915][ T28] audit: type=1400 audit(2000000731.765:28730): avc: denied { unmount } for pid=21249 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:pstore_t tclass=filesystem permissive=1
[ 701.648100][ T28] audit: type=1326 audit(2000000731.855:28731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21815 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc02007cf29 code=0x0
[ 702.947189][T21867] loop4: detected capacity change from 0 to 40427
[ 702.961058][T21867] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[ 702.969022][T21867] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[ 702.984968][T21867] F2FS-fs (loop4): invalid crc value
[ 702.995170][T21867] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 703.034861][T21867] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[ 703.043021][T21867] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 703.409615][T18973] usb 1-1: new high-speed USB device number 103 using dummy_hcd
[ 703.615349][T21903] bridge0: port 1(bridge_slave_0) entered blocking state
[ 703.623132][T21903] bridge0: port 1(bridge_slave_0) entered disabled state
[ 703.630428][T21903] device bridge_slave_0 entered promiscuous mode
[ 703.638979][T21903] bridge0: port 2(bridge_slave_1) entered blocking state
[ 703.645880][T21903] bridge0: port 2(bridge_slave_1) entered disabled state
[ 703.653575][T21903] device bridge_slave_1 entered promiscuous mode
[ 703.698250][T21903] bridge0: port 2(bridge_slave_1) entered blocking state
[ 703.705128][T21903] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 703.712232][T21903] bridge0: port 1(bridge_slave_0) entered blocking state
[ 703.719016][T21903] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 703.745463][ T934] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 703.753316][ T934] bridge0: port 1(bridge_slave_0) entered disabled state
[ 703.760904][ T934] bridge0: port 2(bridge_slave_1) entered disabled state
[ 703.772366][ T934] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 703.780762][ T934] bridge0: port 1(bridge_slave_0) entered blocking state
[ 703.787637][ T934] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 703.798581][T18973] usb 1-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[ 703.807687][T18973] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 703.815878][ T334] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 703.816169][T18973] usb 1-1: config 0 descriptor??
[ 703.824735][ T334] bridge0: port 2(bridge_slave_1) entered blocking state
[ 703.835452][ T334] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 703.852884][ T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 703.861444][ T334] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 703.869344][ T334] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 703.880883][T12762] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 703.889718][T12762] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 703.897047][T12762] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 703.904903][T21903] device veth0_vlan entered promiscuous mode
[ 703.911581][T17488] device bridge_slave_1 left promiscuous mode
[ 703.917790][T17488] bridge0: port 2(bridge_slave_1) entered disabled state
[ 703.925318][T17488] device bridge_slave_0 left promiscuous mode
[ 703.931507][T17488] bridge0: port 1(bridge_slave_0) entered disabled state
[ 703.939577][T17488] device veth0_vlan left promiscuous mode
[ 704.005450][T12762] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 704.015737][T21903] device veth1_macvtap entered promiscuous mode
[ 704.028250][T12762] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 704.042172][T18973] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 704.678528][T12762] usb 5-1: new high-speed USB device number 108 using dummy_hcd
[ 704.918493][T12762] usb 5-1: Using ep0 maxpacket: 8
[ 705.039182][T12762] usb 5-1: config 32 has an invalid interface number: 1 but max is 0
[ 705.047308][T12762] usb 5-1: config 32 has an invalid descriptor of length 0, skipping remainder of the config
