last executing test programs:

4m53.493806453s ago: executing program 32 (id=509):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="05000000050000000200000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000000)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b703000000000000850000002d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000000c0)='tlb_flush\x00', r1}, 0x18)

3m54.683319799s ago: executing program 33 (id=2073):
unshare(0x2040400)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000029000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
splice(r0, 0xffffffffffffffff, r0, 0x0, 0x6, 0xa)

3m42.358771351s ago: executing program 34 (id=2460):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000070000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x8, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0x2, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4}, 0x50)

3m31.243174797s ago: executing program 35 (id=2386):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCEXCL(r0, 0x540c)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')

3m30.428419701s ago: executing program 36 (id=2773):
r0 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r0, &(0x7f0000000400)={0x2, 0x4e20, @remote}, 0x10)
sendmmsg$inet(r0, &(0x7f0000005240)=[{{0x0, 0x0, 0x0}, 0xfffffdef}], 0x4000095, 0x0)

3m18.062690507s ago: executing program 37 (id=3176):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=@RTM_NEWMDB={0x38, 0x54, 0x1, 0x170bd26, 0x0, {0x7, r1}, [@MDBA_SET_ENTRY={0x20, 0x1, {r1, 0x1, 0x0, 0x1, {@in6_addr=@mcast2}}}]}, 0x38}}, 0x4040)

3m3.527456845s ago: executing program 38 (id=3390):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000580)='./file0\x00', 0x2000006, &(0x7f00000001c0)={[{@uni_xlateno}, {@uni_xlateno}, {@uni_xlateno}, {@utf8}, {@shortname_lower}, {@utf8no}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}, {@iocharset={'iocharset', 0x3d, 'iso8859-5'}}, {@shortname_mixed}, {@utf8no}, {@rodir}, {@uni_xlate}, {@utf8}, {@shortname_lower}, {@numtail}]}, 0x25, 0x365, &(0x7f00000009c0)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108)
getdents64(r0, &(0x7f0000006400)=""/4109, 0x100d)

3m2.671425383s ago: executing program 39 (id=3186):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000007c0)={0x13c, r1, 0x1, 0x0, 0x0, {}, [@WGDEVICE_A_PEERS={0x114, 0x8, 0x0, 0x1, [{0x50, 0x0, 0x0, 0x1, [@WGPEER_A_ALLOWEDIPS={0x4}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @a_g}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "eff93d58460ea431f2cb4a6894ddb2834088d7445bf5afdd0619ce173f1db717"}]}, {0x4c, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @neg}, @WGPEER_A_PRESHARED_KEY={0x24, 0x2, "491bc0be1dc1f88092e741a88b64f6dd9218ad21b44b472e44f1d0807ee6675c"}]}, {0x74, 0x0, 0x0, 0x1, [@WGPEER_A_PUBLIC_KEY={0x24, 0x1, @c_g}, @WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x9, 0x7, @empty, 0x3}}, @WGPEER_A_ALLOWEDIPS={0x2c, 0x9, 0x0, 0x1, [{0x28, 0x0, 0x0, 0x1, [@ipv6={{0x6}, {0x14, 0x2, @empty}, {0x5, 0x3, 0x2}}]}]}]}]}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg0\x00'}]}, 0x13c}, 0x1, 0x0, 0x0, 0x4004840}, 0x40000)

2m1.583808521s ago: executing program 40 (id=5486):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x2, 0x9, 0xfa, 0x0, 0x2, 0x0, 0x70bd25, 0x25dfdbfe}, 0x10}}, 0x24000800)
ioctl$sock_SIOCGIFCONF(r0, 0x890b, &(0x7f0000000000)=@buf)

1m50.220249037s ago: executing program 41 (id=5877):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'wg0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000b40)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xfff1, 0xffff}}, [@TCA_EGRESS_BLOCK={0x8, 0xe, 0x8}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x8}, @qdisc_kind_options=@q_clsact={0xb}, @TCA_STAB={0x4}]}, 0x44}}, 0x4000080)

1m44.336684596s ago: executing program 42 (id=6036):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000fcffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0xe, 0x0, &(0x7f00000004c0)="630b008646dc3f0adf33c9f7b986", 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x2}, 0x50)

1m14.238399664s ago: executing program 43 (id=6775):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x141e42, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000780)={0x1, 0x0, [{0x40000082, 0x0, 0x7}]})

1m14.236735294s ago: executing program 9 (id=6777):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000000)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'tunl0\x00', <r1=>0x0})
sendto$packet(r0, &(0x7f00000002c0)="05030500d3fc030000004788031c09102f28", 0xfce0, 0x4, &(0x7f0000000140)={0x11, 0x86dd, r1, 0x1, 0x0, 0x6, @multicast}, 0x14)

1m14.222133475s ago: executing program 9 (id=6778):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x207, &(0x7f0000000000), 0x1, 0x469, &(0x7f0000000100)="$eJzs3M9vFFUcAPDv7G5BfnZF/AGiomgk/mhpQeXgRRMTD5qY6AGPtRSCLNTQmghpbDEELyZKwt2YeDHxL/DkiagnE694NyTEcAE9rRl2dtlud8u2u91t3c8nGfpe9+2+73dm3s6bGaYBDKz96T9JxPaIuB4RwxGRq2+wpbKk7e7cmpv859bcZBLl8vt/J+nb4vatuclq0yT7ua1SKaQflLuURLFJvzPnL5yeKJWmzmX10dkzn4zOnL/w8qkzEyenTk6dHT969MjhsddeHX+lK3mmMd3e+/n0vj1vf3jl3cljVz769cdKvOXy1WuHFuXRHUMRMVdbJ42e625nfbejrpwU+hgIK7I5IgrZ3no9hiN/aWftteF464u+BgesqXK5XB5v/fJCGfgfS6LfEQD9UT3Qp+e/1aVHU4914eYblROgNO872VJ5pRAXszZDDee33bQ/Io4t/PttukTD9RQAgLXwczr/eanJ/K8Y8Uhdu53ZvaFiRDwYEbsi4qGI2B0RD0el7aMR8dgK+9/fUF86/8ndWF1m7Unnf69n97YWz/9qd8GK+ay2427+Q8mJU6WpQ9k6ORhDm9P6WNNPTyIW0p9/fN2q//r5X7qk/VfnglkcNwqbF7/n+MTsRMeJZ25ejNhbaJZ/EoV7WcSeiNi7yj5OvfDDvsW/yddK989/GV24z1T+LuL5yvZfiIb8q5Ll70+OPhClqUOj1b1iqd9+v/xeq/47yr8L0u2/ten+X8u/mNTfr51Z8hGb7tfH5T+/bHlOs9r9f1PywaLOP5uYnT03FrEpeWfp7+sucFfr1fZp/gcPNB//u+Lemng8ItKd+ImIeDIinspifzoinomIA8vk/8ubz368+vzXVpr//Iq2/8oL+dPXfmrVf3vb/0i1cjeodr7/2g2wk3UHAAAAG0UuIrZHkhuplXO5kZHK/5ffHVtzpemZ2RdPTH969njlGYFiDOWqV7qG666HjmXXhqv18aw+n9UPZ9eNr+a33K2PTE6Xjvc7eRhw21qM/9Rf+X5HB6w5z2vB4DL+YXCtfvz75oCN7j6jONerOIDecxSHwdVs/M/3IQ6g9xz/YXDVxv83bTSue9yr8eFNYONx/IfBZfzDQOrkuf51UYjvI5Zvk6yXUFdU+KqTtxd6EGHk1seK6mFhPB/RxzAK7f5Vizhfnu+4035/MwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHTHfwEAAP//qO7n/A==")
mount(0x0, &(0x7f0000000240)='.\x00', 0x0, 0x2200020, 0x0)
rename(&(0x7f0000000080)='./file0/file0\x00', &(0x7f0000000140)='./file1\x00')
mknod$loop(&(0x7f0000009fc0)='./file0/file0\x00', 0x1000, 0x1)

1m14.044979979s ago: executing program 9 (id=6781):
syz_mount_image$msdos(&(0x7f00000002c0), &(0x7f0000000280)='./file0\x00', 0x4, &(0x7f0000000000), 0x1, 0x247, &(0x7f0000000380)="$eJzs3c1qE1EYBuDP/iShC+1aXAy4cRXUG5AgFcQBITILXTlQ3bQiTDejqyy9BG9Bb8U78DK6ym7ETkja2qjQtMc4zwNhXngJfGeTSeCczOs77w723x+9bb5/jsEgi62ISUwjdmMjNqN1Y3bdOMm9OG0SAMC6GY/LUeoZuFpVNSq3I6L/S1N8TTIQAAAAAAAAAAAAl3bt+/8/fVnF2ADAJdj///+rqlG5M/v+dpb9/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEA606a51fzmlXo+AGD13P8BoHv+eP//Nu09Sj0kALBSfv8DQPe8ePnq2SjP98ZZNog4ntRFXbTXtn/yNN+7n53YXbzruK6LzXn/oO2zs/127Mz6hxf2vbh3t+1/do+f5+f6fuxf/fIBAAAAAAAAAAAAAAAAAADgnzDM5i483z8cLuvbdOr/Ac6d32/6t7eubRkAAAAAAAAAAAAAAAAAAACw1o4+fDwoDw/fVIIgCPOQ+pMJAAAAAAAAAAAAAAAAAAC6Z3HoN/UkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJDO4vn/S8LN5dXfhtRrBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALrhRwAAAP//fWCXrQ==")
openat$cgroup_pressure(0xffffffffffffffff, &(0x7f0000000140)='memory.pressure\x00', 0x2, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
renameat2(0xffffffffffffff9c, &(0x7f0000000280)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0)

1m13.953517567s ago: executing program 9 (id=6783):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file2\x00', 0x1010051, &(0x7f0000000800)={[{@errors_remount}, {@noload}, {@noblock_validity}, {@dioread_lock}, {@nouid32}, {@nomblk_io_submit}]}, 0x1, 0x546, &(0x7f0000000180)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})
chdir(&(0x7f0000000040)='./file0\x00')
readlink(&(0x7f0000000000)='./file2\x00', &(0x7f00000000c0)=""/53, 0x35)

1m13.732476474s ago: executing program 9 (id=6787):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x5412, &(0x7f0000000400)=0x13)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000040)={0x3d15, 0x0, 0x0, 0x7, 0x0, "0001000000000000649300"})
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)=0xd)

1m12.947977987s ago: executing program 9 (id=6794):
r0 = socket(0x10, 0x80003, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0x2}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x5, 0x2, {{0x6, 0x1, 0x3, 0x0, 0x8}, 0x7, 0x0, 0x5, 0xffffffff, 0x2, 0x1, 0x12, 0x19, 0xfd, 0x87, {0x7, 0x7, 0x2, 0x0, 0xe9ac, 0x1}}}}]}, 0x78}, 0x1, 0x0, 0x0, 0x2000000}, 0x0)

1m12.822406587s ago: executing program 44 (id=6794):
r0 = socket(0x10, 0x80003, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0x2}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x5, 0x2, {{0x6, 0x1, 0x3, 0x0, 0x8}, 0x7, 0x0, 0x5, 0xffffffff, 0x2, 0x1, 0x12, 0x19, 0xfd, 0x87, {0x7, 0x7, 0x2, 0x0, 0xe9ac, 0x1}}}}]}, 0x78}, 0x1, 0x0, 0x0, 0x2000000}, 0x0)

1m11.493600633s ago: executing program 2 (id=6826):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000006c0)=ANY=[@ANYBLOB="800000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c000280050001000000000008000740000000011c00108008000140000000000800024000000000080003"], 0x80}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={0x40, 0x3, 0x1, 0x401, 0x0, 0x0, {0x2, 0x0, 0x2}, [@CTA_TUPLE_ORIG={0x2c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x2}]}]}, 0x40}, 0x1, 0x0, 0x0, 0x20040000}, 0x0)

1m11.475281184s ago: executing program 2 (id=6829):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f00000000c0)=[{0x20, 0x5, 0x2, 0xfffff010}, {0x28, 0x7, 0x0, 0xa56e}, {0x6, 0x0, 0x0, 0xa1a}]}, 0x10)
r2 = dup(r0)
write$binfmt_aout(r2, &(0x7f0000000b40)={{0x108, 0xf5, 0x4, 0xca, 0x342, 0x1000, 0xb1, 0xa13d}, "", ['\x00']}, 0x120)

1m11.365085413s ago: executing program 2 (id=6835):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000005c0)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x11, &(0x7f0000000100)=@framed={{0x18, 0x2, 0x0, 0x0, 0x6}, [@call={0x85, 0x0, 0x0, 0x41}, @snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

1m11.312499297s ago: executing program 2 (id=6838):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file2\x00', 0x1010051, &(0x7f0000000800)={[{@errors_remount}, {@noload}, {@noblock_validity}, {@dioread_lock}, {@nouid32}, {@nomblk_io_submit}]}, 0x1, 0x546, &(0x7f0000000180)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})
chdir(&(0x7f0000000040)='./file0\x00')
readlink(&(0x7f0000000000)='./file2\x00', &(0x7f00000000c0)=""/53, 0x35)

1m11.258544141s ago: executing program 7 (id=6839):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000000100)={0x3, &(0x7f0000000180)=[{0x28, 0x0, 0x0, 0xfffff034}, {0x40, 0x0, 0x0, 0x100}, {0x6}]}, 0x10)
syz_emit_ethernet(0x36, &(0x7f0000000e00)={@local, @local, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "c88b00", 0x0, 0x84, 0x0, @dev={0xfe, 0x80, '\x00', 0x1e}, @local}}}}, 0x0)

1m11.200519806s ago: executing program 7 (id=6843):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000240)=@newqdisc={0x44, 0x25, 0x4ee4e6a52ff56541, 0x70bd2a, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0x8, 0x10}}, [@qdisc_kind_options=@q_rr={{0x7}, {0x18, 0x2, {0x8, "fb424d7d882915b9a54fa92eb099b262"}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x2404c000}, 0x0)

1m11.172253548s ago: executing program 7 (id=6844):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000400)='sys_enter\x00', r0}, 0x18)
r1 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
copy_file_range(r1, 0x0, r1, 0x0, 0xd, 0x0)

1m11.02150903s ago: executing program 7 (id=6846):
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
mount$incfs(&(0x7f00000007c0)='./bus\x00', &(0x7f0000000800)='./bus\x00', &(0x7f0000000840), 0x1004002, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f0000000200)={[{@jqfmt_vfsold}, {@orlov}, {@debug}, {@noload}, {@nombcache}, {@noblock_validity}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x8000}}]}, 0xfa, 0x47c, &(0x7f0000000a80)="$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")

1m10.879512582s ago: executing program 2 (id=6850):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f0000004cc0)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f0000000380)='T', 0x1}], 0x1, &(0x7f0000000a40)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32=r0, @ANYBLOB="0000000014"], 0x30, 0x40400d1}}], 0x1, 0x10)
pipe(&(0x7f0000000300)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
splice(r0, 0x0, r2, 0x0, 0x400000, 0x100000000000007)

1m10.659738269s ago: executing program 7 (id=6852):
mlockall(0x6)
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000001000/0x4000)=nil)
brk(0x400000ffc000)
brk(0x400000ffc020)

1m10.512739591s ago: executing program 7 (id=6855):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000240)='clear_refs\x00')
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='mmap_lock_acquire_returned\x00', r1}, 0x10)
writev(r0, &(0x7f0000000140)=[{&(0x7f00000000c0)='2', 0x1}], 0x1)

1m10.391024061s ago: executing program 45 (id=6855):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000240)='clear_refs\x00')
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='mmap_lock_acquire_returned\x00', r1}, 0x10)
writev(r0, &(0x7f0000000140)=[{&(0x7f00000000c0)='2', 0x1}], 0x1)

1m9.966678605s ago: executing program 2 (id=6867):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000100)={{0xf000, 0xdddd1000, 0x3, 0x0, 0x8, 0x8, 0x0, 0x2, 0x8, 0x6, 0x9, 0x10}, {0x1, 0x65ddbab8b0bf26e4, 0xc, 0x8, 0x0, 0x0, 0x0, 0x0, 0x7, 0x7, 0x0, 0xfd}, {0x3000, 0x5000, 0xc, 0x0, 0x7, 0x4, 0x0, 0x0, 0x3, 0x0, 0x0, 0xfc}, {0xdddd0000, 0xd000, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x4}, {0xeeee8000, 0x3000, 0x9, 0x0, 0xff, 0x4, 0x0, 0xe, 0x0, 0x3c}, {0x0, 0x0, 0x3, 0x8, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x0, 0x80}, {0x8080000, 0x100000, 0xa, 0xc8, 0x5, 0x0, 0x3}, {0x80a0000, 0xdddd0000, 0x0, 0x0, 0x0, 0x1, 0x40, 0xa, 0x26, 0x1}, {0x80a0000}, {0xeeef0000}, 0xbdfdffe1, 0x0, 0x0, 0x28, 0xb, 0x5401, 0x0, [0x0, 0x0, 0x1, 0x8000000000]})

1m9.927323667s ago: executing program 46 (id=6867):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r2, 0x4138ae84, &(0x7f0000000100)={{0xf000, 0xdddd1000, 0x3, 0x0, 0x8, 0x8, 0x0, 0x2, 0x8, 0x6, 0x9, 0x10}, {0x1, 0x65ddbab8b0bf26e4, 0xc, 0x8, 0x0, 0x0, 0x0, 0x0, 0x7, 0x7, 0x0, 0xfd}, {0x3000, 0x5000, 0xc, 0x0, 0x7, 0x4, 0x0, 0x0, 0x3, 0x0, 0x0, 0xfc}, {0xdddd0000, 0xd000, 0x0, 0x0, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x4}, {0xeeee8000, 0x3000, 0x9, 0x0, 0xff, 0x4, 0x0, 0xe, 0x0, 0x3c}, {0x0, 0x0, 0x3, 0x8, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x0, 0x80}, {0x8080000, 0x100000, 0xa, 0xc8, 0x5, 0x0, 0x3}, {0x80a0000, 0xdddd0000, 0x0, 0x0, 0x0, 0x1, 0x40, 0xa, 0x26, 0x1}, {0x80a0000}, {0xeeef0000}, 0xbdfdffe1, 0x0, 0x0, 0x28, 0xb, 0x5401, 0x0, [0x0, 0x0, 0x1, 0x8000000000]})

1m5.617002231s ago: executing program 1 (id=7006):
r0 = socket(0x2, 0x3, 0xfc)
setsockopt$inet_int(r0, 0x0, 0x14, &(0x7f0000000240)=0x8000013, 0x4)
sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f0000000100)={0x2, 0x4e23, @empty}, 0x10)
recvfrom$inet(r0, 0x0, 0x0, 0x122, 0x0, 0x0)

1m5.589932843s ago: executing program 1 (id=7008):
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x12, 0x9, 0x4, 0x2}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r1}, &(0x7f00000001c0)=0x2, &(0x7f00000005c0)=r0}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000080)={r1, &(0x7f0000000040)}, 0x20)

1m5.557453086s ago: executing program 1 (id=7010):
bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x2, 0x3, &(0x7f00000027c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xb, 0x9, 0x3, 0xc4f, 0x1, 0x1}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000100), 0x6c7, r0}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000001c0)={0x0, &(0x7f0000000340)=""/211, &(0x7f0000000180), &(0x7f0000000440), 0x3, r0}, 0x38)

