last executing test programs:

5.368547137s ago: executing program 3 (id=708):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'team_slave_1\x00'})
syz_emit_ethernet(0x0, 0x0, 0x0)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000ec0)=ANY=[@ANYBLOB="0022220000009623132742a0be5093e7e036042a0008070700010083"], 0x0}, 0x0)

3.564094222s ago: executing program 3 (id=731):
syz_open_dev$usbmon(&(0x7f0000000080), 0x38e, 0x20800)
io_setup(0x4, &(0x7f0000000200)=<r0=>0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
io_submit(r0, 0x1, &(0x7f0000000080)=[&(0x7f0000004280)={0x0, 0x0, 0x0, 0x5, 0x3, r1, 0x0}])
syz_usb_connect(0x0, 0x36, &(0x7f0000000740)=ANY=[@ANYBLOB="1201000014da2108ab12a390eb1e000000010902240001b30000040904410017ff5d810009050f1f01040000000905830300b3"], 0x0)

2.507283392s ago: executing program 4 (id=738):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x18, 0x0, 0x0, 0x0, 0xfffffffffffffece, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='virtio_transport_alloc_pkt\x00', r0}, 0x10)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000080)={0x28, 0x0, 0x2711}, 0x10)

2.473894902s ago: executing program 4 (id=739):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f00000005c0), 0x10)
recvmmsg(r0, &(0x7f000000ae40)=[{{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f000000afc0)=""/4082, 0xff2}], 0x1}, 0x9}], 0x1, 0x10002, 0x0)
sendmsg$can_bcm(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="050000007f0000000000010000000000", @ANYRES64=0x0, @ANYRES64=0x2710], 0x48}}, 0x0)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x1d, &(0x7f00000000c0)=0x7fffffff, 0x4)

2.351534155s ago: executing program 4 (id=740):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf)
r1 = fcntl$dupfd(r0, 0x0, r0)
ioctl$TCFLSH(r1, 0x400455c8, 0x0)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000040)=0x3f)

2.112322099s ago: executing program 2 (id=742):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r0, 0x0, 0x6, &(0x7f00000000c0)=0x7e6, 0x4)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
recvmsg(r0, &(0x7f00000018c0)={0x0, 0x29, 0x0, 0x0, &(0x7f0000001880)=""/17, 0x75}, 0x0)
syz_emit_ethernet(0x32, &(0x7f0000000440)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x6, 0x4, 0x0, 0x35, 0x24, 0x68, 0x0, 0x0, 0x11, 0x0, @empty, @empty, {[@rr={0x7, 0x3, 0x1f}]}}, {0x4e23, 0x4e20, 0xc, 0x0, @gue={{0x1, 0x0, 0x0, 0x0, 0x100, @void}}}}}}}, 0x0)

2.04888995s ago: executing program 3 (id=745):
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000e8ff0000000000ff000000850000000e000000850000005000000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000040), 0x1, 0x0)
write$selinux_validatetrans(r1, &(0x7f0000000180)=ANY=[@ANYBLOB='system_u:object_r:semanage_t system_u:object_r:fixed_disk_device_t:s0 0'], 0x79)

2.03644467s ago: executing program 2 (id=746):
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000000780)=@raw={'raw\x00', 0x3c1, 0x3, 0x370, 0x0, 0x4c, 0x1a, 0x198, 0x73, 0x2c8, 0x258, 0x258, 0x2c8, 0x258, 0x3, 0x0, {[{{@ipv6={@rand_addr=' \x01\x00', @local, [], [], 'wg2\x00', 'macvlan1\x00', {}, {}, 0x11}, 0x0, 0x168, 0x198, 0x0, {}, [@common=@inet=@l2tp={{0x30}, {0x0, 0x0, 0x0, 0x0, 0xc}}, @common=@srh1={{0x90}, {0x0, 0x0, 0x0, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @rand_addr=' \x01\x00', @dev, [], [0x0, 0x0, 0xffffff00]}}]}, @common=@inet=@SET2={0x30}}, {{@uncond, 0x0, 0xd0, 0x108, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@inet=@SET3={0x38}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3d0)
r0 = socket$key(0xf, 0x3, 0x2)
recvmmsg(r0, &(0x7f0000000440), 0x6f5, 0x2000000022, &(0x7f0000000480)={0x77359400})
setsockopt$sock_int(r0, 0x1, 0x4b, &(0x7f0000000040)=0xfd87, 0x4)
sendmsg$key(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="0216000002"], 0x10}}, 0x0)

2.036179841s ago: executing program 3 (id=747):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000900000000000000213f0000c50000000e800000850000000e00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='mmap_lock_acquire_returned\x00', r0}, 0x10)
r2 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8)
write$cgroup_int(r2, &(0x7f00000001c0), 0xfffffdef)
syz_clone(0xc0001480, 0x0, 0x0, 0x0, 0x0, 0x0)

1.892119464s ago: executing program 2 (id=750):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)={0x1c, 0x2, 0x3, 0x3, 0x0, 0x0, {}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1}}]}, 0x1c}}, 0x0)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)={0x1c, 0x2, 0x3, 0x3, 0x0, 0x0, {0x0, 0x0, 0x10}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1}}]}, 0x1c}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000080)={0x14, 0x2, 0x3, 0x201}, 0x14}}, 0x0)

1.891754453s ago: executing program 2 (id=751):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x1208002, &(0x7f00000001c0)={[{@grpquota}, {@data_err_ignore}, {@resuid}, {@grpquota}, {@dioread_nolock}, {}, {@noauto_da_alloc}, {@test_dummy_encryption}]}, 0x1, 0x5d8, &(0x7f00000005c0)="$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")
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="470100001c0000000000000000000004850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_usb_connect(0x0, 0x3f, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000954c53400d051b01a46f0000000109022d00010000000009040000000202ff00052406000005240000000d2402", @ANYRES32], 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
rename(&(0x7f0000000000)='./file1\x00', &(0x7f00000000c0)='./file0/file0\x00')

1.043769589s ago: executing program 3 (id=759):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000017850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x40801, 0x0)

973.442771ms ago: executing program 3 (id=760):
sendto$inet6(0xffffffffffffffff, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be000076", 0x59, 0x0, 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0xfc}, 0x1, 0x0, 0x0, 0x42081}, 0x0)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000200)=ANY=[@ANYBLOB="12010000000000100b060a5000000000000109022400010000500009040002010300000009210000000122f80409058103"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000340)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="00220508"], 0x0}, 0x0)