[ 705.057375][T12762] usb 5-1: config 32 has no interface number 0
[ 705.151452][T21955] loop3: detected capacity change from 0 to 32768
[ 705.161476][ T28] audit: type=1400 audit(2000000735.375:28732): avc: denied { setattr } for pid=20241 comm="syz-executor.2" path="/root/syzkaller-testdir1220803615/syzkaller.ejufTr/124/file0/root/swap-file" dev="sda1" ino=1925 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 705.218590][T12762] usb 5-1: New USB device found, idVendor=20a6, idProduct=1105, bcdDevice=c2.eb
[ 705.227530][T12762] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 705.235430][T12762] usb 5-1: Product: syz
[ 705.239563][T12762] usb 5-1: Manufacturer: syz
[ 705.244000][T12762] usb 5-1: SerialNumber: syz
[ 705.338574][T18973] usb 2-1: new high-speed USB device number 114 using dummy_hcd
[ 705.489461][ T331] usb 5-1: USB disconnect, device number 108
[ 705.992443][T21971] loop3: detected capacity change from 0 to 40427
[ 706.005234][T21971] F2FS-fs (loop3): Invalid Fs Meta Ino: node(1) meta(2) root(0)
[ 706.012869][T21971] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[ 706.021913][T21971] F2FS-fs (loop3): invalid crc value
[ 706.028311][T21971] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 706.053859][T21971] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[ 706.060822][T21971] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 706.077268][T21971] F2FS-fs (loop3): access invalid blkaddr:3
[ 706.083316][T21971] CPU: 0 PID: 21971 Comm: syz-executor.3 Tainted: G W 6.1.78-syzkaller-00016-gbda57805ab9f #0
[ 706.094784][T21971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[ 706.104673][T21971] Call Trace:
[ 706.107877][T21971] <TASK>
[ 706.110653][T21971] dump_stack_lvl+0x151/0x1b7
[ 706.115168][T21971] ? nf_tcp_handle_invalid+0x3f1/0x3f1
[ 706.120462][T21971] ? f2fs_get_next_page_offset+0x770/0x770
[ 706.126105][T21971] dump_stack+0x15/0x1b
[ 706.130100][T21971] __f2fs_is_valid_blkaddr+0xda6/0x1450
[ 706.135480][T21971] f2fs_is_valid_blkaddr+0x25/0x30
[ 706.140433][T21971] f2fs_map_blocks+0xefa/0x4780
[ 706.145124][T21971] ? f2fs_map_lock+0x260/0x260
[ 706.149718][T21971] ? rwsem_write_trylock+0x15b/0x290
[ 706.154836][T21971] ? xfd_validate_state+0x6f/0x170
[ 706.159780][T21971] f2fs_precache_extents+0x282/0x440
[ 706.164902][T21971] ? f2fs_pin_file_control+0x1e0/0x1e0
[ 706.170201][T21971] ? __sched_clock_gtod_offset+0x100/0x100
[ 706.175842][T21971] ? __update_idle_core+0x310/0x310
[ 706.180875][T21971] __f2fs_ioctl+0x1097/0xbf70
[ 706.185391][T21971] ? memcpy+0x56/0x70
[ 706.189212][T21971] ? avc_has_extended_perms+0xad7/0x10f0
[ 706.194673][T21971] ? avc_flush+0x290/0x290
[ 706.198928][T21971] ? __futex_queue+0x1c1/0x3c0
[ 706.203531][T21971] ? futex_q_unlock+0x30/0x30
[ 706.208037][T21971] ? do_vfs_ioctl+0xba7/0x29a0
[ 706.212640][T21971] ? f2fs_ioctl+0x1d0/0x1d0
[ 706.216974][T21971] ? futex_wait+0x4b7/0x7e0
[ 706.221316][T21971] ? ioctl_has_perm+0x1f8/0x560
[ 706.226005][T21971] ? ioctl_has_perm+0x3f0/0x560
[ 706.230688][T21971] ? has_cap_mac_admin+0x3c0/0x3c0
[ 706.235644][T21971] ? do_futex+0x55a/0x9a0
[ 706.239813][T21971] ? selinux_file_ioctl+0x3cc/0x540
[ 706.244831][T21971] ? selinux_file_alloc_security+0x120/0x120
[ 706.250647][T21971] ? restore_fpregs_from_fpstate+0xfc/0x230
[ 706.256373][T21971] ? save_fpregs_to_fpstate+0x220/0x220
[ 706.261768][T21971] f2fs_ioctl+0x143/0x1d0
[ 706.265931][T21971] ? f2fs_precache_extents+0x440/0x440
[ 706.271217][T21971] __se_sys_ioctl+0x114/0x190
[ 706.275816][T21971] __x64_sys_ioctl+0x7b/0x90
[ 706.280243][T21971] do_syscall_64+0x3d/0xb0
[ 706.284494][T21971] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 706.290224][T21971] RIP: 0033:0x7f1e7ea7cf29
[ 706.294566][T21971] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 706.314007][T21971] RSP: 002b:00007f1e7f8990c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 706.322248][T21971] RAX: ffffffffffffffda RBX: 00007f1e7ebb3f80 RCX: 00007f1e7ea7cf29
[ 706.330059][T21971] RDX: 0000000000000000 RSI: 000000000000f50f RDI: 0000000000000005
