last executing test programs:

1m7.278122513s ago: executing program 0 (id=1686):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0xc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_deliver\x00', r0}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)

1m7.192284104s ago: executing program 0 (id=1687):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x61, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000001000)={0x2, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000fc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

1m6.76341981s ago: executing program 0 (id=1692):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000005c0)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x11, &(0x7f0000000100)=@framed={{0x18, 0x2, 0x0, 0x0, 0xa2e}, [@call={0x85, 0x0, 0x0, 0x41}, @snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

1m6.73102383s ago: executing program 0 (id=1695):
syz_mount_image$exfat(&(0x7f00000005c0), &(0x7f0000000240)='./file0\x00', 0x3000050, &(0x7f0000000600)=ANY=[], 0x2, 0x14fe, &(0x7f0000002180)="$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")
mount$incfs(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000180), 0x0, 0x0)
open(&(0x7f00000001c0)='./file1\x00', 0xa40, 0x10)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)

1m6.576219943s ago: executing program 0 (id=1698):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x4, <r2=>0xffffffffffffffff})
ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f00000001c0)=@attr_other={0x0, 0x1, 0x0, 0x0})

1m6.486442184s ago: executing program 0 (id=1701):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x40042, 0x1ff)
write$binfmt_elf32(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="7f454c46000000400000000000000000030003"], 0x158)
close(r0)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x7f8000000000)

1m6.346387366s ago: executing program 32 (id=1701):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x40042, 0x1ff)
write$binfmt_elf32(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="7f454c46000000400000000000000000030003"], 0x158)
close(r0)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x7f8000000000)

55.545242075s ago: executing program 3 (id=2012):
r0 = syz_io_uring_setup(0x94f, &(0x7f0000000300)={0x0, 0xd27d, 0x100}, &(0x7f0000000080)=<r1=>0x0, &(0x7f0000000040))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
io_uring_enter(r0, 0xcb, 0x44464f, 0x1, &(0x7f0000000000)={[0x80000000fffffffc]}, 0x8)
io_uring_enter(r0, 0x1815, 0x0, 0x0, 0x0, 0x0)
io_uring_enter(r0, 0x62dd, 0x0, 0x0, 0x0, 0x0)

55.423330246s ago: executing program 3 (id=2016):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x52)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r1}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)

55.408802046s ago: executing program 3 (id=2017):
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$sock_linger(r0, 0x1, 0x3c, &(0x7f0000000180)={0x200000000000001}, 0x8)
sendto$inet6(r0, 0x0, 0x0, 0x4c881, &(0x7f0000000540)={0xa, 0x4e24, 0x0, @mcast2}, 0x1c)
sendmmsg$inet6(r0, &(0x7f00000026c0)=[{{0x0, 0x0, &(0x7f0000000b00)=[{&(0x7f0000000b40)='\x00'/10, 0xa}], 0x1}}, {{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000100)="ad", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000740)=[{&(0x7f00000000c0)="b8", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000000a40)=[{&(0x7f0000000480)="b7e536c78818c68d3f9c25d17d3bb5fc13cb2eaeaf734e627b20ac565bb518fcd686f3df4e4e6257218aef88a1c6bd20b8d7024816d06d4bc7e228c816aed4184aa7af76d8f83a11e450b67c25458233d0bb71e5c3c82760e0b80f99a308feba5f0d0eb5b9", 0x65}], 0x1}}, {{0x0, 0x0, &(0x7f0000001240)=[{&(0x7f0000000e00)="8c7fb2ab21dad77e0bb3bf2535c6db525e0c30ec54dd68ee433f0796d25d0b9b1c19887525aac0aebf116e947468572e51dbfea1e17f44b236b2aa5e2dcf4a32cf465eecfc2c6d0604d8f9cdc081f06aa1897d9b55e1e3c48a2c26e2de8f3256ba9f8c9501e0a4198e2e1ef725af54f55818a2b029c58272d31d44b02f41466197cac306e550760da58ac71374579918eeee88e2bb4dc6bb2850db8ffe588020c36d2fdcb6c0f254208af5f7b0d1f33ba193bd9ce6dd0596b069a7ac8c84b468789ca50b4dd7286e57661b", 0xcb}, {&(0x7f0000000f00)="31f2ac5856b785ea337e0820e8351d8af63e96a0eb95ce01555698be19857fc131aa1f65e65195c08c2255dafbd47892d767f5ed79153bf56e287c3e395105616bbc412ab970ff6ebfc262ba143123c90c186e46c65a0064cf821c91cb2cffe674a97f1012138ef9d5f25fe36403e8c261039d2d35dbef6ef9815d76b21ae29967821078de6396b79cdd7481cdbdd5092f67c467707b551fda61e5864309006a259e0bc611815455cf", 0xa9}, {&(0x7f0000003680)="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", 0x3c8}], 0x3}}], 0x5, 0x400c404)
sendmmsg$inet6(r0, &(0x7f0000003640)=[{{0x0, 0x0, 0x0}}], 0x1, 0x800)

55.320285968s ago: executing program 3 (id=2018):
syz_mount_image$exfat(&(0x7f00000005c0), &(0x7f0000000240)='./file0\x00', 0x3000050, &(0x7f0000000600)=ANY=[], 0x2, 0x14fe, &(0x7f0000002180)="$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")
mount$incfs(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='./file0\x00', &(0x7f0000000180), 0x0, 0x0)
open(&(0x7f00000001c0)='./file1\x00', 0xa40, 0x10)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)

55.225304079s ago: executing program 3 (id=2019):
syz_mount_image$f2fs(&(0x7f00000000c0), &(0x7f0000000000)='./bus\x00', 0x2008410, &(0x7f0000000280)=ANY=[@ANYBLOB="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", @ANYRES32], 0x1, 0x5549, &(0x7f0000003d80)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x101442, 0x0)
pwrite64(r0, &(0x7f0000000140)='2', 0xfdef, 0xfecc)
mkdir(&(0x7f0000000140)='./control\x00', 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305829, &(0x7f0000000000)={0x0, 0x1, 0x0, 0xa})

55.1906308s ago: executing program 3 (id=2020):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="02000000040000000600000005"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000210018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000807b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

55.049411732s ago: executing program 33 (id=2020):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000800)=ANY=[@ANYBLOB="02000000040000000600000005"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000210018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000807b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

44.764649803s ago: executing program 4 (id=2260):
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000240)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x4f3, 0x755, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x40, 0xb1, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0x101, 0x0, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x3ff, 0xc}}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000340)={0x73, &(0x7f0000000080)={0x20, 0x6, 0x17, {0x17, 0x11, "46ff4490d70a1e0ab42eff40f3c390ebf8df59b578"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)
r1 = syz_open_dev$hidraw(&(0x7f0000000280), 0x82, 0x2)
ioctl$int_in(r1, 0x5452, &(0x7f0000000000)=0xc58)

43.020146218s ago: executing program 4 (id=2302):
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000040)='./file0\x00', 0x100c404, &(0x7f0000000500)={[{@dots}, {@fat=@discard}, {@fat=@uid}, {@fat=@uid={'uid', 0x3d, 0xee00}}, {@dots}, {@fat=@errors_continue}, {@dots}, {@nodots}, {@nodots}, {@dots}, {@dots}, {@nodots}, {@nodots}, {}, {@nodots}, {@fat=@debug}, {@nodots}, {@fat=@showexec}, {@fat=@flush}, {@fat=@umask={'umask', 0x3d, 0x7}}, {@dots}, {@fat=@allow_utime={'allow_utime', 0x3d, 0x2}}]}, 0x1, 0x1f0, &(0x7f0000000300)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_INPUT(r0, &(0x7f00000029c0)={0x8, {"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", 0x1000}}, 0x1006)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x11, r0, 0x0)
mkdir(&(0x7f0000000080)='./file0\x00', 0x0)

42.761779162s ago: executing program 4 (id=2312):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000020000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x183341, 0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000003})
link(&(0x7f0000001240)='./file0\x00', &(0x7f0000000bc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

42.514849826s ago: executing program 4 (id=2317):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x4000, &(0x7f0000000740)={[{@test_dummy_encryption}, {@i_version}, {@noload}, {@commit={'commit', 0x3d, 0x5}}, {@inlinecrypt}, {@max_batch_time}, {@abort}, {@auto_da_alloc}, {@lazytime}, {@lazytime}, {@block_validity}]}, 0xd, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
r1 = syz_io_uring_setup(0x2e2c, &(0x7f0000001580), &(0x7f0000001600), &(0x7f0000001640))
io_uring_register$IORING_REGISTER_BUFFERS2(r1, 0x2, &(0x7f0000002c40)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x20)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r1, 0x6, &(0x7f0000000200)={0x9, 0x0, &(0x7f0000000080)=[r0]}, 0x1)

42.329891629s ago: executing program 4 (id=2320):
syz_usb_connect(0x0, 0x24, &(0x7f00000000c0)=ANY=[@ANYBLOB="120100009e173610ef171e7206de01020303090212000100000000090400000002"], 0x0)
ioctl$PPPIOCNEWUNIT(0xffffffffffffffff, 0xc004743e, 0x0)
socket(0x0, 0x0, 0x0)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

42.23595657s ago: executing program 4 (id=2323):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x54, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r0}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

42.186539211s ago: executing program 34 (id=2323):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000022000000180100002020702500000000002020207b0af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x54, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r0}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

39.563649469s ago: executing program 1 (id=2361):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10)
statx(0xffffffffffffffff, 0x0, 0x0, 0x800, 0x0)

39.50424972s ago: executing program 1 (id=2364):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000ac0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10)
setrlimit(0x9, &(0x7f0000000000))

39.49284194s ago: executing program 1 (id=2366):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r0, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r1, &(0x7f0000000040)=[{&(0x7f0000000280)="580000001400192340834b80040d8c560a0677bc45ff810500000000000058000b480400945f64009400050028925a01000000000000008000f0fffeffe809000000fff5dd0000001000014001080800418e00000004fcff", 0x58}], 0x1)
close_range(r0, 0xffffffffffffffff, 0x0)

39.453540621s ago: executing program 1 (id=2367):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x4000, &(0x7f0000000740)={[{@test_dummy_encryption}, {@i_version}, {@noload}, {@commit={'commit', 0x3d, 0x5}}, {@inlinecrypt}, {@max_batch_time}, {@abort}, {@auto_da_alloc}, {@lazytime}, {@lazytime}, {@block_validity}]}, 0xd, 0x5d8, &(0x7f0000000c00)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x26e1, 0x0)
r1 = syz_io_uring_setup(0x2e2c, &(0x7f0000001580), &(0x7f0000001600), &(0x7f0000001640))
io_uring_register$IORING_REGISTER_BUFFERS2(r1, 0x2, &(0x7f0000002c40)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x20)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r1, 0x6, &(0x7f0000000200)={0x9, 0x0, &(0x7f0000000080)=[r0]}, 0x1)

39.336373943s ago: executing program 1 (id=2370):
syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = creat(&(0x7f0000000080)='./file0\x00', 0x2a)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x600, 0x0)
syz_usb_connect$uac1(0x0, 0xa4, &(0x7f00000000c0)=ANY=[@ANYBLOB="2a01000020000040b708000000000000030109029200030172e5000904000000010100000a24010000000201020c0d2405000005000000000000000c240000e9fffff5ffffffff092403f3", @ANYRES8=r0, @ANYRES32=r1], 0x0)

39.211700385s ago: executing program 1 (id=2375):
sendmmsg(0xffffffffffffffff, &(0x7f0000001a00)=[{{&(0x7f0000000180)=@l2tp6={0xa, 0x500, 0x80000, @remote, 0x0, 0x3}, 0x80, 0x0}, 0x5b4}], 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x5, 0xe, 0x40, 0x3, 0x41, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140), &(0x7f0000000540), 0x1003, r0}, 0x38)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000380)={r0, &(0x7f0000000300), 0x0}, 0x20)

39.147943546s ago: executing program 35 (id=2375):
sendmmsg(0xffffffffffffffff, &(0x7f0000001a00)=[{{&(0x7f0000000180)=@l2tp6={0xa, 0x500, 0x80000, @remote, 0x0, 0x3}, 0x80, 0x0}, 0x5b4}], 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x5, 0xe, 0x40, 0x3, 0x41, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140), &(0x7f0000000540), 0x1003, r0}, 0x38)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000380)={r0, &(0x7f0000000300), 0x0}, 0x20)

11.842136136s ago: executing program 6 (id=2955):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
readahead(0xffffffffffffffff, 0x0, 0x101)

11.841889896s ago: executing program 6 (id=2956):
mkdir(&(0x7f0000000000)='./control\x00', 0x0)
r0 = open(&(0x7f0000022ff6)='./control\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000100)='./control\x00', 0x1)
getdents64(r0, &(0x7f0000000400)=""/50, 0x32)
rmdir(&(0x7f0000000040)='./control\x00')

11.796360997s ago: executing program 6 (id=2957):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x4)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x44, 0x0, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000240)=ANY=[@ANYBLOB="01000000000000008a04"])

11.734330978s ago: executing program 6 (id=2959):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000080), 0x64, 0x52b, &(0x7f0000000f40)="$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")
r0 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
r1 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
write$binfmt_register(r1, &(0x7f0000000440)={0x3a, 'syz2', 0x3a, 'M', 0x3a, 0x0, 0x3a, 'usrjquota=', 0x3a, '', 0x3a, './file2', 0x3a, [0x46]}, 0x32)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0)

11.572472891s ago: executing program 6 (id=2963):
r0 = memfd_create(&(0x7f00000000c0)='v\xa6\xf5lj6,r\xaf\xe8\x10/\xecg\xed\xe3h\x80\xb8!y6w\xda\xdd\xb9\nR\xe8@\x99\xb9\x8a\x0fZ\t\x90\x8bp\x10\x84\x86t\x8a\xba\xc6\xfb\xd2\f\xef&\xad\xa8M\xe8\b\xb0#\xac)\x81\x1e\x8a\f\x11D\x90\xf5\xbb\x1c\xac\xc7\xad\xdc\\\x11\x95\xf8\xe6\xa7\xc3\xbc\x18+\x92\x92N\a\xa7\x7fN\x9bL\xf8\xebQs\x02\xf9\xadi\x8f\x0f\xff\x02n\x9d\x85\xea\x1a*\x1bC\xd8\x1c\xe8\x9bYS', 0x0)
write(r0, &(0x7f0000000580)='ic', 0x2)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x1, 0x11, r0, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r1, &(0x7f0000000480)={0x2, 0x4e20, @multicast2}, 0x10)

11.462055082s ago: executing program 6 (id=2970):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0xc9d7, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r2}, 0x10)
getrusage(0x0, &(0x7f0000000a80))

11.410467503s ago: executing program 36 (id=2970):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0xc9d7, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r2}, 0x10)
getrusage(0x0, &(0x7f0000000a80))

2.856950699s ago: executing program 5 (id=3238):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000faffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYBLOB="ac0000000001010400000000000000000a0000003c0001802c00018014000300fe8000000000000000000000000000aa14000400ff0100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000aa14000400fe8800000000000000000000000000010c00028005000100000000000800074000000000180006801400040020010000000000000000000000000001"], 0xac}, 0x1, 0x0, 0x0, 0x1}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="ac0000000001010400000000000000000a0000003c0001802c000180140003000000000000000000000000000000000014000400ff0100000000000000000000000000010c00028005000100000000003c0002802c00018014000300fe8000000000000000000000000000aa14000400fe8000000000000000000000000000aa0c00028005000100000000000800074000000000180006801400040020010000000000000000000000000001"], 0xac}, 0x1, 0x0, 0x0, 0x4000}, 0x4000894)

2.828725679s ago: executing program 5 (id=3242):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x77, 0x29, 0x4, 0x20, 0x424, 0x9901, 0xc257, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0x43, 0x0, 0x2, 0x31, 0x7d, 0x55, 0x0, [], [{{0x9, 0x5, 0x2, 0x2, 0x200, 0x2}}, {{0x9, 0x5, 0x82, 0x2, 0x200}}]}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000500)={0x44, &(0x7f00000007c0)={0x20, 0x17, 0x5, "3b532f5c9e"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, &(0x7f0000000740)={0x34, &(0x7f0000000580)={0x20, 0x0, 0x4, "56b8d0b7"}, 0x0, 0x0, 0x0, 0x0, &(0x7f00000004c0)={0x20, 0x0, 0x1, 0x4}})

1.571819668s ago: executing program 7 (id=3264):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r0, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
r1 = socket$inet6(0xa, 0x3, 0x87)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000280)={{{@in6=@remote, @in=@multicast1, 0xfffd, 0x0, 0x4e20, 0x0, 0x2}, {0x0, 0x4, 0x1, 0x0, 0x0, 0x9}, {0x1ff, 0xffffffffe, 0x4053e5, 0x20}, 0x6, 0x1, 0x1, 0x0, 0x1, 0x2}, {{@in6=@remote, 0x1, 0x32}, 0x2, @in6=@private0, 0x3502, 0x1, 0x0, 0x0, 0x6, 0xfffffffd}}, 0xe8)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}, 0x9df}, 0x1c)

1.542694738s ago: executing program 7 (id=3265):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x4, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="19000000040000000400000002"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000000000000000000000800000850000007d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10)

1.526322188s ago: executing program 7 (id=3266):
socket$inet_icmp_raw(0x2, 0x3, 0x1)
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x0, @dev}, 0x10)
connect$inet(r0, &(0x7f00000000c0)={0x2, 0x0, @local}, 0x10)
syz_emit_ethernet(0xbe, &(0x7f0000000440)={@broadcast, @dev, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @dest_unreach={0xb, 0x0, 0x0, 0x0, 0x0, 0x0, {0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @dev, @local, {[@rr={0x7, 0x13, 0x0, [@private, @empty, @empty, @private]}, @timestamp_prespec={0x44, 0xc, 0x0, 0x3, 0x0, [{@loopback}]}, @ssrr={0x89, 0xf, 0x0, [@private, @broadcast, @broadcast]}, @timestamp_addr={0x44, 0x4c, 0x0, 0x1, 0x0, [{@initdev={0xac, 0x1e, 0x0, 0x0}}, {@private}, {@rand_addr, 0x3}, {@local}, {@loopback}, {@private}, {@multicast2}, {@broadcast}, {@broadcast}]}, @timestamp={0x44, 0x4}]}}}}}}}, 0x0)

1.511273468s ago: executing program 7 (id=3267):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/tcp_rmem\x00', 0x8, 0x0)
sendfile(r0, r1, 0x0, 0xc0)

1.463678309s ago: executing program 7 (id=3268):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x20000000000000f4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='rss_stat\x00', r1}, 0x18)
syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)

1.37924515s ago: executing program 7 (id=3270):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000080)={0x24, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x22, 0xf, {[@main=@item_4={0x3, 0x0, 0x8, '\t\x00'}, @local=@item_4={0x3, 0x2, 0x0, "93bf0280"}, @main=@item_4={0x3, 0x0, 0x6, "00008000"}]}}, 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
ioctl$HIDIOCGREPORTINFO(r1, 0xc00c4809, &(0x7f00000000c0)={0x1, 0x200, 0x18000})

905.468977ms ago: executing program 2 (id=3287):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r0, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@sack_perm, @timestamp, @mss={0x2, 0x9}, @window={0x3, 0x200, 0xc}, @window={0x3, 0x3, 0xa}, @timestamp, @mss={0x2, 0xc3}, @timestamp], 0x8)
getsockopt$inet_tcp_buf(r0, 0x6, 0xb, 0x0, &(0x7f0000000040))

893.187477ms ago: executing program 2 (id=3288):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
listen(r0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000280)={r1, &(0x7f0000000340), &(0x7f0000000040)=@tcp=r0}, 0x20)
recvmsg(r0, &(0x7f00000009c0)={0x0, 0x0, 0x0}, 0x2000)

880.322807ms ago: executing program 2 (id=3289):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x104, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18040000000000000000000000400000850000000800000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x101a00, 0x0)
fgetxattr(r2, &(0x7f00000002c0)=@known='security.selinux\x00', 0x0, 0x0)

859.210238ms ago: executing program 2 (id=3290):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
ioctl$TUNSETCARRIER(r0, 0x400454e2, &(0x7f0000000280))
ioctl$TUNSETCARRIER(r0, 0x400454e2, &(0x7f0000000640)=0x1)
close(0x3)

821.118688ms ago: executing program 2 (id=3291):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000300)='sys_enter\x00', r1}, 0x10)
rt_sigaction(0x19, 0x0, 0x0, 0x0, 0x0)

807.782478ms ago: executing program 2 (id=3292):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10)
r1 = socket$inet(0x2, 0xa, 0x0)
setsockopt$sock_int(r1, 0x1, 0x2e, &(0x7f0000000180)=0x7b, 0x4)
recvmmsg(r1, &(0x7f00000066c0), 0xa0d, 0x0, 0x0)

