last executing test programs:

4m52.643503421s ago: executing program 32 (id=797):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f00000004c0)={0x3, {{0x2, 0xfffd, @multicast2}}, {{0x2, 0x4e20, @local}}}, 0x108)
setsockopt$inet_group_source_req(r0, 0x0, 0x2e, &(0x7f0000000000)={0x6, {{0x2, 0x4e26, @multicast2}}, {{0x2, 0x1002, @multicast1}}}, 0x108)

4m7.675361275s ago: executing program 33 (id=2121):
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x48a, &(0x7f0000000000)={[{@jqfmt_vfsold}, {@grpjquota, 0x22}, {@errors_continue}, {@noload}, {@nombcache}, {@usrjquota, 0x22}, {@errors_continue}, {@usrjquota}, {@barrier}]}, 0x1, 0x455, &(0x7f0000000d80)="$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")
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x2010008, &(0x7f00000001c0), 0xff, 0x53b, &(0x7f0000000b80)="$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")
newfstatat(0xffffffffffffff9c, &(0x7f0000001280)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0x0, 0x400)

3m1.59269824s ago: executing program 34 (id=4736):
ptrace(0x10, 0x1)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x6, 0x0, 0x0, 0x0, 0x8000000009917, 0x400000000000fffd}, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x0, 0x0, 0xffffffffffffffff}, 0x0)
sched_setattr(0x0, &(0x7f00000000c0)={0x38, 0x0, 0x0, 0x1}, 0x0)

2m0.189502237s ago: executing program 5 (id=7075):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000800000000101000028"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x8, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x18)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002840)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1000000}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000780)={r2, 0x18000000000002a0, 0x10, 0x0, &(0x7f0000000080)="36f71f958cd1928222039f67cd94872b", 0x0, 0xf000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

2m0.075366568s ago: executing program 5 (id=7077):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2, &(0x7f0000000180)={[{@jqfmt_vfsold}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x4000000}}, {@orlov}, {@noload}, {@delalloc}, {@mblk_io_submit}, {@commit}, {@noblock_validity}, {@nogrpid}, {@init_itable_val={'init_itable', 0x3d, 0xfff}}]}, 0xfa, 0x477, &(0x7f0000001380)="$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")
creat(&(0x7f00000002c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x9)
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
creat(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
rename(&(0x7f0000000140)='./file0\x00', &(0x7f0000001900)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

1m59.933976121s ago: executing program 5 (id=7078):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000a00)=@delchain={0x1c4, 0x65, 0x2, 0x70bd28, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, {0x2, 0x2}, {0x0, 0x1}, {0x0, 0xb}}, [@TCA_CHAIN={0x8, 0xb, 0x6}, @TCA_CHAIN={0x8, 0xb, 0x6}, @filter_kind_options=@f_bpf={{0x8}, {0x188, 0x2, [@TCA_BPF_ACT={0xbc, 0x1, [@m_gact={0xb8, 0xb, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x7, 0x4, 0x0, 0xd, 0x6d4c}}]}, {0x71, 0x6, "3532565adeea82a6d355b04e82cf0d976e9e3d561f7832a2553c4393a1a4d9d755a3ca015b8308cae8430cb3ee720daf513b7d09d45af79089af4ca0f7ae568b98646f301384cfe6ba628a461810b458401b48d92b11c4b84c4fc318de1f6827de4e78cdbcf73ddf84c9950303"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x1, 0x2}}}}]}, @TCA_BPF_NAME={0xc, 0x7, './file0\x00'}, @TCA_BPF_ACT={0xb0, 0x1, [@m_simple={0x38, 0x1e, 0x0, 0x0, {{0xb}, {0xc, 0x2, 0x0, 0x1, [@TCA_DEF_DATA={0x8, 0x3, 'bpf\x00'}]}, {0x4}, {0xc, 0x7, {0x0, 0x79d0f023c2b305dd}}, {0xc, 0x8, {0x3, 0x2}}}}, @m_connmark={0x74, 0xc05, 0x0, 0x0, {{0xd}, {0x4}, {0x41, 0x6, "0ef6a460a5bbda16e826eafe044d3376872c48b74ae60f057b238fb15e2207986c5639bfbc3d91ee00b5a433e95b6b3527d9711d16abc0abaea910bcdf"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x3}}}}]}, @TCA_BPF_OPS={{0x6}, {0x4}}]}}]}, 0x1c4}, 0x1, 0x0, 0x0, 0x81}, 0x20000080)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0xffffffffffffff2f}}], 0x4000000000003b4, 0x2040000, &(0x7f0000003700)={0x77359400})

1m59.933187492s ago: executing program 5 (id=7081):
mkdirat(0xffffffffffffff9c, &(0x7f00000021c0)='./file0\x00', 0x3a)
mount$tmpfs(0x0, &(0x7f0000002040)='./file0\x00', &(0x7f0000002200), 0x1000000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
umount2(&(0x7f0000000000)='./file0\x00', 0x4)

1m59.880046796s ago: executing program 5 (id=7083):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
syz_mount_image$msdos(&(0x7f0000000140), &(0x7f0000000180)='./file1\x00', 0x8084, &(0x7f00000001c0)=ANY=[@ANYBLOB="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"], 0x1, 0x16b, &(0x7f0000000600)="$eJzs20GrElEUB/Azab73avPW0WKgTSupVi2LeEE0UBQualVgbTSE3Eyt/BSt+4JBuGrVDZ3QEkWknJHn77fxwB+958rMXO7AfXPzw6A/Gr8fPZ/GaZZF+0Hk8TOL87gSrahMAgC4TH6kFN9TSulkEmdfI6XUdEcAwL5Z/wHg+Gxd/+831BgAsDf2/wBwfF6+ev30YVFcvMjz04hvk7JX9qrPKn/8pLi4k8+dL781Lctea5HfrfL87/xqXPud31ubd+L2rSqfZY+eFSv59ejvf/oAAABwFLr5wtr9fbe7Ka+qP94PrOzf23GjXds0AIAdjD99HrwdDt99rKE4m4+Y1TvobsWXBv6Wgy1acRBtKLYWs0v2f/9yk08loA7Lm77pTgAAAAAAAAAAAAAAgE3+8ahQJyLWRBGdbScLTmqfKgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACz8CgAA//9vQEW+")
mprotect(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)

1m59.869457507s ago: executing program 5 (id=7085):
syz_mount_image$fuse(0x0, &(0x7f0000000900)='./file0\x00', 0x1a5000, 0x0, 0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000b80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
pipe2$9p(&(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000600)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@version_9p2000}]}})

1m59.822887842s ago: executing program 35 (id=7085):
syz_mount_image$fuse(0x0, &(0x7f0000000900)='./file0\x00', 0x1a5000, 0x0, 0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000b80)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
pipe2$9p(&(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000600)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@version_9p2000}]}})

1m15.883653437s ago: executing program 0 (id=7987):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e000000200000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000400000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000044000500000000000000000000000000000000000000000033"], 0xfc}}, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x3a)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast1={0xff, 0x4}}, 0x1c)
getsockopt$inet6_int(r1, 0x29, 0x18, 0x0, &(0x7f0000000280))

1m15.792370356s ago: executing program 0 (id=7990):
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000040000000900000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000f9ffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x10)
setgid(0x0)

1m15.791823686s ago: executing program 0 (id=7992):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000009c0000000b"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000f00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x3, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000020000000000000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x5, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, r2, 0x8, 0x0, 0x0, 0x10, &(0x7f00000004c0), 0x10}, 0x94)

1m15.774820498s ago: executing program 0 (id=7994):
syz_mount_image$vfat(&(0x7f00000007c0), &(0x7f0000000800)='./file0\x00', 0xc000, &(0x7f00000001c0)={[{@shortname_mixed}, {@shortname_win95}, {@uni_xlate}, {@utf8}, {@fat=@dos1xfloppy}]}, 0x11, 0x351, &(0x7f0000000ec0)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', 0x0, 0x83)
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000001c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB=' '], 0x40}}], 0x1, 0x40000)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40086602, &(0x7f0000000000))
fcntl$setstatus(r0, 0x4, 0x400)

1m15.760231099s ago: executing program 0 (id=7996):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="5c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000340012800e00010069703665727370616e0000002000028006000200300000001400060000000000000000000000ffff7f00000108000a00", @ANYRES32], 0x5c}}, 0x0)

1m15.692448166s ago: executing program 0 (id=7998):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='task_rename\x00', r1}, 0x18)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r2, &(0x7f00000006c0), &(0x7f0000000000), 0x2}, 0x20)

1m15.680199297s ago: executing program 36 (id=7998):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='task_rename\x00', r1}, 0x18)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r2, &(0x7f00000006c0), &(0x7f0000000000), 0x2}, 0x20)

1m5.119391408s ago: executing program 7 (id=8244):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000080)=0xfff, 0x4)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
getpeername$packet(r1, &(0x7f0000000000)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14)
sendmmsg(r0, &(0x7f0000000440)=[{{&(0x7f0000000700)=@xdp={0x2c, 0x0, r2}, 0x80, &(0x7f0000000100)=[{&(0x7f0000000180)='O', 0x1}, {&(0x7f0000000280)="80f0697b63d28ac38c071b92", 0xc}], 0x2}}], 0x1, 0x0)

1m5.105767949s ago: executing program 7 (id=8246):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
setsockopt$sock_int(r0, 0x1, 0x2e, &(0x7f0000000000)=0x8, 0x4)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0x40000}, 0x1c)
recvfrom(r0, 0x0, 0x0, 0x99bcb88de02507d2, 0x0, 0x0)

1m5.059320263s ago: executing program 7 (id=8247):
syz_open_procfs(0x0, &(0x7f0000000100)='syscall\x00')
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x1, 0x803, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x24581, 0x200}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_MASTER={0x8, 0x3, r2}]}, 0x3c}, 0x1, 0xd, 0x0, 0x4000000}, 0x0)

1m5.001950849s ago: executing program 7 (id=8253):
syz_mount_image$exfat(&(0x7f0000000080), &(0x7f0000000300)='./bus\x00', 0x800, &(0x7f0000000140)={[{@allow_utime={'allow_utime', 0x3d, 0x80000001}}, {@umask={'umask', 0x3d, 0x2}}, {@time_offset={'time_offset', 0x3d, 0x9}}, {}, {@iocharset={'iocharset', 0x3d, 'maciceland'}}, {@discard}, {@namecase}, {@utf8}, {@time_offset={'time_offset', 0x3d, 0x7}}, {@errors_remount}]}, 0x1, 0x1539, &(0x7f0000002ec0)="$eJzs3AucTtX6OPDnWWvtMSbxNsllWGs9mze5LJMkuSTJJUmSJMktIUlyJCExhCQNSUguQxJDSC4T0rjf75eEJkmTJCEhXdb/MzE/p1Pn3sn5n3m+n8/+zHrevZ+1197Pe9l7zft5v+w+vHbTOjUaExH8W/D8nyQAiAWAwQCQDwACAKgQXyE+a31uiUn/3k7Y7+ve1Es9AnYpcf1zNq5/zsb1z9m4/jkb1z9n4/rnbFz/nI3rz1hOtnVG4St4ybnL7zP/L/6vxfP//z/hz///IZllx3+6vuxVPQBi/tEUrn/OxvX/nxX8Ixtx/XM2rn9OFXupB8D+C/DrPyfI9VfXcP1zNq4/YznZpZ5/vtQLRP7LzsGx3OcL83+PBf/Z42eMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxv4AZ/1FCgCy25d6XIwxxhhjjDHGGPv9+FyXegSMMcYYY4wxxhj7z0MQIEFBADGQC2IhN8SBAIDLIS/kgwhcAfFwJeSHq6AAFIRCUBgSoAgUBQ0GLBCEUAyKQxSuhhJwDZSEUlAayoCDspAI10I5uA7Kw/VQAW6AinAjVILKUAWqwk1QDW6G6nAL1IBboSbUgtpQB26DunA71IM7oD7cCQ3gLmgId0MjuAcaw73QBO6DpnA/NIMHoDm0gJbQClr/S/lPQ294BvpAX0iCftAfnoUBMBAGwXMwGJ6HIfACDIUXIRmGwXB4CUbAyzASXoFRMBrGwKswFl6DcTAeJsBESIFJMBlehynwBkyFN2EaTIdUmAEz4S2YBbNhDrwNc+EdmAfzYQEshDR4FxbBYlgC78FSeB/SYRkshxWwElbBalgDa2EdrIcNsBE2wWbYAlthG2yHHbATdsFu+AD2wIewF/bBfvgIMuDjv52fO7vG2fln/iK/BwICChSoUGEMxmAsxmIcxmEezIN5MS9GMILxGI/5MT8WwAJYCAthAiZgUSyKBg0SEhbDYhjFKJbAElgSS2JpLI0OHSZiIpbD67A8lscKWAErYkWshJWxMlbFqlgNq2F1rI41sAbWxJpYG2vjbXgb9sN6WA/rY31sgA2yp6ewMTbGJtgEm2JTbIbNsDk2x5bYEltja2yDbbAttsX22B47YAfsiB2xE3bCztgZu2AX7IpdsRt2w+7YHXtgT+yZ+XQuwGfwGeyLNUU/7I/9cQAm5xqEz+Fz+DwOwRfwBXwRk3EYDseX8CV8GUfiaRyFo3EMjsFq4jUch+ORxERMwRScjJNxCk7BrIG+idMxFWfgTJyJs3A2zsa3cS6+g+/gfJyPCzEN03ARLsYluASX4hlMx2W4HFfgSlyFK3ENrsU1uB434HrchJtwC27BbbgNd+AO3IW78ANUAPgh7sN9mIwZmIEH8AAexIN4CA9hJmbiYTyMR/AIHsWjeAyP4XE8gSfxBJ7CU3gaz6CX50/oD/hkwudNPii1LhlEFiWUiBExIlbEijgRJ/KIPCKvyCsiIiLiRbzIL/KLAqKAKCQKiQSRIIqKosIII0iEMQAgoiIqSogSoqQoKUqL0sIJJxJFoignyonyoryoIG4QFcWNopKoLNq5qqKqqCbau+riFlFD1BA1RS1RW9QRdURdUVfUE/Vi64v6ooFoIBqKu0Uj0Q8H4b0iqzJNxTBsJoZjc9FCXDgUaCNGYlvRTrQXD4vROAo7ijauk3hMdBbjsIv4kxiPT4huYiJ2F0+JHqKn6CWeFr1F20J9RF8xFfuJ/mI6DhADxSDxnJiFtcTbODd3bfGiSBbDxHDxkliIL4uR4hUxSowWY8SrYqx4TYwT48UEMVGkiElisnhdTBFviKniTTFNTBepYoaYKd4Ss8RsMUe8LeaKd8Q8MV8sEAtFmnhXLBKLxRLxnlgq3hfpYplYLlaIlWKVWC3WiLVinVgvNoiNYpPYLLaIrWKb2C52iJ1il9gtPhB7xIdir9gn9ouPRIb4WBwQn4iD4lNxSHwmMsXn4rD4QhwRX4qj4itxTHwtjosT4qT4RpwS34rT4ow4K74T58T34gfxo/hJeAESpZBSKhnIGJlLxsrcMk5eJvPI4MLZvULGyytlfnmVLCALykKysEyQRWRRqaWRVpIMZTFZXEbl1bKEvEaWlKVkaVlGOllWJsprZTl5nSwvr5cV5A2yorxRVpKVZRVZVd4kq8mbJUTO76OmrCVryzryNpkEt8t68g5ZX94pG8i7ZEN5t2wk75GN5b2yibxPNpX3y2byAdlctpAtZSvZWj4o28iHZFvZTraXD8sO8hHZUT4qO8nHZGeZ/Wx/QnaTT8ru8inZQ/aUveSP8ifpZR/ZV0I/kP3ls3KAHCgHxQKAfF4OkS/IofJFmSyHyeHyJTlCvixHylfkKDlajpGvyrHyNTlOjpcT5ESZIifJyfJ1OUW+IafKN+U0OV2myhlykBz8c09zpPy7+a//Rv7Qn/e+RW6V2+R2uUPulLvkbvmB3CP3yL1yr9wv98sMmSEPyAPyoDwoD8lDMlNmysPysDwij8ij8qjMgGPyuDwhv5PfyFPyW3lanpFn5HfynDwnf7hwDkChEkoqpQIVo3KpWJVbxanLVB51ucqr8qmIukLFqytVfnWVKqAKqkKqsEpQRVRRpZVRVpEKVTFVXEXV1XjhCaNKqzLKqbIqUV37z+SrEuoaVVKV+kV+9viS/sr4WqvWqo1qo9qqtqq9aq86qA6qo+qoOqlOqrPqrLqoLqqr6qq6qW6qu+queqgeqpfqpXqr3qqP6qOSVFL224gapJ5Tg9XzaogaooaqoSpZJavhargaoUaokWqkGqVGqTFqjBqrxqpxapyaoCaoFJWiJqvJaoqaoqaqqWqamqZSVaqaqWaqWWqWmqPmqLlqrpqn5qkFaoFKU2lqkVqklpzz3qulKl0tU8vUCrVCrVKr1Bq1Rq1T69QGtUFtUptUutqqtqrtarvaqXaq3Wq32qP2qL1qr9qv9qsMlaEOqAPqoDqoDqlDKlNlqsPqsDqijqij6qg6po6p4+q4OqlOqlPqlDqtTquz6qw6p86pH9QP6if1U9ZlXyACEahABTFBTBAbxAZxQVyQJ8gT5A3yBpEgEsQH8UH+4KqgQFAwKBQUDhKCIkHRQAcmsIG4cPKiwdVBieCaoGRQKigdlAlcUDZIDK4NygXXBeWD64MKwQ1BxeDGoFJQOagSVA1uCqoFNwfVg1uCGsGtQc2gVlA7qBPcFtQNbg/qBXcE9YM7gwbBXUHD4O6gUXBP0Di4N2gS3Bc0De4PmgUPBM2DFkHLoFXQ+nft3/vTBR9yfXRfnaT76f76WT1AD9SD9HN6sH5eD9Ev6KH6RZ2sh+nh+iU9Qr+sR+pX9Cg9Wo/Rr+qx+jU9To/XE/REnaIn6cn6dT1Fv6Gn6jf1ND1dp+oZeqZ+S8/Ss/Uc/baeq9/R8/R8vUAv1Gn6Xb1IL9ZL9Ht6qX5fp+tlerleoVfqVXq1XqPX6nV6vd6gN+pNerPeorfqbXq73qF36l16t/5A79Ef6r16n96vP9IZ+mN9QH+iD+pP9SH9mc7Un+vD+gt9RH+pj+qv9DH9tT6uT+iT+ht9Sn+rT+sz+qz+Tp/TsReq6bMu7rM+3o0yysSYGBNrYk2ciTN5TB6T1+Q1ERMx8Sbe5Df5TQFTwBQyhUyCSTBFTVGThQyZYqaYiZqoKWFKmJKmpCltShtnnEk0iaacKWfKm/KmgqlgKpqKppKpZKqYKuYmc5O52dxsbjG3mFvNraaWqWXqmDqmrqlr6pl6pr6pbxqYBqahaWgamUamsWlsmpgmpqlpapqZZqa5aW5ampamtWlt2pg2pq1pa9qb9qaD6WA6Gu9/+vnbzZ1NF9PFdDVdTTfTzXQ33U0P08P0Mr1Mb9Pb9DF9TJJJMv1NfzPADDCDzCAz2Aw2Q8wQM9QMNckm2Qw3w80IM8KMNCPNKDPajMm6UDWvmXFmvJlgJpoUk2Imm8lmiplippqpZpqZZlJNqplpZppZZpaZY+aYuWaumWfmmQVmgUkzaWaRWWSWmCVmqVlq0k26WW6Wm5VmpVltVpu1Zq1Zb9abjbDRbDabzVaz1Ww3281Os9PsNrvNHrPH7DV7zX6z32SYDHPAHDAHzUFzyBwymSbTHDaHzRFzxBw1R80xc8wcN8fNSXPSnDKnzGlz2pw1Z805U/DCe6E3sTa3jbOX2Tz2cpvX5rN/GReyhW2CLWKLWm0L2IK/iI21tqQtZUvbMtbZsjbRXvuruJKtbKvYqvYmW83ebKv/Kq5rb7f17B22vr3T1rG3/SJuYO+yDe39thEigG1hm9hWtqm93zazD9jmtoVtaVvZDvYR29E+ajvZx2xn+/iv4kV2sV1r19n1doPda/fZs/Y7e8R+ac/Z720f29cOts/bIfYFO9S+aJPtsF/FY+yrdqx9zY6z4+0EO/FX8TQ73abaGXamfcvOsrN/FafZd+1cu8TOs/PtArvw5zhrTEvse3apfd+m2wCW2xV2pV1lV9s12WP1+ewmu9lusXvsh3a73WF32l12d/YnmN1n99uPbIb92B62X9iD9lN7yB61mfbzn+Os4ztqv7LH7Nf2uD1hT9pv7Cn7rcrOzjr2b+yP9ifrLRASkCRFAcVQLoql3BRHl1EeupzyUj6K0BUUT1dSfrqKClBBKkSFKYGKUFHSZMgSUUjFqDhF6WrKHl5pKkOOylIiXUvl6DoqT9dTBbqBKtKNVIkqUxWqSjdRNbqZqtMtVINupZpUi2pTHbqN6tLtVI/uoPp0JzWgu6gh3U2N6B5qTPdSE7qPmtL91IweoObUglpSK2pND1IbeojaUjtqTw9TB3qEOtKj1Ikeo870OHWhP1FXeoK60ZPUnZ6iHtSTetHT1JueoT7Ul5KoH/WnZ2kADaRB9BwNpudpCL1AQ+lFSqZhNJxeohH0Mo2kV2gUjaYx9CqNpddoHI2nCTSRUmgSTabXaQq9QVPpTZpG0ymVZtBMeotm0WyaQ2/TXHqH5tF8WkALKY3epUW0mJbQe7SU3qd0WkbLaQWtpFW0mtbQWlpH62kDbaRNtJm20FbaRttpB+2kXbSbPqA99CHtpX20nz6iDPqYDtAndJA+pUP0GWXS53SYvqAj9CUdpa98X/qajtMJOknf0Cn6lk5TxuXnK/Q9/UA/0k/kCUIMRShDFQZhTJgrjA1zh3HhZWGe8PIwb5gvjIRXhPHhlWH+8KqwQFgwLBQWDhPCImHRUIcmtCGFYVgsLB5Gw6vDEuE1YcmwVFg6LBO6sGyYGF4blguvC8uH14cVwhvCiuGNYaWwcnj/nVXDm8Jq4c1h9fCWsEZ4a1gzrBXWDuuEt4V1w9vDeuEdYf3wzrB8eFfYMLw7bBTeEzYO7w2bhPeFTcP7w2bhA2HzsEXYMmwVtg4fDNuED4Vtw3Zh+/DhsEP4SNgxfDTsFD4Wdg4f/3n9XYv/+vqksF/YP3w2fDb0/g65ILowmhZ9N7oouji6JPpedGn0/Wh6dFl0eXRFdGV0VXR1dE10bXRddH10Q3RjdFN0c3RL1Ps6ucChE0465QIX43K5WJfbxbnLXB53ucvr8rmIu8LFuytdfneVK+AKukKusEtwRVxRp51x1pELXTFX3EXd1a6Eu8aVdKVcaVfGOVfWJbpWrrVr7dq4h1xb1861dw+7h90j7hH3qHvUPeY6u8ddF/cn19U94bq5J92T7inXw/V0vdzTrreblPd8xZNcf9ffDXAD3CA3yA12g90QN8QNdUNdskt2w91wN8KNcCPdSDfKjXJj3Bg31o1149w4N8FNcCkuxU12k90UN8VNdVPdNDfNpbpUN9PNdLPcLFdt9vm9zHPz3AK3wKW5NLfIZV0zLnFL3VKX7tLdcrfcrXQr3Wq32q11a916t95tdBvdZrfZbXVb3Xa33e10O91ut9vtcXvcXp/vfKcuwx1wB9xBd9Adcp+5TPe5O+y+cEfcl+6o+8odc1+74+6EO+m+cafct+60O+POuu/cOfe9+8H96H5y3qVEJkUmR16PTIm8EZkaeTMyLTI9khqZEZkZeSsyKzI7MifydmRu5J3IvMj8yILIwkha5N3IosjiyJLIe5Glkfcj6ZFlkeWRFZGVkVUR74tsD30xX9xH/dW+hL/Gl/SlfGlfxjtf1if6a305f50v76/3FfwNvqK/0VfylX0V/4Bv7lv4lr6Vb+0f9G38Q76tb+fb+4d9B/+I7+gf9Z38Y76zf9x38X/yXf0Tvpt/0nf3T/kevqfv5Z/2vf0zvo/v65N8P9/fP+sH+IF+kH/OD/bP+yH+BT/Uv+iT/TA/3L/kR/iX/Uj/ih/lR/sxMa/6sdm3yDDRp/hJfrJ/3U/xb/ip/k0/zU/3qX6Gn+nf8rP8bD/Hv+3n+nf8PD/fL/ALfZp/1y/yi/0S/55f6t/36X5Z9oSjX+3X+LV+nV/vN/iNfpPf7Lf4rX6b3+53+J1+l9/tP/B7/Id+r9/n9/uPfIb/2B/wn/iD/lN/yH/mM/3n/rD/wh/xX/qj/it/zH/tj/sT/qT/xp/y3/rT/ow/67/z5/z3/gf/48/Xdf/S9DdjjDHGWA4z6WJT/HLN+en8fr+RI/5s4/4AcPmOwpkX1+aCrCvKjQXORwNFQocIADzWt/u92UvNmklJSRe2TpcQFJ8PkP2foCwxcDFeBu3hEegE7aDcb45/oOh5jv5O/9EbAOL+LCcWLsYX+/8EAJN+o/8HHx6zqGJ4Nv5v9D8foGTxizm54WK8DNr/PL/SDsr/lfEXbPN3xp/70xSAtn+WkwcuxhfHnwgPwePQ6Rdb/oavskt14Yce+v7tzRljjDHGGGOM/W8YKKp0zb7/zP7G52/dnyeoizm54GL89+7PGWOMMcYYY4wxduk90bPXow926tSu6z/fqP4vZf3DjWbwn+qZG7/Z8B4g+xEFAP9mhwBZDflHHsW2P2RfyRdeOn+5auV3PoD/jlL+Ho1L/MbEGGOMMcYY+91dvOj/5ePqUg2IMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhjLgf6InxO71MfIGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMXWr/LwAA///nZAAJ")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000080)=""/234, 0xea)
ioctl$KVM_CAP_X2APIC_API(0xffffffffffffffff, 0x4068aea3, 0x0)
syz_usb_connect(0x2, 0x56, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000c9d1c40899040a50b7e70102030109024400020000000009049700010dd5ce0008240201000000000905000000000000000705a3f6d2fb5b09040000014106cf0008240201000000000905c926"], 0x0)