970.384931ms ago: executing program 0 (id=762):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000140), 0x143000, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f00000002c0)=0xfffffffe)
ioctl$PPPIOCSMAXCID(r0, 0x40047451, &(0x7f0000000100)=0xffff0080)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r1, 0xffffffffffffffff, 0x0)

956.808711ms ago: executing program 1 (id=763):
r0 = syz_open_dev$usbfs(&(0x7f00000001c0), 0x800000001fe, 0x2)
r1 = dup(r0)
open(0x0, 0x14927e, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0)
ioctl$USBDEVFS_GET_CAPABILITIES(r1, 0x8004551a, 0x0)

922.720482ms ago: executing program 1 (id=764):
sendmmsg$inet6(0xffffffffffffffff, &(0x7f00000000c0)=[{{&(0x7f0000000180)={0xa, 0x0, 0x0, @mcast2}, 0x1c, 0x0}}], 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x48000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1)
ioctl$KVM_SET_MSRS(r2, 0xc008aec1, &(0x7f0000000180)=ANY=[])

869.370613ms ago: executing program 0 (id=765):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x10, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

868.849813ms ago: executing program 0 (id=766):
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000040)='./file2\x00', 0x10, &(0x7f0000000240)={[{@nodiscard}, {@nocheckpoint_merge}, {@fastboot}, {@background_gc_off}, {@flush_merge}, {@fault_injection={'fault_injection', 0x3d, 0x4ee}}, {@acl}, {@noacl}, {@compress_cache}, {@alloc_mode_def}, {@noextent_cache}, {@grpjquota}, {@checkpoint_diasble}]}, 0x1, 0x550c, &(0x7f00000089c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
pwritev2(r0, &(0x7f0000000100)=[{&(0x7f00000001c0)='!', 0x1}], 0x1, 0x400003, 0x4, 0x3)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x104)
fallocate(r1, 0x8, 0x4000, 0x4000)

840.511233ms ago: executing program 1 (id=767):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000080)=ANY=[@ANYBLOB="aaaaaaa2aaaaffffffff0600080047000030000000000006"], 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000080)=ANY=[@ANYBLOB="0100000000000000000100c0"])

722.000096ms ago: executing program 1 (id=768):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0xcccc0000, 0x1000, &(0x7f0000fff000/0x1000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x5, 0x0, 0x5000, 0x1000, &(0x7f0000ffd000/0x1000)=nil})
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x1, 0x10000, 0x1000, &(0x7f0000fff000/0x1000)=nil})

601.428988ms ago: executing program 1 (id=769):
syz_mount_image$msdos(&(0x7f0000000000), &(0x7f0000000080)='./file1\x00', 0x2000c8, &(0x7f0000000700)=ANY=[@ANYBLOB="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"], 0xfd, 0x1d4, &(0x7f00000002c0)="$eJzs3UFr02AYB/Cn3VwzT7sJohDYxdNQP8FEJogBQelBTwrTyyqCu0Qv28fw84kfQHbqRSIx2eKqh7SQZHa/36VP+s+TvHlp01769s2dD0eHH4/ff7/1NZJkFOP92I/5KHZiHOdOAwBYJ/OiiB9FZZm+3W/djQkA6FaLz/+fPQ8JAOjYy1evnz3KsoMXaZpEnJ3m03xaPVb5k6fZwf30t52m6yzPpxsX+YN08btDmd+Im3X+sOpPL+dbcW+3ysvs8fOszDeafBKH1cak4ykAAAAAAAAAAAAAAAAAAAAAAIDe3Y303D/X99nbW8y367za+mN9oIX1fTbj9ma92SwPVJz0cVEAAAAAAAAAAAAAAAAAAADwnzn+/OXo7Wz27lNTTCLi8jPLFKP6wCu2912MY5Czb9WzdDUmYe2K9GoMY7biu6B8dSzdNW6387woilYHbO4RkyFuTAAAAAAAAAAAAAAAAAAAcA01P/r9O0uGGBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADKD5//8VipOIaLHzxcm2B71UAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA1tivAAAA//8HAzMX")
syz_mount_image$ext4(&(0x7f0000000400)='ext2\x00', &(0x7f00000004c0)='./file0\x00', 0x3806022, &(0x7f0000000500), 0x1, 0x3e8, &(0x7f0000000000)="$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")
mprotect(&(0x7f0000000000/0x2000)=nil, 0x2000, 0xc)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0xe8803, 0x0)

587.633528ms ago: executing program 0 (id=770):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000005c0)={{r0}, &(0x7f0000000540), &(0x7f0000000580)='%pS    \x00'}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x3a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r1}, 0xc)

550.237879ms ago: executing program 1 (id=771):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000900000000000000213f0000c50000000e800000850000000e00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='mmap_lock_acquire_returned\x00', r0}, 0x10)
r2 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8)
write$cgroup_int(r2, &(0x7f00000001c0), 0xfffffdef)
syz_clone(0xc0001480, 0x0, 0x0, 0x0, 0x0, 0x0)