1m5.540503307s ago: executing program 1 (id=7011):
syz_mount_image$f2fs(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x2208412, &(0x7f0000000b40)=ANY=[], 0x1, 0x558e, &(0x7f000000ac00)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x142)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000041, 0x0, 0x3, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})

1m4.904435828s ago: executing program 1 (id=7024):
sched_setaffinity(0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000001600)='./bus\x00', 0x20085f, &(0x7f0000000140), 0x1, 0x51c, &(0x7f0000001640)="$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")
quotactl$Q_QUOTAON(0xffffffff80000200, &(0x7f0000000000)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)

1m4.568708495s ago: executing program 1 (id=7026):
r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x862b01)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)
ioctl$EVIOCGKEY(r0, 0x80404518, &(0x7f0000000a40)=""/216)

1m4.493854531s ago: executing program 47 (id=7026):
r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x862b01)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)
ioctl$EVIOCGKEY(r0, 0x80404518, &(0x7f0000000a40)=""/216)

1m2.384549629s ago: executing program 0 (id=7072):
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x220000, 0xc, 0x0, 0x2, 0xfffffffe})
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
ioctl$FS_IOC_GETFSLABEL(r0, 0x400452c8, &(0x7f0000000100))
socket$nl_route(0x10, 0x3, 0x0)

1m2.37445974s ago: executing program 0 (id=7073):
close(0xffffffffffffffff)
eventfd2(0xb0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000240)='fdinfo/3\x00')
lseek(r0, 0x4, 0x0)

1m2.356211211s ago: executing program 0 (id=7074):
r0 = socket$inet(0x2, 0x6000000000000001, 0x0)
mmap(&(0x7f0000001000/0x200000)=nil, 0x200000, 0x2000001, 0x2011, r0, 0x0)
r1 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
write$tcp_congestion(r1, &(0x7f0000000300)='reno\x00', 0xfdef)

1m2.355766781s ago: executing program 0 (id=7075):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000000240)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@nodelalloc}, {@stripe={'stripe', 0x3d, 0x4000}}, {@errors_remount}, {@minixdf}]}, 0x3, 0x43a, &(0x7f0000000340)="$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")
syz_mount_image$fuse(0x0, &(0x7f0000000240)='./bus\x00', 0x20000, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x200000, &(0x7f0000000840)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
llistxattr(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)

1m2.294614246s ago: executing program 0 (id=7077):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xd, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000bc00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bca2000000000000a6020000f8ffffffb703000008000000b704000000000400850000003300000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r0, <r2=>0xffffffffffffffff}, &(0x7f00000001c0), &(0x7f0000000300)=r1}, 0x20)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000004c0)={r2, &(0x7f0000000400), &(0x7f0000000480)=@tcp6, 0x1}, 0x20)

1m2.124834619s ago: executing program 0 (id=7082):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xf, 0x4, 0x4, 0x4}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000200000000000000000818110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1m2.083889763s ago: executing program 48 (id=7082):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xf, 0x4, 0x4, 0x4}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000200000000000000000818110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

6.075013966s ago: executing program 3 (id=8764):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000a00)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f00000012c0)='sys_enter\x00', r1}, 0x10)
futimesat(0xffffffffffffffff, 0x0, 0x0)

5.984103243s ago: executing program 3 (id=8767):
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f0000000080)='./file0\x00', 0x400, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], 0x1, 0x5514, &(0x7f0000005d80)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0)
pwritev2(r0, &(0x7f00000001c0)=[{&(0x7f0000000080)="ff", 0xfdef}], 0x1, 0xe7b, 0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0x40305829, &(0x7f00000000c0)={0x17c04, 0xffffffffffffffff, 0xf4fb, 0xfff, 0x9})

5.464107115s ago: executing program 3 (id=8779):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000380)='sys_enter\x00', r1}, 0x10)
waitid(0x1, 0x0, 0x0, 0x1, 0x0)

5.214713284s ago: executing program 3 (id=8785):
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000080)='./file1\x00', 0x0, &(0x7f00000069c0)=ANY=[@ANYBLOB="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"], 0x1, 0x5531, &(0x7f0000000b00)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x0)
write$FUSE_NOTIFY_RETRIEVE(r0, &(0x7f0000000040)={0x30, 0x5, 0x0, {0x0, 0x5, 0xb, 0x4}}, 0x30)
lseek(r0, 0x2, 0x4)

2.809493506s ago: executing program 3 (id=8792):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000080000000c"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002300000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
syz_usb_connect(0x3, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000d44ebb40ec188832cf690102030109021b00010000000009040000010e01"], 0x0)

1.228377882s ago: executing program 4 (id=8809):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c16, &(0x7f0000000040)={[{@nobh}, {@usrjquota}]}, 0xff, 0x240, &(0x7f00000002c0)="$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")
setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000002a40)='system.posix_acl_default\x00', &(0x7f0000002b40), 0x24, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000))
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)

1.090505933s ago: executing program 4 (id=8813):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000800000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='module_request\x00', r0}, 0x10)
socketpair(0x0, 0x0, 0x0, &(0x7f00000006c0))

1.040236487s ago: executing program 4 (id=8815):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_ro(r0, &(0x7f0000000400)='net_prio.prioidx\x00', 0x0, 0x0)
preadv2(r1, &(0x7f0000000040)=[{&(0x7f0000000100)=""/65, 0x41}], 0x1, 0x2, 0x0, 0x1)

1.015503499s ago: executing program 4 (id=8816):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x83, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_SREGS2(r2, 0x4140aecd, &(0x7f00000002c0)={{0x1000, 0x2000, 0x14, 0x3, 0xb, 0xa8, 0x9, 0xfb, 0x3, 0x2b, 0x8, 0x4}, {0xf000, 0x6000, 0xf, 0xe, 0x3, 0xff, 0x1, 0x9, 0xc, 0x4, 0x1}, {0x4000, 0xdddd1000, 0x10, 0x81, 0x1, 0x9, 0x6, 0x57, 0x5, 0x2b, 0x3, 0xfa}, {0x2000, 0x10000, 0xb, 0x40, 0x2, 0x4, 0x6, 0x0, 0x9, 0x3b, 0xfa, 0x7}, {0x0, 0x33339000, 0x10, 0x6, 0x6, 0x7, 0xb, 0x8, 0x10, 0x7, 0x0, 0xb8}, {0xd002, 0x1, 0xe, 0x6, 0x6, 0x6, 0x9, 0x0, 0x0, 0x7, 0x6, 0x4}, {0xeeef0000, 0x1, 0x8, 0xbb, 0x3, 0x4, 0x4, 0x7f, 0x2, 0xa, 0x5b, 0x8}, {0xdddd1000, 0x4000, 0xd, 0x50, 0x3, 0x4, 0xea, 0x1, 0x3, 0x0, 0xc0, 0x6}, {0xf000, 0x200}, {0xeeee0000, 0x9}, 0x80000004, 0x0, 0xeeee0000, 0x8, 0xf, 0x4000, 0x80a0000, 0x0, [0x6, 0x5, 0x1000, 0x9]})

849.795262ms ago: executing program 4 (id=8823):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000640)={0x8, 0x0, &(0x7f0000000000)=[@decrefs={0x400c6314}], 0x0, 0x0, 0x0})

816.831065ms ago: executing program 4 (id=8825):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r0, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@sack_perm, @window, @sack_perm, @sack_perm, @timestamp, @timestamp, @timestamp, @timestamp], 0x20000149)

498.21944ms ago: executing program 6 (id=8840):
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/tcp6\x00')
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r1, 0x8)
read$FUSE(r0, &(0x7f0000004180)={0x2020}, 0x2020)

430.160875ms ago: executing program 5 (id=8842):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000000e8ffff03000040"])

412.307287ms ago: executing program 6 (id=8843):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000008500000061000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x36, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000faff0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000080)="b9ff03076003008cb89e08f588a8", 0x0, 0x402f, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

370.30877ms ago: executing program 8 (id=8845):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000180)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd2c, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0x7}, {0xfff1, 0xffff}, {0xfff3, 0x10}}, [@qdisc_kind_options=@q_clsact={0xb}, @TCA_INGRESS_BLOCK={0x8, 0xd, 0x10001}, @TCA_EGRESS_BLOCK={0x8, 0xe, 0x300000}, @TCA_RATE={0x6, 0x5, {0x4, 0x14}}]}, 0x48}, 0x1, 0x0, 0x0, 0x8d0}, 0x20000800)

284.311577ms ago: executing program 8 (id=8846):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x22, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='timer_start\x00', r0}, 0x10)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000940))

252.036849ms ago: executing program 6 (id=8847):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x80202, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000080)=ANY=[@ANYBLOB="010000005ef5db8b97000040", @ANYRESDEC])

250.83607ms ago: executing program 8 (id=8848):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x381, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x5032})
io_setup(0xbf, &(0x7f0000000100)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f00000001c0)=[&(0x7f00000000c0)={0x20000000, 0x0, 0x7, 0x8, 0x0, r0, 0x0}])

233.285831ms ago: executing program 5 (id=8849):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0xfffffffffffffffd}, 0x18)
setsockopt$CAN_RAW_FILTER(r0, 0x65, 0x1, 0x0, 0xf00)

186.800735ms ago: executing program 5 (id=8850):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413ec50000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='netlink_extack\x00', r1}, 0x18)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="1b0000001a00010000000000fbdbdf250a"], 0x24}}, 0x0)

159.660938ms ago: executing program 5 (id=8851):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c0000005e00010026bd7000ffdbdf2500000000", @ANYRES32=r2, @ANYBLOB="0400"], 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x4000)

143.684758ms ago: executing program 5 (id=8852):
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x89f0, &(0x7f0000000080)={'bridge0\x00', &(0x7f00000000c0)=@ethtool_regs={0x4, 0x0, 0x1c, "f42a97b96d025891dd3f75fdda624457ad3d5c36389c308570204262"}})
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000540), r0)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000ecffffffffff2000000005002000000000000c001f00"], 0x28}}, 0x0)

125.03196ms ago: executing program 8 (id=8853):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000180)=0xfe)
ioctl$TCSETSW2(r0, 0x402c542c, &(0x7f00000000c0)={0xfffffff8, 0x401, 0x7ffffffd, 0x2, 0x7, "0441920872e87fcb366400000000080100", 0x2, 0x200})
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000140)=0x8)

88.720663ms ago: executing program 8 (id=8854):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = getpgrp(0x0)
r1 = syz_pidfd_open(r0, 0x0)
pidfd_getfd(r1, r1, 0x0)

88.362163ms ago: executing program 5 (id=8855):
r0 = io_uring_setup(0x177e, &(0x7f0000000140))
close_range(r0, 0xffffffffffffffff, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
readv(r1, &(0x7f0000001340)=[{&(0x7f0000000580)=""/148, 0x94}], 0x1)

84.942483ms ago: executing program 3 (id=8856):
io_setup(0x4fb, &(0x7f00000009c0)=<r0=>0x0)
r1 = syz_open_dev$tty20(0xc, 0x4, 0x1)
io_submit(r0, 0x1, &(0x7f00000001c0)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x40, r1, &(0x7f0000000400)='B', 0x1, 0x4, 0x0, 0x997f18199400164}])
ioctl$TIOCSETD(r1, 0x5423, &(0x7f0000000000)=0x1b)

63.947235ms ago: executing program 6 (id=8857):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x3, &(0x7f0000000440)=@framed, &(0x7f0000000c40)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x18)
r1 = openat$selinux_access(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
write$selinux_access(r1, &(0x7f0000000040)=ANY=[@ANYBLOB="73797374656d5f753a6f626a6563745f723a6c645f736f5f7420704a122f7362696e2f6468636c69656e742030"], 0x41)

47.481796ms ago: executing program 8 (id=8858):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000c80)='./file1\x00', 0x210000, &(0x7f00000004c0)={[{@acl}, {@barrier}, {@barrier_val}, {@nobarrier}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nodelalloc}, {@acl}, {@noinit_itable}]}, 0xf8, 0x587, &(0x7f0000002100)="$eJzs3U1rG9caAOB3ZMn5cO6NAyHcexeXQBZNSSPHdj9SKDRdljY00O5TYSsmWI6CJYfYDTRZNJtuSiiU0kDpD+i+y9A/0F8RaAOhBNMuSkFl5JGt2JIdOzJSoueBSc6ZD595feY9PqORUABD62T6Ty7ivxHxVRJxtG1bPrKNJ9f2W31yayZdkmg0Pv49iSRb19o/yf4fyyr/iYifv4g4k9vabm15Zb5UqZQXs/pEfeH6RG155ezVhdJcea58bWp6+vwb01Nvv/Vmz2J99dKf33704P3zX55a/ebHR8fuJXEhjmTb2uN4DrfbKydLf2elQlzYtONkDxobJEm/T4A9GcnyvBDpGHA0RrKsB15+n0dEY02uAQyZpJn/YxvjADAkWvOA1r19j+6DXxiP31u7AWrGPtoef37ttZE42Lw3OryaPHVnlN7vjveg/bSNn367fy9dYvvXIQ7tUAfYldt3IuJcPr91/E+y8W/vzjVfPN7e5jaG7e8P9NODdP7zWqf5X259/hMd5j9jHXJ3L3bO/9yjHjTTVTr/e6fj/Hd96BofyWr/as75CsmVq5XyuYj4d0ScjsKBtL7d85zzqw8b3ba1z//SJW2/NRfMzuNR/sDTx8yW6qWIGH2euFse34n4X75T/Ml6/ycd+j/9fVzq+BMLW9acKN//f7f2d45/fzV+iHilY/9vPNFKtn8+OdG8HiZaV8VWf9w98Uu39vsdf9r/h7ePfzxpf15b230b3x/8q9xt216v/9Hkk2a5lQQ3S/X64mTEaPJhs36wff3UxrGtemv/NP7Tp7Yf/zpd/+nN16fPGP/d43e77joI/T+7q/7ffeHhB5991639Z+v/15ul09mabPzrLLtWnvUEn/f3BwAAAAAAAIMkFxFHIskV18u5XLG49v6O43E4V6nW6meuVJeuzUbzs7LjUci1nnQfbXs/xGT2fthWfWpTfToijkXE1yOHmvXiTLUy2+/gAQAAAAAAAAAAAAAAAAAAYECMdfn8f+rXkX6fHbDvml9scKDfZwH0w45f+d+Lb3oCBtKO+Q+8tOQ/DC/5D8NL/sPwkv8wvOQ/DC/5D8NL/gMAAAAAAAAAAAAAAAAAAAAAAAAAAEBPXbp4MV0aq09uzaT12RvLS/PVG2dny7X54sLSTHGmuni9OFetzlXKxZnqwk4/r1KtXp+ciqWbE/VyrT5RW165vFBdula/fHWhNFe+XC5s7Jrb38gAAAAAAAAAAAAAAAAAAADgxVFbXpkvVSrlRYWuhXdjIE5jPwNcs6fD84MShUKXwp2se3d3VB8HJQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADY5J8AAAD//9ybLZI=")
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r0}, 0x18)
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1a4a438, &(0x7f00000008c0)=ANY=[], 0xe, 0x0, &(0x7f0000000000))

39.411217ms ago: executing program 6 (id=8859):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f00000002c0)={0x2, {{0xa, 0x0, 0x0, @mcast2}}, {{0xa, 0x0, 0x0, @local}}}, 0x108)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f00000006c0)=ANY=[@ANYBLOB="02000000000000000a00000000000000ff02000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000590000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000003"], 0x210)
setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f00000008c0)=ANY=[@ANYBLOB="02000000000000000a00000000000000ff020000000000000000000000000001"], 0x110)

0s ago: executing program 6 (id=8860):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000380)=@newqdisc={0x40, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r2, {}, {0xfff2, 0xa}, {0x2}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0xc, 0x2, [@TCA_FQ_CODEL_MEMORY_LIMIT={0x8, 0x9, 0x1}]}}]}, 0x40}}, 0x4000)

kernel console output (not intermixed with test programs):