[ 706.337871][T21971] RBP: 00007f1e7eaec074 R08: 0000000000000000 R09: 0000000000000000
[ 706.345681][T21971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 706.353583][T21971] R13: 000000000000000b R14: 00007f1e7ebb3f80 R15: 00007ffcb633aa88
[ 706.361397][T21971] </TASK>
[ 706.364682][T18973] usb 2-1: New USB device found, idVendor=10d6, idProduct=2200, bcdDevice= 1.00
[ 706.373757][T18973] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 706.381648][T18973] usb 2-1: Product: syz
[ 706.385721][T18973] usb 2-1: Manufacturer: syz
[ 706.386614][T12762] usb 1-1: USB disconnect, device number 103
[ 706.392433][T18973] usb 2-1: SerialNumber: syz
[ 706.401462][T18973] usb 2-1: config 0 descriptor??
[ 706.430347][T21903] syz-executor.3: attempt to access beyond end of device
[ 706.430347][T21903] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 706.448961][T18973] usb-storage 2-1:0.0: USB Mass Storage device detected
[ 706.854667][T21953] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 706.863118][T21953] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 706.871489][T12762] usb 2-1: USB disconnect, device number 114
[ 706.972367][T22014] loop4: detected capacity change from 0 to 512
[ 706.983651][T22014] EXT4-fs: Mount option(s) incompatible with ext3
[ 707.105869][T22014] overlayfs: conflicting lowerdir path
[ 707.277940][T22031] netlink: 'syz-executor.0': attribute type 10 has an invalid length.
[ 707.364115][T22035] loop3: detected capacity change from 0 to 256
[ 707.374970][T22035] exfat: Bad value for 'gid'
[ 707.712987][T22052] loop4: detected capacity change from 0 to 40427
[ 707.724464][T22052] F2FS-fs (loop4): invalid crc value
[ 707.730826][T22052] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 707.756982][T22052] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 707.820853][ T28] audit: type=1400 audit(2000000738.035:28733): avc: denied { read } for pid=22049 comm="syz-executor.4" name="file0" dev="loop4" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[ 707.870963][T21249] syz-executor.4: attempt to access beyond end of device
[ 707.870963][T21249] loop4: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[ 708.449495][ T28] audit: type=1400 audit(2000000738.665:28734): avc: denied { unmount } for pid=21903 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[ 708.582979][T22122] loop4: detected capacity change from 0 to 256
[ 708.654721][ T28] audit: type=1400 audit(2000000738.865:28735): avc: denied { bind } for pid=22124 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[ 708.800234][T22136] tmpfs: Unknown parameter 'usrquota'
[ 708.891878][T22139] loop3: detected capacity change from 0 to 1024
[ 708.923078][T22139] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 708.999645][T21903] EXT4-fs error (device loop3): ext4_empty_dir:3087: inode #11: comm syz-executor.3: invalid size
[ 709.012294][T21903] EXT4-fs error (device loop3): ext4_empty_dir:3087: inode #11: comm syz-executor.3: invalid size
[ 709.028935][T21903] EXT4-fs error (device loop3): ext4_empty_dir:3087: inode #11: comm syz-executor.3: invalid size
[ 709.040891][T21903] EXT4-fs error (device loop3): ext4_empty_dir:3087: inode #11: comm syz-executor.3: invalid size
[ 709.052909][T21903] EXT4-fs error (device loop3): ext4_empty_dir:3087: inode #11: comm syz-executor.3: invalid size
[ 709.064839][T21903] EXT4-fs error (device loop3): ext4_empty_dir:3087: inode #11: comm syz-executor.3: invalid size
[ 709.077448][T21903] EXT4-fs error (device loop3): ext4_empty_dir:3087: inode #11: comm syz-executor.3: invalid size
[ 709.089700][T21903] EXT4-fs error (device loop3): ext4_empty_dir:3087: inode #11: comm syz-executor.3: invalid size
[ 709.101995][T21903] EXT4-fs error (device loop3): ext4_empty_dir:3087: inode #11: comm syz-executor.3: invalid size
[ 709.114129][T21903] EXT4-fs error (device loop3): ext4_empty_dir:3087: inode #11: comm syz-executor.3: invalid size
[ 709.232112][T21903] EXT4-fs (loop3): unmounting filesystem.