385.395952ms ago: executing program 2 (id=772):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x88e, &(0x7f00000001c0)={[{@nobarrier}, {@mblk_io_submit}, {@inlinecrypt}, {@test_dummy_encryption_v1}, {@barrier}, {@mblk_io_submit}, {@nomblk_io_submit}]}, 0x3, 0x445, &(0x7f0000000800)="$eJzs3M9rHFUcAPDv7CZt06YmlvqjadVoFYM/kiattQcvioIHBUEP9RiTtMRuG2ki2BI0itSjFLyLR8G/wJNeRD0JXvUuhSK5tIqHldmdSXY3u2k2blzNfj4wyXszb3nvuzNv9715mQTQs0bTH0nEYET8EhFD1Wx9gdHqr9uryzN/rC7PJFEuv/57Uil3a3V5Ji+av+5AnumLKHycxNEm9S5euXphulSau5zlJ5YuvjOxeOXq0/MXp8/PnZ+7NHXmzKmTk8+ennqmI3Gmcd0aeX/h2JGX37z+6szZ62/98FWSx98QR4eMbnbwsXK5w9V118GadNLXxYbQlmK1m0Z/pf8PRTHWT95QvPRRVxsH7KhyuVy+t/XhlTKwiyXR7RYA3ZF/0afz33zbfMDQ0eFH1918vjoBSuO+nW3VI31RyMr0N8xvO2k0Is6u/Pl5usXO3IcAAKjzTTr+earZ+K8QtfeF7srWUIYj4u6IOBQRpyPicETcE1Epe19E3N9m/Y2LJBvHP4Ub2wpsi9Lx33PZ2lb9+C8f/cVwMcsdrMTfn5ybL82dyN6Tsejfm+YnN6nj2xd//rTVsdrxX7ql9edjwawdN/r21r9mdnpp+p/EXOvmhxEjfc3iT9ZWApKIOBIRI9usY/6JL4+1Onbn+JurvCUdWGcqfxHxePX8r0RD/Llk8/XJiX1RmjsxkV8VG/3407XXWtW/3fg7JT3/+5te/2vxDye167WL7ddx7ddPWs5ptnv970neqNv33vTS0uXJiD3JK9VG1+6faig3tV4+jX/sePP+fyjW34mjEZFexA9ExIMR8VDW9ocj4pGIOL5J/N+/8OjbdTvGBtuIf2el8c+2df7XE3uicU/zRPHCd1/XVTocbcSfnv9TldRYtmcrn39badf2rmYAAAD4/ylExGAkhfG1dKEwPl79G/7Dsb9QWlhcevLcwruXZqvPCAxHfyG/0zVUcz90MpvW5/mphvzJ7L7xZ8WBSn58ZqE02+3goccdaNH/U78Vu906YMd5Xgt6l/4PvUv/h96l/0PvatL/Bzbu+qvhkUFgN2j2/f9BF9oB/Psa+r9lP+gh5v/Qu/R/6F36P/SkxYG480PyEhIbElH4TzRj5xP7tvhvLnZZotufTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJ3xdwAAAP//FX7vJg==")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x140, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x0)
write(r1, &(0x7f0000004200)='t', 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)

328.261043ms ago: executing program 4 (id=773):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000007c0))
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000000), 0x400, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)={0x7c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @loopback}, {0x8, 0x2, @dev}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @loopback}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_DST={0x18, 0xd, 0x0, 0x1, [@CTA_NAT_PROTO={0x4, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MIN={0x6}, @CTA_PROTONAT_PORT_MAX={0x6}]}]}]}, 0x7c}}, 0x0)

238.831325ms ago: executing program 4 (id=774):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000c40)='.\x00', &(0x7f0000000080)='./file0/../file0/../file0/../file0\x00', 0x0, 0x2901090, 0x0)
chroot(&(0x7f00000000c0)='./file0\x00')
mount$incfs(&(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000180), 0x0, 0x0)
pivot_root(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f00000001c0)='./file0/../file0\x00')

198.152406ms ago: executing program 0 (id=775):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000400)=0x1, 0x4)
r1 = socket$inet6(0xa, 0x3, 0x9)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000003c0)={{{@in=@local, @in6=@local, 0x408, 0x0, 0x0, 0x0, 0x2}, {0x1, 0x10000, 0x6, 0x0, 0x9, 0x7ca, 0x10000000000000}, {0x0, 0x1000000000000009, 0x0, 0x100009}, 0x0, 0x0, 0x1, 0x0, 0x4, 0x2}, {{@in6=@loopback, 0x0, 0x3c}, 0x0, @in=@multicast2, 0x0, 0x0, 0x3, 0x42}}, 0xe8)
connect$inet6(r1, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)

107.881967ms ago: executing program 4 (id=776):
r0 = socket(0x10, 0x803, 0x0)
write(r0, &(0x7f0000000040)="2600000022004701050007108980e8ff06006d20002b1f00c0e90101c7bb0000b00000000000", 0x26)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000d9bffc), 0x4)
sendto(r0, &(0x7f00000005c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000000cc0)=[{{0x0, 0x0, 0x0}, 0xffffffff}], 0x1, 0x12060, 0x0)

56.768718ms ago: executing program 0 (id=777):
r0 = socket$inet6(0xa, 0x3, 0x5)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000000c0)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x800, 0x0, 0x3, 0x9}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f0000000000)=0xffffffc3, 0x4)
syz_usb_connect(0x0, 0x6b, &(0x7f0000000c80)=ANY=[@ANYBLOB="12010003f05bc508eb03067634d301020301090259000104e9000909047f00002912"], 0x0)
sendmmsg(r0, &(0x7f0000001500)=[{{&(0x7f0000000180)=@l2tp6={0xa, 0x500, 0x80000, @remote, 0x0, 0x3}, 0x80, 0x0}, 0x5b4}, {{&(0x7f0000000040)=@l2tp6={0xa, 0x0, 0x7080000, @ipv4={'\x00', '\xff\xff', @loopback}, 0x7, 0x1}, 0x80, 0x0, 0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="08010000000000002900000002000000"], 0x108}}], 0x2, 0xc040)

0s ago: executing program 2 (id=778):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
syz_mount_image$f2fs(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x4008, &(0x7f0000002680)=ANY=[@ANYBLOB="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", @ANYRESHEX=0x0], 0x11, 0x5519, &(0x7f00000079c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0xc0406618, 0x0)

kernel console output (not intermixed with test programs):