710.17459ms ago: executing program 5 (id=3293):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r1, &(0x7f0000000240)={0x0, 0xffffff3d, &(0x7f0000000200)={&(0x7f0000000180)={0x1c, 0x2, 0x3, 0x3, 0x0, 0x0, {0x1}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1, 0x0, 0x1f}}]}, 0x1c}, 0x1, 0x0, 0x0, 0x400c010}, 0x0)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)={0x1c, 0x2, 0x3, 0x3, 0x0, 0x0, {0x0, 0x0, 0x10}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1}}]}, 0x1c}}, 0x0)
sendmsg$NFQNL_MSG_VERDICT(r1, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000b80)={&(0x7f00000000c0)=ANY=[@ANYBLOB="2000000001030108"], 0x20}}, 0x0)

684.153911ms ago: executing program 5 (id=3294):
syz_mount_image$exfat(&(0x7f0000000200), &(0x7f0000000240)='./file0\x00', 0x3000050, &(0x7f0000000600)=ANY=[], 0x2, 0x14fe, &(0x7f0000002180)="$eJzs3Au0ztXWMPA511p/NklPkvuaa/55kssiSXJJSCRJkiS5JSRJkoTEJrckJCH3JPeQ3GIn9/st9yQ5kiQJCUnWN3Q6n/e8nfftnO+c7/V9Z8/fGGvsNff/mfNZa889nv9ljL2/7Ti4av1qlesyM/xT8M9fUgEgBQD6AcA1ABABQKlspbIBDoNMGlP/uTcR/1oPTbvSKxBXkvQ/fZP+p2/S//RN+p++Sf/TN+l/+ib9T9+k/0KkZ1un575WRvod/3PP/0Ge//8/R87//0YOFxvz5fpi13f6B1Kk/+mb9D99k/6nb9L/9E36n75J///NRQCV/pvD0v/0TfovRHp2pZ8/y7iy40r//gkhhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGESB/OhcsMAPxlfqXXJYQQQgghhBBCiH+dkPFKr0AIIYQQQgghhBD/9yEo0GAgggyQEVIgE2SGqyALXA1Z4RpIwLWQDa6D7HA95ICckAtyQx7IC/nAAoEDhhjyQwFIwg1QEG6EQlAYikBR8FAMisNNUAJuhpJwC5SCW6E03AZloCyUg/JwO1SAO6AiVILKcCdUgbugKlSDu6E63AM14F6oCfdBLbgfasMDUAcehLrwENSDh6E+PAIN4FFoCI2gMTSBpv9H+S9CV3gJukF3SIUe0BNehl7QG/pAX+gHr0B/eBUGwGswEAbBYHgdhsAbMBTehGEwHEbAWzASRsFoGANjYRyMh7dhArwDE+FdmASTYQpMhWkwHWbAezATZsFseB/mwAcwF+bBfFgAC+FDWASLIQ0+giXwMSyFZbAcVsBKWAWrYQ2shXWwHjbARtgEm2ELbIVPYBtshx2wE3bBbtgDn8Je+Az2weewH774B/PP/qf8TggIqFChQYMZMAOmYApmxsyYBbNgVsyKCUxgNsyG2TE75sAcmAtzYR7Mg/kwHxISMjLmx/yYxCQWxIJYCAthESyCHj0Wx+JYAm/GklgSS2EpLI2lsQyWxbJYHstjBayAFbEiVsbKWAWrYFWsinfj3XgP1sAaWBNrYi2shbWxNtbBOlgX62I9rIf1sT42wAbYEBtiY2yMTbEpNsNm2BybY0tsia2wFbbG1tgG22BbbIvtsB22x/bYATtgR+yInbAzdsYX8UV8CV/C7lhF9cCe2BN7YS/sg32xL76C/fFVfBVfw4E4CAfj6/g6voFD8QwOw+E4AkdgBTUKR+MYZDUOx+N4nIATcCJOxEk4GSfjVJyG03EGzsCZOAtn4fs4Bz/AD3AezsMFuBAX4iJcjGmYhkvwLC7FZbgcV+BKXIUrcQ2uxTW4HjfgetyEm3ALbsFP8BPcjttxJ+7E3bgbP8VP8TP8DAfiftyPB/AAHsSDeAgP4WE8jEfwCB7Fo3gMj+FxPI4n8CSewpN4Gk/jGTyL5/AcnsfzeAGfz/N1vd2F1w0EdYlRRmVQGVSKSlGZVWaVRWVRWVVWlVAJlU1lU9lVdpVD5VC5VC6VR+VR+VQ+RYoUq1jlV/lVUiVVQVVQFVKFVBFVRHnlVXFVXJVQJVRJVVKVUreq0uo2VUaVVS18eVVeVVAtfUVVSVVWlVUVdZeqqqqpaqq6qq5qqBqqpqqpaqlaqrZ6QNVRPbAPPqQudaa+GoQN1GBsqBqpxqqJegMfU83UUGyuWqiW6gk1HIdha9XMt1FPq7ZqNLZTz6ox+JzqoMZhR/WC6qQ6qy7qRdVVNffdMvz2EaimYi/VW/VRfdVMvEtd6lhV9ZoaqAapwep1tQDfUEPVm2qYGq5GqLfUSDVKjVZj1Fg1To1Xb6sJ6h01Ub2rJqnJaoqaqqap6WqGek/NVLPUbPW+mqM+UHPVPDVfLVAL1YdqkVqs0tRHaon6WC1Vy9RytUKtVKvUarVGrVXr1Hq1QW1Um9RmtUVtVZ+obWq72qF2ql1qt9qjPlV71Wdqn/pc7VdfqAPqT+qg+lIdUl+pw+prdUR9o46qb9Ux9Z06rr5XJ9RJdUr9oE6rH9UZdVadUz+p8+pndUH9oi6qoECjVlproyOdQWfUKTqTzqyv0ln01TqrvkYn9LU6m75OZ9fX6xw6p86lc+s8Oq/Op60m7TTrWOfXBXRS36AL6ht1IV1YF9FFtdfFdHF9ky6hb9Yl9S26lL5Vl9a36TK6rC6ny+vbdQV9h66oK+nK+k5dRd+lq+pq+m5dXd+ja+h7dU19n66l79e19QO6jn5Q19UP6Xr6YV1fP6Ib6Ed1Q91IN9ZNdFP9mG6mH9fNdQvdUj+hW+kndWv9lG6jn9Zt9TO6nX5Wt9fP6Q76ed1Rv6A76c66i/5FX9RBd9PddaruoXvql3Uv3Vv30X11P/2K7q9f1QP0a3qgHqQH69f1EP2GHqrf1MP0cD1Cv6VH6lF6tB6jx+pxerx+W0/Q7+iJ+l09SU/WU/RUPU1P131+qzT778h/52/kD/j13bforfoTvU1v1zv0Tr1L79Z79B69V+/V+/Q+vV/v1wf0AX1QH9SH9CF9WB/WR/QRfVQf1cf0MX1cH9cn9En9k/5Bn9Y/6jP6rD6rf9Ln9Xl94befARg0ymhjTGQymIwmxWQymc1VJou52mQ115iEudZkM9eZ7OZ6k8PkNLlMbpPH5DX5jDVknGETm/ymgEmaG0xBc6MpZAqbIqao8aaYKW5u+qfz/2h9TU1T08w0M81Nc9PStDStTCvT2rQ2bUwb09a0Ne1MO9PetDcdTAfT0XQ0nUwn08V0MV1NV9PNdDOpJtX0NC+bXqa36WP6mn7mFdPf9DcDzAAz0Aw0g81gM8QMMUPNUDPMDDMjzAgz0ow0o81oM9aMNePNeDPBTDATzUQzyUwyU8wUM81MMzPMDDPTzDSzzWwzx8wxc81cM9/MNwvNQrPILDJpJs0sMUvMUrPMLDMrzAqzyqwya8was86sMxvMBrPJbDJLzVaz1Wwz28wOs8PsMrvMHrPH7DV7zT6zz+w3+80Bc8AcNAfNIXPIHDaHzRFzxBw1R80xc8wcN8fNCXPCnDKnzGlz2pwxZ8w5c86cN+fNBXPBXDQXL132RSpSkYlMlCHKEKVEKVHmKHOUJcoSZY2yRokoEWWLskXZo+ujHFHOKFeUO8oT5Y1SwUYUuYijOMofFYiS0Q1RwejGqFBUOCoSFY18VCwqHt0UlYhujkpGt0Sloluj0tFtUZmobFQuKh/dHlWI7ogqRpWiytGdUZXorqhqVC26O6oe3RPViO6Nakb3RbWi+6Pa0QNRnejBqG70UFQvejiqHz0SNYgejRpGjaLGUZOo6b+0fghncj7uu9nuNtX2sD3ty7aX7W372L62n33F9rev2gH2NTvQDrKD7et2iH3DDrVv2mF2uB1h37Ij7Sg72o6xY+04O96+bSfYd+xE+66dZCfbKXaqnWan2xn2PTvTzrKz7ft2jv3AzrXz7Hy7wC60H9pFdrFNsx/ZJfZju9Qus8vtCrvSrrKr7Rq71q6z6+0Gu9FuspvtFrvVfmK32e12h91pd9nddo/91O61n9l99nO7335hD9g/2YP2S3vIfmUP26/tEfuNPWq/tcfsd/a4/d6esCftKfuDPW1/tGfsWXvO/mTP25/tBfuLvWjDpYv7S6d3MmQoA2WgFEqhzJSZslAWykpZKUEJykbZKDtlpxyUg3JRLspDeSgf5aNLmJjyU35KUpIKUkEqRIWoCBUhT56KU3EqQSWoJJWkUlSKSlNpKkNlqByVo9vpdrqD7qBKVInupDvpLrqLqlE1qk7VqQbVoJpUk2pRLapNtakO1aG6VJfqUT2qT/WpATWghtSQGlNjakpNqRk1o+bUnFpSS2pFrag1taY21IbaUltqR+2oPbWnDtSBOlJH6kSdqAt1oa7UlbpRN0qlVOpJPakX9aI+1If6UT/qT/1pAA2ggTSQBtNgGkJDaCgNpWE0nEbQWzSSRtFoGkNjaRyNp/E0gSbQRJpIk2gSTaEpNI2m0QyaQTNpJs2m2TSH5tBcmkvzaT4tpIW0iBZRGqXRElpCS2kpLafltJJW0mpaTWtpLa2n9bSRNtJm2kxbaStto220g3bQLtpFe2gP7aW9tI/20X7aTwfoAB2kg3SIDtFhOkxH6AgdpaN0jI7RcTpOJ+gEnaJTdJpO0xk6Q+foHJ2nn+kC/UIXKVCKU5DZXeWyuKtdVneNS3GZ3KU4AoBLcS6X2+VxeV0+Z10Ol/OvYnLOFXKFXRFX1HlXzBV3N/0uLuPKunKuvLvdVXB3uIq/i6u7e1wNd6+r6e5z1dzdfxXXcve72u4RV8c96uq6Rq6ea+Lqu0dcA/eoa+gaucauiWvlnnSt3VOujXvatXXP/C5e5Ba7tW6dW+82uL3uM3fO/eSOum/defez6+a6u37uFdffveoGuNfcQDfod/EI95Yb6Ua50W6MG+vG/S6e4qa6aW66m+HeczPdrN/FC92Hbo5Lc3PdPDffLfg1vrSmNPeRW+I+dkvdMrfcrXAr3Sq32q3532td4Ta5zW6L2+M+ddvcdrfD7XS73O5f40v72Oc+d/vdF+6I+8YddF+6Q+6YO+y+/jW+tL9j7jt33H3vTriT7pT7wZ12P7oz7uyv+7+09x/cL+6iCw4YWbFmwxFn4Iycwpk4M1/FWfhqzsrXcIKv5Wx8HWfn6zkH5+RcnJvzcF7Ox5aJHTPHnJ8LcJJv4IJ8IxfiwlyEi7LnYlycb+ISfDOX5Fu4FN/Kpfk2LsNluRyX59u5At/BFbkSV+Y7uUoIXJWr8d1cne/hGnwv1+T7uBbfz7X5Aa7DD3Jdfojr8cNcnx/hBvwoN+RG3JibcFN+jJvx49ycW3BLfoJb8ZPcmp/iNvw0t+VnuB0/y+35Oe7Az3NHfoE7cWfuwi9yV36Ju3F3TuUe3JNf5l7cm/twX+7Hr3B/fpUH8Gs8kAfxYH6dh/AbPJTf5GE8nEfwWzySR/FoHsNjeRyP57d5Ar/DE/ldnsSTeQpP5Wk8nWfwezyTZ/Fsfp/n8Ac8l+fxfF7AC/lDXsSLOY0/4iX8MS/lZbycV/BKXsWreQ2v5XW8njfwRt7Em3kLb+VPeBtv5x28k3fxbt7Dn/Je/oz38ee8n7/gA/wnPshf8iH+ig/z13yEv+Gj/C0f4+/4OH/PJ/gkn+If+DT/yGf4LJ/jn/g8/8wX+Be+yIEhxljFOjZxFGeIM8YpcaY4c3xVnCW+Os4aXxMn4mvjbPF1cfb4+jhHnDPOFeeO88R543yxjSl2McdxnD8uECfjG+KC8Y1xobhwXCQuGvu4WFw8vikuEd8cl4xviUvFt8al49viMnHZ+JH7yse3xxXiO+KKcaW4cnxnXCW+K64aV4vvjqvH98Q14nvjmvF9ccn4/rh2/EBcJ34wrhs/FNeLH47rx4/EDeJH44Zxo7hx3CRuGj8WN4sfj5vHLeKW8RNxq/jJuHX8VNwmfjpuGz/zh8dT4x5xz/jl+OU4hHv1/OSC5MLkh8lFycXJtORHySXJj5NLk8uSy5MrkiuTq5Krk2uSa5PrkuuTG5Ibk5uSm5NbkiFUywgevfLaGx/5DD6jT/GZfGZ/lc/ir/ZZ/TU+4a/12fx1Pru/3ufwOX0un9vn8Xl9Pm89eefZxz6/L+CT/gZf0N/oC/nCvogv6r0v5ov7Jr6pb+qb+cd9c9/Ct/RP+Cf8k/5J/5R/yj/t2/pnfDv/rG/vn/Md/PP+ef+C7+Q7+y7+Rd/Vv+S7+e4+1af6nr6n7+V7+T6+j+/n+/n+vr8f4Af4gX6gH+wH+yF+iB/qh/phfpgf4Uf4kX6kH+1H+7F+rB/vx/sJfoKf6Cf6SX6Sn+Kn+Gl+mp/hZ/iZfqaf7Wf7OYXm+Ll+rp/v5/uFfqFf5Bf5NJ/ml/glfqlf6pf75X6lX+lX+9V+rV/r1/v1fqPf6Df7zX6r3+q3+W1+h9/hd/ldfo/f4/f6vX6f3+f3+/3+gD/gD/qD/pD/yh/2X/sj/ht/1H/rj/nv/HH/vT/hT/pT/gd/2v/oz/iz/pz/yZ/3P/sL/hd/0Qc/PvF2YkLincTExLuJSYnJiSmJqYlpiemJGYn3EjMTsxKzE+8n5iQ+SMxNzEvMTyxILEx8mFiUWJxIS3yUWJL4OLE0sSyxPLEisTKxKhFC3m1xyB8KhGS4IRQMN4ZCoXAoEooGH4qF4uGmUCLcHEqGW0KpcGsoHW4LZULZUC48GhqGRqFxaBKahsdCs/B4aB5ahJbhidAqPBlah6dCm/B0aBueCe3Cs6F9eC50CM+HjuGF0Cl0Dl3Ci6FreCl0C91DaugReoaXQ6/QO/QJfUO/8EroH14NA8JrYWAYFAaH18OQ8EYYGt4Mw8LwMCK8FUaGUWF0GBPGhnFhfHg7TAjvhInh3TApTA5TwtQwLUwPM8J7YWaYFWaH98Oc8EGYG+aF+WFBWBg+DIvC4pAWPgpLwsdhaVgWlocVYWVYFVaHNWFtWBfWhw1hY9gUNoctYWv4JGwL28OOsDPsCrvDnvBp2Bs+C/vC52F/+CIcCH8KB8OX4VD4KhwOX4cj4ZtwNHwbjoXvwvHwfTgRToZT4YdwOvwYzoSz4Vz4KZwPP4cL4ZdwUf5mTQghhBDi76L/4HiPv/G9DACgfpv3BICrt+c+/J9rbszx53lvladVAgCe7t7xob+MKlVSU1N/e+1SDVGBeQCQ+Ov6f4mXQUt4EtpACyjxN9fXW3U+z39QP3krQOb/kJMCl+PL9W/+L+o/9sSIRaXjc9n+m/rzAAoVuJyTCS7Hl+uX/C/q52z2B+vP9OV4gOb/IScLXI4v1y8Oj8Mz0OavXimEEEIIIYQQQvxZb1Wu/R/dP1+6P89jLudkhMvxH92fCyGEEEIIIYQQ4sp7rnOXpx5r06ZF+79vgr89F/jHsmQiE5n8fza50p9MQgghhBBCiH+1yxf9V3olQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCFE+vU/8e/ErvQehRBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCiCvtfwUAAP//luw5aQ==")
sendmsg$BATADV_CMD_GET_ROUTING_ALGOS(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c000000", @ANYBLOB="0000000000006e02587551f5000000000400000008"], 0x1c}}, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000000)={0x0, <r0=>0x0}, 0x8)
r1 = bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000700)=r0, 0x4)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000040)={r1, 0x20, &(0x7f00000000c0)={0x0, 0x0, 0x0, &(0x7f0000002000)=""/4104, 0x1008}}, 0x10)

609.835142ms ago: executing program 5 (id=3297):
syz_mount_image$msdos(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000040)=ANY=[@ANYRES8=0x0], 0xfd, 0x1da, &(0x7f0000000140)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x9080, 0x28)
r1 = inotify_init1(0x0)
inotify_add_watch(r1, &(0x7f0000000080)='./file0/file0\x00', 0x40000211)
ioctl$FITRIM(r0, 0x40047211, &(0x7f0000000100)={0xfffffffd, 0xffffffffffffffff, 0x6})

566.892452ms ago: executing program 5 (id=3299):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001000))
r0 = syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x21085e, &(0x7f0000000280)={[{@journal_dev={'journal_dev', 0x3d, 0x3}}]}, 0x1, 0x516, &(0x7f0000000840)="$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")
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
pselect6(0x40, &(0x7f0000000000)={0x1, 0xfffffffffffffffe, 0x10001, 0x100000003, 0x0, 0xc81, 0x0, 0x1}, 0x0, 0x0, 0x0, 0x0)
fcntl$setpipe(r0, 0x407, 0x2)

400.508204ms ago: executing program 9 (id=3313):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0x8, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000f4751f2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000300)={0x0, 0x2c, &(0x7f00000002c0)={&(0x7f00000004c0)=@newtaction={0x84, 0x30, 0xffff, 0x0, 0x0, {}, [{0x70, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x5c, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x30}]]}, {0x10}, {0xc, 0xb}, {0xc, 0xa}}}]}]}, 0x84}}, 0x0)

371.492825ms ago: executing program 9 (id=3315):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @multicast2}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x22048854, &(0x7f0000000200)={0x2, 0x4e23, @empty}, 0x10)
sendto$inet(r0, &(0x7f00000012c0)='\f&', 0x2, 0x11, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000006c0)=[{{0x0, 0x0, 0x0}, 0x7}], 0x1, 0x40010013, 0x0)

329.654565ms ago: executing program 9 (id=3316):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'ip6tnl0\x00', <r3=>0x0})
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r0, &(0x7f0000001580)={0x0, 0x0, &(0x7f0000001540)={&(0x7f0000001440)={0x20, r1, 0x425, 0x70bd27, 0x25dfdbfe, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x60008000}, 0x40)

329.495416ms ago: executing program 9 (id=3317):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b704000001000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_deliver\x00', r1}, 0x18)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)

329.356376ms ago: executing program 9 (id=3318):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x52)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_deliver\x00', r0}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)

284.542016ms ago: executing program 9 (id=3320):
syz_usb_connect$cdc_ecm(0x0, 0x5a, &(0x7f0000000200)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x0, 0x0, 0xffffffffffff8001, 0x1, [{{0x9, 0x2, 0x48, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x16, 0x2, 0x2, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, [@acm={0x4}]}, {[{}]}}}]}}]}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x1000000000000010, 0x80802, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000b00)=ANY=[@ANYBLOB="480000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800b0001006d61637365630000180002800c0004000200000100c280000500030004"], 0x48}}, 0x0)

