last executing test programs:

2m31.584426573s ago: executing program 1 (id=455):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r0}, 0x10)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x30, 0x30, 0x2, [@struct={0x0, 0x1, 0x0, 0x4, 0x0, 0xffffffff, [{0x0, 0x2}]}, @ptr={0x0, 0x0, 0x0, 0x9, 0x3}, @restrict={0x0, 0x0, 0x0, 0x10, 0x2}]}}, 0x0, 0x4a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)

2m31.572523623s ago: executing program 1 (id=456):
r0 = syz_clone(0x100411, 0x0, 0x0, 0x0, 0x0, 0x0)
tkill(r0, 0x13)
wait4(r0, 0x0, 0x4000000a, 0x0)

2m31.543439304s ago: executing program 1 (id=458):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0)
pwritev(r0, 0x0, 0x0, 0x4010005, 0x0)

2m31.529624504s ago: executing program 1 (id=460):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x200c840, &(0x7f0000000040)={[{@discard}, {@noload}, {@jqfmt_vfsv0}]}, 0x64, 0x526, &(0x7f0000000a40)="$eJzs3c9vI1cdAPDveO0l2c3WKXCAHkqhRdkVrJ00tI04lCIhOFUCyn0JiRNFceIocdpNVNFE/AFcECBxggsXJP4DVIkLxwqpCM4gikAItnDgAAwae5zNZu04uzh26nw+0uy8N7++73n3jefNvB0HcGk9ExGvRMR/0zS9FRHlfHkhn+KgPWXbvX/vzaVsSiJNX/tbEkm+rHOsJJ9fz3ebiIivfyXiW8nDcXf29tcX6/Xadp6vNje2qjt7+7fXNhZXa6u1zfn5uRcXXlp4YWF2IPW8EREvf+lP3//uT7/88i8++8Yf7vzl5rezYk3l64/X4xEVT1vZrnqp9Vkc32H7MYNdRMVWDXOTZ9vn8BzLAwBAb9k1/ocj4lMRcSvKceX0y1kAAADgAyj9wlT8O4lIu7vabeFE9NweAAAAuIAKrTGwSaGSjwWYikKhUmmP4f1oXEvfimh+ZqWxu7ncHis7HaXCylq9NpuPFZ6OUpLl51rp+/nn2/nD9yJa+fmIeDIivleebOUrS4368qhvfgAAAMAlcf1E//+f5Xb/HwAAABgz06MuAAAAAHDu9P8BAABg/On/AwAAwFj76quvZlPa+f3r5df3dtcbr99eru2sVzZ2lypLje2tymqjsdp6Z99Gv+PVG42tz8Xm7t1qs7bTrO7s7d/ZaOxuNu+sPfAT2AAAAMAQPfmJt3+XRMTB5ydbU+Zqj22vDLVkwHkrHqWSfN6l9f/+ifb8vSEVChiKft/pvykPqSDA0BVHXQBgZEqPsrH/JwBjKemzvufgnXfy+ScHWx4AAGDwZj7e+/l/4dQ9D05fDVx4GjFcXkfP/3sN+gPGVuv5/1nbvosFGCslo/rh0uv7/L/XAIB3zhohTR+tRAAAwKBNtaakUMlv701FoVCpRNxoDfcvJStr9dpsRDwREb8tlz6U5edaeyZ9+wwAAAAAAAAAAAAAAAAAAAAAAAAAQFuaJpECAAAAYy2i8Ofkl+13+c+Un5s6eX/gavKvcuQ/EfrGj177wd3FZnN7Llv+96PlzR/my58fxR0MAAAA4KROP73TjwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAQXr/3ptLnWmYcf/6xYiY7ha/GBOt+USUIuLaP5IoHtsviYgrA4h/cBgRH+sWP8mKdRSyW/zJ848f0/mn0C3+9QHEh8vs7ez880rW/q5GxPH2V4hnWvPu7a8Y8UD+cbXOf9kJrsv5t3P+u9Kj/d84cazpHjGeevfn1Z7xDyOeKnY//3TiJz3iP3vGOn7zG/v7vdalP46Y6fr9kzwQq9rc2Kru7O3fXttYXK2t1jbn5+deXHhp4YWF2erKWr2W//nQ8Ut9ypbV/1qP+NN96v/cGev/n3fv3vtIj+Jk8W8+2yX+r36Sb/Fw/EL+3ffpPJ2tn+mkD9rp457+2a+fPq3+yz3q3+/v/+YZ63/ra9/549FOAMDI7eztry/W67XtsU1kvfQLUAyJx0uc6z/RtwZ6wDRN06xN/R/HSWLkH3gnMeozEwAAMGj3L/pHXRIAAAAAAAAAAAAAAAAAAAC4vIbxOrGTMQ+OUskgXqENAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAQ/wsAAP//Yu/R8g==")
r0 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
write$binfmt_register(r0, &(0x7f0000000080)={0x3a, 'syz3', 0x3a, 'E', 0x3a, 0x2007, 0x3a, 'M', 0x3a, '\x84\xa3\xea\xd6O\x89|\xeb\x80\xf0\xe96\xf4`&\xd4\xab\x1ed', 0x3a, './file1', 0x3a, [0x46, 0x4f]}, 0x3d)

2m31.359037846s ago: executing program 1 (id=466):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$unix(r0, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000001800)=[{&(0x7f0000000080)="03", 0x1}], 0x1, &(0x7f0000001bc0)=ANY=[@ANYBLOB="14000000000000000100000001"], 0x18}, 0x8000)
recvmmsg(r1, &(0x7f0000001200)=[{{&(0x7f0000000580)=@qipcrtr, 0x80, &(0x7f0000000880)=[{&(0x7f0000000600)=""/8, 0x8}, {&(0x7f0000000640)=""/255, 0xff}, {&(0x7f0000000800)=""/127, 0x7f}], 0x3, &(0x7f00000008c0)=""/169, 0xa9}, 0x2}, {{0x0, 0x0, 0x0}, 0x2}], 0x2, 0x2, 0x0)

2m31.208446658s ago: executing program 1 (id=471):
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x4, @empty, 0x5}, 0x1c)
setsockopt$sock_linger(r0, 0x1, 0x3e, &(0x7f0000000180), 0x8)

2m31.208304958s ago: executing program 32 (id=471):
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x4, @empty, 0x5}, 0x1c)
setsockopt$sock_linger(r0, 0x1, 0x3e, &(0x7f0000000180), 0x8)

2m25.99723052s ago: executing program 3 (id=648):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc(&(0x7f0000001ec0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r0, &(0x7f0000001f80)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001f00)={0x30, r1, 0x1, 0x0, 0xffffffff, {{}, {}, {0x6f, 0x19, {0x80000000, 0x1, 0x1, 0x5}}}}, 0x30}}, 0x0)

2m25.984175781s ago: executing program 3 (id=649):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000800), r0)
sendmsg$IEEE802154_LLSEC_DEL_DEVKEY(r0, &(0x7f0000000540)={&(0x7f0000000580)={0x10, 0x0, 0x0, 0x80}, 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0x20, r1, 0x1, 0x70bd36, 0x25dfdbfd, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x24000094}, 0x0)

2m25.956117481s ago: executing program 3 (id=652):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000500)={[{@iocharset={'iocharset', 0x3d, 'cp850'}}, {@fmask={'fmask', 0x3d, 0xa0}}, {@errors_remount}, {@iocharset={'iocharset', 0x3d, 'cp936'}}, {@iocharset={'iocharset', 0x3d, 'iso8859-14'}}, {@dmask}, {@gid}, {@dmask={'dmask', 0x3d, 0x1}}, {@errors_continue}, {@errors_continue}]}, 0x1, 0x152f, &(0x7f00000037c0)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000)

2m23.774529701s ago: executing program 3 (id=663):
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x1400c, &(0x7f0000000180)={[{@test_dummy_encryption}, {@dioread_lock}, {@noload}]}, 0x3, 0x470, &(0x7f0000001240)="$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")
syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000100)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})

2m23.200850209s ago: executing program 3 (id=682):
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fd\x00')
lseek(r0, 0x8000, 0x0)
getdents(r0, 0x0, 0x0)

2m23.001240972s ago: executing program 3 (id=690):
r0 = syz_io_uring_setup(0x3d1a, &(0x7f0000000480), &(0x7f0000000080)=<r1=>0x0, &(0x7f0000000040))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
io_uring_enter(r0, 0x1815, 0x0, 0xb, 0x0, 0x0)

2m22.973401962s ago: executing program 33 (id=690):
r0 = syz_io_uring_setup(0x3d1a, &(0x7f0000000480), &(0x7f0000000080)=<r1=>0x0, &(0x7f0000000040))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x40, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
io_uring_enter(r0, 0x1815, 0x0, 0xb, 0x0, 0x0)

2m19.974077524s ago: executing program 5 (id=788):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000240)={0x30, r0, 0x10ada85e65c25349, 0x3, 0x0, {{0x67}, {@void, @val={0xc}}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x8, 0xd, 0x0, 0x1, [@NL80211_BAND_6GHZ={0x4}]}]}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x10}, 0x20000000)

2m19.934069365s ago: executing program 5 (id=790):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x9, 0xb, 0x3ff, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000001c0)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000040), &(0x7f0000000080)='%-010d \x00'}, 0x20)
bpf$MAP_DELETE_ELEM(0x15, &(0x7f0000000000)={r1, &(0x7f0000000380)}, 0x20)

2m19.872278955s ago: executing program 5 (id=793):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="b702000000000000bfa300000000000007030000fdfdfff67a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040000010000400404000001f7ff04b7050000240000006a0a00fe00000000850000000b000000b70000000000000095000000000000009cc6b3fcd62c061c6238975d43a4505f80e39c9f3c530cf08e467b592f868ee3b0a435df0a0e8c1bf176db2a6b2feb4b77d3d5707bfd2d84aaa3b1d4e984c46ea7e2b347a36f5662403e1b2be4284322a4988a0d411a9872971c7c56f0979bd10b97163c066d0e196bf0fb04e500b0c0502df9de9ca3c00cb9a323d9b401bf4e418d07fa22f0610a70f2bdf4000200000000b0c2c125080963f6324bb7b80197aa3161f45346b100000000000000000089e399f6609876b588743794298b79dc192dff048fc207c81f28bdd3e26a1a8a0481e9f0da43bb6ca66e2f55a9ff19ffcafe3e64be06000000000000005064caec04a367c23d9fb6a6991ddb737d527d6acb15426406991c3b404984dfa2c6e94bd0339454c13ad3c328a182c15dc760a313e3b3ca5d3393404029e98fa883c71949a34d84030323e3d54fc5b29d27643453ad9226e3550ee5520211d9370175fba303f003073afd1ec9f7c6133f260c6882a146880b9387f1beb5418618bc83a3becf9bb5d80eff7da7ba8b913c685fc6700848dc6665d73248c1f74e08ad04ce905faf32706e0000249a028044ede964362cfb2f30a246c3b2f60000fc4deb91da1368b0960b8d69bd99c64893d44f962524429dc0584b8e7e541c903869d96989b9a986620cb2c95c83f2a082c52764f49e51188f9418b01bcd8ae164acdac95318ec8b2c6feacdcf4b528e5e58219bc54f6ad5679e7f430e6960ed048c46e1dccca05bfa1d67c83795eae2d31968c055d325a9c794ef88b30c2de4a274878b73c05ffa88b7073be648b12bb1fee58958d6a6f31bfe568215dfbde59dad00008a73b40f09cf018cd496b36050d7fd45e3620c28f76749262e33e16429a6da35ceb1a989de81c3f8b8bc348ef2ac3789b847611fcb0a26acafdd6d9a1b17dcb9f7c493d8f8cd344a1d470ca0d6f16ab0293774b5509fb0e7113936d59d5a60dbd84a938476adeebab9ff44f531bb0200000000000000cc1fbc455a64fd449284f71761092a0302000000000000008a05d36fd9b814b4292745418c92d944763a4bf5e138d810e29a31f08f7dea7762d2d8f7e1d24cabe17ad4135d8872935ceac6eb4f046f2acc1b0efb4438abddcabb4e4e72a450aab72b589bec83bbb688e659fb426cd43d0ee993516fd4e867232cde69b6ffad447dcd92e0ef8234ff850ec3948dd1fa7afb77d951fe4abf618121b7894c106beb49a71c62df5544ef221973432ccc7e62b151eb898a01010a7ec5acd0a5dcb2de443880c8a682515d1da9a3048744acb44384d1591df789883c0560495cb0cb32283529926d25e5c7f481112ab8a82247e927fb6f256830dab3671f00500d36a17790bab7d0e89e6c15314f2b963bfc867953476b0505c7d728326d666f39e82cfcf7e7a85df288d75df24c5e4d529c349923f9a4fb882310391dd58b4cbd8def239a227724d39c3e6c40e20e07e68a22888a5c3941b7a765b92bcb37f302487bcbd93ccf3a104021ff34ddf7ffcca1a04eae963e25516a114573779b24a341dfb2e80f1f345c6d96493ffc2a18478b5bf3aab2ea59c51cf0678e1a57d0ea042d911548ff612002ddb2d54d42fbdde42b56887003d27468225b2594a0500200f314113e889468cf13dd92aa0d7744db6b56557a5adad95cb9a69d4de50642b4b9d6d3ba7eb534b00d0fea62f0a61535dfc4da06e7f8695be614c557caed7eb0120516e1351fed7d8ffa31c8f4be364185469cfc5f25c90d71bce745dd2d58a30e0844f12c4cbbdd7a08465e665c2620d78673dfb6d9263e44f59fae487c62c98a3534f1a3eac9ee9f18a18106ba3d7c7a62330f5c0e98cb7982dd7bad02c8dba9c13894185bfc4bd2520b6e2043fcb3fc5eb55ecf9e6e363ea2ac40a14a6f00f0ffffa0fdb6487c51ef12c2e88beeb5aa6f6a4151cfb90644e50630ed474df7d1635afcb1ea3f6c47b5acbba2ce5099a9387f74d1ffbd1da497613174f76a656ba5bacccbb58dddaf9a3510d65383829a51e0f41e661fa80ca1eaaa6cf0824305ba4ec80400c50ffe83ccb0e6fef321190c58aca8c7c8c6d26ff5cbc2cadebda8e1219e04f8dacffd33db1a0a2e74c9eb978d80a12d0b5327bfd053000000000000000000be0d02a14708504412fa93d335992b2983c5addc191b4a21c7b340d0536b01958e15315eb5f3f9f4992c18f666359f40295fa73284c4b607669bae01bd68c3e2b770c324a0ab26b6065d7e95a7bd80052db57506ec7cc861bf3998d07484c66630ca8173fea3f06ed1dfc70a8b90418e2dc76137e0f68cb1c8a908aef9f009f85647dba54e05028c33d94d463fb20d2e7547184b8d3611e45dff02144387f342ef9b9bf650e9d049bf65258a7bc094a6965e24611c077e1ca0891362a9d68f3ec7610c0449ac59110500a09b75885cd79ba32776e4a511c8a4ad922b000000000002ef507ec6fc7f5dc431b9d8cbd9003972bf1dc6a71bedad8e19efc3edd2a7a7e555d5f3176af69920471e6e5bcb8966c813c132d65e2b99d3015e06b372e1aefaae14ee3fbc6349af362c19b59c214de66912d1a9a98d92dc030000009443de62caca334c46d110e50896fe50d0477771d387f40c8ef05750ca651e6e69a237dcf78666d6ab2bda1f853525494e4efdd93be38bb5fc671f8794002d7a951fd336aaf4ed1166cb459df70218c571ba1c40b028234505e5477effff26af8812c2fbb8785a223fce0a0601c2a3b58bea8c6216eadabcabe86ab46e4cd3d58ef7ce8d3c4b0bc5952e81dfc0a490d8568db6f9c51fe703c6864fae0053d2f91f49e977cdc1962dbc28c29471a72199862bc8fc6e211d13d8579cab4fba94b2b613c9b8148d05e0690a4c4ab35aabc45801d2b82081e62b23a01b58b1ffb624f63ad2246796796160cd3682374364edac52f1becb7c6eff50823b75fb2ef516ec4ec1cb20a2535b504502d744f2099674e58f2c117c980cf0d041c8e45c4f166bab4aa5ed200ef4dcff96f7c9c1ab8c22db0f439b23b04bcd41ffc3a0e01976ca1cf43e12d7d72f3faa4979faabd62e2dc54a980eae4d5e8c6498de331c3aba1144ef1190ea6cda641d9416c4560cab2d819eac7b04c70f141754c3ffd79da363fe8859afee531710caf1b2bf5a51142f4755cbb700c28083525a9093790096cb93417f1216000000000000000000000000000040ceb244e4cae2b65a36d41793aabccd3d0c50486eae6793e1f54814a8ee2779c14ca94759266200229b58c12279817869e831cade7b09ddffffff9d93e2ad25eed43c0b9ee4fd209b5b919a42f676b9d7236fc8dd5040899d0676291407ce9ac8101dd3512f5b3ac8cf8179d1749de324000030d0f942ec4604c28d5c287d1435956784003a53eb5f0436ead88d7acf0166dbd9f30a9b259c8a9b9faf1356faf269cded935b07863e4fdad8aab52686c81babd1c08f6700a2fadd413443022ea5c774ffefdd426abed08d437a4db48611fc82a18ab9f54758a1aad86d95cd186ceb55fafa3930090467b8b7bb8ae7e1c8b4b4106a381cb67fdb86def4de2076dc538bb97502b4b4350e633dc0a53c2fc9a01bc5cfae0245f1fab843c633446f5f3a43226109b7dafe7815773bd6969f04cbe15236b90000000000000000000000000000000000000000000000000000ff0779b9c0057addb2efe11b8b3a706569f1522b57d71bb0beccab7c8fe9e1330b2f501b2ac3cfe9e2f505e833217557abb257d61a73a758543651b250f8d8ef9c8481bb28a137d15040b0181c28dfad7c17b30c452a64c43a117cb948247c33abc765a6ba695c3cea5e32a4d11c9b4be91c60932bae2dcbec2ff4268e03aad15efc6004e6b3d7f0edf8b5d4ae7846a6d43c16c90b7c5dc13ac2ff0439ab693498964cad2bb533bcd240778b7e49145c48efde42b44c01517f1a7c7707b4c4fc0900e7086ec40354504590696282286db9030f0320e2fcba8723939005347b3c99e3f1310d41ab328c1f351b3f744ff1973431000000000000000000000000000000000000003495d69aaf9a1d83e83511a3bf44fe753b8ad83bc34ea4d46b397e000fd267c50122aa5aaf8474ec2e57d960d963900bef84a4b3c7dd01ae4d6b5522aa8a35ae7996e298bcfe3f31a34e3e12c58cf172a4d3677a67b52041ec21ae8003aa1c9969178b1b00e4d12ac9741fd788fb6260ec043c013907523c77f8acc20b9e2fd224ca8f21fab2b10991881e0a12f4e1c4f54b9ca7c9a0c8298d60b8b6eaa023418992d6d62b0e9faca4a3b3a845e859137cd933ef5eb8db16f159f32505725da51414562d064b551246dacd58023fed3c087bb52ae4bc09f3846c785d1b278e661ed01fbc2415288bc9c808c4aef648d431b3029da0dec8886c3ee9cad996843d00a3b5eb54e270dd2e96c8f2fdb4c27c2d1bd467f2a14867dec67730d8a68329839d9feff688dfbe25c73f936338e7b057980da58a6303d95f17712d667d5a1066ae457ae32925ce658b559c1182a74e267da57fe25b19153f1cdebaddf3f7a3479c09f2303dff449c0513b152a75ed48215cc31264a6ff648a95daa0d599dbce303b3b5307572df30429a3b4b115cab0a018f2501272048dd9e69877535e20078e7c28a98f26ace7a266bdc15ce904f25ec7fb2434ee7b5b69bed702ba1e7ed72942f452f1a98a2d949450091075efa823b11f5f5eccd921c04c7c15a5a05750cd85b1300fc00ce275de7559e117f87cb6c3c9a4b9f96149e3fcffa44d7000000000000000000d43d07d546acb7009c0c4f6e57b8577d2113bfca1939b9bf757265e175c1863a7c8d7640675830dc11d5d59546daf2385a7074f770c8333b21e2fb660141bc4f1ed45f703da6ac2557ab6952bd0c300000000000000000005b44bff4e3966fdfc9b720412bec09936b08e440c774e222dbd9a323a889f295e5d3bae64fc48ba123668e6a0be1e732aa5e2a0d4373a0b76d84f018d45bdf6f12d6d5d23a0331c3ae5e99a2bcdb52386135ea15890007e1cba5e52a04971139272012ae5542ba109a9d2f49798ce2fc6f639735e0222cd08075418239042bfe47c363973d3245ce507e838dfd90ae442a96fa1343029be56de31c2eff226c05f0ae3dbe2281e7bc02db39342d5b54ad3616733a5aa7753613423a0c4d2844a6e08fa5b76e18f7e24e967f6f83c546718d0f20959376427cdd449a4be3d75fd3e51e1b7f8690855af8eddbd3fd556b4460d0091e3623933f1a11db14aea54af6c49725bfa51fed222dc379995f48b1aab94441767c8bccbfd966d814715203bd8f549cd57d6a87295bf16aa25fb4e7fcaa8cec5e5c03b0095861bf2fed70ffb46bbb78ba90ca272ead9b3d2959fd9dbaabd1d51a60b474cef4c700faf718b810e4d3527a4663ee9fbc0000000000000000000000000000000000000000000000000061abf7a66b7b3f57ff830000"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000780)={r0, 0x18000000000002a0, 0x204, 0xfffff000, &(0x7f0000000040)="5aee41dea43e63a3f7fb7f11c72b", 0x0, 0xf000, 0x1f6, 0x0, 0x0, 0x0, 0x0}, 0x48)