system in 1th superblock
[   38.139153][  T681] F2FS-fs (loop3): invalid crc value
[   38.149566][  T681] F2FS-fs (loop3): Found nat_bits in checkpoint
[   38.193079][  T681] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[   38.200664][  T681] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   38.286598][  T688] loop2: detected capacity change from 0 to 512
[   38.318097][  T688] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 0 overlaps block group descriptors
[   38.344985][  T693] x_tables: ip6_tables: CT target: only valid in raw table, not ./file0
[   38.350290][  T688] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 0 not in group (block 2)!
[   38.390242][  T688] EXT4-fs (loop2): group descriptors corrupted!
[   38.480045][   T28] audit: type=1400 audit(1748897895.578:191): avc:  denied  { create } for  pid=702 comm="syz.4.153" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dccp_socket permissive=1
[   38.529915][  T707] loop2: detected capacity change from 0 to 512
[   38.563780][  T707] EXT4-fs: Ignoring removed mblk_io_submit option
[   38.581976][  T707] EXT4-fs: Ignoring removed mblk_io_submit option
[   38.610826][  T283] syz-executor: attempt to access beyond end of device
[   38.610826][  T283] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   38.627632][  T707] EXT4-fs (loop2): Test dummy encryption mode enabled
[   38.635988][   T28] audit: type=1400 audit(1748897895.738:192): avc:  denied  { mount } for  pid=708 comm="syz.1.157" name="/" dev="ramfs" ino=17873 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[   38.640756][  T707] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   38.665781][  T283] syz-executor: attempt to access beyond end of device
[   38.665781][  T283] loop3: rw=2049, sector=45120, nr_sectors = 8 limit=40427
[   38.731030][  T707] EXT4-fs (loop2): 1 truncate cleaned up
[   38.737517][  T707] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[   38.842262][  T287] EXT4-fs (loop2): unmounting filesystem.
[   38.851683][  T703] loop4: detected capacity change from 0 to 40427
[   38.869665][  T703] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[   38.878877][  T703] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[   38.900970][  T703] F2FS-fs (loop4): Found nat_bits in checkpoint
[   38.931330][  T724] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[   38.931996][   T28] audit: type=1400 audit(1748897896.038:193): avc:  denied  { load_policy } for  pid=723 comm="syz.2.162" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1
[   38.970645][  T724] SELinux: failed to load policy
[   38.990409][    T6] usb 1-1: new full-speed USB device number 3 using dummy_hcd
[   39.025915][  T703] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[   39.036986][  T703] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[   39.048277][  T729] loop2: detected capacity change from 0 to 512
[   39.101168][  T729] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[   39.118661][  T729] EXT4-fs warning (device loop2): dx_probe:869: inode #2: comm syz.2.164: Unimplemented hash flags: 0x0001
[   39.138942][  T732] loop1: detected capacity change from 0 to 512
[   39.152887][  T729] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.164: Corrupt directory, running e2fsck is recommended
[   39.172131][  T729] EXT4-fs error (device loop2): ext4_readdir:263: inode #2: block 3: comm syz.2.164: path /23/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0
[   39.177573][  T732] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.175: casefold flag without casefold feature
[   39.209072][    T6] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[   39.227694][    T6] usb 1-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[   39.238225][  T732] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.175: couldn't read orphan inode 15 (err -117)
[   39.238982][    T6] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   39.261037][  T732] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[   39.270939][    T6] usb 1-1: config 0 descriptor??
[   39.276619][  T714] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[   39.305036][   T28] audit: type=1400 audit(1748897896.408:194): avc:  denied  { create } for  pid=731 comm="syz.1.175" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[   39.307508][  T732] EXT4-fs (loop1): re-mounted. Quota mode: writeback.
[   39.328147][   T28] audit: type=1400 audit(1748897896.408:195): avc:  denied  { remount } for  pid=731 comm="syz.1.175" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   39.385159][  T284] EXT4-fs (loop1): unmounting filesystem.
[   39.440344][   T24] usb 4-1: new full-speed USB device number 4 using dummy_hcd
[   39.641491][   T24] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   39.660583][   T24] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[   39.673043][   T24] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   39.673077][   T24] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   39.673277][   T24] usb 4-1: Product: syz
[   39.673296][   T24] usb 4-1: Manufacturer: syz
[   39.673313][   T24] usb 4-1: SerialNumber: syz
[   39.699610][    T6] hid-generic 0003:04F3:0755.0006: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.0-1/input0
[   39.805118][  T287] EXT4-fs (loop2): unmounting filesystem.
[   39.888328][   T24] usb 4-1: 0:2 : does not exist
[   39.890771][   T24] usb 4-1: 5:0: failed to get current value for ch 0 (-22)
[   39.910041][   T24] usb 4-1: USB disconnect, device number 4
[   39.941736][  T201] usb 1-1: USB disconnect, device number 3
[   40.131156][  T306] udevd[306]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[   40.334517][  T757] loop1: detected capacity change from 0 to 8192
[   40.425574][  T761] loop1: detected capacity change from 0 to 512
[   40.425934][  T761] EXT4-fs: Ignoring removed mblk_io_submit option
[   40.425984][  T761] EXT4-fs: Ignoring removed mblk_io_submit option
[   40.426002][  T761] EXT4-fs: Ignoring removed nomblk_io_submit option
[   40.435778][  T761] EXT4-fs (loop1): Test dummy encryption mode enabled
[   40.435800][  T761] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   40.438673][  T760] device ip6gretap0 entered promiscuous mode
[   40.445854][  T761] EXT4-fs (loop1): 1 truncate cleaned up
[   40.474884][  T760] device macsec1 entered promiscuous mode
[   40.500308][  T761] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[   40.520015][  T760] device ip6gretap0 left promiscuous mode
[   40.858600][  T797] device ip6gretap0 entered promiscuous mode
[   40.893597][  T797] device macsec1 entered promiscuous mode
[   40.908305][  T796] loop4: detected capacity change from 0 to 8192
[   40.910053][  T797] device ip6gretap0 left promiscuous mode
[   40.963247][  T799] kvm: apic: phys broadcast and lowest prio
[   41.119275][   T28] kauditd_printk_skb: 3 callbacks suppressed
[   41.119290][   T28] audit: type=1400 audit(1748897898.218:199): avc:  denied  { unmount } for  pid=287 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[   41.233152][  T818] netlink: 100 bytes leftover after parsing attributes in process `syz.2.197'.
[   41.349156][  T825] binder: 824:825 ioctl 4018620d 0 returned -22
[   41.434708][  T829] loop2: detected capacity change from 0 to 1024