232.152917ms ago: executing program 8 (id=3326):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0x7, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
socketpair(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000005c0)={r0, &(0x7f0000000480), &(0x7f0000000580)=@tcp=r1}, 0x20)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000380)={r0, &(0x7f0000000600), &(0x7f00000003c0)=@udp6=r2, 0x1}, 0x20)

232.027987ms ago: executing program 8 (id=3327):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x37, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x6, @void, @value}, 0xa0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x18)
syz_clone(0x42164000, 0x0, 0x0, 0x0, 0x0, 0x0)

72.427389ms ago: executing program 8 (id=3328):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x801, 0x0)
ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f00000001c0)={{}, 'syz1\x00'})
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x5)
ioctl$UI_DEV_SETUP(r0, 0x5501, 0x0)
write$uinput_user_dev(r0, &(0x7f0000000900)={'syz1\x00', {}, 0x37b4, [0xfeff, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0xfff, 0x8, 0x0, 0x0, 0x3, 0xffffffff, 0x0, 0x3, 0x0, 0x20, 0x3, 0x200, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20004], [0x0, 0x0, 0x7, 0xaee, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0xfffffffc, 0x1, 0x8b0, 0x0, 0xfffffffc, 0x0, 0x1, 0x4, 0x0, 0x0, 0x20000000, 0x40000000, 0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x8c, 0x0, 0x0, 0x0, 0x100000, 0x0, 0x0, 0x0, 0xfffffffe, 0x8, 0x0, 0x0, 0x0, 0x80, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0xfffffffc], [0x0, 0x4, 0x0, 0x0, 0xffffffff, 0x1, 0x0, 0x0, 0x0, 0xb78, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000, 0x10000, 0x3, 0x0, 0x520, 0xfffffffc, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0xfffffffc, 0xaf, 0x0, 0x9, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x110, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000005, 0x0, 0x4, 0x2], [0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x1, 0x1, 0x7fff, 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0xfffffffd, 0x0, 0x1, 0x0, 0x3, 0x4, 0xffffffff, 0x4, 0x0, 0x6, 0x0, 0x0, 0x0, 0x100, 0x0, 0x3, 0x3, 0xfffffffd, 0x53591b27, 0x0, 0x0, 0x0, 0x0, 0x8, 0x7, 0x0, 0x0, 0x0, 0x80000000, 0x1000000]}, 0x45c)

53.73609ms ago: executing program 8 (id=3329):
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000140)={0x1})
vmsplice(r1, &(0x7f0000000300)=[{&(0x7f0000000a80)="8665be9b4b", 0x5}], 0x1, 0x8)
write$binfmt_script(r1, &(0x7f00000004c0)={'#! ', './file1'}, 0xb)

260.8µs ago: executing program 8 (id=3330):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000c40)='.\x00', &(0x7f0000000080)='./file0/../file0/../file0/../file0\x00', 0x0, 0x2901090, 0x0)
chroot(&(0x7f00000000c0)='./file0\x00')
mount$incfs(&(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000180), 0x0, 0x0)
pivot_root(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f00000001c0)='./file0/../file0\x00')

0s ago: executing program 8 (id=3331):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000c80)={0x5, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x9}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='percpu_create_chunk\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0xfffffffd, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

kernel console output (not intermixed with test programs):

131] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  109.061495][ T5478] usb 3-1: Using ep0 maxpacket: 8
[  109.067682][ T5478] usb 3-1: config 179 has an invalid interface number: 65 but max is 0
[  109.078118][ T5478] usb 3-1: config 179 has no interface number 0
[  109.084883][ T5478] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  109.096185][ T5478] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  109.107598][ T5478] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  109.119055][ T5478] usb 3-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  109.132484][ T5478] usb 3-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  109.137619][ T5542] loop6: detected capacity change from 0 to 2048
[  109.153092][ T5478] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  109.172335][ T5526] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  109.178154][ T5542] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  109.190282][   T28] audit: type=1400 audit(370.697:1260): avc:  denied  { append } for  pid=5541 comm="syz.6.2190" name="file0" dev="loop6" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  109.214314][ T5131] EXT4-fs (loop6): unmounting filesystem.
[  109.284588][ T5551] syz.5.2193[5551] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  109.284669][ T5551] syz.5.2193[5551] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  109.380243][ T5553] loop1: detected capacity change from 0 to 512
[  109.458719][ T5553] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  109.538390][ T5553] EXT4-fs (loop1): 1 truncate cleaned up
[  109.559956][ T5553] EXT4-fs (loop1): shut down requested (0)
[  109.654601][    C1] xpad 3-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[  109.662921][    C1] xpad 3-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  109.683975][ T5478] usb 3-1: USB disconnect, device number 12
[  110.048232][ T5549] loop6: detected capacity change from 0 to 262144
[  110.071471][ T5549] F2FS-fs (loop6): invalid crc value
[  110.074710][   T28] audit: type=1400 audit(371.577:1261): avc:  denied  { setopt } for  pid=5566 comm="syz.4.2202" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  110.107093][ T5549] F2FS-fs (loop6): Found nat_bits in checkpoint
[  110.145725][ T5549] F2FS-fs (loop6): Start checkpoint disabled!
[  110.157754][   T28] audit: type=1400 audit(371.657:1262): avc:  denied  { mounton } for  pid=5576 comm="syz.1.2204" path="/proc/1084/cgroup" dev="proc" ino=39003 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=file permissive=1
[  110.175280][ T5549] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  110.244586][ T5584] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2207'.
[  110.256099][ T5589] syz.4.2209[5589] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  110.256190][ T5589] syz.4.2209[5589] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  110.258684][ T5588] loop1: detected capacity change from 0 to 512
[  110.328295][ T5597] netlink: 64 bytes leftover after parsing attributes in process `syz.5.2212'.
[  110.362632][   T28] audit: type=1400 audit(371.867:1263): avc:  denied  { write } for  pid=5587 comm="syz.1.2210" name="bus" dev="loop1" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  110.390606][ T5588] EXT4-fs error (device loop1): ext4_get_first_dir_block:3594: inode #12: comm syz.1.2210: directory missing '.'
[  110.408201][ T5601] SELinux: failed to load policy
[  110.430901][ T5603] loop2: detected capacity change from 0 to 1024
[  110.437755][ T5603] EXT4-fs: Ignoring removed i_version option
[  110.444423][   T28] audit: type=1400 audit(371.887:1264): avc:  denied  { reparent } for  pid=5587 comm="syz.1.2210" name="file0" dev="loop1" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  110.466813][   T28] audit: type=1400 audit(371.887:1265): avc:  denied  { add_name } for  pid=5587 comm="syz.1.2210" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  110.512444][   T28] audit: type=1400 audit(372.007:1266): avc:  denied  { mounton } for  pid=5602 comm="syz.2.2216" path="/451/bus/bus" dev="loop2" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  110.628548][ T5617] input: syz1 as /devices/virtual/input/input17
[  110.639671][ T5615] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2223'.
[  110.720496][ T5629] loop4: detected capacity change from 0 to 512
[  110.743963][ T5629] EXT4-fs: Ignoring removed nobh option
[  110.756923][ T5629] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[  110.783404][ T5629] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.2228: invalid indirect mapped block 2683928664 (level 1)
[  110.832406][ T5629] EXT4-fs (loop4): 1 truncate cleaned up
[  111.047856][ T5648] loop2: detected capacity change from 0 to 256
[  111.080247][ T5648] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x89cb6648, utbl_chksum : 0xe619d30d)
[  111.111904][ T5650] loop5: detected capacity change from 0 to 1024
[  111.119254][ T5654] loop6: detected capacity change from 0 to 512
[  111.145033][ T5654] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  111.153106][ T5650] EXT4-fs: Ignoring removed orlov option
[  111.177068][ T5650] EXT4-fs (loop5): Test dummy encryption mode enabled
[  111.194861][ T5654] EXT4-fs (loop6): 1 truncate cleaned up
[  111.239835][ T5654] EXT4-fs (loop6): shut down requested (0)
[  111.422970][ T5670] loop4: detected capacity change from 0 to 256
[  111.449405][ T5670] exfat: Deprecated parameter 'namecase'
[  111.498169][ T5670] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d)
[  111.550461][ T5676] loop5: detected capacity change from 0 to 512
[  111.572200][   T28] audit: type=1400 audit(373.067:1267): avc:  denied  { map } for  pid=5669 comm="syz.4.2243" path="/451/file0/cpu.stat" dev="loop4" ino=1048748 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  111.678870][ T5676] EXT4-fs error (device loop5): ext4_get_first_dir_block:3594: inode #12: comm syz.5.2245: directory missing '.'
[  111.731834][ T5692] netlink: 'syz.6.2254': attribute type 1 has an invalid length.
[  111.754894][ T5692] netlink: 'syz.6.2254': attribute type 2 has an invalid length.
[  111.770660][ T5696] loop5: detected capacity change from 0 to 512
[  111.785615][ T5696] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  111.786723][ T5692] netlink: 'syz.6.2254': attribute type 1 has an invalid length.
[  111.813681][ T5696] EXT4-fs (loop5): 1 truncate cleaned up
[  111.852098][ T5696] EXT4-fs (loop5): shut down requested (0)
[  111.869207][ T5692] netlink: 'syz.6.2254': attribute type 2 has an invalid length.
[  111.991403][ T5713] loop6: detected capacity change from 0 to 512
[  112.025879][ T5713] EXT4-fs: Ignoring removed nomblk_io_submit option
[  112.050005][ T5713] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  112.068319][ T5713] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c01d, mo2=0102]
[  112.079212][ T5713] EXT4-fs (loop6): couldn't mount RDWR because of unsupported optional features (80)
[  112.089140][ T5713] EXT4-fs (loop6): Skipping orphan cleanup due to unknown ROCOMPAT features
[  112.155450][   T28] audit: type=1400 audit(373.657:1268): avc:  denied  { view } for  pid=5718 comm="syz.6.2265" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[  112.191193][ T5721] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2266'.
[  112.191626][  T861] usb 5-1: new full-speed USB device number 14 using dummy_hcd
[  112.421901][  T861] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  112.440172][  T861] usb 5-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  112.451687][  T861] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  112.483082][  T861] usb 5-1: config 0 descriptor??
[  112.488525][ T5705] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  112.844832][   T28] audit: type=1400 audit(374.347:1269): avc:  denied  { getopt } for  pid=5742 comm="syz.1.2275" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  112.906647][  T861] hid-generic 0003:04F3:0755.001D: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.4-1/input0
[  113.107796][  T861] usb 5-1: USB disconnect, device number 14
[  113.194483][ T5763] loop1: detected capacity change from 0 to 128
[  113.211374][ T5763] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  113.221871][ T5765] loop6: detected capacity change from 0 to 256
[  113.240585][ T5763] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  113.251735][ T5765] exFAT-fs (loop6): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d)
[  113.308066][   T43] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  113.399669][ T5776] loop1: detected capacity change from 0 to 128
[  113.533743][ T5791] loop2: detected capacity change from 0 to 1024
[  113.587022][ T5791] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  113.617192][ T5791] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 65 with error 28
[  113.629675][ T5791] EXT4-fs (loop2): This should not happen!! Data will be lost
[  113.629675][ T5791] 
[  113.639701][ T5791] EXT4-fs (loop2): Total free blocks count 0
[  113.645857][ T5791] EXT4-fs (loop2): Free/Dirty block details
[  113.652085][ T5791] EXT4-fs (loop2): free_blocks=4293918720
[  113.659334][ T5791] EXT4-fs (loop2): dirty_blocks=80
[  113.666108][ T5791] EXT4-fs (loop2): Block reservation details
[  113.669097][ T5805] loop4: detected capacity change from 0 to 256
[  113.672213][ T5791] EXT4-fs (loop2): i_reserved_data_blocks=5
[  113.739359][ T5814] loop6: detected capacity change from 0 to 256
[  113.763784][ T5817] syz.1.2307[5817] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  113.763877][ T5817] syz.1.2307[5817] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  113.803589][ T5814] exFAT-fs (loop6): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x89cb6648, utbl_chksum : 0xe619d30d)
[  114.054330][ T5837] loop6: detected capacity change from 0 to 1024
[  114.071501][  T305] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  114.085152][ T5837] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  114.100854][ T5837] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 65 with error 28
[  114.113323][ T5837] EXT4-fs (loop6): This should not happen!! Data will be lost
[  114.113323][ T5837] 
[  114.123315][ T5837] EXT4-fs (loop6): Total free blocks count 0
[  114.129495][ T5837] EXT4-fs (loop6): Free/Dirty block details
[  114.136080][ T5837] EXT4-fs (loop6): free_blocks=4293918720
[  114.142182][ T5837] EXT4-fs (loop6): dirty_blocks=80
[  114.147360][ T5837] EXT4-fs (loop6): Block reservation details
[  114.153874][ T5837] EXT4-fs (loop6): i_reserved_data_blocks=5
[  114.196479][ T5843] loop6: detected capacity change from 0 to 512
[  114.215282][ T5843] EXT4-fs: Ignoring removed nobh option
[  114.239323][ T5846] loop4: detected capacity change from 0 to 1024
[  114.247390][ T5846] EXT4-fs: Ignoring removed i_version option
[  114.254182][ T5846] EXT4-fs (loop4): Test dummy encryption mode enabled
[  114.265449][  T305] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  114.277256][ T5846] fscrypt: AES-256-XTS using blk-crypto-fallback
[  114.277302][  T305] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  114.284020][  T305] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  114.306963][  T305] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  114.316309][  T305] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  114.325118][  T305] usb 2-1: config 0 descriptor??
[  114.361507][ T2519] bridge0: port 3(syz_tun) entered disabled state
[  114.370421][ T2519] device syz_tun left promiscuous mode
[  114.377310][ T2519] bridge0: port 3(syz_tun) entered disabled state
[  114.585440][ T5856] loop6: detected capacity change from 0 to 40427
[  114.593087][ T5856] F2FS-fs (loop6): Insane cp_payload (553648128 >= 504)
[  114.600196][ T5856] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  114.608770][ T5856] F2FS-fs (loop6): fault_injection options not supported
[  114.616025][ T5856] F2FS-fs (loop6): fault_type options not supported
[  114.633070][ T5856] F2FS-fs (loop6): invalid crc value
[  114.644407][ T5856] F2FS-fs (loop6): Found nat_bits in checkpoint
[  114.664982][ T5858] bridge0: port 1(bridge_slave_0) entered blocking state
[  114.673431][ T5858] bridge0: port 1(bridge_slave_0) entered disabled state
[  114.681043][ T5858] device bridge_slave_0 entered promiscuous mode
[  114.690290][ T5858] bridge0: port 2(bridge_slave_1) entered blocking state
[  114.692213][ T5856] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  114.697520][ T5858] bridge0: port 2(bridge_slave_1) entered disabled state
[  114.704579][ T5856] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  114.712543][ T5858] device bridge_slave_1 entered promiscuous mode
[  114.733039][  T305] plantronics 0003:047F:FFFF.001E: unknown main item tag 0x0
[  114.754738][  T305] plantronics 0003:047F:FFFF.001E: unknown main item tag 0x0
[  114.770115][  T305] plantronics 0003:047F:FFFF.001E: unknown main item tag 0x0
[  114.783313][  T305] plantronics 0003:047F:FFFF.001E: unknown main item tag 0x0
[  114.791627][ T5131] syz-executor: attempt to access beyond end of device
[  114.791627][ T5131] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  114.810658][  T305] plantronics 0003:047F:FFFF.001E: unknown main item tag 0x0
[  114.818161][  T305] plantronics 0003:047F:FFFF.001E: unknown main item tag 0x0
[  114.844552][  T305] plantronics 0003:047F:FFFF.001E: No inputs registered, leaving
[  114.863088][  T305] plantronics 0003:047F:FFFF.001E: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  114.964034][ T5858] bridge0: port 2(bridge_slave_1) entered blocking state
[  114.971201][ T5858] bridge0: port 2(bridge_slave_1) entered forwarding state
[  114.978507][ T5858] bridge0: port 1(bridge_slave_0) entered blocking state
[  114.985573][ T5858] bridge0: port 1(bridge_slave_0) entered forwarding state
[  115.025537][  T315] device bridge_slave_1 left promiscuous mode
[  115.032249][  T315] bridge0: port 2(bridge_slave_1) entered disabled state
[  115.043244][   T10] Bluetooth: hci0: Frame reassembly failed (-84)
[  115.051302][  T315] device bridge_slave_0 left promiscuous mode
[  115.058139][  T315] bridge0: port 1(bridge_slave_0) entered disabled state
[  115.066858][  T315] device veth1_macvtap left promiscuous mode
[  115.073246][  T315] device veth0_vlan left promiscuous mode
[  115.216929][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  115.224850][   T10] bridge0: port 1(bridge_slave_0) entered disabled state
[  115.237182][   T10] bridge0: port 2(bridge_slave_1) entered disabled state
[  115.255315][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  115.263732][   T10] bridge0: port 1(bridge_slave_0) entered blocking state
[  115.270799][   T10] bridge0: port 1(bridge_slave_0) entered forwarding state
[  115.284977][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  115.293500][   T10] bridge0: port 2(bridge_slave_1) entered blocking state
[  115.300585][   T10] bridge0: port 2(bridge_slave_1) entered forwarding state
[  115.315150][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  115.332349][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  115.340776][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  115.355403][ T5858] device veth0_vlan entered promiscuous mode
[  115.363007][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  115.371145][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  115.378932][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  115.391200][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  115.400139][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  115.410013][ T5858] device veth1_macvtap entered promiscuous mode
[  115.425947][ T4627] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  115.434356][ T4627] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  115.442942][ T4627] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  115.473305][ T4627] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  115.481947][ T4627] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  115.615817][ T5894] loop6: detected capacity change from 0 to 8192
[  115.862561][ T5903] loop2: detected capacity change from 0 to 1024
[  115.870266][ T5903] EXT4-fs: Ignoring removed bh option
[  115.884967][ T5903] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  115.953023][ T5903] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3841: comm syz.2.2335: Allocating blocks 481-513 which overlap fs metadata
[  115.972864][ T5902] EXT4-fs (loop2): pa ffff888117550000: logic 16, phys. 177, len 21
[  115.980935][ T5902] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:4881: group 0, free 0, pa_free 2
[  116.071839][ T5910] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=3 sclass=netlink_route_socket pid=5910 comm=syz.2.2338
[  116.590866][ T5917] loop1: detected capacity change from 0 to 1024
[  116.636140][ T5917] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  116.651628][ T5917] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 65 with error 28
[  116.665150][ T5917] EXT4-fs (loop1): This should not happen!! Data will be lost
[  116.665150][ T5917] 
[  116.675151][ T5917] EXT4-fs (loop1): Total free blocks count 0
[  116.681182][ T5917] EXT4-fs (loop1): Free/Dirty block details
[  116.687902][ T5917] EXT4-fs (loop1): free_blocks=4293918720
[  116.706143][ T5917] EXT4-fs (loop1): dirty_blocks=80
[  116.715146][ T5917] EXT4-fs (loop1): Block reservation details
[  116.721502][ T5917] EXT4-fs (loop1): i_reserved_data_blocks=5
[  116.809502][   T28] audit: type=1400 audit(378.307:1270): avc:  denied  { mount } for  pid=5933 comm="syz.2.2350" name="/" dev="devtmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  116.850347][   T28] audit: type=1400 audit(378.327:1271): avc:  denied  { mounton } for  pid=5933 comm="syz.2.2350" path="/473/file0" dev="devtmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=dir permissive=1
[  116.882554][  T295] usb 2-1: USB disconnect, device number 11
[  117.047287][ T5956] loop1: detected capacity change from 0 to 256
[  117.061918][ T5956] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  117.091625][  T385] Bluetooth: hci0: command 0x1003 tx timeout
[  117.097853][   T45] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  117.144631][ T5966] xt_hashlimit: size too large, truncated to 1048576
[  117.245333][ T5972] loop1: detected capacity change from 0 to 1024
[  117.259892][ T5972] EXT4-fs: Ignoring removed i_version option
[  117.267170][ T5972] EXT4-fs (loop1): Test dummy encryption mode enabled
[  117.359922][ T5979] loop5: detected capacity change from 0 to 1024
[  117.371904][ T5979] EXT4-fs: Ignoring removed i_version option
[  117.378390][ T5979] EXT4-fs: Ignoring removed mblk_io_submit option
[  117.385098][ T5979] EXT4-fs: Ignoring removed nobh option
[  117.390837][ T5979] EXT4-fs: Ignoring removed bh option
[  117.403201][ T5979] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  117.535637][ T5991] netlink: 96 bytes leftover after parsing attributes in process `syz.2.2378'.
[  117.546620][   T28] audit: type=1400 audit(379.047:1272): avc:  denied  { bind } for  pid=5990 comm="syz.5.2377" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  117.777998][ T6001] bridge0: port 1(bridge_slave_0) entered blocking state
[  117.778018][ T6001] bridge0: port 1(bridge_slave_0) entered disabled state
[  117.778485][ T6001] device bridge_slave_0 entered promiscuous mode
[  117.781414][ T6001] bridge0: port 2(bridge_slave_1) entered blocking state
[  117.806685][ T6001] bridge0: port 2(bridge_slave_1) entered disabled state
[  117.807209][ T6001] device bridge_slave_1 entered promiscuous mode
[  117.971240][ T6001] bridge0: port 2(bridge_slave_1) entered blocking state
[  117.971264][ T6001] bridge0: port 2(bridge_slave_1) entered forwarding state
[  117.971348][ T6001] bridge0: port 1(bridge_slave_0) entered blocking state
[  117.971363][ T6001] bridge0: port 1(bridge_slave_0) entered forwarding state
[  118.021422][ T4627] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  118.021935][ T4627] bridge0: port 1(bridge_slave_0) entered disabled state
[  118.022249][ T4627] bridge0: port 2(bridge_slave_1) entered disabled state
[  118.026153][ T4627] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  118.026335][ T4627] bridge0: port 1(bridge_slave_0) entered blocking state
[  118.026350][ T4627] bridge0: port 1(bridge_slave_0) entered forwarding state
[  118.027692][ T4627] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  118.027872][ T4627] bridge0: port 2(bridge_slave_1) entered blocking state
[  118.027886][ T4627] bridge0: port 2(bridge_slave_1) entered forwarding state
[  118.043645][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  118.046779][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  118.060539][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  118.169883][ T6001] device veth0_vlan entered promiscuous mode
[  118.176855][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  118.177320][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  118.177580][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  118.185799][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  118.224234][ T6001] device veth1_macvtap entered promiscuous mode
[  118.229672][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  118.258789][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  118.343839][ T6025] block device autoloading is deprecated and will be removed.
[  118.409412][ T6000] loop2: detected capacity change from 0 to 131072
[  118.430817][ T6000] F2FS-fs (loop2): invalid crc value
[  118.431704][  T295] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  118.445900][ T6000] F2FS-fs (loop2): Found nat_bits in checkpoint
[  118.517621][ T6000] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  118.631513][  T295] usb 7-1: Using ep0 maxpacket: 16
[  118.637819][  T295] usb 7-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  118.648741][  T295] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  118.661074][  T295] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[  118.672316][  T295] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  118.681552][  T295] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  118.695554][  T295] usb 7-1: Product: syz
[  118.705311][  T295] usb 7-1: Manufacturer: syz
[  118.709986][  T295] usb 7-1: SerialNumber: syz
[  118.741656][ T6041] loop5: detected capacity change from 0 to 256
[  118.764462][ T6041] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x46ae1815, utbl_chksum : 0xe619d30d)
[  118.782792][ T6041] exFAT-fs (loop5): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  118.813567][ T6041] exFAT-fs (loop5): error, invalid access to FAT free cluster (entry 0x00000006)
[  118.823183][ T6041] exFAT-fs (loop5): Filesystem has been set read-only
[  118.881241][   T28] audit: type=1400 audit(380.377:1273): avc:  denied  { map } for  pid=6046 comm="syz.2.2399" path="/dev/binderfs/binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  119.081619][ T6074] xt_hashlimit: size too large, truncated to 1048576
[  119.083482][ T6075] loop2: detected capacity change from 0 to 256
[  119.111119][ T6075] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d)
[  119.121672][  T761] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  119.131139][  T295] usb 7-1: 0:2 : does not exist
[  119.149749][   T28] audit: type=1400 audit(380.647:1274): avc:  denied  { watch watch_reads } for  pid=6073 comm="syz.2.2412" path="/490/file0/file0" dev="loop2" ino=1048770 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  119.311527][  T761] usb 6-1: Using ep0 maxpacket: 16
[  119.321785][  T761] usb 6-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  119.337334][  T761] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  119.345440][   T28] audit: type=1400 audit(380.837:1275): avc:  denied  { write } for  pid=6083 comm="syz.8.2416" path="socket:[40538]" dev="sockfs" ino=40538 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  119.370354][  T761] usb 6-1: Product: syz
[  119.374616][  T761] usb 6-1: Manufacturer: syz
[  119.379385][  T761] usb 6-1: SerialNumber: syz
[  119.382357][ T6086] loop8: detected capacity change from 0 to 1024
[  119.384915][  T761] r8152-cfgselector 6-1: config 0 descriptor??
[  119.399008][ T6086] EXT4-fs: Ignoring removed orlov option
[  119.432540][ T6086] EXT4-fs error (device loop8): ext4_check_all_de:666: inode #12: block 7: comm syz.8.2417: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=108 fake=0
[  119.556408][ T6097] loop7: detected capacity change from 0 to 128
[  119.600368][  T761] r8152-cfgselector 6-1: Unknown version 0x0000
[  119.607611][  T761] r8152-cfgselector 6-1: Unknown version 0x0000
[  119.615533][  T761] r8152-cfgselector 6-1: USB disconnect, device number 4
[  119.679602][ T6104] loop8: detected capacity change from 0 to 16