2m19.847738146s ago: executing program 5 (id=794):
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x1400c, &(0x7f0000000180)={[{@test_dummy_encryption}, {@dioread_lock}, {@noload}]}, 0x3, 0x470, &(0x7f0000001240)="$eJzs3MtvG1UXAPAzkzj98qUloZRXyyNQEBWPpGkLdMECEEgsioQEC1haSVqVpi1qjESrSKQsygohJPaIJf8CK9ggxAqJLexRpQp1Q8vKaOyZxHZsp2nsuMW/n+T23Hn43uOZa9+ZayeAoTWd/ZNE7I6I3yNisl5s3mC6/t+N6yvzN6+vzCdRrb77V1Lb7u/rK/PFpsV+E42FSOJAm3qXL146U15aWryQl2crZz+aXb546YXTZ8unFk8tnjty/Pixo3Mvv3TkxZ7kORFpHr31wVdvn/iiKf+WPHpkutvKp6vVHlc3WHsa4tEBtoOtGcmPV6nW/ydjpOHoTcabn60VPh1QA4G+qVar1YnOq1erwH9YEs1lXR6GRfFBX1z/trsOfrVvo4/Bu/Za/QIoy/tG/qivGV27Y1Bqub7tpemIeH/1n2+yR/TnPgQAQJMfsvHP89loZ2U+G3usjz/SeKBhu3vyuaGpiLg3IvZGxH1xLvZFxP0RtW0fjIiHtlh/6yTJxvFPevW2ErtF2fjvlXxuq3n8V4z+YmokL+2p5V9KTp5eWjycvyaHorQrK891qePHN377stO6xvFf9sjqL8aCeTuuju5q3mehXClvJ+dG1y5H7B9tl3+yNhOQRMTDEbG/3ROkm9dx+tnvHum0bvP8u+jBRFP124hn6sd/NVryLyTd5ydn/xdLi4dni7Nio19+vfJOp/q3lX8PZMf//23P/7X8p5LG+drlrddx5Y/PO17TTJfyYAvn/2q5Uh5L3qvFY/myT8qVyoW5iLHkRL3RjcuPrO9blIvts/wPHWzf//fG+itxICKyk/jRiHgsIh7Pj90TEfFkRBzskv/Prz/1Yeuy8SL/O+D4L2zp+K8HY9G6pH0wcuan75sqnVoP8/xvdn//O1aLDuVLbuX971badXtnMwAAANx90ojYHUk6sxan6cxM/Tv8+yLSpfPLledOnv/43EL9NwJTUUqLO12TDfdD5/LL+nr5ckTUv1pQrD8aae2+8dcj47XyzPz5pYVBJw9DbqJD/8/8OTLo1gF95wdbMLz0fxheXft/aefaAey8Df2/a5/f1de2ADurzef/+CDaAey8duN/f+8HhkNL/zftB0PE/X8YXvo/DC/9H4bS8nhs/iP5rkHxTLe5+2bBZMR2WziYIEp3RDP6FkTa9yrG+ntq9S1I7sI2bwgG954EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADQS/8GAAD//3hZ0MA=")
syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000100)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})

2m19.744656027s ago: executing program 5 (id=795):
r0 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x800000001fe, 0x82)
r1 = dup(r0)
ioctl$USBDEVFS_CONTROL(r1, 0xc0185500, &(0x7f0000000040)={0x23, 0x3, 0x1c, 0x0, 0x0, 0x0, 0x0})

2m19.612623449s ago: executing program 5 (id=796):
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$RTC_AIE_ON(r0, 0x7001)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x3, 0x1, 0x17, 0xb, 0x1, 0x81, 0x6, 0x152, 0xffffffffffffffff})

2m19.612490549s ago: executing program 34 (id=796):
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$RTC_AIE_ON(r0, 0x7001)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f0000000080)={0x3, 0x1, 0x17, 0xb, 0x1, 0x81, 0x6, 0x152, 0xffffffffffffffff})

2m8.946942476s ago: executing program 2 (id=1072):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='gid_map\x00')
setreuid(0xee01, 0xee01)
utimensat(r0, 0x0, &(0x7f0000000880)={{0x77359400}}, 0x0)

2m8.944573786s ago: executing program 2 (id=1074):
r0 = socket$inet(0x2, 0x2, 0x1)
setsockopt$inet_int(r0, 0x0, 0xf, &(0x7f0000000000)=0xfffffdfe, 0x4)
bind$inet(r0, &(0x7f0000000040)={0x2, 0xfffc, @empty}, 0x10)

2m8.844103247s ago: executing program 2 (id=1075):
r0 = socket(0x10, 0x3, 0x0)
write(r0, &(0x7f0000000180)="2000000012005f0214f9f4070000fbe40a0000000000", 0x41d)
recvmmsg(r0, &(0x7f00000021c0), 0x5b, 0x40, 0x0)

2m8.809605338s ago: executing program 2 (id=1078):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x4000, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], 0x6, 0x2ab, &(0x7f0000000a80)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x101091, 0x0)

2m8.747932229s ago: executing program 2 (id=1082):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x8000002, 0xfffffffd, @rand_addr, 0x5fdf4394}, 0x1c)
setsockopt$inet6_buf(r0, 0x29, 0x22, &(0x7f0000000000), 0x6b)

2m8.612073881s ago: executing program 2 (id=1091):
r0 = socket$inet6(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c000000190001000000000000000000021800000000fd000000ed0008000100ac1414003400080004"], 0x2c}}, 0x0)
sendto$inet6(r0, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)

2m8.61195249s ago: executing program 35 (id=1091):
r0 = socket$inet6(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c000000190001000000000000000000021800000000fd000000ed0008000100ac1414003400080004"], 0x2c}}, 0x0)
sendto$inet6(r0, &(0x7f0000000000)='s', 0x10a73, 0x800, 0x0, 0x4b6ae4f95a5de35b)

1m47.791280409s ago: executing program 4 (id=1580):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000000)=0x2, 0x4)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0xb, 0x100000001, 0x10000, 0x3, 0x0, 0x8}, 0x1c)

1m47.780920299s ago: executing program 4 (id=1581):
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x380})
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000080)={0xaa, 0x80})

1m47.73027657s ago: executing program 4 (id=1582):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="08000000040000000400000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000025000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000640)={r1}, 0x70)

1m47.70159826s ago: executing program 4 (id=1583):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0x1400c, &(0x7f0000000840)={[{@stripe={'stripe', 0x3d, 0x3d}}, {@init_itable}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x3, 0x44c, &(0x7f0000000340)="$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")
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000280)='./bus\x00', 0x3083493, 0x0, 0x1, 0x0, &(0x7f0000000080))
mount$overlay(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f0000003f80)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}], [], 0x2c})

1m47.536579982s ago: executing program 4 (id=1587):
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f00000000c0)='./file1\x00', 0x101880a, &(0x7f0000005a80)=ANY=[@ANYBLOB="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"], 0x1, 0x550b, &(0x7f0000000540)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x1a37c1, 0x42)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000600)={0x5d66ad64, 0x0, 0xa, 0x80000000})

1m47.380488435s ago: executing program 4 (id=1594):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000100)={{{@in6=@private2, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@rand_addr=' \x01\x00', 0x0, 0x32}, 0x0, @in=@multicast1}}, 0xe8)
close(r0)

1m47.380295765s ago: executing program 36 (id=1594):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000100)={{{@in6=@private2, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@rand_addr=' \x01\x00', 0x0, 0x32}, 0x0, @in=@multicast1}}, 0xe8)
close(r0)

2.899678699s ago: executing program 8 (id=4368):
r0 = add_key(&(0x7f0000000380)='keyring\x00', &(0x7f0000000300)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
add_key$user(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, &(0x7f0000000140)="d8", 0x1, r0)
keyctl$search(0xa, r0, &(0x7f0000000080)='user\x00', &(0x7f0000000180)={'syz', 0x3}, r0)

2.86409078s ago: executing program 8 (id=4369):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x1810754, &(0x7f00000001c0)={[{@jqfmt_vfsold}, {@errors_continue}, {@usrquota}, {@prjquota}, {@usrquota}, {@resuid={'resuid', 0x3d, 0xee00}}, {@usrjquota, 0x5}, {@min_batch_time={'min_batch_time', 0x3d, 0xffffffff}}, {@nodiscard}, {@test_dummy_encryption}]}, 0xff, 0x46e, &(0x7f0000000e40)="$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")
ioctl$USBDEVFS_IOCTL(0xffffffffffffffff, 0xc0105512, &(0x7f0000000200)=@usbdevfs_driver={0x0, 0xfffffff8, 0x0})
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000100)='.\x00', 0xe1, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, &(0x7f0000000000))

2.691125323s ago: executing program 8 (id=4378):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'sit0\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=@newqdisc={0x64, 0x24, 0x4ee4e6a52ff56541, 0x40000, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0x18}, {0xffff, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x38, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0x8, 0x0, 0x2, 0x8, 0xc, 0x7}, {0x1, 0x0, 0x9, 0x401, 0x0, 0x7fffffff}, 0x2000001, 0x1000, 0x575}}, @TCA_TBF_RATE64={0xc, 0x4, 0x274bdcb7db3981e2}]}}]}, 0x64}, 0x1, 0x0, 0x0, 0x404}, 0x0)

2.593300384s ago: executing program 8 (id=4383):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000002100), 0x2a0045c, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})

2.563317144s ago: executing program 8 (id=4384):
r0 = socket$inet6(0xa, 0x2, 0x3a)
sendto$inet6(r0, &(0x7f0000000000)="800037bbfa9ba1ce", 0x8, 0x4000, &(0x7f0000001100)={0xa, 0x0, 0x0, @loopback}, 0x1c)
recvmmsg(r0, &(0x7f0000000380)=[{{0x0, 0x0, 0x0}, 0x3422a61a}], 0x1, 0x10102, 0x0)

2.369565277s ago: executing program 0 (id=4395):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x2})
ioctl$KDSETMODE(r0, 0x4b3a, 0x0)

2.333966957s ago: executing program 0 (id=4396):
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x213)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@ipv6_getaddr={0x20, 0x16, 0x205, 0x0, 0x0, {0x9}, [@IFA_RT_PRIORITY={0x8}]}, 0x20}}, 0x0)

2.321736428s ago: executing program 0 (id=4397):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = syz_pidfd_open(r0, 0x0)
setns(r1, 0x6000000)

2.302236858s ago: executing program 0 (id=4398):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x7, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x2})
fcntl$lock(r0, 0x6, &(0x7f0000000040)={0x2, 0x1, 0x1, 0xa})

2.263576958s ago: executing program 0 (id=4400):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="850000002e00000037000000000000df9500000000000000"], &(0x7f0000000240)='GPL\x00', 0x1, 0x348, &(0x7f0000000480)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000940)={r0, 0x0, 0x35, 0xb2, &(0x7f0000000b40)="3487188b17b83a1bceb0a4291273fee0dd76ce28a412b233570f9b2a7fd7b26f34647a3883b87f2187fccd4f35a681d0d7f80bd210557bcfd732f331c1e52da8631fe9a875ed91ecd1921be5cca6c4d59b7baf5b1c90e118f56992b394b33a331fd21957509290cc4e235cd7c37fa40052795b2483decfb7db6a8b240ab85403166195f08f1a3b3719409a9b7383aba1fbc1c9a5c8952fad5e057bfa0645fc1406324780484cc75d725e79f8326a058507910e4960a34bf28c5629c8dd4222e43bdd98d7d36d9da984a4bffe342a7103fdb765c9faca0659c89d576888b99ac672b65f13", &(0x7f0000000a80)=""/178, 0x2f00, 0x0, 0xb2, 0xa5, &(0x7f00000007c0)="b520610c75311127840b58a6e774c99d77a2786b5e40e99889424fbfc0176e825cd85cc8f395cc354a00ece16e23cd51984ae79fe0c634560c8f464090ce6439af15b4b269d3c63de01fb868c4ab750db87f3cc40f48caf494b88d4d332dcdad4a30b6d5f0c4a12a74a2d9d5600fa499513a6fa2fb6e973865e244bef4ba9c1290e7442c310436080fcaef33c26eab89dcd4237911034b8003ac93f1c2867de6b54ea530fa73610bbf08f1001b0ee02c0e68", &(0x7f0000000280)="4594193652f8997f4d29b3e8405a4466c300c63ff495e8c50c594b8d6d810087ac1dedc27528541a8b7d1eb0272035752624cf47d2ec5be8a5f08e8d45b19091ceb83a4f2665d95c616ca53641eaa5f607aa8619659f9dfc324ad0988188708276ac86c6ed8f5fe1a0bfdd5e8fa42bccb29234405ced7db7ca0f4a70f7d56a2b67c8a2f9aa1007b42a8e08ca54e01a0c96f169c16c46c1842cbc02ce3d2044acf47c43000000000000000000", 0x0, 0x1ff}, 0x28)

2.218666179s ago: executing program 0 (id=4401):
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0xd1, 0xaf, 0xb6, 0x40, 0x24cf, 0x59e4, 0x943, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x21, 0x0, 0x0, 0x8, 0x6, 0x50}}]}}]}}, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCGIFCONF(r0, 0x890b, &(0x7f0000000000)=@buf)

2.025280841s ago: executing program 9 (id=4407):
r0 = socket$inet6(0xa, 0x2, 0x3a)
setsockopt$inet6_int(r0, 0x29, 0x4e, &(0x7f0000000040)=0x9, 0x4)
bind$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x3}, 0x1c)

2.013654852s ago: executing program 9 (id=4408):
r0 = socket(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x21, &(0x7f0000000000)=0xfffffffe, 0x4)
ioctl(r0, 0x8916, &(0x7f0000000000))

1.999318592s ago: executing program 9 (id=4409):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f00000000c0)={{0x12, 0x1, 0x200, 0x0, 0x0, 0x0, 0x10, 0x46d, 0xc53f, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x2, [{{0x9, 0x4, 0x0, 0x0, 0x5, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0x0, 0x0, 0xfd}}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000240)={0x24, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x22, 0x5, {[@main=@item_4={0x3, 0x0, 0x8, "18cd78bd"}]}}, 0x0}, 0x0)

1.929622293s ago: executing program 7 (id=4412):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
pselect6(0x40, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x2fc, 0x0, 0x200000}, 0x0, &(0x7f0000000100)={0x8, 0x0, 0x0, 0x0, 0x0, 0x50}, 0x0, 0x0)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)

1.711824936s ago: executing program 8 (id=4413):
r0 = syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x46d, 0xc222, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0x1000, 0x6, 0x1, {0x22, 0x7}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0xd, 0x3}}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000100)={0x24, 0x0, 0x0, &(0x7f0000000080)={0x0, 0x22, 0xa, {[@global=@item_4={0x3, 0x1, 0x3, "a4eb4074"}, @global=@item_4={0x3, 0x1, 0x9}]}}, 0x0}, 0x0)

1.084997455s ago: executing program 7 (id=4417):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002300000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r0}, 0x10)
umount2(&(0x7f00000001c0)='./file0\x00', 0x3)

1.062974525s ago: executing program 7 (id=4419):
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f0000000000)=0x1, 0x10d, 0x1, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc)=0x2, 0x5, 0x10000, 0x0, &(0x7f0000000000), 0x0)

842.799638ms ago: executing program 6 (id=4431):
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TUNGETFEATURES(r0, 0x800454cf, &(0x7f0000003480))

816.308368ms ago: executing program 6 (id=4432):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="2000000012008f35"], 0x20}, 0x1, 0x0, 0x0, 0x4081}, 0x4040800)
recvmmsg(r0, &(0x7f0000000d80)=[{{0x0, 0x0, 0x0}, 0x6}, {{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000100)=""/96, 0x60}, {&(0x7f0000002a80)=""/13, 0xd}, {&(0x7f0000001800)=""/88, 0x58}, {&(0x7f0000001880)=""/172, 0xac}, {&(0x7f0000002c80)=""/4100, 0x1004}, {&(0x7f0000002980)=""/212, 0xd4}, {&(0x7f0000000240)=""/180, 0xb4}, {&(0x7f0000002ac0)=""/207, 0xcf}], 0x8}, 0x1}], 0x2, 0x40000002, 0x0)

804.495808ms ago: executing program 6 (id=4433):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000005600)='sys_enter\x00', r0}, 0x10)
setresuid(0xee00, 0x0, 0x0)

792.270659ms ago: executing program 6 (id=4434):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x5, &(0x7f00000027c0)=ANY=[@ANYBLOB="180000000000000000000000ff000000850000000f000000970000005000000095"], &(0x7f0000000280)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000400)='sys_enter\x00', r0}, 0x18)
epoll_pwait2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)

776.525539ms ago: executing program 6 (id=4435):
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f0000000040)='./bus\x00', 0x2000410, &(0x7f00000001c0)=ANY=[@ANYBLOB="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", @ANYRES8], 0x1, 0x555e, &(0x7f0000005f80)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000680)='./file1\x00', 0x1e3040, 0x0)
ioctl$F2FS_IOC_START_ATOMIC_WRITE(r0, 0xf501, 0x0)

443.017414ms ago: executing program 6 (id=4436):
r0 = syz_open_dev$loop(&(0x7f0000000000), 0x80, 0x0)
ioctl$LOOP_GET_STATUS64(r0, 0x4c05, &(0x7f0000000040))
fcntl$getownex(r0, 0x10, 0x0)

200.477067ms ago: executing program 7 (id=4437):
r0 = fsopen(&(0x7f0000000080)='9p\x00', 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
fsconfig$FSCONFIG_SET_FD(r0, 0x5, &(0x7f0000000000)='\\\\+\x00', 0x0, r0)

173.831377ms ago: executing program 7 (id=4438):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x80a, &(0x7f0000000940)={[{@min_batch_time}, {@inlinecrypt}, {@grpquota}, {@errors_remount}]}, 0x1, 0x79b, &(0x7f0000000180)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x1dc)
ioctl$EXT4_IOC_GET_ES_CACHE(r0, 0xc020662a, &(0x7f0000000140)={0x8, 0x2, 0x5, 0x2})

107.992858ms ago: executing program 9 (id=4439):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140)='tracefs\x00', 0x0, 0x0)
mount$bpf(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x140820, &(0x7f0000000340))

99.787368ms ago: executing program 9 (id=4440):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000840), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000001280)={&(0x7f0000000ac0)={0x20, r1, 0x1, 0x70bd2b, 0x25dfdbfe, {}, [@ETHTOOL_A_PRIVFLAGS_FLAGS={0xc, 0x2, 0x0, 0x1, [@ETHTOOL_A_BITSET_MASK={0x4}, @ETHTOOL_A_BITSET_BITS={0x4}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x8040}, 0x20040000)

83.305288ms ago: executing program 9 (id=4441):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x80, &(0x7f0000000000), 0x3e, 0x51b, &(0x7f0000001200)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)

0s ago: executing program 7 (id=4442):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x0, 0x1}, 0xe)
getsockopt$bt_BT_SNDMTU(r0, 0x112, 0xc, 0x0, &(0x7f0000000840))

kernel console output (not intermixed with test programs):