[   41.454543][  T829] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[   41.455569][  T829] EXT4-fs error (device loop2): ext4_get_journal_inode:5710: inode #32: comm syz.2.202: iget: special inode unallocated
[   41.456789][  T829] EXT4-fs (loop2): no journal found
[   41.456807][  T829] EXT4-fs (loop2): can't get journal size
[   41.460914][  T829] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[   41.526913][  T287] EXT4-fs (loop2): unmounting filesystem.
[   41.580519][  T284] EXT4-fs (loop1): unmounting filesystem.
[   41.726036][   T28] audit: type=1326 audit(1748897898.828:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=844 comm="syz.1.212" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6d958e969 code=0x7ffc0000
[   41.730558][   T28] audit: type=1326 audit(1748897898.828:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=844 comm="syz.1.212" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6d958e969 code=0x7ffc0000
[   41.793312][   T28] audit: type=1400 audit(1748897898.898:202): avc:  denied  { wake_alarm } for  pid=846 comm="syz.1.213" capability=35  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   41.830308][  T305] usb 3-1: new full-speed USB device number 5 using dummy_hcd
[   41.902823][   T28] audit: type=1400 audit(1748897899.008:203): avc:  denied  { bind } for  pid=856 comm="syz.3.217" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   41.909365][  T859] loop0: detected capacity change from 0 to 256
[   41.944440][   T28] audit: type=1400 audit(1748897899.028:204): avc:  denied  { name_bind } for  pid=856 comm="syz.3.217" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1
[   41.968689][   T28] audit: type=1400 audit(1748897899.028:205): avc:  denied  { node_bind } for  pid=856 comm="syz.3.217" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[   42.031603][  T305] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[   42.055435][  T305] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   42.070295][  T305] usb 3-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[   42.100840][   T28] audit: type=1400 audit(1748897899.208:206): avc:  denied  { read } for  pid=869 comm="syz.4.225" dev="nsfs" ino=4026532471 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   42.131475][  T305] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   42.160466][  T305] usb 3-1: config 0 descriptor??
[   42.188033][   T28] audit: type=1400 audit(1748897899.208:207): avc:  denied  { open } for  pid=869 comm="syz.4.225" path="net:[4026532471]" dev="nsfs" ino=4026532471 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   42.215403][   T28] audit: type=1400 audit(1748897899.208:208): avc:  denied  { create } for  pid=869 comm="syz.4.225" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   42.302767][  T886] loop4: detected capacity change from 0 to 2048
[   42.361026][  T886] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[   42.361102][  T886] ext4 filesystem being mounted at /44/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   42.419916][  T286] EXT4-fs (loop4): unmounting filesystem.
[   42.437496][  T896] xt_bpf: check failed: parse error
[   42.470017][  T898] loop4: detected capacity change from 0 to 256
[   42.498445][  T898] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d)
[   42.575481][  T305] hid-generic 0003:04F3:0755.0007: unknown main item tag 0x0
[   42.575515][  T305] hid-generic 0003:04F3:0755.0007: unknown main item tag 0x0
[   42.575715][  T305] hid-generic 0003:04F3:0755.0007: failed to start in urb: -90
[   42.576281][  T305] hid-generic 0003:04F3:0755.0007: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.2-1/input0
[   42.787109][  T305] usb 3-1: USB disconnect, device number 5
[   42.842229][  T916] Illegal XDP return value 4294967274 on prog  (id 104) dev N/A, expect packet loss!
[   43.319342][  T927] loop2: detected capacity change from 0 to 1024
[   43.363913][  T923] loop3: detected capacity change from 0 to 40427
[   43.386105][  T923] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[   43.400269][  T923] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[   43.411752][  T927] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[   43.423670][  T923] F2FS-fs (loop3): Found nat_bits in checkpoint
[   43.506370][  T923] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[   43.514325][  T923] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   43.526996][  T927] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.248: bg 0: block 88: padding at end of block bitmap is not set
[   43.606594][  T927] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2818: Unable to expand inode 12. Delete some EAs or run e2fsck.
[   43.652241][  T947] input: syz1 as /devices/virtual/input/input5
[   43.678622][  T287] EXT4-fs (loop2): unmounting filesystem.
[   43.950401][  T961] loop2: detected capacity change from 0 to 512
[   44.050500][  T961] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[   44.097639][  T961] ext4 filesystem being mounted at /36/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   44.116654][  T973] SELinux:  Context system_u:object_r:hald_log_t:s0 is not valid (left unmapped).
[   44.139724][  T923] F2FS-fs (loop3): Start checkpoint disabled!
[   44.165479][  T975] SELinux:  policydb table sizes (0,0) do not match mine (6,7)
[   44.187011][  T975] SELinux: failed to load policy
[   44.247095][   T24] usb 1-1: new full-speed USB device number 4 using dummy_hcd
[   44.259450][  T287] EXT4-fs (loop2): unmounting filesystem.
[   44.303001][  T980] syz.1.269 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   44.323658][  T985] xt_hashlimit: size too large, truncated to 1048576
[   44.344489][  T987] loop4: detected capacity change from 0 to 512
[   44.389414][  T987] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   44.431819][  T987] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[   44.451582][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[   44.467825][  T987] ext4 filesystem being mounted at /57/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   44.492522][   T24] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   44.513394][ T1001] netlink: 'syz.1.276': attribute type 2 has an invalid length.
[   44.522269][   T24] usb 1-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[   44.548477][   T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   44.601592][   T24] usb 1-1: config 0 descriptor??
[   44.608641][  T286] EXT4-fs (loop4): unmounting filesystem.
[   44.673407][ T1007] loop4: detected capacity change from 0 to 128
[   44.713026][ T1007] EXT4-fs: Ignoring removed nobh option
[   44.741413][ T1007] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[   44.783032][ T1007] ext4 filesystem being mounted at /58/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   44.817668][  T286] EXT4-fs (loop4): unmounting filesystem.
[   44.844325][ T1012] loop3: detected capacity change from 0 to 512
[   44.872910][ T1012] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[   44.885688][ T1012] EXT4-fs warning (device loop3): dx_probe:869: inode #2: comm syz.3.279: Unimplemented hash flags: 0x0001
[   44.898274][ T1012] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.279: Corrupt directory, running e2fsck is recommended