[ 709.549448][T22159] bridge0: port 1(bridge_slave_0) entered blocking state
[ 709.556545][T22159] bridge0: port 1(bridge_slave_0) entered disabled state
[ 709.564076][T22159] device bridge_slave_0 entered promiscuous mode
[ 709.571140][T22159] bridge0: port 2(bridge_slave_1) entered blocking state
[ 709.578316][T22159] bridge0: port 2(bridge_slave_1) entered disabled state
[ 709.586454][T22159] device bridge_slave_1 entered promiscuous mode
[ 709.593290][T22148] loop4: detected capacity change from 0 to 131072
[ 709.614323][T22148] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 709.669557][T22159] bridge0: port 2(bridge_slave_1) entered blocking state
[ 709.671245][T22148] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 709.676410][T22159] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 709.676498][T22159] bridge0: port 1(bridge_slave_0) entered blocking state
[ 709.697603][T22159] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 709.721299][ T1445] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 709.729442][ T1445] bridge0: port 1(bridge_slave_0) entered disabled state
[ 709.736939][ T1445] bridge0: port 2(bridge_slave_1) entered disabled state
[ 709.746077][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 709.754872][ T331] bridge0: port 1(bridge_slave_0) entered blocking state
[ 709.761746][ T331] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 709.773487][ T1445] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 709.782487][ T1445] bridge0: port 2(bridge_slave_1) entered blocking state
[ 709.789631][ T1445] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 709.810184][T18973] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 709.818002][T18973] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 709.828484][T17489] device bridge_slave_1 left promiscuous mode
[ 709.834444][T17489] bridge0: port 2(bridge_slave_1) entered disabled state
[ 709.842646][T17489] device bridge_slave_0 left promiscuous mode
[ 709.849020][T17489] bridge0: port 1(bridge_slave_0) entered disabled state
[ 709.857321][T17489] device veth1_macvtap left promiscuous mode
[ 709.863375][T17489] device veth0_vlan left promiscuous mode
[ 709.967071][T18973] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 709.975729][T22179] overlayfs: failed to resolve './file1': -2
[ 709.987000][T22159] device veth0_vlan entered promiscuous mode
[ 709.998642][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 710.006885][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 710.014681][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 710.032669][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 710.041105][T22159] device veth1_macvtap entered promiscuous mode
[ 710.050874][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 710.060969][ T1445] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 710.705147][T22213] loop3: detected capacity change from 0 to 512
[ 710.719641][T22213] EXT4-fs: Ignoring removed oldalloc option
[ 710.725502][T22213] EXT4-fs: Ignoring removed i_version option
[ 710.741237][T22213] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e802c01c, mo2=0002]
[ 710.750858][T22213] System zones: 0-2, 18-18, 34-34
[ 710.756656][T22213] EXT4-fs (loop3): too many log groups per flexible block group
[ 710.764686][T22213] EXT4-fs (loop3): failed to initialize mballoc (-12)
[ 710.771519][T22213] EXT4-fs (loop3): mount failed
[ 711.591985][ T28] audit: type=1400 audit(2000000741.805:28736): avc: denied { ioctl } for pid=22226 comm="syz-executor.0" path="socket:[126457]" dev="sockfs" ino=126457 ioctlcmd=0x8941 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[ 711.888541][T12762] usb 1-1: new high-speed USB device number 104 using dummy_hcd
[ 712.120957][T22247] tap0: tun_chr_ioctl cmd 1074025677
[ 712.126346][T22247] tap0: linktype set to 772
[ 712.189394][T22249] loop3: detected capacity change from 0 to 512
[ 712.216653][T22249] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 712.225750][T22249] ext4 filesystem being mounted at /root/syzkaller-testdir1045591146/syzkaller.opXL1X/7/file0 supports timestamps until 2038 (0x7fffffff)
[ 712.302885][T22159] EXT4-fs (loop3): unmounting filesystem.