 ip=0x7f29e371b969 code=0x7ffc0000
[  150.178848][ T7867] EXT4-fs (loop6): can't get journal size
[  150.209032][ T7867] EXT4-fs (loop6): mounted filesystem without journal. Opts: noblock_validity,jqfmt=vfsv1,norecovery,nolazytime,noinit_itable,,errors=continue. Quota mode: writeback.
[  150.281963][ T7878] incfs: Error accessing: ./file0.
[  150.287283][ T7878] incfs: mount failed -2
[  150.382696][    T6] usb 9-1: USB disconnect, device number 18
[  150.411496][ T7897] SELinux:  Context system_u:object_r:fsa is not valid (left unmapped).
[  150.480093][ T7910] loop0: detected capacity change from 0 to 512
[  150.515516][ T7910] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  150.530114][ T7910] EXT4-fs (loop0): invalid journal inode
[  150.548052][ T7910] EXT4-fs (loop0): can't get journal size
[  150.573543][ T7910] EXT4-fs (loop0): 1 truncate cleaned up
[  150.583733][ T7910] EXT4-fs (loop0): mounted filesystem without journal. Opts: norecovery,,errors=continue. Quota mode: none.
[  150.619440][ T7910] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3385'.
[  150.645957][ T7934] netlink: 'syz.7.3395': attribute type 1 has an invalid length.
[  152.407781][ T7953] loop8: detected capacity change from 0 to 256
[  152.756306][ T7968] netlink: 4 bytes leftover after parsing attributes in process `syz.9.3410'.
[  152.918411][ T7982] loop8: detected capacity change from 0 to 256
[  152.978975][ T7982] FAT-fs (loop8): Directory bread(block 64) failed
[  152.989995][ T7982] FAT-fs (loop8): Directory bread(block 65) failed
[  152.992246][   T26] usb 8-1: new high-speed USB device number 20 using dummy_hcd
[  153.003180][ T7982] FAT-fs (loop8): Directory bread(block 66) failed
[  153.013028][ T7982] FAT-fs (loop8): Directory bread(block 67) failed
[  153.020563][ T7982] FAT-fs (loop8): Directory bread(block 68) failed
[  153.027161][ T7982] FAT-fs (loop8): Directory bread(block 69) failed
[  153.033911][ T7982] FAT-fs (loop8): Directory bread(block 70) failed
[  153.040459][ T7982] FAT-fs (loop8): Directory bread(block 71) failed
[  153.047542][ T7982] FAT-fs (loop8): Directory bread(block 72) failed
[  153.054319][ T7982] FAT-fs (loop8): Directory bread(block 73) failed
[  153.252246][   T26] usb 8-1: Using ep0 maxpacket: 16
[  153.297805][ T8002] loop0: detected capacity change from 0 to 8192
[  153.352646][ T8002]  loop0: p1 p2[DM] p4
[  153.356882][ T8002] loop0: p1 size 196608 extends beyond EOD, truncated
[  153.379726][ T8002] loop0: p2 start 4292936063 is beyond EOD, truncated
[  153.387181][   T26] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  153.396977][ T8002] loop0: p4 size 50331648 extends beyond EOD, truncated
[  153.406528][   T26] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 3
[  153.488508][ T8004] loop8: detected capacity change from 0 to 40427
[  153.563889][ T8004] F2FS-fs (loop8): invalid crc value
[  153.590415][ T8004] F2FS-fs (loop8): Found nat_bits in checkpoint
[  153.602387][   T26] usb 8-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  153.626724][   T26] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  153.644552][   T26] usb 8-1: Product: syz
[  153.652627][   T26] usb 8-1: Manufacturer: syz
[  153.657411][   T26] usb 8-1: SerialNumber: syz
[  153.665842][ T8016] loop9: detected capacity change from 0 to 40427
[  153.686973][ T8004] F2FS-fs (loop8): Cannot turn on quotas: -2 on 0
[  153.714619][ T8004] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e4
[  153.734634][ T8016] F2FS-fs (loop9): invalid crc value
[  153.769975][ T8016] F2FS-fs (loop9): Found nat_bits in checkpoint
[  153.826590][ T8016] F2FS-fs (loop9): Start checkpoint disabled!
[  153.852353][ T8016] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e6
[  154.012433][   T26] usb 8-1: 0:2 : does not exist
[  154.031712][   T26] usb 8-1: USB disconnect, device number 20
[  154.144484][ T8056] loop9: detected capacity change from 0 to 1024
[  154.222479][ T8056] EXT4-fs (loop9): mounted filesystem without journal. Opts: abort,,errors=continue. Quota mode: writeback.
[  154.258717][ T8056] EXT4-fs error (device loop9): __ext4_new_inode:1076: comm syz.9.3450: reserved inode found cleared - inode=1
[  154.287676][ T8050] loop8: detected capacity change from 0 to 40427
[  154.326575][ T8050] F2FS-fs (loop8): fault_injection options not supported
[  154.356016][ T8050] F2FS-fs (loop8): invalid crc value
[  154.375668][   T30] kauditd_printk_skb: 12 callbacks suppressed
[  154.375685][   T30] audit: type=1400 audit(2000000122.919:820): avc:  denied  { ioctl } for  pid=8063 comm="syz.9.3452" path="/dev/fuse" dev="devtmpfs" ino=91 ioctlcmd=0xe500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[  154.385117][ T8028] loop6: detected capacity change from 0 to 131072
[  154.417091][ T8050] F2FS-fs (loop8): Found nat_bits in checkpoint
[  154.459533][ T8050] F2FS-fs (loop8): Start checkpoint disabled!
[  154.476355][ T8050] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e6
[  154.526888][ T8028] F2FS-fs (loop6): Found nat_bits in checkpoint
[  154.562132][ T8050] F2FS-fs (loop8): Checkpoint should be enabled.
[  154.603384][ T8088] netlink: 28 bytes leftover after parsing attributes in process `syz.7.3463'.
[  154.624219][ T2110] attempt to access beyond end of device
[  154.624219][ T2110] loop8: rw=2049, want=40976, limit=40427
[  154.635582][ T8028] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  154.637821][ T8088] lo: Caught tx_queue_len zero misconfig
[  154.747739][ T8104] loop7: detected capacity change from 0 to 128
[  154.995493][ T8122] netlink: 136 bytes leftover after parsing attributes in process `syz.9.3479'.
[  155.022382][ T8122] A link change request failed with some changes committed already. Interface gre0 may have been left with an inconsistent configuration, please check.
[  155.108790][ T8132] loop6: detected capacity change from 0 to 4096
[  155.143225][ T8136] loop8: detected capacity change from 0 to 2048
[  155.161314][   T30] audit: type=1400 audit(2000000123.699:821): avc:  denied  { bind } for  pid=8139 comm="syz.9.3487" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  155.201448][ T8132] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  155.316780][   T30] audit: type=1326 audit(2000000123.859:822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8144 comm="syz.6.3490" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1d7cfca969 code=0x0
[  155.378946][   T30] audit: type=1326 audit(2000000123.919:823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8148 comm="syz.8.3489" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32dd9f969 code=0x7ffc0000
[  155.433611][   T30] audit: type=1326 audit(2000000123.919:824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8148 comm="syz.8.3489" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32dd9f969 code=0x7ffc0000
[  155.488417][   T30] audit: type=1326 audit(2000000123.949:825): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8148 comm="syz.8.3489" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7ff32dd9f969 code=0x7ffc0000
[  155.508859][ T8156] loop8: detected capacity change from 0 to 1024
[  155.534565][   T30] audit: type=1326 audit(2000000123.949:826): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8148 comm="syz.8.3489" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32dd9f969 code=0x7ffc0000
[  155.559639][ T8156] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945)
[  155.583758][ T8156] EXT4-fs (loop8): revision level too high, forcing read-only mode
[  155.585808][   T30] audit: type=1326 audit(2000000123.949:827): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8148 comm="syz.8.3489" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32dd9f969 code=0x7ffc0000
[  155.593350][ T8112] loop7: detected capacity change from 0 to 131072
[  155.615077][   T30] audit: type=1326 audit(2000000123.949:828): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8148 comm="syz.8.3489" exe="/root/syz-executor" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7ff32dd9f969 code=0x7ffc0000
[  155.632827][ T8156] EXT4-fs (loop8): orphan cleanup on readonly fs
[  155.645142][   T30] audit: type=1326 audit(2000000123.949:829): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8148 comm="syz.8.3489" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff32dd9f969 code=0x7ffc0000
[  155.682297][ T8156] EXT4-fs error (device loop8): ext4_read_inode_bitmap:168: comm syz.8.3494: Inode bitmap for bg 0 marked uninitialized
[  155.697443][ T8112] F2FS-fs (loop7): Invalid segment/section count (31, 24 x 150994945)
[  155.716073][ T8156] EXT4-fs (loop8): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000000000080,bsddf,usrjquota=,lazytime,,errors=continue. Quota mode: writeback.
[  155.733437][ T8112] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[  155.742760][ T8112] F2FS-fs (loop7): invalid crc value
[  155.783295][ T8112] F2FS-fs (loop7): Found nat_bits in checkpoint
[  155.825001][ T8112] F2FS-fs (loop7): Cannot turn on quotas: -2 on 2
[  155.843904][ T8112] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0
[  155.856308][ T8112] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e4
[  156.058991][ T8147] loop9: detected capacity change from 0 to 131072
[  156.092558][ T8147] F2FS-fs (loop9): Test dummy encryption mode enabled
[  156.112275][ T8147] F2FS-fs (loop9): invalid crc value
[  156.158389][ T8147] F2FS-fs (loop9): Found nat_bits in checkpoint
[  156.213318][ T8190] loop6: detected capacity change from 0 to 16
[  156.229290][ T8188] loop8: detected capacity change from 0 to 1024
[  156.239290][ T8147] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[  156.282898][ T8188] EXT4-fs (loop8): Ignoring removed orlov option
[  156.289634][ T8188] EXT4-fs (loop8): Ignoring removed nomblk_io_submit option
[  156.301339][ T8112] F2FS-fs (loop7): Start checkpoint disabled!
[  156.311214][ T8190] erofs: (device loop6): mounted with root inode @ nid 36.
[  156.331643][ T8188] EXT4-fs (loop8): mounted filesystem without journal. Opts: noblock_validity,bsddf,user_xattr,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,grpquota,nomblk_io_submit,,errors=continue. Quota mode: writeback.
[  156.634531][ T8207] netlink: 16 bytes leftover after parsing attributes in process `syz.7.3510'.
[  156.708224][ T8217] loop9: detected capacity change from 0 to 512
[  156.782977][ T8227] loop6: detected capacity change from 0 to 128
[  156.800750][ T8217] EXT4-fs (loop9): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  156.824107][ T8217] ext4 filesystem being mounted at /413/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  156.835599][ T8227] EXT4-fs (loop6): mounted filesystem without journal. Opts: sysvgroups,inode_readahead_blks=0x0000000000004000,,errors=continue. Quota mode: none.
[  156.881141][ T8227] ext4 filesystem being mounted at /620/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  156.925619][ T8232] loop9: detected capacity change from 0 to 512
[  156.942714][   T20] usb 9-1: new high-speed USB device number 19 using dummy_hcd
[  157.005011][ T8232] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  157.039129][ T8232] EXT4-fs (loop9): orphan cleanup on readonly fs
[  157.065294][ T8232] EXT4-fs warning (device loop9): ext4_enable_quotas:6430: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[  157.081311][ T8232] EXT4-fs (loop9): Cannot turn on quotas: error -22
[  157.089932][ T8232] EXT4-fs error (device loop9): ext4_ext_check_inode:501: inode #13: comm syz.9.3525: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  157.108330][ T8232] EXT4-fs error (device loop9): ext4_orphan_get:1406: comm syz.9.3525: couldn't read orphan inode 13 (err -117)
[  157.121062][ T8232] EXT4-fs (loop9): mounted filesystem without journal. Opts: noquota,noblock_validity,min_batch_time=0x000000000000082f,grpquota,debug,debug,grpid,,errors=continue. Quota mode: writeback.
[  157.182251][   T20] usb 9-1: Using ep0 maxpacket: 32
[  157.186287][ T8215] loop7: detected capacity change from 0 to 131072
[  157.258354][ T8215] F2FS-fs (loop7): Invalid segment/section count (31, 24 x 150994945)
[  157.267410][ T8215] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[  157.276927][ T8255] binder: 8254:8255 ioctl c0306201 200000000100 returned -14
[  157.277668][ T8215] F2FS-fs (loop7): invalid crc value
[  157.291656][ T8215] F2FS-fs (loop7): Found nat_bits in checkpoint
[  157.302810][   T20] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  157.328103][ T8262] loop9: detected capacity change from 0 to 1024
[  157.343171][ T8215] F2FS-fs (loop7): Cannot turn on quotas: -2 on 2
[  157.350407][ T8215] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0
[  157.357485][    T6] usb 7-1: new high-speed USB device number 19 using dummy_hcd
[  157.359835][ T8215] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e4
[  157.390438][ T8215] F2FS-fs (loop7): sanity_check_inode: corrupted inode footer i_ino=8, ino,nid: [10986248, 8] run fsck to fix.
[  157.416541][ T8262] EXT4-fs (loop9): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  157.482411][   T20] usb 9-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  157.493575][   T20] usb 9-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  157.501774][   T20] usb 9-1: Product: syz
[  157.506064][   T20] usb 9-1: Manufacturer: syz
[  157.510772][   T20] usb 9-1: SerialNumber: syz
[  157.523134][   T20] usb 9-1: config 0 descriptor??
[  157.562985][   T20] hub 9-1:0.0: bad descriptor, ignoring hub
[  157.568916][   T20] hub: probe of 9-1:0.0 failed with error -5
[  157.675473][ T8276] netlink: 8 bytes leftover after parsing attributes in process `syz.7.3543'.
[  157.762293][   T26] usb 10-1: new high-speed USB device number 12 using dummy_hcd
[  157.772329][    T6] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  157.786015][    T6] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  157.796401][    T6] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  157.809602][    T6] usb 7-1: New USB device found, idVendor=056a, idProduct=0027, bcdDevice= 0.00
[  157.818691][    T6] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  157.827981][    T6] usb 7-1: config 0 descriptor??
[  157.881922][ T8296] loop7: detected capacity change from 0 to 4096
[  157.915474][ T8296] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  158.022336][   T26] usb 10-1: Using ep0 maxpacket: 16
[  158.032078][ T8307] loop7: detected capacity change from 0 to 256
[  158.082368][  T930] usb 9-1: reset high-speed USB device number 19 using dummy_hcd
[  158.128140][ T8307] FAT-fs (loop7): Directory bread(block 64) failed
[  158.134837][ T8307] FAT-fs (loop7): Directory bread(block 65) failed
[  158.141407][ T8307] FAT-fs (loop7): Directory bread(block 66) failed
[  158.148127][   T26] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  158.148267][ T8307] FAT-fs (loop7): Directory bread(block 67) failed
[  158.159343][   T26] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  158.166215][ T8307] FAT-fs (loop7): Directory bread(block 68) failed
[  158.175693][   T26] usb 10-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00
[  158.182776][ T8307] FAT-fs (loop7): Directory bread(block 69) failed
[  158.191391][   T26] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  158.197938][ T8307] FAT-fs (loop7): Directory bread(block 70) failed
[  158.207259][   T26] usb 10-1: config 0 descriptor??
[  158.217471][ T8307] FAT-fs (loop7): Directory bread(block 71) failed
[  158.224127][ T8307] FAT-fs (loop7): Directory bread(block 72) failed
[  158.230655][ T8307] FAT-fs (loop7): Directory bread(block 73) failed
[  158.328490][ T8311] loop7: detected capacity change from 0 to 8192
[  158.336153][    T6] wacom 0003:056A:0027.0044: unknown main item tag 0x0
[  158.343532][    T6] wacom 0003:056A:0027.0044: unknown main item tag 0x0
[  158.350601][    T6] wacom 0003:056A:0027.0044: Unknown device_type for 'HID 056a:0027'. Assuming pen.
[  158.353096][ T8311]  loop7: p1 p2[DM] p4
[  158.361594][    T6] wacom 0003:056A:0027.0044: hidraw0: USB HID v0.00 Device [HID 056a:0027] on usb-dummy_hcd.6-1/input0
[  158.364801][ T8311] loop7: p1 size 196608 extends beyond EOD, truncated
[  158.376327][    T6] input: Wacom Intuos5 touch M Pen as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:0.0/0003:056A:0027.0044/input/input30
[  158.382852][ T8311] loop7: p2 start 4292936063 is beyond EOD, truncated
[  158.401486][ T8311] loop7: p4 size 50331648 extends beyond EOD, truncated
[  158.548219][    T6] usb 7-1: USB disconnect, device number 19
[  158.634874][ T8317] loop7: detected capacity change from 0 to 512
[  158.683858][   T26] hid-multitouch 0003:1FD2:6007.0045: hidraw0: USB HID v0.00 Device [HID 1fd2:6007] on usb-dummy_hcd.9-1/input0
[  158.708099][ T8317] EXT4-fs (loop7): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  158.724225][ T8317] ext4 filesystem being mounted at /573/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  158.811482][ T8325] loop7: detected capacity change from 0 to 256
[  158.842417][   T26] usb 9-1: USB disconnect, device number 19
[  158.896926][   T26] usb 10-1: USB disconnect, device number 12
[  159.179946][ T8327] loop6: detected capacity change from 0 to 40427
[  159.213763][ T8327] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  159.221851][ T8327] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  159.231882][ T8327] F2FS-fs (loop6): invalid crc value
[  159.235099][ T8333] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  159.239328][ T8327] F2FS-fs (loop6): Found nat_bits in checkpoint
[  159.266972][ T8338] loop8: detected capacity change from 0 to 512
[  159.285354][ T8327] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  159.292595][ T8327] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  159.309626][ T8338] EXT4-fs (loop8): Ignoring removed nobh option
[  159.317941][ T8338] EXT4-fs (loop8): mounted filesystem without journal. Opts: barrier=0x0000000000000004,bsddf,nobh,init_itable=0x0000000000000003,data_err=ignore,,errors=continue. Quota mode: none.
[  159.341566][ T3934] F2FS-fs (loop6): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  159.351024][ T3934] F2FS-fs (loop6): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  159.444236][ T8347] loop8: detected capacity change from 0 to 4096
[  159.450972][ T8349] cgroup: name respecified
[  159.485962][ T8347] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  159.514503][ T8347] fs-verity: sha256 using implementation "sha256-avx2"
[  159.533785][ T8347] fs-verity (loop8, inode 16): fs-verity keyring is empty, rejecting signed file!
[  159.671893][ T8367] futex_wake_op: syz.9.3583 tries to shift op by -1; fix this program
[  159.812008][ T8390] loop8: detected capacity change from 0 to 512
[  159.861457][ T8397] netlink: 20 bytes leftover after parsing attributes in process `syz.9.3598'.
[  159.889918][   T30] kauditd_printk_skb: 1 callbacks suppressed
[  159.889933][   T30] audit: type=1326 audit(2000000128.429:831): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8399 comm="syz.7.3599" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fc7f46b8969 code=0x0
[  159.921386][ T8390] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  159.932538][ T8390] ext4 filesystem being mounted at /630/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  159.974053][ T8410] loop9: detected capacity change from 0 to 512
[  160.004134][ T8410] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  160.025301][ T8410] EXT4-fs (loop9): 1 truncate cleaned up
[  160.034434][ T8410] EXT4-fs (loop9): mounted filesystem without journal. Opts: minixdf,jqfmt=vfsv0,inlinecrypt,noblock_validity,usrjquota=,,errors=continue. Quota mode: none.
[  160.074982][   T30] audit: type=1400 audit(2000000128.619:832): avc:  denied  { create } for  pid=8420 comm="syz.6.3609" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rxrpc_socket permissive=1
[  160.100377][ T8422] loop6: detected capacity change from 0 to 1024
[  160.201448][ T8422] EXT4-fs (loop6): mounted filesystem without journal. Opts: nombcache,abort,dioread_lock,norecovery,discard,lazytime,noload,usrquota,noauto_da_alloc,,errors=continue. Quota mode: writeback.
[  160.323281][ T8443] loop8: detected capacity change from 0 to 1024
[  160.383152][ T8443] EXT4-fs (loop8): Ignoring removed mblk_io_submit option
[  160.395685][ T8443] EXT4-fs (loop8): Ignoring removed bh option
[  160.407525][ T8443] EXT4-fs (loop8): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  160.434424][ T8443] EXT4-fs (loop8): mounted filesystem without journal. Opts: delalloc,jqfmt=vfsold,mblk_io_submit,nodelalloc,data_err=ignore,mb_optimize_scan=0x0000000000000001,lazytime,max_batch_time=0x000000000000000e,noquota,user_xattr,bh,dioread_nolock,dioread_nolock,,errors=continue. Quota mode: none.
[  160.502746][ T8454] loop8: detected capacity change from 0 to 512
[  160.523694][ T8454] EXT4-fs (loop8): Ignoring removed orlov option
[  160.530159][ T8454] EXT4-fs (loop8): Journaled quota options ignored when QUOTA feature is enabled
[  160.535049][ T8454] EXT4-fs (loop8): mounted filesystem without journal. Opts: min_batch_time=0x0000000000000008,noinit_itable,orlov,grpjquota=.,stripe=0x0000000000000000,inlinecrypt,,errors=continue. Quota mode: writeback.
[  160.559988][ T8454] ext4 filesystem being mounted at /636/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  160.579795][ T8454] EXT4-fs error (device loop8): ext4_get_verity_descriptor_location:338: inode #15: comm syz.8.3622: verity file corrupted; can't find descriptor
[  160.579997][ T8454] fs-verity (loop8, inode 15): Error -117 getting verity descriptor size
[  160.952238][  T305] usb 9-1: new high-speed USB device number 20 using dummy_hcd
[  161.044160][   T26] usb 8-1: new full-speed USB device number 21 using dummy_hcd
[  161.140390][ T8479] loop9: detected capacity change from 0 to 4096
[  161.173698][ T8479] EXT4-fs (loop9): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  161.202242][  T305] usb 9-1: Using ep0 maxpacket: 8
[  161.243575][ T8482] loop9: detected capacity change from 0 to 512