0792][T17032] netlink: 'syz.8.7210': attribute type 2 has an invalid length.
[  277.679306][T17032] netlink: 16 bytes leftover after parsing attributes in process `syz.8.7210'.
[  277.688681][T17030] erofs: (device loop4): mounted with root inode @ nid 36.
[  277.714712][T17030] erofs: (device loop4): z_erofs_readahead: readahead error at page 0 @ nid 89
[  277.734388][T17030] erofs: (device loop4): z_erofs_pcluster_readmore: readmore error at page 0 @ nid 89
[  277.918443][T17034] loop8: detected capacity change from 0 to 40427
[  277.939684][T17034] F2FS-fs (loop8): Invalid log_blocksize (268), supports only 12
[  277.947819][T17034] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[  277.963773][T17034] F2FS-fs (loop8): invalid crc value
[  277.996873][T17034] F2FS-fs (loop8): Found nat_bits in checkpoint
[  278.060236][T17034] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[  278.067425][T17034] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  278.275280][T17092] loop3: detected capacity change from 0 to 128
[  278.282462][T17092] EXT4-fs: Ignoring removed nobh option
[  278.294550][T17092] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  278.344383][T17092] fscrypt (loop3, inode 12): Direct key flag not allowed with different contents and filenames modes
[  278.380561][T16591] EXT4-fs (loop3): unmounting filesystem.
[  278.474524][T17095] loop6: detected capacity change from 0 to 40427
[  278.482466][T17095] F2FS-fs (loop6): Image doesn't support compression
[  278.489335][T17095] F2FS-fs (loop6): heap/no_heap options were deprecated
[  278.497298][T17095] F2FS-fs (loop6): invalid crc value
[  278.504066][T17095] F2FS-fs (loop6): Found nat_bits in checkpoint
[  278.541044][T17109] loop4: detected capacity change from 0 to 512
[  278.547985][T17109] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  278.560054][T17109] EXT4-fs (loop4): 1 truncate cleaned up
[  278.565970][T17109] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  278.578355][T17095] F2FS-fs (loop6): Start checkpoint disabled!
[  278.591714][T17112] input: syz1 as /devices/virtual/input/input77
[  278.601340][T17095] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6
[  278.608117][T16741] EXT4-fs (loop4): unmounting filesystem.
[  278.704843][   T28] kauditd_printk_skb: 89 callbacks suppressed
[  278.704860][   T28] audit: type=1400 audit(278.693:1658): avc:  denied  { read write } for  pid=17122 comm="syz.8.7248" name="fuse" dev="devtmpfs" ino=93 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  278.734589][   T28] audit: type=1400 audit(278.703:1659): avc:  denied  { open } for  pid=17122 comm="syz.8.7248" path="/dev/fuse" dev="devtmpfs" ino=93 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  278.750647][    T8] kworker/u4:0: attempt to access beyond end of device
[  278.750647][    T8] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  278.757977][   T28] audit: type=1400 audit(278.703:1660): avc:  denied  { mount } for  pid=17122 comm="syz.8.7248" name="/" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  278.859413][T17124] loop8: detected capacity change from 0 to 4096
[  278.870171][   T28] audit: type=1400 audit(278.853:1661): avc:  denied  { mounton } for  pid=17122 comm="syz.8.7248" path="/82/file0" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[  278.922927][T17124] EXT4-fs warning (device loop8): ext4_enable_quotas:7053: Failed to enable quota tracking (type=1, err=-13, ino=4). Please run e2fsck to fix.
[  278.954023][T17124] EXT4-fs (loop8): mount failed
[  279.069073][T17147] loop5: detected capacity change from 0 to 16
[  279.076031][T17147] erofs: (device loop5): mounted with root inode @ nid 36.
[  279.172487][T17140] loop4: detected capacity change from 0 to 40427
[  279.184110][T17140] F2FS-fs (loop4): Found nat_bits in checkpoint
[  279.212649][T17140] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  279.244392][T17159] loop5: detected capacity change from 0 to 16
[  279.254363][T17159] erofs: (device loop5): mounted with root inode @ nid 36.
[  279.294384][T17166] loop5: detected capacity change from 0 to 128
[  279.301521][T17140] syz.4.7256: attempt to access beyond end of device
[  279.301521][T17140] loop4: rw=2049, sector=77824, nr_sectors = 136 limit=40427
[  279.317871][T17166] EXT4-fs: Ignoring removed nobh option
[  279.351301][T16741] syz-executor: attempt to access beyond end of device
[  279.351301][T16741] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  279.369607][   T28] audit: type=1400 audit(279.353:1662): avc:  denied  { bind } for  pid=17168 comm="syz.3.7265" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  279.394404][T17173] syzkaller0: tun_chr_ioctl cmd 1074025675
[  279.404437][T17166] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  279.424870][T17173] syzkaller0: persist disabled
[  279.433556][T17166] fscrypt (loop5, inode 12): Direct key flag not allowed with different contents and filenames modes
[  279.456426][T16180] EXT4-fs (loop5): unmounting filesystem.
[  279.471973][   T28] audit: type=1400 audit(279.463:1663): avc:  denied  { name_bind } for  pid=17176 comm="syz.5.7269" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1
[  279.558155][   T28] audit: type=1400 audit(279.543:1664): avc:  denied  { unmount } for  pid=16036 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  279.630346][   T28] audit: type=1400 audit(279.553:1665): avc:  denied  { create } for  pid=17185 comm="syz.6.7274" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  279.690288][   T28] audit: type=1400 audit(279.553:1666): avc:  denied  { bind } for  pid=17185 comm="syz.6.7274" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  279.733185][   T28] audit: type=1400 audit(279.553:1667): avc:  denied  { write } for  pid=17185 comm="syz.6.7274" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  279.962835][T17183] loop3: detected capacity change from 0 to 40427
[  279.982112][T17183] F2FS-fs (loop3): fault_injection options not supported
[  279.997050][T17183] F2FS-fs (loop3): invalid crc value
[  280.020593][T17183] F2FS-fs (loop3): Found nat_bits in checkpoint
[  280.071232][T17201] loop4: detected capacity change from 0 to 40427
[  280.084205][T17201] F2FS-fs (loop4): Image doesn't support compression
[  280.091325][T17201] F2FS-fs (loop4): heap/no_heap options were deprecated
[  280.091336][T17183] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  280.112902][T17201] F2FS-fs (loop4): invalid crc value
[  280.137919][T17201] F2FS-fs (loop4): Found nat_bits in checkpoint
[  280.146927][T16591] syz-executor: attempt to access beyond end of device
[  280.146927][T16591] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  280.190202][T17201] F2FS-fs (loop4): Start checkpoint disabled!
[  280.211618][T17201] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  280.275381][T17227] overlayfs: upper fs does not support file handles, falling back to index=off.
[  280.285234][T17227] overlayfs: NFS export requires "index=on", falling back to nfs_export=off.
[  280.294543][T17201] syz.4.7280: attempt to access beyond end of device
[  280.294543][T17201] loop4: rw=10241, sector=53248, nr_sectors = 8 limit=40427
[  280.354536][   T43] kworker/u4:2: attempt to access beyond end of device
[  280.354536][   T43] loop4: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[  280.375012][   T43] kworker/u4:2: attempt to access beyond end of device
[  280.375012][   T43] loop4: rw=2049, sector=41000, nr_sectors = 8 limit=40427
[  280.474890][T17247] loop4: detected capacity change from 0 to 1024
[  280.492527][T17247] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  280.516061][T16741] EXT4-fs (loop4): unmounting filesystem.
[  280.523879][T17251] loop6: detected capacity change from 0 to 128
[  280.571484][T17255] loop4: detected capacity change from 0 to 2048
[  280.632946][T17264] loop4: detected capacity change from 0 to 128
[  280.642369][T17264] EXT4-fs (loop4): Test dummy encryption mode enabled
[  280.650482][T17264] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  280.651650][ T1013] usb 4-1: new high-speed USB device number 24 using dummy_hcd
[  280.685952][T16741] EXT4-fs (loop4): unmounting filesystem.
[  280.765492][T17280] loop4: detected capacity change from 0 to 512
[  280.788569][T17280] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.7311: casefold flag without casefold feature
[  280.802204][T17280] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.7311: couldn't read orphan inode 15 (err -117)
[  280.814493][T17280] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  280.851824][T16741] EXT4-fs (loop4): unmounting filesystem.
[  280.869069][T17285] loop4: detected capacity change from 0 to 128
[  280.901699][ T1013] usb 4-1: Using ep0 maxpacket: 32
[  280.908255][ T1013] usb 4-1: config 0 interface 0 altsetting 8 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  280.919681][ T1013] usb 4-1: config 0 interface 0 altsetting 8 endpoint 0x81 has invalid wMaxPacketSize 0
[  280.929745][ T1013] usb 4-1: config 0 interface 0 has no altsetting 0
[  280.938334][ T1013] usb 4-1: New USB device found, idVendor=056a, idProduct=00b9, bcdDevice= 0.00
[  280.947725][ T1013] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  280.956852][ T1013] usb 4-1: config 0 descriptor??
[  281.015879][T17297] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  281.077243][T17302] netlink: 104 bytes leftover after parsing attributes in process `syz.8.7320'.
[  281.121362][T17304] SELinux: failed to load policy
[  281.279641][T17328] loop8: detected capacity change from 0 to 128
[  281.365639][ T1013] wacom 0003:056A:00B9.0061: Unknown device_type for 'HID 056a:00b9'. Assuming pen.
[  281.398582][ T1013] wacom 0003:056A:00B9.0061: hidraw0: USB HID v0.00 Device [HID 056a:00b9] on usb-dummy_hcd.3-1/input0
[  281.422277][ T1013] input: Wacom Intuos4 6x9 Pen as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:056A:00B9.0061/input/input78
[  281.503632][T17353] device bridge_slave_1 left promiscuous mode
[  281.516848][T17353] bridge0: port 2(bridge_slave_1) entered disabled state
[  281.525508][T17353] device bridge_slave_0 left promiscuous mode
[  281.531913][T17353] bridge0: port 1(bridge_slave_0) entered disabled state
[  281.572952][ T1013] usb 4-1: USB disconnect, device number 24
[  281.729085][T17379] netlink: 24 bytes leftover after parsing attributes in process `syz.6.7356'.
[  281.744387][T17379] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  281.844907][T17392] loop8: detected capacity change from 0 to 128
[  281.859780][T17392] EXT4-fs (loop8): Test dummy encryption mode enabled
[  281.880347][T17392] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  281.910488][T17397] netlink: 20 bytes leftover after parsing attributes in process `syz.6.7364'.
[  281.929726][T17397] netlink: 1 bytes leftover after parsing attributes in process `syz.6.7364'.
[  281.944046][T16036] EXT4-fs (loop8): unmounting filesystem.
[  282.130810][T17401] loop6: detected capacity change from 0 to 40427
[  282.141768][T17401] F2FS-fs (loop6): fault_injection options not supported
[  282.149642][T17401] F2FS-fs (loop6): invalid crc value
[  282.180291][T17401] F2FS-fs (loop6): Found nat_bits in checkpoint
[  282.215029][T17401] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  282.265444][T15718] syz-executor: attempt to access beyond end of device
[  282.265444][T15718] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  282.366724][T17403] loop8: detected capacity change from 0 to 40427
[  282.386859][T17403] F2FS-fs (loop8): Image doesn't support compression
[  282.408368][T17403] F2FS-fs (loop8): heap/no_heap options were deprecated
[  282.442356][T17403] F2FS-fs (loop8): invalid crc value
[  282.453457][T17403] F2FS-fs (loop8): Found nat_bits in checkpoint
[  282.461674][  T586] usb 4-1: new low-speed USB device number 25 using dummy_hcd
[  282.481969][T17364] loop4: detected capacity change from 0 to 131072
[  282.512277][T17364] F2FS-fs (loop4): Invalid log sectors per block(570425347) log sectorsize(9)
[  282.524167][T17403] F2FS-fs (loop8): Start checkpoint disabled!
[  282.530811][T17364] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock
[  282.545918][T17403] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e6
[  282.560581][T17364] F2FS-fs (loop4): invalid crc value
[  282.577326][T17364] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (15359802341028777995, 275811881701387)
[  282.646215][T17364] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=3000000, run fsck to fix.
[  282.656440][T17430] loop6: detected capacity change from 0 to 128
[  282.671012][T17430] EXT4-fs (loop6): Test dummy encryption mode enabled
[  282.672643][  T586] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  282.689268][T17364] F2FS-fs (loop4): Bad quota inode 2:50331648
[  282.694033][  T586] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  282.702033][T17364] F2FS-fs (loop4): Failed to enable quota tracking (type=2, err=-22). Please run fsck to fix.
[  282.705595][  T586] usb 4-1: New USB device found, idVendor=046d, idProduct=c52f, bcdDevice= 0.00
[  282.724886][  T586] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  282.732045][T17430] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  282.733277][T17364] F2FS-fs (loop4): Cannot turn on quotas: error -22
[  282.748352][  T586] usb 4-1: config 0 descriptor??
[  282.755307][ T1550] kworker/u4:5: attempt to access beyond end of device
[  282.755307][ T1550] loop8: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[  282.769551][ T1550] kworker/u4:5: attempt to access beyond end of device
[  282.769551][ T1550] loop8: rw=2049, sector=40976, nr_sectors = 8 limit=40427
[  282.783830][T17364] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0
[  282.792221][T15718] EXT4-fs (loop6): unmounting filesystem.
[  282.798217][T17364] F2FS-fs (loop4): Mounted with checkpoint version = 753bd00b
[  282.905843][T17364] F2FS-fs (loop4): quota file may be corrupted, skip loading it
[  282.919494][T17424] loop5: detected capacity change from 0 to 40427
[  282.928184][T17424] F2FS-fs (loop5): Invalid Fs Meta Ino: node(0) meta(2) root(0)
[  282.942822][T17424] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  282.970946][T17424] F2FS-fs (loop5): invalid crc value
[  283.012763][T17424] F2FS-fs (loop5): Found nat_bits in checkpoint
[  283.056437][T17424] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  283.063749][T17424] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e4
[  283.158435][  T586] logitech-djreceiver 0003:046D:C52F.0062: ignoring exceeding usage max
[  283.179426][  T586] logitech-djreceiver 0003:046D:C52F.0062: hidraw0: USB HID v0.00 Device [HID 046d:c52f] on usb-dummy_hcd.3-1/input0
[  283.194321][T17445] batadv0: tun_chr_ioctl cmd 1074812118
[  283.280866][T17424] F2FS-fs (loop5): Start checkpoint disabled!
[  283.367654][  T586] usb 4-1: USB disconnect, device number 25
[  283.451316][T17456] loop5: detected capacity change from 0 to 40427
[  283.464802][T17456] F2FS-fs (loop5): Found nat_bits in checkpoint
[  283.504612][T17456] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  283.731593][  T297] usb 5-1: new full-speed USB device number 20 using dummy_hcd
[  283.942345][  T297] usb 5-1: unable to get BOS descriptor or descriptor too short
[  283.959309][  T297] usb 5-1: no configurations
[  283.977039][  T297] usb 5-1: can't read configurations, error -22
[  283.998811][T17478] SELinux: failed to load policy
[  284.074661][   T28] kauditd_printk_skb: 32 callbacks suppressed
[  284.074679][   T28] audit: type=1400 audit(284.063:1700): avc:  denied  { connect } for  pid=17492 comm="syz.3.7398" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  284.103292][   T28] audit: type=1400 audit(284.063:1701): avc:  denied  { getopt } for  pid=17492 comm="syz.3.7398" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  284.192113][   T28] audit: type=1400 audit(284.183:1702): avc:  denied  { read write } for  pid=17503 comm="syz.8.7403" name="vhost-vsock" dev="devtmpfs" ino=268 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  284.215865][   T28] audit: type=1400 audit(284.183:1703): avc:  denied  { open } for  pid=17503 comm="syz.8.7403" path="/dev/vhost-vsock" dev="devtmpfs" ino=268 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  284.295996][T17515] xt_hashlimit: size too large, truncated to 1048576
[  284.460657][T17529] loop4: detected capacity change from 0 to 512
[  284.467069][   T28] audit: type=1400 audit(284.443:1704): avc:  denied  { ioctl } for  pid=17530 comm="syz.8.7415" path="/dev/binderfs/binder1" dev="binder" ino=11 ioctlcmd=0x6208 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  284.508966][T17529] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  284.555135][T16741] EXT4-fs (loop4): unmounting filesystem.
[  284.572784][T17537] loop3: detected capacity change from 0 to 2048
[  284.582012][T17537] EXT4-fs: Ignoring removed nobh option
[  284.614510][T17543] loop5: detected capacity change from 0 to 512
[  284.632629][T17537] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  284.643059][T17543] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  284.662979][   T28] audit: type=1400 audit(284.653:1705): avc:  denied  { append } for  pid=17536 comm="syz.3.7419" name="file0" dev="loop3" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  284.686243][T16591] EXT4-fs (loop3): unmounting filesystem.
[  284.712212][T17543] EXT4-fs (loop5): orphan cleanup on readonly fs
[  284.732276][   T28] audit: type=1400 audit(284.653:1706): avc:  denied  { ioctl } for  pid=17536 comm="syz.3.7419" path="/55/file0/file0/file0" dev="loop3" ino=13 ioctlcmd=0x6685 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  284.777710][T17543] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.7421: bg 0: block 248: padding at end of block bitmap is not set
[  284.823402][T17554] netlink: 'syz.3.7424': attribute type 32 has an invalid length.
[  284.836087][   T28] audit: type=1400 audit(284.653:1707): avc:  denied  { write } for  pid=17536 comm="syz.3.7419" name="file0" dev="loop3" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  284.863314][T17541] loop8: detected capacity change from 0 to 40427
[  284.880889][T17550] loop4: detected capacity change from 0 to 32768
[  284.896287][T17543] Quota error (device loop5): write_blk: dquota write failed
[  284.904341][T17543] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  284.906001][T17541] F2FS-fs (loop8): Found nat_bits in checkpoint
[  284.937653][T17550]  loop4: p2 p3 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p2
[  284.946682][T17543] EXT4-fs error (device loop5): ext4_acquire_dquot:6801: comm syz.5.7421: Failed to acquire dquot type 1
[  285.045214][T17541] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  285.046063][T17543] EXT4-fs (loop5): 1 truncate cleaned up
[  285.069526][T17543] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  285.127753][T17541] bio_check_eod: 3 callbacks suppressed
[  285.127771][T17541] syz.8.7420: attempt to access beyond end of device
[  285.127771][T17541] loop8: rw=2049, sector=77824, nr_sectors = 136 limit=40427
[  285.152162][T16180] EXT4-fs (loop5): unmounting filesystem.
[  285.162253][T16036] syz-executor: attempt to access beyond end of device
[  285.162253][T16036] loop8: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  285.820276][ T8401] udevd[8401]: inotify_add_watch(7, /dev/loop4p26, 10) failed: No such file or directory
[  285.821714][T17590] loop5: detected capacity change from 0 to 512
[  285.831851][ T2014] udevd[2014]: inotify_add_watch(7, /dev/loop4p30, 10) failed: No such file or directory
[  285.838104][ T8402] udevd[8402]: inotify_add_watch(7, /dev/loop4p27, 10) failed: No such file or directory
[  285.847640][ T8409] udevd[8409]: inotify_add_watch(7, /dev/loop4p33, 10) failed: No such file or directory
[  285.857516][ T2015] udevd[2015]: inotify_add_watch(7, /dev/loop4p28, 10) failed: No such file or directory
[  285.867785][ T1041] udevd[1041]: inotify_add_watch(7, /dev/loop4p34, 10) failed: No such file or directory
[  285.877392][  T344] udevd[344]: inotify_add_watch(7, /dev/loop4p29, 10) failed: No such file or directory
[  285.887663][ T8404] udevd[8404]: inotify_add_watch(7, /dev/loop4p32, 10) failed: No such file or directory
[  285.907107][ T8403] udevd[8403]: inotify_add_watch(7, /dev/loop4p31, 10) failed: No such file or directory
[  285.910201][ T8405] udevd[8405]: inotify_add_watch(7, /dev/loop4p36, 10) failed: No such file or directory