1m1.978504118s ago: executing program 7 (id=8332):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000480)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fdff00000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0xe, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0)

1m1.929098323s ago: executing program 7 (id=8334):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000800000000400000028"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x18)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000580)={0x0, 0xff7f, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="580000001000010400004000fedbdf2501f80000", @ANYRES32=0x0, @ANYBLOB="01020400000000002800128008000100736974001c00028008000200c6120001060008001900000005000a00fd000000080004000100010008000a00fa"], 0x58}}, 0x0)

46.883570553s ago: executing program 37 (id=8334):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000800000000400000028"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x18)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000580)={0x0, 0xff7f, &(0x7f0000000140)={&(0x7f0000000000)=ANY=[@ANYBLOB="580000001000010400004000fedbdf2501f80000", @ANYRES32=0x0, @ANYBLOB="01020400000000002800128008000100736974001c00028008000200c6120001060008001900000005000a00fd000000080004000100010008000a00fa"], 0x58}}, 0x0)

24.156364118s ago: executing program 8 (id=9152):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00', r0}, 0x18)
r1 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0xa, 0x9, 0x8, 0x2}, 0x48)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x3, 0x6, &(0x7f0000000300)=@framed={{0x18, 0x2}, [@map_fd={0x18, 0x3, 0x1, 0x0, r1}, @call={0x85, 0x0, 0x0, 0xc0}]}, &(0x7f0000000000)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000140)={r2, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000200)="9e36d448b388dd965f7a331286dd", 0x0, 0xbffffffe, 0xe8030000, 0x0, 0x0, 0x0, 0x0}, 0x50)

22.304587426s ago: executing program 8 (id=9159):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f00000012c0)='sys_enter\x00', r1}, 0x18)
alarm(0x2)

22.304008846s ago: executing program 8 (id=9169):
syz_mount_image$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x20, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3813009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000180)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff)
removexattr(&(0x7f00000002c0)='./file0/file1\x00', &(0x7f0000000080)=@known='system.posix_acl_default\x00')

21.548363748s ago: executing program 8 (id=9161):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1010012, &(0x7f0000000080)={[{@nobh}, {@bsdgroups}, {@data_err_ignore}]}, 0x3, 0x4cd, &(0x7f0000000c80)="$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")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
getdents64(r0, 0x0, 0x0)

21.328499869s ago: executing program 8 (id=9164):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x1, 0x803, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=@newlink={0x44, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x88a8ffad}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x2a}}}, @IFLA_LINK={0x8, 0x5, r2}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x44}}, 0x8000)

21.224595009s ago: executing program 8 (id=9170):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x22102, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x3)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x61, &(0x7f0000000000)=[@vmwrite={0x8, 0x0, 0xb, 0x0, 0x2, 0x0, 0x2, 0x0, 0xb7b0}], 0x1)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

21.220461099s ago: executing program 38 (id=9170):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x22102, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x3)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x61, &(0x7f0000000000)=[@vmwrite={0x8, 0x0, 0xb, 0x0, 0x2, 0x0, 0x2, 0x0, 0xb7b0}], 0x1)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

14.326869759s ago: executing program 4 (id=9353):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="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"], 0x26, 0x336, &(0x7f00000001c0)="$eJzs3T1sW9UXAPDjviROI/VvD3+pgsmwIaGqCWKAKVFVpIoMUGTxtWDRlI/YVIqFpTDE9QJiBLEgwcTWAcbOiAEhNgZWioQKiIVulVrxkP1e7OeP0BThlI/fb4iOzj3H976Xq/glSm5eWo/tC4tx8caN67G8XIqF9TPrcbMU1TgWSWQuBwDwb3IzTePXNHPn6vdX9qOlOa8LAJifwfv/KydGifK9XA0AcBQO+f3/UzOzl+a2LABgjqbe/x8cG574Mf/C8HcCAIB/rmeef+HJjc2I87XackTrnU69U4/HR+MbF+O1aMZWnI5K3I7IHhSyp4X+xyfObZ49Xev7sRr1fkenHtHqdurZk8JGMugvx2pUopr3p8P+pN+/OuivRcTl7mD+aJU69cVYyef/biW2Yi0q8f+p/ohzm2fXavkL1Fv7/d2IXizvX0R//aeiEt+8HJeiGRei3zta/95qrXYm3Rzr71wpD+oAAAAAAAAAAAAAAAAAAAAAAGAeTtWGqsPzb9JWt/P2+cmC6tj5OPVsOD8fqJedD5SW90/neTeZPB9o/HyeTn0hjt3TKwcAAAAAAAAAAAAAAAAAAIC/j/buUjSaza2d9u5b28WgW8i88dWnXxyPyZrXk1EmFrKXG6vJc1HoSmLYng7b02SsJg+SiFHxlavDFRdrysOrmGrvB+WpoVK+pkazeeKBHz6a1fXbKJPE1G0ZD0r5/IWh1v+y1B90HRys3aHmWpqmB7XvfTjdFaWIhalP3F8RfHn91fseaZ98dJD5PD/04aGHK89e++CTn7cbzchvTbO5tNO+nf7puZLC/inl97k0YyfMDnqjTG+nvdtIvv3lufvf+3qiOJm9f9Ji5s2D5/psMrOUBf1lHuZKF2ds/tnBi7eGu/fub+bJj9cbV/e+/+mwXYUvEg7qAAAAAAAAAAAAAAAAAACAI1H4W/G78NjT81sRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABy90f//LwS9qcxhglvdmB4qb+20D5z8+JFeKgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/2G/BwAA//9pxHjs")
syz_mount_image$msdos(&(0x7f00000002c0), &(0x7f0000000280)='./file1\x00', 0x4, &(0x7f0000000040)={[{@fat=@discard}, {@fat=@nfs}, {@nodots}, {}, {@nodots}]}, 0x1, 0x22d, &(0x7f0000000300)="$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")
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000001140)=ANY=[], &(0x7f0000000100)=""/4117, 0x1a, 0x1015, 0x1}, 0x28)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
renameat2(0xffffffffffffff9c, &(0x7f0000000280)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0)

14.162267935s ago: executing program 4 (id=9360):
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000000)='./bus\x00', 0x2000082, &(0x7f0000001e40)=ANY=[@ANYBLOB="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"], 0x26, 0x367, &(0x7f00000009c0)="$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")
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x68042, 0x62)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
ftruncate(r1, 0x2007ffb)
sendfile(r0, r1, 0x0, 0x1000000201005)

13.952217125s ago: executing program 4 (id=9362):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000d80)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@enum={0x0, 0x0, 0x0, 0x13}]}}, 0x0, 0x26}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000640)='kfree\x00', r1}, 0x18)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000940)={0x9, 0x4, 0x4, 0x2, 0x80, 0x1, 0x0, '\x00', 0x0, r0, 0x1, 0x1}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x4, 0x4, 0x7ffffffe, 0x0, r2, 0x7, '\x00', 0x0, r0, 0x5, 0x3}, 0x50)

13.232507474s ago: executing program 4 (id=9372):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1010012, &(0x7f0000000080)={[{@nobh}, {@bsdgroups}, {@data_err_ignore}]}, 0x3, 0x4cd, &(0x7f0000000c80)="$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")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
getdents64(r0, 0x0, 0x0)

12.691977095s ago: executing program 4 (id=9375):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000080200000e"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7030000ec000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="5c0000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000340012800e00010069703665727370616e0000002000028006000200300000001400060000000000000000000000ffff7f00000108000a00", @ANYRES32], 0x5c}}, 0x0)

11.240562704s ago: executing program 4 (id=9384):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600600, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil)

11.220363347s ago: executing program 39 (id=9384):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600600, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil)

6.158961001s ago: executing program 1 (id=9562):
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
r0 = open$dir(&(0x7f0000000100)='./file0\x00', 0x149a00, 0x11d)
io_setup(0x1, &(0x7f0000000b80)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000001d00)=[&(0x7f0000001a80)={0x0, 0x0, 0x0, 0x5, 0x0, r0, 0x0}])
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)

6.100386576s ago: executing program 1 (id=9566):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vcan0\x00', <r1=>0x0})
connect$can_bcm(r0, &(0x7f00000000c0)={0x1d, r1}, 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000003c0)={0x1, 0x0, 0x0, {0x0, 0x2710}, {0x77359400}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "a5976ac6acd41fd8"}}, 0x48}}, 0x0)
sendmsg$can_bcm(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000480)={0x1, 0x130, 0x0, {0x0, 0x2710}, {0x0, 0x2710}, {}, 0x1, @can={{0x2}, 0x3, 0x3, 0x0, 0x0, "ae771958a0cb06cc"}}, 0x48}}, 0x20000000)

6.06652223s ago: executing program 1 (id=9570):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r1}, 0x10)
pivot_root(0x0, 0x0)

6.034679353s ago: executing program 1 (id=9572):
r0 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000400), 0x1, 0x55f, &(0x7f0000000580)="$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")
lsetxattr$trusted_overlay_upper(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000180), &(0x7f00000001c0)=ANY=[], 0x361, 0x0)
lsetxattr$security_ima(&(0x7f0000000080)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000200)=ANY=[], 0x9, 0x1)
lsetxattr$system_posix_acl(&(0x7f0000000000)='./file1\x00', &(0x7f00000003c0)='system.posix_acl_access\x00', &(0x7f0000000380)=ANY=[@ANYBLOB="0200000001000000000000000400000000000000100000000000000020"], 0x24, 0x0)
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000140)=ANY=[@ANYRESOCT, @ANYRESOCT=r0], 0xfe37, 0x0)

5.910651575s ago: executing program 1 (id=9579):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000280)={0x24, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x22, 0xf, {[@global=@item_4={0x3, 0x1, 0x7}, @local=@item_4={0x3, 0x2, 0x2, "45501821"}, @main=@item_4={0x3, 0x0, 0x8, "fbf881fa"}]}}, 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x0)
ioctl$HIDIOCGUCODE(r1, 0xc018480d, &(0x7f00000000c0)={0x1, 0x100, 0x0, 0x2, 0x1, 0x775d})

2.82439348s ago: executing program 1 (id=9695):
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000340)=ANY=[@ANYBLOB="12010000000018105704da0700000000000109022400010000ba0009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="0022220000009523b31ce93ee907000000002990370900be0083000000000b09307a15b3"], 0x0}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="00222200000049e9b31c073f000200000b09007a15b3"], 0x0}, 0x0)
syz_open_dev$hidraw(&(0x7f0000002300), 0x0, 0x14e040)

1.626249755s ago: executing program 3 (id=9730):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000140)={0x1, &(0x7f0000000200)=[{0x6, 0x1, 0x7, 0x7fffffff}]})
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
exit(0xffff)
pselect6(0x40, &(0x7f0000000000)={0x1, 0xfffffffffffffff7, 0x2, 0xfffffffffffffffe, 0x9, 0x3, 0xc193, 0x9}, 0x0, &(0x7f00000003c0)={0x9, 0x8f, 0xdf, 0x81, 0x5, 0xf, 0x1000, 0x1ff}, 0x0, 0x0)
wait4(r0, 0x0, 0x8, 0x0)

1.162737009s ago: executing program 2 (id=9743):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r1, 0x2000000, 0xe, 0x48, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x3800, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.105227655s ago: executing program 2 (id=9745):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=@delchain={0x24, 0x64, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff1}, {0xfff3, 0xffff}, {0x0, 0x1b}}}, 0x24}, 0x1, 0x0, 0x0, 0x48010}, 0x0)
r0 = socket$inet6(0xa, 0x3, 0x5)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000000c0)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x800, 0x0, 0x3, 0x9}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000000)=0xffffffc3, 0x4)
sendmmsg(r0, &(0x7f0000001500)=[{{&(0x7f0000000040)=@l2tp6={0xa, 0x0, 0x7080000, @local, 0x8, 0x1}, 0x80, 0x0, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="28000000000000002900000002"], 0x28}}], 0x1, 0x0)

1.081465257s ago: executing program 2 (id=9746):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000280)={0xa, 0x2, 0x0, @loopback, 0x9}, 0x1c)
sendto$inet6(r0, &(0x7f00000000c0)="04", 0x1, 0x24000081, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)
shutdown(r0, 0x0)
recvmsg(r0, &(0x7f00000008c0)={0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000140)=""/69, 0x45}], 0x1}, 0x40000112)

781.682025ms ago: executing program 3 (id=9748):
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB="440000001000010400"/20, @ANYRES32=r1, @ANYBLOB="ffc300000000000024001280110001006272696467655f736c617665000000000c000580050027"], 0x44}}, 0x0)

768.262047ms ago: executing program 3 (id=9749):
socket$inet6_tcp(0xa, 0x1, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x6, 0x3, &(0x7f00000003c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}}, &(0x7f0000000bc0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0xe, 0x4, 0x8, 0x8}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000340)={{r1}, &(0x7f00000002c0), &(0x7f0000000300)=r0}, 0x20)

761.146528ms ago: executing program 3 (id=9751):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x101001, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeeb, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)
mremap(&(0x7f0000064000/0x3000)=nil, 0x3000, 0x600000, 0x3, &(0x7f0000a00000/0x600000)=nil)

482.681754ms ago: executing program 3 (id=9756):
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f0000000100)='./file1\x00', 0x0, &(0x7f0000000180)={[{@noflush_merge}, {@adaptive_mode}, {@block_mode}, {@alloc_mode_reuse}, {@inline_xattr}, {@disable_roll_forward}, {@discard}, {@nouser_xattr}, {@jqfmt_vfsv1}, {}, {@fsync_mode_strict}, {@age_extent_cache}, {@nocheckpoint_merge}, {@resuid}]}, 0x1, 0x552b, &(0x7f0000005a40)="$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")
ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x42, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305839, &(0x7f0000000080)={0x0, 0x2, 0xffe, 0x4000006})
ioctl$F2FS_IOC_START_ATOMIC_WRITE(r0, 0xf501, 0x0)