[  161.313209][ T8482] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  161.322375][  T305] usb 9-1: config 0 interface 0 altsetting 7 endpoint 0x81 has invalid wMaxPacketSize 0
[  161.324145][ T8482] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c119, mo2=0002]
[  161.333489][  T305] usb 9-1: config 0 interface 0 has no altsetting 0
[  161.341115][ T8482] System zones: 1-12
[  161.352005][ T8482] EXT4-fs (loop9): 1 truncate cleaned up
[  161.357862][ T8482] EXT4-fs (loop9): mounted filesystem without journal. Opts: nolazytime,init_itable=0x000000007fffffff,debug,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[  161.375294][  T305] usb 9-1: New USB device found, idVendor=18b1, idProduct=0037, bcdDevice= 0.00
[  161.384380][  T305] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  161.387489][ T8482] EXT4-fs warning (device loop9): ext4_group_add:1696: No reserved GDT blocks, can't resize
[  161.393243][  T305] usb 9-1: config 0 descriptor??
[  161.412328][   T26] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  161.422515][   T26] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 3
[  161.471287][   T30] audit: type=1400 audit(2000000130.009:833): avc:  denied  { remount } for  pid=8493 comm="syz.6.3640" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[  161.521561][   T30] audit: type=1326 audit(2000000130.059:834): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8501 comm="syz.9.3643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e371b969 code=0x7ffc0000
[  161.547862][   T30] audit: type=1326 audit(2000000130.059:835): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8501 comm="syz.9.3643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f29e371b969 code=0x7ffc0000
[  161.582327][   T26] usb 8-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  161.586327][   T30] audit: type=1326 audit(2000000130.059:836): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8501 comm="syz.9.3643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e371b969 code=0x7ffc0000
[  161.591405][   T26] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  161.625923][   T30] audit: type=1326 audit(2000000130.059:837): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8501 comm="syz.9.3643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=8 compat=0 ip=0x7f29e371b969 code=0x7ffc0000
[  161.629800][   T26] usb 8-1: Product: syz
[  161.655155][   T26] usb 8-1: Manufacturer: syz
[  161.659903][   T26] usb 8-1: SerialNumber: syz
[  161.674967][   T30] audit: type=1326 audit(2000000130.059:838): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8501 comm="syz.9.3643" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e371b969 code=0x7ffc0000
[  161.708876][ T8516] loop9: detected capacity change from 0 to 8192
[  161.873275][  T305] petalynx 0003:18B1:0037.0046: item fetching failed at offset 5/7
[  161.881424][  T305] petalynx 0003:18B1:0037.0046: parse failed
[  161.902234][  T305] petalynx: probe of 0003:18B1:0037.0046 failed with error -22
[  161.992320][   T26] usb 8-1: 0:2 : does not exist
[  162.035302][   T26] usb 8-1: USB disconnect, device number 21
[  162.042586][ T8516]  loop9: p1 p2[DM] p4
[  162.046780][ T8516] loop9: p1 size 196608 extends beyond EOD, truncated
[  162.056184][ T8516] loop9: p2 start 4292936063 is beyond EOD, truncated
[  162.059644][ T1085] udevd[1085]: error opening ATTR{/sys/devices/platform/dummy_hcd.7/usb8/8-1/8-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[  162.064169][ T8516] loop9: p4 size 50331648 extends beyond EOD, truncated
[  162.084233][   T20] usb 9-1: USB disconnect, device number 20
[  162.109113][  T101]  loop9: p1 p2[DM] p4
[  162.113316][  T101] loop9: p1 size 196608 extends beyond EOD, truncated
[  162.132876][  T101] loop9: p2 start 4292936063 is beyond EOD, truncated
[  162.139689][  T101] loop9: p4 size 50331648 extends beyond EOD, truncated
[  162.472237][    T6] usb 10-1: new high-speed USB device number 13 using dummy_hcd
[  162.517413][ T1085] udevd[1085]: inotify_add_watch(7, /dev/loop9p1, 10) failed: No such file or directory
[  162.529819][ T1086] udevd[1086]: inotify_add_watch(7, /dev/loop9p4, 10) failed: No such file or directory
[  164.402563][ T1085] udevd[1085]: inotify_add_watch(7, /dev/loop9p1, 10) failed: No such file or directory
[  164.413016][ T1086] udevd[1086]: inotify_add_watch(7, /dev/loop9p4, 10) failed: No such file or directory
[  165.702302][   T26] usb 9-1: new high-speed USB device number 21 using dummy_hcd
[  165.842250][  T305] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[  165.852270][    T6] usb 10-1: device not accepting address 13, error -71
[  165.992266][ T1185] usb 8-1: new high-speed USB device number 22 using dummy_hcd
[  166.062319][   T26] usb 9-1: config 0 interface 0 has no altsetting 0
[  166.068987][   T26] usb 9-1: New USB device found, idVendor=056a, idProduct=0034, bcdDevice= 0.00
[  166.078481][   T26] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  166.086632][  T305] usb 7-1: Using ep0 maxpacket: 32
[  166.093097][   T26] usb 9-1: config 0 descriptor??
[  166.202363][  T305] usb 7-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  166.215488][  T305] usb 7-1: config 0 interface 0 has no altsetting 0
[  166.222123][  T305] usb 7-1: New USB device found, idVendor=0b05, idProduct=17e0, bcdDevice= 0.00
[  166.231689][  T305] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  166.239948][ T1185] usb 8-1: Using ep0 maxpacket: 32
[  166.246193][  T305] usb 7-1: config 0 descriptor??
[  166.293073][ T8596] loop9: detected capacity change from 0 to 131072
[  166.362336][ T1185] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  166.373335][ T1185] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  166.384202][ T1185] usb 8-1: New USB device found, idVendor=044f, idProduct=b654, bcdDevice= 0.00
[  166.387090][ T8596] F2FS-fs (loop9): invalid crc value
[  166.395001][ T1185] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  166.408041][ T1185] usb 8-1: config 0 descriptor??
[  166.415114][ T8596] F2FS-fs (loop9): Disable nat_bits due to incorrect cp_ver (5492360516706960868, 5492359647907284964)
[  166.439505][ T8596] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e4
[  166.464977][ T8596] F2FS-fs (loop9): Corrupted max_depth of 3: 16842753
[  166.576216][   T26] wacom 0003:056A:0034.0047: ignoring exceeding usage max
[  166.589489][   T26] wacom 0003:056A:0034.0047: hidraw0: USB HID v0.07 Device [HID 056a:0034] on usb-dummy_hcd.8-1/input0
[  166.723962][  T305] hid-generic 0003:0B05:17E0.0048: hidraw1: USB HID vff.fc Device [HID 0b05:17e0] on usb-dummy_hcd.6-1/input0
[  166.789140][  T305] usb 9-1: USB disconnect, device number 21
[  166.893201][ T1185] thrustmaster 0003:044F:B654.0049: unknown main item tag 0x0
[  166.900831][ T1185] thrustmaster 0003:044F:B654.0049: unknown main item tag 0x0
[  166.908567][ T1185] thrustmaster 0003:044F:B654.0049: unknown main item tag 0x0
[  166.916169][ T1185] thrustmaster 0003:044F:B654.0049: unknown main item tag 0x0
[  166.924227][ T1185] thrustmaster 0003:044F:B654.0049: unknown main item tag 0x0
[  166.932622][   T20] usb 7-1: USB disconnect, device number 20
[  166.932971][ T1185] thrustmaster 0003:044F:B654.0049: hidraw0: USB HID v0.00 Device [HID 044f:b654] on usb-dummy_hcd.7-1/input0
[  166.950241][ T1185] thrustmaster 0003:044F:B654.0049: no inputs found
[  166.982317][    T6] usb 10-1: new high-speed USB device number 14 using dummy_hcd
[  167.103531][ T1185] usb 8-1: USB disconnect, device number 22
[  167.222279][    T6] usb 10-1: Using ep0 maxpacket: 16
[  167.319864][ T8610] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  167.351297][ T8614] netlink: 20 bytes leftover after parsing attributes in process `syz.8.3694'.
[  167.360524][    T6] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  167.371847][    T6] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  167.381990][    T6] usb 10-1: New USB device found, idVendor=0419, idProduct=0001, bcdDevice= 0.00
[  167.391416][    T6] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  167.403985][    T6] usb 10-1: config 0 descriptor??
[  167.598243][ T8636] loop6: detected capacity change from 0 to 256
[  167.643646][ T8642] loop7: detected capacity change from 0 to 512
[  167.659639][ T8636] FAT-fs (loop6): Directory bread(block 64) failed
[  167.666727][ T8636] FAT-fs (loop6): Directory bread(block 65) failed
[  167.673553][ T8636] FAT-fs (loop6): Directory bread(block 66) failed
[  167.680083][ T8636] FAT-fs (loop6): Directory bread(block 67) failed
[  167.686808][ T8636] FAT-fs (loop6): Directory bread(block 68) failed
[  167.693657][ T8636] FAT-fs (loop6): Directory bread(block 69) failed
[  167.700365][ T8636] FAT-fs (loop6): Directory bread(block 70) failed
[  167.701154][ T8642] EXT4-fs (loop7): mounted filesystem without journal. Opts: grpjquota=,stripe=0x0000000000000002,,errors=continue. Quota mode: writeback.
[  167.707006][ T8636] FAT-fs (loop6): Directory bread(block 71) failed
[  167.722091][ T8642] ext4 filesystem being mounted at /599/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  167.727784][ T8636] FAT-fs (loop6): Directory bread(block 72) failed
[  167.746539][ T8636] FAT-fs (loop6): Directory bread(block 73) failed
[  167.812246][ T1185] usb 9-1: new high-speed USB device number 22 using dummy_hcd
[  167.832379][ T8647] loop6: detected capacity change from 0 to 1024
[  167.859232][ T8649] loop7: detected capacity change from 0 to 512
[  167.883700][    T6] samsung 0003:0419:0001.004A: hidraw0: USB HID v0.00 Device [HID 0419:0001] on usb-dummy_hcd.9-1/input0
[  167.901230][ T8647] EXT4-fs error (device loop6): ext4_read_block_bitmap_nowait:476: comm syz.6.3709: Invalid block bitmap block 0 in block_group 0
[  167.915207][ T8647] Quota error (device loop6): write_blk: dquota write failed
[  167.922710][ T8647] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[  167.932846][ T8647] EXT4-fs error (device loop6): ext4_acquire_dquot:6195: comm syz.6.3709: Failed to acquire dquot type 0
[  167.952491][ T8649] EXT4-fs (loop7): Cannot turn on journaled quota: type 0: error -2
[  167.961314][ T8647] EXT4-fs error (device loop6): ext4_free_blocks:6223: comm syz.6.3709: Freeing blocks not in datazone - block = 0, count = 4096
[  167.975026][ T8649] EXT4-fs (loop7): Cannot turn on journaled quota: type 1: error -2
[  167.975120][ T8647] EXT4-fs error (device loop6): ext4_read_inode_bitmap:140: comm syz.6.3709: Invalid inode bitmap blk 0 in block_group 0
[  167.986884][ T8649] EXT4-fs (loop7): 1 truncate cleaned up
[  168.001623][ T8649] EXT4-fs (loop7): mounted filesystem without journal. Opts: jqfmt=vfsold,grpjquota="errors=continue,noload,nombcache,usrjquota="errors=continue,errors=remount-ro,barrier,. Quota mode: writeback.
[  168.002485][   T45] Quota error (device loop6): remove_tree: Getting block too big (0 >= 9)
[  168.029410][ T8647] EXT4-fs error (device loop6) in ext4_free_inode:362: Corrupt filesystem
[  168.041025][ T8649] EXT4-fs error (device loop7): ext4_map_blocks:629: inode #2: block 4: comm syz.7.3710: lblock 0 mapped to illegal pblock 4 (length 1)
[  168.044545][ T8647] EXT4-fs (loop6): 1 orphan inode deleted
[  168.055261][   T45] EXT4-fs error (device loop6): ext4_release_dquot:6218: comm kworker/u4:2: Failed to release dquot type 0
[  168.061698][ T8649] EXT4-fs (loop7): Remounting filesystem read-only
[  168.072672][ T8647] EXT4-fs (loop6): mounted filesystem without journal. Opts: ��; ,errors=continue. Quota mode: writeback.
[  168.092253][ T1185] usb 9-1: Using ep0 maxpacket: 8
[  168.105824][   T26] usb 10-1: USB disconnect, device number 14
[  168.131668][  T295] Quota error (device loop6): remove_tree: Getting block too big (0 >= 9)
[  168.140303][  T295] EXT4-fs error (device loop6): ext4_release_dquot:6218: comm kworker/u4:3: Failed to release dquot type 0
[  168.160498][    T6] kernel write not supported for file /1244/attr/prev (pid: 6 comm: kworker/0:0)
[  168.222315][ T1185] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  168.239680][ T1185] usb 9-1: New USB device found, idVendor=0458, idProduct=4018, bcdDevice= 0.00
[  168.249146][ T1185] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  168.261100][ T1185] usb 9-1: config 0 descriptor??
[  168.367135][ T8675] loop7: detected capacity change from 0 to 512
[  168.403176][ T8679] loop6: detected capacity change from 0 to 512
[  168.413336][ T8675] EXT4-fs (loop7): Test dummy encryption mode enabled
[  168.420199][ T8675] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  168.431659][ T8675] EXT4-fs (loop7): 1 truncate cleaned up
[  168.437846][ T8675] EXT4-fs (loop7): mounted filesystem without journal. Opts: test_dummy_encryption=v1,resgid=0x0000000000000000,,errors=continue. Quota mode: none.
[  168.457444][ T8675] EXT4-fs error (device loop7): ext4_find_dest_de:2115: inode #2: block 13: comm syz.7.3721: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0
[  168.480842][ T8679] EXT4-fs (loop6): Ignoring removed mblk_io_submit option
[  168.488168][ T8679] EXT4-fs (loop6): Test dummy encryption mode enabled
[  168.495264][ T8679] EXT4-fs (loop6): Ignoring removed mblk_io_submit option
[  168.502759][ T8679] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  168.515527][ T8679] EXT4-fs (loop6): 1 truncate cleaned up
[  168.521347][ T8679] EXT4-fs (loop6): mounted filesystem without journal. Opts: errors=remount-ro,mblk_io_submit,inlinecrypt,test_dummy_encryption=v1,barrier,mblk_io_submit,nogrpid,. Quota mode: none.
[  168.734548][ T1185] kye 0003:0458:4018.004B: hidraw0: USB HID v0.07 Device [HID 0458:4018] on usb-dummy_hcd.8-1/input0
[  168.891630][ T8718] loop7: detected capacity change from 0 to 40427
[  168.939977][ T1185] usb 9-1: USB disconnect, device number 22
[  168.945816][ T8718] F2FS-fs (loop7): fault_injection options not supported
[  168.954677][ T8718] F2FS-fs (loop7): invalid crc value
[  168.961347][ T8718] F2FS-fs (loop7): Found nat_bits in checkpoint
[  168.990304][ T8718] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  169.028831][ T2098] attempt to access beyond end of device
[  169.028831][ T2098] loop7: rw=2049, want=45104, limit=40427
[  169.147972][ T8735] syz.7.3748[8735] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  169.148063][ T8735] syz.7.3748[8735] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  169.159686][    T6] usb 7-1: new high-speed USB device number 21 using dummy_hcd
[  169.178804][   T20] usb 10-1: new high-speed USB device number 15 using dummy_hcd
[  169.305675][ T8745] loop7: detected capacity change from 0 to 1024
[  169.383418][ T8745] EXT4-fs (loop7): Ignoring removed orlov option
[  169.393613][ T8745] EXT4-fs (loop7): mounted filesystem without journal. Opts: jqfmt=vfsv1,bsddf,quota,noauto_da_alloc,debug_want_extra_isize=0x0000000000000080,lazytime,noauto_da_alloc,stripe=0x0000000000000005,orlov,,errors=continue. Quota mode: writeback.
[  169.423126][ T8745] EXT4-fs error (device loop7): ext4_find_dest_de:2115: inode #12: block 7: comm syz.7.3753: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=56 fake=0
[  169.452386][   T20] usb 10-1: Using ep0 maxpacket: 16
[  169.458190][    T6] usb 7-1: Using ep0 maxpacket: 16
[  169.469742][ T8749] 9pnet: p9_fd_create_tcp (8749): problem binding to privport
[  169.501795][ T8753] loop7: detected capacity change from 0 to 512
[  169.537472][ T8753] EXT4-fs (loop7): mounted filesystem without journal. Opts: grpid,grpquota,,errors=continue. Quota mode: writeback.
[  169.550120][ T8753] ext4 filesystem being mounted at /627/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  169.582352][    T6] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 238, changing to 11
[  169.593647][   T20] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  169.605012][   T20] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  169.615916][    T6] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 4
[  169.629036][   T20] usb 10-1: New USB device found, idVendor=054c, idProduct=024b, bcdDevice= 0.00
[  169.638356][    T6] usb 7-1: New USB device found, idVendor=0566, idProduct=3004, bcdDevice= 0.00
[  169.647623][   T20] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  169.657404][    T6] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  169.666417][   T20] usb 10-1: config 0 descriptor??
[  169.672503][    T6] usb 7-1: config 0 descriptor??
[  169.688489][ T8767] netlink: 5 bytes leftover after parsing attributes in process `syz.7.3762'.
[  169.698411][ T8767] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  169.801321][   T30] audit: type=1326 audit(2000000138.339:839): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8778 comm="syz.7.3768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7f46b8969 code=0x7ffc0000
[  169.825036][   T30] audit: type=1326 audit(2000000138.339:840): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8778 comm="syz.7.3768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7f46b8969 code=0x7ffc0000
[  169.848602][   T30] audit: type=1326 audit(2000000138.349:841): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8778 comm="syz.7.3768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7fc7f46b8969 code=0x7ffc0000
[  169.872098][   T30] audit: type=1326 audit(2000000138.349:842): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8778 comm="syz.7.3768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7f46b8969 code=0x7ffc0000
[  169.895635][   T30] audit: type=1326 audit(2000000138.349:843): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8778 comm="syz.7.3768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7f46b8969 code=0x7ffc0000
[  169.920407][   T30] audit: type=1326 audit(2000000138.349:844): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8778 comm="syz.7.3768" exe="/root/syz-executor" sig=0 arch=c000003e syscall=52 compat=0 ip=0x7fc7f46b8969 code=0x7ffc0000
[  170.153188][    T6] monterey 0003:0566:3004.004C: unknown main item tag 0x0
[  170.161361][   T20] sony 0003:054C:024B.004D: unknown main item tag 0x0
[  170.169312][    T6] monterey 0003:0566:3004.004C: unknown main item tag 0x0
[  170.177242][   T20] sony 0003:054C:024B.004D: hiddev96,hidraw0: USB HID v0.00 Device [HID 054c:024b] on usb-dummy_hcd.9-1/input0
[  170.189039][    T6] monterey 0003:0566:3004.004C: unknown main item tag 0x0
[  170.196197][   T20] sony 0003:054C:024B.004D: failed to claim input
[  170.203346][    T6] monterey 0003:0566:3004.004C: hidraw1: USB HID v0.00 Device [HID 0566:3004] on usb-dummy_hcd.6-1/input0
[  170.354904][ T1185] usb 7-1: USB disconnect, device number 21
[  170.364870][    T6] usb 10-1: USB disconnect, device number 15
[  170.411132][ T8789] loop7: detected capacity change from 0 to 512
[  170.472847][ T8789] EXT4-fs (loop7): Ignoring removed mblk_io_submit option
[  170.480203][ T8789] EXT4-fs (loop7): Ignoring removed mblk_io_submit option
[  170.487758][ T8789] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem
[  170.496732][ T8789] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c11c, mo2=0002]
[  170.504802][ T8789] System zones: 1-12
[  170.509418][ T8789] EXT4-fs error (device loop7): ext4_xattr_ibody_find:2219: inode #15: comm syz.7.3771: corrupted in-inode xattr
[  170.521688][ T8789] EXT4-fs error (device loop7): ext4_orphan_get:1406: comm syz.7.3771: couldn't read orphan inode 15 (err -117)
[  170.534037][ T8789] EXT4-fs (loop7): mounted filesystem without journal. Opts: jqfmt=vfsold,grpid,debug,noload,mblk_io_submit,commit=0x0000000000000005,init_itable=0x0000000000000009,debug,usrjquota=,nolazytime,mblk_io_submit,,errors=continue. Quota mode: none.
[  170.612078][ T8795] loop7: detected capacity change from 0 to 16
[  170.702773][ T8795] erofs: (device loop7): mounted with root inode @ nid 36.
[  170.712122][ T8795] erofs: (device loop7): z_erofs_readahead: readahead error at page 2 @ nid 89
[  170.722018][   T48] erofs: (device loop7): z_erofs_lz4_decompress_mem: failed to decompress 6887 in[4096, 0] out[8192]
[  170.743341][ T8795] erofs: (device loop7): z_erofs_lz4_decompress_mem: failed to decompress 6887 in[4096, 0] out[8192]
[  170.933869][   T20] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  171.001853][ T8817] loop9: detected capacity change from 0 to 2048
[  171.049606][ T8817]  loop9: p1 < > p3
[  171.054892][ T8817] loop9: p3 size 134217728 extends beyond EOD, truncated
[  171.082416][  T101]  loop9: p1 < > p3
[  171.086823][  T101] loop9: p3 size 134217728 extends beyond EOD, truncated
[  171.099640][ T8833] loop6: detected capacity change from 0 to 16
[  171.123443][ T8833] erofs: (device loop6): mounted with root inode @ nid 36.
[  171.135405][ T8837] loop7: detected capacity change from 0 to 512
[  171.159170][ T8837] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  171.170405][ T8837] ext4 filesystem being mounted at /651/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  171.229233][ T1086] udevd[1086]: inotify_add_watch(7, /dev/loop9p3, 10) failed: No such file or directory
[  171.242996][ T1085] udevd[1085]: inotify_add_watch(7, /dev/loop9p1, 10) failed: No such file or directory
[  171.258533][ T8850] tipc: Invalid UDP bearer configuration
[  171.258558][ T8850] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  171.328541][ T8860] loop6: detected capacity change from 0 to 256
[  171.355820][ T8866] loop9: detected capacity change from 0 to 512
[  171.411981][ T8860] FAT-fs (loop6): Directory bread(block 64) failed
[  171.423308][ T8860] FAT-fs (loop6): Directory bread(block 65) failed
[  171.429891][ T8860] FAT-fs (loop6): Directory bread(block 66) failed
[  171.437919][ T8866] EXT4-fs (loop9): mounted filesystem without journal. Opts: grpjquota=,stripe=0x0000000000000002,,errors=continue. Quota mode: writeback.
[  171.452254][ T8860] FAT-fs (loop6): Directory bread(block 67) failed
[  171.458824][ T8860] FAT-fs (loop6): Directory bread(block 68) failed
[  171.466083][ T8866] ext4 filesystem being mounted at /487/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  171.476973][ T8860] FAT-fs (loop6): Directory bread(block 69) failed