[  285.920493][T17590] EXT4-fs: EXT4-fs: inode_readahead_blks must be 0 or a power of 2 smaller than 2^31
[  285.992993][T17599] loop6: detected capacity change from 0 to 128
[  286.018791][T17599] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  286.072808][T17611] netlink: 52 bytes leftover after parsing attributes in process `syz.4.7447'.
[  286.136542][T17617] input: syz1 as /devices/virtual/input/input81
[  286.444845][T17655] SELinux: failed to load policy
[  286.898585][T17688] loop6: detected capacity change from 0 to 512
[  286.967319][T17688] EXT4-fs error (device loop6): ext4_xattr_inode_iget:404: comm syz.6.7483: inode #1: comm syz.6.7483: iget: illegal inode #
[  286.983955][T17688] EXT4-fs error (device loop6): ext4_xattr_inode_iget:409: comm syz.6.7483: error while reading EA inode 1 err=-117
[  286.996632][T17688] EXT4-fs (loop6): 1 orphan inode deleted
[  287.002759][T17688] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  287.043508][T17688] EXT4-fs error (device loop6): __ext4_expand_extra_isize:5937: inode #18: comm syz.6.7483: bad extra_isize 6 (inode size 256)
[  287.134489][T15718] EXT4-fs (loop6): unmounting filesystem.
[  287.314971][T17731] loop8: detected capacity change from 0 to 2048
[  287.356555][    T8] Bluetooth: hci0: Frame reassembly failed (-84)
[  287.368228][T17733] Bluetooth: hci0: Frame reassembly failed (-84)
[  287.386712][T17731] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  287.413623][T17731] EXT4-fs (loop8): re-mounted. Quota mode: none.
[  287.439739][T17731] EXT4-fs (loop8): re-mounted. Quota mode: none.
[  287.456360][T17731] EXT4-fs error (device loop8): __ext4_new_inode:1075: comm syz.8.7500: reserved inode found cleared - inode=1
[  287.496491][T16036] EXT4-fs (loop8): unmounting filesystem.
[  287.530685][T17751] loop6: detected capacity change from 0 to 256
[  287.572419][  T586] hid-generic 0000:0000:0000.0063: item fetching failed at offset 0/1
[  287.591387][  T586] hid-generic: probe of 0000:0000:0000.0063 failed with error -22
[  287.662885][T17766] loop8: detected capacity change from 0 to 1024
[  287.688947][T17766] EXT4-fs error (device loop8): ext4_acquire_dquot:6801: comm syz.8.7515: Failed to acquire dquot type 0
[  287.704335][T17766] EXT4-fs error (device loop8): mb_free_blocks:1815: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  287.723965][T17766] EXT4-fs error (device loop8): ext4_do_update_inode:5256: inode #13: comm syz.8.7515: corrupted inode contents
[  287.744158][T17766] EXT4-fs error (device loop8): ext4_dirty_inode:6121: inode #13: comm syz.8.7515: mark_inode_dirty error
[  287.761738][T17766] EXT4-fs error (device loop8): ext4_do_update_inode:5256: inode #13: comm syz.8.7515: corrupted inode contents
[  287.767948][T17776] netlink: 'syz.6.7519': attribute type 4 has an invalid length.
[  287.781358][T17776] netlink: 3657 bytes leftover after parsing attributes in process `syz.6.7519'.
[  287.782559][T17766] EXT4-fs error (device loop8): __ext4_ext_dirty:202: inode #13: comm syz.8.7515: mark_inode_dirty error
[  287.802499][T17766] EXT4-fs error (device loop8): ext4_do_update_inode:5256: inode #13: comm syz.8.7515: corrupted inode contents
[  287.815101][T17766] EXT4-fs error (device loop8) in ext4_orphan_del:305: Corrupt filesystem
[  287.823998][T17766] EXT4-fs error (device loop8): ext4_do_update_inode:5256: inode #13: comm syz.8.7515: corrupted inode contents
[  287.836223][T17766] EXT4-fs error (device loop8): ext4_truncate:4314: inode #13: comm syz.8.7515: mark_inode_dirty error
[  287.848212][T17766] EXT4-fs error (device loop8) in ext4_process_orphan:347: Corrupt filesystem
[  287.862270][T17766] EXT4-fs (loop8): 1 truncate cleaned up
[  287.868380][T17766] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  287.910379][T17766] EXT4-fs (loop8): re-mounted. Quota mode: writeback.
[  287.924949][T17766] EXT4-fs (loop8): warning: mounting fs with errors, running e2fsck is recommended
[  287.944364][T17766] EXT4-fs (loop8): re-mounted. Quota mode: writeback.
[  287.959188][T16036] EXT4-fs (loop8): unmounting filesystem.
[  288.009795][T17801] loop3: detected capacity change from 0 to 256
[  288.037476][T17801] FAT-fs (loop3): Directory bread(block 64) failed
[  288.046504][T17801] FAT-fs (loop3): Directory bread(block 65) failed
[  288.053450][T17801] FAT-fs (loop3): Directory bread(block 66) failed
[  288.065540][T17801] FAT-fs (loop3): Directory bread(block 67) failed
[  288.073791][T17801] FAT-fs (loop3): Directory bread(block 68) failed
[  288.080485][T17801] FAT-fs (loop3): Directory bread(block 69) failed
[  288.087233][T17801] FAT-fs (loop3): Directory bread(block 70) failed
[  288.093873][T17801] FAT-fs (loop3): Directory bread(block 71) failed
[  288.110862][T17801] FAT-fs (loop3): Directory bread(block 72) failed
[  288.118391][T17801] FAT-fs (loop3): Directory bread(block 73) failed
[  288.279040][T17821] syz.5.7540[17821] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  288.279121][T17821] syz.5.7540[17821] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  288.321941][T17828] loop3: detected capacity change from 0 to 128
[  288.347752][T17828] FAT-fs (loop3): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  288.470144][T17838] loop5: detected capacity change from 0 to 2048
[  288.515895][T17838] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  288.554816][T17838] EXT4-fs error (device loop5): ext4_lookup:1858: inode #13: comm syz.5.7548: unexpected EA_INODE flag
[  288.592606][T17832] loop8: detected capacity change from 0 to 40427
[  288.600474][T16180] EXT4-fs (loop5): unmounting filesystem.
[  288.607486][T17832] F2FS-fs (loop8): fault_injection options not supported
[  288.622127][T17832] F2FS-fs (loop8): invalid crc value
[  288.656086][T17832] F2FS-fs (loop8): Found nat_bits in checkpoint
[  288.698928][T17851] tap0: tun_chr_ioctl cmd 1074025677
[  288.706830][T17851] tap0: linktype set to 769
[  288.722868][T17832] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  288.779331][T17862] loop6: detected capacity change from 0 to 256
[  288.810067][T17862] exFAT-fs (loop6): failed to load upcase table (idx : 0x00011bf5, chksum : 0xcea91b8a, utbl_chksum : 0xe619d30d)
[  288.823531][T17862] exFAT-fs (loop6): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  288.847438][T16036] syz-executor: attempt to access beyond end of device
[  288.847438][T16036] loop8: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  288.911469][T17868] loop3: detected capacity change from 0 to 512
[  288.933257][T17868] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  288.954722][T17868] EXT4-fs (loop3): 1 orphan inode deleted
[  288.960489][T17868] EXT4-fs (loop3): 1 truncate cleaned up
[  288.988369][T17868] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  289.024239][T16591] EXT4-fs (loop3): unmounting filesystem.
[  289.093982][   T28] kauditd_printk_skb: 38 callbacks suppressed
[  289.094000][   T28] audit: type=1400 audit(289.083:1744): avc:  denied  { remount } for  pid=17885 comm="syz.8.7566" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  289.103469][T17886] option changes via remount are deprecated (pid=17885 comm=syz.8.7566)
[  289.144923][   T28] audit: type=1400 audit(289.133:1745): avc:  denied  { unmount } for  pid=16036 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  289.178546][   T28] audit: type=1400 audit(289.163:1746): avc:  denied  { attach_queue } for  pid=17889 comm="syz.3.7568" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1
[  289.269661][   T28] audit: type=1400 audit(289.253:1747): avc:  denied  { append } for  pid=17902 comm="syz.8.7575" name="kvm" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  289.299436][T17905] loop5: detected capacity change from 0 to 1024
[  289.320234][T17905] EXT4-fs: Ignoring removed nobh option
[  289.326087][   T28] audit: type=1400 audit(289.303:1748): avc:  denied  { mounton } for  pid=17903 comm="syz.5.7574" path="/143/file1" dev="tmpfs" ino=759 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  289.351662][T17905] EXT4-fs: Ignoring removed bh option
[  289.359010][T17909] loop3: detected capacity change from 0 to 1024
[  289.365913][T17905] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  289.377904][T17909] EXT4-fs: Ignoring removed bh option
[  289.381657][   T45] Bluetooth: hci0: command 0x1003 tx timeout
[  289.383546][ T5992] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  289.395839][T17909] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  289.409437][T17905] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  289.419356][T17905] EXT4-fs (loop5): unmounting filesystem.
[  289.460693][T17909] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  289.481143][T17891] loop6: detected capacity change from 0 to 40427
[  289.489766][T17891] F2FS-fs (loop6): heap/no_heap options were deprecated
[  289.499072][T17891] F2FS-fs (loop6): fault_injection options not supported
[  289.509548][T17891] F2FS-fs (loop6): fault_type options not supported
[  289.528172][T16591] EXT4-fs (loop3): unmounting filesystem.
[  289.542081][T17891] F2FS-fs (loop6): invalid crc value
[  289.583452][T17891] F2FS-fs (loop6): Found nat_bits in checkpoint
[  289.589778][   T28] audit: type=1400 audit(289.573:1749): avc:  denied  { mounton } for  pid=17929 comm="syz.8.7585" path="/154/file1" dev="tmpfs" ino=823 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=fifo_file permissive=1
[  289.600130][T17935] bridge0: port 3(syz_tun) entered blocking state
[  289.651954][T17935] bridge0: port 3(syz_tun) entered disabled state
[  289.659114][T17935] device syz_tun entered promiscuous mode
[  289.662346][T17891] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  289.665520][T17935] bridge0: port 3(syz_tun) entered blocking state
[  289.678860][T17935] bridge0: port 3(syz_tun) entered forwarding state
[  289.686678][T17937] netlink: 280 bytes leftover after parsing attributes in process `syz.4.7587'.
[  289.754150][T17945] loop3: detected capacity change from 0 to 128
[  289.768152][T17945] FAT-fs (loop3): bogus number of reserved sectors
[  289.774910][T17945] FAT-fs (loop3): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  289.785036][T17945] FAT-fs (loop3): Can't find a valid FAT filesystem
[  289.791134][T15718] syz-executor: attempt to access beyond end of device
[  289.791134][T15718] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  290.533799][T18011] loop8: detected capacity change from 0 to 256
[  290.557029][T18011] exFAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  290.584710][T18011] exFAT-fs (loop8): Medium has reported failures. Some data may be lost.
[  290.593244][   T28] audit: type=1400 audit(290.573:1750): avc:  denied  { read } for  pid=18018 comm="syz.5.7624" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  290.614712][T18011] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  290.656556][   T28] audit: type=1400 audit(290.643:1751): avc:  denied  { write } for  pid=18018 comm="syz.5.7624" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  290.717306][   T28] audit: type=1400 audit(290.703:1752): avc:  denied  { mount } for  pid=18027 comm="syz.5.7627" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[  290.750912][T18034] binder: 18030:18034 ioctl c0306201 200000000040 returned -22
[  290.772425][   T28] audit: type=1400 audit(290.763:1753): avc:  denied  { mounton } for  pid=18032 comm="syz.4.7629" path="/syzcgroup/cpu/syz4/cpuset.cpus" dev="cgroup" ino=165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=file permissive=1
[  290.802577][T18036] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  290.814326][T18038] vxcan1: tun_chr_ioctl cmd 1074025677
[  290.819850][T18038] vxcan1: linktype set to 825
[  290.875942][T18042] loop3: detected capacity change from 0 to 1024
[  290.911467][T18042] EXT4-fs: Ignoring removed bh option
[  290.932075][T18042] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  290.986170][T18042] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  291.044628][T18069] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7645'.
[  291.085826][T18074] user requested TSC rate below hardware speed
[  291.107891][T16591] EXT4-fs (loop3): unmounting filesystem.
[  291.156386][T18083] netlink: 47 bytes leftover after parsing attributes in process `syz.3.7652'.
[  291.384517][T18087] loop6: detected capacity change from 0 to 40427
[  291.405173][T18087] F2FS-fs (loop6): fault_injection options not supported
[  291.421006][T18087] F2FS-fs (loop6): invalid crc value
[  291.448528][T18087] F2FS-fs (loop6): Found nat_bits in checkpoint
[  291.518658][T18112] loop5: detected capacity change from 0 to 256
[  291.536104][T18087] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  291.537486][T18112] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  291.577110][T18112] FAT-fs (loop5): Filesystem has been set read-only
[  291.605098][T18112] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  291.641906][T18112] FAT-fs (loop5): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  291.663124][T15718] syz-executor: attempt to access beyond end of device
[  291.663124][T15718] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  291.927166][T18162] loop6: detected capacity change from 0 to 512
[  291.943305][T18162] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  291.967188][T18173] loop4: detected capacity change from 0 to 256
[  291.997989][T18173] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  292.002472][T18162] EXT4-fs (loop6): 1 truncate cleaned up
[  292.017998][T18162] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  292.052553][T15718] EXT4-fs (loop6): unmounting filesystem.
[  292.350785][T18231] loop5: detected capacity change from 0 to 512
[  292.358573][T18231] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  292.397672][T18231] EXT4-fs (loop5): 1 truncate cleaned up
[  292.404672][T18231] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  292.452811][T18245] loop4: detected capacity change from 0 to 256
[  292.462755][T18245] exfat: Deprecated parameter 'namecase'
[  292.468508][T18245] exfat: Deprecated parameter 'utf8'
[  292.482278][T18245] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  292.536190][T18254] loop6: detected capacity change from 0 to 512
[  292.553443][T16180] EXT4-fs (loop5): unmounting filesystem.
[  292.572129][T18254] EXT4-fs: Ignoring removed mblk_io_submit option
[  292.586989][T18254] EXT4-fs: Ignoring removed mblk_io_submit option
[  292.627759][T18254] EXT4-fs (loop6): Test dummy encryption mode enabled
[  292.640611][T18268] loop3: detected capacity change from 0 to 512
[  292.647042][T18254] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  292.669341][T18268] EXT4-fs: Ignoring removed oldalloc option
[  292.685575][T18268] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  292.686523][T18254] EXT4-fs (loop6): 1 truncate cleaned up
[  292.711969][T18254] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  292.734489][T18268] EXT4-fs (loop3): 1 truncate cleaned up
[  292.734936][T15718] EXT4-fs (loop6): unmounting filesystem.
[  292.740279][T18268] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  292.799946][T16591] EXT4-fs (loop3): unmounting filesystem.
[  292.917673][T18308] netlink: 128 bytes leftover after parsing attributes in process `syz.6.7752'.
[  292.926775][T18308] netlink: 20 bytes leftover after parsing attributes in process `syz.6.7752'.
[  292.936137][T18308] netlink: 20 bytes leftover after parsing attributes in process `syz.6.7752'.
[  293.347011][T18361] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7781'.
[  293.630991][T18360] loop3: detected capacity change from 0 to 40427
[  293.653247][T18360] F2FS-fs (loop3): fault_injection options not supported
[  293.674134][T18360] F2FS-fs (loop3): invalid crc value
[  293.682524][T18381] loop8: detected capacity change from 0 to 512
[  293.701153][T18360] F2FS-fs (loop3): Found nat_bits in checkpoint
[  293.753664][T18381] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  293.764100][T18381] ext4 filesystem being mounted at /184/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  293.809896][T18387] pim6reg0: tun_chr_ioctl cmd 1074025677
[  293.817209][T18387] pim6reg0: linktype set to 270
[  293.822221][T18360] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  293.900032][T18381] EXT4-fs error (device loop8): ext4_map_blocks:635: inode #2: block 18: comm syz.8.7783: lblock 23 mapped to illegal pblock 18 (length 1)
[  293.923242][T18350] loop4: detected capacity change from 0 to 131072
[  293.932500][T18381] EXT4-fs (loop8): Remounting filesystem read-only
[  293.939667][T18350] F2FS-fs (loop4): invalid crc value
[  293.959731][T16036] EXT4-fs (loop8): unmounting filesystem.
[  293.968634][T16591] syz-executor: attempt to access beyond end of device
[  293.968634][T16591] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  293.985527][T18350] F2FS-fs (loop4): Found nat_bits in checkpoint
[  294.029621][T18398] loop8: detected capacity change from 0 to 2048
[  294.036358][T18350] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4
[  294.079523][T18398] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  294.172314][T16036] EXT4-fs (loop8): unmounting filesystem.
[  294.296549][T18410] input: syz1 as /devices/virtual/input/input83
[  294.526310][T18433] loop4: detected capacity change from 0 to 16
[  294.546010][T18433] erofs: (device loop4): mounted with root inode @ nid 36.
[  294.560925][T18433] erofs: (device loop4): z_erofs_extent_lookback: bogus lookback distance @ nid 36
[  294.571666][ T2131] usb 4-1: new high-speed USB device number 26 using dummy_hcd
[  294.587734][T18433] erofs: (device loop4): z_erofs_lz4_decompress_mem: failed to decompress -21 in[56, 4040] out[1851]
[  294.608293][T18435] netlink: 'syz.8.7803': attribute type 4 has an invalid length.
[  294.617777][T18433] erofs: (device loop4): z_erofs_read_folio: failed to read, err [-117]
[  294.626695][T18435] netlink: 3657 bytes leftover after parsing attributes in process `syz.8.7803'.
[  294.636855][T18436] erofs: (device loop4): z_erofs_extent_lookback: bogus lookback distance @ nid 36
[  294.663404][T18436] erofs: (device loop4): z_erofs_lz4_decompress_mem: failed to decompress -21 in[56, 4040] out[1851]
[  294.675458][T18436] erofs: (device loop4): z_erofs_read_folio: failed to read, err [-117]
[  294.702404][T18438] SELinux:  Context `¿ is not valid (left unmapped).
[  294.748624][   T28] kauditd_printk_skb: 17 callbacks suppressed
[  294.748641][   T28] audit: type=1326 audit(2000000001.160:1771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18444 comm="syz.4.7807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2cef8ebe9 code=0x7ffc0000
[  294.778676][ T2131] usb 4-1: Using ep0 maxpacket: 32
[  294.791468][  T297] hid-generic 0000:0000:0000.0064: item fetching failed at offset 0/1
[  294.792665][ T2131] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  294.813803][  T297] hid-generic: probe of 0000:0000:0000.0064 failed with error -22
[  294.821825][ T2131] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  294.838919][   T28] audit: type=1326 audit(2000000001.200:1772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18444 comm="syz.4.7807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fc2cef8ebe9 code=0x7ffc0000
[  294.871610][ T2131] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  294.901252][ T2131] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  294.929459][ T2131] usb 4-1: config 0 descriptor??
[  294.937475][   T28] audit: type=1326 audit(2000000001.200:1773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18444 comm="syz.4.7807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2cef8ebe9 code=0x7ffc0000
[  294.962343][T18455] TCP: tcp_parse_options: Illegal window scaling value 236 > 14 received
[  294.982417][ T2131] hub 4-1:0.0: USB hub found
[  295.041084][   T28] audit: type=1326 audit(2000000001.200:1774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18444 comm="syz.4.7807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7fc2cef8ebe9 code=0x7ffc0000
[  295.090285][   T28] audit: type=1326 audit(2000000001.200:1775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18444 comm="syz.4.7807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2cef8ebe9 code=0x7ffc0000
[  295.161723][   T28] audit: type=1326 audit(2000000001.200:1776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18444 comm="syz.4.7807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=312 compat=0 ip=0x7fc2cef8ebe9 code=0x7ffc0000
[  295.186684][ T2131] hub 4-1:0.0: 1 port detected