[   44.911887][ T1012] EXT4-fs error (device loop3): ext4_readdir:263: inode #2: block 3: comm syz.3.279: path /62/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0
[   45.034160][   T24] hid-generic 0003:04F3:0755.0008: unknown main item tag 0x0
[   45.043397][   T24] hid-generic 0003:04F3:0755.0008: unknown main item tag 0x0
[   45.051217][   T24] hid-generic 0003:04F3:0755.0008: failed to start in urb: -90
[   45.070879][   T24] hid-generic 0003:04F3:0755.0008: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.0-1/input0
[   45.100241][   T40] usb 2-1: new full-speed USB device number 5 using dummy_hcd
[   45.253253][   T19] usb 1-1: USB disconnect, device number 4
[   45.301406][   T40] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[   45.314772][   T40] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1024, setting to 64
[   45.329309][   T40] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   45.340133][   T40] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   45.349183][   T40] usb 2-1: Product: syz
[   45.353702][   T40] usb 2-1: Manufacturer: syz
[   45.359318][   T40] usb 2-1: SerialNumber: syz
[   45.365807][ T1010] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[   45.476025][  T283] EXT4-fs (loop3): unmounting filesystem.
[   45.580307][    T6] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[   45.760312][    T6] usb 3-1: Using ep0 maxpacket: 16
[   45.760322][  T315] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[   45.793066][    T6] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   45.806110][    T6] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   45.816436][    T6] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[   45.831910][    T6] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[   45.843489][    T6] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   45.856140][    T6] usb 3-1: config 0 descriptor??
[   45.940261][  T315] usb 4-1: Using ep0 maxpacket: 16
[   45.947170][  T315] usb 4-1: config 1 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 30, changing to 8
[   45.958447][  T315] usb 4-1: config 1 interface 0 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   45.972514][  T315] usb 4-1: config 1 interface 0 has no altsetting 0
[   45.983365][  T315] usb 4-1: New USB device found, idVendor=05ac, idProduct=0215, bcdDevice= 0.40
[   45.993569][  T315] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   46.002306][  T315] usb 4-1: Product: syz
[   46.006964][  T315] usb 4-1: Manufacturer: syz
[   46.011798][  T315] usb 4-1: SerialNumber: syz
[   46.140298][  T305] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[   46.224245][  T315] usbhid 4-1:1.0: can't add hid device: -71
[   46.231316][  T315] usbhid: probe of 4-1:1.0 failed with error -71
[   46.247828][  T315] usb 4-1: USB disconnect, device number 5
[   46.265643][    T6] microsoft 0003:045E:07DA.0009: unbalanced collection at end of report description
[   46.276648][    T6] microsoft 0003:045E:07DA.0009: parse failed
[   46.284620][    T6] microsoft: probe of 0003:045E:07DA.0009 failed with error -22
[   46.332081][  T305] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   46.345877][  T305] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   46.360491][  T305] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[   46.374474][  T305] usb 1-1: New USB device found, idVendor=048d, idProduct=8595, bcdDevice= 0.00
[   46.383037][   T40] cdc_ncm 2-1:1.0: failed to get mac address
[   46.385097][  T305] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   46.400474][   T40] cdc_ncm 2-1:1.0: bind() failure
[   46.401335][  T305] usb 1-1: config 0 descriptor??
[   46.413935][   T40] cdc_ncm: probe of 2-1:1.1 failed with error -71
[   46.422821][   T40] cdc_mbim: probe of 2-1:1.1 failed with error -71
[   46.432274][   T40] usb 2-1: USB disconnect, device number 5
[   46.460429][    T6] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[   46.476819][   T19] usb 3-1: USB disconnect, device number 6
[   46.651687][    T6] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   46.664473][    T6] usb 5-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   46.683155][    T6] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   46.695731][    T6] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   46.705373][    T6] usb 5-1: Product: syz
[   46.709978][    T6] usb 5-1: Manufacturer: syz
[   46.715327][    T6] usb 5-1: SerialNumber: syz
[   46.816108][  T305] hid (null): global environment stack underflow
[   46.824831][  T305] itetech 0003:048D:8595.000A: global environment stack underflow
[   46.834529][  T305] itetech 0003:048D:8595.000A: item 0 4 1 11 parsing failed
[   46.843275][  T305] itetech: probe of 0003:048D:8595.000A failed with error -22
[   46.943068][    T6] cdc_ncm 5-1:1.0: bind() failure
[   46.949412][ T1033] SELinux:  Context #! ./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[   46.953951][    T6] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found
[   47.065509][   T40] usb 1-1: USB disconnect, device number 5
[   47.071519][ T1040] device ip6gretap0 entered promiscuous mode
[   47.080130][ T1040] device macsec1 entered promiscuous mode
[   47.088659][    T6] cdc_ncm 5-1:1.1: bind() failure
[   47.095506][ T1040] device ip6gretap0 left promiscuous mode
[   47.104429][    T6] usb 5-1: USB disconnect, device number 4
[   47.280290][  T315] usb 4-1: new full-speed USB device number 6 using dummy_hcd
[   47.462066][ T1048] loop4: detected capacity change from 0 to 512
[   47.462916][ T1050] loop1: detected capacity change from 0 to 256
[   47.479199][  T315] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[   47.492081][  T315] usb 4-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[   47.502052][  T315] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   47.513946][  T315] usb 4-1: config 0 descriptor??
[   47.520744][ T1039] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[   47.532539][ T1050] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d)
[   47.547005][ T1048] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[   47.566787][ T1048] EXT4-fs warning (device loop4): dx_probe:869: inode #2: comm syz.4.295: Unimplemented hash flags: 0x0001
[   47.580900][ T1048] EXT4-fs warning (device loop4): dx_probe:966: inode #2: comm syz.4.295: Corrupt directory, running e2fsck is recommended
[   47.599946][ T1050] syz.1.296: attempt to access beyond end of device
[   47.599946][ T1050] loop1: rw=524288, sector=440, nr_sectors = 256 limit=256
[   47.616706][ T1048] EXT4-fs error (device loop4): ext4_readdir:263: inode #2: block 3: comm syz.4.295: path /61/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0
[   47.642226][ T1050] syz.1.296: attempt to access beyond end of device
[   47.642226][ T1050] loop1: rw=524288, sector=696, nr_sectors = 256 limit=256
[   47.701384][   T28] kauditd_printk_skb: 21 callbacks suppressed