[  171.484136][ T8860] FAT-fs (loop6): Directory bread(block 70) failed
[  171.490808][ T8860] FAT-fs (loop6): Directory bread(block 71) failed
[  171.497652][ T8860] FAT-fs (loop6): Directory bread(block 72) failed
[  171.504438][ T8860] FAT-fs (loop6): Directory bread(block 73) failed
[  171.916642][ T8917] loop0: detected capacity change from 0 to 512
[  172.053732][ T8917] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #3: comm syz.0.3833: corrupted inode contents
[  172.072747][ T8917] EXT4-fs error (device loop0): ext4_dirty_inode:6041: inode #3: comm syz.0.3833: mark_inode_dirty error
[  172.093999][ T8917] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #3: comm syz.0.3833: corrupted inode contents
[  172.118868][ T8917] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #3: comm syz.0.3833: mark_inode_dirty error
[  172.152756][ T8921] device macsec1 entered promiscuous mode
[  172.159060][ T8917] EXT4-fs error (device loop0): ext4_acquire_dquot:6195: comm syz.0.3833: Failed to acquire dquot type 0
[  172.180641][ T8921] device gretap0 entered promiscuous mode
[  172.186633][ T1185] usb 7-1: new high-speed USB device number 22 using dummy_hcd
[  172.202788][ T8917] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #16: comm syz.0.3833: corrupted inode contents
[  172.222440][ T8921] device gretap0 left promiscuous mode
[  172.229627][ T8917] EXT4-fs error (device loop0): ext4_dirty_inode:6041: inode #16: comm syz.0.3833: mark_inode_dirty error
[  172.257080][ T8917] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #16: comm syz.0.3833: corrupted inode contents
[  172.281972][ T8917] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #16: comm syz.0.3833: mark_inode_dirty error
[  172.302147][ T8917] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #16: comm syz.0.3833: corrupted inode contents
[  172.342408][ T8917] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[  172.358667][ T8917] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #16: comm syz.0.3833: corrupted inode contents
[  172.390922][ T8917] EXT4-fs error (device loop0): ext4_truncate:4303: inode #16: comm syz.0.3833: mark_inode_dirty error
[  172.422868][ T8917] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[  172.452248][ T1185] usb 7-1: Using ep0 maxpacket: 8
[  172.459005][ T8917] EXT4-fs (loop0): 1 truncate cleaned up
[  172.479623][ T8917] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  172.503131][ T8917] ext4 filesystem being mounted at /563/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  172.572340][ T1185] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  172.596520][ T1185] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  172.622439][ T1185] usb 7-1: New USB device found, idVendor=046d, idProduct=c20e, bcdDevice= 0.00
[  172.632222][ T1185] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  172.641369][ T1185] usb 7-1: config 0 descriptor??
[  172.800931][ T8960] loop0: detected capacity change from 0 to 512
[  172.867243][ T8964] device veth0_to_batadv left promiscuous mode
[  172.879995][ T8964] device ip6tnl1 left promiscuous mode
[  172.893745][ T3934] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[  172.913823][ T3934] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  172.925733][ T3934] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[  172.935909][ T8960] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  172.954859][ T8960] ext4 filesystem being mounted at /565/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  172.960557][ T3934] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  172.973906][ T3934] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  172.983642][ T3934] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  172.991983][ T3934] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  173.000354][ T3934] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  173.008942][ T3934] IPv6: ADDRCONF(NETDEV_CHANGE): veth3: link becomes ready
[  173.016895][ T3934] IPv6: ADDRCONF(NETDEV_CHANGE): veth2: link becomes ready
[  173.130582][ T8985] SELinux: security_context_str_to_sid(user_u) failed for (dev ?, type ?) errno=-22
[  173.143027][ T1185] logitech 0003:046D:C20E.004E: rdesc size test failed for formula gp
[  173.159146][ T1185] logitech 0003:046D:C20E.004E: unbalanced delimiter at end of report description
[  173.170769][ T8989] netlink: 8 bytes leftover after parsing attributes in process `syz.9.3865'.
[  173.179943][ T8985] SELinux: security_context_str_to_sid(user_u) failed for (dev incremental-fs, type incremental-fs) errno=-22
[  173.192100][ T1185] logitech 0003:046D:C20E.004E: parse failed
[  173.202279][ T1185] logitech: probe of 0003:046D:C20E.004E failed with error -22
[  173.358490][ T1185] usb 7-1: USB disconnect, device number 22
[  173.380430][ T9005] loop8: detected capacity change from 0 to 512
[  173.444100][ T8991] loop0: detected capacity change from 0 to 32768
[  173.462840][ T9005] EXT4-fs (loop8): Ignoring removed orlov option
[  173.462943][    T6] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured!
[  173.471011][ T9005] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  173.488375][    T6] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured!
[  173.504006][    T6] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured!
[  173.512737][ T9005] EXT4-fs (loop8): 1 truncate cleaned up
[  173.518401][ T9005] EXT4-fs (loop8): mounted filesystem without journal. Opts: quota,orlov,barrier=0x0000000000000003,stripe=0x0000000000000004,block_validity,debug_want_extra_isize=0x000000000000002e,,errors=continue. Quota mode: writeback.
[  173.552762][    T6] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured!
[  173.657425][ T9025] loop0: detected capacity change from 0 to 256
[  173.771975][ T9025] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d)
[  173.926699][ T9057] loop7: detected capacity change from 0 to 512
[  173.986406][ T9057] EXT4-fs (loop7): Quota format mount options ignored when QUOTA feature is enabled
[  174.020710][ T9057] EXT4-fs (loop7): mounted filesystem without journal. Opts: errors=remount-ro,jqfmt=vfsold,data_err=abort,norecovery,norecovery,. Quota mode: writeback.
[  174.036589][ T9057] ext4 filesystem being mounted at /675/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  174.057174][ T9057] EXT4-fs (loop7): Ignoring removed orlov option
[  174.067249][ T9057] EXT4-fs (loop7): dax option not supported
[  174.073807][ T9074] loop6: detected capacity change from 0 to 4096
[  174.107729][ T9074] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  174.127947][ T9074] EXT4-fs error (device loop6): ext4_do_update_inode:5205: inode #15: comm syz.6.3903: corrupted inode contents
[  174.132338][    T6] usb 9-1: new high-speed USB device number 23 using dummy_hcd
[  174.154280][ T9074] EXT4-fs error (device loop6): ext4_dirty_inode:6041: inode #15: comm syz.6.3903: mark_inode_dirty error
[  174.166039][ T9074] EXT4-fs error (device loop6): ext4_do_update_inode:5205: inode #15: comm syz.6.3903: corrupted inode contents
[  174.169661][ T9087] loop7: detected capacity change from 0 to 1024
[  174.178269][ T9074] EXT4-fs error (device loop6): __ext4_ext_dirty:183: inode #15: comm syz.6.3903: mark_inode_dirty error
[  174.185481][   T30] kauditd_printk_skb: 7 callbacks suppressed
[  174.185508][   T30] audit: type=1400 audit(2000000142.739:850): avc:  denied  { link } for  pid=9073 comm="syz.6.3903" name="file1" dev="loop6" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  174.196331][ T9074] EXT4-fs error (device loop6): ext4_do_update_inode:5205: inode #15: comm syz.6.3903: corrupted inode contents
[  174.235897][ T9074] EXT4-fs error (device loop6): __ext4_ext_dirty:183: inode #15: comm syz.6.3903: mark_inode_dirty error
[  174.247423][ T9074] EXT4-fs error (device loop6): ext4_do_update_inode:5205: inode #15: comm syz.6.3903: corrupted inode contents
[  174.259591][ T9074] EXT4-fs error (device loop6): ext4_truncate:4303: inode #15: comm syz.6.3903: mark_inode_dirty error
[  174.270877][ T9074] EXT4-fs error (device loop6) in ext4_setattr:5609: Corrupt filesystem
[  174.279317][   T60] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured!
[  174.282347][ T9088] EXT4-fs error (device loop6): ext4_do_update_inode:5205: inode #15: comm syz.6.3903: corrupted inode contents
[  174.323438][ T9087] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  174.366689][   T30] audit: type=1400 audit(2000000142.909:851): avc:  denied  { create } for  pid=9093 comm="syz.6.3912" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=key permissive=1
[  174.439333][ T9106] loop7: detected capacity change from 0 to 1024
[  174.445745][    T6] usb 9-1: Using ep0 maxpacket: 16
[  174.495700][ T9106] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  174.582378][    T6] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 32, changing to 9
[  174.595592][    T6] usb 9-1: New USB device found, idVendor=046d, idProduct=c294, bcdDevice= 0.00
[  174.604953][    T6] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  174.605465][ T9129] loop9: detected capacity change from 0 to 512
[  174.614023][    T6] usb 9-1: config 0 descriptor??
[  174.662929][ T9129] EXT4-fs (loop9): Ignoring removed mblk_io_submit option
[  174.671699][ T9129] EXT4-fs error (device loop9): ext4_free_branches:1030: inode #13: comm syz.9.3926: invalid indirect mapped block 10 (level 1)
[  174.685592][ T9129] EXT4-fs error (device loop9): ext4_free_branches:1030: inode #13: comm syz.9.3926: invalid indirect mapped block 8 (level 1)
[  174.699599][ T9129] EXT4-fs (loop9): 1 truncate cleaned up
[  174.705341][ T9129] EXT4-fs (loop9): mounted filesystem without journal. Opts: mblk_io_submit,resuid=0x0000000000000000,,errors=continue. Quota mode: none.
[  174.832368][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  174.842314][   T26] usb 8-1: new high-speed USB device number 23 using dummy_hcd
[  175.092249][   T60] usb 10-1: new high-speed USB device number 16 using dummy_hcd
[  175.113296][    T6] logitech 0003:046D:C294.004F: unknown main item tag 0x0
[  175.120514][    T6] logitech 0003:046D:C294.004F: unknown main item tag 0x0
[  175.127735][    T6] logitech 0003:046D:C294.004F: unknown main item tag 0x0
[  175.135014][    T6] logitech 0003:046D:C294.004F: unknown main item tag 0x0
[  175.142145][    T6] logitech 0003:046D:C294.004F: unknown main item tag 0x0
[  175.149975][    T6] logitech 0003:046D:C294.004F: hidraw0: USB HID v1.01 Device [HID 046d:c294] on usb-dummy_hcd.8-1/input0
[  175.161388][    T6] logitech 0003:046D:C294.004F: no inputs found
[  175.212383][   T26] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  175.223535][   T26] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  175.233350][   T26] usb 8-1: New USB device found, idVendor=056a, idProduct=0016, bcdDevice= 0.00
[  175.242522][   T26] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  175.251471][   T26] usb 8-1: config 0 descriptor??
[  175.324943][  T930] usb 9-1: USB disconnect, device number 23
[  175.452323][   T60] usb 10-1: config 220 has an invalid interface number: 76 but max is 2
[  175.460902][   T60] usb 10-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  175.469886][   T60] usb 10-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  175.480277][   T60] usb 10-1: config 220 has no interface number 2
[  175.486799][   T60] usb 10-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  175.500356][   T60] usb 10-1: config 220 interface 0 has no altsetting 0
[  175.507326][   T60] usb 10-1: config 220 interface 76 has no altsetting 0
[  175.514291][   T60] usb 10-1: config 220 interface 1 has no altsetting 0
[  175.552288][    T6] usb 7-1: new full-speed USB device number 23 using dummy_hcd
[  175.682352][   T60] usb 10-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  175.691629][   T60] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  175.700104][   T60] usb 10-1: Product: syz
[  175.704487][   T60] usb 10-1: Manufacturer: syz
[  175.709272][   T60] usb 10-1: SerialNumber: syz
[  175.733518][   T26] wacom 0003:056A:0016.0050: unknown main item tag 0x0
[  175.740523][   T26] wacom 0003:056A:0016.0050: unknown main item tag 0xd
[  175.747464][   T26] wacom 0003:056A:0016.0050: unbalanced delimiter at end of report description
[  175.756603][   T26] wacom 0003:056A:0016.0050: parse failed
[  175.762391][   T26] wacom: probe of 0003:056A:0016.0050 failed with error -22
[  175.905399][ T9155] loop8: detected capacity change from 0 to 512
[  175.912949][ T9155] EXT4-fs (loop8): feature flags set on rev 0 fs, running e2fsck is recommended
[  175.922111][ T9155] EXT4-fs (loop8): mounting ext2 file system using the ext4 subsystem
[  175.931572][ T9155] EXT4-fs (loop8): warning: checktime reached, running e2fsck is recommended
[  175.940958][ T9155] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  175.949560][ T9155] System zones: 0-2, 18-18, 34-34
[  175.952644][    T6] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  175.964956][ T9155] EXT4-fs warning (device loop8): ext4_update_dynamic_rev:1054: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  175.969721][    T6] usb 7-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  175.979943][ T9155] EXT4-fs (loop8): 1 truncate cleaned up
[  175.989094][    T6] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  175.994206][ T9155] EXT4-fs (loop8): mounted filesystem without journal. Opts: i_version,sb=0x000000000000000d,,errors=continue. Quota mode: none.
[  176.003762][  T434] usb 8-1: USB disconnect, device number 23
[  176.022583][    T6] usb 7-1: config 0 descriptor??
[  176.062995][    T6] hub 7-1:0.0: bad descriptor, ignoring hub
[  176.068946][    T6] hub: probe of 7-1:0.0 failed with error -5
[  176.091176][ T9158] loop8: detected capacity change from 0 to 512
[  176.097637][   T60] usb 10-1: selecting invalid altsetting 0
[  176.104358][   T60] usb 10-1: Found UVC 7.01 device syz (8086:0b07)
[  176.110790][   T60] usb 10-1: No valid video chain found.
[  176.193448][   T60] usb 10-1: USB disconnect, device number 16
[  176.213971][ T9158] EXT4-fs (loop8): mounted filesystem without journal. Opts: grpjquota=,stripe=0x0000000000000002,,errors=continue. Quota mode: writeback.
[  176.228485][ T9158] ext4 filesystem being mounted at /684/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  176.364899][ T9164] netlink: 12 bytes leftover after parsing attributes in process `syz.8.3941'.
[  176.469528][ T9178] loop8: detected capacity change from 0 to 1024
[  176.518472][ T9178] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  176.562701][  T930] usb 7-1: USB disconnect, device number 23
[  176.588696][ T9190] device batadv_slave_0 entered promiscuous mode
[  176.597996][ T9190] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[  176.700468][ T9185] loop7: detected capacity change from 0 to 40427
[  176.746782][ T9185] F2FS-fs (loop7): fault_injection options not supported
[  176.761077][ T9185] F2FS-fs (loop7): invalid crc value
[  176.787397][ T9185] F2FS-fs (loop7): Found nat_bits in checkpoint
[  176.859335][ T9185] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  176.921939][ T9225] loop8: detected capacity change from 0 to 1024
[  176.928448][  T930] usb 7-1: new high-speed USB device number 24 using dummy_hcd
[  177.007952][ T9225] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=f01cc01c, mo2=0002]
[  177.022329][ T9225] System zones: 0-1, 3-36
[  177.033584][ T9225] EXT4-fs (loop8): mounted filesystem without journal. Opts: grpquota,debug_want_extra_isize=0x0000000000000088,resuid=0x0000000000000000,max_batch_time=0x0000000000000003,lazytime,usrquota,debug,data_err=abort,,errors=continue. Quota mode: writeback.
[  177.182266][  T930] usb 7-1: Using ep0 maxpacket: 32
[  177.240614][ T9247] loop0: detected capacity change from 0 to 512
[  177.302376][  T930] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  177.322360][  T930] usb 7-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  177.337595][  T930] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  177.356562][  T930] usb 7-1: config 0 descriptor??
[  177.392816][  T930] hub 7-1:0.0: bad descriptor, ignoring hub
[  177.400471][  T930] hub: probe of 7-1:0.0 failed with error -5
[  177.420609][ T9247] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #16: comm syz.0.3979: corrupted inode contents
[  177.443129][ T9247] EXT4-fs error (device loop0): ext4_dirty_inode:6041: inode #16: comm syz.0.3979: mark_inode_dirty error
[  177.464327][ T9247] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #16: comm syz.0.3979: corrupted inode contents
[  177.482272][    C0] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured!
[  177.491541][ T9247] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #16: comm syz.0.3979: mark_inode_dirty error
[  177.505884][ T9243] loop8: detected capacity change from 0 to 40427
[  177.519802][ T9247] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #16: comm syz.0.3979: corrupted inode contents
[  177.542380][ T9247] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[  177.562360][ T9247] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #16: comm syz.0.3979: corrupted inode contents
[  177.579553][ T9243] F2FS-fs (loop8): Invalid log_blocksize (268), supports only 12
[  177.603070][ T9243] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[  177.619120][ T9247] EXT4-fs error (device loop0): ext4_truncate:4303: inode #16: comm syz.0.3979: mark_inode_dirty error
[  177.657033][ T9221] loop9: detected capacity change from 0 to 131072
[  177.665210][ T9243] F2FS-fs (loop8): Found nat_bits in checkpoint
[  177.671560][ T9247] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[  177.690630][ T9247] EXT4-fs (loop0): 1 truncate cleaned up
[  177.702531][ T9247] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  177.712804][  T930] usb 7-1: USB disconnect, device number 24
[  177.720485][ T9221] F2FS-fs (loop9): invalid crc value
[  177.737077][ T9247] ext4 filesystem being mounted at /581/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  177.744696][ T9243] F2FS-fs (loop8): recover fsync data on readonly fs
[  177.758147][ T9243] F2FS-fs (loop8): Try to recover 1th superblock, ret: -30
[  177.765921][ T9243] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  177.786193][   T30] audit: type=1400 audit(2000000146.329:852): avc:  denied  { ioctl } for  pid=9282 comm="syz.7.3995" path="socket:[47232]" dev="sockfs" ino=47232 ioctlcmd=0x8904 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  177.817370][ T9243] F2FS-fs (loop8): Try to recover all the superblocks, ret: 0
[  177.827381][ T9221] F2FS-fs (loop9): Found nat_bits in checkpoint
[  177.831478][ T9285] device ip6_vti0 entered promiscuous mode
[  177.882167][ T9290] loop0: detected capacity change from 0 to 512
[  177.894359][ T9221] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e4
[  177.970663][ T9221] F2FS-fs (loop9): checksum invalid, nid = 5, ino_of_node = 5, 2889eede vs. 7a8a531f
[  177.991961][ T9299] loop8: detected capacity change from 0 to 256
[  178.014183][ T9290] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpjquota=,stripe=0x0000000000000002,,errors=continue. Quota mode: writeback.
[  178.028778][ T9290] ext4 filesystem being mounted at /582/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  178.043785][ T9299] exFAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  178.054732][ T9299] exFAT-fs (loop8): Medium has reported failures. Some data may be lost.
[  178.071731][ T9299] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d)
[  178.332664][ T9324] loop0: detected capacity change from 0 to 1024
[  178.362274][   T26] usb 8-1: new high-speed USB device number 24 using dummy_hcd
[  178.434180][ T9324] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (18359!=20869)
[  178.462750][ T9324] EXT4-fs (loop0): INFO: recovery required on readonly filesystem
[  178.470604][ T9324] EXT4-fs (loop0): write access will be enabled during recovery
[  178.495918][ T9324] JBD2: no valid journal superblock found
[  178.511702][ T9324] EXT4-fs (loop0): error loading journal
[  178.602255][   T26] usb 8-1: Using ep0 maxpacket: 32
[  178.659810][   T30] audit: type=1400 audit(2000000147.199:853): avc:  denied  { module_load } for  pid=9352 comm="syz.0.4025" path="/sys/kernel/kheaders.tar.xz" dev="sysfs" ino=7623 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=system permissive=1
[  178.698657][ T9356] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4027'.
[  178.727268][   T26] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  178.728417][ T9353] Invalid ELF header magic: != ELF
[  178.801643][   T30] audit: type=1400 audit(2000000147.339:854): avc:  denied  { nlmsg_read } for  pid=9366 comm="syz.0.4032" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_audit_socket permissive=1
[  178.912325][   T26] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  178.921424][   T26] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  178.933696][   T26] usb 8-1: Product: syz
[  178.938090][   T26] usb 8-1: Manufacturer: syz
[  178.943013][   T26] usb 8-1: SerialNumber: syz
[  178.952992][   T26] usb 8-1: config 0 descriptor??
[  178.972345][ T9307] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  178.992621][   T26] hub 8-1:0.0: bad descriptor, ignoring hub
[  178.998553][   T26] hub: probe of 8-1:0.0 failed with error -5
[  179.010795][ T9313] loop6: detected capacity change from 0 to 131072
[  179.056684][ T9313] F2FS-fs (loop6): Wrong CP boundary, start(512) end(1536) blocks(0)
[  179.056942][ T9383] loop9: detected capacity change from 0 to 1024
[  179.071466][ T9313] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  179.081306][ T9313] F2FS-fs (loop6): invalid crc value
[  179.088664][ T9313] F2FS-fs (loop6): Found nat_bits in checkpoint
[  179.118249][ T9313] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  179.125410][ T9313] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e4
[  179.151660][ T9383] EXT4-fs (loop9): Ignoring removed bh option