[  295.226907][   T28] audit: type=1326 audit(2000000001.200:1777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18444 comm="syz.4.7807" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2cef8ebe9 code=0x7ffc0000
[  295.300016][T18466] loop8: detected capacity change from 0 to 512
[  295.311611][   T28] audit: type=1400 audit(2000000001.280:1778): avc:  denied  { read } for  pid=18450 comm="syz.8.7809" name="usbmon0" dev="devtmpfs" ino=159 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  295.352103][T18466] EXT4-fs: Ignoring removed mblk_io_submit option
[  295.379281][T18466] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  295.388148][ T2131] hub 4-1:0.0: hub_hub_status failed (err = -71)
[  295.400684][   T28] audit: type=1400 audit(2000000001.280:1779): avc:  denied  { open } for  pid=18450 comm="syz.8.7809" path="/dev/usbmon0" dev="devtmpfs" ino=159 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  295.405866][ T2131] hub 4-1:0.0: config failed, can't get hub status (err -71)
[  295.432102][T18466] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec118, mo2=0002]
[  295.440156][T18466] System zones: 1-12
[  295.444325][   T28] audit: type=1400 audit(2000000001.290:1780): avc:  denied  { map } for  pid=18450 comm="syz.8.7809" path="/dev/usbmon0" dev="devtmpfs" ino=159 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  295.502783][T18466] EXT4-fs (loop8): 1 truncate cleaned up
[  295.508720][T18466] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  295.534290][ T2131] usbhid 4-1:0.0: can't add hid device: -71
[  295.540271][ T2131] usbhid: probe of 4-1:0.0 failed with error -71
[  295.577087][T18473] device erspan0 entered promiscuous mode
[  295.624528][ T2131] usb 4-1: USB disconnect, device number 26
[  295.651953][T16036] EXT4-fs (loop8): unmounting filesystem.
[  295.661865][T18478] pim6reg0: tun_chr_ioctl cmd 1074025677
[  295.667676][T18478] pim6reg0: linktype set to 270
[  295.744558][T18491] loop4: detected capacity change from 0 to 256
[  295.822755][T18494] loop8: detected capacity change from 0 to 2048
[  295.836422][T18498] loop4: detected capacity change from 0 to 512
[  295.845723][T18498] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  295.876022][T18498] EXT4-fs (loop4): 1 truncate cleaned up
[  295.888442][T18494] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  295.904689][T18498] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  295.926693][T18505] loop5: detected capacity change from 0 to 256
[  295.942641][T16036] EXT4-fs (loop8): unmounting filesystem.
[  296.001095][T18505] FAT-fs (loop5): Directory bread(block 64) failed
[  296.027249][T18505] FAT-fs (loop5): Directory bread(block 65) failed
[  296.030363][T18509] loop3: detected capacity change from 0 to 512
[  296.034382][T18505] FAT-fs (loop5): Directory bread(block 66) failed
[  296.047082][T18505] FAT-fs (loop5): Directory bread(block 67) failed
[  296.049717][T16741] EXT4-fs (loop4): unmounting filesystem.
[  296.053946][T18505] FAT-fs (loop5): Directory bread(block 68) failed
[  296.066387][T18505] FAT-fs (loop5): Directory bread(block 69) failed
[  296.079747][T18513] TCP: tcp_parse_options: Illegal window scaling value 236 > 14 received
[  296.088702][T18505] FAT-fs (loop5): Directory bread(block 70) failed
[  296.095429][T18505] FAT-fs (loop5): Directory bread(block 71) failed
[  296.108230][T18509] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  296.117546][T18505] FAT-fs (loop5): Directory bread(block 72) failed
[  296.122593][T18509] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[  296.127522][T18505] FAT-fs (loop5): Directory bread(block 73) failed
[  296.148998][T18509] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  296.172359][T18509] System zones: 0-2, 18-18, 34-35
[  296.192052][T18509] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  296.248491][T18509] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended
[  296.275777][T18509] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  296.292860][T18509] EXT4-fs (loop3): re-mounted. Quota mode: none.
[  296.304570][T18511] loop6: detected capacity change from 0 to 40427
[  296.310235][T18509] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.7832: bg 0: block 353: padding at end of block bitmap is not set
[  296.325536][T18511] F2FS-fs (loop6): Invalid Fs Meta Ino: node(0) meta(2) root(0)
[  296.333607][T18511] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  296.368334][T16591] EXT4-fs (loop3): unmounting filesystem.
[  296.380364][T18511] F2FS-fs (loop6): invalid crc value
[  296.414862][T18511] F2FS-fs (loop6): Found nat_bits in checkpoint
[  296.551135][T18511] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  296.564055][T18551] loop8: detected capacity change from 0 to 1024
[  296.571961][T18511] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e4
[  296.580684][T18551] EXT4-fs: Ignoring removed nobh option
[  296.586622][T18555] loop4: detected capacity change from 0 to 256
[  296.591623][T18551] EXT4-fs: Ignoring removed bh option
[  296.615731][T18551] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  296.636777][T18555] FAT-fs (loop4): Directory bread(block 64) failed
[  296.645966][T18555] FAT-fs (loop4): Directory bread(block 65) failed
[  296.662276][T18555] FAT-fs (loop4): Directory bread(block 66) failed
[  296.668885][T18555] FAT-fs (loop4): Directory bread(block 67) failed
[  296.677422][T18555] FAT-fs (loop4): Directory bread(block 68) failed
[  296.684868][T18555] FAT-fs (loop4): Directory bread(block 69) failed
[  296.691520][T18555] FAT-fs (loop4): Directory bread(block 70) failed
[  296.698987][T18551] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  296.709925][T18555] FAT-fs (loop4): Directory bread(block 71) failed
[  296.716730][T18555] FAT-fs (loop4): Directory bread(block 72) failed
[  296.732401][T18551] EXT4-fs (loop8): unmounting filesystem.
[  296.748428][T18555] FAT-fs (loop4): Directory bread(block 73) failed
[  296.866371][T18568] loop5: detected capacity change from 0 to 256
[  296.886087][T18568] exfat: Deprecated parameter 'utf8'
[  296.891482][T18568] exfat: Deprecated parameter 'namecase'
[  296.907575][T18568] exfat: Deprecated parameter 'utf8'
[  296.923803][T18568] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x7b823c56, utbl_chksum : 0xe619d30d)
[  297.117436][T18561] loop3: detected capacity change from 0 to 40427
[  297.135790][T18561] F2FS-fs (loop3): fault_injection options not supported
[  297.154013][T18561] F2FS-fs (loop3): invalid crc value
[  297.177165][T18561] F2FS-fs (loop3): Found nat_bits in checkpoint
[  297.224210][T18511] F2FS-fs (loop6): Start checkpoint disabled!
[  297.230536][T18511] syz.6.7833: attempt to access beyond end of device
[  297.230536][T18511] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  297.252301][T18561] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  297.318418][T16591] syz-executor: attempt to access beyond end of device
[  297.318418][T16591] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  297.411610][  T297] usb 6-1: new high-speed USB device number 23 using dummy_hcd
[  297.417699][T18601] loop6: detected capacity change from 0 to 256
[  297.452831][T18601] FAT-fs (loop6): Directory bread(block 64) failed
[  297.465164][T18601] FAT-fs (loop6): Directory bread(block 65) failed
[  297.479595][T18601] FAT-fs (loop6): Directory bread(block 66) failed
[  297.492851][T18601] FAT-fs (loop6): Directory bread(block 67) failed
[  297.501619][T18601] FAT-fs (loop6): Directory bread(block 68) failed
[  297.515516][T18601] FAT-fs (loop6): Directory bread(block 69) failed
[  297.517115][T18603] loop3: detected capacity change from 0 to 512
[  297.533025][T18601] FAT-fs (loop6): Directory bread(block 70) failed
[  297.540011][T18601] FAT-fs (loop6): Directory bread(block 71) failed
[  297.547362][T18601] FAT-fs (loop6): Directory bread(block 72) failed
[  297.554975][T18601] FAT-fs (loop6): Directory bread(block 73) failed
[  297.572849][T18603] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  297.586545][T18603] ext4 filesystem being mounted at /155/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  297.622706][  T297] usb 6-1: Using ep0 maxpacket: 16
[  297.630174][  T297] usb 6-1: config 0 interface 0 has no altsetting 0
[  297.638989][T18603] EXT4-fs error (device loop3): ext4_map_blocks:635: inode #2: block 18: comm syz.3.7868: lblock 23 mapped to illegal pblock 18 (length 1)
[  297.643797][  T297] usb 6-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  297.653825][T18603] EXT4-fs (loop3): Remounting filesystem read-only
[  297.666763][  T297] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  297.686358][  T297] usb 6-1: config 0 descriptor??
[  297.710430][T16591] EXT4-fs (loop3): unmounting filesystem.
[  297.779240][T18613] loop3: detected capacity change from 0 to 2048
[  297.856296][   T43] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 281 free clusters
[  297.872499][   T43] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  297.889929][   T43] EXT4-fs (loop3): This should not happen!! Data will be lost
[  297.889929][   T43] 
[  297.900881][   T43] EXT4-fs (loop3): Total free blocks count 0
[  297.907671][   T43] EXT4-fs (loop3): Free/Dirty block details
[  297.913763][   T43] EXT4-fs (loop3): free_blocks=4096
[  297.919216][   T43] EXT4-fs (loop3): dirty_blocks=512
[  297.924516][   T43] EXT4-fs (loop3): Block reservation details
[  297.930548][   T43] EXT4-fs (loop3): i_reserved_data_blocks=32
[  297.937274][   T43] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 18 with max blocks 480 with error 28
[  297.950728][   T43] EXT4-fs (loop3): This should not happen!! Data will be lost
[  297.950728][   T43] 
[  297.982485][T18627] loop8: detected capacity change from 0 to 1024
[  298.040127][T18627] ext4 filesystem being mounted at /206/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  298.103137][  T297] hid (null): report_id 4208260810 is invalid
[  298.109903][  T297] hid (null): unknown global tag 0xe
[  298.127392][  T297] hid (null): unknown global tag 0xc
[  298.167812][  T297] hid (null): report_id 0 is invalid
[  298.187327][T18644] loop8: detected capacity change from 0 to 512
[  298.227021][T18644] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  298.268603][T18644] EXT4-fs (loop8): 1 truncate cleaned up
[  298.333743][  T602] usb 6-1: USB disconnect, device number 23
[  298.382805][  T297] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[  298.445248][T18654] loop6: detected capacity change from 0 to 512
[  298.464965][T18654] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  298.479086][T18654] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[  298.489264][T18654] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  298.498787][T18654] System zones: 0-2, 18-18, 34-35
[  298.535257][T18654] EXT4-fs (loop6): warning: mounting unchecked fs, running e2fsck is recommended
[  298.551375][T18654] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  298.560300][T18654] EXT4-fs (loop6): re-mounted. Quota mode: none.
[  298.573920][T18654] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.7885: bg 0: block 353: padding at end of block bitmap is not set
[  298.601635][  T297] usb 4-1: Using ep0 maxpacket: 16
[  298.608206][  T297] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  298.629482][  T297] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  298.640030][  T297] usb 4-1: config 0 interface 0 has no altsetting 0
[  298.651394][  T297] usb 4-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  298.660980][  T297] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  298.670703][  T297] usb 4-1: config 0 descriptor??
[  298.699200][T18670] netlink: 'syz.6.7891': attribute type 12 has an invalid length.
[  299.083181][  T297] hid (null): report_id 86083295 is invalid
[  299.099267][  T297] hid (null): bogus close delimiter
[  299.128428][T18697] loop5: detected capacity change from 0 to 8192
[  299.293624][  T297] usb 4-1: USB disconnect, device number 27
[  299.468626][T18727] syz.4.7918[18727] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  299.468702][T18727] syz.4.7918[18727] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  299.493373][T18727] incfs: Options parsing error. -22
[  299.510854][T18727] incfs: mount failed -22
[  299.595436][T18693] loop8: detected capacity change from 0 to 131072
[  299.598937][T18737] vxcan1: tun_chr_ioctl cmd 1074025677
[  299.607950][T18737] vxcan1: linktype set to 825
[  299.614750][T18693] F2FS-fs (loop8): invalid crc value
[  299.623994][T18693] F2FS-fs (loop8): Found nat_bits in checkpoint
[  299.641196][T18693] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e4
[  299.695148][T18746] device erspan0 entered promiscuous mode
[  299.722172][T18748] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7926'.
[  299.820919][   T28] kauditd_printk_skb: 9 callbacks suppressed
[  299.820937][   T28] audit: type=1400 audit(2000000006.230:1790): avc:  denied  { setattr } for  pid=18753 comm="syz.5.7929" name="file0" dev="tmpfs" ino=1214 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  299.941621][  T297] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  300.155105][  T297] usb 5-1: Using ep0 maxpacket: 32
[  300.162629][  T297] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  300.207379][  T297] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  300.217883][  T297] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  300.231263][   T28] audit: type=1400 audit(2000000006.640:1791): avc:  denied  { getopt } for  pid=18782 comm="syz.5.7941" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  300.267126][  T297] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  300.294107][  T297] usb 5-1: config 0 descriptor??
[  300.310547][  T297] hub 5-1:0.0: USB hub found
[  300.461652][   T28] audit: type=1400 audit(2000000006.850:1792): avc:  denied  { bind } for  pid=18788 comm="syz.5.7945" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  300.509845][  T297] hub 5-1:0.0: 1 port detected
[  300.566510][   T28] audit: type=1326 audit(2000000006.970:1793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18795 comm="syz.8.7943" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5b78ebe9 code=0x7ffc0000
[  300.595374][T18800] loop8: detected capacity change from 0 to 512
[  300.601737][   T28] audit: type=1326 audit(2000000006.970:1794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18795 comm="syz.8.7943" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5b78ebe9 code=0x7ffc0000
[  300.634741][   T28] audit: type=1326 audit(2000000006.970:1795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18795 comm="syz.8.7943" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5b78ebe9 code=0x7ffc0000
[  300.658673][T18800] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  300.670991][   T28] audit: type=1326 audit(2000000006.970:1796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18795 comm="syz.8.7943" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f1c5b78ebe9 code=0x7ffc0000
[  300.696012][   T28] audit: type=1326 audit(2000000006.970:1797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18795 comm="syz.8.7943" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5b78ebe9 code=0x7ffc0000
[  300.720675][  T297] hub 5-1:0.0: hub_hub_status failed (err = -71)
[  300.721595][T18800] EXT4-fs (loop8): 1 truncate cleaned up
[  300.730465][  T297] hub 5-1:0.0: config failed, can't get hub status (err -71)
[  300.743198][   T28] audit: type=1326 audit(2000000006.970:1798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18795 comm="syz.8.7943" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5b78ebe9 code=0x7ffc0000
[  300.767158][  T297] usbhid 5-1:0.0: can't add hid device: -71
[  300.773549][   T28] audit: type=1326 audit(2000000006.970:1799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18795 comm="syz.8.7943" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1c5b78ebe9 code=0x7ffc0000
[  300.782270][  T297] usbhid: probe of 5-1:0.0 failed with error -71
[  300.847147][  T297] usb 5-1: USB disconnect, device number 22
[  300.977724][T18821] loop8: detected capacity change from 0 to 1024
[  301.009589][T18821] EXT4-fs: Ignoring removed bh option
[  301.064434][T18821] EXT4-fs (loop8): Online defrag not supported with bigalloc
[  301.176990][T18834] loop3: detected capacity change from 0 to 4096
[  301.196284][T18842] loop8: detected capacity change from 0 to 256
[  301.299910][T18848] loop6: detected capacity change from 0 to 4096
[  301.326958][T18855] loop8: detected capacity change from 0 to 256
[  301.431785][T18848] EXT4-fs (loop6): Online resizing not supported with bigalloc
[  301.572458][T18873] netlink: 68 bytes leftover after parsing attributes in process `syz.8.7981'.
[  301.620042][T18873] netlink: 48 bytes leftover after parsing attributes in process `syz.8.7981'.
[  301.651074][T18873] netlink: 68 bytes leftover after parsing attributes in process `syz.8.7981'.
[  301.660186][T18873] netlink: 48 bytes leftover after parsing attributes in process `syz.8.7981'.
[  301.823629][T18898] loop4: detected capacity change from 0 to 512
[  301.872173][T18898] ext4 filesystem being mounted at /172/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  301.874500][T18909] netlink: 24 bytes leftover after parsing attributes in process `syz.6.7994'.
[  301.953962][T18918] loop8: detected capacity change from 0 to 256
[  302.000817][T18871] loop3: detected capacity change from 0 to 40427
[  302.021666][T18871] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  302.032947][T18871] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  302.093305][T18936] loop4: detected capacity change from 0 to 256
[  302.108714][T18871] F2FS-fs (loop3): Found nat_bits in checkpoint
[  302.109176][T18940] loop5: detected capacity change from 0 to 256
[  302.133892][T18940] exfat: Deprecated parameter 'namecase'
[  302.143981][T18940] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[  302.171925][T18940] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x7f1fc68d, utbl_chksum : 0xe619d30d)
[  302.194677][T18871] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  302.238650][T18871] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  302.251097][T18871] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  302.263557][T18949] tipc: Started in network mode
[  302.268471][T18949] tipc: Node identity ac14140f, cluster identity 4711
[  302.318322][T18949] tipc: New replicast peer: 255.255.255.255
[  302.336722][T18949] tipc: Enabled bearer <udp:syz2>, priority 10
[  302.461119][T18968] loop5: detected capacity change from 0 to 1024
[  302.586159][T18982] loop4: detected capacity change from 0 to 256
[  302.631586][T18986] serio: Serial port ttyS3
[  302.732145][T19000] loop8: detected capacity change from 0 to 512
[  302.745925][T19002] loop5: detected capacity change from 0 to 128
[  302.823256][T19000] ext4 filesystem being mounted at /241/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  302.878328][T19011] loop5: detected capacity change from 0 to 1024
[  302.905832][T19011] ext4 filesystem being mounted at /260/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  302.937142][T19011] EXT4-fs error (device loop5): ext4_map_blocks:745: inode #15: comm syz.5.8037: lblock 0 mapped to illegal pblock 0 (length 1)
[  302.963424][T19016] loop8: detected capacity change from 0 to 128
[  302.989182][T19018] loop6: detected capacity change from 0 to 256
[  303.279096][T19040] loop6: detected capacity change from 0 to 256
[  303.296423][T19040] FAT-fs (loop6): Unrecognized mount option "ÿÿÿÿÿÿÿÿ" or missing value
[  303.452296][   T60] tipc: Node number set to 2886997007
[  303.465020][T19023] loop5: detected capacity change from 0 to 40427
[  303.482439][T19023] F2FS-fs (loop5): invalid crc value
[  303.529850][T19023] F2FS-fs (loop5): Found nat_bits in checkpoint
[  303.665267][T19073] loop4: detected capacity change from 0 to 128
[  303.678803][T19023] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e4
[  304.587018][T19163] loop5: detected capacity change from 0 to 40427
[  304.603995][T19163] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  304.613275][T19163] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  304.629402][T19163] F2FS-fs (loop5): invalid crc value
[  304.640287][T19163] F2FS-fs (loop5): Found nat_bits in checkpoint
[  304.685642][T19163] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  304.693006][T19163] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  304.791617][  T297] usb 4-1: new high-speed USB device number 28 using dummy_hcd