[   47.701400][   T28] audit: type=1400 audit(1748897904.808:230): avc:  denied  { create } for  pid=1058 comm="syz.1.300" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   47.729298][   T28] audit: type=1400 audit(1748897904.838:231): avc:  denied  { connect } for  pid=1058 comm="syz.1.300" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   47.758373][   T28] audit: type=1400 audit(1748897904.838:232): avc:  denied  { write } for  pid=1058 comm="syz.1.300" laddr=172.20.20.10 lport=1 faddr=172.20.20.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[   47.957578][  T315] hid-generic 0003:04F3:0755.000B: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.3-1/input0
[   48.163981][    T6] usb 4-1: USB disconnect, device number 6
[   48.221276][  T286] EXT4-fs (loop4): unmounting filesystem.
[   48.287630][   T28] audit: type=1400 audit(1748897905.388:233): avc:  denied  { setopt } for  pid=1071 comm="syz.2.314" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   48.530341][  T201] usb 5-1: new full-speed USB device number 5 using dummy_hcd
[   48.539999][  T315] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[   48.720342][  T315] usb 2-1: Using ep0 maxpacket: 16
[   48.727473][  T201] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[   48.740781][  T315] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   48.753608][  T201] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1024, setting to 64
[   48.765619][  T315] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   48.777089][  T315] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[   48.792390][  T315] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[   48.802443][  T315] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   48.811966][  T201] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   48.823041][  T315] usb 2-1: config 0 descriptor??
[   48.829021][  T201] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   48.838624][  T201] usb 5-1: Product: syz
[   48.843925][  T201] usb 5-1: Manufacturer: syz
[   48.849543][  T201] usb 5-1: SerialNumber: syz
[   48.855892][ T1068] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[   49.246486][  T315] microsoft 0003:045E:07DA.000C: unbalanced collection at end of report description
[   49.256925][  T315] microsoft 0003:045E:07DA.000C: parse failed
[   49.263987][  T315] microsoft: probe of 0003:045E:07DA.000C failed with error -22
[   49.455378][    T6] usb 2-1: USB disconnect, device number 6
[   49.876262][  T201] cdc_ncm 5-1:1.0: failed to get mac address
[   49.883570][  T201] cdc_ncm 5-1:1.0: bind() failure
[   49.889767][  T201] cdc_ncm: probe of 5-1:1.1 failed with error -71
[   49.897173][  T201] cdc_mbim: probe of 5-1:1.1 failed with error -71
[   49.907521][  T201] usb 5-1: USB disconnect, device number 5
[   49.982066][ T1080] device ip6gretap0 entered promiscuous mode
[   49.989052][ T1080] device macsec1 entered promiscuous mode
[   50.004741][ T1080] device ip6gretap0 left promiscuous mode
[   50.080423][ T1093] loop0: detected capacity change from 0 to 512
[   50.095976][ T1094] netlink: 8 bytes leftover after parsing attributes in process `syz.3.315'.
[   50.110106][ T1093] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[   50.136004][ T1093] EXT4-fs warning (device loop0): dx_probe:869: inode #2: comm syz.0.312: Unimplemented hash flags: 0x0001
[   50.198360][ T1093] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.312: Corrupt directory, running e2fsck is recommended
[   50.213099][ T1093] EXT4-fs error (device loop0): ext4_readdir:263: inode #2: block 3: comm syz.0.312: path /63/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=4294967295, rec_len=7, size=1024 fake=0
[   50.247980][   T28] audit: type=1400 audit(1748897907.348:234): avc:  denied  { watch } for  pid=1106 comm="syz.2.322" path="/46" dev="tmpfs" ino=256 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   50.406686][ T1126] loop1: detected capacity change from 0 to 256
[   50.415052][ T1127] device ip6gretap0 entered promiscuous mode
[   50.421372][ T1127] device macsec1 entered promiscuous mode
[   50.428500][ T1127] device ip6gretap0 left promiscuous mode
[   50.478343][ T1132] bridge0: port 3(syz_tun) entered blocking state
[   50.485108][ T1132] bridge0: port 3(syz_tun) entered disabled state
[   50.492211][ T1132] device syz_tun entered promiscuous mode
[   50.498400][ T1132] bridge0: port 3(syz_tun) entered blocking state
[   50.504868][ T1132] bridge0: port 3(syz_tun) entered forwarding state
[   50.558675][ T1138] device ip6gretap0 entered promiscuous mode
[   50.559550][ T1142] loop1: detected capacity change from 0 to 256
[   50.565001][ T1138] device macsec1 entered promiscuous mode
[   50.579417][ T1138] device ip6gretap0 left promiscuous mode
[   50.593497][ T1142] FAT-fs (loop1): Directory bread(block 64) failed
[   50.601344][ T1142] FAT-fs (loop1): Directory bread(block 65) failed
[   50.608033][ T1142] FAT-fs (loop1): Directory bread(block 66) failed
[   50.615740][ T1142] FAT-fs (loop1): Directory bread(block 67) failed
[   50.624027][ T1142] FAT-fs (loop1): Directory bread(block 68) failed
[   50.630995][ T1142] FAT-fs (loop1): Directory bread(block 69) failed
[   50.637754][ T1142] FAT-fs (loop1): Directory bread(block 70) failed
[   50.644650][ T1142] FAT-fs (loop1): Directory bread(block 71) failed
[   50.651511][ T1142] FAT-fs (loop1): Directory bread(block 72) failed
[   50.658261][ T1142] FAT-fs (loop1): Directory bread(block 73) failed
[   50.741019][ T1149] syz.1.334: attempt to access beyond end of device
[   50.741019][ T1149] loop1: rw=2049, sector=1224, nr_sectors = 8 limit=256
[   50.800157][  T285] EXT4-fs (loop0): unmounting filesystem.
[   50.896758][ T1164] syz.0.345 uses obsolete (PF_INET,SOCK_PACKET)
[   50.904641][   T28] audit: type=1400 audit(1748897908.008:235): avc:  denied  { read } for  pid=1163 comm="syz.0.345" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   51.011042][ T1166] loop4: detected capacity change from 0 to 512
[   51.033909][  T102] udevd[102]: worker [306] terminated by signal 33 (Unknown signal 33)
[   51.043816][  T619] kworker/u4:5: attempt to access beyond end of device
[   51.043816][  T619] loop1: rw=1, sector=1232, nr_sectors = 600 limit=256
[   51.051453][  T102] udevd[102]: worker [306] failed while handling '/devices/virtual/block/loop4'
[   51.064779][  T619] kworker/u4:5: attempt to access beyond end of device
[   51.064779][  T619] loop1: rw=1, sector=1864, nr_sectors = 8032 limit=256
[   51.072409][ T1166] EXT4-fs error (device loop4): ext4_do_update_inode:5255: inode #16: comm syz.4.346: corrupted inode contents
[   51.089720][  T619] kworker/u4:5: attempt to access beyond end of device
[   51.089720][  T619] loop1: rw=1, sector=9896, nr_sectors = 6000 limit=256
[   51.113695][ T1166] EXT4-fs error (device loop4): ext4_dirty_inode:6120: inode #16: comm syz.4.346: mark_inode_dirty error
[   51.116736][  T619] kworker/u4:5: attempt to access beyond end of device
[   51.116736][  T619] loop1: rw=1, sector=15896, nr_sectors = 5936 limit=256
[   51.126453][ T1166] EXT4-fs error (device loop4): ext4_do_update_inode:5255: inode #16: comm syz.4.346: corrupted inode contents
[   51.146860][  T619] kworker/u4:5: attempt to access beyond end of device
[   51.146860][  T619] loop1: rw=1, sector=21832, nr_sectors = 6128 limit=256
[   51.153881][  T201] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[   51.174274][  T619] kworker/u4:5: attempt to access beyond end of device
[   51.174274][  T619] loop1: rw=1, sector=27960, nr_sectors = 5840 limit=256