452.682517ms ago: executing program 6 (id=9759):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x20040, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = dup3(r2, r0, 0x80000)
ioctl$KVM_GET_MSRS_cpu(r3, 0xc008ae88, &(0x7f0000000700)={0x2, 0x0, [{0x4000009c, 0x0, 0x800000007b}, {0xda0, 0x0, 0x3ae}]})

438.652478ms ago: executing program 9 (id=9760):
accept(0xffffffffffffffff, &(0x7f00000000c0)=@generic, &(0x7f0000000180)=0x80)
r0 = memfd_create(&(0x7f00000004c0)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\xafa\xac\x06\x9c&\xf5\xe3j\xfa\tcqM\xc0=\x8f\xb8R\x86\xd9\xd2.\x9f\x12\xed\x10\f\xbd\x1a|\x8a\xbb\xda\xcfY\x98gU@\xf2M\xc0\xb5\xdf\x9a\x8d\xdb,n\xae\x0eT\x80\x8c\xfd\xd7\xb0\x94\x82t\x96\rKx\xc5\x9b\x8c\x87\x96\x8bc\xbc\xee\xcc\x9f\xe3F\x99V4\x8e;M\xa9\x823\xe3\xb3mG\x8f\xdb\xed\x1b\x05\xec\xfc\xd1\xb5\xfd\xec@\xdeU\xdd\xa4\xc1\xe4L)\x8e\xe5\x91\x8e\xd4\x89\xef\x95T\x05G\xac\xb8\xc1: )mh\xc7\xf1?\xbb\x13;\xad\x95\xd70\xb6\x0e\x7f\x84r\x0e\xbf\xc5\xf6\xd4\xdd\t\x14\x18\xf7\xefi\x93\x03\xd2\xf2\bK\"\xd2\xb5\xaa\xb8\xc8\xe0\xac\x99\xe8su\xcd\xc3E\x12\xd7\xdd\x96!\x16Tu\xe3\xf0\x84#S\xd9\xe3~Wj\xb0r\x87\'\xea\a\xcfOeK\x9daW\xf4\x87@\x9c\xf3\xf1K\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x91\xe6\xdb\xc2\xa5h\'\xdfIn\x97\x0263~\xeb\xbe(i\n\xc2k4\x7f\x12\xa9e`SOs\x8c\xb4\xe7FeQ\xc6$\x92j\x15U\xfa\b\xea\xb0bYkW\xc0\x05\aC{\xcc\x03T\x17\xa5Sk\x87P\xc2\x97D\xb2\xfa\x1b\x9fe\xf4\x10\x1a\xad\x92\xce\x88\x1b\xbc\xe14\x19\xaa\xd3\r\xf4\xa2\xc3\x9e=\xa0 \xe6j\xe5\x85\xf8\x97\x03\x15\xaa\x920\xdcrI\xd8\b\xfb\xc7\xe7xX\x00>d\xbb\xa71\xad\x9a\x11\xe7\x13\x87\x93\\\xe5W-\xfc\xfd\xb8O\xb9j\xb8\xf2\x9dx\xb2\x86\xad\x92', 0x2)
write$binfmt_elf64(r0, &(0x7f0000000180)=ANY=[], 0x78)
r1 = socket$inet6_icmp(0xa, 0x2, 0x3a)
sendfile(r1, r0, &(0x7f00000001c0), 0x10000000000074)

424.7614ms ago: executing program 9 (id=9761):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
munlockall()

407.206041ms ago: executing program 9 (id=9762):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r1=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="440000001300290a000000000000000007000000", @ANYRES32=r1, @ANYBLOB="00000000000000001c001a800800028008000200080000003e120000080002001040e5"], 0x44}}, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f0000000000), 0x4000000000001f2, 0x0)

396.303253ms ago: executing program 9 (id=9763):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000080000007b8af8fe00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1}, 0x48)
setresuid(0x0, 0xee00, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0xfffffff7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

384.654634ms ago: executing program 9 (id=9764):
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
mount$incfs(&(0x7f00000007c0)='.\x00', &(0x7f0000000800)='./bus\x00', &(0x7f0000000840), 0x1004002, 0x0)
chdir(&(0x7f00000001c0)='./bus\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000001dc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
rename(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000200)='./file0\x00')

376.083574ms ago: executing program 6 (id=9765):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0), r1)
sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000400)={0x2c, r2, 0x1, 0x70bd29, 0x25dfdbfc, {}, [@HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_0\x00'}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0xc00}, 0x2de0d2a06d7aeea8)

363.399176ms ago: executing program 6 (id=9766):
r0 = syz_open_dev$evdev(&(0x7f0000000100), 0x2, 0x862b01)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000001700)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000740)=[@timestamping={{0x14, 0x1, 0x25, 0xfffffff7}}], 0x18}}], 0x1, 0x20000000)
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f00000003c0)={0x54, 0x0, 0x1, {0x1, 0x1}, {0x4d, 0x2}, @cond=[{0x8, 0x5388, 0x8, 0x800, 0x7, 0x7}, {0x0, 0x5, 0x7ff, 0x3, 0x6, 0x400}]})
write$char_usb(r0, &(0x7f0000000040)="e2", 0x2250)
ioctl$EVIOCGKEY(r0, 0x80404518, 0x0)

350.103687ms ago: executing program 9 (id=9767):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = eventfd(0x8c66)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000180)={0xfffffffffffffffc, 0x0, 0x2, r2})
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000240)={0x27800000000, 0x0, 0x1, r2, 0x1})

343.923057ms ago: executing program 6 (id=9768):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000780)='sys_enter\x00', r1}, 0x18)
readlinkat(0xffffffffffffffff, 0x0, 0x0, 0x0)

325.719489ms ago: executing program 6 (id=9769):
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000040)={'veth0_vlan\x00', 0x0})
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001140)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00'}, 0x48)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000380)={r1, 0x0, 0xe40, 0x0, &(0x7f00000006c0)="ffffffff106c3ed990f77e9eb3cf", 0x0, 0x60ff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

225.453338ms ago: executing program 2 (id=9770):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xe, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18000000010000000000000000000000a5000000a000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xb9)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x12, 0x7, 0x8, 0x22}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r1, r0, 0x5}, 0x10)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000400)={@map=r1, 0xffffffffffffffff, 0x4}, 0x10)

215.39836ms ago: executing program 6 (id=9771):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000940), 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0x18, &(0x7f0000000300)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007b000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r1}, 0x14)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)

205.516621ms ago: executing program 2 (id=9772):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x6, 0x7fe2, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)

108.12539ms ago: executing program 2 (id=9773):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r0}, 0x10)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f00000001c0)='devpts\x00', 0x1010401, 0x0)
umount2(&(0x7f00000002c0)='./file0\x00', 0x9)

0s ago: executing program 3 (id=9774):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000200)='fdb_delete\x00', r0}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r1, 0x8924, &(0x7f0000000000)={'bridge_slave_0\x00', @random="010000201000"})

kernel console output (not intermixed with test programs):

 loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  327.532304][T20529] loop1: detected capacity change from 0 to 256
[  327.545384][T20532] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  327.556559][T20529] FAT-fs (loop1): Directory bread(block 64) failed
[  327.568318][T20529] FAT-fs (loop1): Directory bread(block 65) failed
[  327.580324][T20529] FAT-fs (loop1): Directory bread(block 66) failed
[  327.589041][T20529] FAT-fs (loop1): Directory bread(block 67) failed
[  327.596152][T20529] FAT-fs (loop1): Directory bread(block 68) failed
[  327.602872][T20529] FAT-fs (loop1): Directory bread(block 69) failed
[  327.610190][   T43] kworker/u4:2: attempt to access beyond end of device
[  327.610190][   T43] loop3: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  327.611424][T20529] FAT-fs (loop1): Directory bread(block 70) failed
[  327.631361][T20529] FAT-fs (loop1): Directory bread(block 71) failed
[  327.638934][T20529] FAT-fs (loop1): Directory bread(block 72) failed
[  327.646137][T20529] FAT-fs (loop1): Directory bread(block 73) failed
[  327.671687][   T28] kauditd_printk_skb: 50 callbacks suppressed
[  327.671702][   T28] audit: type=1400 audit(584.451:4858): avc:  denied  { setopt } for  pid=20538 comm="syz.9.8761" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  327.701040][T16479] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[  327.724106][   T28] audit: type=1400 audit(584.471:4859): avc:  denied  { connect } for  pid=20538 comm="syz.9.8761" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  327.748254][T20543] loop1: detected capacity change from 0 to 2048
[  327.768959][   T28] audit: type=1400 audit(584.471:4860): avc:  denied  { write } for  pid=20538 comm="syz.9.8761" laddr=::1 lport=19 faddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  327.791835][   T28] audit: type=1400 audit(584.541:4861): avc:  denied  { ioctl } for  pid=20544 comm="syz.3.8760" path="socket:[95274]" dev="sockfs" ino=95274 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  327.820733][T20543]  loop1: p1 < > p4
[  327.825104][T20543] loop1: p4 size 8388608 extends beyond EOD, truncated
[  327.829581][T20558] loop8: detected capacity change from 0 to 512
[  327.839080][T20558] EXT4-fs: Ignoring removed oldalloc option
[  327.840869][   T28] audit: type=1400 audit(584.621:4862): avc:  denied  { read append } for  pid=20541 comm="syz.1.8764" name="loop1p4" dev="devtmpfs" ino=1066 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  327.847448][T20558] EXT4-fs (loop8): 1 truncate cleaned up
[  327.877569][T20558] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  327.889825][T16479] usb 3-1: Using ep0 maxpacket: 8
[  327.895922][T16479] usb 3-1: config 179 has an invalid interface number: 65 but max is 0
[  327.909199][   T28] audit: type=1400 audit(584.621:4863): avc:  denied  { open } for  pid=20541 comm="syz.1.8764" path="/dev/loop1p4" dev="devtmpfs" ino=1066 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[  327.932186][T20562] loop9: detected capacity change from 0 to 8192
[  327.932239][T16479] usb 3-1: config 179 has no interface number 0
[  327.946492][T16479] usb 3-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9
[  327.965969][T16479] usb 3-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[  327.982223][T20564] loop1: detected capacity change from 0 to 1024
[  327.988043][T16479] usb 3-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  328.000671][T16479] usb 3-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  328.014488][T16587] EXT4-fs (loop8): unmounting filesystem.
[  328.020717][T16479] usb 3-1: config 179 interface 65 has no altsetting 0
[  328.022230][T20564] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  328.027621][T16479] usb 3-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[  328.045150][T16479] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  328.055493][T16479] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:179.65/input/input30
[  328.068030][T11553] EXT4-fs (loop1): unmounting filesystem.
[  328.260732][T16479] usb 3-1: USB disconnect, device number 27
[  328.266644][    C1] xpad 3-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  328.275382][T16479] xpad 3-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  328.631052][T20573] loop8: detected capacity change from 0 to 256
[  328.642606][T20573] FAT-fs (loop8): Directory bread(block 64) failed
[  328.649597][T20573] FAT-fs (loop8): Directory bread(block 65) failed
[  328.656646][T20573] FAT-fs (loop8): Directory bread(block 66) failed
[  328.663595][T20573] FAT-fs (loop8): Directory bread(block 67) failed
[  328.676497][T20573] FAT-fs (loop8): Directory bread(block 68) failed
[  328.683336][T20573] FAT-fs (loop8): Directory bread(block 69) failed
[  328.690171][T20573] FAT-fs (loop8): Directory bread(block 70) failed
[  328.696702][T20573] FAT-fs (loop8): Directory bread(block 71) failed
[  328.703554][T20573] FAT-fs (loop8): Directory bread(block 72) failed
[  328.710478][T20573] FAT-fs (loop8): Directory bread(block 73) failed
[  328.750849][T20573] syz.8.8773: attempt to access beyond end of device
[  328.750849][T20573] loop8: rw=2049, sector=1800, nr_sectors = 8 limit=256
[  328.764744][T20573] loop2: detected capacity change from 0 to 7
[  328.815881][T20576] loop1: detected capacity change from 0 to 40427
[  328.822845][T20576] F2FS-fs (loop1): fault_injection options not supported
[  328.829963][T20576] F2FS-fs (loop1): fault_type options not supported
[  328.836590][T20576] F2FS-fs (loop1): Image doesn't support compression
[  328.843944][T20576] F2FS-fs (loop1): invalid crc value
[  328.850000][T20576] F2FS-fs (loop1): Found nat_bits in checkpoint
[  328.869883][T20576] F2FS-fs (loop1): Start checkpoint disabled!
[  328.876535][T20576] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  328.899813][T16479] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  328.911158][T20576] syz.1.8774: attempt to access beyond end of device
[  328.911158][T20576] loop1: rw=10241, sector=45096, nr_sectors = 8 limit=40427
[  328.925129][T20576] syz.1.8774: attempt to access beyond end of device
[  328.925129][T20576] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  328.968940][  T340] kworker/u4:4: attempt to access beyond end of device
[  328.968940][  T340] loop1: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  329.080988][T16479] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  329.094752][T16479] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  329.103839][T16479] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  329.111902][T16479] usb 4-1: SerialNumber: syz
[  329.720839][T16479] cdc_ether 4-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.3-1, CDC Ethernet Device, 42:42:42:42:42:42
[  330.124861][    T6] usb 4-1: USB disconnect, device number 6
[  330.130930][    T6] cdc_ether 4-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.3-1, CDC Ethernet Device
[  330.648315][T20581] loop2: detected capacity change from 0 to 512
[  330.656110][T20583] loop3: detected capacity change from 0 to 256
[  330.663819][T20581] EXT4-fs: Ignoring removed nobh option
[  330.683623][T20583] FAT-fs (loop3): Directory bread(block 64) failed
[  330.690458][T20581] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 0 not in group (block 0)!
[  330.700694][T20583] FAT-fs (loop3): Directory bread(block 65) failed
[  330.707235][T20583] FAT-fs (loop3): Directory bread(block 66) failed
[  330.714034][T20581] EXT4-fs (loop2): group descriptors corrupted!
[  330.720508][T20583] FAT-fs (loop3): Directory bread(block 67) failed
[  330.727159][T20583] FAT-fs (loop3): Directory bread(block 68) failed
[  330.734593][T20583] FAT-fs (loop3): Directory bread(block 69) failed
[  330.750034][T20583] FAT-fs (loop3): Directory bread(block 70) failed
[  330.757329][T20583] FAT-fs (loop3): Directory bread(block 71) failed
[  330.764081][T20583] FAT-fs (loop3): Directory bread(block 72) failed
[  330.770858][T20583] FAT-fs (loop3): Directory bread(block 73) failed
[  330.863539][   T28] audit: type=1400 audit(587.641:4864): avc:  denied  { unmount } for  pid=20063 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  330.980980][   T28] audit: type=1326 audit(587.761:4865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20621 comm="syz.9.8798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f830eb8f749 code=0x7ffc0000
[  331.013957][   T28] audit: type=1326 audit(587.781:4866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20621 comm="syz.9.8798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f830eb8f749 code=0x7ffc0000
[  331.054507][   T28] audit: type=1326 audit(587.781:4867): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20621 comm="syz.9.8798" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f830eb8f749 code=0x7ffc0000
[  331.079955][T20631] loop2: detected capacity change from 0 to 512
[  331.086787][T20631] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  331.104313][T20631] EXT4-fs (loop2): 1 truncate cleaned up
[  331.110176][T20631] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  331.122673][T20631] EXT4-fs (loop2): shut down requested (1)
[  331.130555][T20631] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[  331.139596][T20631] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[  331.148621][T20631] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop2 ino=15
[  331.165805][ T9333] EXT4-fs (loop2): unmounting filesystem.
[  331.177259][T20637] loop3: detected capacity change from 0 to 2048
[  331.179920][T20639] loop9: detected capacity change from 0 to 512
[  331.192019][T20641] netlink: 28 bytes leftover after parsing attributes in process `syz.2.8814'.
[  331.201138][T20641] netlink: 28 bytes leftover after parsing attributes in process `syz.2.8814'.
[  331.202679][T20639] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  331.224109][T20637]  loop3: p1 < > p4
[  331.228436][T20637] loop3: p4 size 8388608 extends beyond EOD, truncated
[  331.383902][T20639] EXT4-fs error (device loop9): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  331.395453][T20663] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  331.398464][T20639] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 2048 with error 28
[  331.412515][  T340] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[  331.418415][T20639] EXT4-fs (loop9): This should not happen!! Data will be lost
[  331.418415][T20639] 
[  331.440085][T20639] EXT4-fs (loop9): Total free blocks count 0
[  331.446284][T20639] EXT4-fs (loop9): Free/Dirty block details
[  331.452549][T20639] EXT4-fs (loop9): free_blocks=65280
[  331.457904][T20639] EXT4-fs (loop9): dirty_blocks=8193
[  331.462048][  T340] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  331.468471][T20639] EXT4-fs (loop9): Block reservation details
[  331.477241][T20639] EXT4-fs (loop9): i_reserved_data_blocks=8193
[  331.486421][  T340] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[  331.498609][T20667] loop2: detected capacity change from 0 to 1024
[  331.505607][  T340] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  331.514099][T20667] EXT4-fs: Ignoring removed nobh option
[  331.520606][  T340] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  331.528982][  T340] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  331.530969][   T43] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 2048 with error 28
[  331.537486][  T340] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  331.557810][T20667] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  331.570397][  T340] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  331.591238][T20667] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  331.628336][ T9333] EXT4-fs (loop2): unmounting filesystem.
[  331.647045][T20673] netlink: 28 bytes leftover after parsing attributes in process `syz.9.8817'.
[  331.657788][T20673] netlink: 28 bytes leftover after parsing attributes in process `syz.9.8817'.
[  331.668631][T20676] netlink: 24 bytes leftover after parsing attributes in process `syz.2.8818'.
[  331.851316][T20708] xt_bpf: check failed: parse error
[  332.147997][T20738] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[  332.196336][T20744] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  332.208208][T20744] IPv6: ADDRCONF(NETDEV_CHANGE): dummy0: link becomes ready
[  332.353431][T20757] loop9: detected capacity change from 0 to 512
[  332.361716][T20757] EXT4-fs (loop9): Test dummy encryption mode enabled
[  332.368707][T20757] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  332.389607][T20757] EXT4-fs error (device loop9): ext4_orphan_get:1426: comm syz.9.8855: bad orphan inode 131083
[  332.409241][T20757] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  332.454806][T18725] EXT4-fs (loop9): unmounting filesystem.
[  332.536411][T20780] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  332.608095][T20793] loop1: detected capacity change from 0 to 1024
[  332.615791][T20793] EXT4-fs: Ignoring removed bh option
[  332.634327][T20793] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  332.647682][T20793] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3836: comm syz.1.8870: Allocating blocks 497-513 which overlap fs metadata
[  332.662011][T20793] EXT4-fs (loop1): Remounting filesystem read-only
[  332.669098][T20790] EXT4-fs (loop1): pa ffff8881168f7888: logic 16, phys. 129, len 24
[  332.677173][T20790] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:4876: group 0, free 0, pa_free 1
[  332.706117][T20790] EXT4-fs (loop1): Remounting filesystem read-only
[  332.730570][T11553] EXT4-fs (loop1): unmounting filesystem.
[  332.832732][   T28] kauditd_printk_skb: 77 callbacks suppressed
[  332.832746][   T28] audit: type=1400 audit(589.611:4945): avc:  denied  { read } for  pid=20809 comm="syz.9.8878" dev="nsfs" ino=4026532313 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  332.865588][   T28] audit: type=1400 audit(589.641:4946): avc:  denied  { open } for  pid=20809 comm="syz.9.8878" path="net:[4026532313]" dev="nsfs" ino=4026532313 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  332.890242][   T28] audit: type=1400 audit(589.641:4947): avc:  denied  { create } for  pid=20809 comm="syz.9.8878" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  332.918919][T20816] loop9: detected capacity change from 0 to 512
[  332.926709][T20816] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  332.942246][   T28] audit: type=1400 audit(589.641:4948): avc:  denied  { bind } for  pid=20809 comm="syz.9.8878" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  332.962736][   T28] audit: type=1400 audit(589.641:4949): avc:  denied  { listen } for  pid=20809 comm="syz.9.8878" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  333.001169][T20816] EXT4-fs (loop9): 1 truncate cleaned up
[  333.005000][T20753] loop8: detected capacity change from 0 to 131072
[  333.006835][T20816] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  333.014846][T20753] F2FS-fs (loop8): invalid crc value
[  333.036617][T20753] F2FS-fs (loop8): Found nat_bits in checkpoint
[  333.043137][   T28] audit: type=1400 audit(589.641:4950): avc:  denied  { ioctl } for  pid=20809 comm="syz.9.8878" path="socket:[95905]" dev="sockfs" ino=95905 ioctlcmd=0x5411 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  333.070742][   T28] audit: type=1400 audit(589.641:4951): avc:  denied  { read append } for  pid=20813 comm="syz.3.8880" name="kvm" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  333.071337][T18725] EXT4-fs (loop9): unmounting filesystem.
[  333.094188][   T28] audit: type=1400 audit(589.641:4952): avc:  denied  { open } for  pid=20813 comm="syz.3.8880" path="/dev/kvm" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  333.122279][T20753] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  333.157761][T20827] loop1: detected capacity change from 0 to 512
[  333.164617][   T28] audit: type=1400 audit(589.671:4953): avc:  denied  { ioctl } for  pid=20813 comm="syz.3.8880" path="/dev/kvm" dev="devtmpfs" ino=83 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  333.189200][T20827] EXT4-fs: Ignoring removed nobh option
[  333.195317][T20827] EXT4-fs (loop1): ext4_check_descriptors: Inode table for group 0 not in group (block 0)!
[  333.206143][   T28] audit: type=1400 audit(589.811:4954): avc:  denied  { read } for  pid=20815 comm="syz.9.8881" name="file1" dev="loop9" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  333.228128][T20827] EXT4-fs (loop1): group descriptors corrupted!
[  333.361210][T20846] netlink: 68 bytes leftover after parsing attributes in process `syz.3.8893'.
[  333.372978][T20846] kernel profiling enabled (shift: 3)
[  333.493999][T20856] loop3: detected capacity change from 0 to 512
[  333.500919][T20856] EXT4-fs: Ignoring removed bh option
[  333.506783][T20856] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  333.519887][T16486] usb 3-1: new high-speed USB device number 28 using dummy_hcd
[  333.527185][T20856] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2196: inode #15: comm syz.3.8899: corrupted in-inode xattr
[  333.539708][T20856] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.8899: couldn't read orphan inode 15 (err -117)
[  333.552775][T20856] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  333.561241][  T787] usb 10-1: new high-speed USB device number 11 using dummy_hcd
[  333.600702][T20063] EXT4-fs (loop3): unmounting filesystem.
[  333.653119][   T43] Bluetooth: hci0: Frame reassembly failed (-84)
[  333.679542][T20877] netlink: 44 bytes leftover after parsing attributes in process `syz.3.8907'.
[  333.688621][T20877] netlink: 43 bytes leftover after parsing attributes in process `syz.3.8907'.
[  333.697651][T20877] netlink: 'syz.3.8907': attribute type 5 has an invalid length.
[  333.705539][T20877] netlink: 43 bytes leftover after parsing attributes in process `syz.3.8907'.
[  333.706818][T16486] usb 3-1: config 0 has an invalid descriptor of length 145, skipping remainder of the config
[  333.725125][T16486] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  333.734312][T16486] usb 3-1: New USB device found, idVendor=016d, idProduct=0000, bcdDevice= 0.00
[  333.743390][T16486] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  333.752184][T16486] usb 3-1: config 0 descriptor??
[  333.761005][  T787] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  333.772015][  T787] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  333.781885][  T787] usb 10-1: New USB device found, idVendor=06cb, idProduct=2968, bcdDevice= 0.00
[  333.791116][  T787] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  333.799824][  T787] usb 10-1: config 0 descriptor??
[  333.969257][T20835] loop2: detected capacity change from 0 to 512
[  333.990649][T20835] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c01c, mo2=0002]
[  333.998761][T20835] System zones: 0-2, 18-18, 34-35
[  334.006051][T20835] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  334.019440][T16486] usb 3-1: USB disconnect, device number 28
[  334.208145][  T787] itetech 0003:06CB:2968.003A: unbalanced collection at end of report description
[  334.217599][  T787] itetech: probe of 0003:06CB:2968.003A failed with error -22
[  334.413897][  T787] usb 10-1: USB disconnect, device number 11
[  334.528979][ T9333] EXT4-fs (loop2): unmounting filesystem.
[  334.689822][T16484] usb 9-1: new high-speed USB device number 13 using dummy_hcd
[  334.709847][  T354] usb 4-1: new full-speed USB device number 7 using dummy_hcd
[  334.809885][T16486] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[  334.870835][T16484] usb 9-1: too many endpoints for config 0 interface 0 altsetting 0: 193, using maximum allowed: 30
[  334.881858][T16484] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 193
[  334.894999][T16484] usb 9-1: New USB device found, idVendor=05ac, idProduct=0269, bcdDevice= 0.00
[  334.900952][  T354] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 80, setting to 64
[  334.904513][T16484] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  334.915908][  T354] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  334.923573][T16484] usb 9-1: config 0 descriptor??
[  334.935755][  T354] usb 4-1: New USB device found, idVendor=054c, idProduct=0374, bcdDevice= 0.00
[  334.953532][  T354] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  334.963104][  T354] usb 4-1: config 0 descriptor??
[  334.968335][T20896] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  334.989844][T16486] usb 3-1: Using ep0 maxpacket: 32
[  334.996431][T16486] usb 3-1: config index 0 descriptor too short (expected 29220, got 36)
[  335.005098][T16486] usb 3-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  335.014453][T16486] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 81
[  335.024827][T16486] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  335.034708][T16486] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  335.044650][T16486] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  335.057959][T16486] usb 3-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  335.067349][T16486] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  335.076275][T16486] usb 3-1: config 0 descriptor??
[  335.284111][T16486] usblp 3-1:0.0: usblp0: USB Bidirectional printer dev 29 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  335.345804][T16484] magicmouse 0003:05AC:0269.003B: hidraw0: USB HID v11.da Device [HID 05ac:0269] on usb-dummy_hcd.8-1/input0
[  335.381142][  T354] sony 0003:054C:0374.003C: hiddev96,hidraw1: USB HID v0.01 Device [HID 054c:0374] on usb-dummy_hcd.3-1/input0
[  335.393155][  T354] sony 0003:054C:0374.003C: failed to claim input
[  335.491788][  T354] usb 3-1: USB disconnect, device number 29
[  335.498796][  T354] usblp0: removed
[  335.591964][T16479] usb 4-1: USB disconnect, device number 7
[  335.611768][   T24] usb 9-1: USB disconnect, device number 13
[  335.699783][ T1089] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  335.862613][T20915] loop1: detected capacity change from 0 to 512
[  335.869527][T20915] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  335.881771][T20915] EXT4-fs (loop1): 1 truncate cleaned up
[  335.887503][T20915] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  335.905414][T11553] EXT4-fs (loop1): unmounting filesystem.
[  335.921724][T20922] loop1: detected capacity change from 0 to 512
[  335.928600][T20922] EXT4-fs (loop1): Test dummy encryption mode enabled
[  335.935561][T20922] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  335.946871][T20922] EXT4-fs error (device loop1): ext4_orphan_get:1426: comm syz.1.8924: bad orphan inode 131083
[  335.959828][T20922] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  335.980360][T11553] EXT4-fs (loop1): unmounting filesystem.
[  336.204591][T20936] loop9: detected capacity change from 0 to 40427
[  336.213498][T20936] F2FS-fs (loop9): Invalid log_blocksize (268), supports only 12
[  336.222663][T20936] F2FS-fs (loop9): Can't find valid F2FS filesystem in 1th superblock
[  336.226736][T20974] loop8: detected capacity change from 0 to 512
[  336.233066][T20936] F2FS-fs (loop9): invalid crc value
[  336.253177][T20974] EXT4-fs: Ignoring removed bh option
[  336.268497][T20974] EXT4-fs (loop8): mounting ext3 file system using the ext4 subsystem
[  336.287645][T20936] F2FS-fs (loop9): Found nat_bits in checkpoint
[  336.294945][T20974] EXT4-fs error (device loop8): ext4_xattr_ibody_find:2196: inode #15: comm syz.8.8948: corrupted in-inode xattr
[  336.317346][T20974] EXT4-fs error (device loop8): ext4_orphan_get:1405: comm syz.8.8948: couldn't read orphan inode 15 (err -117)
[  336.329715][T20974] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  336.352552][T20936] F2FS-fs (loop9): Try to recover 1th superblock, ret: 0
[  336.353555][T16587] EXT4-fs (loop8): unmounting filesystem.
[  336.359703][T20936] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[  336.398240][T20994] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  336.445045][T21000] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  336.453734][T21000] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  336.472344][T21000] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  336.481060][T21000] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  336.523423][T21009] loop9: detected capacity change from 0 to 1024