[  304.981584][  T297] usb 4-1: Using ep0 maxpacket: 16
[  304.987802][  T297] usb 4-1: config 0 has an invalid interface number: 105 but max is 0
[  304.996428][  T297] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  305.006531][  T297] usb 4-1: config 0 has no interface number 0
[  305.013904][  T297] usb 4-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28
[  305.023113][  T297] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  305.031082][  T297] usb 4-1: Product: syz
[  305.035259][  T297] usb 4-1: Manufacturer: syz
[  305.039840][  T297] usb 4-1: SerialNumber: syz
[  305.044851][  T297] usb 4-1: config 0 descriptor??
[  305.252501][  T297] usb 4-1: Found UVC 0.00 device syz (046d:08d3)
[  305.265205][  T297] usb 4-1: No valid video chain found.
[  305.280249][T19194] loop6: detected capacity change from 0 to 512
[  305.295444][T19194] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  305.319658][T19194] EXT4-fs (loop6): 1 truncate cleaned up
[  305.365373][T19205] tap0: tun_chr_ioctl cmd 1074025678
[  305.374127][T19205] tap0: group set to 0
[  305.412725][T19212] loop6: detected capacity change from 0 to 128
[  305.436325][T19212] ext4 filesystem being mounted at /298/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  305.470597][  T602] usb 4-1: USB disconnect, device number 28
[  305.577417][T19232] xt_hashlimit: max too large, truncated to 1048576
[  305.636768][T19242] loop6: detected capacity change from 0 to 1024
[  305.751171][T19263] loop4: detected capacity change from 0 to 128
[  305.762402][T19263] EXT4-fs: Ignoring removed nomblk_io_submit option
[  305.769350][T19263] EXT4-fs: Ignoring removed nomblk_io_submit option
[  305.777233][T19263] EXT4-fs (loop4): Test dummy encryption mode enabled
[  305.800278][T19263] ext4 filesystem being mounted at /203/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  305.818273][T19270] loop5: detected capacity change from 0 to 256
[  305.827707][T19270] exfat: Deprecated parameter 'namecase'
[  305.838800][T19270] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  305.892366][T19277] loop5: detected capacity change from 0 to 16
[  305.899934][T19277] erofs: (device loop5): mounted with root inode @ nid 36.
[  305.966169][T19287] loop4: detected capacity change from 0 to 1024
[  305.973256][T19287] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  306.010528][T19294] bridge0: port 3(syz_tun) entered blocking state
[  306.011572][T19287] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  306.017067][T19294] bridge0: port 3(syz_tun) entered disabled state
[  306.039300][T19294] device syz_tun entered promiscuous mode
[  306.040136][T19287] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  306.045310][T19294] bridge0: port 3(syz_tun) entered blocking state
[  306.058135][T19287] EXT4-fs (loop4): This should not happen!! Data will be lost
[  306.058135][T19287] 
[  306.064008][T19294] bridge0: port 3(syz_tun) entered forwarding state
[  306.080712][T19287] EXT4-fs (loop4): Total free blocks count 0
[  306.086884][T19287] EXT4-fs (loop4): Free/Dirty block details
[  306.093180][T19287] EXT4-fs (loop4): free_blocks=20480
[  306.100747][T19287] EXT4-fs (loop4): dirty_blocks=32
[  306.106049][T19287] EXT4-fs (loop4): Block reservation details
[  306.112273][T19287] EXT4-fs (loop4): i_reserved_data_blocks=2
[  306.141637][T18640] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 131075 with max blocks 1 with error 28
[  306.154851][T18640] EXT4-fs (loop4): This should not happen!! Data will be lost
[  306.154851][T18640] 
[  306.257394][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.265190][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.273843][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.281347][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.288829][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.298115][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.305813][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.313873][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.321515][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.328912][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.336348][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.343833][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.351202][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.358841][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.366298][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.373722][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.381084][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.388596][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.396053][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.403520][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.410905][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.418318][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.425725][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.433136][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.440531][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.447974][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.455446][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.462837][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.470316][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.477717][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.485133][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.492544][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.499929][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.507451][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.514844][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.522228][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.529601][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.537004][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.544413][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.551886][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.559293][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.566734][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.574148][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.581557][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.588944][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.596392][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.603827][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.611229][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.618731][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.626109][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.633742][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.641123][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.648613][ T2131] hid-generic 0008:0006:0007.0067: unknown main item tag 0x0
[  306.656658][ T2131] hid-generic 0008:0006:0007.0067: hidraw0: <UNKNOWN> HID v0.0b Device [syz1] on syz1
[  306.685950][T19306] fido_id[19306]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  306.787987][T19311] loop5: detected capacity change from 0 to 256
[  306.797374][T19311] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  306.808299][T19311] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[  306.818432][T19311] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  306.833658][T19311] exFAT-fs (loop5): hint_cluster is invalid (17)
[  306.840602][   T28] kauditd_printk_skb: 36 callbacks suppressed
[  306.840614][   T28] audit: type=1400 audit(2000000005.770:1836): avc:  denied  { remove_name } for  pid=19310 comm="syz.5.8165" name="file1" dev="loop5" ino=1049498 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  306.870052][   T28] audit: type=1400 audit(2000000005.770:1837): avc:  denied  { rename } for  pid=19310 comm="syz.5.8165" name="file1" dev="loop5" ino=1049498 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  306.928533][   T28] audit: type=1400 audit(2000000005.860:1838): avc:  denied  { setattr } for  pid=19314 comm="syz.5.8167" name="vsock" dev="devtmpfs" ino=276 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  310.882170][   T28] audit: type=1400 audit(2000000009.820:1839): avc:  denied  { mount } for  pid=19335 comm="syz.8.8175" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  310.959540][   T28] audit: type=1400 audit(2000000009.890:1840): avc:  denied  { mount } for  pid=19341 comm="syz.3.8179" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  310.961233][T19343] loop6: detected capacity change from 0 to 512
[  311.078446][T19343] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  311.100189][T19343] EXT4-fs (loop6): orphan cleanup on readonly fs
[  311.108372][T19343] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.8177: bg 0: block 248: padding at end of block bitmap is not set
[  311.108783][   T28] audit: type=1400 audit(2000000010.050:1841): avc:  denied  { bind } for  pid=19360 comm="syz.3.8186" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  311.143334][T19343] Quota error (device loop6): write_blk: dquota write failed
[  311.150859][T19343] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[  311.211641][T19343] EXT4-fs error (device loop6): ext4_acquire_dquot:6801: comm syz.6.8177: Failed to acquire dquot type 1
[  311.249165][T19343] EXT4-fs (loop6): 1 truncate cleaned up
[  311.277464][T19343] EXT4-fs mount: 34 callbacks suppressed
[  311.277485][T19343] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  311.278224][T19373] loop3: detected capacity change from 0 to 512
[  311.349623][T19377] loop5: detected capacity change from 0 to 1024
[  311.363772][T15718] EXT4-fs (loop6): unmounting filesystem.
[  311.384331][T19377] EXT4-fs: Ignoring removed bh option
[  311.428189][T19382] loop6: detected capacity change from 0 to 256
[  311.490073][T19382] FAT-fs (loop6): Directory bread(block 64) failed
[  311.509290][T19377] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  311.566382][   T28] audit: type=1400 audit(2000000010.500:1842): avc:  denied  { setattr } for  pid=19376 comm="syz.5.8194" name="file1" dev="loop5" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  311.590383][T16180] EXT4-fs (loop5): unmounting filesystem.
[  311.618295][T19382] FAT-fs (loop6): Directory bread(block 65) failed
[  311.662280][T19382] FAT-fs (loop6): Directory bread(block 66) failed
[  311.668947][T19382] FAT-fs (loop6): Directory bread(block 67) failed
[  311.679876][T19350] loop4: detected capacity change from 0 to 40427
[  311.703819][T19382] FAT-fs (loop6): Directory bread(block 68) failed
[  311.710790][T19350] F2FS-fs (loop4): Invalid SB checksum offset: 0
[  311.723928][T19382] FAT-fs (loop6): Directory bread(block 69) failed
[  311.730606][T19382] FAT-fs (loop6): Directory bread(block 70) failed
[  311.739615][T19350] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock
[  311.759870][T19382] FAT-fs (loop6): Directory bread(block 71) failed
[  311.780701][T19382] FAT-fs (loop6): Directory bread(block 72) failed
[  311.792425][T19350] F2FS-fs (loop4): invalid crc value
[  311.800211][T19382] FAT-fs (loop6): Directory bread(block 73) failed
[  311.842504][T19350] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  311.930147][T19350] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0
[  311.941225][T19350] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  311.984334][T19428] loop5: detected capacity change from 0 to 2048
[  312.047408][T16741] syz-executor: attempt to access beyond end of device
[  312.047408][T16741] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  312.092179][T19428] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  312.124723][T19428] EXT4-fs error (device loop5): ext4_find_extent:936: inode #2: comm syz.5.8215: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  312.254588][T19428] EXT4-fs (loop5): Remounting filesystem read-only
[  312.281753][T19454] EXT4-fs error (device loop5): ext4_ext_precache:627: inode #2: comm syz.5.8215: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5)
[  312.351830][T19454] EXT4-fs (loop5): Remounting filesystem read-only
[  312.385327][   T28] audit: type=1400 audit(2000000011.320:1843): avc:  denied  { bind } for  pid=19461 comm="syz.3.8227" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  312.405349][T16180] EXT4-fs (loop5): unmounting filesystem.
[  312.418689][   T28] audit: type=1400 audit(2000000011.340:1844): avc:  denied  { listen } for  pid=19461 comm="syz.3.8227" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  312.440436][   T28] audit: type=1400 audit(2000000011.340:1845): avc:  denied  { connect } for  pid=19461 comm="syz.3.8227" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  312.453094][T19468] loop4: detected capacity change from 0 to 512
[  312.504311][T19468] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  312.748830][T19494] netlink: 27 bytes leftover after parsing attributes in process `syz.4.8244'.
[  312.925826][T19517] incfs: Options parsing error. -22
[  312.938121][T19517] incfs: mount failed -22
[  312.984309][T19525] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd
[  312.995126][  T297] kernel write not supported for file /488/clear_refs (pid: 297 comm: kworker/1:2)
[  313.280937][T19562] syz.6.8273[19562] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  313.281015][T19562] syz.6.8273[19562] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  313.382988][   T28] audit: type=1400 audit(2000000012.320:1846): avc:  denied  { setopt } for  pid=19573 comm="syz.6.8279" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  313.637027][   T28] audit: type=1400 audit(2000000012.570:1847): avc:  denied  { map } for  pid=19581 comm="syz.8.8283" path="/dev/ashmem" dev="devtmpfs" ino=269 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  313.717253][T19574] loop3: detected capacity change from 0 to 40427
[  313.765387][T19574] F2FS-fs (loop3): Found nat_bits in checkpoint
[  313.828004][T19574] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  313.881624][T19574] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  314.013509][T19577] loop6: detected capacity change from 0 to 40427
[  314.044942][T19577] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  314.055095][T16591] syz-executor: attempt to access beyond end of device
[  314.055095][T16591] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  314.075040][T19577] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  314.112186][T19577] F2FS-fs (loop6): invalid crc value
[  314.148308][T19577] F2FS-fs (loop6): Found nat_bits in checkpoint
[  314.241602][T19577] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  314.249438][T19577] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  314.283962][   T28] audit: type=1400 audit(2000000013.220:1848): avc:  denied  { read write } for  pid=16741 comm="syz-executor" name="loop4" dev="devtmpfs" ino=122 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  314.364736][   T28] audit: type=1400 audit(2000000013.220:1849): avc:  denied  { open } for  pid=16741 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=122 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  314.453531][T19641] loop4: detected capacity change from 0 to 128
[  314.461119][   T28] audit: type=1400 audit(2000000013.220:1850): avc:  denied  { ioctl } for  pid=16741 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=122 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  314.496569][T19641] EXT4-fs (loop4): Test dummy encryption mode enabled
[  314.505052][T19641] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  314.531658][   T28] audit: type=1400 audit(2000000013.260:1851): avc:  denied  { mount } for  pid=19576 comm="syz.6.8281" name="/" dev="loop6" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  314.555789][T19641] ext4 filesystem being mounted at /234/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  314.584864][   T28] audit: type=1400 audit(2000000013.260:1852): avc:  denied  { create } for  pid=19627 comm="syz.4.8300" anonclass=[userfaultfd] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  314.655906][T16741] EXT4-fs (loop4): unmounting filesystem.
[  314.865194][T19668] loop6: detected capacity change from 0 to 128
[  314.980619][T19678] loop5: detected capacity change from 0 to 256
[  315.005396][T19678] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x204dac4c, utbl_chksum : 0xe619d30d)
[  315.213175][T19690] netlink: 20 bytes leftover after parsing attributes in process `syz.6.8329'.
[  315.229294][T19688] SELinux: failed to load policy
[  315.487163][T19647] loop3: detected capacity change from 0 to 131072
[  315.501777][T19647] F2FS-fs (loop3): Segment count (31) mismatch with total segments from devices (0)
[  315.533219][T19647] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  315.562244][T19647] F2FS-fs (loop3): invalid crc value
[  315.605326][T19717] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  315.617658][T19647] F2FS-fs (loop3): Found nat_bits in checkpoint
[  315.647343][T19719] syzkaller1: tun_chr_ioctl cmd 35108
[  315.691897][T19647] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  315.698972][T19647] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  315.718372][T19658] loop4: detected capacity change from 0 to 131072
[  315.782579][T19658] F2FS-fs (loop4): Found nat_bits in checkpoint
[  315.815491][T19727] sch_fq: defrate 0 ignored.
[  315.872344][T19658] F2FS-fs (loop4): Mounted with checkpoint version = 753bd00b
[  316.018924][T19737] incfs: Options parsing error. -22
[  316.024547][T19737] incfs: mount failed -22
[  316.563767][T19790] loop3: detected capacity change from 0 to 512
[  316.612627][T19790] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  316.636318][T19796] loop4: detected capacity change from 0 to 512
[  316.646065][T19796] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  316.648131][T19790] EXT4-fs (loop3): 1 orphan inode deleted
[  316.661961][T19790] EXT4-fs (loop3): 1 truncate cleaned up
[  316.667679][T19790] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  316.728268][T19790] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  316.747823][T19790] EXT4-fs (loop3): Remounting filesystem read-only
[  316.821399][T16591] EXT4-fs (loop3): unmounting filesystem.
[  316.884698][T19838] loop4: detected capacity change from 0 to 128
[  316.900719][T19840] loop6: detected capacity change from 0 to 16
[  316.908155][T19840] erofs: (device loop6): mounted with root inode @ nid 36.
[  316.911495][T19838] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  316.921640][T19836] support for cryptoloop has been removed.  Use dm-crypt instead.
[  316.939856][T19838] ext4 filesystem being mounted at /246/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  316.963121][T19840] erofs: (device loop6): erofs_readdir: invalid de[0].nameoff 0 @ nid 36
[  316.974039][T19840] erofs: (device loop6): erofs_find_target_block: corrupted dir block 8200 @ nid 36
[  317.009428][T19838] fscrypt (loop4, inode 12): Can't use IV_INO_LBLK_32 policy on filesystem 'loop4' because it doesn't have stable inode numbers
[  317.048763][T16741] EXT4-fs (loop4): unmounting filesystem.
[  317.081317][T19859] loop3: detected capacity change from 0 to 128
[  317.225329][T19873] input: syz0 as /devices/virtual/input/input84
[  317.358765][T19884] user requested TSC rate below hardware speed
[  317.397651][   T28] kauditd_printk_skb: 81 callbacks suppressed
[  317.397667][   T28] audit: type=1400 audit(2000000016.330:1934): avc:  denied  { append } for  pid=19886 comm="syz.4.8413" name="kvm" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  317.526708][   T28] audit: type=1400 audit(2000000016.460:1935): avc:  denied  { setopt } for  pid=19899 comm="syz.4.8418" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  317.557016][   T28] audit: type=1400 audit(2000000016.460:1936): avc:  denied  { bind } for  pid=19899 comm="syz.4.8418" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  317.863857][T19937] netlink: 44 bytes leftover after parsing attributes in process `syz.6.8434'.
[  317.998108][T19956] loop8: detected capacity change from 0 to 512
[  318.054138][   T28] audit: type=1400 audit(2000000016.990:1937): avc:  denied  { read write } for  pid=19961 comm="syz.4.8446" name="vhost-vsock" dev="devtmpfs" ino=268 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  318.082805][T19956] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  318.110603][T19956] ext4 filesystem being mounted at /314/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  318.121701][   T28] audit: type=1400 audit(2000000017.010:1938): avc:  denied  { open } for  pid=19961 comm="syz.4.8446" path="/dev/vhost-vsock" dev="devtmpfs" ino=268 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  318.147598][T19950] loop5: detected capacity change from 0 to 40427