[  179.163298][ T9383] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000]
[  179.173466][ T9383] EXT4-fs error (device loop9): ext4_map_blocks:629: inode #3: block 2: comm syz.9.4039: lblock 2 mapped to illegal pblock 2 (length 1)
[  179.187670][ T9383] Quota error (device loop9): qtree_write_dquot: dquota write failed
[  179.207058][ T9383] EXT4-fs error (device loop9): ext4_map_blocks:629: inode #3: block 48: comm syz.9.4039: lblock 0 mapped to illegal pblock 48 (length 1)
[  179.221682][ T9383] Quota error (device loop9): v2_write_file_info: Can't write info structure
[  179.230822][ T9383] EXT4-fs error (device loop9): ext4_acquire_dquot:6195: comm syz.9.4039: Failed to acquire dquot type 0
[  179.242564][ T9383] EXT4-fs error (device loop9) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  179.252106][ T9383] EXT4-fs error (device loop9): ext4_evict_inode:283: inode #11: comm syz.9.4039: mark_inode_dirty error
[  179.264347][ T9383] EXT4-fs warning (device loop9): ext4_evict_inode:286: couldn't mark inode dirty (err -117)
[  179.274647][ T9383] EXT4-fs (loop9): 1 orphan inode deleted
[  179.280393][ T9383] EXT4-fs (loop9): mounted filesystem without journal. Opts: usrquota,noblock_validity,bh,max_batch_time=0x00000000000008c9,debug,inlinecrypt,,errors=continue. Quota mode: writeback.
[  179.298810][   T45] EXT4-fs error (device loop9): ext4_map_blocks:629: inode #3: block 1: comm kworker/u4:2: lblock 1 mapped to illegal pblock 1 (length 1)
[  179.317683][   T45] Quota error (device loop9): remove_tree: Can't read quota data block 1
[  179.331633][   T45] EXT4-fs error (device loop9): ext4_release_dquot:6218: comm kworker/u4:2: Failed to release dquot type 0
[  179.373048][ T3908] EXT4-fs error (device loop9): __ext4_get_inode_loc:4351: comm syz-executor: Invalid inode table block 1 in block_group 0
[  179.386253][ T3908] EXT4-fs error (device loop9) in ext4_reserve_inode_write:5837: Corrupt filesystem
[  179.396256][ T3908] EXT4-fs error (device loop9): ext4_quota_off:6484: inode #3: comm syz-executor: mark_inode_dirty error
[  179.470703][ T9396] loop6: detected capacity change from 0 to 128
[  179.471040][ T9394] loop9: detected capacity change from 0 to 512
[  179.502270][   T26] usb 8-1: reset high-speed USB device number 24 using dummy_hcd
[  179.514046][ T9394] EXT4-fs (loop9): mounted filesystem without journal. Opts: grpid,grpquota,,errors=continue. Quota mode: writeback.
[  179.526555][ T9394] ext4 filesystem being mounted at /538/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  179.530714][ T9396] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  179.541801][ T9394] EXT4-fs error (device loop9): ext4_get_first_dir_block:3597: inode #12: comm syz.9.4041: Directory hole found for htree leaf block 0
[  179.567033][ T9396] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  179.590977][   T45] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  179.665038][ T9408] loop6: detected capacity change from 0 to 256
[  179.684960][   T30] audit: type=1326 audit(2000000148.229:855): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9411 comm="syz.9.4049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e371b969 code=0x7ffc0000
[  179.717608][   T30] audit: type=1326 audit(2000000148.229:856): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9411 comm="syz.9.4049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e371b969 code=0x7ffc0000
[  179.741626][   T30] audit: type=1326 audit(2000000148.249:857): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9411 comm="syz.9.4049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f29e371b969 code=0x7ffc0000
[  179.765303][   T30] audit: type=1326 audit(2000000148.249:858): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9411 comm="syz.9.4049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e371b969 code=0x7ffc0000
[  179.794749][   T30] audit: type=1326 audit(2000000148.249:859): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9411 comm="syz.9.4049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e371b969 code=0x7ffc0000
[  179.819690][   T30] audit: type=1326 audit(2000000148.249:860): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9411 comm="syz.9.4049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=285 compat=0 ip=0x7f29e371b969 code=0x7ffc0000
[  179.853616][   T30] audit: type=1326 audit(2000000148.369:861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9411 comm="syz.9.4049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e371b969 code=0x7ffc0000
[  179.879604][   T30] audit: type=1326 audit(2000000148.369:862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9411 comm="syz.9.4049" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f29e371b969 code=0x7ffc0000
[  179.929143][ T9418] loop8: detected capacity change from 0 to 128
[  179.942342][ T9307] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  180.031126][ T9418] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  180.072856][ T9418] ext4 filesystem being mounted at /726/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  180.164842][ T9424] loop6: detected capacity change from 0 to 40427
[  180.204749][ T9440] loop8: detected capacity change from 0 to 512
[  180.215450][ T9424] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  180.224187][ T9424] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  180.244399][ T9424] F2FS-fs (loop6): invalid crc value
[  180.265630][ T9424] F2FS-fs (loop6): Found nat_bits in checkpoint
[  180.273646][ T9440] EXT4-fs (loop8): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  180.292664][   T26] usb 8-1: USB disconnect, device number 24
[  180.311654][ T9440] ext4 filesystem being mounted at /728/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  180.353868][ T9460] netlink: 'syz.9.4071': attribute type 16 has an invalid length.
[  180.361787][ T9460] netlink: 'syz.9.4071': attribute type 3 has an invalid length.
[  180.364069][ T9424] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  180.371471][ T9460] netlink: 64066 bytes leftover after parsing attributes in process `syz.9.4071'.
[  180.377027][ T9424] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  180.404680][ T9463] ------------[ cut here ]------------
[  180.425302][ T9465] netlink: 8 bytes leftover after parsing attributes in process `syz.9.4072'.
[  180.434654][ T9463] trace type BPF program uses run-time allocation
[  180.441170][ T9463] WARNING: CPU: 1 PID: 9463 at kernel/bpf/verifier.c:11701 check_map_prog_compatibility+0x6cd/0x870
[  180.442437][ T9465] netlink: 8 bytes leftover after parsing attributes in process `syz.9.4072'.
[  180.452802][ T9463] Modules linked in:
[  180.461401][ T9465] netlink: 8 bytes leftover after parsing attributes in process `syz.9.4072'.
[  180.466244][ T9463] CPU: 1 PID: 9463 Comm: syz.8.4070 Not tainted 5.15.180-syzkaller-00024-g88c4075c39ed #0
[  180.484890][ T9463] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  180.495419][ T9463] RIP: 0010:check_map_prog_compatibility+0x6cd/0x870
[  180.507562][ T9463] Code: ee ff 48 c7 c6 a0 e1 47 85 4c 8b 65 d0 e9 fd fc ff ff e8 b6 4c ee ff c6 05 03 82 6b 05 01 48 c7 c7 00 de 47 85 e8 53 7b 21 03 <0f> 0b e9 88 fb ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c ac f9 ff
[  180.528285][ T9463] RSP: 0018:ffffc90001217428 EFLAGS: 00010246
[  180.540241][ T9463] RAX: 81a11176151fb400 RBX: 0000000000000001 RCX: 0000000000080000
[  180.555683][ T9463] RDX: ffffc90000d69000 RSI: 0000000000003210 RDI: 0000000000003211
[  180.563885][ T9463] RBP: ffffc90001217470 R08: dffffc0000000000 R09: ffffed103ee24e93
[  180.571890][ T9463] R10: ffffed103ee24e93 R11: 1ffff1103ee24e92 R12: ffff888128198000
[  180.580414][ T9463] R13: 0000000000000005 R14: dffffc0000000000 R15: ffff8881272cd800
[  180.596541][ T9463] FS:  00007ff32c4086c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  180.597612][ T9472] netlink: 32 bytes leftover after parsing attributes in process `syz.6.4073'.
[  180.605888][ T9463] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  180.624677][ T9463] CR2: 0000001b3031fffc CR3: 0000000125622000 CR4: 00000000003526a0
[  180.647013][ T9463] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  180.655218][ T9463] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  180.663495][ T9463] Call Trace:
[  180.666801][ T9463]  <TASK>
[  180.669746][ T9463]  resolve_pseudo_ldimm64+0x685/0x11d0
[  180.689502][ T9463]  ? check_attach_btf_id+0xde0/0xde0
[  180.701353][ T9463]  ? __mark_reg_known+0x1b0/0x1b0
[  180.706653][ T9463]  ? security_capable+0x87/0xb0
[  180.715179][ T9484] device ip6_vti0 left promiscuous mode
[  180.727779][ T9463]  bpf_check+0x2c44/0xf330
[  180.739291][ T9463]  ? 0xffffffffa002a000
[  180.751498][ T9490] loop9: detected capacity change from 0 to 256
[  180.753207][ T9463]  ? is_bpf_text_address+0x177/0x190
[  180.763903][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[  180.773866][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  180.781983][ T9463]  ? bpf_get_btf_vmlinux+0x60/0x60
[  180.787910][ T9463]  ? unwind_get_return_address+0x4d/0x90
[  180.799853][ T9490] FAT-fs (loop9): Directory bread(block 64) failed
[  180.811583][ T9490] FAT-fs (loop9): Directory bread(block 65) failed
[  180.812618][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[  180.832338][ T9463]  ? stack_trace_save+0xe0/0xe0
[  180.833002][ T9490] FAT-fs (loop9): Directory bread(block 66) failed
[  180.842401][ T9463]  ? arch_stack_walk+0xee/0x140
[  180.852638][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  180.862385][ T9463]  ? stack_trace_save+0x98/0xe0
[  180.867267][ T9463]  ? __stack_depot_save+0x34/0x480
[  180.872349][ T9490] FAT-fs (loop9): Directory bread(block 67) failed
[  180.882440][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  180.890484][ T9463]  ? __kasan_slab_alloc+0x69/0xf0
[  180.901623][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  180.905263][ T9490] FAT-fs (loop9): Directory bread(block 68) failed
[  180.912340][ T9463]  ? _find_next_bit+0x1fa/0x200
[  180.920896][ T9463]  ? __kasan_kmalloc+0xec/0x110
[  180.923778][ T9490] FAT-fs (loop9): Directory bread(block 69) failed
[  180.927233][ T9498] loop6: detected capacity change from 0 to 256
[  180.939289][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  180.947643][   T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  180.951694][ T9490] FAT-fs (loop9): Directory bread(block 70) failed
[  180.955627][ T9463]  ? __kasan_kmalloc+0xda/0x110
[  180.964575][ T9490] FAT-fs (loop9): Directory bread(block 71) failed
[  180.968684][ T9463]  ? kmem_cache_alloc_trace+0x119/0x270
[  180.974735][ T9490] FAT-fs (loop9): Directory bread(block 72) failed
[  180.979554][ T9463]  ? selinux_bpf_prog_alloc+0x51/0x140
[  180.986654][ T9490] FAT-fs (loop9): Directory bread(block 73) failed
[  181.019875][ T9463]  ? security_bpf_prog_alloc+0x62/0x90
[  181.026544][ T9463]  ? bpf_prog_load+0x97c/0x1550
[  181.032394][ T9463]  ? __sys_bpf+0x4c3/0x730
[  181.036943][ T9504] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  181.046874][ T9498] FAT-fs (loop6): Directory bread(block 64) failed
[  181.054028][ T9463]  ? __x64_sys_bpf+0x7c/0x90
[  181.058661][ T9463]  ? x64_sys_call+0x4b9/0x9a0
[  181.063597][ T9498] FAT-fs (loop6): Directory bread(block 65) failed
[  181.070164][ T9498] FAT-fs (loop6): Directory bread(block 66) failed
[  181.076952][ T9463]  ? do_syscall_64+0x4c/0xa0
[  181.081781][ T9463]  ? entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  181.088381][ T9498] FAT-fs (loop6): Directory bread(block 67) failed
[  181.096013][ T9463]  ? check_stack_object+0x81/0x140
[  181.101171][ T9463]  ? memset+0x35/0x40
[  181.102830][ T9498] FAT-fs (loop6): Directory bread(block 68) failed
[  181.112142][ T9498] FAT-fs (loop6): Directory bread(block 69) failed
[  181.119009][ T9498] FAT-fs (loop6): Directory bread(block 70) failed
[  181.119246][ T9463]  ? bpf_obj_name_cpy+0x193/0x1e0
[  181.126445][ T9498] FAT-fs (loop6): Directory bread(block 71) failed
[  181.140608][ T9463]  bpf_prog_load+0x1042/0x1550
[  181.147652][ T9463]  ? __anon_inode_getfd+0x34b/0x3b0
[  181.157301][ T9498] FAT-fs (loop6): Directory bread(block 72) failed
[  181.160568][ T9463]  ? map_freeze+0x360/0x360
[  181.166627][ T9510] loop7: detected capacity change from 0 to 512
[  181.168722][ T9463]  ? selinux_bpf+0xc7/0xf0
[  181.175549][ T9498] FAT-fs (loop6): Directory bread(block 73) failed
[  181.180634][ T9463]  ? security_bpf+0x82/0xa0
[  181.190617][ T9463]  __sys_bpf+0x4c3/0x730
[  181.197266][ T9463]  ? bpf_link_show_fdinfo+0x310/0x310
[  181.203203][ T9463]  ? __kasan_check_write+0x14/0x20
[  181.209478][ T9463]  ? switch_fpu_return+0x15d/0x2c0
[  181.210839][ T9510] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem
[  181.218141][ T9463]  __x64_sys_bpf+0x7c/0x90
[  181.231737][ T9463]  x64_sys_call+0x4b9/0x9a0
[  181.236549][ T9463]  do_syscall_64+0x4c/0xa0
[  181.241053][ T9463]  ? clear_bhb_loop+0x35/0x90
[  181.246133][ T9463]  ? clear_bhb_loop+0x35/0x90
[  181.250839][ T9463]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  181.256369][ T9510] EXT4-fs (loop7): invalid journal inode
[  181.257408][ T9463] RIP: 0033:0x7ff32dd9f969
[  181.266902][ T9510] EXT4-fs (loop7): can't get journal size
[  181.277146][ T9463] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  181.322115][ T9463] RSP: 002b:00007ff32c408038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  181.323872][ T9510] EXT4-fs (loop7): 1 truncate cleaned up
[  181.330977][ T9463] RAX: ffffffffffffffda RBX: 00007ff32dfc6fa0 RCX: 00007ff32dd9f969
[  181.344440][ T9463] RDX: 0000000000000080 RSI: 0000200000000580 RDI: 0000000000000005
[  181.352468][ T9463] RBP: 00007ff32de21ab1 R08: 0000000000000000 R09: 0000000000000000
[  181.360647][ T9463] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  181.375408][ T9463] R13: 0000000000000000 R14: 00007ff32dfc6fa0 R15: 00007fffc77049c8
[  181.383678][ T9463]  </TASK>
[  181.386816][ T9463] ---[ end trace 136b5d60121c8239 ]---
[  181.392592][ T9510] EXT4-fs (loop7): mounted filesystem without journal. Opts: norecovery,,errors=continue. Quota mode: none.
[  181.494298][ T9529] netlink: 12 bytes leftover after parsing attributes in process `syz.9.4100'.
[  181.510436][ T9529] tipc: Started in network mode
[  181.518371][ T9529] tipc: Node identity ff000000000000000000000000000001, cluster identity 1
[  181.532463][ T9529] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  181.561569][ T9537] device gretap0 left promiscuous mode
[  181.568927][ T9537] device ip6_vti0 left promiscuous mode
[  181.598038][ T9543] binder: 9542:9543 ioctl c018620b 200000000000 returned -14
[  181.611740][ T9537] device veth0_vlan left promiscuous mode
[  181.618773][ T9537] device veth0_vlan entered promiscuous mode
[  181.626949][ T9537] device veth1_macvtap left promiscuous mode
[  181.634400][ T9537] device veth1_macvtap entered promiscuous mode
[  181.641083][ T9537] device gretap0 entered promiscuous mode
[  181.649039][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): macsec1: link becomes ready
[  181.657380][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  181.665016][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  181.677879][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  181.686487][    T8] bridge0: port 1(bridge_slave_0) entered blocking state
[  181.693596][    T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[  181.701210][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  181.709766][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  181.718704][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[  181.725793][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[  181.738232][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  181.751968][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[  181.765244][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  181.779118][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[  181.791511][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  181.799862][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  181.808033][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  181.817169][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  181.825327][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  181.833558][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  181.841892][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  181.850394][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  181.858988][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  181.867464][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  181.875852][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  181.885146][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  181.893263][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  181.902013][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  181.910525][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  181.919190][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  181.927641][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  181.935785][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  181.943904][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  181.951803][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  181.960428][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  181.969422][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  181.978072][  T434] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  181.985946][  T434] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  181.994011][ T9541] netlink: 592 bytes leftover after parsing attributes in process `syz.8.4108'.
[  182.002475][    T6] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  182.014730][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  182.025809][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan3: link becomes ready
[  182.138656][ T9585] loop0: detected capacity change from 0 to 512
[  182.196745][ T9585] EXT4-fs (loop0): Quota format mount options ignored when QUOTA feature is enabled
[  182.241829][ T9585] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,nouid32,minixdf,jqfmt=vfsold,nombcache,,errors=continue. Quota mode: writeback.
[  182.273907][ T9585] ext4 filesystem being mounted at /596/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  182.282516][  T434] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  182.331625][ T9614] loop8: detected capacity change from 0 to 512
[  182.344722][ T9616] loop7: detected capacity change from 0 to 512
[  182.372859][ T9616] EXT4-fs (loop7): Mount option "noacl" will be removed by 3.5
[  182.372859][ T9616] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  182.372859][ T9616] 
[  182.391531][ T9616] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem
[  182.402760][ T9614] EXT4-fs (loop8): feature flags set on rev 0 fs, running e2fsck is recommended
[  182.412649][ T9616] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=80024119, mo2=0002]
[  182.422806][ T9616] EXT4-fs error (device loop7): ext4_xattr_ibody_find:2219: inode #15: comm syz.7.4143: corrupted in-inode xattr
[  182.439146][ T9616] EXT4-fs error (device loop7): ext4_orphan_get:1406: comm syz.7.4143: couldn't read orphan inode 15 (err -117)
[  182.453544][ T9614] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 18 vs 41 free clusters
[  182.506166][ T9614] EXT4-fs error (device loop8): ext4_acquire_dquot:6195: comm syz.8.4142: Failed to acquire dquot type 1
[  182.520317][ T9616] EXT4-fs (loop7): mounted filesystem without journal. Opts: noacl,max_batch_time=0x0000000000000001,debug,noload,nombcache,noblock_validity,init_itable=0x0000000000000601,inode_readahead_blks=0x0000000000008000,,errors=continue. Quota mode: none.
[  182.552298][  T434] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  182.572605][ T9614] EXT4-fs (loop8): 1 truncate cleaned up
[  182.582602][ T9614] EXT4-fs (loop8): mounted filesystem without journal. Opts: usrjquota=,noblock_validity,max_dir_size_kb=0x000000000181fffc,inlinecrypt,journal_ioprio=0x0000000000000007,discard,nobarrier,dioread_nolock,resgid=0x000000000000ee002,errors=continue. Quota mode: writeback.
[  182.654015][ T9626] loop6: detected capacity change from 0 to 40427
[  182.696841][ T9626] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  182.705603][ T9626] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  182.739480][ T9647] netlink: 8 bytes leftover after parsing attributes in process `syz.8.4156'.
[  182.767114][ T9626] F2FS-fs (loop6): invalid crc value
[  182.807713][ T9626] F2FS-fs (loop6): Found nat_bits in checkpoint
[  182.884504][ T9657] loop7: detected capacity change from 0 to 128
[  182.884890][ T9626] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  182.898268][ T9626] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  182.973145][ T9657] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  182.984035][ T9657] ext4 filesystem being mounted at /734/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  183.004252][ T9657] EXT4-fs warning (device loop7): verify_group_input:147: Cannot add at group 3 (only 1 groups)
[  183.271110][ T9680] loop9: detected capacity change from 0 to 256
[  183.316513][ T9680] exfat: Unknown parameter '����������'
[  183.437079][ T9692] loop7: detected capacity change from 0 to 128
[  183.471291][ T9696] loop9: detected capacity change from 0 to 512
[  183.512800][ T9692] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a802c018, mo2=0002]
[  183.527343][ T9692] System zones: 1-3, 19-19, 35-36
[  183.539617][ T9692] EXT4-fs (loop7): mounted filesystem without journal. Opts: resgid=0x0000000000000000,debug,,errors=continue. Quota mode: none.
[  183.574241][ T9696] EXT4-fs (loop9): orphan cleanup on readonly fs
[  183.587682][ T9696] EXT4-fs (loop9): Cannot turn on journaled quota: type 0: error -13
[  183.632369][ T9692] ext4 filesystem being mounted at /742/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  183.670227][ T9696] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  183.703721][ T9696] EXT4-fs error (device loop9): ext4_clear_blocks:883: inode #13: comm syz.9.4179: attempt to clear invalid blocks 2 len 1