[ 712.338787][T12762] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[ 712.508798][T12762] usb 1-1: New USB device found, idVendor=172f, idProduct=0034, bcdDevice= 0.40
[ 712.517909][T12762] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 712.526328][T12762] usb 1-1: Product: syz
[ 712.530741][T12762] usb 1-1: Manufacturer: syz
[ 712.535287][T12762] usb 1-1: SerialNumber: syz
[ 712.580094][T12762] usbhid 1-1:1.0: couldn't find an input interrupt endpoint
[ 712.817144][T22270] loop4: detected capacity change from 0 to 256
[ 712.833156][T22270] FAT-fs (loop4): Directory bread(block 64) failed
[ 712.839907][T22270] FAT-fs (loop4): Directory bread(block 65) failed
[ 712.846322][T22270] FAT-fs (loop4): Directory bread(block 66) failed
[ 712.852709][T22270] FAT-fs (loop4): Directory bread(block 67) failed
[ 712.859266][T22270] FAT-fs (loop4): Directory bread(block 68) failed
[ 712.865676][T22270] FAT-fs (loop4): Directory bread(block 69) failed
[ 712.872027][T22270] FAT-fs (loop4): Directory bread(block 70) failed
[ 712.878479][T22270] FAT-fs (loop4): Directory bread(block 71) failed
[ 712.884780][T22270] FAT-fs (loop4): Directory bread(block 72) failed
[ 712.891188][T22270] FAT-fs (loop4): Directory bread(block 73) failed
[ 712.906164][T22270] syz-executor.4: attempt to access beyond end of device
[ 712.906164][T22270] loop4: rw=2049, sector=1224, nr_sectors = 84 limit=256
[ 712.921246][T22270] syz-executor.4: attempt to access beyond end of device
[ 712.921246][T22270] loop4: rw=34817, sector=1224, nr_sectors = 32 limit=256
[ 713.506859][T22308] loop4: detected capacity change from 0 to 256
[ 713.521600][T22308] FAT-fs (loop4): Directory bread(block 64) failed
[ 713.528040][T22308] FAT-fs (loop4): Directory bread(block 65) failed
[ 713.534812][T22308] FAT-fs (loop4): Directory bread(block 66) failed
[ 713.541375][T22308] FAT-fs (loop4): Directory bread(block 67) failed
[ 713.548154][T22308] FAT-fs (loop4): Directory bread(block 68) failed
[ 713.554696][T22308] FAT-fs (loop4): Directory bread(block 69) failed
[ 713.561110][T22308] FAT-fs (loop4): Directory bread(block 70) failed
[ 713.567421][T22308] FAT-fs (loop4): Directory bread(block 71) failed
[ 713.573796][T22308] FAT-fs (loop4): Directory bread(block 72) failed
[ 713.580098][T22308] FAT-fs (loop4): Directory bread(block 73) failed
[ 713.605530][T22308] syz-executor.4: attempt to access beyond end of device
[ 713.605530][T22308] loop4: rw=2049, sector=1224, nr_sectors = 84 limit=256
[ 713.621306][T22308] syz-executor.4: attempt to access beyond end of device
[ 713.621306][T22308] loop4: rw=34817, sector=1224, nr_sectors = 32 limit=256
[ 714.160944][T22342] loop4: detected capacity change from 0 to 256
[ 714.179592][T22342] FAT-fs (loop4): Directory bread(block 64) failed
[ 714.186033][T22342] FAT-fs (loop4): Directory bread(block 65) failed
[ 714.192608][T22342] FAT-fs (loop4): Directory bread(block 66) failed
[ 714.199041][T22342] FAT-fs (loop4): Directory bread(block 67) failed
[ 714.205405][T22342] FAT-fs (loop4): Directory bread(block 68) failed
[ 714.211853][T22342] FAT-fs (loop4): Directory bread(block 69) failed