[  336.531407][T21009] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  336.546246][T18725] EXT4-fs (loop9): unmounting filesystem.
[  336.568193][T21015] xt_bpf: check failed: parse error
[  336.573563][   T24] usb 3-1: new high-speed USB device number 30 using dummy_hcd
[  336.760864][   T24] usb 3-1: too many endpoints for config 0 interface 0 altsetting 0: 193, using maximum allowed: 30
[  336.771897][   T24] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 193
[  336.785238][   T24] usb 3-1: New USB device found, idVendor=05ac, idProduct=0269, bcdDevice= 0.00
[  336.794573][   T24] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  336.803452][   T24] usb 3-1: config 0 descriptor??
[  336.810794][T21020] loop9: detected capacity change from 0 to 40427
[  336.817640][T21020] F2FS-fs (loop9): Wrong MAIN_AREA boundary, start(4096) end(12800) block(12288)
[  336.827405][T21020] F2FS-fs (loop9): Can't find valid F2FS filesystem in 1th superblock
[  336.836810][T21020] F2FS-fs (loop9): fault_type options not supported
[  336.843462][T21020] F2FS-fs (loop9): fault_injection options not supported
[  336.850539][T21020] F2FS-fs (loop9): Image doesn't support compression
[  336.857798][T21020] F2FS-fs (loop9): invalid crc value
[  336.864362][T21020] F2FS-fs (loop9): Found nat_bits in checkpoint
[  336.886105][T21020] F2FS-fs (loop9): Start checkpoint disabled!
[  336.893391][T21020] F2FS-fs (loop9): Try to recover 1th superblock, ret: 0
[  336.900542][T21020] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e6
[  336.936801][    T8] kworker/u4:0: attempt to access beyond end of device
[  336.936801][    T8] loop9: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  337.037934][T21029] netlink: 20 bytes leftover after parsing attributes in process `syz.9.8970'.
[  337.212133][   T24] magicmouse 0003:05AC:0269.003D: hidraw0: USB HID v11.da Device [HID 05ac:0269] on usb-dummy_hcd.2-1/input0
[  337.267383][T21036] loop8: detected capacity change from 0 to 128
[  337.273995][T21036] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  337.292842][T21036] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  337.326982][   T43] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  337.345412][T21042] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  337.353111][T16587] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  337.406430][T21050] netlink: 'syz.8.8980': attribute type 6 has an invalid length.
[  337.424546][  T354] usb 3-1: USB disconnect, device number 30
[  337.437756][T21053] loop9: detected capacity change from 0 to 256
[  337.444771][T21053] exFAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  337.455548][T21053] exFAT-fs (loop9): Medium has reported failures. Some data may be lost.
[  337.467227][T21053] exFAT-fs (loop9): failed to load upcase table (idx : 0x0000ff98, chksum : 0xc64c1d22, utbl_chksum : 0xe619d30d)
[  337.482240][T21057] device ip6gretap0 entered promiscuous mode
[  337.488272][T21057] device macsec1 entered promiscuous mode
[  337.511782][T21060] loop8: detected capacity change from 0 to 1024
[  337.518369][T21057] device ip6gretap0 left promiscuous mode
[  337.518587][T21060] EXT4-fs: Ignoring removed orlov option
[  337.530633][T21060] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (52289!=20869)
[  337.541126][T21060] EXT4-fs (loop8): invalid journal inode
[  337.546948][T21060] EXT4-fs (loop8): can't get journal size
[  337.553454][T21060] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  337.568953][T16587] EXT4-fs (loop8): unmounting filesystem.
[  337.583631][T21065] loop8: detected capacity change from 0 to 2048
[  337.614811][T21065] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[  337.789865][T16486] usb 10-1: new high-speed USB device number 12 using dummy_hcd
[  337.951624][T21073] loop3: detected capacity change from 0 to 512
[  337.959464][T21073] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a806e01c, mo2=0002]
[  337.967794][T21073] System zones: 1-12
[  337.968219][   T28] kauditd_printk_skb: 47 callbacks suppressed
[  337.968230][   T28] audit: type=1400 audit(594.741:5002): avc:  denied  { create } for  pid=21074 comm="syz.8.8990" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  337.972667][T21073] EXT4-fs error (device loop3): dx_probe:823: inode #2: comm syz.3.8991: Directory hole found for htree index block 0
[  337.997170][   T28] audit: type=1400 audit(594.761:5003): avc:  denied  { connect } for  pid=21074 comm="syz.8.8990" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  338.009362][T16486] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  338.009390][T16486] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  338.049327][T16486] usb 10-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[  338.058478][T16486] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  338.066967][   T28] audit: type=1400 audit(594.761:5004): avc:  denied  { setopt } for  pid=21074 comm="syz.8.8990" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  338.086196][T16486] usb 10-1: config 0 descriptor??
[  338.092329][T21073] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -117
[  338.100832][T21073] EXT4-fs error (device loop3): dx_probe:823: inode #2: comm syz.3.8991: Directory hole found for htree index block 0
[  338.116176][T21073] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117
[  338.133029][T21081] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  338.140475][T21081] IPv6: ADDRCONF(NETDEV_CHANGE): dummy0: link becomes ready
[  338.223510][T21091] loop2: detected capacity change from 0 to 256
[  338.230679][T21091] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  338.241637][T21091] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[  338.252647][T21091] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000ff98, chksum : 0xc64c1d22, utbl_chksum : 0xe619d30d)
[  338.459793][T16479] usb 9-1: new high-speed USB device number 14 using dummy_hcd
[  338.494305][T16486] cp2112 0003:10C4:EA90.003E: unknown main item tag 0x0
[  338.509791][T16486] cp2112 0003:10C4:EA90.003E: unknown main item tag 0x0
[  338.516842][T16486] cp2112 0003:10C4:EA90.003E: unknown main item tag 0x0
[  338.539791][T16486] cp2112 0003:10C4:EA90.003E: unknown main item tag 0x0
[  338.546776][T16486] cp2112 0003:10C4:EA90.003E: unknown main item tag 0x0
[  338.559795][  T354] usb 3-1: new high-speed USB device number 31 using dummy_hcd
[  338.569792][T16486] cp2112 0003:10C4:EA90.003E: unknown main item tag 0x0
[  338.576780][T16486] cp2112 0003:10C4:EA90.003E: unknown main item tag 0x0
[  338.600389][T16486] cp2112 0003:10C4:EA90.003E: hidraw0: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.9-1/input0
[  338.640902][T16479] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  338.651979][T16479] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  338.662072][T16479] usb 9-1: New USB device found, idVendor=06cb, idProduct=2968, bcdDevice= 0.00
[  338.671310][T16479] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  338.680343][T16479] usb 9-1: config 0 descriptor??
[  338.694127][T16486] cp2112 0003:10C4:EA90.003E: Part Number: 0x00 Device Version: 0x00
[  338.742920][  T354] usb 3-1: too many endpoints for config 0 interface 0 altsetting 0: 193, using maximum allowed: 30
[  338.753915][  T354] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 193
[  338.767666][  T354] usb 3-1: New USB device found, idVendor=05ac, idProduct=0269, bcdDevice= 0.00
[  338.776891][  T354] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  338.785884][  T354] usb 3-1: config 0 descriptor??
[  338.894333][T16486] cp2112 0003:10C4:EA90.003E: error requesting SMBus config
[  338.910494][T16486] cp2112: probe of 0003:10C4:EA90.003E failed with error -32
[  338.929902][T16486] usb 10-1: USB disconnect, device number 12
[  339.088917][T16479] itetech 0003:06CB:2968.003F: unbalanced collection at end of report description
[  339.108766][T16479] itetech: probe of 0003:06CB:2968.003F failed with error -22
[  339.194266][  T354] magicmouse 0003:05AC:0269.0040: item fetching failed at offset 5/7
[  339.202563][  T354] magicmouse 0003:05AC:0269.0040: magicmouse hid parse failed
[  339.210232][  T354] magicmouse: probe of 0003:05AC:0269.0040 failed with error -22
[  339.292953][T16486] usb 9-1: USB disconnect, device number 14
[  339.306674][   T28] audit: type=1400 audit(596.081:5005): avc:  denied  { ioctl } for  pid=21100 comm="syz.1.9002" path="socket:[97317]" dev="sockfs" ino=97317 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  339.306829][T21101] device batadv_slave_1 entered promiscuous mode
[  339.349165][T21100] device batadv_slave_1 left promiscuous mode
[  339.401316][T16479] usb 3-1: USB disconnect, device number 31
[  339.417331][T21113] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  339.424987][T21113] IPv6: ADDRCONF(NETDEV_CHANGE): dummy0: link becomes ready
[  339.446144][T21115] loop9: detected capacity change from 0 to 128
[  339.524276][   T28] audit: type=1400 audit(596.301:5006): avc:  denied  { mounton } for  pid=21122 comm="syz.1.9013" path="/884/file0" dev="tmpfs" ino=4623 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  339.554212][T21125] loop1: detected capacity change from 0 to 512
[  339.560970][T21125] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  339.572305][T21125] EXT4-fs (loop1): 1 truncate cleaned up
[  339.590772][   T28] audit: type=1326 audit(596.371:5007): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21128 comm="syz.1.9015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cd498f749 code=0x7ffc0000
[  339.613804][   T28] audit: type=1326 audit(596.371:5008): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21128 comm="syz.1.9015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cd498f749 code=0x7ffc0000
[  339.638468][   T28] audit: type=1326 audit(596.371:5009): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21128 comm="syz.1.9015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7cd498f749 code=0x7ffc0000
[  339.661759][   T28] audit: type=1326 audit(596.371:5010): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21128 comm="syz.1.9015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cd498f749 code=0x7ffc0000
[  339.685139][   T28] audit: type=1326 audit(596.371:5011): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21128 comm="syz.1.9015" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7cd498f749 code=0x7ffc0000
[  339.729799][  T354] usb 10-1: new high-speed USB device number 13 using dummy_hcd
[  339.777471][T21131] loop3: detected capacity change from 0 to 40427
[  339.784847][T21131] F2FS-fs (loop3): Wrong MAIN_AREA boundary, start(4096) end(12800) block(12288)
[  339.794048][T21131] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  339.802466][T21131] F2FS-fs (loop3): fault_type options not supported
[  339.809080][T21131] F2FS-fs (loop3): fault_injection options not supported
[  339.816589][T21131] F2FS-fs (loop3): Image doesn't support compression
[  339.824310][T21131] F2FS-fs (loop3): invalid crc value
[  339.836362][T21131] F2FS-fs (loop3): Found nat_bits in checkpoint
[  339.885454][T21150] hub 8-0:1.0: USB hub found
[  339.890394][T21150] hub 8-0:1.0: 1 port detected
[  339.890930][T21146] usb usb6: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  339.903777][T21131] F2FS-fs (loop3): Start checkpoint disabled!
[  339.921484][T21131] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  339.928759][T21131] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  339.939880][  T354] usb 10-1: Using ep0 maxpacket: 8
[  339.946389][  T354] usb 10-1: config 179 has an invalid interface number: 65 but max is 0
[  339.958169][  T354] usb 10-1: config 179 has no interface number 0
[  339.965086][T21158] netpci0: tun_chr_ioctl cmd 21731
[  339.970721][T21158] netpci0: tun_chr_ioctl cmd 1074812117
[  339.978203][  T354] usb 10-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9
[  339.997787][  T354] usb 10-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[  340.015432][  T354] usb 10-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  340.034606][  T354] usb 10-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  340.048352][  T340] kworker/u4:4: attempt to access beyond end of device
[  340.048352][  T340] loop3: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  340.059779][  T354] usb 10-1: config 179 interface 65 has no altsetting 0
[  340.079790][  T354] usb 10-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[  340.088928][  T354] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  340.103379][  T354] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.9/usb10/10-1/10-1:179.65/input/input32
[  340.140450][T21172] loop1: detected capacity change from 0 to 512
[  340.159094][T21172] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.9035: inode has both inline data and extents flags
[  340.172654][T21172] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.9035: couldn't read orphan inode 15 (err -117)
[  340.204732][T21167] loop8: detected capacity change from 0 to 40427
[  340.215858][T21167] F2FS-fs (loop8): fault_injection options not supported
[  340.223648][T21167] F2FS-fs (loop8): invalid crc value
[  340.230376][T21167] F2FS-fs (loop8): Found nat_bits in checkpoint
[  340.259617][T21167] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  340.291319][T21177] f2fs_ckpt-7:8: attempt to access beyond end of device
[  340.291319][T21177] loop8: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  340.318948][    T6] usb 10-1: USB disconnect, device number 13
[  340.319076][    C1] xpad 10-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  340.333969][    T6] xpad 10-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  340.338151][T21185] loop3: detected capacity change from 0 to 8192
[  340.401356][T21187] loop8: detected capacity change from 0 to 512
[  340.412140][T21187] EXT4-fs error (device loop8): ext4_do_update_inode:5270: inode #16: comm syz.8.9039: corrupted inode contents
[  340.424542][T21187] EXT4-fs (loop8): Remounting filesystem read-only
[  340.426902][T21193] loop3: detected capacity change from 0 to 128
[  340.431410][T21187] EXT4-fs error (device loop8): ext4_dirty_inode:6135: inode #16: comm syz.8.9039: mark_inode_dirty error
[  340.449077][T21187] EXT4-fs (loop8): Remounting filesystem read-only
[  340.455858][T21187] EXT4-fs error (device loop8): ext4_do_update_inode:5270: inode #16: comm syz.8.9039: corrupted inode contents
[  340.468017][T21187] EXT4-fs (loop8): Remounting filesystem read-only
[  340.474546][T21187] EXT4-fs error (device loop8): __ext4_ext_dirty:202: inode #16: comm syz.8.9039: mark_inode_dirty error
[  340.486090][T21187] EXT4-fs (loop8): Remounting filesystem read-only
[  340.492644][T21187] EXT4-fs error (device loop8): ext4_do_update_inode:5270: inode #16: comm syz.8.9039: corrupted inode contents
[  340.504874][T21187] EXT4-fs (loop8): Remounting filesystem read-only
[  340.511406][T21187] EXT4-fs error (device loop8) in ext4_orphan_del:301: Corrupt filesystem
[  340.520133][T21187] EXT4-fs (loop8): Remounting filesystem read-only
[  340.526643][T21187] EXT4-fs error (device loop8): ext4_do_update_inode:5270: inode #16: comm syz.8.9039: corrupted inode contents
[  340.538657][T21187] EXT4-fs (loop8): Remounting filesystem read-only
[  340.545215][T21187] EXT4-fs error (device loop8): ext4_truncate:4320: inode #16: comm syz.8.9039: mark_inode_dirty error
[  340.556457][T21187] EXT4-fs (loop8): Remounting filesystem read-only
[  340.563036][T21187] EXT4-fs error (device loop8) in ext4_process_orphan:343: Corrupt filesystem
[  340.572062][T21187] EXT4-fs (loop8): Remounting filesystem read-only
[  340.578740][T21187] EXT4-fs (loop8): 1 truncate cleaned up
[  340.609960][    T8] EXT4-fs error (device loop8): ext4_release_dquot:6832: comm kworker/u4:0: Failed to release dquot type 1
[  340.621794][    T8] EXT4-fs (loop8): Remounting filesystem read-only
[  340.629014][T16587] EXT4-fs unmount: 9 callbacks suppressed
[  340.629027][T16587] EXT4-fs (loop8): unmounting filesystem.
[  340.647870][T21197] device ip6gretap0 entered promiscuous mode
[  340.654133][T21197] device macsec1 entered promiscuous mode
[  340.661340][T21197] device ip6gretap0 left promiscuous mode
[  340.725235][T21203] netlink: 4 bytes leftover after parsing attributes in process `syz.8.9045'.
[  340.880696][T21220] netlink: 12 bytes leftover after parsing attributes in process `syz.3.9054'.
[  341.113322][T21222] loop9: detected capacity change from 0 to 40427
[  341.123588][T21222] F2FS-fs (loop9): Image doesn't support compression
[  341.131480][T21250] SELinux:  Context ÷ is not valid (left unmapped).
[  341.138419][T21222] F2FS-fs (loop9): Image doesn't support compression
[  341.145831][T21222] F2FS-fs (loop9): fault_type options not supported
[  341.167932][T21222] F2FS-fs (loop9): invalid crc value
[  341.176782][T21222] F2FS-fs (loop9): Found nat_bits in checkpoint
[  341.220873][T21222] F2FS-fs (loop9): Start checkpoint disabled!
[  341.237885][T21222] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e6
[  341.238360][T21262] loop1: detected capacity change from 0 to 1024
[  341.291387][T21262] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  341.330868][T21222] syz.9.9055: attempt to access beyond end of device
[  341.330868][T21222] loop9: rw=2049, sector=77824, nr_sectors = 136 limit=40427
[  341.345882][T11553] EXT4-fs (loop1): unmounting filesystem.
[  341.391835][   T43] kworker/u4:2: attempt to access beyond end of device
[  341.391835][   T43] loop9: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  341.463712][T21258] loop3: detected capacity change from 0 to 40427
[  341.473998][T21258] F2FS-fs (loop3): Invalid SB checksum offset: 0
[  341.483647][T21258] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock
[  341.525980][T21287] loop1: detected capacity change from 0 to 128
[  341.541089][T21258] F2FS-fs (loop3): invalid crc value
[  341.552833][T21258] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  341.569152][T21292] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9086'.
[  341.618857][T21258] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0
[  341.628683][T21258] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  341.669499][T21258] syz.3.9072: attempt to access beyond end of device
[  341.669499][T21258] loop3: rw=10241, sector=53248, nr_sectors = 8 limit=40427
[  341.670475][T21299] hub 8-0:1.0: USB hub found
[  341.688180][T21299] hub 8-0:1.0: 1 port detected
[  341.693317][T20063] syz-executor: attempt to access beyond end of device
[  341.693317][T20063] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  341.819661][T21321] netpci0: tun_chr_ioctl cmd 21731
[  341.825378][T21321] netpci0: tun_chr_ioctl cmd 1074812117
[  341.852063][T21328] hub 8-0:1.0: USB hub found
[  341.856922][T21328] hub 8-0:1.0: 1 port detected
[  341.863960][T21330] loop9: detected capacity change from 0 to 512
[  341.872079][T21330] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a806e01c, mo2=0002]
[  341.889088][T21330] System zones: 1-12
[  341.893649][T21330] EXT4-fs error (device loop9): dx_probe:823: inode #2: comm syz.9.9102: Directory hole found for htree index block 0
[  341.908396][T21337] loop3: detected capacity change from 0 to 512
[  341.915034][T21337] EXT4-fs: Ignoring removed nomblk_io_submit option
[  341.923677][T21337] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.9105: inode #1: comm syz.3.9105: iget: illegal inode #
[  341.928411][T21330] EXT4-fs (loop9): Cannot turn on journaled quota: type 0: error -117
[  341.937064][T21337] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.9105: error while reading EA inode 1 err=-117
[  341.947349][T21330] EXT4-fs error (device loop9): dx_probe:823: inode #2: comm syz.9.9102: Directory hole found for htree index block 0
[  341.964283][T21337] EXT4-fs (loop3): 1 orphan inode deleted
[  341.978033][T21337] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  341.989863][T21330] EXT4-fs (loop9): Cannot turn on journaled quota: type 1: error -117
[  341.998159][T21330] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  342.013434][T20063] EXT4-fs (loop3): unmounting filesystem.
[  342.037805][T18725] EXT4-fs (loop9): unmounting filesystem.
[  342.091902][T21353] loop9: detected capacity change from 0 to 1024
[  342.098659][T21353] EXT4-fs: Ignoring removed nobh option
[  342.104642][T21353] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  342.131481][T21353] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  342.150941][T21353] EXT4-fs error (device loop9): ext4_mb_mark_diskspace_used:3836: comm syz.9.9112: Allocating blocks 497-513 which overlap fs metadata
[  342.152821][T21345] loop3: detected capacity change from 0 to 40427
[  342.165664][T21353] EXT4-fs (loop9): pa ffff8881169945e8: logic 256, phys. 385, len 8
[  342.179371][T21353] EXT4-fs error (device loop9): ext4_mb_release_inode_pa:4876: group 0, free 0, pa_free 1
[  342.189955][T21345] F2FS-fs (loop3): fault_injection options not supported
[  342.197129][T21345] F2FS-fs (loop3): fault_type options not supported
[  342.215489][T21345] F2FS-fs (loop3): Image doesn't support compression
[  342.225228][T21345] F2FS-fs (loop3): invalid crc value
[  342.228775][T18725] EXT4-fs (loop9): unmounting filesystem.
[  342.239247][T21345] F2FS-fs (loop3): Found nat_bits in checkpoint
[  342.273476][T21345] F2FS-fs (loop3): Start checkpoint disabled!
[  342.280436][T21345] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  342.294848][T21345] syz.3.9108: attempt to access beyond end of device
[  342.294848][T21345] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  342.328684][T21357] loop2: detected capacity change from 0 to 40427
[  342.330908][    T8] kworker/u4:0: attempt to access beyond end of device
[  342.330908][    T8] loop3: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  342.336506][T21357] F2FS-fs (loop2): invalid crc value
[  342.355590][T21357] F2FS-fs (loop2): Found nat_bits in checkpoint
[  342.389979][T21357] F2FS-fs (loop2): Start checkpoint disabled!
[  342.396727][T21357] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[  342.431297][    T8] kworker/u4:0: attempt to access beyond end of device
[  342.431297][    T8] loop2: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  342.769872][T16479] usb 3-1: new high-speed USB device number 32 using dummy_hcd
[  342.951055][T16479] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  342.962049][T16479] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  342.971833][T16479] usb 3-1: New USB device found, idVendor=06cb, idProduct=2968, bcdDevice= 0.00
[  342.980903][T16479] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  342.989363][T16479] usb 3-1: config 0 descriptor??
[  343.089164][T21373] hub 8-0:1.0: USB hub found
[  343.094356][T21373] hub 8-0:1.0: 1 port detected
[  343.151336][T21382] loop8: detected capacity change from 0 to 256
[  343.177354][T21382] FAT-fs (loop8): Directory bread(block 64) failed
[  343.189800][T21382] FAT-fs (loop8): Directory bread(block 65) failed
[  343.206503][T21382] FAT-fs (loop8): Directory bread(block 66) failed
[  343.216565][T21382] FAT-fs (loop8): Directory bread(block 67) failed
[  343.229836][T21382] FAT-fs (loop8): Directory bread(block 68) failed
[  343.236396][T21382] FAT-fs (loop8): Directory bread(block 69) failed
[  343.248640][T21379] loop9: detected capacity change from 0 to 40427
[  343.255907][T21379] F2FS-fs (loop9): fault_injection options not supported
[  343.259810][T21382] FAT-fs (loop8): Directory bread(block 70) failed
[  343.265511][T21379] F2FS-fs (loop9): invalid crc value
[  343.269558][T21382] FAT-fs (loop8): Directory bread(block 71) failed
[  343.281481][T21382] FAT-fs (loop8): Directory bread(block 72) failed
[  343.288019][T21382] FAT-fs (loop8): Directory bread(block 73) failed
[  343.298251][T21379] F2FS-fs (loop9): Found nat_bits in checkpoint
[  343.312599][T21376] loop3: detected capacity change from 0 to 40427
[  343.325521][T21376] F2FS-fs (loop3): fault_injection options not supported