[  183.747262][ T9696] EXT4-fs error (device loop9): ext4_free_branches:1030: inode #13: comm syz.9.4179: invalid indirect mapped block 1819239214 (level 0)
[  183.802428][ T9696] EXT4-fs error (device loop9): ext4_free_branches:1030: inode #13: comm syz.9.4179: invalid indirect mapped block 1819239214 (level 1)
[  183.832234][ T9696] EXT4-fs (loop9): 1 truncate cleaned up
[  183.837915][ T9696] EXT4-fs (loop9): mounted filesystem without journal. Opts: nombcache,jqfmt=vfsv0,abort,bsddf,noquota,usrjquota=..,errors=continue. Quota mode: writeback.
[  183.859512][ T9696] EXT4-fs error (device loop9): ext4_remount:5846: comm syz.9.4179: Abort forced by user
[  183.875061][ T9696] EXT4-fs (loop9): re-mounted. Opts: . Quota mode: writeback.
[  183.888958][ T9696] EXT4-fs error (device loop9): ext4_remount:5846: comm syz.9.4179: Abort forced by user
[  183.918585][ T9714] loop8: detected capacity change from 0 to 512
[  183.927065][ T9716] loop6: detected capacity change from 0 to 1024
[  183.940774][ T9718] loop7: detected capacity change from 0 to 2048
[  183.969076][ T9716] EXT4-fs (loop6): Ignoring removed orlov option
[  183.969439][ T9714] EXT4-fs (loop8): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  183.976394][ T9716] EXT4-fs (loop6): Ignoring removed nomblk_io_submit option
[  183.987105][ T9714] EXT4-fs (loop8): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  184.015500][ T9714] EXT4-fs (loop8): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  184.026489][ T9716] EXT4-fs (loop6): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none.
[  184.050210][ T9718] EXT4-fs (loop7): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  184.061763][ T9718] ext4 filesystem being mounted at /744/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  184.076280][ T9714] EXT4-fs (loop8): revision level too high, forcing read-only mode
[  184.097286][ T9714] [EXT4 FS bs=4096, gc=2, bpg=35, ipg=32, mo=e054e01c, mo2=0000]
[  184.109790][ T9714] EXT4-fs (loop8): failed to initialize system zone (-117)
[  184.118165][ T9714] EXT4-fs (loop8): mount failed
[  184.149629][ T9734] netlink: 'syz.9.4195': attribute type 27 has an invalid length.
[  184.211489][ T9744] loop6: detected capacity change from 0 to 1024
[  184.272963][   T30] kauditd_printk_skb: 13 callbacks suppressed
[  184.272981][   T30] audit: type=1326 audit(2000000152.809:872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9754 comm="syz.7.4204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7f46b8969 code=0x7ffc0000
[  184.304381][ T9744] EXT4-fs (loop6): mounted filesystem without journal. Opts: discard,abort,dioread_lock,usrquota,nombcache,lazytime,noload,usrquota,noauto_da_alloc,resuid=0x0000000000000000,init_itable=0x0000000000000000,jqfmt=vfsv1,,errors=continue. Quota mode: writeback.
[  184.307746][   T30] audit: type=1326 audit(2000000152.809:873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9754 comm="syz.7.4204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7f46b8969 code=0x7ffc0000
[  184.356795][   T30] audit: type=1326 audit(2000000152.849:874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9754 comm="syz.7.4204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7fc7f46b8969 code=0x7ffc0000
[  184.411252][   T30] audit: type=1326 audit(2000000152.849:875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9754 comm="syz.7.4204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7f46b8969 code=0x7ffc0000
[  184.465160][   T30] audit: type=1326 audit(2000000152.849:876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9754 comm="syz.7.4204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7f46b8969 code=0x7ffc0000
[  184.493922][   T30] audit: type=1326 audit(2000000152.879:877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9754 comm="syz.7.4204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fc7f46b8969 code=0x7ffc0000
[  184.519976][ T9773] loop7: detected capacity change from 0 to 512
[  184.526774][   T30] audit: type=1326 audit(2000000152.879:878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9754 comm="syz.7.4204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7f46b8969 code=0x7ffc0000
[  184.551703][    T6] usb 10-1: new high-speed USB device number 17 using dummy_hcd
[  184.560232][   T30] audit: type=1326 audit(2000000152.879:879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9754 comm="syz.7.4204" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc7f46b8969 code=0x7ffc0000
[  184.637585][ T9773] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended
[  184.664310][ T9773] [EXT4 FS bs=4096, gc=1, bpg=42, ipg=32, mo=842c018, mo2=0000]
[  184.672785][ T9773] EXT4-fs (loop7): orphan cleanup on readonly fs
[  184.679862][ T9773] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 19 vs 41 free clusters
[  184.696704][ T9773] Quota error (device loop7): write_blk: dquota write failed
[  184.699196][ T9786] netlink: 24 bytes leftover after parsing attributes in process `syz.6.4217'.
[  184.704186][ T9773] Quota error (device loop7): qtree_write_dquot: Error -28 occurred while creating quota
[  184.704221][ T9773] EXT4-fs error (device loop7): ext4_acquire_dquot:6195: comm syz.7.4211: Failed to acquire dquot type 0
[  184.735644][ T9773] EXT4-fs (loop7): 1 truncate cleaned up
[  184.751745][ T9773] EXT4-fs (loop7): mounted filesystem without journal. Opts: bsddf,noblock_validity,inode_readahead_blks=0x0000000000000080,debug,nogrpid,resgid=0x000000000000ee01,noinit_itable,noinit_itable,journal_dev=0x00000000000000072,errors=continue. Quota mode: writeback.
[  184.883603][ T9806] loop6: detected capacity change from 0 to 256
[  184.912670][ T9800] loop8: detected capacity change from 0 to 8192
[  184.936897][ T9800]  loop8: p2 p3 p4
[  184.938829][ T9806] FAT-fs (loop6): Directory bread(block 64) failed
[  184.948915][ T9800] loop8: p3 size 100663552 extends beyond EOD, truncated
[  184.956184][    T6] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  184.967294][ T9806] FAT-fs (loop6): Directory bread(block 65) failed
[  184.973714][    T6] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  184.983862][ T9806] FAT-fs (loop6): Directory bread(block 66) failed
[  184.984216][    T6] usb 10-1: New USB device found, idVendor=04e7, idProduct=0030, bcdDevice= 0.00
[  184.990605][ T9806] FAT-fs (loop6): Directory bread(block 67) failed
[  184.999839][ T9800] loop8: p4 size 81920 extends beyond EOD, truncated
[  185.015002][    T6] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  185.016413][ T9806] FAT-fs (loop6): Directory bread(block 68) failed
[  185.030108][ T9806] FAT-fs (loop6): Directory bread(block 69) failed
[  185.033956][    T6] usb 10-1: config 0 descriptor??
[  185.036872][ T9806] FAT-fs (loop6): Directory bread(block 70) failed
[  185.048435][ T9806] FAT-fs (loop6): Directory bread(block 71) failed
[  185.055079][ T9806] FAT-fs (loop6): Directory bread(block 72) failed
[  185.061688][ T9806] FAT-fs (loop6): Directory bread(block 73) failed
[  185.101896][ T9816] loop7: detected capacity change from 0 to 512
[  185.113354][ T9816] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem
[  185.136206][ T9816] EXT4-fs error (device loop7): ext4_xattr_ibody_find:2219: inode #15: comm syz.7.4232: corrupted in-inode xattr
[  185.150404][ T9816] EXT4-fs (loop7): Remounting filesystem read-only
[  185.160573][ T9816] EXT4-fs error (device loop7): ext4_orphan_get:1406: comm syz.7.4232: couldn't read orphan inode 15 (err -117)
[  185.173488][ T9816] EXT4-fs (loop7): Remounting filesystem read-only
[  185.180033][ T9816] EXT4-fs (loop7): mounted filesystem without journal. Opts: nolazytime,noload,errors=remount-ro,noquota,min_batch_time=0x0000000002000005,usrjquota=,abort,noquota,noquota,min_batch_time=0x0000000000000101,. Quota mode: none.
[  185.210436][ T9816] EXT4-fs warning (device loop7): __ext4fs_dirhash:283: invalid/unsupported hash tree version 62
[  185.289433][ T1086] udevd[1086]: inotify_add_watch(7, /dev/loop8p3, 10) failed: No such file or directory
[  185.317844][  T527] udevd[527]: inotify_add_watch(7, /dev/loop8p4, 10) failed: No such file or directory
[  185.320579][ T1085] udevd[1085]: inotify_add_watch(7, /dev/loop8p2, 10) failed: No such file or directory
[  185.367189][ T1086] udevd[1086]: inotify_add_watch(7, /dev/loop8p3, 10) failed: No such file or directory
[  185.373782][ T1085] udevd[1085]: inotify_add_watch(7, /dev/loop8p2, 10) failed: No such file or directory
[  185.378390][  T527] udevd[527]: inotify_add_watch(7, /dev/loop8p4, 10) failed: No such file or directory
[  185.523291][    T6] elo 0003:04E7:0030.0051: item fetching failed at offset 5/7
[  185.531795][    T6] elo 0003:04E7:0030.0051: parse failed
[  185.537590][    T6] elo: probe of 0003:04E7:0030.0051 failed with error -22
[  185.570641][ T9839] loop8: detected capacity change from 0 to 40427
[  185.578818][ T9859] loop7: detected capacity change from 0 to 256
[  185.642994][ T9839] F2FS-fs (loop8): fault_injection options not supported
[  185.654599][ T9839] F2FS-fs (loop8): invalid crc value
[  185.661738][ T9839] F2FS-fs (loop8): Found nat_bits in checkpoint
[  185.697541][ T9839] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  185.705576][ T9864] loop0: detected capacity change from 0 to 256
[  185.717169][ T9839] netlink: 12 bytes leftover after parsing attributes in process `syz.8.4242'.
[  185.731638][ T9839] netlink: 40 bytes leftover after parsing attributes in process `syz.8.4242'.
[  185.736655][  T434] usb 10-1: USB disconnect, device number 17
[  185.741413][ T9839] netlink: 40 bytes leftover after parsing attributes in process `syz.8.4242'.
[  185.772266][   T60] usb 7-1: new high-speed USB device number 25 using dummy_hcd
[  185.872273][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  185.902770][ T9877] loop7: detected capacity change from 0 to 256
[  185.987634][ T9877] FAT-fs (loop7): Directory bread(block 64) failed
[  185.994228][ T9877] FAT-fs (loop7): Directory bread(block 65) failed
[  186.000785][ T9877] FAT-fs (loop7): Directory bread(block 66) failed
[  186.002551][ T9870] loop8: detected capacity change from 0 to 40427
[  186.007716][ T9877] FAT-fs (loop7): Directory bread(block 67) failed
[  186.020410][ T9877] FAT-fs (loop7): Directory bread(block 68) failed
[  186.021533][ T9870] F2FS-fs (loop8): invalid crc value
[  186.027538][ T9877] FAT-fs (loop7): Directory bread(block 69) failed
[  186.039114][ T9877] FAT-fs (loop7): Directory bread(block 70) failed
[  186.045878][ T9877] FAT-fs (loop7): Directory bread(block 71) failed
[  186.052511][ T9877] FAT-fs (loop7): Directory bread(block 72) failed
[  186.059396][ T9870] F2FS-fs (loop8): Found nat_bits in checkpoint
[  186.070291][ T9877] FAT-fs (loop7): Directory bread(block 73) failed
[  186.132365][ T9870] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  186.134631][   T60] usb 7-1: config 220 has an invalid interface number: 76 but max is 2
[  186.158473][   T60] usb 7-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  186.182267][   T60] usb 7-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  186.192378][    C0] ip6_tunnel: ip6tnl2 xmit: Local address not yet configured!
[  186.201391][   T60] usb 7-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  186.221943][   T60] usb 7-1: config 220 has no interface number 2
[  186.228348][   T60] usb 7-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  186.242792][ T9890] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4263'.
[  186.266797][   T60] usb 7-1: config 220 interface 0 has no altsetting 0
[  186.281783][ T2775] attempt to access beyond end of device
[  186.281783][ T2775] loop8: rw=2049, want=45104, limit=40427
[  186.294580][   T60] usb 7-1: config 220 interface 76 has no altsetting 0
[  186.301473][   T60] usb 7-1: config 220 interface 1 has no altsetting 0
[  186.458961][ T9908] loop7: detected capacity change from 0 to 1024
[  186.470355][ T9910] loop9: detected capacity change from 0 to 256
[  186.472434][   T60] usb 7-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  186.492733][   T60] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  186.501198][ T9908] EXT4-fs (loop7): Ignoring removed orlov option
[  186.507891][   T60] usb 7-1: Product: syz
[  186.512400][ T9908] EXT4-fs (loop7): Ignoring removed nomblk_io_submit option
[  186.519843][   T60] usb 7-1: Manufacturer: syz
[  186.532512][   T60] usb 7-1: SerialNumber: syz
[  186.568187][ T9908] EXT4-fs (loop7): mounted filesystem without journal. Opts: noblock_validity,bsddf,user_xattr,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,nogrpid,grpquota,nomblk_io_submit,,errors=continue. Quota mode: writeback.
[  186.772139][ T9941] loop7: detected capacity change from 0 to 2048
[  186.793758][ T9941] EXT4-fs (loop7): Mount option "noacl" will be removed by 3.5
[  186.793758][ T9941] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  186.793758][ T9941] 
[  186.824523][ T9941] EXT4-fs (loop7): mounted filesystem without journal. Opts: noacl,,errors=continue. Quota mode: none.
[  186.854716][ T2098] EXT4-fs error (device loop7): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[  186.871622][ T2098] EXT4-fs error (device loop7): ext4_free_inode:355: comm syz-executor: bit already cleared for inode 15
[  186.885397][ T2098] EXT4-fs error (device loop7) in ext4_free_inode:362: Corrupt filesystem
[  186.886140][ T9938] loop9: detected capacity change from 0 to 40427
[  186.894917][ T2098] EXT4-fs error (device loop7) in ext4_free_inode:362: Corrupt filesystem
[  186.909143][   T60] usb 7-1: selecting invalid altsetting 0
[  186.915017][   T60] usb 7-1: Found UVC 7.01 device syz (8086:0b07)
[  186.915098][ T2098] EXT4-fs warning (device loop7): __ext4_unlink:3335: inode #12: comm syz-executor: Deleting file 'bus' with no links
[  186.921421][   T60] usb 7-1: No valid video chain found.
[  186.934260][ T2098] EXT4-fs error (device loop7) in ext4_free_inode:362: Corrupt filesystem
[  186.939471][    T6] usb 9-1: new high-speed USB device number 24 using dummy_hcd
[  186.952470][ T9938] F2FS-fs (loop9): Invalid SB checksum offset: 0
[  186.962651][ T9938] F2FS-fs (loop9): Can't find valid F2FS filesystem in 2th superblock
[  186.972279][ T9938] F2FS-fs (loop9): invalid crc value
[  186.979035][ T9938] F2FS-fs (loop9): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  187.014224][ T9938] F2FS-fs (loop9): Try to recover 2th superblock, ret: 0
[  187.021338][ T9938] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[  187.044004][   T60] usb 7-1: USB disconnect, device number 25
[  187.065591][   T45] attempt to access beyond end of device
[  187.065591][   T45] loop9: rw=2049, want=45104, limit=40427
[  187.195749][ T9956] loop9: detected capacity change from 0 to 256
[  187.219943][ T9956] FAT-fs (loop9): Directory bread(block 64) failed
[  187.226938][ T9956] FAT-fs (loop9): Directory bread(block 65) failed
[  187.236897][ T9956] FAT-fs (loop9): Directory bread(block 66) failed
[  187.249054][ T9956] FAT-fs (loop9): Directory bread(block 67) failed
[  187.262904][ T9956] FAT-fs (loop9): Directory bread(block 68) failed
[  187.269565][ T9956] FAT-fs (loop9): Directory bread(block 69) failed
[  187.281627][ T9956] FAT-fs (loop9): Directory bread(block 70) failed
[  187.288279][ T9956] FAT-fs (loop9): Directory bread(block 71) failed
[  187.295207][ T9956] FAT-fs (loop9): Directory bread(block 72) failed
[  187.301716][ T9956] FAT-fs (loop9): Directory bread(block 73) failed
[  187.332326][    T6] usb 9-1: config 0 has an invalid interface number: 25 but max is 0
[  187.341283][    T6] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  187.352282][    T6] usb 9-1: config 0 has no interface number 0
[  187.361206][    T6] usb 9-1: config 0 interface 25 altsetting 205 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  187.374595][    T6] usb 9-1: config 0 interface 25 has no altsetting 0
[  187.532357][    T6] usb 9-1: New USB device found, idVendor=1b3b, idProduct=2951, bcdDevice=9e.ee
[  187.558376][    T6] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  187.573286][    T6] usb 9-1: Product: syz
[  187.580350][    T6] usb 9-1: Manufacturer: syz
[  187.585588][    T6] usb 9-1: SerialNumber: syz
[  187.591047][    T6] usb 9-1: config 0 descriptor??
[  187.684670][T10009] loop9: detected capacity change from 0 to 2048
[  187.690406][T10013] overlayfs: unrecognized mount option "?�Z�ug�=��2����Dt�.�����ٵn���1������G����E-��"��fhǏ!%T��ɠ�ΰ����8�Y��P�9)-�N5\�\���ϰ��x��=mjY�p1�k�W�'�<�m���{��������ѥ���{����wг�Q���KS�m�@Y�Q��K�8?r����jj� 1�\�{>1Q�!@dRN����;+!s��ׂ��3~��&�R����~5�tfG��	M�Y!�K0��Xl��l�~���" or missing value
[  187.755964][T10009] EXT4-fs (loop9): Mount option "noacl" will be removed by 3.5
[  187.755964][T10009] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  187.755964][T10009] 
[  187.794812][T10009] EXT4-fs (loop9): mounted filesystem without journal. Opts: noacl,,errors=continue. Quota mode: none.
[  187.822246][   T26] usb 8-1: new full-speed USB device number 25 using dummy_hcd
[  187.834740][ T3908] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[  187.837946][T10037] kernel profiling enabled (shift: 9)
[  187.850452][ T3908] EXT4-fs error (device loop9): ext4_free_inode:355: comm syz-executor: bit already cleared for inode 15
[  187.867566][ T3908] EXT4-fs error (device loop9) in ext4_free_inode:362: Corrupt filesystem
[  187.876595][ T3908] EXT4-fs error (device loop9) in ext4_free_inode:362: Corrupt filesystem
[  187.885206][    T6] usb 9-1: Found UVC 0.00 device syz (1b3b:2951)
[  187.891628][    T6] usb 9-1: No valid video chain found.
[  187.892061][ T3908] EXT4-fs warning (device loop9): __ext4_unlink:3335: inode #12: comm syz-executor: Deleting file 'bus' with no links
[  187.898309][    T6] usb 9-1: USB disconnect, device number 24
[  187.916010][ T3908] EXT4-fs error (device loop9) in ext4_free_inode:362: Corrupt filesystem
[  188.072267][   T60] usb 7-1: new low-speed USB device number 26 using dummy_hcd
[  188.085387][T10050] loop0: detected capacity change from 0 to 512
[  188.109651][T10041] loop9: detected capacity change from 0 to 40427
[  188.132595][T10050] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #16: comm syz.0.4334: corrupted inode contents
[  188.144928][T10050] EXT4-fs error (device loop0): ext4_dirty_inode:6041: inode #16: comm syz.0.4334: mark_inode_dirty error
[  188.145839][T10041] F2FS-fs (loop9): Invalid log_blocksize (268), supports only 12
[  188.164240][T10041] F2FS-fs (loop9): Can't find valid F2FS filesystem in 1th superblock
[  188.166123][T10050] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #16: comm syz.0.4334: corrupted inode contents
[  188.176049][T10041] F2FS-fs (loop9): Found nat_bits in checkpoint
[  188.184847][T10050] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #16: comm syz.0.4334: mark_inode_dirty error
[  188.202370][   T26] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  188.202479][T10050] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #16: comm syz.0.4334: corrupted inode contents
[  188.213660][   T26] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  188.235361][   T26] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  188.245208][   T26] usb 8-1: New USB device found, idVendor=056a, idProduct=0317, bcdDevice= 0.00
[  188.245426][T10050] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[  188.254536][   T26] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  188.263389][T10050] EXT4-fs error (device loop0): ext4_do_update_inode:5205: inode #16: comm syz.0.4334: corrupted inode contents
[  188.275892][   T26] usb 8-1: config 0 descriptor??
[  188.288092][T10050] EXT4-fs error (device loop0): ext4_truncate:4303: inode #16: comm syz.0.4334: mark_inode_dirty error
[  188.288159][T10041] F2FS-fs (loop9): Try to recover 1th superblock, ret: 0
[  188.299780][T10050] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[  188.306332][T10041] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[  188.316235][T10050] EXT4-fs (loop0): 1 truncate cleaned up
[  188.328829][T10050] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  188.340227][T10050] ext4 filesystem being mounted at /627/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  188.472345][   T60] usb 7-1: config 0 interface 0 altsetting 6 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  188.492231][   T60] usb 7-1: config 0 interface 0 altsetting 6 endpoint 0x81 has invalid maxpacket 1024, setting to 8
[  188.522238][   T60] usb 7-1: config 0 interface 0 has no altsetting 0
[  188.528925][   T60] usb 7-1: New USB device found, idVendor=04d9, idProduct=a067, bcdDevice= 0.00
[  188.543489][T10070] loop9: detected capacity change from 0 to 128
[  188.552340][   T60] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  188.561209][   T60] usb 7-1: config 0 descriptor??
[  188.582288][T10025] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[  188.754851][T10086] loop9: detected capacity change from 0 to 512
[  188.764073][   T26] wacom 0003:056A:0317.0052: Unknown device_type for 'HID 056a:0317'. Assuming pen.
[  188.780946][   T26] wacom 0003:056A:0317.0052: hidraw0: USB HID v0.00 Device [HID 056a:0317] on usb-dummy_hcd.7-1/input0
[  188.793234][   T26] input: Wacom Intuos Pro L Pen as /devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.0/0003:056A:0317.0052/input/input36
[  188.869456][T10086] EXT4-fs error (device loop9): ext4_xattr_ibody_find:2219: inode #15: comm syz.9.4349: corrupted in-inode xattr
[  188.884039][T10086] EXT4-fs error (device loop9): ext4_orphan_get:1406: comm syz.9.4349: couldn't read orphan inode 15 (err -117)
[  188.917021][T10086] EXT4-fs (loop9): mounted filesystem without journal. Opts: prjquota,prjquota,auto_da_alloc,nobarrier,noblock_validity,,errors=continue. Quota mode: writeback.
[  188.969645][   T26] usb 8-1: USB disconnect, device number 25
[  189.043215][   T60] holtek_mouse 0003:04D9:A067.0053: unbalanced delimiter at end of report description