[  119.686749][ T6104] erofs: (device loop8): mounted with root inode @ nid 36.
[  119.743412][  T295] usb 7-1: USB disconnect, device number 3
[  121.309475][ T6196] loop5: detected capacity change from 0 to 1024
[  121.318498][ T6196] EXT4-fs: Ignoring removed orlov option
[  121.375031][ T6196] EXT4-fs error (device loop5): ext4_check_all_de:666: inode #12: block 7: comm syz.5.2464: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=108 fake=0
[  121.655354][ T6241] loop6: detected capacity change from 0 to 512
[  121.696215][ T6241] EXT4-fs (loop6): 1 truncate cleaned up
[  121.736821][ T6241] EXT4-fs error (device loop6): ext4_free_branches:1030: inode #13: comm syz.6.2482: invalid indirect mapped block 234881024 (level 0)
[  121.745150][ T6248] raw_sendmsg: syz.5.2485 forgot to set AF_INET. Fix it!
[  121.772197][ T6252] syz.6.2487[6252] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  121.772297][ T6252] syz.6.2487[6252] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  121.958526][ T6269] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[  122.087236][ T6271] loop5: detected capacity change from 0 to 40427
[  122.094308][ T6271] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  122.102253][ T6271] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  122.112735][ T6271] F2FS-fs (loop5): Found nat_bits in checkpoint
[  122.149233][ T6271] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  122.156420][ T6271] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  122.174727][   T28] audit: type=1400 audit(383.677:1276): avc:  denied  { rename } for  pid=6270 comm="syz.5.2496" name="file0" dev="loop5" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  122.196315][   T28] audit: type=1400 audit(383.677:1277): avc:  denied  { reparent } for  pid=6270 comm="syz.5.2496" name="file0" dev="loop5" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  122.218164][   T28] audit: type=1400 audit(383.677:1278): avc:  denied  { remove_name } for  pid=6270 comm="syz.5.2496" name="file2" dev="loop5" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  122.341321][ T6277] loop5: detected capacity change from 0 to 1024
[  122.350923][ T6277] EXT4-fs: Ignoring removed orlov option
[  122.381902][ T6282] overlayfs: invalid origin (000000790066696c6530000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000)
[  123.338569][ T6340] loop6: detected capacity change from 0 to 2048
[  123.548834][ T6355] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Dropping request.  Check SNMP counters.
[  123.608334][ T6365] loop5: detected capacity change from 0 to 512
[  123.618817][ T6365] EXT4-fs: Ignoring removed mblk_io_submit option
[  123.637716][ T6365] EXT4-fs: Ignoring removed mblk_io_submit option
[  123.647776][ T6365] EXT4-fs: Ignoring removed nomblk_io_submit option
[  123.666695][ T6365] EXT4-fs (loop5): Test dummy encryption mode enabled
[  123.673602][ T6365] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  123.686163][ T6365] EXT4-fs (loop5): 1 truncate cleaned up
[  124.174933][ T6387] loop2: detected capacity change from 0 to 1024
[  124.206680][ T6387] EXT4-fs mount: 47 callbacks suppressed
[  124.206700][ T6387] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  124.237415][ T6387] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  124.252882][ T6387] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 27 with max blocks 1 with error 28
[  124.266023][ T6387] EXT4-fs (loop2): This should not happen!! Data will be lost
[  124.266023][ T6387] 
[  124.276233][ T6387] EXT4-fs (loop2): Total free blocks count 0
[  124.282645][ T6387] EXT4-fs (loop2): Free/Dirty block details
[  124.291542][ T6387] EXT4-fs (loop2): free_blocks=4293918720
[  124.297783][ T6387] EXT4-fs (loop2): dirty_blocks=16
[  124.305965][ T6387] EXT4-fs (loop2): Block reservation details
[  124.312120][ T6387] EXT4-fs (loop2): i_reserved_data_blocks=1
[  124.515880][ T4334] EXT4-fs (loop5): unmounting filesystem.
[  124.767414][ T6402] loop8: detected capacity change from 0 to 1024
[  124.780557][ T6402] EXT4-fs: Ignoring removed orlov option
[  124.796668][ T6402] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  124.840575][ T6394] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2048 with error 28
[  124.871101][ T6001] EXT4-fs (loop8): unmounting filesystem.
[  125.026719][ T6419] netlink: 4344 bytes leftover after parsing attributes in process `syz.2.2553'.
[  125.037287][   T28] audit: type=1400 audit(386.537:1279): avc:  denied  { nlmsg_read } for  pid=6418 comm="syz.2.2553" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  125.076931][ T6421] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2554'.
[  125.088080][ T6421] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  125.151562][ T5478] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  125.161417][ T6429] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2559'.
[  125.171322][ T6429] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2559'.
[  125.212327][ T6433] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  125.332871][ T5478] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  125.343860][ T5478] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  125.353655][ T5478] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  125.366604][ T5478] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  125.375671][ T5478] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  125.384397][ T5478] usb 9-1: config 0 descriptor??
[  125.482861][ T6443] overlayfs: missing 'lowerdir'
[  125.516228][ T6447] netlink: 4344 bytes leftover after parsing attributes in process `syz.6.2567'.
[  125.542118][ T6449] input: syz1 as /devices/virtual/input/input21
[  125.620200][ T6452] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2569'.
[  125.748480][  T315] Bluetooth: hci0: Frame reassembly failed (-84)
[  125.756096][  T315] Bluetooth: hci0: Frame reassembly failed (-84)
[  125.793140][ T5478] plantronics 0003:047F:FFFF.001F: unknown main item tag 0x0
[  125.800583][ T5478] plantronics 0003:047F:FFFF.001F: unknown main item tag 0x0
[  125.808081][ T5478] plantronics 0003:047F:FFFF.001F: unknown main item tag 0x0
[  125.815640][ T5478] plantronics 0003:047F:FFFF.001F: unknown main item tag 0x0
[  125.823105][ T5478] plantronics 0003:047F:FFFF.001F: unknown main item tag 0x0
[  125.830513][ T5478] plantronics 0003:047F:FFFF.001F: unknown main item tag 0x0
[  125.838640][ T5478] plantronics 0003:047F:FFFF.001F: No inputs registered, leaving
[  125.853962][ T5478] plantronics 0003:047F:FFFF.001F: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.8-1/input0
[  125.921577][ T6471] loop6: detected capacity change from 0 to 256
[  125.930066][ T6472] overlayfs: missing 'lowerdir'
[  125.930883][ T6471] exFAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  125.946298][ T6471] exFAT-fs (loop6): Medium has reported failures. Some data may be lost.
[  125.956163][ T6471] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  126.599942][ T6492] loop6: detected capacity change from 0 to 512
[  126.618520][ T6492] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended
[  126.633078][ T6492] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem
[  126.642281][ T6492] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  126.650484][ T6492] System zones: 0-2, 18-18, 34-34
[  126.656939][ T6492] EXT4-fs warning (device loop6): ext4_update_dynamic_rev:1087: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  126.678192][ T6492] EXT4-fs (loop6): 1 truncate cleaned up
[  126.683927][ T6492] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  126.740371][ T5131] EXT4-fs (loop6): unmounting filesystem.
[  126.751064][ T6500] loop7: detected capacity change from 0 to 512
[  126.767108][ T6500] EXT4-fs: Ignoring removed mblk_io_submit option
[  126.773706][ T6500] EXT4-fs: Ignoring removed mblk_io_submit option
[  126.780160][ T6500] EXT4-fs: Ignoring removed nomblk_io_submit option
[  126.787129][ T6500] EXT4-fs (loop7): Test dummy encryption mode enabled
[  126.794065][ T6500] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  126.805853][ T6500] EXT4-fs (loop7): 1 truncate cleaned up
[  126.811568][ T6500] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  127.023247][ T6519] loop6: detected capacity change from 0 to 2048
[  127.094292][ T6519]  loop6: p1 < > p4
[  127.098914][ T6519] loop6: p4 size 8388608 extends beyond EOD, truncated
[  127.106020][   T28] audit: type=1400 audit(388.597:1280): avc:  denied  { watch watch_reads } for  pid=6522 comm="syz.2.2599" path="/524/file0" dev="tmpfs" ino=2779 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=sock_file permissive=1
[  127.199360][  T521] udevd[521]: inotify_add_watch(7, /dev/loop6p1, 10) failed: No such file or directory
[  127.210063][  T610] udevd[610]: inotify_add_watch(7, /dev/loop6p4, 10) failed: No such file or directory
[  127.232347][  T307] udevd[307]: inotify_add_watch(7, /dev/loop6p4, 10) failed: No such file or directory
[  127.251872][  T521] udevd[521]: inotify_add_watch(7, /dev/loop6p1, 10) failed: No such file or directory
[  127.255198][ T6534] loop6: detected capacity change from 0 to 1024
[  127.280084][ T6534] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  127.295621][ T6534] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  127.310788][ T6534] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 27 with max blocks 1 with error 28
[  127.323118][ T6534] EXT4-fs (loop6): This should not happen!! Data will be lost
[  127.323118][ T6534] 
[  127.348424][ T6534] EXT4-fs (loop6): Total free blocks count 0
[  127.354859][ T6534] EXT4-fs (loop6): Free/Dirty block details
[  127.360792][ T6534] EXT4-fs (loop6): free_blocks=4293918720
[  127.366777][ T6534] EXT4-fs (loop6): dirty_blocks=16
[  127.372122][ T6534] EXT4-fs (loop6): Block reservation details
[  127.378124][ T6534] EXT4-fs (loop6): i_reserved_data_blocks=1
[  127.707392][ T6539] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 2048 with error 28
[  127.726895][ T5858] EXT4-fs (loop7): unmounting filesystem.
[  127.811512][  T385] Bluetooth: hci0: command 0x1003 tx timeout
[  127.817876][   T45] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  127.931508][  T761] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  127.941893][ T5478] usb 9-1: USB disconnect, device number 2
[  127.973660][ T6552] loop7: detected capacity change from 0 to 40427
[  128.004210][ T6562] loop8: detected capacity change from 0 to 512
[  128.008890][ T6552] F2FS-fs (loop7): Invalid log_blocksize (268), supports only 12
[  128.028567][ T6562] EXT4-fs (loop8): Test dummy encryption mode enabled
[  128.030002][ T6565] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2617'.
[  128.046014][ T6552] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[  128.057346][ T6562] EXT4-fs error (device loop8): ext4_free_branches:1030: inode #13: comm syz.8.2616: invalid indirect mapped block 2185560079 (level 0)
[  128.075213][ T6562] EXT4-fs (loop8): Remounting filesystem read-only
[  128.082661][ T6562] EXT4-fs error (device loop8): ext4_free_branches:1030: inode #13: comm syz.8.2616: invalid indirect mapped block 2683928664 (level 1)
[  128.097240][ T6562] EXT4-fs (loop8): Remounting filesystem read-only
[  128.097674][ T6552] F2FS-fs (loop7): Found nat_bits in checkpoint
[  128.106009][ T6574] syz.5.2620[6574] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  128.114523][ T6562] EXT4-fs (loop8): 1 truncate cleaned up
[  128.115763][  T761] usb 3-1: Using ep0 maxpacket: 16
[  128.126117][ T6562] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  128.156623][ T6574] syz.5.2620[6574] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  128.156631][ T6562] EXT4-fs error (device loop8): ext4_lookup:1858: inode #12: comm syz.8.2616: unexpected EA_INODE flag
[  128.168887][ T6562] EXT4-fs (loop8): Remounting filesystem read-only
[  128.192432][  T761] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  128.206827][ T6562] EXT4-fs error (device loop8): ext4_lookup:1858: inode #12: comm syz.8.2616: unexpected EA_INODE flag
[  128.219671][ T6562] EXT4-fs (loop8): Remounting filesystem read-only
[  128.222001][  T761] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  128.232320][ T6562] EXT4-fs error (device loop8): __ext4_get_inode_loc:4509: comm syz.8.2616: Invalid inode table block 1 in block_group 0
[  128.249013][ T6552] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0
[  128.251714][ T6562] EXT4-fs (loop8): Remounting filesystem read-only
[  128.258680][ T6552] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  128.262831][ T6562] EXT4-fs error (device loop8) in ext4_reserve_inode_write:5916: Corrupt filesystem
[  128.280438][ T6562] EXT4-fs (loop8): Remounting filesystem read-only
[  128.280605][  T761] usb 3-1: New USB device found, idVendor=05ac, idProduct=8241, bcdDevice= 0.00
[  128.287220][ T6562] EXT4-fs error (device loop8): __ext4_new_inode:1350: inode #18: comm syz.8.2616: mark_inode_dirty error
[  128.307884][ T6562] EXT4-fs (loop8): Remounting filesystem read-only
[  128.314465][ T6562] EXT4-fs error (device loop8) in __ext4_new_inode:1352: Corrupt filesystem
[  128.325210][  T761] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  128.335944][ T6562] EXT4-fs (loop8): Remounting filesystem read-only
[  128.348149][ T6562] EXT4-fs error (device loop8): __ext4_get_inode_loc:4509: comm syz.8.2616: Invalid inode table block 1 in block_group 0
[  128.356407][  T761] usb 3-1: config 0 descriptor??
[  128.363916][ T6562] EXT4-fs (loop8): Remounting filesystem read-only
[  128.384287][ T6562] EXT4-fs error (device loop8) in ext4_reserve_inode_write:5916: Corrupt filesystem
[  128.406105][ T6562] EXT4-fs (loop8): Remounting filesystem read-only
[  128.412879][ T6562] EXT4-fs error (device loop8): ext4_evict_inode:279: inode #18: comm syz.8.2616: mark_inode_dirty error
[  128.425222][ T6562] EXT4-fs (loop8): Remounting filesystem read-only
[  128.432006][ T6562] EXT4-fs warning (device loop8): ext4_evict_inode:282: couldn't mark inode dirty (err -117)
[  128.526753][ T6562] EXT4-fs error (device loop8): __ext4_get_inode_loc:4509: comm syz.8.2616: Invalid inode table block 1 in block_group 0
[  128.586845][ T6596] loop8: detected capacity change from 0 to 512
[  128.626005][ T6596] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  128.691685][ T6001] EXT4-fs (loop8): unmounting filesystem.
[  128.699246][   T28] audit: type=1326 audit(391.201:1281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6593 comm="syz.6.2630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f9e38e969 code=0x7ffc0000
[  128.742473][   T28] audit: type=1326 audit(391.201:1282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6593 comm="syz.6.2630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f7f9e32ab39 code=0x7ffc0000
[  128.766285][   T28] audit: type=1326 audit(391.201:1283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6593 comm="syz.6.2630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f7f9e32ab39 code=0x7ffc0000
[  128.792223][   T28] audit: type=1326 audit(391.201:1284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6593 comm="syz.6.2630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f7f9e32ab39 code=0x7ffc0000
[  128.817304][  T761] appleir 0003:05AC:8241.0020: unknown main item tag 0x0
[  128.825861][  T761] appleir 0003:05AC:8241.0020: unknown main item tag 0x0
[  128.841485][  T761] appleir 0003:05AC:8241.0020: unknown main item tag 0x0
[  128.850932][  T761] appleir 0003:05AC:8241.0020: unknown main item tag 0x0
[  128.858093][  T761] appleir 0003:05AC:8241.0020: unknown main item tag 0x0
[  128.865368][   T28] audit: type=1326 audit(391.201:1285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6593 comm="syz.6.2630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f7f9e32ab39 code=0x7ffc0000
[  128.901594][  T761] appleir 0003:05AC:8241.0020: No inputs registered, leaving
[  128.912148][   T28] audit: type=1326 audit(391.201:1286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6593 comm="syz.6.2630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f7f9e32ab39 code=0x7ffc0000
[  128.935710][  T761] appleir 0003:05AC:8241.0020: hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:8241] on usb-dummy_hcd.2-1/input0
[  128.988455][   T28] audit: type=1326 audit(391.201:1287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6593 comm="syz.6.2630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f7f9e32ab39 code=0x7ffc0000
[  129.022136][   T28] audit: type=1326 audit(391.201:1288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6593 comm="syz.6.2630" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f7f9e32ab39 code=0x7ffc0000
[  129.128789][ T6627] netlink: 'syz.8.2642': attribute type 8 has an invalid length.
[  129.154440][  T761] usb 3-1: USB disconnect, device number 13
[  129.199048][ T6633] xt_bpf: check failed: parse error
[  129.448722][ T6654] netlink: 'syz.7.2656': attribute type 8 has an invalid length.
[  129.511532][ T5478] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  129.561638][ T6659] xt_bpf: check failed: parse error
[  129.565998][ T6661] loop6: detected capacity change from 0 to 512
[  129.595603][ T6661] EXT4-fs: Ignoring removed mblk_io_submit option
[  129.602462][ T6661] EXT4-fs: Ignoring removed mblk_io_submit option
[  129.609079][ T6661] EXT4-fs: Ignoring removed nomblk_io_submit option
[  129.616026][ T6661] EXT4-fs (loop6): Test dummy encryption mode enabled
[  129.622919][ T6661] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  129.635595][ T6661] EXT4-fs (loop6): 1 truncate cleaned up
[  129.641269][ T6661] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  129.712758][ T5478] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  129.728087][ T5478] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  129.753018][ T5478] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  129.769881][ T5478] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  129.787398][ T5478] usb 9-1: config 0 descriptor??
[  129.840255][ T6671] loop2: detected capacity change from 0 to 40427
[  129.854302][ T6671] F2FS-fs (loop2): invalid crc value
[  129.903749][ T6671] F2FS-fs (loop2): Found nat_bits in checkpoint
[  129.951630][ T6671] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4
[  130.016294][ T6666] loop7: detected capacity change from 0 to 40427
[  130.067348][ T6666] F2FS-fs (loop7): Invalid log_blocksize (268), supports only 12
[  130.084202][ T6666] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[  130.102004][ T6666] F2FS-fs (loop7): Found nat_bits in checkpoint
[  130.166746][   T28] kauditd_printk_skb: 1715 callbacks suppressed
[  130.166764][   T28] audit: type=1400 audit(392.671:3004): avc:  denied  { relabelfrom } for  pid=6683 comm="syz.2.2666" name="NETLINK" dev="sockfs" ino=43812 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  130.224928][   T28] audit: type=1400 audit(392.671:3005): avc:  denied  { relabelto } for  pid=6683 comm="syz.2.2666" name="NETLINK" dev="sockfs" ino=43812 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=netlink_netfilter_socket permissive=1
[  130.251252][ T5478] plantronics 0003:047F:FFFF.0021: unknown main item tag 0x0
[  130.259500][ T6666] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0
[  130.267086][ T5478] plantronics 0003:047F:FFFF.0021: No inputs registered, leaving
[  130.275003][ T6666] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  130.287714][ T5478] plantronics 0003:047F:FFFF.0021: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.8-1/input0
[  130.345425][ T6666] syz.7.2662: attempt to access beyond end of device
[  130.345425][ T6666] loop7: rw=2049, sector=77824, nr_sectors = 840 limit=40427
[  130.371878][ T6679] loop5: detected capacity change from 0 to 40427
[  130.391803][ T6679] F2FS-fs (loop5): fault_injection options not supported
[  130.401141][ T6679] F2FS-fs (loop5): invalid crc value
[  130.456126][ T6679] F2FS-fs (loop5): Found nat_bits in checkpoint
[  130.533335][  T861] usb 9-1: USB disconnect, device number 3
[  130.597174][ T6686] loop2: detected capacity change from 0 to 40427
[  130.608622][ T6686] F2FS-fs (loop2): Invalid log sectors per block(0) log sectorsize(9)
[  130.617069][ T6686] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  130.621561][ T6679] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  130.641660][ T6686] F2FS-fs (loop2): invalid crc value
[  130.663251][ T5131] EXT4-fs (loop6): unmounting filesystem.
[  130.697142][ T6686] F2FS-fs (loop2): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 10241044815247771109)
[  130.779056][ T6679] F2FS-fs (loop5): access invalid blkaddr:3
[  130.786448][ T6686] F2FS-fs (loop2): Start checkpoint disabled!
[  130.795320][ T6679] CPU: 1 PID: 6679 Comm: syz.5.2665 Not tainted 6.1.138-syzkaller-00046-gdb710ea87c32 #0
[  130.805183][ T6679] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  130.815284][ T6679] Call Trace:
[  130.818600][ T6679]  <TASK>
[  130.821543][ T6679]  __dump_stack+0x21/0x24
[  130.825907][ T6679]  dump_stack_lvl+0xee/0x150
[  130.830528][ T6679]  ? __cfi_dump_stack_lvl+0x8/0x8
[  130.835581][ T6679]  ? __cfi_f2fs_get_dnode_of_data+0x10/0x10
[  130.841514][ T6679]  ? kernel_text_address+0xa0/0xd0
[  130.846661][ T6679]  ? __kernel_text_address+0xd/0x30
[  130.851887][ T6679]  dump_stack+0x15/0x24
[  130.856162][ T6679]  __f2fs_is_valid_blkaddr+0xda6/0x1460
[  130.861740][ T6679]  f2fs_is_valid_blkaddr+0x23/0x30
[  130.866885][ T6679]  f2fs_map_blocks+0xc93/0x3a60
[  130.871886][ T6679]  ? __cfi_f2fs_map_blocks+0x10/0x10
[  130.877222][ T6679]  ? _raw_spin_unlock_irqrestore+0x5a/0x80
[  130.883072][ T6679]  ? rwsem_write_trylock+0x130/0x300
[  130.888484][ T6679]  ? __cfi___wake_up+0x10/0x10
[  130.893285][ T6679]  ? kvm_sched_clock_read+0x18/0x40
[  130.898609][ T6679]  ? __cfi_sched_clock_cpu+0x10/0x10
[  130.903929][ T6679]  f2fs_precache_extents+0x18c/0x260
[  130.909253][ T6679]  ? __kasan_check_write+0x14/0x20
[  130.914406][ T6679]  ? __cfi_f2fs_precache_extents+0x10/0x10
[  130.920254][ T6679]  __f2fs_ioctl+0x1063/0xbdd0
[  130.924965][ T6679]  ? memcpy+0x56/0x70
[  130.928984][ T6679]  ? avc_has_extended_perms+0x95f/0xdc0
[  130.934565][ T6679]  ? __cfi_avc_has_extended_perms+0x10/0x10
[  130.940496][ T6679]  ? release_firmware_map_entry+0x194/0x194
[  130.946435][ T6679]  ? do_vfs_ioctl+0xc36/0x1c80
[  130.951252][ T6679]  ? __ia32_compat_sys_ioctl+0x790/0x790
[  130.956937][ T6679]  ? f2fs_ioctl+0x240/0x240
[  130.961480][ T6679]  ? futex_unqueue+0x132/0x160
[  130.965845][ T6696] loop7: detected capacity change from 0 to 40427
[  130.966278][ T6679]  ? wake_up_q+0x105/0x1b0
[  130.976837][ T6696] F2FS-fs (loop7): Invalid log_blocksize (268), supports only 12
[  130.977113][ T6679]  ? __cfi_futex_wait+0x10/0x10
[  130.985352][ T6696] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[  130.989769][ T6679]  ? ioctl_has_perm+0x391/0x4c0
[  131.002830][ T6679]  ? has_cap_mac_admin+0x330/0x330
[  131.007995][ T6679]  ? slab_free_freelist_hook+0xc2/0x190
[  131.013590][ T6679]  ? do_futex+0x2dc/0x420
[  131.017975][ T6679]  ? selinux_file_ioctl+0x377/0x480
[  131.023206][ T6679]  ? __cfi_do_futex+0x10/0x10
[  131.027931][ T6679]  ? __cfi_selinux_file_ioctl+0x10/0x10
[  131.033514][ T6679]  ? __fget_files+0x2d5/0x330
[  131.038239][ T6679]  f2fs_ioctl+0x149/0x240
[  131.042691][ T6679]  ? __cfi_f2fs_ioctl+0x10/0x10
[  131.047582][ T6679]  __se_sys_ioctl+0x12f/0x1b0
[  131.052304][ T6679]  __x64_sys_ioctl+0x7b/0x90
[  131.056948][ T6679]  x64_sys_call+0x58b/0x9a0
[  131.061486][ T6679]  do_syscall_64+0x4c/0xa0
[  131.065947][ T6679]  ? clear_bhb_loop+0x15/0x70
[  131.069383][ T6686] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  131.070652][ T6679]  ? clear_bhb_loop+0x15/0x70
[  131.077937][ T6686] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[  131.082346][ T6679]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  131.082403][ T6679] RIP: 0033:0x7fee2178e969
[  131.100341][ T6679] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  131.119972][ T6679] RSP: 002b:00007fee22639038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  131.128429][ T6679] RAX: ffffffffffffffda RBX: 00007fee219b5fa0 RCX: 00007fee2178e969
[  131.136444][ T6679] RDX: 0000000000000000 RSI: 000000000000f50f RDI: 0000000000000004
[  131.144442][ T6679] RBP: 00007fee21810ab1 R08: 0000000000000000 R09: 0000000000000000
[  131.152436][ T6679] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  131.160424][ T6679] R13: 0000000000000000 R14: 00007fee219b5fa0 R15: 00007ffeb702e308
[  131.168415][ T6679]  </TASK>
[  131.176727][    T8] kworker/u4:0: attempt to access beyond end of device
[  131.176727][    T8] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  131.198002][ T6696] F2FS-fs (loop7): Found nat_bits in checkpoint
[  131.379826][ T4334] syz-executor: attempt to access beyond end of device