[  343.342953][T21376] F2FS-fs (loop3): invalid crc value
[  343.349322][T21379] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[  343.355029][T21376] F2FS-fs (loop3): Found nat_bits in checkpoint
[  343.387397][T18725] syz-executor: attempt to access beyond end of device
[  343.387397][T18725] loop9: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  343.389558][T21376] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  343.413169][T16479] itetech 0003:06CB:2968.0041: unbalanced collection at end of report description
[  343.432664][T16479] itetech: probe of 0003:06CB:2968.0041 failed with error -22
[  343.440571][T21387] f2fs_ckpt-7:3: attempt to access beyond end of device
[  343.440571][T21387] loop3: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  343.524179][   T28] kauditd_printk_skb: 174 callbacks suppressed
[  343.524195][   T28] audit: type=1400 audit(600.301:5185): avc:  denied  { mount } for  pid=21398 comm="syz.9.9129" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  343.599636][   T28] audit: type=1400 audit(600.371:5186): avc:  denied  { ioctl } for  pid=21411 comm="syz.9.9134" path="/dev/uinput" dev="devtmpfs" ino=262 ioctlcmd=0x5504 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  343.600318][T21413] input: syz1 as /devices/virtual/input/input33
[  343.651181][T16486] usb 3-1: USB disconnect, device number 32
[  343.682677][T21421] loop4: detected capacity change from 0 to 1
[  343.795308][T21419] loop3: detected capacity change from 0 to 40427
[  343.803146][T21419] F2FS-fs (loop3): invalid crc value
[  343.809681][T21419] F2FS-fs (loop3): Found nat_bits in checkpoint
[  343.841322][T21419] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  343.882936][T20063] syz-executor: attempt to access beyond end of device
[  343.882936][T20063] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  344.088176][   T28] audit: type=1400 audit(600.861:5187): avc:  denied  { mount } for  pid=21437 comm="syz.9.9145" name="/" dev="configfs" ino=6493 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  344.110728][   T28] audit: type=1400 audit(600.881:5188): avc:  denied  { search } for  pid=21437 comm="syz.9.9145" name="/" dev="configfs" ino=6493 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  344.134711][   T28] audit: type=1400 audit(600.881:5189): avc:  denied  { write } for  pid=21437 comm="syz.9.9145" name="/" dev="configfs" ino=6493 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  344.156563][   T28] audit: type=1400 audit(600.881:5190): avc:  denied  { add_name } for  pid=21437 comm="syz.9.9145" name="blkio.bfq.group_wait_time" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  344.196149][   T28] audit: type=1400 audit(600.881:5191): avc:  denied  { create } for  pid=21437 comm="syz.9.9145" name="blkio.bfq.group_wait_time" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:configfs_t tclass=file permissive=1
[  344.241460][T21456] loop3: detected capacity change from 0 to 1024
[  344.248186][T21456] EXT4-fs: Ignoring removed nobh option
[  344.254213][T21456] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  344.271474][T21456] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  344.294273][T21456] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:3836: comm syz.3.9154: Allocating blocks 497-513 which overlap fs metadata
[  344.308609][T21456] EXT4-fs (loop3): pa ffff888146ac9498: logic 256, phys. 385, len 8
[  344.316633][T21456] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:4876: group 0, free 0, pa_free 1
[  346.032807][T20063] EXT4-fs (loop3): unmounting filesystem.
[  346.044598][T21467] loop9: detected capacity change from 0 to 512
[  346.084068][T21467] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  346.098392][T21467] EXT4-fs (loop9): shut down requested (0)
[  346.114033][T21467] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop9 ino=15
[  346.119799][T16486] usb 3-1: new full-speed USB device number 33 using dummy_hcd
[  346.124079][T21467] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop9 ino=15
[  346.139673][T21467] SELinux: inode_doinit_use_xattr:  getxattr returned 5 for dev=loop9 ino=15
[  346.164693][T18725] EXT4-fs (loop9): unmounting filesystem.
[  346.310893][T16486] usb 3-1: config 0 has no interfaces?
[  346.317150][T16486] usb 3-1: New USB device found, idVendor=0002, idProduct=0000, bcdDevice= 0.00
[  346.326323][T16486] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  346.336835][T16486] usb 3-1: SerialNumber: syz
[  346.342178][T16486] usb 3-1: config 0 descriptor??
[  346.550483][T16479] usb 3-1: USB disconnect, device number 33
[  346.711067][   T43] device bridge_slave_1 left promiscuous mode
[  346.717249][   T43] bridge0: port 2(bridge_slave_1) entered disabled state
[  346.724855][   T43] device bridge_slave_0 left promiscuous mode
[  346.731180][   T43] bridge0: port 1(bridge_slave_0) entered disabled state
[  346.740068][   T43] device veth1_macvtap left promiscuous mode
[  346.746131][   T43] device veth0_vlan left promiscuous mode
[  346.836821][T21483] loop8: detected capacity change from 0 to 512
[  346.843180][   T28] audit: type=1400 audit(603.611:5192): avc:  denied  { getopt } for  pid=21482 comm="syz.9.9171" lport=3 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  346.844692][T21483] EXT4-fs: Ignoring removed nobh option
[  346.871183][T21483] EXT4-fs error (device loop8): ext4_orphan_get:1400: inode #15: comm syz.8.9161: iget: bad i_size value: 38620345925642
[  346.884096][T21483] EXT4-fs error (device loop8): ext4_orphan_get:1405: comm syz.8.9161: couldn't read orphan inode 15 (err -117)
[  346.896111][T21483] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  346.910159][   T28] audit: type=1400 audit(603.691:5193): avc:  denied  { mounton } for  pid=21477 comm="syz.8.9161" path="/415/file1/file0" dev="loop8" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  346.911406][T21483] EXT4-fs error (device loop8): ext4_validate_block_bitmap:429: comm syz.8.9161: bg 0: block 5: invalid block bitmap
[  346.939852][   T28] audit: type=1400 audit(603.691:5194): avc:  denied  { write } for  pid=21477 comm="syz.8.9161" name="bus" dev="loop8" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  346.967167][T21483] overlayfs: failed to set xattr on upper
[  346.978698][T21483] EXT4-fs error (device loop8): ext4_inlinedir_to_tree:1440: inode #12: block 7: comm syz.8.9161: path /: bad entry in directory: rec_len % 4 != 0 - offset=259, inode=4278190093, rec_len=255, size=60 fake=0
[  347.101534][T16587] EXT4-fs (loop8): unmounting filesystem.
[  347.159805][  T354] usb 10-1: new high-speed USB device number 14 using dummy_hcd
[  347.265829][T21511] bridge0: port 1(bridge_slave_0) entered blocking state
[  347.273145][T21511] bridge0: port 1(bridge_slave_0) entered disabled state
[  347.280565][T21511] device bridge_slave_0 entered promiscuous mode
[  347.287429][T21511] bridge0: port 2(bridge_slave_1) entered blocking state
[  347.294579][T21511] bridge0: port 2(bridge_slave_1) entered disabled state
[  347.302011][T21511] device bridge_slave_1 entered promiscuous mode
[  347.331853][T21516] loop2: detected capacity change from 0 to 128
[  347.341587][  T354] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  347.352834][  T354] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  347.363218][  T354] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  347.382775][  T354] usb 10-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  347.399085][  T354] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  347.408270][  T354] usb 10-1: config 0 descriptor??
[  347.418707][T21511] bridge0: port 2(bridge_slave_1) entered blocking state
[  347.425779][T21511] bridge0: port 2(bridge_slave_1) entered forwarding state
[  347.433154][T21511] bridge0: port 1(bridge_slave_0) entered blocking state
[  347.440200][T21511] bridge0: port 1(bridge_slave_0) entered forwarding state
[  347.464261][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[  347.471880][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[  347.479471][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  347.486978][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  347.497235][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  347.505471][    T8] bridge0: port 1(bridge_slave_0) entered blocking state
[  347.512507][    T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[  347.521562][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  347.530119][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[  347.537220][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[  347.551947][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  347.561684][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  347.576303][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  347.589241][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  347.597443][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  347.605161][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  347.613847][T21511] device veth0_vlan entered promiscuous mode
[  347.625333][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  347.636111][T21511] device veth1_macvtap entered promiscuous mode
[  347.646701][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  347.657032][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  347.679981][    T6] usb 3-1: new high-speed USB device number 34 using dummy_hcd
[  347.774223][T21540] incfs: Options parsing error. -22
[  347.779518][T21540] incfs: mount failed -22
[  347.816037][  T354] plantronics 0003:047F:FFFF.0042: ignoring exceeding usage max
[  347.826516][  T354] plantronics 0003:047F:FFFF.0042: No inputs registered, leaving
[  347.835318][  T354] plantronics 0003:047F:FFFF.0042: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.9-1/input0
[  347.858977][T21549] SELinux: security_context_str_to_sid (user_u) failed with errno=-22
[  347.867193][    T6] usb 3-1: Using ep0 maxpacket: 16
[  347.873543][    T6] usb 3-1: config 1 has an invalid interface number: 105 but max is 0
[  347.881814][    T6] usb 3-1: config 1 has no interface number 0
[  347.887906][    T6] usb 3-1: config 1 interface 105 has no altsetting 0
[  347.896532][    T6] usb 3-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=6c.6d
[  347.905977][    T6] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  347.914149][    T6] usb 3-1: Product: syz
[  347.922075][    T6] usb 3-1: Manufacturer: syz
[  347.926686][    T6] usb 3-1: SerialNumber: syz
[  347.955588][T21558] loop4: detected capacity change from 0 to 512
[  347.966317][T21558] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.9195: invalid indirect mapped block 256 (level 2)
[  347.980351][T21558] EXT4-fs (loop4): 2 truncates cleaned up
[  347.986623][T21558] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  348.001998][T21558] EXT4-fs error (device loop4): ext4_validate_block_bitmap:429: comm syz.4.9195: bg 0: block 5: invalid block bitmap
[  348.014720][T21558] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  348.032455][T21558] EXT4-fs (loop4): This should not happen!! Data will be lost
[  348.032455][T21558] 
[  348.042333][T21558] EXT4-fs (loop4): Total free blocks count 0
[  348.048363][T21558] EXT4-fs (loop4): Free/Dirty block details
[  348.054671][T21558] EXT4-fs (loop4): free_blocks=0
[  348.059652][T21558] EXT4-fs (loop4): dirty_blocks=2
[  348.065262][T21558] EXT4-fs (loop4): Block reservation details
[  348.071329][T21558] EXT4-fs (loop4): i_reserved_data_blocks=2
[  348.088799][  T724] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 28
[  348.133962][    T6] aqc111: probe of 3-1:1.105 failed with error -22
[  348.260328][T21586] netlink: 4 bytes leftover after parsing attributes in process `syz.3.9207'.
[  348.347430][  T354] usb 3-1: USB disconnect, device number 34
[  348.389829][T16484] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  348.581446][T16484] usb 5-1: too many endpoints for config 0 interface 0 altsetting 0: 193, using maximum allowed: 30
[  348.592322][T16484] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 193
[  348.605370][T16484] usb 5-1: New USB device found, idVendor=05ac, idProduct=0269, bcdDevice= 0.00
[  348.616829][T16484] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  348.625538][T16484] usb 5-1: config 0 descriptor??
[  349.033745][T16484] magicmouse 0003:05AC:0269.0043: hidraw1: USB HID v11.da Device [HID 05ac:0269] on usb-dummy_hcd.4-1/input0
[  349.131041][T21605] loop3: detected capacity change from 0 to 40427
[  349.138447][T21605] F2FS-fs (loop3): invalid crc value
[  349.144920][T21605] F2FS-fs (loop3): Found nat_bits in checkpoint
[  349.164702][T21605] F2FS-fs (loop3): Start checkpoint disabled!
[  349.171443][T21605] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  349.185518][T21605] syz.3.9215: attempt to access beyond end of device
[  349.185518][T21605] loop3: rw=2049, sector=77824, nr_sectors = 848 limit=40427
[  349.211251][   T43] kworker/u4:2: attempt to access beyond end of device
[  349.211251][   T43] loop3: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  349.240001][  T787] usb 5-1: USB disconnect, device number 11
[  349.269806][    T6] usb 3-1: new high-speed USB device number 35 using dummy_hcd
[  349.450955][    T6] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  349.462070][    T6] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  349.471866][    T6] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  349.485373][    T6] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  349.494472][    T6] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  349.503139][    T6] usb 3-1: config 0 descriptor??
[  349.553345][   T28] kauditd_printk_skb: 18 callbacks suppressed
[  349.553360][   T28] audit: type=1326 audit(606.331:5213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21614 comm="syz.3.9218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53cff8f749 code=0x7ffc0000
[  349.583032][   T28] audit: type=1326 audit(606.331:5214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21614 comm="syz.3.9218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53cff8f749 code=0x7ffc0000
[  349.606314][   T28] audit: type=1326 audit(606.341:5215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21614 comm="syz.3.9218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f53cff8f749 code=0x7ffc0000
[  349.629576][   T28] audit: type=1326 audit(606.341:5216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=21614 comm="syz.3.9218" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f53cff8f749 code=0x7ffc0000
[  349.661276][   T28] audit: type=1400 audit(606.441:5217): avc:  denied  { create } for  pid=21616 comm="syz.3.9221" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  349.720737][T21623] loop3: detected capacity change from 0 to 8192
[  349.730209][   T28] audit: type=1400 audit(606.511:5218): avc:  denied  { mounton } for  pid=21622 comm="syz.3.9222" path="/168/file2/bus" dev="loop3" ino=1049034 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=file permissive=1
[  349.741501][T20063] FAT-fs (loop3): error, invalid access to FAT (entry 0x0000e1b1)
[  349.760991][T20063] FAT-fs (loop3): Filesystem has been set read-only
[  349.769830][   T28] audit: type=1400 audit(606.541:5219): avc:  denied  { unmount } for  pid=20063 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  349.789702][   T28] audit: type=1400 audit(606.551:5220): avc:  denied  { map } for  pid=21628 comm="syz.4.9226" path="/dev/ashmem" dev="devtmpfs" ino=269 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  349.821149][T21635] netlink: 16 bytes leftover after parsing attributes in process `syz.9.9228'.
[  349.822689][T21633] loop3: detected capacity change from 0 to 512
[  349.840853][T21633] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  349.852387][   T28] audit: type=1400 audit(606.631:5221): avc:  denied  { remount } for  pid=21632 comm="syz.3.9225" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  349.852408][T21633] EXT4-fs (loop3): re-mounted. Quota mode: writeback.
[  349.899807][   T28] audit: type=1400 audit(606.661:5222): avc:  denied  { setopt } for  pid=21638 comm="syz.9.9230" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  349.919176][T20063] EXT4-fs (loop3): unmounting filesystem.
[  349.926147][    T6] plantronics 0003:047F:FFFF.0044: No inputs registered, leaving
[  349.940840][    T6] plantronics 0003:047F:FFFF.0044: hiddev97,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  349.953627][T16486] usb 10-1: USB disconnect, device number 14
[  350.136915][    T6] usb 3-1: USB disconnect, device number 35
[  350.182726][T21658] loop1: detected capacity change from 0 to 40427
[  350.190365][T21658] F2FS-fs (loop1): invalid crc value
[  350.196510][T21658] F2FS-fs (loop1): Found nat_bits in checkpoint
[  350.217264][T21658] F2FS-fs (loop1): Start checkpoint disabled!
[  350.223976][T21658] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  350.257728][  T340] kworker/u4:4: attempt to access beyond end of device
[  350.257728][  T340] loop1: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  350.324317][T21667] loop1: detected capacity change from 0 to 512
[  350.332635][T21667] EXT4-fs error (device loop1): ext4_get_branch:178: inode #13: block 33619980: comm syz.1.9241: invalid block
[  350.345009][T21667] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 213 vs 220 free clusters
[  350.360628][T21667] EXT4-fs error (device loop1): ext4_clear_blocks:883: inode #13: comm syz.1.9241: attempt to clear invalid blocks 983261 len 1
[  350.374226][T21667] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.9241: invalid indirect mapped block 2683928664 (level 0)
[  350.388466][T21667] EXT4-fs error (device loop1): __ext4_get_inode_loc:4515: comm syz.1.9241: Invalid inode table block 0 in block_group 0
[  350.401335][T21667] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5931: Corrupt filesystem
[  350.411085][T21667] EXT4-fs error (device loop1) in ext4_orphan_del:301: Corrupt filesystem
[  350.419840][T21667] EXT4-fs error (device loop1): __ext4_get_inode_loc:4515: comm syz.1.9241: Invalid inode table block 0 in block_group 0
[  350.432654][T21667] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5931: Corrupt filesystem
[  350.442322][T21667] EXT4-fs error (device loop1): ext4_truncate:4320: inode #13: comm syz.1.9241: mark_inode_dirty error
[  350.453651][T21667] EXT4-fs error (device loop1) in ext4_process_orphan:343: Corrupt filesystem
[  350.462780][T21667] EXT4-fs error (device loop1): __ext4_get_inode_loc:4515: comm syz.1.9241: Invalid inode table block 0 in block_group 0
[  350.475715][T21667] EXT4-fs (loop1): 1 truncate cleaned up
[  350.481430][T21667] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  350.490936][T21667] EXT4-fs (loop1): unmounting filesystem.
[  350.656518][T21679] loop2: detected capacity change from 0 to 128
[  350.837714][T21693] bridge0: port 3(syz_tun) entered blocking state
[  350.844371][T21693] bridge0: port 3(syz_tun) entered disabled state
[  350.851342][T21693] device syz_tun entered promiscuous mode
[  350.857228][T21693] bridge0: port 3(syz_tun) entered blocking state
[  350.863784][T21693] bridge0: port 3(syz_tun) entered forwarding state
[  351.114413][T21739] loop4: detected capacity change from 0 to 1024
[  351.115725][T21732] loop2: detected capacity change from 0 to 8192
[  351.123028][T21740] loop9: detected capacity change from 0 to 512
[  351.128679][T21739] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  351.135720][T21740] EXT4-fs error (device loop9): ext4_free_branches:1030: inode #11: comm syz.9.9274: invalid indirect mapped block 256 (level 2)
[  351.158901][T21740] EXT4-fs (loop9): 2 truncates cleaned up
[  351.165074][T21740] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  351.169511][T21739] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  351.196382][T21740] EXT4-fs error (device loop9): ext4_validate_block_bitmap:429: comm syz.9.9274: bg 0: block 5: invalid block bitmap
[  351.208965][T21740] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  351.224804][T21511] EXT4-fs (loop4): unmounting filesystem.
[  351.232515][T21740] EXT4-fs (loop9): This should not happen!! Data will be lost
[  351.232515][T21740] 
[  351.242502][T21740] EXT4-fs (loop9): Total free blocks count 0
[  351.248638][T21740] EXT4-fs (loop9): Free/Dirty block details
[  351.255827][T21740] EXT4-fs (loop9): free_blocks=0
[  351.260865][T21740] EXT4-fs (loop9): dirty_blocks=2
[  351.266067][T21740] EXT4-fs (loop9): Block reservation details
[  351.272235][T21740] EXT4-fs (loop9): i_reserved_data_blocks=2
[  351.289950][    T8] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 1 with error 28
[  351.508596][T21782] 9pnet: p9_errstr2errno: server reported unknown error 00000000000000000000004D†ü0xffffffffffffffff
[  351.609840][    T6] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  351.789822][    T6] usb 5-1: Using ep0 maxpacket: 32
[  351.796013][    T6] usb 5-1: config index 0 descriptor too short (expected 29220, got 36)
[  351.804386][    T6] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  351.813003][    T6] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81
[  351.821967][T16486] usb 3-1: new high-speed USB device number 36 using dummy_hcd
[  351.829539][    T6] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  351.829820][  T354] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  351.839308][    T6] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  351.856460][    T6] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  351.869500][    T6] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  351.878539][    T6] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  351.886958][    T6] usb 5-1: config 0 descriptor??
[  352.019927][  T354] usb 4-1: Using ep0 maxpacket: 16
[  352.026390][  T354] usb 4-1: config 1 has an invalid interface number: 105 but max is 0
[  352.034668][  T354] usb 4-1: config 1 has no interface number 0
[  352.040770][  T354] usb 4-1: config 1 interface 105 has no altsetting 0
[  352.049007][  T354] usb 4-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=6c.6d
[  352.050930][T16486] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  352.058080][  T354] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  352.069110][T16486] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  352.077330][  T354] usb 4-1: Product: syz
[  352.077348][  T354] usb 4-1: Manufacturer: syz
[  352.077361][  T354] usb 4-1: SerialNumber: syz
[  352.101009][T16486] usb 3-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[  352.110183][    T6] usblp 5-1:0.0: usblp0: USB Bidirectional printer dev 12 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  352.122284][T16486] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  352.130972][T16486] usb 3-1: config 0 descriptor??
[  352.289035][  T354] aqc111: probe of 4-1:1.105 failed with error -22
[  352.321586][  T354] usb 5-1: USB disconnect, device number 12
[  352.330065][  T354] usblp0: removed
[  352.524512][T16484] usb 4-1: USB disconnect, device number 8
[  352.538993][T16486] cp2112 0003:10C4:EA90.0045: unknown main item tag 0x0
[  352.546128][T16486] cp2112 0003:10C4:EA90.0045: unknown main item tag 0x0
[  352.553141][T16486] cp2112 0003:10C4:EA90.0045: unknown main item tag 0x0
[  352.560200][T16486] cp2112 0003:10C4:EA90.0045: unknown main item tag 0x0
[  352.567156][T16486] cp2112 0003:10C4:EA90.0045: unknown main item tag 0x0
[  352.574229][T16486] cp2112 0003:10C4:EA90.0045: unknown main item tag 0x0
[  352.581543][T16486] cp2112 0003:10C4:EA90.0045: unknown main item tag 0x0
[  352.589036][T16486] cp2112 0003:10C4:EA90.0045: hidraw0: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.2-1/input0
[  352.738588][T16486] cp2112 0003:10C4:EA90.0045: Part Number: 0x00 Device Version: 0x00
[  352.940884][T16486] cp2112 0003:10C4:EA90.0045: error requesting SMBus config
[  352.949457][T16486] cp2112: probe of 0003:10C4:EA90.0045 failed with error -32
[  352.965320][T16486] usb 3-1: USB disconnect, device number 36
[  353.174391][  T787] kernel write not supported for file bpf-prog (pid: 787 comm: kworker/0:3)