[ 714.218241][T22342] FAT-fs (loop4): Directory bread(block 70) failed
[ 714.225004][T22342] FAT-fs (loop4): Directory bread(block 71) failed
[ 714.231390][T22342] FAT-fs (loop4): Directory bread(block 72) failed
[ 714.237794][T22342] FAT-fs (loop4): Directory bread(block 73) failed
[ 714.262108][T22342] syz-executor.4: attempt to access beyond end of device
[ 714.262108][T22342] loop4: rw=2049, sector=1224, nr_sectors = 84 limit=256
[ 714.277685][T22342] syz-executor.4: attempt to access beyond end of device
[ 714.277685][T22342] loop4: rw=34817, sector=1224, nr_sectors = 32 limit=256
[ 714.398169][ T331] usb 1-1: USB disconnect, device number 104
[ 714.548611][ T28] audit: type=1400 audit(2000000744.765:28737): avc: denied { setattr } for pid=22359 comm="syz-executor.1" name="tun" dev="devtmpfs" ino=136 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tun_tap_device_t tclass=chr_file permissive=1
[ 715.144084][T22391] loop4: detected capacity change from 0 to 512
[ 715.160686][T22391] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 715.169590][T22391] ext4 filesystem being mounted at /root/syzkaller-testdir1732838887/syzkaller.NtCgjw/104/file0 supports timestamps until 2038 (0x7fffffff)
[ 715.211330][T21249] EXT4-fs (loop4): unmounting filesystem.
[ 715.342124][ T28] audit: type=1400 audit(2000000745.555:28738): avc: denied { read } for pid=22398 comm="syz-executor.4" name="file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[ 715.365040][ T28] audit: type=1400 audit(2000000745.555:28739): avc: denied { open } for pid=22398 comm="syz-executor.4" path="/root/syzkaller-testdir1732838887/syzkaller.NtCgjw/105/file0/file0" dev="fuse" ino=0 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1
[ 715.428474][T12762] usb 2-1: new high-speed USB device number 115 using dummy_hcd
[ 715.668499][T12762] usb 2-1: Using ep0 maxpacket: 8
[ 715.673464][ T334] usb 1-1: new high-speed USB device number 105 using dummy_hcd
[ 715.798519][T12762] usb 2-1: config 32 has an invalid interface number: 1 but max is 0
[ 715.806624][T12762] usb 2-1: config 32 has an invalid descriptor of length 0, skipping remainder of the config
[ 715.816761][T12762] usb 2-1: config 32 has no interface number 0
[ 715.978590][T12762] usb 2-1: New USB device found, idVendor=20a6, idProduct=1105, bcdDevice=c2.eb
[ 715.987573][T12762] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 715.995465][T12762] usb 2-1: Product: syz
[ 715.999738][T12762] usb 2-1: Manufacturer: syz
[ 716.004550][T12762] usb 2-1: SerialNumber: syz
[ 716.038505][ T334] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[ 716.050091][ T334] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 716.060895][ T334] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 716.070509][ T334] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[ 716.159038][ T334] usb 1-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[ 716.168052][ T334] usb 1-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[ 716.176193][ T334] usb 1-1: Manufacturer: syz
[ 716.181520][ T334] usb 1-1: config 0 descriptor??