[  131.379826][ T4334] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  131.497850][ T6696] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0
[  131.526617][ T6696] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  131.736482][ T6732] x_tables: ip6_tables: CT target: only valid in raw table, not ./file0
[  131.760919][ T6736] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2686'.
[  131.871481][  T861] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  131.920986][   T28] audit: type=1326 audit(394.421:3006): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6739 comm="syz.7.2678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9102f2ab39 code=0x7ffc0000
[  131.944508][   T28] audit: type=1326 audit(394.421:3007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6739 comm="syz.7.2678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9102f2ab39 code=0x7ffc0000
[  131.967806][   T28] audit: type=1326 audit(394.421:3008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6739 comm="syz.7.2678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9102f2ab39 code=0x7ffc0000
[  132.000930][   T28] audit: type=1326 audit(394.421:3009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6739 comm="syz.7.2678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9102f2ab39 code=0x7ffc0000
[  132.033428][   T28] audit: type=1326 audit(394.421:3010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6739 comm="syz.7.2678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9102f2ab39 code=0x7ffc0000
[  132.056641][   T28] audit: type=1326 audit(394.421:3011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6739 comm="syz.7.2678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9102f2ab39 code=0x7ffc0000
[  132.081315][ T6755] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2693'.
[  132.091598][  T861] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  132.103169][  T861] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  132.115323][ T6755] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  132.122789][  T861] usb 6-1: New USB device found, idVendor=1d34, idProduct=000a, bcdDevice= 0.00
[  132.134647][   T28] audit: type=1326 audit(394.421:3012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6739 comm="syz.7.2678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9102f2ab39 code=0x7ffc0000
[  132.157627][  T861] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  132.175271][  T861] usb 6-1: config 0 descriptor??
[  132.180424][   T28] audit: type=1326 audit(394.421:3013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=6739 comm="syz.7.2678" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f9102f2ab39 code=0x7ffc0000
[  132.220198][ T6762] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2697'.
[  132.255038][ T6764] loop2: detected capacity change from 0 to 512
[  132.282525][ T6764] EXT4-fs (loop2): Test dummy encryption mode enabled
[  132.310176][ T6764] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  132.334558][ T6764] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00cc018, mo2=0002]
[  132.351507][ T6764] System zones: 1-12
[  132.362541][ T6764] EXT4-fs (loop2): 1 truncate cleaned up
[  132.371677][ T6764] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  132.420027][ T6764] fscrypt: AES-256-XTS using implementation "xts-aes-aesni"
[  132.431811][ T6764] EXT4-fs (loop2): Online defrag not supported for encrypted files
[  132.450006][  T284] EXT4-fs (loop2): unmounting filesystem.
[  132.558310][ T6778] netlink: 96 bytes leftover after parsing attributes in process `syz.2.2703'.
[  132.799498][ T6790] loop2: detected capacity change from 0 to 512
[  132.813521][  T861] hid-led 0003:1D34:000A.0022: hidraw0: USB HID v0.00 Device [HID 1d34:000a] on usb-dummy_hcd.5-1/input0
[  132.822676][ T6790] EXT4-fs: Ignoring removed mblk_io_submit option
[  132.832808][  T861] hid-led 0003:1D34:000A.0022: Dream Cheeky Webmail Notifier initialized
[  132.842368][ T6790] EXT4-fs: Ignoring removed mblk_io_submit option
[  132.861411][ T6790] EXT4-fs (loop2): Test dummy encryption mode enabled
[  132.895043][ T6790] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  132.934954][ T6795] loop8: detected capacity change from 0 to 512
[  132.941864][ T6790] EXT4-fs (loop2): 1 truncate cleaned up
[  132.948460][ T6790] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  132.963623][ T6795] EXT4-fs: Ignoring removed mblk_io_submit option
[  132.977191][ T6795] EXT4-fs: Ignoring removed mblk_io_submit option
[  133.009001][ T6795] EXT4-fs: Ignoring removed nomblk_io_submit option
[  133.021524][  T861] usb 6-1: USB disconnect, device number 5
[  133.046091][  T284] EXT4-fs (loop2): unmounting filesystem.
[  133.054717][ T6795] EXT4-fs (loop8): Test dummy encryption mode enabled
[  133.074227][ T6795] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  133.095566][ T6795] EXT4-fs (loop8): 1 truncate cleaned up
[  133.101346][ T6795] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  134.010443][ T6817] loop6: detected capacity change from 0 to 256
[  134.025408][ T6817] exFAT-fs (loop6): failed to load upcase table (idx : 0x00011d5f, chksum : 0x09863542, utbl_chksum : 0x000cd30d)
[  134.098978][ T6001] EXT4-fs (loop8): unmounting filesystem.
[  134.134284][    T8] Bluetooth: hci0: Frame reassembly failed (-84)
[  134.460759][ T6826] loop5: detected capacity change from 0 to 512
[  134.494630][ T6826] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  134.534490][ T6826] EXT4-fs error (device loop5): ext4_map_blocks:635: inode #2: block 18: comm syz.5.2722: lblock 23 mapped to illegal pblock 18 (length 1)
[  134.550734][ T6826] EXT4-fs error (device loop5): ext4_readdir:263: inode #2: block 12: comm syz.5.2722: path /203/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5066064, rec_len=1, size=2048 fake=0
[  134.573488][ T6826] EXT4-fs error (device loop5): ext4_readdir:263: inode #2: block 13: comm syz.5.2722: path /203/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653246737, rec_len=1, size=2048 fake=0
[  134.595206][ T6826] EXT4-fs error (device loop5): ext4_readdir:263: inode #2: block 14: comm syz.5.2722: path /203/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  134.674568][ T6826] EXT4-fs error (device loop5): ext4_readdir:263: inode #2: block 15: comm syz.5.2722: path /203/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5, rec_len=0, size=2048 fake=0
[  134.710020][ T6826] EXT4-fs error (device loop5): ext4_readdir:263: inode #2: block 16: comm syz.5.2722: path /203/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653245223, rec_len=1, size=2048 fake=0
[  134.779513][ T6826] EXT4-fs error (device loop5): ext4_readdir:263: inode #2: block 17: comm syz.5.2722: path /203/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  134.808398][ T6826] EXT4-fs error (device loop5): ext4_map_blocks:635: inode #2: block 18: comm syz.5.2722: lblock 23 mapped to illegal pblock 18 (length 1)
[  134.834164][ T6826] EXT4-fs error (device loop5): ext4_readdir:263: inode #2: block 19: comm syz.5.2722: path /203/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5, rec_len=0, size=2048 fake=0
[  134.855220][ T6826] EXT4-fs error (device loop5): ext4_readdir:263: inode #2: block 20: comm syz.5.2722: path /203/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  135.402093][ T6861] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=6861 comm=syz.6.2736
[  135.428065][ T4334] EXT4-fs (loop5): unmounting filesystem.
[  135.476293][ T6865] netlink: 104 bytes leftover after parsing attributes in process `syz.5.2737'.
[  135.523737][   T28] kauditd_printk_skb: 7373 callbacks suppressed
[  135.523756][   T28] audit: type=1400 audit(398.031:10387): avc:  denied  { bind } for  pid=6870 comm="syz.5.2741" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  135.540920][ T6873] Bluetooth: hci2: Frame reassembly failed (-84)
[  135.558262][    T8] Bluetooth: hci2: Frame reassembly failed (-84)
[  135.679183][ T6886] loop2: detected capacity change from 0 to 512
[  135.703798][ T6886] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  135.719559][ T6886] EXT4-fs error (device loop2): ext4_map_blocks:635: inode #2: block 18: comm syz.2.2748: lblock 23 mapped to illegal pblock 18 (length 1)
[  135.735440][ T6886] EXT4-fs error (device loop2): ext4_readdir:263: inode #2: block 12: comm syz.2.2748: path /567/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5066064, rec_len=1, size=2048 fake=0
[  135.756482][ T6886] EXT4-fs error (device loop2): ext4_readdir:263: inode #2: block 13: comm syz.2.2748: path /567/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653246737, rec_len=1, size=2048 fake=0
[  135.777622][   T24] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  135.778152][ T6886] EXT4-fs error (device loop2): ext4_readdir:263: inode #2: block 14: comm syz.2.2748: path /567/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  135.805886][ T6886] EXT4-fs error (device loop2): ext4_readdir:263: inode #2: block 15: comm syz.2.2748: path /567/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5, rec_len=0, size=2048 fake=0
[  135.826635][ T6886] EXT4-fs error (device loop2): ext4_readdir:263: inode #2: block 16: comm syz.2.2748: path /567/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653245223, rec_len=1, size=2048 fake=0
[  135.848042][ T6886] EXT4-fs error (device loop2): ext4_readdir:263: inode #2: block 17: comm syz.2.2748: path /567/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  135.868601][ T6886] EXT4-fs error (device loop2): ext4_map_blocks:635: inode #2: block 18: comm syz.2.2748: lblock 23 mapped to illegal pblock 18 (length 1)
[  135.883163][ T6886] EXT4-fs error (device loop2): ext4_readdir:263: inode #2: block 19: comm syz.2.2748: path /567/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5, rec_len=0, size=2048 fake=0
[  135.903902][ T6886] EXT4-fs error (device loop2): ext4_readdir:263: inode #2: block 20: comm syz.2.2748: path /567/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  135.962614][   T24] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  135.974147][   T24] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[  135.983395][   T24] usb 7-1: config 1 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping
[  135.994100][   T24] usb 7-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  136.007942][   T24] usb 7-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  136.023608][   T24] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  136.031948][   T24] usb 7-1: SerialNumber: syz
[  136.211476][ T6874] Bluetooth: hci0: command 0x1003 tx timeout
[  136.211492][   T45] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  136.241473][   T24] usb 7-1: 0:2 : does not exist
[  136.250464][   T24] usb 7-1: unit 5 not found!
[  136.270982][   T24] usb 7-1: USB disconnect, device number 4
[  136.305577][ T6893] netlink: 116 bytes leftover after parsing attributes in process `syz.8.2750'.
[  136.314882][ T6893] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2750'.
[  136.513663][ T6897] loop8: detected capacity change from 0 to 40427
[  136.530082][ T6897] F2FS-fs (loop8): Invalid log_blocksize (268), supports only 12
[  136.538356][ T6897] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[  136.567831][ T6897] F2FS-fs (loop8): Found nat_bits in checkpoint
[  136.584370][  T284] EXT4-fs (loop2): unmounting filesystem.
[  136.617293][ T6897] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[  136.624533][ T6897] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  136.668814][ T6897] syz.8.2752: attempt to access beyond end of device
[  136.668814][ T6897] loop8: rw=2049, sector=77824, nr_sectors = 840 limit=40427
[  136.864404][ T6912] loop2: detected capacity change from 0 to 512
[  136.872293][ T6912] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  136.887576][ T6912] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  136.905701][ T6912] EXT4-fs error (device loop2): ext4_xattr_block_get:546: inode #15: comm syz.2.2757: corrupted xattr block 32
[  136.918135][ T6912] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[  136.927905][ T6912] EXT4-fs error (device loop2): ext4_xattr_block_get:546: inode #15: comm syz.2.2757: corrupted xattr block 32
[  136.940579][ T6912] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[  136.950113][   T28] audit: type=1400 audit(399.451:10388): avc:  denied  { rename } for  pid=6911 comm="syz.2.2757" name="file1" dev="loop2" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  136.966832][ T6912] EXT4-fs error (device loop2): __ext4_new_inode:1285: comm syz.2.2757: failed to insert inode 16: doubly allocated?
[  136.972588][   T28] audit: type=1400 audit(399.451:10389): avc:  denied  { create } for  pid=6911 comm="syz.2.2757" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=chr_file permissive=1
[  137.037360][  T284] EXT4-fs (loop2): unmounting filesystem.
[  137.094073][ T6926] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  137.102168][ T6926] device bridge_slave_0 left promiscuous mode
[  137.108308][ T6926] bridge0: port 1(bridge_slave_0) entered disabled state
[  137.116198][ T6926] device bridge_slave_1 left promiscuous mode
[  137.122386][ T6926] bridge0: port 2(bridge_slave_1) entered disabled state
[  137.166096][ T6929] loop8: detected capacity change from 0 to 512
[  137.181657][  T386] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  137.186433][ T6929] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  137.202902][ T6929] EXT4-fs error (device loop8): ext4_map_blocks:635: inode #2: block 18: comm syz.8.2764: lblock 23 mapped to illegal pblock 18 (length 1)
[  137.219151][ T6929] EXT4-fs error (device loop8): ext4_readdir:263: inode #2: block 12: comm syz.8.2764: path /67/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5066064, rec_len=1, size=2048 fake=0
[  137.240160][ T6929] EXT4-fs error (device loop8): ext4_readdir:263: inode #2: block 13: comm syz.8.2764: path /67/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653246737, rec_len=1, size=2048 fake=0
[  137.261729][ T6929] EXT4-fs error (device loop8): ext4_readdir:263: inode #2: block 14: comm syz.8.2764: path /67/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  137.282298][ T6929] EXT4-fs error (device loop8): ext4_readdir:263: inode #2: block 15: comm syz.8.2764: path /67/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5, rec_len=0, size=2048 fake=0
[  137.302812][ T6929] EXT4-fs error (device loop8): ext4_readdir:263: inode #2: block 16: comm syz.8.2764: path /67/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653245223, rec_len=1, size=2048 fake=0
[  137.324216][ T6929] EXT4-fs error (device loop8): ext4_readdir:263: inode #2: block 17: comm syz.8.2764: path /67/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  137.345203][ T6929] EXT4-fs error (device loop8): ext4_map_blocks:635: inode #2: block 18: comm syz.8.2764: lblock 23 mapped to illegal pblock 18 (length 1)
[  137.359743][ T6929] EXT4-fs error (device loop8): ext4_readdir:263: inode #2: block 19: comm syz.8.2764: path /67/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5, rec_len=0, size=2048 fake=0
[  137.380421][ T6929] EXT4-fs error (device loop8): ext4_readdir:263: inode #2: block 20: comm syz.8.2764: path /67/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  137.571557][  T386] Bluetooth: hci2: command 0x1003 tx timeout
[  137.577620][ T6852] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  137.759027][ T6938] loop5: detected capacity change from 0 to 40427
[  137.773821][ T6938] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  137.789921][ T6938] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  137.800519][ T6938] F2FS-fs (loop5): Found nat_bits in checkpoint
[  137.861581][ T6938] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  137.868711][ T6938] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  137.929132][ T6938] syz.5.2766: attempt to access beyond end of device
[  137.929132][ T6938] loop5: rw=2049, sector=77824, nr_sectors = 840 limit=40427
[  138.027950][ T6951] loop2: detected capacity change from 0 to 512
[  138.043610][ T6952] netlink: 'syz.6.2770': attribute type 12 has an invalid length.
[  138.078718][ T6951] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  138.117920][ T6951] EXT4-fs warning (device loop2): dx_probe:869: inode #2: comm syz.2.2771: Unimplemented hash flags: 0x0001
[  138.161509][ T6951] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.2771: Corrupt directory, running e2fsck is recommended
[  138.176268][ T6951] EXT4-fs error (device loop2): ext4_readdir:263: inode #2: block 3: comm syz.2.2771: path /574/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0
[  138.198381][ T6001] EXT4-fs (loop8): unmounting filesystem.
[  138.406058][ T6973] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2778'.
[  138.636888][ T6969] loop6: detected capacity change from 0 to 40427
[  138.647301][ T6969] F2FS-fs (loop6): fault_injection options not supported
[  138.648190][ T6969] F2FS-fs (loop6): invalid crc value
[  138.649420][ T6969] F2FS-fs (loop6): Found nat_bits in checkpoint
[  138.690050][ T6969] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  138.762017][ T5131] syz-executor: attempt to access beyond end of device
[  138.762017][ T5131] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  138.794834][  T284] EXT4-fs (loop2): unmounting filesystem.
[  138.881521][ T6989] loop5: detected capacity change from 0 to 256
[  138.907090][ T6989] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d)
[  139.023367][ T6997] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  139.023428][ T6997] SELinux: failed to load policy
[  139.266656][ T6991] loop6: detected capacity change from 0 to 40427
[  139.282222][ T6991] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  139.282250][ T6991] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  139.313762][ T6991] F2FS-fs (loop6): Found nat_bits in checkpoint
[  139.359735][ T6991] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  139.359763][ T6991] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  139.410115][ T7030] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  139.422246][ T7030] SELinux: failed to load policy
[  139.438351][ T6991] syz.6.2780: attempt to access beyond end of device
[  139.438351][ T6991] loop6: rw=2049, sector=77824, nr_sectors = 840 limit=40427
[  139.583063][ T7045] netlink: 28 bytes leftover after parsing attributes in process `syz.5.2808'.
[  139.653553][ T7049] loop5: detected capacity change from 0 to 2048
[  139.693401][ T7049] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  139.712655][ T7054] loop8: detected capacity change from 0 to 1024
[  139.747284][ T7054] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  139.763749][ T4334] EXT4-fs (loop5): unmounting filesystem.
[  139.768505][ T7058] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  139.776790][  T761] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  139.786819][ T7058] device bridge_slave_0 left promiscuous mode
[  139.792500][ T7054] EXT4-fs error (device loop8): ext4_map_blocks:745: inode #15: block 1: comm syz.8.2812: lblock 1 mapped to illegal pblock 1 (length 1)
[  139.794841][ T7058] bridge0: port 1(bridge_slave_0) entered disabled state
[  139.809530][ T7054] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 1 with error 117
[  139.830131][ T7054] EXT4-fs (loop8): This should not happen!! Data will be lost
[  139.830131][ T7054] 
[  139.841776][ T7058] device bridge_slave_1 left promiscuous mode
[  139.847964][ T7058] bridge0: port 2(bridge_slave_1) entered disabled state
[  139.874554][ T7054] EXT4-fs error (device loop8): ext4_map_blocks:635: inode #15: block 1: comm syz.8.2812: lblock 1 mapped to illegal pblock 1 (length 1)
[  139.903353][ T7054] EXT4-fs error (device loop8): ext4_map_blocks:745: inode #15: block 2: comm syz.8.2812: lblock 2 mapped to illegal pblock 2 (length 2)
[  139.917283][ T7065] loop5: detected capacity change from 0 to 256
[  139.939668][   T28] audit: type=1400 audit(402.441:10390): avc:  denied  { remount } for  pid=7064 comm="syz.5.2815" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  139.949838][ T7054] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 2 with max blocks 2 with error 117
[  139.979537][ T7054] EXT4-fs (loop8): This should not happen!! Data will be lost
[  139.979537][ T7054] 
[  140.002588][  T761] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  140.013118][ T7067] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  140.018438][  T761] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  140.047280][  T761] usb 3-1: config 1 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping
[  140.049848][ T7067] SELinux: failed to load policy
[  140.058464][  T761] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  140.076816][ T6001] EXT4-fs (loop8): unmounting filesystem.
[  140.083332][  T761] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  140.092811][  T761] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  140.101348][  T761] usb 3-1: SerialNumber: syz
[  140.323130][  T761] usb 3-1: 0:2 : does not exist
[  140.328081][  T761] usb 3-1: unit 5 not found!
[  140.336542][  T761] usb 3-1: USB disconnect, device number 14
[  140.849673][   T28] audit: type=1326 audit(403.351:10391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7072 comm="syz.8.2820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f360c78e969 code=0x7ffc0000
[  140.873722][   T28] audit: type=1326 audit(403.381:10392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7072 comm="syz.8.2820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f360c78e969 code=0x7ffc0000
[  140.974732][   T28] audit: type=1326 audit(403.401:10393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7072 comm="syz.8.2820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f360c78e969 code=0x7ffc0000
[  141.052491][   T28] audit: type=1326 audit(403.401:10394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7072 comm="syz.8.2820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f360c78e969 code=0x7ffc0000
[  141.089370][ T7098] loop5: detected capacity change from 0 to 1024
[  141.138949][   T28] audit: type=1326 audit(403.401:10395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7072 comm="syz.8.2820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f360c78e969 code=0x7ffc0000
[  141.185334][ T7098] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  141.199114][   T28] audit: type=1326 audit(403.401:10396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7072 comm="syz.8.2820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f360c78e969 code=0x7ffc0000
[  141.217424][ T7098] EXT4-fs error (device loop5): ext4_xattr_inode_iget:404: comm syz.5.2832: inode #3882208460: comm syz.5.2832: iget: illegal inode #
[  141.275880][ T7071] loop2: detected capacity change from 0 to 40427
[  141.283285][ T7071] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  141.291055][ T7098] EXT4-fs error (device loop5): ext4_xattr_inode_iget:409: comm syz.5.2832: error while reading EA inode 3882208460 err=-117
[  141.304169][ T7071] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  141.313069][   T28] audit: type=1326 audit(403.401:10397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7072 comm="syz.8.2820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f360c78e969 code=0x7ffc0000
[  141.351963][ T7071] F2FS-fs (loop2): Found nat_bits in checkpoint
[  141.361299][ T7120] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2840'.
[  141.370642][ T7120] netlink: 8 bytes leftover after parsing attributes in process `syz.7.2840'.
[  141.380015][   T28] audit: type=1326 audit(403.401:10398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7072 comm="syz.8.2820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f360c785927 code=0x7ffc0000
[  141.418880][ T4334] EXT4-fs (loop5): unmounting filesystem.
[  141.426949][   T28] audit: type=1326 audit(403.401:10399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7072 comm="syz.8.2820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f360c72ab39 code=0x7ffc0000
[  141.448278][ T7071] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  141.458690][ T7071] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  141.505083][ T7130] loop5: detected capacity change from 0 to 1024
[  141.520405][   T28] audit: type=1326 audit(403.401:10400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7072 comm="syz.8.2820" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f360c78e969 code=0x7ffc0000
[  141.574410][ T7130] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  141.610477][ T7071] syz.2.2817: attempt to access beyond end of device
[  141.610477][ T7071] loop2: rw=2049, sector=77824, nr_sectors = 840 limit=40427
[  141.694692][ T4334] EXT4-fs (loop5): unmounting filesystem.
[  141.840098][   T10] Bluetooth: hci0: Frame reassembly failed (-84)