[  353.594814][T21852] netlink: 8 bytes leftover after parsing attributes in process `syz.9.9323'.
[  353.630074][T21852] netlink: 8 bytes leftover after parsing attributes in process `syz.9.9323'.
[  353.654809][T21852] netlink: 8 bytes leftover after parsing attributes in process `syz.9.9323'.
[  353.684547][T21852] netlink: 8 bytes leftover after parsing attributes in process `syz.9.9323'.
[  353.754042][T21863] loop9: detected capacity change from 0 to 128
[  353.762555][T21863] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  353.774948][T21866] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9330'.
[  353.784612][T18725] EXT4-fs (loop9): unmounting filesystem.
[  353.828354][T21878] device vlan2 entered promiscuous mode
[  353.834849][T21878] device veth0 entered promiscuous mode
[  353.875499][   T10] Bluetooth: hci0: Frame reassembly failed (-84)
[  353.882616][  T724] Bluetooth: hci0: received HCILL_GO_TO_SLEEP_ACK in state 0
[  354.050397][T21911] syz.9.9352[21911] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  354.050469][T21911] syz.9.9352[21911] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  354.052200][T21912] loop4: detected capacity change from 0 to 256
[  354.084267][T21912] FAT-fs (loop4): Directory bread(block 64) failed
[  354.091043][T21912] FAT-fs (loop4): Directory bread(block 65) failed
[  354.097688][T21912] FAT-fs (loop4): Directory bread(block 66) failed
[  354.106392][T21912] FAT-fs (loop4): Directory bread(block 67) failed
[  354.113166][T21912] FAT-fs (loop4): Directory bread(block 68) failed
[  354.120231][T21912] FAT-fs (loop4): Directory bread(block 69) failed
[  354.126850][T21912] FAT-fs (loop4): Directory bread(block 70) failed
[  354.133571][T21912] FAT-fs (loop4): Directory bread(block 71) failed
[  354.140313][T21912] FAT-fs (loop4): Directory bread(block 72) failed
[  354.147079][T21912] FAT-fs (loop4): Directory bread(block 73) failed
[  354.188200][T21922] loop9: detected capacity change from 0 to 8192
[  354.195517][T21922] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  354.216821][T21924] loop4: detected capacity change from 0 to 256
[  354.227819][T21924] FAT-fs (loop4): Directory bread(block 64) failed
[  354.234477][T21924] FAT-fs (loop4): Directory bread(block 65) failed
[  354.241049][T21924] FAT-fs (loop4): Directory bread(block 66) failed
[  354.247633][T21924] FAT-fs (loop4): Directory bread(block 67) failed
[  354.254265][T21924] FAT-fs (loop4): Directory bread(block 68) failed
[  354.261203][T21924] FAT-fs (loop4): Directory bread(block 69) failed
[  354.267813][T21924] FAT-fs (loop4): Directory bread(block 70) failed
[  354.274476][T21924] FAT-fs (loop4): Directory bread(block 71) failed
[  354.281051][T21924] FAT-fs (loop4): Directory bread(block 72) failed
[  354.287572][T21924] FAT-fs (loop4): Directory bread(block 73) failed
[  354.361834][T21928] syz.4.9360: attempt to access beyond end of device
[  354.361834][T21928] loop4: rw=2049, sector=1224, nr_sectors = 128 limit=256
[  354.421758][  T724] kworker/u4:6: attempt to access beyond end of device
[  354.421758][  T724] loop4: rw=1, sector=1352, nr_sectors = 416 limit=256
[  354.435593][  T724] kworker/u4:6: attempt to access beyond end of device
[  354.435593][  T724] loop4: rw=1, sector=1800, nr_sectors = 128 limit=256
[  354.450356][  T724] kworker/u4:6: attempt to access beyond end of device
[  354.450356][  T724] loop4: rw=1, sector=1960, nr_sectors = 3632 limit=256
[  354.466021][  T724] kworker/u4:6: attempt to access beyond end of device
[  354.466021][  T724] loop4: rw=1, sector=5592, nr_sectors = 2048 limit=256
[  354.476107][T21931] SELinux:  Context #! ./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  354.482526][  T724] kworker/u4:6: attempt to access beyond end of device
[  354.482526][  T724] loop4: rw=1, sector=7640, nr_sectors = 3520 limit=256
[  354.586525][  T724] kworker/u4:6: attempt to access beyond end of device
[  354.586525][  T724] loop4: rw=1, sector=11160, nr_sectors = 4096 limit=256
[  354.604916][  T724] kworker/u4:6: attempt to access beyond end of device
[  354.604916][  T724] loop4: rw=1, sector=15256, nr_sectors = 4096 limit=256
[  354.622819][T21931] loop3: detected capacity change from 0 to 40427
[  354.628370][  T724] kworker/u4:6: attempt to access beyond end of device
[  354.628370][  T724] loop4: rw=1, sector=19352, nr_sectors = 7368 limit=256
[  354.631317][   T28] kauditd_printk_skb: 18 callbacks suppressed
[  354.631332][   T28] audit: type=1400 audit(611.401:5241): avc:  denied  { create } for  pid=21930 comm="syz.3.9363" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon=2321202E2F6367726F75702F66696C6530616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616
[  354.650010][T21931] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  354.650151][  T724] kworker/u4:6: attempt to access beyond end of device
[  354.650151][  T724] loop4: rw=1, sector=26720, nr_sectors = 7080 limit=256
[  354.740109][T21935] 9pnet: p9_errstr2errno: server reported unknown error �0x0000000000000004
[  354.767649][   T28] audit: type=1400 audit(611.431:5242): avc:  denied  { associate } for  pid=21930 comm="syz.3.9363" name="bus" scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon=2321202E2F6367726F75702F66696C653061616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161
[  354.767877][   T28] audit: type=1400 audit(611.431:5243): avc:  denied  { mounton } for  pid=21930 comm="syz.3.9363" path="/191/bus" dev="tmpfs" ino=1029 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon=2321202E2F6367726F75702F66696C6530616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161
[  354.776366][T21931] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  354.951132][T21931] F2FS-fs (loop3): invalid crc value
[  354.968643][T21931] F2FS-fs (loop3): Found nat_bits in checkpoint
[  355.016749][T21931] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  355.023877][T21931] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  355.041480][   T28] audit: type=1400 audit(611.821:5244): avc:  denied  { create } for  pid=21930 comm="syz.3.9363" name="cgroup.controllers" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon=2321202E2F6367726F75702F66696C653061616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616
[  355.042996][   T28] audit: type=1400 audit(611.821:5245): avc:  denied  { read append open } for  pid=21930 comm="syz.3.9363" path="/191/bus/cgroup.controllers" dev="loop3" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon=2321202E2F6367726F75702F66696C6530616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616
[  355.172086][T21954] loop4: detected capacity change from 0 to 512
[  355.315497][   T28] audit: type=1400 audit(612.091:5246): avc:  denied  { rmdir } for  pid=20063 comm="syz-executor" name="bus" dev="tmpfs" ino=1029 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon=2321202E2F6367726F75702F66696C653061616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616161616
[  355.321030][T21954] EXT4-fs: Ignoring removed nobh option
[  355.454195][T21954] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.9372: iget: bad i_size value: 38620345925642
[  355.489842][T21954] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.9372: couldn't read orphan inode 15 (err -117)
[  355.530606][T21954] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  355.568140][T21954] EXT4-fs error (device loop4): ext4_validate_block_bitmap:429: comm syz.4.9372: bg 0: block 5: invalid block bitmap
[  355.606628][T21954] overlayfs: failed to set xattr on upper
[  355.627272][T21954] EXT4-fs error (device loop4): ext4_inlinedir_to_tree:1440: inode #12: block 7: comm syz.4.9372: path /: bad entry in directory: rec_len % 4 != 0 - offset=259, inode=4278190093, rec_len=255, size=60 fake=0
[  356.703415][T16597] Bluetooth: hci0: command 0x1003 tx timeout
[  356.969919][ T1089] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  357.063114][T21511] EXT4-fs (loop4): unmounting filesystem.
[  357.211438][   T28] audit: type=1400 audit(613.991:5247): avc:  denied  { accept } for  pid=21994 comm="syz.2.9389" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  357.307578][   T28] audit: type=1400 audit(614.081:5248): avc:  denied  { setopt } for  pid=22002 comm="syz.3.9392" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  357.335650][T22007] incfs: Options parsing error. -22
[  357.342813][T22007] incfs: mount failed -22
[  357.354006][   T28] audit: type=1400 audit(614.101:5249): avc:  denied  { getopt } for  pid=22002 comm="syz.3.9392" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  357.374014][T22013] device sit0 entered promiscuous mode
[  357.386694][T22013] netlink: 'syz.2.9396': attribute type 1 has an invalid length.
[  357.393755][T22018] loop3: detected capacity change from 0 to 256
[  357.394707][T22013] netlink: 9 bytes leftover after parsing attributes in process `syz.2.9396'.
[  357.414273][T22018] FAT-fs (loop3): Directory bread(block 64) failed
[  357.430437][T22018] FAT-fs (loop3): Directory bread(block 65) failed
[  357.438050][T21998] bridge0: port 1(bridge_slave_0) entered blocking state
[  357.438571][T22018] FAT-fs (loop3): Directory bread(block 66) failed
[  357.450697][T21998] bridge0: port 1(bridge_slave_0) entered disabled state
[  357.451860][   T28] audit: type=1400 audit(614.231:5250): avc:  denied  { create } for  pid=22019 comm="syz.9.9399" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  357.459397][T21998] device bridge_slave_0 entered promiscuous mode
[  357.484787][T22018] FAT-fs (loop3): Directory bread(block 67) failed
[  357.485627][T21998] bridge0: port 2(bridge_slave_1) entered blocking state
[  357.499118][T22018] FAT-fs (loop3): Directory bread(block 68) failed
[  357.499595][T21998] bridge0: port 2(bridge_slave_1) entered disabled state
[  357.506827][T22018] FAT-fs (loop3): Directory bread(block 69) failed
[  357.520350][T21998] device bridge_slave_1 entered promiscuous mode
[  357.521790][T22018] FAT-fs (loop3): Directory bread(block 70) failed
[  357.538306][T22018] FAT-fs (loop3): Directory bread(block 71) failed
[  357.544988][T22018] FAT-fs (loop3): Directory bread(block 72) failed
[  357.551637][T22018] FAT-fs (loop3): Directory bread(block 73) failed
[  357.590209][T22028] loop9: detected capacity change from 0 to 256
[  357.618393][T22028] FAT-fs (loop9): Directory bread(block 64) failed
[  357.625178][T22028] FAT-fs (loop9): Directory bread(block 65) failed
[  357.634153][T22028] FAT-fs (loop9): Directory bread(block 66) failed
[  357.641419][T22028] FAT-fs (loop9): Directory bread(block 67) failed
[  357.648068][T22028] FAT-fs (loop9): Directory bread(block 68) failed
[  357.654696][T22028] FAT-fs (loop9): Directory bread(block 69) failed
[  357.662791][    T8] device bridge_slave_1 left promiscuous mode
[  357.669900][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[  357.675989][T22028] FAT-fs (loop9): Directory bread(block 70) failed
[  357.686479][    T8] device bridge_slave_0 left promiscuous mode
[  357.694894][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[  357.699160][T22028] FAT-fs (loop9): Directory bread(block 71) failed
[  357.707563][T22036] loop3: detected capacity change from 0 to 2048
[  357.708636][T22028] FAT-fs (loop9): Directory bread(block 72) failed
[  357.722196][T22028] FAT-fs (loop9): Directory bread(block 73) failed
[  357.729122][    T8] device veth1_macvtap left promiscuous mode
[  357.736762][    T8] device veth0_vlan left promiscuous mode
[  357.742985][T22036]  loop3: p1 p3 p4
[  357.747751][T22036] loop3: p4 size 589824 extends beyond EOD, truncated
[  357.902628][T22054] loop2: detected capacity change from 0 to 512
[  357.917449][T21998] bridge0: port 2(bridge_slave_1) entered blocking state
[  357.924549][T21998] bridge0: port 2(bridge_slave_1) entered forwarding state
[  357.931874][T21998] bridge0: port 1(bridge_slave_0) entered blocking state
[  357.938910][T21998] bridge0: port 1(bridge_slave_0) entered forwarding state
[  357.974314][T22054] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  357.990116][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  358.002893][   T43] bridge0: port 1(bridge_slave_0) entered disabled state
[  358.010272][   T43] bridge0: port 2(bridge_slave_1) entered disabled state
[  358.021789][ T9333] EXT4-fs (loop2): unmounting filesystem.
[  358.033018][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  358.061332][   T43] bridge0: port 1(bridge_slave_0) entered blocking state
[  358.068423][   T43] bridge0: port 1(bridge_slave_0) entered forwarding state
[  358.091983][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  358.121164][T22075] loop2: detected capacity change from 0 to 16
[  358.128020][   T43] bridge0: port 2(bridge_slave_1) entered blocking state
[  358.135098][   T43] bridge0: port 2(bridge_slave_1) entered forwarding state
[  358.142604][T22075] erofs: (device loop2): EXPERIMENTAL compressed fragments feature in use. Use at your own risk!
[  358.155932][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  358.163968][T22075] erofs: (device loop2): EXPERIMENTAL global deduplication feature in use. Use at your own risk!
[  358.175493][T22075] erofs: (device loop2): mounted with root inode @ nid 36.
[  358.180164][T22061] netlink: 'syz.1.9413': attribute type 4 has an invalid length.
[  358.197322][T22073] netlink: 'syz.1.9413': attribute type 4 has an invalid length.
[  358.211148][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  358.236608][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  358.252509][T22079] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  358.275118][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  358.284021][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  358.305412][T22089] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  358.313209][T22089] IPv6: ADDRCONF(NETDEV_CHANGE): dummy0: link becomes ready
[  358.328531][T21998] device veth0_vlan entered promiscuous mode
[  358.342124][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  358.356798][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  358.377565][T21998] device veth1_macvtap entered promiscuous mode
[  358.393734][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  358.402499][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  358.420207][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  358.430327][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  358.446554][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  358.470512][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  358.484300][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  358.512097][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  358.528907][   T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  358.558711][T22125] loop6: detected capacity change from 0 to 512
[  358.566264][T16484] kernel write not supported for file /uhid (pid: 16484 comm: kworker/0:6)
[  358.567284][T22125] EXT4-fs: Ignoring removed nobh option
[  358.588706][T22125] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2196: inode #15: comm syz.6.9440: corrupted in-inode xattr
[  358.601665][T22125] EXT4-fs error (device loop6): ext4_orphan_get:1405: comm syz.6.9440: couldn't read orphan inode 15 (err -117)
[  358.614019][T22125] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  358.638257][T21998] EXT4-fs (loop6): unmounting filesystem.
[  358.663129][T22143] loop3: detected capacity change from 0 to 256
[  358.671675][T22142] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  358.681378][T22146] loop2: detected capacity change from 0 to 512
[  358.690694][T22143] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000e8a4, chksum : 0x7bc75166, utbl_chksum : 0xe619d30d)
[  358.722611][T22146] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  358.753934][ T9333] EXT4-fs (loop2): unmounting filesystem.
[  358.770944][T22163] netlink: 'syz.2.9457': attribute type 2 has an invalid length.
[  359.006854][T22180] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  359.022284][T22184] loop1: detected capacity change from 0 to 512
[  359.029054][T22180] IPv6: ADDRCONF(NETDEV_CHANGE): dummy0: link becomes ready
[  359.040601][T22184] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  359.068432][T22184] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.9468: inode has both inline data and extents flags
[  359.082521][T22184] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.9468: couldn't read orphan inode 15 (err -117)
[  359.094893][T22184] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  359.144886][T22196] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  359.168772][T11553] EXT4-fs (loop1): unmounting filesystem.
[  359.272413][T22208] loop2: detected capacity change from 0 to 4096
[  359.290443][T22216] input: syz0 as /devices/virtual/input/input36
[  359.300898][T22208] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  359.320078][T22208] EXT4-fs (loop2): Test dummy encryption mode enabled
[  359.347278][T22208] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  359.357914][T22221] loop3: detected capacity change from 0 to 256
[  359.364982][T22208] System zones: 0-5
[  359.369809][T22208] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  359.433375][T22222] loop6: detected capacity change from 0 to 1024
[  359.449887][ T9333] EXT4-fs (loop2): unmounting filesystem.
[  359.463209][  T354] hid-generic 00A0:0006:0003.0046: unknown main item tag 0x0
[  359.466072][T22222] EXT4-fs: Ignoring removed orlov option
[  359.472699][  T354] hid-generic 00A0:0006:0003.0046: unknown main item tag 0x0
[  359.498888][T22222] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  359.501054][  T354] hid-generic 00A0:0006:0003.0046: unknown main item tag 0x0
[  359.516224][  T354] hid-generic 00A0:0006:0003.0046: unknown main item tag 0x0
[  359.517659][T22222] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:3836: comm syz.6.9481: Allocating blocks 481-513 which overlap fs metadata
[  359.525251][  T354] hid-generic 00A0:0006:0003.0046: unknown main item tag 0x0
[  359.546223][  T354] hid-generic 00A0:0006:0003.0046: unknown main item tag 0x0
[  359.553709][  T354] hid-generic 00A0:0006:0003.0046: unknown main item tag 0x0
[  359.561246][  T354] hid-generic 00A0:0006:0003.0046: unknown main item tag 0x0
[  359.569080][  T354] hid-generic 00A0:0006:0003.0046: unknown main item tag 0x0
[  359.569575][T21998] EXT4-fs (loop6): unmounting filesystem.
[  359.576880][  T354] hid-generic 00A0:0006:0003.0046: unknown main item tag 0x0
[  359.589718][  T354] hid-generic 00A0:0006:0003.0046: unknown main item tag 0x0
[  359.597169][  T354] hid-generic 00A0:0006:0003.0046: unknown main item tag 0x0
[  359.604646][  T354] hid-generic 00A0:0006:0003.0046: unknown main item tag 0x0
[  359.612059][  T354] hid-generic 00A0:0006:0003.0046: unknown main item tag 0x0
[  359.619430][  T354] hid-generic 00A0:0006:0003.0046: unknown main item tag 0x0
[  359.627232][  T354] hid-generic 00A0:0006:0003.0046: hidraw0: <UNKNOWN> HID v0.05 Device [syz1] on syz0
[  359.646082][   T28] kauditd_printk_skb: 15 callbacks suppressed
[  359.646096][   T28] audit: type=1400 audit(616.421:5266): avc:  denied  { write } for  pid=22235 comm="syz.6.9487" name="mcfilter6" dev="proc" ino=4026532936 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1
[  359.680964][T22240] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  359.693447][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[  359.693851][T22242] loop2: detected capacity change from 0 to 2048
[  359.711717][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  359.722075][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[  359.731156][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  359.746387][T22245] serio: Serial port ptm0
[  359.748244][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  359.757867][T22242] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  359.767581][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  359.776503][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  359.784815][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  359.800326][T22242] EXT4-fs (loop2): re-mounted. Quota mode: none.
[  359.810673][ T9333] EXT4-fs (loop2): unmounting filesystem.
[  359.823622][T22252] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9494'.
[  359.835769][T22252] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9494'.
[  359.845380][T22252] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9494'.
[  359.859264][T22252] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9494'.
[  359.901488][  T354] usb 10-1: new full-speed USB device number 15 using dummy_hcd
[  360.090952][  T354] usb 10-1: config 0 has no interfaces?
[  360.096604][  T354] usb 10-1: New USB device found, idVendor=04f3, idProduct=0754, bcdDevice= 0.00
[  360.105835][  T354] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  360.114483][  T354] usb 10-1: config 0 descriptor??
[  360.169878][T16484] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  360.323822][  T354] usb 10-1: USB disconnect, device number 15
[  360.371019][T16484] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  360.381955][T16484] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  360.391722][T16484] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  360.404600][T16484] usb 7-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  360.413639][T16484] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  360.422124][T16484] usb 7-1: config 0 descriptor??
[  360.778792][T16479] kernel write not supported for file bpf-prog (pid: 16479 comm: kworker/1:5)
[  360.833604][T16484] plantronics 0003:047F:FFFF.0047: No inputs registered, leaving
[  360.848377][T16484] plantronics 0003:047F:FFFF.0047: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.6-1/input0
[  360.909422][T22306] input: syz0 as /devices/virtual/input/input38
[  360.951210][T22312] netlink: 'syz.9.9522': attribute type 6 has an invalid length.
[  361.120547][  T354] usb 7-1: USB disconnect, device number 4
[  361.265365][T22322] loop1: detected capacity change from 0 to 40427
[  361.279777][T22322] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  361.287724][T22322] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  361.296835][T22322] F2FS-fs (loop1): invalid crc_offset: 33558524
[  361.304505][T22322] F2FS-fs (loop1): Found nat_bits in checkpoint
[  361.313730][T22294] loop3: detected capacity change from 0 to 131072
[  361.321664][T22294] F2FS-fs (loop3): invalid crc value
[  361.328119][T22294] F2FS-fs (loop3): Found nat_bits in checkpoint
[  361.336374][T22322] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  361.350088][T22322] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  361.361891][T22294] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  361.364865][T22336] loop9: detected capacity change from 0 to 256
[  361.378013][T22336] exFAT-fs (loop9): failed to load upcase table (idx : 0x0000e8a4, chksum : 0x7bc75166, utbl_chksum : 0xe619d30d)
[  361.390928][T22322] bio_check_eod: 17 callbacks suppressed
[  361.390947][T22322] syz.1.9526: attempt to access beyond end of device
[  361.390947][T22322] loop1: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  361.620901][T22345] loop2: detected capacity change from 0 to 128
[  361.678866][T22353] loop2: detected capacity change from 0 to 1024
[  361.686308][T22353] EXT4-fs: Ignoring removed nomblk_io_submit option
[  361.701520][T22354] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9536'.
[  361.714747][T22354] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9536'.
[  361.736539][T22353] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  361.756235][T22354] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9536'.
[  361.766477][ T9333] EXT4-fs (loop2): unmounting filesystem.
[  361.772478][T22354] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9536'.
[  361.853839][T22371] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  362.060080][   T28] audit: type=1400 audit(618.841:5267): avc:  denied  { mount } for  pid=22389 comm="syz.1.9552" name="/" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  362.081922][   T28] audit: type=1400 audit(618.841:5268): avc:  denied  { unmount } for  pid=22389 comm="syz.1.9552" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  362.137951][T22400] device pim6reg1 entered promiscuous mode