[ 716.250528][T18973] usb 2-1: USB disconnect, device number 115
[ 716.672173][ T334] appleir 0003:05AC:8243.00EB: unknown main item tag 0x0
[ 716.679547][ T334] appleir 0003:05AC:8243.00EB: No inputs registered, leaving
[ 716.688023][ T334] appleir 0003:05AC:8243.00EB: hiddev96,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.0-1/input0
[ 716.949591][ T334] usb 1-1: USB disconnect, device number 105
[ 717.234734][T22447] loop4: detected capacity change from 0 to 40427
[ 717.246356][T22447] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[ 717.254035][T22447] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[ 717.262950][T22447] F2FS-fs (loop4): invalid crc value
[ 717.269838][T22447] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 717.295378][T22447] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[ 717.302404][T22447] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 717.428501][ T334] usb 2-1: new high-speed USB device number 116 using dummy_hcd
[ 717.602919][T22454] loop4: detected capacity change from 0 to 40427
[ 717.616353][T22454] F2FS-fs (loop4): invalid crc value
[ 717.622743][T22454] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 717.647361][T22454] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 717.668483][ T334] usb 2-1: Using ep0 maxpacket: 8
[ 717.788589][ T334] usb 2-1: config 179 has an invalid interface number: 65 but max is 0
[ 717.796787][ T334] usb 2-1: config 179 has no interface number 0
[ 717.803067][ T334] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[ 717.814091][ T334] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[ 717.825348][ T334] usb 2-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[ 717.835245][ T334] usb 2-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 717.848358][ T334] usb 2-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[ 717.857259][ T334] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 717.878511][T22448] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 718.102763][ T334] usb 2-1: USB disconnect, device number 116
[ 718.148493][T18973] usb 5-1: new high-speed USB device number 109 using dummy_hcd
[ 718.548483][T18973] usb 5-1: Using ep0 maxpacket: 8
[ 718.678552][T18973] usb 5-1: config 32 has an invalid interface number: 1 but max is 0
[ 718.687863][T18973] usb 5-1: config 32 has an invalid descriptor of length 0, skipping remainder of the config
[ 718.697923][T18973] usb 5-1: config 32 has no interface number 0
[ 718.888525][T18973] usb 5-1: New USB device found, idVendor=20a6, idProduct=1105, bcdDevice=c2.eb
[ 718.897540][T18973] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 718.905550][T18973] usb 5-1: Product: syz
[ 718.909602][T18973] usb 5-1: Manufacturer: syz
[ 718.914055][T18973] usb 5-1: SerialNumber: syz
[ 718.983548][T18973] cdc_acm 5-1:32.1: Zero length descriptor references
[ 718.993971][T18973] cdc_acm: probe of 5-1:32.1 failed with error -22
[ 719.159827][ T348] usb 5-1: USB disconnect, device number 109
[ 719.273926][T22518] 9pnet_fd: Insufficient options for proto=fd
[ 720.253344][T22531] loop4: detected capacity change from 0 to 40427
[ 720.265932][T22531] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[ 720.273770][T22531] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[ 720.283734][T22531] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 720.308574][T22531] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[ 720.315457][T22531] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 720.395330][T21249] f2fs_fill_dentries: 60 callbacks suppressed
[ 720.395345][T21249] F2FS-fs (loop4): invalid namelen(0), ino:0, run fsck to fix.
[ 720.401458][T21249] F2FS-fs (loop4): invalid namelen(0), ino:0, run fsck to fix.
[ 720.408900][T21249] F2FS-fs (loop4): invalid namelen(0), ino:0, run fsck to fix.
[ 720.416218][T21249] F2FS-fs (loop4): invalid namelen(0), ino:0, run fsck to fix.
[ 720.423691][T21249] F2FS-fs (loop4): invalid namelen(0), ino:0, run fsck to fix.
[ 720.431039][T21249] F2FS-fs (loop4): invalid namelen(0), ino:0, run fsck to fix.
[ 720.438326][T21249] F2FS-fs (loop4): invalid namelen(0), ino:0, run fsck to fix.
[ 723.232570][T22622] fuse: Bad value for 'fd'
[ 724.179569][T22639] loop4: detected capacity change from 0 to 131072
[ 724.191684][T22639] F2FS-fs (loop4): invalid crc value
[ 724.197921][T22639] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (15359802341028777995, 275811881701387)
[ 724.222312][T22639] F2FS-fs (loop4): Mounted with checkpoint version = 753bd00b
[ 724.768852][ T28] audit: type=1326 audit(2000000754.985:28740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=22693 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6fb687cf29 code=0x0
[ 724.769069][T22696] loop4: detected capacity change from 0 to 2048
[ 724.810179][T22696] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[ 724.818818][T22696] ext4 filesystem being mounted at /root/syzkaller-testdir1732838887/syzkaller.NtCgjw/123/file0 supports timestamps until 2038 (0x7fffffff)
[ 724.863493][T21249] EXT4-fs (loop4): unmounting filesystem.