[  189.053263][   T60] holtek_mouse 0003:04D9:A067.0053: hid parse failed: -22
[  189.060723][   T60] holtek_mouse: probe of 0003:04D9:A067.0053 failed with error -22
[  189.254045][   T60] usb 7-1: USB disconnect, device number 26
[  189.261556][   T45] bridge0: port 1(bridge_slave_0) entered disabled state
[  189.303276][   T30] kauditd_printk_skb: 2 callbacks suppressed
[  189.303293][   T30] audit: type=1400 audit(2000000157.850:882): avc:  denied  { remount } for  pid=10107 comm="syz.9.4359" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  189.338363][   T30] audit: type=1400 audit(2000000157.880:883): avc:  denied  { unmount } for  pid=3908 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  189.405176][T10122] loop9: detected capacity change from 0 to 16
[  189.425155][T10122] erofs: (device loop9): mounted with root inode @ nid 36.
[  189.437180][T10128] loop8: detected capacity change from 0 to 512
[  189.489521][T10128] EXT4-fs (loop8): Test dummy encryption mode enabled
[  189.504231][T10128] EXT4-fs (loop8): warning: mounting unchecked fs, running e2fsck is recommended
[  189.533209][T10128] EXT4-fs (loop8): Errors on filesystem, clearing orphan list.
[  189.545354][T10128] EXT4-fs (loop8): mounted filesystem without journal. Opts: jqfmt=vfsold,errors=continue,usrquota,prjquota,usrquota,resuid=0x000000000000ee00,usrjquota=min_batch_time=0x00000000ffffffff,nodiscard,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  189.586120][T10128] EXT4-fs (loop8): re-mounted. Opts: jqfmt=vfsold,errors=continue,usrquota,prjquota,usrquota,resuid=0. Quota mode: writeback.
[  189.680939][T10149] sit0: Caught tx_queue_len zero misconfig
[  189.692317][T10149] sch_tbf: peakrate 2147483647 is lower than or equals to rate 2831599472947593698 !
[  189.764217][   T30] audit: type=1400 audit(2000000158.310:884): avc:  denied  { read } for  pid=10158 comm="syz.8.4384" lport=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  189.823486][T10167] netlink: 52 bytes leftover after parsing attributes in process `syz.0.4388'.
[  189.835754][T10141] loop9: detected capacity change from 0 to 40427
[  189.847606][T10167] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4388'.
[  189.857565][T10167] tipc: MTU too low for tipc bearer
[  189.902697][T10141] F2FS-fs (loop9): Invalid segment/section count (31, 24 x 117440513)
[  189.925023][T10141] F2FS-fs (loop9): Can't find valid F2FS filesystem in 2th superblock
[  189.937128][T10179] loop6: detected capacity change from 0 to 256
[  189.951803][T10141] F2FS-fs (loop9): fault_injection options not supported
[  189.969093][T10141] F2FS-fs (loop9): Project quota feature not enabled. Cannot enable project quota enforcement.
[  190.082371][T10170] loop7: detected capacity change from 0 to 40427
[  190.109276][T10170] F2FS-fs (loop7): invalid crc value
[  190.133034][T10170] F2FS-fs (loop7): Found nat_bits in checkpoint
[  190.229522][T10170] F2FS-fs (loop7): Start checkpoint disabled!
[  190.243553][T10202] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4404'.
[  190.258142][T10170] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e6
[  190.582243][ T1185] usb 10-1: new high-speed USB device number 18 using dummy_hcd
[  190.822242][ T1185] usb 10-1: Using ep0 maxpacket: 16
[  190.882271][   T60] usb 9-1: new high-speed USB device number 25 using dummy_hcd
[  190.942353][ T1185] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  190.953478][ T1185] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  190.963323][ T1185] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  190.976283][ T1185] usb 10-1: New USB device found, idVendor=046d, idProduct=c53f, bcdDevice= 0.00
[  190.985426][ T1185] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  190.994246][ T1185] usb 10-1: config 0 descriptor??
[  191.254963][   T60] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  191.268549][   T60] usb 9-1: New USB device found, idVendor=046d, idProduct=c222, bcdDevice= 0.00
[  191.278014][   T60] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  191.288123][   T60] usb 9-1: config 0 descriptor??
[  191.475978][ T1185] logitech-djreceiver 0003:046D:C53F.0054: hidraw0: USB HID v0.00 Device [HID 046d:c53f] on usb-dummy_hcd.9-1/input0
[  191.645378][T10271] loop6: detected capacity change from 0 to 40427
[  191.678896][   T20] usb 10-1: USB disconnect, device number 18
[  191.735973][T10271] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  191.744487][T10271] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  191.754097][T10271] F2FS-fs (loop6): invalid crc value
[  191.761086][T10271] F2FS-fs (loop6): Found nat_bits in checkpoint
[  191.763971][   T60] lg-g15 0003:046D:C222.0055: item fetching failed at offset 5/7
[  191.776179][   T60] lg-g15: probe of 0003:046D:C222.0055 failed with error -22
[  191.801278][T10271] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  191.808397][T10271] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  191.840712][ T1872] ------------[ cut here ]------------
[  191.846305][ T1872] WARNING: CPU: 1 PID: 1872 at fs/f2fs/inode.c:880 f2fs_evict_inode+0x12b0/0x1560
[  191.855695][ T1872] Modules linked in:
[  191.859625][ T1872] CPU: 1 PID: 1872 Comm: syz-executor Tainted: G        W         5.15.180-syzkaller-00024-g88c4075c39ed #0
[  191.871326][ T1872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  191.881532][ T1872] RIP: 0010:f2fs_evict_inode+0x12b0/0x1560
[  191.887378][ T1872] Code: e9 55 f2 ff ff e8 f0 4c 61 ff eb 05 e8 e9 4c 61 ff 4c 8b 74 24 28 48 8b 7c 24 18 e8 ba ef 02 00 e9 bc fc ff ff e8 d0 4c 61 ff <0f> 0b 4c 89 f7 be 08 00 00 00 e8 b1 bc 9f ff f0 41 80 0e 04 e9 99
[  191.907284][ T1872] RSP: 0018:ffffc90000bc78c0 EFLAGS: 00010293
[  191.913526][ T1872] RAX: ffffffff820751b0 RBX: 1ffff92000178f2c RCX: ffff8881143dcf00
[  191.921538][ T1872] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000000
[  191.929605][ T1872] RBP: ffffc90000bc7a30 R08: dffffc0000000000 R09: ffffed102198b1e7
[  191.937668][ T1872] R10: ffffed102198b1e7 R11: 1ffff1102198b1e6 R12: ffff88810cc58f30
[  191.945675][ T1872] R13: dffffc0000000000 R14: ffff88812008a078 R15: 0000000000000002
[  191.953905][ T1872] FS:  000055558278e500(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  191.963044][ T1872] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  191.969648][ T1872] CR2: 00007fff44d25e58 CR3: 0000000121f8e000 CR4: 00000000003506a0
[  191.974159][   T20] usb 9-1: USB disconnect, device number 25
[  191.977723][ T1872] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  191.991689][ T1872] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  192.000068][ T1872] Call Trace:
[  192.003371][ T1872]  <TASK>
[  192.006307][ T1872]  ? inode_wait_for_writeback+0x1b0/0x200
[  192.012029][ T1872]  ? f2fs_write_inode+0x850/0x850
[  192.017133][ T1872]  ? bit_waitqueue+0x30/0x30
[  192.021732][ T1872]  ? locks_free_lock_context+0x42/0x70
[  192.027218][ T1872]  ? f2fs_write_inode+0x850/0x850
[  192.032362][ T1872]  evict+0x485/0x870
[  192.036358][ T1872]  ? proc_nr_inodes+0x310/0x310
[  192.041231][ T1872]  ? _raw_spin_lock+0x8e/0xe0
[  192.045955][ T1872]  ? _raw_spin_unlock+0x4d/0x70
[  192.050809][ T1872]  evict_inodes+0x5de/0x650
[  192.055373][ T1872]  ? clear_inode+0x150/0x150
[  192.059971][ T1872]  generic_shutdown_super+0x96/0x330
[  192.065286][ T1872]  kill_block_super+0x7f/0xf0
[  192.069975][ T1872]  kill_f2fs_super+0x2e7/0x390
[  192.074800][ T1872]  ? radix_tree_delete_item+0x2c8/0x410
[  192.080357][ T1872]  ? f2fs_mount+0x40/0x40
[  192.084725][ T1872]  ? unregister_shrinker+0x201/0x290
[  192.090164][ T1872]  deactivate_locked_super+0xa0/0x100
[  192.095634][ T1872]  deactivate_super+0xaf/0xe0
[  192.100325][ T1872]  cleanup_mnt+0x446/0x500
[  192.104772][ T1872]  __cleanup_mnt+0x19/0x20
[  192.109202][ T1872]  task_work_run+0x127/0x190
[  192.114059][ T1872]  exit_to_user_mode_loop+0xd0/0xe0
[  192.119439][ T1872]  exit_to_user_mode_prepare+0x5a/0xa0
[  192.125447][ T1872]  syscall_exit_to_user_mode+0x1a/0x30
[  192.131035][ T1872]  do_syscall_64+0x58/0xa0
[  192.135813][ T1872]  ? clear_bhb_loop+0x35/0x90
[  192.145810][ T1872]  ? clear_bhb_loop+0x35/0x90
[  192.150631][ T1872]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  192.153201][T10279] loop7: detected capacity change from 0 to 2048
[  192.157307][ T1872] RIP: 0033:0x7f1d7cfcbc97
[  192.167423][ T1872] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  192.187310][ T1872] RSP: 002b:00007fff44d26608 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  192.197545][ T1872] RAX: 0000000000000000 RBX: 00007f1d7d04c89d RCX: 00007f1d7cfcbc97
[  192.206052][ T1872] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff44d266c0
[  192.214572][ T1872] RBP: 00007fff44d266c0 R08: 0000000000000000 R09: 0000000000000000
[  192.222980][ T1872] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff44d27750
[  192.231145][ T1872] R13: 00007f1d7d04c89d R14: 000000000002ed48 R15: 00007fff44d27790
[  192.236883][T10285] loop9: detected capacity change from 0 to 512
[  192.239684][ T1872]  </TASK>
[  192.249275][ T1872] ---[ end trace 136b5d60121c823a ]---
[  192.257163][T10279] EXT4-fs (loop7): mounted filesystem without journal. Opts: min_batch_time=0x0000000000000000,inlinecrypt,grpquota,errors=remount-ro,. Quota mode: writeback.
[  192.276616][T10279] EXT4-fs error (device loop7): ext4_ext_precache:608: inode #2: comm syz.7.4438: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 5(5)
[  192.294619][T10279] EXT4-fs (loop7): Remounting filesystem read-only
[  192.302769][ T1872] ==================================================================
[  192.310868][ T1872] BUG: KASAN: use-after-free in _raw_spin_lock+0x81/0xe0
[  192.317397][T10285] EXT4-fs error (device loop9): ext4_do_update_inode:5205: inode #16: comm syz.9.4441: corrupted inode contents
[  192.317905][ T1872] Write of size 4 at addr ffff88810cc58ca8 by task syz-executor/1872
[  192.329965][T10285] EXT4-fs error (device loop9): ext4_dirty_inode:6041: inode #16: comm syz.9.4441: mark_inode_dirty error
[  192.337744][ T1872] 
[  192.337763][ T1872] CPU: 0 PID: 1872 Comm: syz-executor Tainted: G        W         5.15.180-syzkaller-00024-g88c4075c39ed #0
[  192.337787][ T1872] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[  192.337798][ T1872] Call Trace:
[  192.337804][ T1872]  <TASK>
[  192.337812][ T1872]  __dump_stack+0x21/0x30
[  192.349442][T10285] EXT4-fs error (device loop9): ext4_do_update_inode:5205: inode #16: comm syz.9.4441: corrupted inode contents
[  192.351450][ T1872]  dump_stack_lvl+0xee/0x150
[  192.363380][T10285] EXT4-fs error (device loop9): __ext4_ext_dirty:183: inode #16: comm syz.9.4441: mark_inode_dirty error
[  192.372933][ T1872]  ? show_regs_print_info+0x20/0x20
[  192.372964][ T1872]  ? load_image+0x3a0/0x3a0
[  192.376530][T10285] EXT4-fs error (device loop9): ext4_do_update_inode:5205: inode #16: comm syz.9.4441: corrupted inode contents
[  192.379174][ T1872]  print_address_description+0x7f/0x2c0
[  192.383802][T10285] EXT4-fs error (device loop9) in ext4_orphan_del:305: Corrupt filesystem
[  192.395283][ T1872]  ? _raw_spin_lock+0x81/0xe0
[  192.395312][ T1872]  kasan_report+0xf1/0x140
[  192.395332][ T1872]  ? _raw_spin_lock_irqsave+0xb0/0x110
[  192.400181][T10285] EXT4-fs error (device loop9): ext4_do_update_inode:5205: inode #16: comm syz.9.4441: corrupted inode contents
[  192.411174][ T1872]  ? _raw_spin_lock+0x81/0xe0
[  192.411202][ T1872]  kasan_check_range+0x280/0x290
[  192.411222][ T1872]  __kasan_check_write+0x14/0x20
[  192.411241][ T1872]  _raw_spin_lock+0x81/0xe0
[  192.416799][T10285] EXT4-fs error (device loop9): ext4_truncate:4303: inode #16: comm syz.9.4441: mark_inode_dirty error
[  192.420909][ T1872]  ? _raw_spin_trylock_bh+0x130/0x130
[  192.432971][T10285] EXT4-fs error (device loop9) in ext4_process_orphan:347: Corrupt filesystem
[  192.438234][ T1872]  ? __kasan_check_write+0x14/0x20
[  192.447486][T10285] EXT4-fs (loop9): 1 truncate cleaned up
[  192.451481][ T1872]  ? _raw_spin_lock+0x8e/0xe0
[  192.456054][T10285] EXT4-fs (loop9): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  192.461353][ T1872]  ? _raw_spin_trylock_bh+0x130/0x130
[  192.461387][ T1872]  igrab+0x20/0xa0
[  192.473853][T10285] ext4 filesystem being mounted at /634/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  192.477942][ T1872]  f2fs_sync_inode_meta+0x153/0x2a0
[  192.477977][ T1872]  f2fs_write_checkpoint+0xa7d/0x1f00
[  192.574146][ T1872]  ? __kasan_check_write+0x14/0x20
[  192.579258][ T1872]  ? f2fs_get_sectors_written+0x4e0/0x4e0
[  192.584967][ T1872]  ? rwsem_write_trylock+0x130/0x300
[  192.590251][ T1872]  ? __kasan_check_read+0x11/0x20
[  192.595364][ T1872]  ? wb_wait_for_completion+0x1d8/0x270
[  192.600924][ T1872]  f2fs_issue_checkpoint+0x2e5/0x470
[  192.606202][ T1872]  ? f2fs_destroy_checkpoint_caches+0x30/0x30
[  192.612274][ T1872]  ? try_to_writeback_inodes_sb+0xc0/0xc0
[  192.617999][ T1872]  f2fs_sync_fs+0x16f/0x2c0
[  192.622496][ T1872]  sync_filesystem+0x1cb/0x240
[  192.627266][ T1872]  f2fs_quota_off_umount+0x217/0x230
[  192.632558][ T1872]  f2fs_put_super+0xb7/0xc00
[  192.637143][ T1872]  ? fsnotify_destroy_marks+0x14f/0x400
[  192.642703][ T1872]  ? fsnotify_sb_delete+0x471/0x4e0
[  192.647896][ T1872]  ? f2fs_drop_inode+0x980/0x980
[  192.652825][ T1872]  ? __fsnotify_vfsmount_delete+0x20/0x20
[  192.658550][ T1872]  ? clear_inode+0x150/0x150
[  192.663139][ T1872]  ? fscrypt_destroy_keyring+0x27f/0x290
[  192.668766][ T1872]  ? f2fs_drop_inode+0x980/0x980
[  192.673809][ T1872]  generic_shutdown_super+0x151/0x330
[  192.679214][ T1872]  kill_block_super+0x7f/0xf0
[  192.683928][ T1872]  kill_f2fs_super+0x2e7/0x390
[  192.688707][ T1872]  ? radix_tree_delete_item+0x2c8/0x410
[  192.694244][ T1872]  ? f2fs_mount+0x40/0x40
[  192.698573][ T1872]  ? unregister_shrinker+0x201/0x290
[  192.703892][ T1872]  deactivate_locked_super+0xa0/0x100
[  192.709268][ T1872]  deactivate_super+0xaf/0xe0
[  192.713962][ T1872]  cleanup_mnt+0x446/0x500
[  192.718374][ T1872]  __cleanup_mnt+0x19/0x20
[  192.722791][ T1872]  task_work_run+0x127/0x190
[  192.727387][ T1872]  exit_to_user_mode_loop+0xd0/0xe0
[  192.732589][ T1872]  exit_to_user_mode_prepare+0x5a/0xa0
[  192.738053][ T1872]  syscall_exit_to_user_mode+0x1a/0x30
[  192.743511][ T1872]  do_syscall_64+0x58/0xa0
[  192.747930][ T1872]  ? clear_bhb_loop+0x35/0x90
[  192.752603][ T1872]  ? clear_bhb_loop+0x35/0x90
[  192.757274][ T1872]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  192.763168][ T1872] RIP: 0033:0x7f1d7cfcbc97
[  192.767577][ T1872] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  192.787181][ T1872] RSP: 002b:00007fff44d26608 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  192.795591][ T1872] RAX: 0000000000000000 RBX: 00007f1d7d04c89d RCX: 00007f1d7cfcbc97
[  192.803562][ T1872] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff44d266c0
[  192.811525][ T1872] RBP: 00007fff44d266c0 R08: 0000000000000000 R09: 0000000000000000
[  192.819495][ T1872] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff44d27750
[  192.827460][ T1872] R13: 00007f1d7d04c89d R14: 000000000002ed48 R15: 00007fff44d27790
[  192.835436][ T1872]  </TASK>
[  192.838447][ T1872] 
[  192.840762][ T1872] Allocated by task 10271:
[  192.845163][ T1872]  __kasan_slab_alloc+0xbd/0xf0
[  192.850013][ T1872]  slab_post_alloc_hook+0x4f/0x2b0
[  192.855125][ T1872]  kmem_cache_alloc+0xf7/0x260
[  192.859892][ T1872]  f2fs_alloc_inode+0x26/0x330
[  192.864650][ T1872]  new_inode_pseudo+0x62/0x210
[  192.869406][ T1872]  new_inode+0x28/0x1e0
[  192.873554][ T1872]  f2fs_new_inode+0xd2/0x12b0
[  192.878222][ T1872]  f2fs_create+0x178/0x15f0
[  192.882721][ T1872]  path_openat+0x11ae/0x2f10
[  192.887305][ T1872]  do_filp_open+0x1b3/0x3e0
[  192.891798][ T1872]  do_sys_openat2+0x14c/0x7b0
[  192.896470][ T1872]  __x64_sys_openat+0x136/0x160
[  192.901330][ T1872]  x64_sys_call+0x219/0x9a0
[  192.905823][ T1872]  do_syscall_64+0x4c/0xa0
[  192.910232][ T1872]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  192.916126][ T1872] 
[  192.918439][ T1872] Freed by task 10278:
[  192.922492][ T1872]  kasan_set_track+0x4a/0x70
[  192.927073][ T1872]  kasan_set_free_info+0x23/0x40
[  192.932005][ T1872]  ____kasan_slab_free+0x125/0x160
[  192.937104][ T1872]  __kasan_slab_free+0x11/0x20
[  192.941860][ T1872]  slab_free_freelist_hook+0xc2/0x190
[  192.947224][ T1872]  kmem_cache_free+0x100/0x320
[  192.951985][ T1872]  f2fs_free_inode+0x24/0x30
[  192.956569][ T1872]  i_callback+0x4c/0x70
[  192.960717][ T1872]  rcu_do_batch+0x51d/0xba0
[  192.965211][ T1872]  rcu_core+0x5e4/0xf80
[  192.969363][ T1872]  rcu_core_si+0x9/0x10
[  192.973531][ T1872]  handle_softirqs+0x250/0x560
[  192.978291][ T1872]  __irq_exit_rcu+0x52/0xf0
[  192.982783][ T1872]  irq_exit_rcu+0x9/0x10
[  192.987018][ T1872]  sysvec_apic_timer_interrupt+0x58/0xc0
[  192.992643][ T1872]  asm_sysvec_apic_timer_interrupt+0x1b/0x20
[  192.998615][ T1872] 
[  193.000928][ T1872] Last potentially related work creation:
[  193.006633][ T1872]  kasan_save_stack+0x3a/0x60
[  193.011304][ T1872]  __kasan_record_aux_stack+0xd2/0x100
[  193.016756][ T1872]  kasan_record_aux_stack_noalloc+0xb/0x10
[  193.022553][ T1872]  call_rcu+0xf6/0xf60
[  193.026613][ T1872]  evict+0x7da/0x870
[  193.030518][ T1872]  evict_inodes+0x5de/0x650
[  193.035013][ T1872]  generic_shutdown_super+0x96/0x330
[  193.040300][ T1872]  kill_block_super+0x7f/0xf0
[  193.044974][ T1872]  kill_f2fs_super+0x2e7/0x390
[  193.049758][ T1872]  deactivate_locked_super+0xa0/0x100
[  193.055122][ T1872]  deactivate_super+0xaf/0xe0
[  193.059787][ T1872]  cleanup_mnt+0x446/0x500
[  193.064195][ T1872]  __cleanup_mnt+0x19/0x20
[  193.068613][ T1872]  task_work_run+0x127/0x190
[  193.073207][ T1872]  exit_to_user_mode_loop+0xd0/0xe0
[  193.078407][ T1872]  exit_to_user_mode_prepare+0x5a/0xa0
[  193.083864][ T1872]  syscall_exit_to_user_mode+0x1a/0x30
[  193.089319][ T1872]  do_syscall_64+0x58/0xa0
[  193.093735][ T1872]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  193.099626][ T1872] 
[  193.101965][ T1872] Second to last potentially related work creation:
[  193.108623][ T1872]  kasan_save_stack+0x3a/0x60
[  193.113297][ T1872]  __kasan_record_aux_stack+0xd2/0x100
[  193.118745][ T1872]  kasan_record_aux_stack_noalloc+0xb/0x10
[  193.124547][ T1872]  call_rcu+0xf6/0xf60
[  193.128604][ T1872]  evict+0x7da/0x870
[  193.132490][ T1872]  iput+0x635/0x7c0
[  193.136289][ T1872]  f2fs_put_super+0x684/0xc00
[  193.140963][ T1872]  generic_shutdown_super+0x151/0x330
[  193.146325][ T1872]  kill_block_super+0x7f/0xf0
[  193.150993][ T1872]  kill_f2fs_super+0x2e7/0x390
[  193.155772][ T1872]  deactivate_locked_super+0xa0/0x100
[  193.161133][ T1872]  deactivate_super+0xaf/0xe0
[  193.165803][ T1872]  cleanup_mnt+0x446/0x500
[  193.170209][ T1872]  __cleanup_mnt+0x19/0x20
[  193.174615][ T1872]  task_work_run+0x127/0x190
[  193.179194][ T1872]  exit_to_user_mode_loop+0xd0/0xe0
[  193.184385][ T1872]  exit_to_user_mode_prepare+0x5a/0xa0
[  193.189866][ T1872]  syscall_exit_to_user_mode+0x1a/0x30
[  193.195316][ T1872]  do_syscall_64+0x58/0xa0
[  193.199727][ T1872]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  193.205617][ T1872] 
[  193.207929][ T1872] The buggy address belongs to the object at ffff88810cc58c20
[  193.207929][ T1872]  which belongs to the cache f2fs_inode_cache of size 1424
[  193.222495][ T1872] The buggy address is located 136 bytes inside of
[  193.222495][ T1872]  1424-byte region [ffff88810cc58c20, ffff88810cc591b0)
[  193.235854][ T1872] The buggy address belongs to the page:
[  193.241486][ T1872] page:ffffea0004331600 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff88810cc5c2b0 pfn:0x10cc58
[  193.253041][ T1872] head:ffffea0004331600 order:3 compound_mapcount:0 compound_pincount:0
[  193.261353][ T1872] flags: 0x4000000000010200(slab|head|zone=1)
[  193.267431][ T1872] raw: 4000000000010200 0000000000000000 0000000100000001 ffff8881081f7e00
[  193.276005][ T1872] raw: ffff88810cc5c2b0 0000000080150004 00000001ffffffff 0000000000000000
[  193.284572][ T1872] page dumped because: kasan: bad access detected
[  193.290998][ T1872] page_owner tracks the page as allocated
[  193.296700][ T1872] page last allocated via order 3, migratetype Reclaimable, gfp_mask 0x1d2050(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL|__GFP_RECLAIMABLE), pid 477, ts 24819835551, free_ts 0
[  193.317274][ T1872]  post_alloc_hook+0x192/0x1b0
[  193.322040][ T1872]  prep_new_page+0x1c/0x110
[  193.326538][ T1872]  get_page_from_freelist+0x2cc5/0x2d50
[  193.332076][ T1872]  __alloc_pages+0x18f/0x440
[  193.336659][ T1872]  new_slab+0xa1/0x4d0
[  193.340717][ T1872]  ___slab_alloc+0x381/0x810
[  193.345303][ T1872]  __slab_alloc+0x49/0x90
[  193.349622][ T1872]  kmem_cache_alloc+0x138/0x260
[  193.354467][ T1872]  f2fs_alloc_inode+0x26/0x330
[  193.359222][ T1872]  iget_locked+0x16c/0x7e0
[  193.363631][ T1872]  f2fs_iget+0x55/0x5130
[  193.367863][ T1872]  f2fs_fill_super+0x3a20/0x6d10
[  193.372820][ T1872]  mount_bdev+0x2ae/0x3e0
[  193.377143][ T1872]  f2fs_mount+0x34/0x40
[  193.381286][ T1872]  legacy_get_tree+0xed/0x190
[  193.385955][ T1872]  vfs_get_tree+0x89/0x260
[  193.390364][ T1872] page_owner free stack trace missing
[  193.395723][ T1872] 
[  193.398035][ T1872] Memory state around the buggy address:
[  193.403653][ T1872]  ffff88810cc58b80: fb fb fb fb fc fc fc fc fc fc fc fc fc fc fc fc
[  193.411701][ T1872]  ffff88810cc58c00: fc fc fc fc fa fb fb fb fb fb fb fb fb fb fb fb
[  193.419750][ T1872] >ffff88810cc58c80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  193.427795][ T1872]                                   ^
[  193.433152][ T1872]  ffff88810cc58d00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  193.441213][ T1872]  ffff88810cc58d80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  193.449257][ T1872] ==================================================================
[  193.457386][ T1872] Disabling lock debugging due to kernel taint
[  193.872329][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!