[  142.021471][ T5478] usb 7-1: new full-speed USB device number 5 using dummy_hcd
[  142.074789][ T7167] loop2: detected capacity change from 0 to 40427
[  142.088415][ T7167] F2FS-fs (loop2): invalid crc value
[  142.094786][ T7169] loop7: detected capacity change from 0 to 40427
[  142.106817][ T7169] F2FS-fs (loop7): Invalid log_blocksize (268), supports only 12
[  142.122227][ T7167] F2FS-fs (loop2): Found nat_bits in checkpoint
[  142.126993][ T7169] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[  142.140851][ T7169] F2FS-fs (loop7): Found nat_bits in checkpoint
[  142.166367][ T7167] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  142.189434][ T7169] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0
[  142.196649][ T7169] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  142.204674][  T284] syz-executor: attempt to access beyond end of device
[  142.204674][  T284] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  142.223787][ T5478] usb 7-1: config 0 has an invalid interface number: 41 but max is 0
[  142.241395][ T5478] usb 7-1: config 0 has no interface number 0
[  142.246357][ T7169] syz.7.2860: attempt to access beyond end of device
[  142.246357][ T7169] loop7: rw=2049, sector=77824, nr_sectors = 840 limit=40427
[  142.247700][ T5478] usb 7-1: config 0 interface 41 has no altsetting 0
[  142.278900][ T5478] usb 7-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[  142.306577][ T5478] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  142.315069][ T5478] usb 7-1: Product: syz
[  142.319248][ T5478] usb 7-1: Manufacturer: syz
[  142.330449][ T5478] usb 7-1: SerialNumber: syz
[  142.339010][ T5478] usb 7-1: config 0 descriptor??
[  142.523127][ T7179] loop2: detected capacity change from 0 to 40427
[  142.533496][ T7179] F2FS-fs (loop2): fault_injection options not supported
[  142.541700][ T7179] F2FS-fs (loop2): invalid crc value
[  142.550744][ T7179] F2FS-fs (loop2): Found nat_bits in checkpoint
[  142.592998][ T7179] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  142.628999][ T7179] syz.2.2861: attempt to access beyond end of device
[  142.628999][ T7179] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  142.650492][  T284] syz-executor: attempt to access beyond end of device
[  142.650492][  T284] loop2: rw=2049, sector=45104, nr_sectors = 16 limit=40427
[  142.932042][ T7215] support for the xor transformation has been removed.
[  143.127772][ T7233] loop2: detected capacity change from 0 to 128
[  143.135073][ T7233] EXT4-fs (loop2): Test dummy encryption mode enabled
[  143.144408][ T7233] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  143.150460][ T5478] CoreChips 7-1:0.41 (unnamed net_device) (uninitialized): sr_get_phy_addr : Error reading PHYID register:ffffffb9
[  143.166321][ T5478] CoreChips: probe of 7-1:0.41 failed with error -71
[  143.177257][ T5478] usb 7-1: USB disconnect, device number 5
[  143.191114][  T284] EXT4-fs (loop2): unmounting filesystem.
[  143.336330][ T7248] loop2: detected capacity change from 0 to 256
[  143.435053][ T7260] loop5: detected capacity change from 0 to 1024
[  143.442184][ T7260] EXT4-fs: Ignoring removed bh option
[  143.460453][ T7260] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  143.497914][ T4334] EXT4-fs (loop5): unmounting filesystem.
[  143.752239][ T7296] loop6: detected capacity change from 0 to 128
[  143.766163][ T7296] EXT4-fs (loop6): Test dummy encryption mode enabled
[  143.774331][ T7296] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  143.827301][ T5131] EXT4-fs (loop6): unmounting filesystem.
[  143.891510][   T45] Bluetooth: hci0: command 0x1003 tx timeout
[  143.897724][ T6852] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  143.980465][ T7323] loop6: detected capacity change from 0 to 1024
[  144.040243][ T7323] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  144.059055][ T7323] EXT4-fs error (device loop6): ext4_xattr_inode_iget:404: comm syz.6.2924: inode #3882208460: comm syz.6.2924: iget: illegal inode #
[  144.073115][ T7323] EXT4-fs error (device loop6): ext4_xattr_inode_iget:409: comm syz.6.2924: error while reading EA inode 3882208460 err=-117
[  144.101497][  T761] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  144.109397][ T5131] EXT4-fs (loop6): unmounting filesystem.
[  144.129993][ T7337] loop5: detected capacity change from 0 to 128
[  144.137932][ T7337] EXT4-fs (loop5): Test dummy encryption mode enabled
[  144.149720][ T7337] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  144.185929][ T7344] device batadv_slave_1 entered promiscuous mode
[  144.188668][ T4334] EXT4-fs (loop5): unmounting filesystem.
[  144.196016][ T7343] device batadv_slave_1 left promiscuous mode
[  144.246075][ T7358] loop6: detected capacity change from 0 to 512
[  144.283367][ T7358] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  144.296569][ T7358] EXT4-fs error (device loop6): ext4_acquire_dquot:6789: comm syz.6.2940: Failed to acquire dquot type 1
[  144.301614][  T761] usb 3-1: Using ep0 maxpacket: 16
[  144.315396][  T761] usb 3-1: config 0 has an invalid interface number: 105 but max is 0
[  144.324113][  T761] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  144.334500][  T761] usb 3-1: config 0 has no interface number 0
[  144.341871][ T5131] EXT4-fs (loop6): unmounting filesystem.
[  144.342916][  T761] usb 3-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28
[  144.356737][  T761] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  144.369162][  T761] usb 3-1: Product: syz
[  144.373673][  T761] usb 3-1: Manufacturer: syz
[  144.378526][  T761] usb 3-1: SerialNumber: syz
[  144.384462][  T761] usb 3-1: config 0 descriptor??
[  144.394599][ T7370] loop6: detected capacity change from 0 to 256
[  144.401704][ T7370] exFAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  144.412442][ T7370] exFAT-fs (loop6): Medium has reported failures. Some data may be lost.
[  144.423868][ T7370] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  144.438344][ T7374] netlink: 20 bytes leftover after parsing attributes in process `syz.8.2946'.
[  144.513977][  T290] hid-generic 0000:0000:0000.0023: unknown main item tag 0x0
[  144.542035][  T290] hid-generic 0000:0000:0000.0023: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  144.624164][  T861] usb 3-1: USB disconnect, device number 15
[  144.690710][ T7380] loop8: detected capacity change from 0 to 40427
[  144.699579][ T7380] F2FS-fs (loop8): Invalid log_blocksize (268), supports only 12
[  144.707705][ T7380] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[  144.718210][ T7380] F2FS-fs (loop8): Found nat_bits in checkpoint
[  144.751939][ T7380] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[  144.759074][ T7380] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  144.943645][ T7412] loop6: detected capacity change from 0 to 512
[  144.951565][ T7412] EXT4-fs (loop6): orphan cleanup on readonly fs
[  144.958342][ T7412] EXT4-fs error (device loop6): ext4_orphan_get:1426: comm syz.6.2959: bad orphan inode 13
[  144.968654][ T7412] ext4_test_bit(bit=12, block=18) = 1
[  144.974149][ T7412] is_bad_inode(inode)=0
[  144.978312][ T7412] NEXT_ORPHAN(inode)=2130706432
[  144.983210][ T7412] max_ino=32
[  144.986410][ T7412] i_nlink=1
[  144.989610][ T7412] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  145.004068][ T7415] loop8: detected capacity change from 0 to 128
[  145.005551][ T7412] EXT4-fs (loop6): warning: mounting fs with errors, running e2fsck is recommended
[  145.022949][ T7415] FAT-fs (loop8): error, corrupted directory (invalid i_start)
[  145.030528][ T7415] FAT-fs (loop8): Filesystem has been set read-only
[  145.032376][ T7412] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.2959: bg 0: block 248: padding at end of block bitmap is not set
[  145.052052][ T7412] EXT4-fs error (device loop6): ext4_acquire_dquot:6789: comm syz.6.2959: Failed to acquire dquot type 1
[  145.063719][ T7412] EXT4-fs warning (device loop6): ext4_enable_quotas:7041: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  145.087380][ T7418] loop8: detected capacity change from 0 to 512
[  145.094982][ T7418] EXT4-fs (loop8): Test dummy encryption mode enabled
[  145.100138][ T5131] EXT4-fs error (device loop6): ext4_lookup:1862: inode #2: comm syz-executor: deleted inode referenced: 12
[  145.101974][ T7418] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  145.114213][ T5131] EXT4-fs error (device loop6): ext4_lookup:1862: inode #2: comm syz-executor: deleted inode referenced: 12
[  145.125154][ T7418] EXT4-fs error (device loop8): ext4_orphan_get:1426: comm syz.8.2962: bad orphan inode 131083
[  145.148630][ T7418] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  145.173073][ T6001] EXT4-fs (loop8): unmounting filesystem.
[  145.300373][ T7439] loop8: detected capacity change from 0 to 512
[  145.315913][ T7439] EXT4-fs error (device loop8): ext4_get_branch:178: inode #13: block 33619980: comm syz.8.2974: invalid block
[  145.334998][ T7439] EXT4-fs error (device loop8): ext4_free_branches:1030: inode #13: comm syz.8.2974: invalid indirect mapped block 10 (level 1)
[  145.348972][ T7439] EXT4-fs error (device loop8): ext4_free_branches:1030: inode #13: comm syz.8.2974: invalid indirect mapped block 8 (level 1)
[  145.363136][ T7439] EXT4-fs (loop8): 1 truncate cleaned up
[  145.368864][ T7439] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  145.405845][ T6001] EXT4-fs (loop8): unmounting filesystem.
[  145.465095][ T7460] loop2: detected capacity change from 0 to 256
[  145.473981][ T7445] bridge0: port 1(bridge_slave_0) entered blocking state
[  145.481205][ T7445] bridge0: port 1(bridge_slave_0) entered disabled state
[  145.491264][ T7460] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x46ae1815, utbl_chksum : 0xe619d30d)
[  145.503736][ T7445] device bridge_slave_0 entered promiscuous mode
[  145.505138][ T7460] exFAT-fs (loop2): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  145.521866][ T7445] bridge0: port 2(bridge_slave_1) entered blocking state
[  145.528975][ T7445] bridge0: port 2(bridge_slave_1) entered disabled state
[  145.542243][ T7445] device bridge_slave_1 entered promiscuous mode
[  145.575994][ T7470] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  145.584096][ T7470] device bridge_slave_0 left promiscuous mode
[  145.590257][ T7470] bridge0: port 1(bridge_slave_0) entered disabled state
[  145.599021][ T7470] device bridge_slave_1 left promiscuous mode
[  145.607932][ T7470] bridge0: port 2(bridge_slave_1) entered disabled state
[  145.673972][ T7445] bridge0: port 2(bridge_slave_1) entered blocking state
[  145.681041][ T7445] bridge0: port 2(bridge_slave_1) entered forwarding state
[  145.688300][ T7445] bridge0: port 1(bridge_slave_0) entered blocking state
[  145.695426][ T7445] bridge0: port 1(bridge_slave_0) entered forwarding state
[  145.723342][   T10] device veth0_vlan left promiscuous mode
[  145.771557][  T295] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[  145.841860][ T4627] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  145.850063][ T4627] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  145.858549][ T4627] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  145.875024][ T7485] loop2: detected capacity change from 0 to 40427
[  145.882984][ T7485] F2FS-fs (loop2): invalid crc value
[  145.888930][ T4627] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  145.897533][ T4627] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  145.898358][ T7485] F2FS-fs (loop2): Found nat_bits in checkpoint
[  145.913928][ T4627] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  145.928575][ T7445] device veth0_vlan entered promiscuous mode
[  145.936438][ T4627] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  145.944863][ T4627] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  145.946462][ T7485] F2FS-fs (loop2): Start checkpoint disabled!
[  145.952805][ T4627] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  145.959305][ T7485] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[  145.972094][  T295] usb 9-1: Using ep0 maxpacket: 16
[  145.978566][ T4627] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  145.988774][ T7445] device veth1_macvtap entered promiscuous mode
[  145.991701][  T295] usb 9-1: config 0 has an invalid interface number: 105 but max is 0
[  146.003685][  T295] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  146.014821][ T4627] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  146.023344][ T4627] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  146.031466][  T295] usb 9-1: config 0 has no interface number 0
[  146.039820][  T295] usb 9-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28
[  146.048967][  T295] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  146.057179][  T295] usb 9-1: Product: syz
[  146.061355][  T295] usb 9-1: Manufacturer: syz
[  146.066049][  T295] usb 9-1: SerialNumber: syz
[  146.073143][  T295] usb 9-1: config 0 descriptor??
[  146.078221][ T4627] kworker/u4:6: attempt to access beyond end of device
[  146.078221][ T4627] loop2: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  146.156403][ T7493] input: syz1 as /devices/virtual/input/input25
[  146.200365][ T7502] loop2: detected capacity change from 0 to 1024
[  146.213322][ T7502] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  146.224182][ T7502] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.2999: bg 0: block 393: padding at end of block bitmap is not set
[  146.238861][ T7502] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 117
[  146.251818][ T7502] EXT4-fs (loop2): This should not happen!! Data will be lost
[  146.251818][ T7502] 
[  146.267712][  T284] EXT4-fs (loop2): unmounting filesystem.
[  146.306229][ T7510] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  146.311339][   T24] usb 9-1: USB disconnect, device number 4
[  146.314850][ T7510] device bridge_slave_0 left promiscuous mode
[  146.326034][ T7510] bridge0: port 1(bridge_slave_0) entered disabled state
[  146.334165][ T7510] device bridge_slave_1 left promiscuous mode
[  146.340288][ T7510] bridge0: port 2(bridge_slave_1) entered disabled state
[  146.544538][ T7530] loop2: detected capacity change from 0 to 1024
[  146.553919][ T7530] EXT4-fs: Ignoring removed bh option
[  146.559738][ T7530] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  146.585312][ T7530] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  146.597844][   T28] kauditd_printk_skb: 13 callbacks suppressed
[  146.597856][   T28] audit: type=1400 audit(409.101:10410): avc:  denied  { mounton } for  pid=7529 comm="syz.2.3012" path="/643/file1/file1" dev="loop2" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  146.602870][ T7530] EXT4-fs (loop2): re-mounted. Quota mode: writeback.
[  146.664346][  T284] EXT4-fs (loop2): unmounting filesystem.
[  147.253030][ T7548] loop2: detected capacity change from 0 to 512
[  147.274405][ T7548] EXT4-fs (loop2): Test dummy encryption mode enabled
[  147.281508][ T7545] support for the xor transformation has been removed.
[  147.288459][ T7548] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  147.312481][ T7548] EXT4-fs error (device loop2): ext4_orphan_get:1426: comm syz.2.3018: bad orphan inode 131083
[  147.324240][ T7548] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  147.377432][  T284] EXT4-fs (loop2): unmounting filesystem.
[  147.466445][ T7549] loop9: detected capacity change from 0 to 40427
[  147.482077][ T7549] F2FS-fs (loop9): Invalid log_blocksize (268), supports only 12
[  147.498362][ T7549] F2FS-fs (loop9): Can't find valid F2FS filesystem in 1th superblock
[  147.542704][ T7549] F2FS-fs (loop9): Found nat_bits in checkpoint
[  147.576007][ T7580] loop5: detected capacity change from 0 to 1024
[  147.601818][ T7580] EXT4-fs: Ignoring removed bh option
[  147.619155][ T7580] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  147.651154][ T7549] F2FS-fs (loop9): Try to recover 1th superblock, ret: 0
[  147.660797][ T7549] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[  147.661215][ T7566] loop2: detected capacity change from 0 to 40427
[  147.680267][ T7580] EXT4-fs (loop5): re-mounted. Quota mode: writeback.
[  147.687731][ T7566] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  147.696882][ T7566] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  147.708389][ T7566] F2FS-fs (loop2): invalid crc value
[  147.728900][ T7564] loop8: detected capacity change from 0 to 40427
[  147.738017][ T7566] F2FS-fs (loop2): Found nat_bits in checkpoint
[  147.750939][ T7549] syz.9.3016: attempt to access beyond end of device
[  147.750939][ T7549] loop9: rw=2049, sector=77824, nr_sectors = 840 limit=40427
[  147.773667][   T28] audit: type=1400 audit(410.281:10411): avc:  denied  { mount } for  pid=7593 comm="syz.7.3035" name="/" dev="bpf" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:bpf_t tclass=filesystem permissive=1
[  147.788058][ T7564] F2FS-fs (loop8): fault_injection options not supported
[  147.819018][ T7566] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  147.826756][ T7564] F2FS-fs (loop8): invalid crc value
[  147.832210][ T7566] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  147.841473][ T7599] loop7: detected capacity change from 0 to 128
[  147.852611][ T7564] F2FS-fs (loop8): Found nat_bits in checkpoint
[  147.875404][ T7599] FAT-fs (loop7): error, corrupted directory (invalid i_start)
[  147.893140][  T315] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  147.901529][ T7599] FAT-fs (loop7): Filesystem has been set read-only
[  147.918010][  T315] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  147.924664][ T7564] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  147.998044][ T6001] syz-executor: attempt to access beyond end of device
[  147.998044][ T6001] loop8: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  148.074071][ T7614] loop7: detected capacity change from 0 to 512
[  148.092062][ T7614] EXT4-fs: Ignoring removed mblk_io_submit option
[  148.101193][ T7614] EXT4-fs: Ignoring removed mblk_io_submit option
[  148.121777][ T7614] EXT4-fs (loop7): Test dummy encryption mode enabled
[  148.128579][ T7614] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  148.152480][ T7619] loop5: detected capacity change from 0 to 512
[  148.171368][ T7619] EXT4-fs (loop5): unsupported inode size: 22272
[  148.173166][ T7614] EXT4-fs (loop7): 1 truncate cleaned up
[  148.177921][ T7619] EXT4-fs (loop5): blocksize: 1024
[  148.245054][ T7628] loop9: detected capacity change from 0 to 1024
[  148.245404][ T7628] EXT4-fs: Ignoring removed bh option
[  148.259327][ T7628] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  148.328763][ T7628] EXT4-fs (loop9): re-mounted. Quota mode: writeback.
[  148.410978][ T7645] loop8: detected capacity change from 0 to 1024
[  148.426450][ T7645] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  148.478586][ T7645] EXT4-fs error (device loop8): ext4_xattr_inode_iget:404: inode #11: comm syz.8.3057: missing EA_INODE flag
[  148.478694][ T7645] EXT4-fs (loop8): Remounting filesystem read-only
[  148.478732][ T7645] EXT4-fs error (device loop8): ext4_xattr_inode_iget:409: comm syz.8.3057: error while reading EA inode 11 err=-117
[  148.478819][ T7645] EXT4-fs (loop8): Remounting filesystem read-only
[  148.478896][ T7645] EXT4-fs error (device loop8): ext4_xattr_inode_iget:404: inode #11: comm syz.8.3057: missing EA_INODE flag
[  148.478983][ T7645] EXT4-fs (loop8): Remounting filesystem read-only
[  148.479012][ T7645] EXT4-fs error (device loop8): ext4_xattr_inode_iget:409: comm syz.8.3057: error while reading EA inode 11 err=-117
[  148.479096][ T7645] EXT4-fs (loop8): Remounting filesystem read-only
[  148.575862][ T7659] loop5: detected capacity change from 0 to 512
[  148.587287][ T7659] EXT4-fs error (device loop5): ext4_get_branch:178: inode #13: block 33619980: comm syz.5.3061: invalid block
[  148.608878][ T7659] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #13: comm syz.5.3061: invalid indirect mapped block 10 (level 1)
[  148.609055][ T7659] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #13: comm syz.5.3061: invalid indirect mapped block 8 (level 1)
[  148.609364][ T7659] EXT4-fs (loop5): 1 truncate cleaned up
[  148.723568][ T7674] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3066'.
[  148.907018][ T7677] loop8: detected capacity change from 0 to 40427
[  148.907679][ T7677] F2FS-fs (loop8): Invalid log_blocksize (268), supports only 12
[  148.921563][ T7677] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[  148.932237][ T7677] F2FS-fs (loop8): Found nat_bits in checkpoint
[  148.967526][ T7677] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[  148.967552][ T7677] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  149.005817][ T7677] syz.8.3078: attempt to access beyond end of device
[  149.005817][ T7677] loop8: rw=2049, sector=77824, nr_sectors = 840 limit=40427
[  149.050105][ T7684] loop2: detected capacity change from 0 to 512
[  149.056747][ T7684] EXT4-fs: Ignoring removed mblk_io_submit option
[  149.063413][ T7684] EXT4-fs: Ignoring removed mblk_io_submit option
[  149.070083][ T7684] EXT4-fs: Ignoring removed nomblk_io_submit option
[  149.077143][ T7684] EXT4-fs (loop2): Test dummy encryption mode enabled
[  149.087243][ T7684] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  149.099453][ T7684] EXT4-fs (loop2): 1 truncate cleaned up
[  149.290839][ T7699] overlayfs: missing 'lowerdir'
[  149.337948][ T7703] netlink: 'syz.5.3077': attribute type 6 has an invalid length.
[  149.488547][ T7695] loop8: detected capacity change from 0 to 40427
[  149.496313][ T7695] F2FS-fs (loop8): fault_injection options not supported
[  149.504635][ T7695] F2FS-fs (loop8): invalid crc value
[  149.520019][ T7695] F2FS-fs (loop8): Found nat_bits in checkpoint
[  149.577730][ T7695] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  149.681483][  T861] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  149.832001][ T6001] syz-executor: attempt to access beyond end of device
[  149.832001][ T6001] loop8: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  149.871501][  T861] usb 6-1: Using ep0 maxpacket: 32
[  149.877823][  T861] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  149.899777][  T861] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  149.920716][  T861] usb 6-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  149.929953][  T861] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  149.938784][  T861] usb 6-1: config 0 descriptor??
[  150.047659][   T28] audit: type=1400 audit(412.551:10412): avc:  denied  { setattr } for  pid=7748 comm="syz.8.3099" name="vsock" dev="devtmpfs" ino=276 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  150.355582][  T861] savu 0003:1E7D:2D5A.0024: hiddev96,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.5-1/input0
[  150.457976][ T7795] loop2: detected capacity change from 0 to 1024
[  150.465411][ T7795] EXT4-fs (loop2): Test dummy encryption mode enabled
[  150.512322][ T7804] netem: incorrect gi model size
[  150.517304][ T7804] netem: change failed
[  150.622321][  T861] usb 6-1: USB disconnect, device number 6
[  150.714694][ T7820] loop9: detected capacity change from 0 to 128
[  150.748559][ T7829] loop2: detected capacity change from 0 to 1024
[  150.769069][   T28] audit: type=1400 audit(413.271:10413): avc:  denied  { link } for  pid=7828 comm="syz.2.3135" name="file0" dev="incremental-fs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  151.161514][ T5478] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  151.183367][   T28] audit: type=1400 audit(413.691:10414): avc:  denied  { write } for  pid=7857 comm="syz.5.3148" name="random" dev="devtmpfs" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:random_device_t tclass=chr_file permissive=1
[  151.341470][ T5478] usb 3-1: Using ep0 maxpacket: 16
[  151.347764][ T5478] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  151.358818][ T5478] usb 3-1: config 0 interface 0 has no altsetting 0
[  151.365509][ T5478] usb 3-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  151.374628][ T5478] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  151.383344][ T5478] usb 3-1: config 0 descriptor??
[  151.762212][ T7882] SELinux:  Context system_u:object_r:getty_exec_t:s0 is not valid (left unmapped).
[  151.771895][   T28] audit: type=1400 audit(414.281:10415): avc:  denied  { relabelto } for  pid=7881 comm="syz.9.3159" name="file0" dev="tmpfs" ino=180 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:getty_exec_t:s0"
[  151.798517][   T28] audit: type=1400 audit(414.281:10416): avc:  denied  { associate } for  pid=7881 comm="syz.9.3159" name="file0" dev="tmpfs" ino=180 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon="system_u:object_r:getty_exec_t:s0"
[  151.798640][ T5478] hid (null): unknown global tag 0xbf