[  362.143951][   T28] audit: type=1400 audit(618.911:5269): avc:  denied  { setopt } for  pid=22401 comm="syz.1.9558" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  362.312268][T22427] netlink: 40 bytes leftover after parsing attributes in process `syz.6.9571'.
[  362.323042][T22427] netlink: 40 bytes leftover after parsing attributes in process `syz.6.9571'.
[  362.352992][T22431] loop1: detected capacity change from 0 to 1024
[  362.374247][T22431] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  362.393697][T22431] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: comm syz.1.9572: inode #808464432: comm syz.1.9572: iget: illegal inode #
[  362.398975][T22445] loop6: detected capacity change from 0 to 1024
[  362.407652][T22431] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.9572: error while reading EA inode 808464432 err=-117
[  362.414474][T22445] EXT4-fs: Ignoring removed nomblk_io_submit option
[  362.435156][   T28] audit: type=1400 audit(619.211:5270): avc:  denied  { relabelto } for  pid=22442 comm="syz.9.9577" name="file0" dev="tmpfs" ino=1708 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0"
[  362.461397][   T28] audit: type=1400 audit(619.211:5271): avc:  denied  { associate } for  pid=22442 comm="syz.9.9577" name="file0" dev="tmpfs" ino=1708 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon="system_u:object_r:fsadm_exec_t:s0"
[  362.489072][T11553] EXT4-fs (loop1): unmounting filesystem.
[  362.494974][   T28] audit: type=1400 audit(619.271:5272): avc:  denied  { rmdir } for  pid=18725 comm="syz-executor" name="file0" dev="tmpfs" ino=1708 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 trawcon="system_u:object_r:fsadm_exec_t:s0"
[  362.531185][T22445] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  362.572660][   T28] audit: type=1400 audit(619.351:5273): avc:  denied  { unmount } for  pid=20063 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  362.595802][T21998] EXT4-fs (loop6): unmounting filesystem.
[  362.679590][   T28] audit: type=1400 audit(619.451:5274): avc:  denied  { bind } for  pid=22473 comm="syz.6.9592" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  362.849482][T22493] loop2: detected capacity change from 0 to 256
[  362.856100][T22493] exfat: Deprecated parameter 'namecase'
[  362.863560][T22493] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xbe66f6fd, utbl_chksum : 0xe619d30d)
[  362.880625][   T28] audit: type=1400 audit(619.661:5275): avc:  denied  { map } for  pid=22492 comm="syz.2.9600" path="/1147/file0/cpuacct.usage_sys" dev="loop2" ino=1049078 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  362.919205][T22501] loop2: detected capacity change from 0 to 1024
[  362.931360][T22501] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  362.947276][T22501] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: comm syz.2.9603: inode #808464432: comm syz.2.9603: iget: illegal inode #
[  362.961284][T22501] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.9603: error while reading EA inode 808464432 err=-117
[  362.974706][T16486] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  362.994734][ T9333] EXT4-fs (loop2): unmounting filesystem.
[  363.126685][T22537] loop2: detected capacity change from 0 to 1024
[  363.133715][T22537] EXT4-fs: Ignoring removed nomblk_io_submit option
[  363.145350][T22541] netlink: 'syz.9.9622': attribute type 1 has an invalid length.
[  363.153181][T22541] netlink: 'syz.9.9622': attribute type 1 has an invalid length.
[  363.161028][T22541] netlink: 'syz.9.9622': attribute type 1 has an invalid length.
[  363.161142][T22537] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  363.168738][T22541] netlink: 'syz.9.9622': attribute type 1 has an invalid length.
[  363.168754][T22541] netlink: 'syz.9.9622': attribute type 1 has an invalid length.
[  363.192765][T16486] usb 7-1: Using ep0 maxpacket: 16
[  363.203476][T16486] usb 7-1: too many endpoints for config 0 interface 0 altsetting 0: 129, using maximum allowed: 30
[  363.214333][T16486] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  363.225344][T16486] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  363.235446][T16486] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 129
[  363.248631][T16486] usb 7-1: New USB device found, idVendor=0458, idProduct=5013, bcdDevice= 0.00
[  363.257728][T16486] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  363.266593][T16486] usb 7-1: config 0 descriptor??
[  363.266736][ T9333] EXT4-fs (loop2): unmounting filesystem.
[  363.287768][T22552] netlink: 'syz.2.9625': attribute type 1 has an invalid length.
[  363.589834][T16479] usb 3-1: new high-speed USB device number 37 using dummy_hcd
[  363.674277][T16486] kye 0003:0458:5013.0048: unknown main item tag 0x6
[  363.681206][T16486] kye 0003:0458:5013.0048: unknown main item tag 0x5
[  363.687943][T16486] kye 0003:0458:5013.0048: unknown main item tag 0x4
[  363.694768][T16486] kye 0003:0458:5013.0048: item fetching failed at offset 31/160
[  363.703193][T16486] kye 0003:0458:5013.0048: parse failed
[  363.708887][T16486] kye: probe of 0003:0458:5013.0048 failed with error -22
[  363.770826][T16479] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  363.782221][T16479] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  363.792092][T16479] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  363.801373][T16479] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  363.809446][T16479] usb 3-1: SerialNumber: syz
[  363.820690][T22587] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  363.830338][T22587] FAT-fs (loop7): unable to read boot sector
[  363.892922][ T5899] usb 7-1: USB disconnect, device number 5
[  363.895818][T22597] loop3: detected capacity change from 0 to 2048
[  363.905477][T22597] EXT4-fs: Ignoring removed i_version option
[  363.921172][T22597] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  363.932530][T22597] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.9644: bg 0: block 321: padding at end of block bitmap is not set
[  363.947436][T22597] fs-verity (loop3, inode 13): ext4_end_enable_verity() failed with err -117
[  363.962546][T20063] EXT4-fs (loop3): unmounting filesystem.
[  364.032171][T16479] usb 3-1: 0:2 : does not exist
[  364.039620][T16479] usb 3-1: USB disconnect, device number 37
[  364.299853][T16484] usb 4-1: new full-speed USB device number 9 using dummy_hcd
[  364.448633][T22622] loop9: detected capacity change from 0 to 1024
[  364.455531][T22622] EXT4-fs: Ignoring removed nomblk_io_submit option
[  364.480784][T22622] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  364.480878][T16484] usb 4-1: config 0 has no interfaces?
[  364.498132][T16484] usb 4-1: New USB device found, idVendor=0002, idProduct=0000, bcdDevice= 0.00
[  364.507470][T16484] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  364.515654][T16484] usb 4-1: SerialNumber: syz
[  364.529957][T16484] usb 4-1: config 0 descriptor??
[  364.548162][T18725] EXT4-fs (loop9): unmounting filesystem.
[  364.646373][T22637] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  364.700238][T22642] netlink: 'syz.6.9665': attribute type 4 has an invalid length.
[  364.730688][   T28] kauditd_printk_skb: 11 callbacks suppressed
[  364.730703][   T28] audit: type=1400 audit(621.511:5287): avc:  denied  { bind } for  pid=22649 comm="syz.6.9669" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  364.792571][T16484] usb 4-1: USB disconnect, device number 9
[  364.833498][   T28] audit: type=1400 audit(621.611:5288): avc:  denied  { write } for  pid=22657 comm="syz.2.9673" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  364.943621][   T28] audit: type=1400 audit(621.721:5289): avc:  denied  { map } for  pid=22673 comm="syz.6.9680" path="socket:[103191]" dev="sockfs" ino=103191 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1
[  365.005808][   T28] audit: type=1400 audit(621.781:5290): avc:  denied  { read } for  pid=22681 comm="syz.2.9684" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  365.056225][   T28] audit: type=1400 audit(621.831:5291): avc:  denied  { setopt } for  pid=22681 comm="syz.2.9684" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  365.312763][T22689] loop3: detected capacity change from 0 to 1024
[  365.319460][T22689] EXT4-fs: Ignoring removed nomblk_io_submit option
[  365.320811][T22692] loop9: detected capacity change from 0 to 256
[  365.332970][T22692] exfat: Deprecated parameter 'namecase'
[  365.340956][T22692] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  365.360049][T22689] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  365.387021][T20063] EXT4-fs (loop3): unmounting filesystem.
[  365.498347][T22711] loop9: detected capacity change from 0 to 2048
[  365.530659][T22711]  loop9: p1 < > p4
[  365.534997][T22711] loop9: p4 size 8388608 extends beyond EOD, truncated
[  365.733200][T22719] loop3: detected capacity change from 0 to 40427
[  365.740185][T22719] F2FS-fs (loop3): Small segment_count (9 < 1 * 24)
[  365.746773][T22719] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  365.756749][T22719] F2FS-fs (loop3): Found nat_bits in checkpoint
[  365.777250][T22719] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  365.784389][T22719] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  365.843420][T22727] loop6: detected capacity change from 0 to 256
[  365.858676][T22727] exfat: Deprecated parameter 'namecase'
[  365.876570][T22727] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  365.892649][T22719] syz.3.9699: attempt to access beyond end of device
[  365.892649][T22719] loop3: rw=34817, sector=77824, nr_sectors = 3040 limit=40427
[  365.950529][T22729] loop6: detected capacity change from 0 to 8192
[  365.985838][T22731] loop6: detected capacity change from 0 to 256
[  366.037614][T20063] syz-executor: attempt to access beyond end of device
[  366.037614][T20063] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  366.272289][T22747] __nla_validate_parse: 2 callbacks suppressed
[  366.272306][T22747] netlink: 182 bytes leftover after parsing attributes in process `syz.6.9709'.
[  366.766386][T22783] loop9: detected capacity change from 0 to 8192
[  366.785844][T22792] loop6: detected capacity change from 0 to 128
[  366.792725][T22792] FAT-fs (loop6): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  366.804524][   T28] audit: type=1400 audit(623.591:5292): avc:  denied  { remount } for  pid=22791 comm="syz.6.9732" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1
[  366.804574][  T340] FAT-fs (loop6): error, invalid FAT chain (i_pos 548, last_block 8)
[  366.832094][  T340] FAT-fs (loop6): Filesystem has been set read-only
[  366.839067][  T340] FAT-fs (loop6): error, corrupted file size (i_pos 548, 522)
[  366.852466][  T340] FAT-fs (loop6): error, corrupted file size (i_pos 548, 522)
[  366.860027][  T340] FAT-fs (loop6): Filesystem has been set read-only
[  366.923492][   T28] audit: type=1400 audit(623.701:5293): avc:  denied  { connect } for  pid=22803 comm="syz.9.9747" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  367.109647][   T28] audit: type=1400 audit(623.881:5294): avc:  denied  { write } for  pid=22813 comm="syz.9.9740" name="file0" dev="tmpfs" ino=2042 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  367.132091][   T28] audit: type=1400 audit(623.881:5295): avc:  denied  { open } for  pid=22813 comm="syz.9.9740" path="/384/file0" dev="tmpfs" ino=2042 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1
[  367.208531][   T28] audit: type=1400 audit(623.981:5296): avc:  denied  { read write } for  pid=9333 comm="syz-executor" name="loop2" dev="devtmpfs" ino=120 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  367.389402][T22822] loop9: detected capacity change from 0 to 40427
[  367.397061][T22822] F2FS-fs (loop9): Small segment_count (9 < 1 * 24)
[  367.403829][T22822] F2FS-fs (loop9): Can't find valid F2FS filesystem in 1th superblock
[  367.415543][T22822] F2FS-fs (loop9): Found nat_bits in checkpoint
[  367.447435][T22822] F2FS-fs (loop9): Try to recover 1th superblock, ret: 0
[  367.454664][T22822] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[  367.563333][T22822] syz.9.9744: attempt to access beyond end of device
[  367.563333][T22822] loop9: rw=34817, sector=77824, nr_sectors = 3768 limit=40427
[  367.699600][T18725] syz-executor: attempt to access beyond end of device
[  367.699600][T18725] loop9: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  368.023024][T18725] ------------[ cut here ]------------
[  368.028507][T18725] WARNING: CPU: 0 PID: 18725 at fs/inode.c:335 drop_nlink+0xc5/0x110
[  368.036729][T18725] Modules linked in:
[  368.040746][T18725] CPU: 0 PID: 18725 Comm: syz-executor Tainted: G        W          syzkaller #0
[  368.049958][T18725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  368.060093][T18725] RIP: 0010:drop_nlink+0xc5/0x110
[  368.065206][T18725] Code: 1b 48 8d bb b8 04 00 00 be 08 00 00 00 e8 83 e4 f0 ff f0 48 ff 83 b8 04 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 9b 63 ac ff <0f> 0b eb 86 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 5e ff ff ff 4c
[  368.084893][T18725] RSP: 0018:ffffc90001057c38 EFLAGS: 00010293
[  368.091057][T18725] RAX: ffffffff81c3c665 RBX: ffff88811d4c8fa0 RCX: ffff88812f3ee540
[  368.099035][T18725] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  368.107127][T18725] RBP: ffffc90001057c60 R08: 0000000000000004 R09: 0000000000000003
[  368.115234][T18725] R10: fffff5200020af78 R11: 1ffff9200020af78 R12: dffffc0000000000
[  368.123239][T18725] R13: 1ffff11023a991fd R14: ffff88811d4c8fe8 R15: 0000000000000000
[  368.131222][T18725] FS:  00005555843b0500(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[  368.140158][T18725] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  368.146822][T18725] CR2: 00005555843d34e8 CR3: 0000000124515000 CR4: 00000000003506b0
[  368.154828][T18725] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  368.162822][T18725] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  368.170839][T18725] Call Trace:
[  368.174121][T18725]  <TASK>
[  368.177051][T18725]  shmem_rmdir+0x5b/0x90
[  368.181966][T18725]  vfs_rmdir+0x393/0x500
[  368.186222][T18725]  incfs_kill_sb+0x105/0x220
[  368.190828][T18725]  deactivate_locked_super+0xb5/0x120
[  368.196201][T18725]  deactivate_super+0xaf/0xe0
[  368.200903][T18725]  cleanup_mnt+0x45f/0x4e0
[  368.205317][T18725]  __cleanup_mnt+0x19/0x20
[  368.205738][T22847] loop3: detected capacity change from 0 to 40427
[  368.209722][T18725]  task_work_run+0x1db/0x240
[  368.209765][T18725]  ? __cfi_task_work_run+0x10/0x10
[  368.209783][T18725]  ? __x64_sys_umount+0x125/0x160
[  368.209800][T18725]  ? __cfi___x64_sys_umount+0x10/0x10
[  368.209818][T18725]  exit_to_user_mode_loop+0x9b/0xb0
[  368.209834][T18725]  exit_to_user_mode_prepare+0x87/0xd0
[  368.209850][T18725]  syscall_exit_to_user_mode+0x1a/0x30
[  368.217581][T22847] F2FS-fs (loop3): Wrong segment_count / block_count (31 > 0)
[  368.220826][T18725]  do_syscall_64+0x58/0xa0
[  368.220849][T18725]  ? clear_bhb_loop+0x30/0x80
[  368.220871][T18725]  ? clear_bhb_loop+0x30/0x80
[  368.227753][T22847] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock
[  368.231070][T18725]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  368.237269][T22847] F2FS-fs (loop3): invalid crc value
[  368.241620][T18725] RIP: 0033:0x7f830eb90a77
[  368.241640][T18725] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  368.241656][T18725] RSP: 002b:00007ffe7853a4d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  368.241675][T18725] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f830eb90a77
[  368.254365][T22847] F2FS-fs (loop3): Found nat_bits in checkpoint
[  368.260019][T18725] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe7853a590
[  368.260035][T18725] RBP: 00007ffe7853a590 R08: 0000000000000000 R09: 0000000000000000
[  368.260046][T18725] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe7853b620
[  368.260058][T18725] R13: 00007f830ec13d7d R14: 0000000000059cb8 R15: 00007ffe7853b660
[  368.260074][T18725]  </TASK>
[  368.260080][T18725] ---[ end trace 0000000000000000 ]---
[  368.260427][T18725] ==================================================================
[  368.291844][T22847] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0
[  368.293038][T18725] BUG: KASAN: null-ptr-deref in ihold+0x20/0x60
[  368.297543][T22847] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  368.317017][T18725] Write of size 4 at addr 0000000000000170 by task syz-executor/18725
[  368.317032][T18725] 
[  368.317037][T18725] CPU: 0 PID: 18725 Comm: syz-executor Tainted: G        W          syzkaller #0
[  368.317054][T18725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  368.317064][T18725] Call Trace:
[  368.317069][T18725]  <TASK>
[  368.317076][T18725]  __dump_stack+0x21/0x24
[  368.317099][T18725]  dump_stack_lvl+0xee/0x150
[  368.317118][T18725]  ? __cfi_dump_stack_lvl+0x8/0x8
[  368.353732][T22847] F2FS-fs (loop3): Unexpected flush for atomic writes: ino=10, npages=1
[  368.355796][T18725]  ? ihold+0x20/0x60
[  368.470886][T18725]  ? ihold+0x20/0x60
[  368.474765][T18725]  print_report+0x3d/0x60
[  368.479074][T18725]  kasan_report+0x122/0x150
[  368.483558][T18725]  ? ihold+0x20/0x60
[  368.487432][T18725]  kasan_check_range+0x280/0x290
[  368.492359][T18725]  __kasan_check_write+0x14/0x20
[  368.497281][T18725]  ihold+0x20/0x60
[  368.500976][T18725]  vfs_rmdir+0x25f/0x500
[  368.505198][T18725]  incfs_kill_sb+0x105/0x220
[  368.509788][T18725]  deactivate_locked_super+0xb5/0x120
[  368.515141][T18725]  deactivate_super+0xaf/0xe0
[  368.519808][T18725]  cleanup_mnt+0x45f/0x4e0
[  368.524209][T18725]  __cleanup_mnt+0x19/0x20
[  368.528599][T18725]  task_work_run+0x1db/0x240
[  368.533172][T18725]  ? __cfi_task_work_run+0x10/0x10
[  368.538260][T18725]  ? __x64_sys_umount+0x125/0x160
[  368.543282][T18725]  ? __cfi___x64_sys_umount+0x10/0x10
[  368.548650][T18725]  exit_to_user_mode_loop+0x9b/0xb0
[  368.553843][T18725]  exit_to_user_mode_prepare+0x87/0xd0
[  368.559300][T18725]  syscall_exit_to_user_mode+0x1a/0x30
[  368.564780][T18725]  do_syscall_64+0x58/0xa0
[  368.569184][T18725]  ? clear_bhb_loop+0x30/0x80
[  368.573844][T18725]  ? clear_bhb_loop+0x30/0x80
[  368.578506][T18725]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  368.584393][T18725] RIP: 0033:0x7f830eb90a77
[  368.588797][T18725] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  368.608383][T18725] RSP: 002b:00007ffe7853a4d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  368.616781][T18725] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f830eb90a77
[  368.624746][T18725] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe7853a590
[  368.632773][T18725] RBP: 00007ffe7853a590 R08: 0000000000000000 R09: 0000000000000000
[  368.640728][T18725] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe7853b620
[  368.648679][T18725] R13: 00007f830ec13d7d R14: 0000000000059cb8 R15: 00007ffe7853b660
[  368.656640][T18725]  </TASK>
[  368.659677][T18725] ==================================================================
[  368.668773][T18725] Disabling lock debugging due to kernel taint
[  368.674962][T18725] BUG: kernel NULL pointer dereference, address: 0000000000000170
[  368.682746][T18725] #PF: supervisor write access in kernel mode
[  368.688788][T18725] #PF: error_code(0x0002) - not-present page
[  368.694752][T18725] PGD 14d69f067 P4D 14d69f067 PUD 0 
[  368.700035][T18725] Oops: 0002 [#1] PREEMPT SMP KASAN
[  368.705214][T18725] CPU: 0 PID: 18725 Comm: syz-executor Tainted: G    B   W          syzkaller #0
[  368.714295][T18725] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  368.724326][T18725] RIP: 0010:ihold+0x26/0x60
[  368.728815][T18725] Code: 33 36 7c df 55 48 89 e5 41 56 53 48 89 fb e8 01 5b ac ff 48 8d bb 70 01 00 00 be 04 00 00 00 e8 c0 db f0 ff 41 be 01 00 00 00 <f0> 44 0f c1 b3 70 01 00 00 41 ff c6 bf 02 00 00 00 44 89 f6 e8 f1
[  368.748415][T18725] RSP: 0018:ffffc90001057c78 EFLAGS: 00010246
[  368.754477][T18725] RAX: ffff88812f3ee500 RBX: 0000000000000000 RCX: ffff88812f3ee540
[  368.762433][T18725] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  368.770391][T18725] RBP: ffffc90001057c88 R08: dffffc0000000000 R09: fffffbfff0f2d8fd
[  368.778344][T18725] R10: fffffbfff0f2d8fd R11: 1ffffffff0f2d8fc R12: ffff88811d4c8fac
[  368.786298][T18725] R13: dffffc0000000000 R14: 0000000000000001 R15: 0000000000000000
[  368.794281][T18725] FS:  00005555843b0500(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[  368.803188][T18725] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  368.809754][T18725] CR2: 0000000000000170 CR3: 0000000124515000 CR4: 00000000003506b0
[  368.817707][T18725] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  368.825657][T18725] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  368.833609][T18725] Call Trace:
[  368.836866][T18725]  <TASK>
[  368.839779][T18725]  vfs_rmdir+0x25f/0x500
[  368.844008][T18725]  incfs_kill_sb+0x105/0x220
[  368.848588][T18725]  deactivate_locked_super+0xb5/0x120
[  368.853941][T18725]  deactivate_super+0xaf/0xe0
[  368.858600][T18725]  cleanup_mnt+0x45f/0x4e0
[  368.862993][T18725]  __cleanup_mnt+0x19/0x20
[  368.867385][T18725]  task_work_run+0x1db/0x240
[  368.871955][T18725]  ? __cfi_task_work_run+0x10/0x10
[  368.877051][T18725]  ? __x64_sys_umount+0x125/0x160
[  368.882144][T18725]  ? __cfi___x64_sys_umount+0x10/0x10
[  368.887496][T18725]  exit_to_user_mode_loop+0x9b/0xb0
[  368.892675][T18725]  exit_to_user_mode_prepare+0x87/0xd0
[  368.898114][T18725]  syscall_exit_to_user_mode+0x1a/0x30
[  368.903563][T18725]  do_syscall_64+0x58/0xa0
[  368.907965][T18725]  ? clear_bhb_loop+0x30/0x80
[  368.912638][T18725]  ? clear_bhb_loop+0x30/0x80
[  368.917299][T18725]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  368.923175][T18725] RIP: 0033:0x7f830eb90a77
[  368.927743][T18725] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  368.947339][T18725] RSP: 002b:00007ffe7853a4d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  368.955732][T18725] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f830eb90a77
[  368.963682][T18725] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe7853a590
[  368.971632][T18725] RBP: 00007ffe7853a590 R08: 0000000000000000 R09: 0000000000000000
[  368.979582][T18725] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffe7853b620
[  368.987532][T18725] R13: 00007f830ec13d7d R14: 0000000000059cb8 R15: 00007ffe7853b660
[  368.995486][T18725]  </TASK>
[  368.998486][T18725] Modules linked in:
[  369.002357][T18725] CR2: 0000000000000170
[  369.006500][T18725] ---[ end trace 0000000000000000 ]---
[  369.011931][T18725] RIP: 0010:ihold+0x26/0x60
[  369.016425][T18725] Code: 33 36 7c df 55 48 89 e5 41 56 53 48 89 fb e8 01 5b ac ff 48 8d bb 70 01 00 00 be 04 00 00 00 e8 c0 db f0 ff 41 be 01 00 00 00 <f0> 44 0f c1 b3 70 01 00 00 41 ff c6 bf 02 00 00 00 44 89 f6 e8 f1
[  369.036008][T18725] RSP: 0018:ffffc90001057c78 EFLAGS: 00010246
[  369.042056][T18725] RAX: ffff88812f3ee500 RBX: 0000000000000000 RCX: ffff88812f3ee540
[  369.050008][T18725] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  369.058132][T18725] RBP: ffffc90001057c88 R08: dffffc0000000000 R09: fffffbfff0f2d8fd
[  369.066084][T18725] R10: fffffbfff0f2d8fd R11: 1ffffffff0f2d8fc R12: ffff88811d4c8fac
[  369.074039][T18725] R13: dffffc0000000000 R14: 0000000000000001 R15: 0000000000000000
[  369.082077][T18725] FS:  00005555843b0500(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[  369.090987][T18725] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  369.097551][T18725] CR2: 0000000000000170 CR3: 0000000124515000 CR4: 00000000003506b0
[  369.105511][T18725] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  369.113462][T18725] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  369.121414][T18725] Kernel panic - not syncing: Fatal exception
[  369.127824][T18725] Kernel Offset: disabled
[  369.132123][T18725] Rebooting in 86400 seconds..