[ 725.518577][ T334] usb 5-1: new high-speed USB device number 110 using dummy_hcd
[ 725.878757][ T334] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 725.904577][ T334] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 725.951050][ T334] usb 5-1: New USB device found, idVendor=045e, idProduct=00db, bcdDevice= 0.00
[ 725.991401][ T334] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 726.071132][ T334] usb 5-1: config 0 descriptor??
[ 726.092059][T22759] fscrypt: key with description 'fscrypt:0000111122223333' is too short (got 57 bytes, need 64+ bytes)
[ 726.549050][ T334] microsoft 0003:045E:00DB.00EC: unknown main item tag 0x0
[ 726.556212][ T334] microsoft 0003:045E:00DB.00EC: unknown main item tag 0x0
[ 726.563454][ T334] microsoft 0003:045E:00DB.00EC: unknown main item tag 0x0
[ 726.570964][ T334] microsoft 0003:045E:00DB.00EC: hidraw0: USB HID v0.00 Device [HID 045e:00db] on usb-dummy_hcd.4-1/input0
[ 726.582320][ T334] microsoft 0003:045E:00DB.00EC: no inputs found
[ 726.588637][ T334] microsoft 0003:045E:00DB.00EC: could not initialize ff, continuing anyway
[ 726.749997][ T331] usb 5-1: USB disconnect, device number 110
[ 727.419760][T22801] overlayfs: failed to resolve './file0': -2
[ 727.757198][T22835] loop4: detected capacity change from 0 to 2048
[ 727.780266][T22835] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[ 727.788701][T22835] ext4 filesystem being mounted at /root/syzkaller-testdir1732838887/syzkaller.NtCgjw/132/file0 supports timestamps until 2038 (0x7fffffff)
[ 727.830567][T21249] EXT4-fs (loop4): unmounting filesystem.
[ 729.158508][ T334] usb 2-1: new full-speed USB device number 117 using dummy_hcd
[ 729.226418][T22901] loop4: detected capacity change from 0 to 2048
[ 729.239673][T22901] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[ 729.248053][T22901] ext4 filesystem being mounted at /root/syzkaller-testdir1732838887/syzkaller.NtCgjw/137/file0 supports timestamps until 2038 (0x7fffffff)
[ 729.284357][T21249] EXT4-fs (loop4): unmounting filesystem.
[ 729.518529][ T334] usb 2-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping
[ 729.528921][ T334] usb 2-1: config 0 interface 0 altsetting 0 has an invalid endpoint descriptor of length 5, skipping
[ 729.539774][ T334] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1
[ 729.708547][ T334] usb 2-1: New USB device found, idVendor=19d2, idProduct=1121, bcdDevice=cf.68
[ 729.717485][ T334] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 729.725383][ T334] usb 2-1: Product: syz
[ 729.729438][ T334] usb 2-1: Manufacturer: syz
[ 729.733799][ T334] usb 2-1: SerialNumber: syz
[ 729.738810][ T334] usb 2-1: config 0 descriptor??
[ 729.758532][T22882] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 729.946392][T22928] kvm: vcpu 0: requested 128 ns lapic timer period limited to 200000 ns
[ 729.954742][T22928] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 729.980469][T12762] usb 2-1: USB disconnect, device number 117
[ 730.256074][T22936] loop4: detected capacity change from 0 to 128
[ 730.679203][T17489] device bridge_slave_1 left promiscuous mode
[ 730.685530][T17489] bridge0: port 2(bridge_slave_1) entered disabled state
[ 730.693703][T17489] device bridge_slave_0 left promiscuous mode
[ 730.701115][T17489] bridge0: port 1(bridge_slave_0) entered disabled state
[ 730.709887][T17489] device veth1_macvtap left promiscuous mode
[ 730.716149][T17489] device veth0_vlan left promiscuous mode
2033/05/18 03:46:01 SYZFATAL: executor 2 failed 11 times: failed to start executor binary: fork/exec /root/syz-executor.2: no such file or directory