[  151.831073][ T5478] hid (null): unknown global tag 0xe8
[  151.836633][ T5478] hid (null): unknown global tag 0xe
[  151.842157][ T5478] hid (null): report_id 2998453489 is invalid
[  151.845307][   T28] audit: type=1400 audit(414.351:10417): avc:  denied  { unlink } for  pid=7445 comm="syz-executor" name="file0" dev="tmpfs" ino=180 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:getty_exec_t:s0"
[  151.848323][ T5478] hid (null): unknown global tag 0xd
[  151.879569][ T5478] hid (null): unknown global tag 0xe
[  151.885301][ T5478] hid (null): unknown global tag 0xc
[  151.890838][ T5478] hid (null): unknown global tag 0xe
[  151.972013][ T7890] loop9: detected capacity change from 0 to 512
[  151.978571][ T7890] EXT4-fs: Ignoring removed mblk_io_submit option
[  151.985117][ T7890] EXT4-fs: Ignoring removed mblk_io_submit option
[  151.992026][ T7890] EXT4-fs (loop9): Test dummy encryption mode enabled
[  151.999036][ T7890] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  152.009548][  T290] usb 3-1: USB disconnect, device number 16
[  152.011267][ T7890] EXT4-fs (loop9): 1 truncate cleaned up
[  152.235727][ T7925] loop9: detected capacity change from 0 to 128
[  152.242701][ T7925] EXT4-fs (loop9): Test dummy encryption mode enabled
[  152.247019][ T7927] loop5: detected capacity change from 0 to 2048
[  152.267845][ T7927] fs-verity (loop5, inode 13): Unknown hash algorithm number: 3
[  152.297025][ T7934] loop5: detected capacity change from 0 to 128
[  152.500945][ T7970] loop9: detected capacity change from 0 to 512
[  152.513455][ T7970] EXT4-fs: Ignoring removed mblk_io_submit option
[  152.528744][ T7970] EXT4-fs: Ignoring removed mblk_io_submit option
[  152.544339][ T7974] loop8: detected capacity change from 0 to 512
[  152.545813][ T7970] EXT4-fs: Ignoring removed nomblk_io_submit option
[  152.564880][ T7970] EXT4-fs (loop9): Test dummy encryption mode enabled
[  152.572128][ T7970] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  152.602986][ T7970] EXT4-fs (loop9): 1 truncate cleaned up
[  152.613071][ T7974] EXT4-fs error (device loop8): ext4_do_update_inode:5255: inode #3: comm syz.8.3201: corrupted inode contents
[  152.645798][ T7974] EXT4-fs error (device loop8): ext4_dirty_inode:6120: inode #3: comm syz.8.3201: mark_inode_dirty error
[  152.667384][ T7974] EXT4-fs error (device loop8): ext4_do_update_inode:5255: inode #3: comm syz.8.3201: corrupted inode contents
[  152.689771][ T7974] EXT4-fs error (device loop8): __ext4_ext_dirty:202: inode #3: comm syz.8.3201: mark_inode_dirty error
[  152.714695][ T7989] tipc: Started in network mode
[  152.719612][ T7989] tipc: Node identity 7, cluster identity 4711
[  152.721348][ T7974] Quota error (device loop8): write_blk: dquota write failed
[  152.737386][ T7974] Quota error (device loop8): qtree_write_dquot: Error -117 occurred while creating quota
[  152.747553][ T7974] EXT4-fs error (device loop8): ext4_acquire_dquot:6789: comm syz.8.3201: Failed to acquire dquot type 0
[  152.753398][ T7989] tipc: Node number set to 7
[  152.761848][ T7974] EXT4-fs (loop8): 1 orphan inode deleted
[  152.772027][  T315] Quota error (device loop8): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  152.791858][ T7989] tipc: Cannot configure node identity twice
[  152.798248][  T315] EXT4-fs error (device loop8): ext4_release_dquot:6825: comm kworker/u4:4: Failed to release dquot type 1
[  153.111155][ T8006] loop7: detected capacity change from 0 to 40427
[  153.147655][ T8006] F2FS-fs (loop7): Wrong segment_count / block_count (31 > 0)
[  153.169552][ T8006] F2FS-fs (loop7): Can't find valid F2FS filesystem in 2th superblock
[  153.184202][ T8019] loop2: detected capacity change from 0 to 512
[  153.201051][ T8006] F2FS-fs (loop7): invalid crc value
[  153.217641][ T8006] F2FS-fs (loop7): Found nat_bits in checkpoint
[  153.240942][ T8019] EXT4-fs error (device loop2): ext4_do_update_inode:5255: inode #3: comm syz.2.3220: corrupted inode contents
[  153.261762][ T8019] EXT4-fs error (device loop2): ext4_dirty_inode:6120: inode #3: comm syz.2.3220: mark_inode_dirty error
[  153.263217][ T8011] loop8: detected capacity change from 0 to 40427
[  153.280465][ T8019] EXT4-fs error (device loop2): ext4_do_update_inode:5255: inode #3: comm syz.2.3220: corrupted inode contents
[  153.297661][ T8019] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #3: comm syz.2.3220: mark_inode_dirty error
[  153.309481][ T8006] F2FS-fs (loop7): Try to recover 2th superblock, ret: 0
[  153.309767][ T8019] Quota error (device loop2): write_blk: dquota write failed
[  153.317127][ T8006] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  153.324380][ T8019] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  153.361979][ T8011] F2FS-fs (loop8): Found nat_bits in checkpoint
[  153.377184][ T8019] EXT4-fs error (device loop2): ext4_acquire_dquot:6789: comm syz.2.3220: Failed to acquire dquot type 0
[  153.409990][ T8019] EXT4-fs (loop2): 1 orphan inode deleted
[  153.431107][  T315] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  153.444530][  T315] EXT4-fs error (device loop2): ext4_release_dquot:6825: comm kworker/u4:4: Failed to release dquot type 1
[  153.476497][ T8011] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  153.526821][ T6001] syz-executor: attempt to access beyond end of device
[  153.526821][ T6001] loop8: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  153.553751][ T8035] netlink: 16 bytes leftover after parsing attributes in process `syz.9.3224'.
[  153.671547][    T6] ip6_tnl_xmit_ctl: 4 callbacks suppressed
[  153.671567][    T6] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  153.781545][    T6] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  153.799467][ T8061] netlink: 4 bytes leftover after parsing attributes in process `syz.8.3236'.
[  153.861535][  T861] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  153.891676][  T861] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  153.954671][ T8090] loop9: detected capacity change from 0 to 1024
[  153.961389][ T8090] EXT4-fs: Ignoring removed i_version option
[  153.961864][ T8092] loop7: detected capacity change from 0 to 16
[  153.969292][ T8092] erofs: (device loop7): mounted with root inode @ nid 36.
[  153.974150][ T8090] EXT4-fs: Ignoring removed bh option
[  153.974900][ T8090] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  153.981676][  T861] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  154.066725][ T8105] loop9: detected capacity change from 0 to 1024
[  154.073609][ T8105] EXT4-fs: Ignoring removed orlov option
[  154.079285][ T8105] EXT4-fs: Ignoring removed nomblk_io_submit option
[  154.111485][  T305] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  154.136290][   T28] audit: type=1326 audit(416.641:10418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8112 comm="syz.9.3259" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc6c218e969 code=0x0
[  154.148615][ T8111] loop7: detected capacity change from 0 to 4096
[  154.165534][    T6] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  154.173107][  T861] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  154.178056][ T8111] EXT4-fs (loop7): shut down requested (1)
[  154.186942][ T8111] fs-verity: sha256 using implementation "sha256-avx2"
[  154.201594][    T6] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  154.231589][    T6] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  154.261673][  T290] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[  154.301497][  T305] usb 3-1: Using ep0 maxpacket: 16
[  154.309198][  T305] usb 3-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 9.00
[  154.318325][  T305] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  154.321617][    T6] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  154.326328][  T305] usb 3-1: Product: syz
[  154.337980][  T305] usb 3-1: Manufacturer: syz
[  154.342706][  T305] usb 3-1: SerialNumber: syz
[  154.347784][  T305] usb 3-1: config 0 descriptor??
[  154.353568][  T305] ftdi_sio 3-1:0.0: FTDI USB Serial Device converter detected
[  154.361251][  T305] usb 3-1: Detected FT232H
[  154.361493][  T861] usb 6-1: Using ep0 maxpacket: 32
[  154.372033][  T861] usb 6-1: config 0 has an invalid interface number: 67 but max is 0
[  154.380132][  T861] usb 6-1: config 0 has no interface number 0
[  154.387953][  T861] usb 6-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  154.397084][  T861] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  154.405124][  T861] usb 6-1: Product: syz
[  154.409300][  T861] usb 6-1: Manufacturer: syz
[  154.413926][  T861] usb 6-1: SerialNumber: syz
[  154.419096][    T6] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  154.426851][  T861] usb 6-1: config 0 descriptor??
[  154.432653][  T861] smsc95xx v2.0.0
[  154.452886][  T290] usb 9-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  154.464318][  T290] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  154.473442][  T290] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  154.481498][  T290] usb 9-1: Product: syz
[  154.485691][  T290] usb 9-1: Manufacturer: syz
[  154.490302][  T290] usb 9-1: SerialNumber: syz
[  154.554496][  T305] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[  154.964010][  T305] usb 3-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  155.002115][ T8123] loop7: detected capacity change from 0 to 512
[  155.010740][ T8123] EXT4-fs (loop7): orphan cleanup on readonly fs
[  155.017654][ T8123] EXT4-fs error (device loop7): ext4_orphan_get:1426: comm syz.7.3263: bad orphan inode 13
[  155.028408][ T8123] ext4_test_bit(bit=12, block=18) = 1
[  155.033910][ T8123] is_bad_inode(inode)=0
[  155.038150][ T8123] NEXT_ORPHAN(inode)=2130706432
[  155.043151][ T8123] max_ino=32
[  155.046415][ T8123] i_nlink=1
[  155.049623][ T8123] EXT4-fs mount: 38 callbacks suppressed
[  155.049640][ T8123] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  155.070017][ T8123] EXT4-fs (loop7): warning: mounting fs with errors, running e2fsck is recommended
[  155.082040][ T8123] EXT4-fs (loop7): re-mounted. Quota mode: writeback.
[  155.099563][ T5858] EXT4-fs (loop7): unmounting filesystem.
[  155.188993][  T305] usb 3-1: USB disconnect, device number 17
[  155.196727][  T305] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  155.211244][  T305] ftdi_sio 3-1:0.0: device disconnected
[  155.439371][  T861] smsc95xx 6-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -71
[  155.450225][  T861] smsc95xx 6-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  155.460583][  T861] smsc95xx 6-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71
[  155.471658][  T861] smsc95xx: probe of 6-1:0.67 failed with error -71
[  155.479413][  T861] usb 6-1: USB disconnect, device number 7
[  155.498932][  T290] cdc_ncm 9-1:1.0: bind() failure
[  155.505184][  T290] cdc_ncm: probe of 9-1:1.1 failed with error -71
[  155.513296][  T290] cdc_mbim: probe of 9-1:1.1 failed with error -71
[  155.521052][  T290] usb 9-1: USB disconnect, device number 5
[  155.627211][ T8155] tmpfs: Unknown parameter ''
[  155.673641][ T8163] device bridge0 entered promiscuous mode
[  155.679910][ T8162] device bridge0 left promiscuous mode
[  155.724984][ T8173] syz.2.3285[8173] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  155.725079][ T8173] syz.2.3285[8173] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  155.883266][ T8188] syz.2.3292 uses obsolete (PF_INET,SOCK_PACKET)
[  155.968551][ T8190] netlink: 12 bytes leftover after parsing attributes in process `syz.5.3293'.
[  155.992450][ T8192] loop5: detected capacity change from 0 to 256
[  155.999243][ T8192] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  156.011026][ T8192] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[  156.026491][ T8192] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  156.070353][ T8199] loop5: detected capacity change from 0 to 256
[  156.070916][ T8200] bridge0: port 1(syz_tun) entered blocking state
[  156.083305][ T8200] bridge0: port 1(syz_tun) entered disabled state
[  156.090238][ T8200] device syz_tun entered promiscuous mode
[  156.096416][ T8200] bridge0: port 1(syz_tun) entered blocking state
[  156.102892][ T8200] bridge0: port 1(syz_tun) entered forwarding state
[  156.136734][ T8205] loop5: detected capacity change from 0 to 512
[  156.153882][ T8205] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  156.271286][ T8233] netlink: 8 bytes leftover after parsing attributes in process `syz.8.3312'.
[  156.282849][ T8235] netlink: 40 bytes leftover after parsing attributes in process `syz.9.3313'.
[  156.603741][ T8266] input: syz1 as /devices/virtual/input/input26
[  156.621624][    T6] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  156.640121][ T6001] ------------[ cut here ]------------
[  156.645671][ T6001] WARNING: CPU: 1 PID: 6001 at fs/inode.c:332 drop_nlink+0xc5/0x110
[  156.653729][ T6001] Modules linked in:
[  156.657632][ T6001] CPU: 1 PID: 6001 Comm: syz-executor Not tainted 6.1.138-syzkaller-00046-gdb710ea87c32 #0
[  156.667617][ T6001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  156.677688][ T6001] RIP: 0010:drop_nlink+0xc5/0x110
[  156.682764][ T6001] Code: 1b 48 8d bb b8 04 00 00 be 08 00 00 00 e8 63 ee f0 ff f0 48 ff 83 b8 04 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 1b 93 ac ff <0f> 0b eb 86 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 5e ff ff ff 4c
[  156.702427][ T6001] RSP: 0018:ffffc90000a5fc38 EFLAGS: 00010293
[  156.708513][ T6001] RAX: ffffffff81c35df5 RBX: ffff888124d7c448 RCX: ffff88811ef9e540
[  156.716627][ T6001] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  156.724639][ T6001] RBP: ffffc90000a5fc60 R08: 0000000000000004 R09: 0000000000000003
[  156.732919][ T6001] R10: fffff5200014bf78 R11: 1ffff9200014bf78 R12: dffffc0000000000
[  156.740908][ T6001] R13: 1ffff110249af892 R14: ffff888124d7c490 R15: 0000000000000000
[  156.748931][ T6001] FS:  0000555559302500(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  156.757903][ T6001] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  156.764512][ T6001] CR2: 00005555593254e8 CR3: 000000013fc84000 CR4: 00000000003506a0
[  156.772521][ T6001] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  156.780585][ T6001] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  156.788565][ T6001] Call Trace:
[  156.791850][ T6001]  <TASK>
[  156.794772][ T6001]  shmem_rmdir+0x5b/0x90
[  156.799013][ T6001]  vfs_rmdir+0x393/0x500
[  156.803284][ T6001]  incfs_kill_sb+0x105/0x220
[  156.807874][ T6001]  deactivate_locked_super+0xb5/0x120
[  156.813256][ T6001]  deactivate_super+0xaf/0xe0
[  156.817927][ T6001]  cleanup_mnt+0x45f/0x4e0
[  156.821464][    T6] usb 10-1: Using ep0 maxpacket: 16
[  156.822374][ T6001]  __cleanup_mnt+0x19/0x20
[  156.828807][    T6] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  156.831998][ T6001]  task_work_run+0x1db/0x240
[  156.832029][ T6001]  ? __cfi_task_work_run+0x10/0x10
[  156.843454][    T6] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  156.847551][ T6001]  ? __x64_sys_umount+0x125/0x160
[  156.847584][ T6001]  ? __cfi___x64_sys_umount+0x10/0x10
[  156.852795][    T6] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  156.862573][ T6001]  exit_to_user_mode_loop+0x9b/0xb0
[  156.867734][    T6] usb 10-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  156.872997][ T6001]  exit_to_user_mode_prepare+0x5a/0xa0
[  156.882953][    T6] usb 10-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  156.888023][ T6001]  syscall_exit_to_user_mode+0x1a/0x30
[  156.898110][    T6] usb 10-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0
[  156.903327][ T6001]  do_syscall_64+0x58/0xa0
[  156.913200][    T6] usb 10-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22
[  156.918523][ T6001]  ? clear_bhb_loop+0x15/0x70
[  156.929237][    T6] usb 10-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  156.932701][ T6001]  ? clear_bhb_loop+0x15/0x70
[  156.945883][    T6] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  156.950415][ T6001]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  156.959673][    T6] usb 10-1: SerialNumber: syz
[  156.964233][ T6001] RIP: 0033:0x7f360c78fc97
[  156.964255][ T6001] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  156.974407][    T6] cdc_acm 10-1:1.0: Control and data interfaces are not separated!
[  156.978216][ T6001] RSP: 002b:00007ffe05b78428 EFLAGS: 00000246
[  156.983097][    T6] cdc_acm: probe of 10-1:1.0 failed with error -12
[  156.987311][ T6001]  ORIG_RAX: 00000000000000a6
[  156.987322][ T6001] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f360c78fc97
[  157.039998][ T6001] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe05b784e0
[  157.047981][ T6001] RBP: 00007ffe05b784e0 R08: 0000000000000000 R09: 0000000000000000
[  157.055960][ T6001] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe05b79570
[  157.063968][ T6001] R13: 00007f360c81089d R14: 00000000000263c2 R15: 00007ffe05b795b0
[  157.071980][ T6001]  </TASK>
[  157.075008][ T6001] ---[ end trace 0000000000000000 ]---
[  157.080592][ T6001] ==================================================================
[  157.088667][ T6001] BUG: KASAN: null-ptr-deref in ihold+0x20/0x60
[  157.094936][ T6001] Write of size 4 at addr 0000000000000170 by task syz-executor/6001
[  157.103010][ T6001] 
[  157.105331][ T6001] CPU: 0 PID: 6001 Comm: syz-executor Tainted: G        W          6.1.138-syzkaller-00046-gdb710ea87c32 #0
[  157.116774][ T6001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  157.126822][ T6001] Call Trace:
[  157.130094][ T6001]  <TASK>
[  157.133018][ T6001]  __dump_stack+0x21/0x24
[  157.137363][ T6001]  dump_stack_lvl+0xee/0x150
[  157.141958][ T6001]  ? __cfi_dump_stack_lvl+0x8/0x8
[  157.146986][ T6001]  ? ihold+0x20/0x60
[  157.150888][ T6001]  ? ihold+0x20/0x60
[  157.154783][ T6001]  print_report+0x3d/0x60
[  157.159108][ T6001]  kasan_report+0x122/0x150
[  157.163612][ T6001]  ? ihold+0x20/0x60
[  157.167511][ T6001]  kasan_check_range+0x280/0x290
[  157.172475][ T6001]  __kasan_check_write+0x14/0x20
[  157.177416][ T6001]  ihold+0x20/0x60
[  157.181138][ T6001]  vfs_rmdir+0x25f/0x500
[  157.185379][ T6001]  incfs_kill_sb+0x105/0x220
[  157.189964][ T6001]  deactivate_locked_super+0xb5/0x120
[  157.195335][ T6001]  deactivate_super+0xaf/0xe0
[  157.200008][ T6001]  cleanup_mnt+0x45f/0x4e0
[  157.204428][ T6001]  __cleanup_mnt+0x19/0x20
[  157.208843][ T6001]  task_work_run+0x1db/0x240
[  157.213432][ T6001]  ? __cfi_task_work_run+0x10/0x10
[  157.218541][ T6001]  ? __x64_sys_umount+0x125/0x160
[  157.223565][ T6001]  ? __cfi___x64_sys_umount+0x10/0x10
[  157.228933][ T6001]  exit_to_user_mode_loop+0x9b/0xb0
[  157.234125][ T6001]  exit_to_user_mode_prepare+0x5a/0xa0
[  157.239662][ T6001]  syscall_exit_to_user_mode+0x1a/0x30
[  157.245186][ T6001]  do_syscall_64+0x58/0xa0
[  157.249608][ T6001]  ? clear_bhb_loop+0x15/0x70
[  157.254279][ T6001]  ? clear_bhb_loop+0x15/0x70
[  157.258952][ T6001]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  157.264847][ T6001] RIP: 0033:0x7f360c78fc97
[  157.269253][ T6001] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  157.288854][ T6001] RSP: 002b:00007ffe05b78428 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  157.297259][ T6001] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f360c78fc97
[  157.305227][ T6001] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe05b784e0
[  157.313193][ T6001] RBP: 00007ffe05b784e0 R08: 0000000000000000 R09: 0000000000000000
[  157.321210][ T6001] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe05b79570
[  157.329192][ T6001] R13: 00007f360c81089d R14: 00000000000263c2 R15: 00007ffe05b795b0
[  157.337262][ T6001]  </TASK>
[  157.340282][ T6001] ==================================================================
[  157.349975][ T6001] Disabling lock debugging due to kernel taint
[  157.356251][ T6001] BUG: kernel NULL pointer dereference, address: 0000000000000170
[  157.364062][ T6001] #PF: supervisor write access in kernel mode
[  157.366831][    T6] usb 10-1: USB disconnect, device number 2
[  157.370137][ T6001] #PF: error_code(0x0002) - not-present page
[  157.370164][ T6001] PGD 12dc8c067 
[  157.378501][ T4334] EXT4-fs (loop5): unmounting filesystem.
[  157.382008][ T6001] P4D 12dc8c067 PUD 0 
[  157.382031][ T6001] Oops: 0002 [#1] PREEMPT SMP KASAN
[  157.401027][ T6001] CPU: 1 PID: 6001 Comm: syz-executor Tainted: G    B   W          6.1.138-syzkaller-00046-gdb710ea87c32 #0
[  157.412482][ T6001] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  157.422541][ T6001] RIP: 0010:ihold+0x26/0x60
[  157.427075][ T6001] Code: 33 36 7c df 55 48 89 e5 41 56 53 48 89 fb e8 81 8a ac ff 48 8d bb 70 01 00 00 be 04 00 00 00 e8 a0 e5 f0 ff 41 be 01 00 00 00 <f0> 44 0f c1 b3 70 01 00 00 41 ff c6 bf 02 00 00 00 44 89 f6 e8 71
[  157.446681][ T6001] RSP: 0018:ffffc90000a5fc78 EFLAGS: 00010246
[  157.452756][ T6001] RAX: ffff88811ef9e500 RBX: 0000000000000000 RCX: ffff88811ef9e540
[  157.460730][ T6001] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  157.468709][ T6001] RBP: ffffc90000a5fc88 R08: dffffc0000000000 R09: fffffbfff0f2cafd
[  157.476687][ T6001] R10: fffffbfff0f2cafd R11: 1ffffffff0f2cafc R12: ffff888124d7c454
[  157.484656][ T6001] R13: dffffc0000000000 R14: 0000000000000001 R15: 0000000000000000
[  157.492649][ T6001] FS:  0000555559302500(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  157.501573][ T6001] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  157.508162][ T6001] CR2: 0000000000000170 CR3: 000000013fc84000 CR4: 00000000003506a0
[  157.516149][ T6001] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  157.524123][ T6001] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  157.532129][ T6001] Call Trace:
[  157.535402][ T6001]  <TASK>
[  157.538336][ T6001]  vfs_rmdir+0x25f/0x500
[  157.542580][ T6001]  incfs_kill_sb+0x105/0x220
[  157.547165][ T6001]  deactivate_locked_super+0xb5/0x120
[  157.552531][ T6001]  deactivate_super+0xaf/0xe0
[  157.557217][ T6001]  cleanup_mnt+0x45f/0x4e0
[  157.561729][ T6001]  __cleanup_mnt+0x19/0x20
[  157.566145][ T6001]  task_work_run+0x1db/0x240
[  157.570821][ T6001]  ? __cfi_task_work_run+0x10/0x10
[  157.575929][ T6001]  ? __x64_sys_umount+0x125/0x160
[  157.580965][ T6001]  ? __cfi___x64_sys_umount+0x10/0x10
[  157.586354][ T6001]  exit_to_user_mode_loop+0x9b/0xb0
[  157.591549][ T6001]  exit_to_user_mode_prepare+0x5a/0xa0
[  157.596999][ T6001]  syscall_exit_to_user_mode+0x1a/0x30
[  157.602454][ T6001]  do_syscall_64+0x58/0xa0
[  157.606868][ T6001]  ? clear_bhb_loop+0x15/0x70
[  157.611550][ T6001]  ? clear_bhb_loop+0x15/0x70
[  157.616224][ T6001]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  157.622123][ T6001] RIP: 0033:0x7f360c78fc97
[  157.626552][ T6001] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  157.646155][ T6001] RSP: 002b:00007ffe05b78428 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  157.654680][ T6001] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f360c78fc97
[  157.662648][ T6001] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe05b784e0
[  157.670613][ T6001] RBP: 00007ffe05b784e0 R08: 0000000000000000 R09: 0000000000000000
[  157.678761][ T6001] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe05b79570
[  157.686729][ T6001] R13: 00007f360c81089d R14: 00000000000263c2 R15: 00007ffe05b795b0
[  157.694704][ T6001]  </TASK>
[  157.697718][ T6001] Modules linked in:
[  157.701617][ T6001] CR2: 0000000000000170
[  157.705759][ T6001] ---[ end trace 0000000000000000 ]---
[  157.711221][ T6001] RIP: 0010:ihold+0x26/0x60
[  157.715735][ T6001] Code: 33 36 7c df 55 48 89 e5 41 56 53 48 89 fb e8 81 8a ac ff 48 8d bb 70 01 00 00 be 04 00 00 00 e8 a0 e5 f0 ff 41 be 01 00 00 00 <f0> 44 0f c1 b3 70 01 00 00 41 ff c6 bf 02 00 00 00 44 89 f6 e8 71
[  157.735335][ T6001] RSP: 0018:ffffc90000a5fc78 EFLAGS: 00010246
[  157.741425][ T6001] RAX: ffff88811ef9e500 RBX: 0000000000000000 RCX: ffff88811ef9e540
[  157.749400][ T6001] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  157.757366][ T6001] RBP: ffffc90000a5fc88 R08: dffffc0000000000 R09: fffffbfff0f2cafd
[  157.765342][ T6001] R10: fffffbfff0f2cafd R11: 1ffffffff0f2cafc R12: ffff888124d7c454
[  157.773314][ T6001] R13: dffffc0000000000 R14: 0000000000000001 R15: 0000000000000000
[  157.781289][ T6001] FS:  0000555559302500(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  157.790238][ T6001] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  157.796826][ T6001] CR2: 0000000000000170 CR3: 000000013fc84000 CR4: 00000000003506a0
[  157.804799][ T6001] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  157.812851][ T6001] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  157.820820][ T6001] Kernel panic - not syncing: Fatal exception
[  157.826991][ T6001] Kernel Offset: disabled
[  157.831303][ T6001] Rebooting in 86400 seconds..