[  318.158659][T16036] EXT4-fs (loop8): unmounting filesystem.
[  318.158767][T19950] F2FS-fs (loop5): fault_injection options not supported
[  318.166400][T19967] loop6: detected capacity change from 0 to 256
[  318.172189][   T28] audit: type=1400 audit(2000000017.070:1939): avc:  denied  { setattr } for  pid=19955 comm="syz.8.8443" path="/314/file0/cgroup.controllers" dev="loop8" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  318.204181][T19950] F2FS-fs (loop5): invalid crc value
[  318.213840][T19950] F2FS-fs (loop5): Found nat_bits in checkpoint
[  318.282070][T19967] exFAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  318.297708][T19967] exFAT-fs (loop6): Medium has reported failures. Some data may be lost.
[  318.325995][T19967] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  318.358793][T19950] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  318.360636][T19967] exFAT-fs (loop6): hint_cluster is invalid (17)
[  318.373269][   T28] audit: type=1400 audit(2000000017.290:1940): avc:  denied  { write } for  pid=19966 comm="syz.6.8447" name="file1" dev="loop6" ino=1049504 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  318.442402][   T28] audit: type=1400 audit(2000000017.290:1941): avc:  denied  { open } for  pid=19966 comm="syz.6.8447" name="file1" dev="loop6" ino=1049504 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  318.496320][   T28] audit: type=1400 audit(2000000017.360:1942): avc:  denied  { write } for  pid=19966 comm="syz.6.8447" name="/" dev="loop6" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  318.518501][T16180] syz-executor: attempt to access beyond end of device
[  318.518501][T16180] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  318.525429][   T28] audit: type=1400 audit(2000000017.360:1943): avc:  denied  { remove_name } for  pid=19966 comm="syz.6.8447" name="file1" dev="loop6" ino=1049504 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  318.694076][T20001] 9pnet_fd: p9_fd_create_unix (20001): problem connecting socket: ./file0: -111
[  318.904583][T20031] netlink: 4 bytes leftover after parsing attributes in process `syz.6.8473'.
[  319.027612][T20048] netlink: 71 bytes leftover after parsing attributes in process `syz.5.8480'.
[  319.088221][T20055] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  319.300690][T20074] loop5: detected capacity change from 0 to 256
[  319.385440][T20074] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  319.452074][T20074] syz.5.8492: attempt to access beyond end of device
[  319.452074][T20074] loop5: rw=34817, sector=184, nr_sectors = 120 limit=256
[  319.618973][T20062] loop4: detected capacity change from 0 to 131072
[  319.630423][T20062] F2FS-fs (loop4): Wrong CP boundary, start(512) end(198144) blocks(1024)
[  319.639051][T20062] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock
[  319.656252][T20062] F2FS-fs (loop4): invalid crc value
[  319.664317][T20085] loop5: detected capacity change from 0 to 256
[  319.689726][T20085] exFAT-fs (loop5): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6438d2e, utbl_chksum : 0xe619d30d)
[  319.708091][T20062] F2FS-fs (loop4): Found nat_bits in checkpoint
[  319.755906][T20093] loop5: detected capacity change from 0 to 512
[  319.762641][T20062] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0
[  319.765919][T20093] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  319.769744][T20062] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4
[  319.822529][T20093] EXT4-fs (loop5): 1 truncate cleaned up
[  319.828225][T20093] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  319.953392][T16180] EXT4-fs (loop5): unmounting filesystem.
[  319.993408][T20112] binder: 20111:20112 ioctl 4018620d 0 returned -22
[  320.033667][T20117] overlayfs: failed to resolve './file1': -2
[  320.045376][T20119] incfs: Options parsing error. -22
[  320.050650][T20119] incfs: mount failed -22
[  320.135210][T20131] loop5: detected capacity change from 0 to 256
[  320.153680][T20131] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x204dac4c, utbl_chksum : 0xe619d30d)
[  320.377651][T20161] device veth0_vlan left promiscuous mode
[  320.490197][T20174] input: syz1 as /devices/virtual/input/input85
[  320.564132][T20186] loop6: detected capacity change from 0 to 512
[  320.593716][T20186] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  320.803863][T20227] raw_sendmsg: syz.3.8558 forgot to set AF_INET. Fix it!
[  320.922632][T20248] 9pnet: Limiting 'msize' to 1048576 as this is the maximum supported by transport fd
[  320.937619][   T37] kernel write not supported for file /714/clear_refs (pid: 37 comm: kworker/1:1)
[  321.550374][T20280] loop5: detected capacity change from 0 to 40427
[  321.573778][T20280] F2FS-fs (loop5): Insane cp_payload (553648128 >= 504)
[  321.573804][T20280] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  321.573867][T20280] F2FS-fs (loop5): fault_injection options not supported
[  321.573886][T20280] F2FS-fs (loop5): fault_type options not supported
[  321.580633][T20280] F2FS-fs (loop5): invalid crc value
[  321.583935][T20300] netlink: 8 bytes leftover after parsing attributes in process `syz.6.8595'.
[  321.617576][T20280] F2FS-fs (loop5): Found nat_bits in checkpoint
[  321.620089][T20308] loop6: detected capacity change from 0 to 512
[  321.679872][T20308] EXT4-fs error (device loop6): ext4_free_branches:1030: inode #11: comm syz.6.8596: invalid indirect mapped block 4294967295 (level 1)
[  321.691861][T20280] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  321.702017][T20308] EXT4-fs error (device loop6): ext4_free_branches:1030: inode #11: comm syz.6.8596: invalid indirect mapped block 4294967295 (level 1)
[  321.709350][T20280] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  321.722992][T20308] EXT4-fs (loop6): 2 truncates cleaned up
[  321.743213][T20308] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  321.809495][T20280] syz.5.8585: attempt to access beyond end of device
[  321.809495][T20280] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  321.848120][T15718] EXT4-fs (loop6): unmounting filesystem.
[  321.983935][T20337] loop4: detected capacity change from 0 to 2048
[  322.023378][T20337] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  322.055881][T20337] ext4 filesystem being mounted at /306/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  322.158339][T20351] loop5: detected capacity change from 0 to 512
[  322.213145][T20351] EXT4-fs error (device loop5): ext4_get_branch:178: inode #11: block 4294967295: comm syz.5.8615: invalid block
[  322.242741][T20351] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #11: comm syz.5.8615: invalid indirect mapped block 4294967295 (level 1)
[  322.316841][T20351] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #11: comm syz.5.8615: invalid indirect mapped block 4294967295 (level 1)
[  322.380039][T20351] EXT4-fs (loop5): 2 truncates cleaned up
[  322.391629][T20351] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  322.415491][T20353] loop8: detected capacity change from 0 to 40427
[  322.431715][T20353] F2FS-fs (loop8): Insane cp_payload (553648128 >= 504)
[  322.453729][T20353] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[  322.474551][T16180] EXT4-fs (loop5): unmounting filesystem.
[  322.488626][T20353] F2FS-fs (loop8): fault_injection options not supported
[  322.508156][T20353] F2FS-fs (loop8): fault_type options not supported
[  322.532143][T20353] F2FS-fs (loop8): invalid crc value
[  322.572201][T20353] F2FS-fs (loop8): Found nat_bits in checkpoint
[  322.667888][T20376] loop6: detected capacity change from 0 to 1024
[  322.688163][T20376] EXT4-fs: Ignoring removed bh option
[  322.690255][   T28] kauditd_printk_skb: 42 callbacks suppressed
[  322.690281][   T28] audit: type=1400 audit(2000000021.620:1986): avc:  denied  { write } for  pid=20379 comm="syz.5.8622" path="socket:[95387]" dev="sockfs" ino=95387 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  322.701714][T20353] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[  322.761406][T20353] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  322.768015][T20376] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  322.824821][   T28] audit: type=1400 audit(2000000021.760:1987): avc:  denied  { setattr } for  pid=20374 comm="syz.6.8621" name="file1" dev="loop6" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  322.863266][T15718] EXT4-fs (loop6): unmounting filesystem.
[  322.924762][T20353] syz.8.8614: attempt to access beyond end of device
[  322.924762][T20353] loop8: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  322.941648][T20337] fs-verity (loop4, inode 13): Error -4 building Merkle tree
[  323.160342][T16741] EXT4-fs (loop4): unmounting filesystem.
[  323.389780][T20406] loop5: detected capacity change from 0 to 512
[  323.419881][T20406] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  323.679942][T20430] loop5: detected capacity change from 0 to 8192
[  323.853768][T20443] loop3: detected capacity change from 0 to 512
[  323.872540][T20443] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  324.061353][T20456] loop4: detected capacity change from 0 to 512
[  324.084487][T20456] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.8653: invalid indirect mapped block 4294967295 (level 1)
[  324.099299][T20456] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.8653: invalid indirect mapped block 4294967295 (level 1)
[  324.114687][T20456] EXT4-fs (loop4): 2 truncates cleaned up
[  324.120449][T20456] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  324.167953][T16741] EXT4-fs (loop4): unmounting filesystem.
[  324.239852][T20463] kvm [20462]: vcpu2, guest rIP: 0xfff0 Hyper-V unhandled wrmsr: 0x40000013 data 0x0
[  324.250577][   T28] audit: type=1400 audit(2000000023.190:1988): avc:  denied  { read write } for  pid=20469 comm="syz.6.8656" name="fuse" dev="devtmpfs" ino=93 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  324.299199][   T28] audit: type=1400 audit(2000000023.190:1989): avc:  denied  { open } for  pid=20469 comm="syz.6.8656" path="/dev/fuse" dev="devtmpfs" ino=93 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  324.324426][   T28] audit: type=1400 audit(2000000023.210:1990): avc:  denied  { mount } for  pid=20469 comm="syz.6.8656" name="/" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  324.552628][T20492] pim6reg0: tun_chr_ioctl cmd 1074025677
[  324.558402][T20492] pim6reg0: linktype set to 774
[  324.594868][T20494] loop4: detected capacity change from 0 to 512
[  324.606614][T20494] EXT4-fs (loop4): orphan cleanup on readonly fs
[  324.613946][T20494] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.8669: bg 0: block 248: padding at end of block bitmap is not set
[  324.628944][T20494] Quota error (device loop4): write_blk: dquota write failed
[  324.637023][T20494] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  324.652700][T20494] EXT4-fs error (device loop4): ext4_acquire_dquot:6801: comm syz.4.8669: Failed to acquire dquot type 1
[  324.664976][T20494] EXT4-fs (loop4): 1 truncate cleaned up
[  324.671010][T20494] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  324.704005][   T28] audit: type=1400 audit(324.697:1991): avc:  denied  { write } for  pid=20493 comm="syz.4.8669" path="socket:[96410]" dev="sockfs" ino=96410 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  324.728194][T16741] EXT4-fs (loop4): unmounting filesystem.
[  324.769503][T20509] user requested TSC rate below hardware speed
[  324.829835][   T28] audit: type=1400 audit(324.817:1992): avc:  denied  { create } for  pid=20517 comm="syz.8.8678" name="file2" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  324.850242][   T28] audit: type=1400 audit(324.817:1993): avc:  denied  { read } for  pid=20517 comm="syz.8.8678" name="file2" dev="tmpfs" ino=1851 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  325.161435][T20544] loop6: detected capacity change from 0 to 1024
[  325.172392][T20544] EXT4-fs: Ignoring removed i_version option
[  325.185967][T20544] EXT4-fs error (device loop6): ext4_map_blocks:635: inode #3: block 2: comm syz.6.8690: lblock 2 mapped to illegal pblock 2 (length 1)
[  325.200216][T20544] EXT4-fs error (device loop6): ext4_map_blocks:635: inode #3: block 48: comm syz.6.8690: lblock 0 mapped to illegal pblock 48 (length 1)
[  325.214684][T20544] EXT4-fs error (device loop6): ext4_acquire_dquot:6801: comm syz.6.8690: Failed to acquire dquot type 0
[  325.226247][T20544] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5917: Corrupt filesystem
[  325.235850][T20544] EXT4-fs error (device loop6): ext4_evict_inode:279: inode #11: comm syz.6.8690: mark_inode_dirty error
[  325.247329][T20544] EXT4-fs warning (device loop6): ext4_evict_inode:282: couldn't mark inode dirty (err -117)
[  325.257921][T20544] EXT4-fs (loop6): 1 orphan inode deleted
[  325.263812][T20544] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  325.274064][  T389] EXT4-fs error (device loop6): ext4_map_blocks:635: inode #3: block 1: comm kworker/u4:4: lblock 1 mapped to illegal pblock 1 (length 1)
[  325.304633][  T389] EXT4-fs error (device loop6): ext4_release_dquot:6837: comm kworker/u4:4: Failed to release dquot type 0
[  325.328240][T15718] EXT4-fs (loop6): unmounting filesystem.
[  325.337273][T15718] EXT4-fs error (device loop6): __ext4_get_inode_loc:4509: comm syz-executor: Invalid inode table block 1 in block_group 0
[  325.356856][T15718] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5917: Corrupt filesystem
[  325.366900][T15718] EXT4-fs error (device loop6): ext4_quota_off:7107: inode #3: comm syz-executor: mark_inode_dirty error
[  325.689892][T20568] netlink: 8 bytes leftover after parsing attributes in process `syz.6.8697'.
[  325.697697][T20557] loop3: detected capacity change from 0 to 8192
[  326.022125][T20581] loop6: detected capacity change from 0 to 40427
[  326.040335][T20581] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  326.051597][ T2131] usb 4-1: new high-speed USB device number 29 using dummy_hcd
[  326.069033][T20581] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  326.083130][T20581] F2FS-fs (loop6): invalid crc value
[  326.108607][T20581] F2FS-fs (loop6): Found nat_bits in checkpoint
[  326.171148][T20581] F2FS-fs (loop6): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  326.184957][T20581] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  326.192434][T20581] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  326.242795][ T2131] usb 4-1: Using ep0 maxpacket: 8
[  326.250433][ T2131] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  326.276933][ T2131] usb 4-1: New USB device found, idVendor=050d, idProduct=3201, bcdDevice= 0.00
[  326.309841][ T2131] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  326.323193][ T2131] usb 4-1: config 0 descriptor??
[  326.360493][T20613] SELinux: security policydb version 17 (MLS) not backwards compatible
[  326.369653][T20613] SELinux: failed to load policy
[  326.435515][T20620] bridge0: port 3(syz_tun) entered blocking state
[  326.442130][T20620] bridge0: port 3(syz_tun) entered disabled state
[  326.444144][T20617] loop6: detected capacity change from 0 to 8192
[  326.449098][T20620] device syz_tun entered promiscuous mode
[  326.460978][T20620] bridge0: port 3(syz_tun) entered blocking state
[  326.467552][T20620] bridge0: port 3(syz_tun) entered forwarding state
[  326.498421][T20620] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[  326.562239][T20630] loop8: detected capacity change from 0 to 512
[  326.598173][T20638] loop5: detected capacity change from 0 to 256
[  326.628921][T20630] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  326.654119][T20630] EXT4-fs error (device loop8): ext4_validate_block_bitmap:438: comm syz.8.8730: bg 0: block 64: padding at end of block bitmap is not set
[  326.709242][T16036] EXT4-fs (loop8): unmounting filesystem.
[  326.752548][ T2131] belkin 0003:050D:3201.0068: unknown main item tag 0x1
[  326.763047][T20650] device sit0 entered promiscuous mode
[  326.769822][ T2131] belkin 0003:050D:3201.0068: unknown main item tag 0x3
[  326.777154][ T2131] belkin 0003:050D:3201.0068: ignoring exceeding usage max
[  326.788808][T20650] netlink: 'syz.5.8746': attribute type 1 has an invalid length.
[  326.798907][ T2131] belkin 0003:050D:3201.0068: hiddev96,hidraw0: USB HID v0.00 Device [HID 050d:3201] on usb-dummy_hcd.3-1/input0
[  326.809470][T20650] netlink: 9 bytes leftover after parsing attributes in process `syz.5.8746'.
[  326.841580][  T297] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[  326.966823][ T2131] usb 4-1: USB disconnect, device number 29
[  327.031629][  T297] usb 5-1: Using ep0 maxpacket: 32
[  327.038461][  T297] usb 5-1: config 0 has an invalid interface number: 2 but max is 0
[  327.046677][  T297] usb 5-1: config 0 has no interface number 0
[  327.061301][T20653] loop5: detected capacity change from 0 to 256
[  327.071687][  T297] usb 5-1: config 0 interface 2 has no altsetting 0
[  327.083417][  T297] usb 5-1: New USB device found, idVendor=086a, idProduct=0003, bcdDevice=f0.3f
[  327.101628][  T297] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  327.109745][T20653] FAT-fs (loop5): Directory bread(block 64) failed
[  327.116581][T20653] FAT-fs (loop5): Directory bread(block 65) failed
[  327.121259][T20657] loop8: detected capacity change from 0 to 8192
[  327.127078][T20655] loop6: detected capacity change from 0 to 4096
[  327.136208][T20653] FAT-fs (loop5): Directory bread(block 66) failed
[  327.143029][  T297] usb 5-1: Product: syz
[  327.147243][  T297] usb 5-1: Manufacturer: syz
[  327.152033][T20653] FAT-fs (loop5): Directory bread(block 67) failed
[  327.158592][T20653] FAT-fs (loop5): Directory bread(block 68) failed
[  327.165340][  T297] usb 5-1: SerialNumber: syz
[  327.172505][  T297] usb 5-1: config 0 descriptor??
[  327.174851][T20653] FAT-fs (loop5): Directory bread(block 69) failed
[  327.202905][T20655] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  327.212261][T20653] FAT-fs (loop5): Directory bread(block 70) failed
[  327.218946][T20653] FAT-fs (loop5): Directory bread(block 71) failed
[  327.225790][T20653] FAT-fs (loop5): Directory bread(block 72) failed
[  327.232736][T20653] FAT-fs (loop5): Directory bread(block 73) failed
[  327.347547][T15718] EXT4-fs (loop6): unmounting filesystem.
[  327.386309][  T297] usb 5-1: USB disconnect, device number 24
[  327.397790][T20671] loop6: detected capacity change from 0 to 256
[  327.426604][T20671] exfat: Deprecated parameter 'utf8'
[  327.443700][T20671] exfat: Deprecated parameter 'utf8'
[  327.490544][T20671] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x36d2a6b4, utbl_chksum : 0xe619d30d)
[  327.574654][T20678] loop3: detected capacity change from 0 to 2048
[  327.595221][T20680] loop6: detected capacity change from 0 to 256
[  327.624551][T20680] exFAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  327.675059][T20678] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  327.688026][T20680] exFAT-fs (loop6): Medium has reported failures. Some data may be lost.
[  327.698668][T20678] EXT4-fs (loop3): unmounting filesystem.
[  327.717286][T20680] exFAT-fs (loop6): failed to load upcase table (idx : 0x0000ff98, chksum : 0xc64c1d22, utbl_chksum : 0xe619d30d)
[  327.729943][T20685] loop8: detected capacity change from 0 to 2048
[  327.781076][T20685] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  327.790220][   T28] kauditd_printk_skb: 21 callbacks suppressed
[  327.790239][   T28] audit: type=1400 audit(327.777:2012): avc:  denied  { unlink } for  pid=20679 comm="syz.6.8750" name="file1" dev="loop6" ino=1049524 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  327.899646][   T28] audit: type=1400 audit(327.887:2013): avc:  denied  { read } for  pid=20688 comm="syz.6.8752" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  327.938158][T20676] loop5: detected capacity change from 0 to 131072
[  327.949645][T20676] F2FS-fs (loop5): Wrong CP boundary, start(512) end(198144) blocks(1024)
[  327.958292][T20676] F2FS-fs (loop5): Can't find valid F2FS filesystem in 2th superblock
[  327.967589][T20676] F2FS-fs (loop5): invalid crc value
[  327.971603][   T28] audit: type=1400 audit(327.927:2014): avc:  denied  { write } for  pid=20688 comm="syz.6.8752" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  328.012412][T20676] F2FS-fs (loop5): Found nat_bits in checkpoint
[  328.071744][T20676] F2FS-fs (loop5): Try to recover 2th superblock, ret: 0
[  328.078849][T20676] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e4
[  328.232519][T20708] loop4: detected capacity change from 0 to 1024
[  328.243111][T20708] EXT4-fs: Ignoring removed i_version option
[  328.301644][T20708] EXT4-fs error (device loop4): ext4_map_blocks:635: inode #3: block 2: comm syz.4.8757: lblock 2 mapped to illegal pblock 2 (length 1)
[  328.349169][T20708] Quota error (device loop4): qtree_write_dquot: dquota write failed
[  328.380624][T20708] EXT4-fs error (device loop4): ext4_map_blocks:635: inode #3: block 48: comm syz.4.8757: lblock 0 mapped to illegal pblock 48 (length 1)
[  328.435508][T20708] Quota error (device loop4): v2_write_file_info: Can't write info structure
[  328.451608][T20708] EXT4-fs error (device loop4): ext4_acquire_dquot:6801: comm syz.4.8757: Failed to acquire dquot type 0
[  328.463241][T20708] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5917: Corrupt filesystem
[  328.476234][T20708] EXT4-fs error (device loop4): ext4_evict_inode:279: inode #11: comm syz.4.8757: mark_inode_dirty error
[  328.487988][T20708] EXT4-fs warning (device loop4): ext4_evict_inode:282: couldn't mark inode dirty (err -117)
[  328.498572][T20708] EXT4-fs (loop4): 1 orphan inode deleted
[  328.504578][T20708] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  328.513304][  T389] EXT4-fs error (device loop4): ext4_map_blocks:635: inode #3: block 1: comm kworker/u4:4: lblock 1 mapped to illegal pblock 1 (length 1)
[  328.568707][  T389] Quota error (device loop4): remove_tree: Can't read quota data block 1
[  328.577652][   T28] audit: type=1400 audit(328.567:2015): avc:  denied  { read write } for  pid=20716 comm="syz.5.8762" name="uhid" dev="devtmpfs" ino=267 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  328.587433][  T389] EXT4-fs error (device loop4): ext4_release_dquot:6837: comm kworker/u4:4: Failed to release dquot type 0
[  328.628728][   T28] audit: type=1400 audit(328.597:2016): avc:  denied  { open } for  pid=20716 comm="syz.5.8762" path="/dev/uhid" dev="devtmpfs" ino=267 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  328.654431][T16741] EXT4-fs (loop4): unmounting filesystem.
[  328.662339][T20685] fs-verity (loop8, inode 13): Error -4 building Merkle tree
[  328.664159][T16741] EXT4-fs error (device loop4): __ext4_get_inode_loc:4509: comm syz-executor: Invalid inode table block 1 in block_group 0
[  328.686279][T16741] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5917: Corrupt filesystem
[  328.696106][T16741] EXT4-fs error (device loop4): ext4_quota_off:7107: inode #3: comm syz-executor: mark_inode_dirty error
[  328.798485][T16036] EXT4-fs (loop8): unmounting filesystem.
[  328.807356][T20728] loop4: detected capacity change from 0 to 4096
[  328.857684][T20728] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  328.929064][   T28] audit: type=1400 audit(328.917:2017): avc:  denied  { execute } for  pid=20737 comm="syz.5.8772" dev="tmpfs" ino=660 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  328.973092][T20724] loop3: detected capacity change from 0 to 40427
[  328.983073][   T28] audit: type=1400 audit(328.947:2018): avc:  denied  { execute_no_trans } for  pid=20737 comm="syz.5.8772" path=2F6D656D66643A5B0BDB58AE5B1AA9FDFAADD16D64C8854858A9250C1A65E0202864656C6574656429 dev="tmpfs" ino=660 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  329.019379][T20724] F2FS-fs (loop3): Found nat_bits in checkpoint
[  329.043653][T20747] loop8: detected capacity change from 0 to 1024
[  329.050617][T20747] EXT4-fs: Ignoring removed i_version option
[  329.071897][T16741] EXT4-fs (loop4): unmounting filesystem.
[  329.093257][T20747] EXT4-fs error (device loop8): ext4_map_blocks:635: inode #3: block 2: comm syz.8.8774: lblock 2 mapped to illegal pblock 2 (length 1)
[  329.116435][T20724] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  329.160522][T20747] EXT4-fs error (device loop8): ext4_map_blocks:635: inode #3: block 48: comm syz.8.8774: lblock 0 mapped to illegal pblock 48 (length 1)
[  329.183594][T20747] EXT4-fs error (device loop8): ext4_acquire_dquot:6801: comm syz.8.8774: Failed to acquire dquot type 0
[  329.202986][T20724] syz.3.8767: attempt to access beyond end of device
[  329.202986][T20724] loop3: rw=2049, sector=77824, nr_sectors = 136 limit=40427
[  329.228192][T16591] syz-executor: attempt to access beyond end of device
[  329.228192][T16591] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  329.251875][T20747] EXT4-fs error (device loop8) in ext4_reserve_inode_write:5917: Corrupt filesystem
[  329.274849][T20747] EXT4-fs error (device loop8): ext4_evict_inode:279: inode #11: comm syz.8.8774: mark_inode_dirty error
[  329.304828][T20747] EXT4-fs warning (device loop8): ext4_evict_inode:282: couldn't mark inode dirty (err -117)
[  329.327134][T20763] loop4: detected capacity change from 0 to 256
[  329.331828][T20747] EXT4-fs (loop8): 1 orphan inode deleted
[  329.342434][T20747] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  329.360605][T20763] exfat: Deprecated parameter 'namecase'
[  329.377202][T18639] EXT4-fs error (device loop8): ext4_map_blocks:635: inode #3: block 1: comm kworker/u4:10: lblock 1 mapped to illegal pblock 1 (length 1)
[  329.393901][T18639] EXT4-fs error (device loop8): ext4_release_dquot:6837: comm kworker/u4:10: Failed to release dquot type 0
[  329.406792][T16036] EXT4-fs (loop8): unmounting filesystem.
[  329.424648][T16036] EXT4-fs error (device loop8): __ext4_get_inode_loc:4509: comm syz-executor: Invalid inode table block 1 in block_group 0
[  329.439254][T20763] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xf4419509, utbl_chksum : 0xe619d30d)
[  329.461693][T16036] EXT4-fs error (device loop8) in ext4_reserve_inode_write:5917: Corrupt filesystem
[  329.478101][T16036] EXT4-fs error (device loop8): ext4_quota_off:7107: inode #3: comm syz-executor: mark_inode_dirty error
[  329.727963][T20769] loop3: detected capacity change from 0 to 40427
[  329.745519][T20769] F2FS-fs (loop3): Invalid SB checksum offset: 0
[  329.758863][T20769] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock
[  329.778219][T20769] F2FS-fs (loop3): invalid crc value
[  329.815444][T20769] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  329.904625][T20769] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0
[  329.915726][T20769] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  331.852438][ T5992] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  331.853021][ T3175] Bluetooth: hci0: command 0x1003 tx timeout
[  332.866081][T20792] loop5: detected capacity change from 0 to 512
[  332.895939][T16591] syz-executor: attempt to access beyond end of device
[  332.895939][T16591] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  332.925939][T20792] EXT4-fs error (device loop5): ext4_orphan_get:1400: inode #15: comm syz.5.8793: casefold flag without casefold feature
[  332.952680][T20792] EXT4-fs error (device loop5): ext4_orphan_get:1405: comm syz.5.8793: couldn't read orphan inode 15 (err -117)
[  332.967573][T20792] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  333.028529][T16180] EXT4-fs (loop5): unmounting filesystem.
[  333.088474][T20806] loop5: detected capacity change from 0 to 1024
[  333.097899][T20804] loop8: detected capacity change from 0 to 4096
[  333.109780][T20806] EXT4-fs: Ignoring removed i_version option
[  333.141247][T20804] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  333.164257][T20806] EXT4-fs error (device loop5): ext4_map_blocks:635: inode #3: block 2: comm syz.5.8795: lblock 2 mapped to illegal pblock 2 (length 1)
[  333.178797][T20806] __quota_error: 3 callbacks suppressed
[  333.178818][T20806] Quota error (device loop5): qtree_write_dquot: dquota write failed
[  333.202474][T20806] EXT4-fs error (device loop5): ext4_map_blocks:635: inode #3: block 48: comm syz.5.8795: lblock 0 mapped to illegal pblock 48 (length 1)
[  333.239200][T20806] Quota error (device loop5): v2_write_file_info: Can't write info structure
[  333.248539][T20806] EXT4-fs error (device loop5): ext4_acquire_dquot:6801: comm syz.5.8795: Failed to acquire dquot type 0
[  333.260217][T20806] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5917: Corrupt filesystem
[  333.270206][T20806] EXT4-fs error (device loop5): ext4_evict_inode:279: inode #11: comm syz.5.8795: mark_inode_dirty error
[  333.281933][T20806] EXT4-fs warning (device loop5): ext4_evict_inode:282: couldn't mark inode dirty (err -117)
[  333.297368][T16036] EXT4-fs (loop8): unmounting filesystem.
[  333.303367][T20806] EXT4-fs (loop5): 1 orphan inode deleted
[  333.303427][T18640] EXT4-fs error (device loop5): ext4_map_blocks:635: inode #3: block 1: comm kworker/u4:11: lblock 1 mapped to illegal pblock 1 (length 1)
[  333.309224][T20806] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  333.332324][T18640] Quota error (device loop5): remove_tree: Can't read quota data block 1
[  333.371609][T18640] EXT4-fs error (device loop5): ext4_release_dquot:6837: comm kworker/u4:11: Failed to release dquot type 0
[  333.378224][   T28] audit: type=1400 audit(333.367:2019): avc:  denied  { ioctl } for  pid=20820 comm="syz.4.8803" path="socket:[97223]" dev="sockfs" ino=97223 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  333.411595][ T1013] usb 4-1: new high-speed USB device number 30 using dummy_hcd
[  333.429472][T20821] bridge0: port 2(bridge_slave_1) entered disabled state
[  333.449097][T16180] EXT4-fs (loop5): unmounting filesystem.
[  333.471845][T20828] loop4: detected capacity change from 0 to 128
[  333.480616][T20828] EXT4-fs: Ignoring removed nobh option
[  333.486679][T16180] EXT4-fs error (device loop5): __ext4_get_inode_loc:4509: comm syz-executor: Invalid inode table block 1 in block_group 0
[  333.506490][T16180] EXT4-fs error (device loop5) in ext4_reserve_inode_write:5917: Corrupt filesystem
[  333.506558][T20828] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  333.533485][T16180] EXT4-fs error (device loop5): ext4_quota_off:7107: inode #3: comm syz-executor: mark_inode_dirty error
[  333.535175][   T28] audit: type=1400 audit(333.527:2020): avc:  denied  { setattr } for  pid=20827 comm="syz.4.8809" name="/" dev="loop4" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  333.594936][T20836] netlink: 'syz.5.8805': attribute type 58 has an invalid length.
[  333.603020][T20836] netlink: 20 bytes leftover after parsing attributes in process `syz.5.8805'.
[  333.613538][T16741] EXT4-fs (loop4): unmounting filesystem.
[  333.642696][ T1013] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  333.672365][ T1013] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  333.701472][ T1013] usb 4-1: New USB device found, idVendor=18ec, idProduct=3288, bcdDevice=69.cf
[  333.720787][ T1013] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  333.753273][ T1013] usb 4-1: Product: syz
[  333.758040][ T1013] usb 4-1: Manufacturer: syz
[  333.763811][T20852] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  333.777533][ T1013] usb 4-1: SerialNumber: syz
[  333.793573][ T1013] usb 4-1: config 0 descriptor??
[  333.808868][ T1013] usb 4-1: Found UVC 0.00 device syz (18ec:3288)
[  333.821382][ T1013] usb 4-1: No valid video chain found.
[  333.860135][T20861] binder: 20860:20861 ioctl c0306201 200000000640 returned -22
[  333.917388][   T28] audit: type=1400 audit(333.907:2021): avc:  denied  { read } for  pid=20864 comm="syz.8.8826" name="msr" dev="devtmpfs" ino=86 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  333.950745][   T28] audit: type=1400 audit(333.907:2022): avc:  denied  { open } for  pid=20864 comm="syz.8.8826" path="/dev/cpu/0/msr" dev="devtmpfs" ino=86 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[  334.004658][T20875] netlink: 'syz.6.8829': attribute type 4 has an invalid length.
[  334.021372][T20875] netlink: 17 bytes leftover after parsing attributes in process `syz.6.8829'.
[  334.021904][   T60] usb 4-1: USB disconnect, device number 30
[  334.044730][T20879] netlink: 'syz.5.8832': attribute type 8 has an invalid length.
[  334.132551][T20891] loop5: detected capacity change from 0 to 512
[  334.152206][T20891] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  334.173692][   T28] audit: type=1400 audit(334.167:2023): avc:  denied  { bind } for  pid=20892 comm="syz.6.8839" lport=255 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  334.194094][T20891] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c018, mo2=0002]
[  334.212465][T20891] EXT4-fs (loop5): 1 truncate cleaned up
[  334.222208][T20891] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  334.224992][   T28] audit: type=1400 audit(334.167:2024): avc:  denied  { node_bind } for  pid=20892 comm="syz.6.8839" saddr=172.20.20.170 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[  334.265620][T16180] EXT4-fs (loop5): unmounting filesystem.
[  334.472191][   T28] audit: type=1400 audit(334.467:2025): avc:  denied  { setopt } for  pid=20915 comm="syz.5.8849" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  334.666034][T20938] loop8: detected capacity change from 0 to 1024
[  334.677691][T20938] EXT4-fs: Ignoring removed orlov option
[  334.703052][T20942] general protection fault, probably for non-canonical address 0xdffffc0000000004: 0000 [#1] PREEMPT SMP KASAN
[  334.714818][T20942] KASAN: null-ptr-deref in range [0x0000000000000020-0x0000000000000027]
[  334.723245][T20942] CPU: 0 PID: 20942 Comm: syz.6.8860 Tainted: G        W          syzkaller #0
[  334.732189][T20942] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  334.742278][T20942] RIP: 0010:qdisc_tree_reduce_backlog+0x181/0x360
[  334.748810][T20942] Code: e8 64 b6 b4 fd 4d 89 ef 83 7d d0 00 74 0a e8 96 54 70 fd e9 a2 00 00 00 4d 8b 36 49 8d 46 20 48 89 c1 48 c1 e9 03 48 89 4d b8 <80> 3c 19 00 48 89 45 d0 74 0d 48 8b 7d d0 e8 2c b6 b4 fd 48 8b 45
[  334.768618][T20942] RSP: 0018:ffffc90003886e28 EFLAGS: 00010202
[  334.774892][T20942] RAX: 0000000000000020 RBX: dffffc0000000000 RCX: 0000000000000004
[  334.782907][T20942] RDX: ffff88811bdbbcc0 RSI: 0000000000000000 RDI: 0000000000000000
[  334.791080][T20942] RBP: ffffc90003886e70 R08: ffff88811bdbbcc0 R09: 0000000000000002
[  334.799078][T20942] R10: 00000000ffffffff R11: 0000000000000002 R12: 00000000000afff2
[  334.807074][T20942] R13: ffff88810c9b9800 R14: 0000000000000000 R15: ffff88810c9b9800
[  334.815061][T20942] FS:  00007f773b2326c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[  334.824086][T20942] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  334.830687][T20942] CR2: 0000001b32c22ff8 CR3: 0000000120655000 CR4: 00000000003506b0
[  334.838681][T20942] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  334.846662][T20942] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  334.854639][T20942] Call Trace:
[  334.857929][T20942]  <TASK>
[  334.860882][T20942]  fq_codel_change+0xafd/0x1010
[  334.865760][T20942]  ? __cfi_fq_codel_change+0x10/0x10
[  334.871164][T20942]  ? netlink_sendmsg+0x8aa/0xbc0
[  334.875833][T20938] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  334.876139][T20942]  fq_codel_init+0x384/0xa90
[  334.889254][T20942]  ? __cfi_fq_codel_init+0x10/0x10
[  334.894412][T20942]  qdisc_create+0x7f3/0x1040
[  334.899040][T20942]  ? qdisc_notify+0x360/0x360
[  334.903740][T20942]  ? qdisc_lookup+0x100/0x4e0
[  334.908440][T20942]  tc_modify_qdisc+0x8ea/0x1900
[  334.913404][T20942]  ? __cfi_tc_modify_qdisc+0x10/0x10
[  334.918793][T20942]  ? __kasan_check_write+0x14/0x20
[  334.923924][T20942]  ? mutex_lock+0x8d/0x1a0
[  334.928345][T20942]  ? __cfi_mutex_lock+0x10/0x10
[  334.933191][T20942]  ? ns_capable+0x8c/0xf0
[  334.937517][T20942]  ? netlink_net_capable+0x125/0x160
[  334.942802][T20942]  ? __cfi_tc_modify_qdisc+0x10/0x10
[  334.948088][T20942]  rtnetlink_rcv_msg+0x9f4/0xcf0
[  334.953126][T20942]  ? __cfi_rtnetlink_rcv_msg+0x10/0x10
[  334.958583][T20942]  ? kernel_text_address+0xa0/0xd0
[  334.963699][T20942]  ? __kernel_text_address+0xd/0x30
[  334.968987][T20942]  ? unwind_get_return_address+0x4d/0x90
[  334.974619][T20942]  ? memcpy+0x56/0x70
[  334.978607][T20942]  ? avc_has_perm_noaudit+0x2f4/0x460
[  334.983991][T20942]  ? __cfi_avc_has_perm_noaudit+0x10/0x10
[  334.989726][T20942]  ? slab_post_alloc_hook+0x4f/0x2d0
[  334.995019][T20942]  ? kmem_cache_alloc_node+0x181/0x340
[  335.000490][T20942]  ? __alloc_skb+0xea/0x4b0
[  335.005007][T20942]  ? avc_has_perm+0x158/0x240
[  335.009700][T20942]  ? __alloc_skb+0x236/0x4b0
[  335.014383][T20942]  ? netlink_sendmsg+0x626/0xbc0
[  335.019329][T20942]  ? __cfi_avc_has_perm+0x10/0x10
[  335.024355][T20942]  ? selinux_nlmsg_lookup+0x400/0x4c0
[  335.029733][T20942]  netlink_rcv_skb+0x1f2/0x440
[  335.034506][T20942]  ? __cfi_rtnetlink_rcv_msg+0x10/0x10
[  335.039971][T20942]  ? __cfi_netlink_rcv_skb+0x10/0x10
[  335.045261][T20942]  ? __netlink_lookup+0x387/0x3b0
[  335.050290][T20942]  rtnetlink_rcv+0x1c/0x20
[  335.054713][T20942]  netlink_unicast+0x8b1/0xa30
[  335.059478][T20942]  netlink_sendmsg+0x8aa/0xbc0
[  335.064249][T20942]  ? _raw_spin_unlock+0x4c/0x70
[  335.069191][T20942]  ? __cfi_netlink_sendmsg+0x10/0x10
[  335.074476][T20942]  ? __schedule+0xb8f/0x14e0
[  335.079072][T20942]  ? security_socket_sendmsg+0x93/0xb0
[  335.084540][T20942]  ? __cfi_netlink_sendmsg+0x10/0x10
[  335.089825][T20942]  ____sys_sendmsg+0x5a9/0x990
[  335.094587][T20942]  ? __sys_sendmsg_sock+0x40/0x40
[  335.099617][T20942]  ? import_iovec+0x7c/0xb0
[  335.104121][T20942]  ___sys_sendmsg+0x21c/0x290
[  335.108794][T20942]  ? __sys_sendmsg+0x270/0x270
[  335.113558][T20942]  ? __fdget+0x19c/0x220
[  335.117785][T20942]  __x64_sys_sendmsg+0x1f0/0x2c0
[  335.122727][T20942]  ? __cfi___x64_sys_sendmsg+0x10/0x10
[  335.128208][T20942]  ? __kasan_check_write+0x14/0x20
[  335.133353][T20942]  ? fpregs_restore_userregs+0x128/0x260
[  335.139093][T20942]  ? switch_fpu_return+0xe/0x10
[  335.143944][T20942]  x64_sys_call+0x171/0x9a0
[  335.148454][T20942]  do_syscall_64+0x4c/0xa0
[  335.152876][T20942]  ? clear_bhb_loop+0x30/0x80
[  335.157572][T20942]  ? clear_bhb_loop+0x30/0x80
[  335.162249][T20942]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  335.168144][T20942] RIP: 0033:0x7f773a38ebe9
[  335.172556][T20942] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  335.192265][T20942] RSP: 002b:00007f773b232038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  335.200701][T20942] RAX: ffffffffffffffda RBX: 00007f773a5b5fa0 RCX: 00007f773a38ebe9
[  335.208683][T20942] RDX: 0000000000004000 RSI: 0000200000000040 RDI: 0000000000000003
[  335.216664][T20942] RBP: 00007f773a411e19 R08: 0000000000000000 R09: 0000000000000000
[  335.224743][T20942] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  335.232719][T20942] R13: 00007f773a5b6038 R14: 00007f773a5b5fa0 R15: 00007ffcd58fcec8
[  335.240695][T20942]  </TASK>
[  335.243712][T20942] Modules linked in:
[  335.247676][T20942] ---[ end trace 0000000000000000 ]---
[  335.253158][T20942] RIP: 0010:qdisc_tree_reduce_backlog+0x181/0x360
[  335.259600][T20942] Code: e8 64 b6 b4 fd 4d 89 ef 83 7d d0 00 74 0a e8 96 54 70 fd e9 a2 00 00 00 4d 8b 36 49 8d 46 20 48 89 c1 48 c1 e9 03 48 89 4d b8 <80> 3c 19 00 48 89 45 d0 74 0d 48 8b 7d d0 e8 2c b6 b4 fd 48 8b 45
[  335.279328][T20942] RSP: 0018:ffffc90003886e28 EFLAGS: 00010202
[  335.285425][T20942] RAX: 0000000000000020 RBX: dffffc0000000000 RCX: 0000000000000004
[  335.293430][T20942] RDX: ffff88811bdbbcc0 RSI: 0000000000000000 RDI: 0000000000000000
[  335.301421][T20942] RBP: ffffc90003886e70 R08: ffff88811bdbbcc0 R09: 0000000000000002
[  335.309444][T20942] R10: 00000000ffffffff R11: 0000000000000002 R12: 00000000000afff2
[  335.317557][T20942] R13: ffff88810c9b9800 R14: 0000000000000000 R15: ffff88810c9b9800
[  335.324308][T20938] EXT4-fs (loop8): re-mounted. Quota mode: none.
[  335.325573][T20942] FS:  00007f773b2326c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[  335.340834][T20942] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  335.347457][T20942] CR2: 0000001b32c22ff8 CR3: 0000000120655000 CR4: 00000000003506b0
[  335.355456][T20942] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  335.363470][T20942] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  335.371548][T20942] Kernel panic - not syncing: Fatal exception in interrupt
[  335.379162][T20942] Kernel Offset: disabled
[  335.383537][T20942] Rebooting in 86400 seconds..