[   51.177314][ T1166] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #16: comm syz.4.346: mark_inode_dirty error
[   51.203907][ T1166] EXT4-fs error (device loop4): ext4_do_update_inode:5255: inode #16: comm syz.4.346: corrupted inode contents
[   51.216779][ T1166] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[   51.225956][ T1166] EXT4-fs error (device loop4): ext4_do_update_inode:5255: inode #16: comm syz.4.346: corrupted inode contents
[   51.238599][ T1166] EXT4-fs error (device loop4): ext4_truncate:4314: inode #16: comm syz.4.346: mark_inode_dirty error
[   51.250725][ T1166] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[   51.260667][ T1166] EXT4-fs (loop4): 1 truncate cleaned up
[   51.267100][ T1166] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[   51.276661][ T1166] ext4 filesystem being mounted at /70/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   51.288357][  T619] Quota error (device loop4): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   51.299472][  T619] EXT4-fs error (device loop4): ext4_release_dquot:6825: comm kworker/u4:5: Failed to release dquot type 1
[   51.337330][   T28] audit: type=1400 audit(1748897908.438:236): avc:  denied  { unmount } for  pid=284 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[   51.359043][  T286] EXT4-fs (loop4): unmounting filesystem.
[   51.390325][  T201] usb 4-1: Using ep0 maxpacket: 8
[   51.397481][  T201] usb 4-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping
[   51.411971][  T201] usb 4-1: New USB device found, idVendor=0e9c, idProduct=0000, bcdDevice=5b.1e
[   51.421549][  T201] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   51.429808][  T201] usb 4-1: Product: syz
[   51.434286][  T201] usb 4-1: Manufacturer: syz
[   51.439092][  T201] usb 4-1: SerialNumber: syz
[   51.444300][  T201] usb 4-1: config 0 descriptor??
[   51.460094][  T102] udevd[102]: worker [319] terminated by signal 33 (Unknown signal 33)
[   51.469165][  T102] udevd[102]: worker [319] failed while handling '/devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0'
[   51.652864][   T28] audit: type=1400 audit(1748897908.758:237): avc:  denied  { ioctl } for  pid=1158 comm="syz.3.342" path="socket:[19207]" dev="sockfs" ino=19207 ioctlcmd=0x7437 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   51.657215][   T40] usb 4-1: USB disconnect, device number 7
[   51.750934][ T1174] loop1: detected capacity change from 0 to 1024
[   51.791601][ T1174] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[   51.811857][   T28] audit: type=1400 audit(1748897908.918:238): avc:  denied  { map } for  pid=1173 comm="syz.1.349" path="/82/file1/file1" dev="loop1" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   51.851709][  T284] EXT4-fs (loop1): unmounting filesystem.
[   51.901219][ T1190] SELinux:  Context system_u:object_r: is not valid (left unmapped).
[   52.078399][ T1181] loop4: detected capacity change from 0 to 40427
[   52.078712][ T1199] netlink: 'syz.0.358': attribute type 4 has an invalid length.
[   52.102167][ T1181] F2FS-fs (loop4): fault_injection options not supported
[   52.112642][ T1181] F2FS-fs (loop4): invalid crc value
[   52.137415][ T1181] F2FS-fs (loop4): Found nat_bits in checkpoint
[   52.218334][ T1181] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[   52.250002][ T1188] loop2: detected capacity change from 0 to 40427
[   52.318355][ T1188] F2FS-fs (loop2): Found nat_bits in checkpoint
[   52.330272][ T1030] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[   52.374381][  T286] syz-executor: attempt to access beyond end of device
[   52.374381][  T286] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   52.414863][ T1188] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[   52.433465][ T1188] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   52.531613][ T1030] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   52.548962][ T1030] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[   52.579091][ T1030] usb 2-1: New USB device found, idVendor=12d1, idProduct=1c1f, bcdDevice=ef.18
[   52.600024][ T1030] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   52.610404][  T287] bio_check_eod: 2 callbacks suppressed
[   52.610422][  T287] syz-executor: attempt to access beyond end of device
[   52.610422][  T287] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   52.639323][ T1030] usb 2-1: Product: syz
[   52.644427][ T1030] usb 2-1: Manufacturer: syz
[   52.649625][ T1030] usb 2-1: SerialNumber: syz
[   52.655599][ T1030] usb 2-1: config 0 descriptor??
[   52.780303][  T201] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[   52.851482][   T28] kauditd_printk_skb: 4 callbacks suppressed
[   52.851500][   T28] audit: type=1400 audit(1748897909.958:243): avc:  denied  { read } for  pid=1234 comm="syz.2.371" lport=1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   52.886054][ T1197] netlink: 43 bytes leftover after parsing attributes in process `syz.1.357'.
[   52.909743][ T1237] input: syz0 as /devices/virtual/input/input6
[   52.925003][   T40] usb 2-1: USB disconnect, device number 7
[   52.945687][   T28] audit: type=1400 audit(1748897910.048:244): avc:  denied  { create } for  pid=1240 comm="syz.2.373" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   52.968843][   T28] audit: type=1400 audit(1748897910.048:245): avc:  denied  { connect } for  pid=1240 comm="syz.2.373" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   53.008684][   T28] audit: type=1400 audit(1748897910.098:246): avc:  denied  { setopt } for  pid=1240 comm="syz.2.373" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   53.034343][   T28] audit: type=1400 audit(1748897910.138:247): avc:  denied  { bind } for  pid=1248 comm="syz.2.378" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[   53.041622][  T201] usb 4-1: Using ep0 maxpacket: 16
[   53.079285][ T1250] loop4: detected capacity change from 0 to 128
[   53.090794][  T201] usb 4-1: config 0 has an invalid interface number: 41 but max is 0
[   53.110365][  T201] usb 4-1: config 0 has no interface number 0
[   53.118560][ T1250] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[   53.125166][  T201] usb 4-1: config 0 interface 41 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[   53.144474][ T1252] SELinux:  Context Ü is not valid (left unmapped).
[   53.153238][  T201] usb 4-1: config 0 interface 41 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[   53.165958][ T1250] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[   53.175036][  T201] usb 4-1: config 0 interface 41 has no altsetting 0
[   53.176525][ T1250] ext2 filesystem being mounted at /78/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   53.195780][  T201] usb 4-1: New USB device found, idVendor=0fe6, idProduct=9700, bcdDevice=d1.9a
[   53.234709][  T201] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   53.244272][  T286] EXT4-fs (loop4): unmounting filesystem.
[   53.273651][  T201] usb 4-1: Product: syz
[   53.278667][  T201] usb 4-1: Manufacturer: syz
[   53.298266][  T201] usb 4-1: SerialNumber: syz
[   53.309171][  T201] usb 4-1: config 0 descriptor??
[   53.324875][ T1222] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[   53.340479][ T1222] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[   53.398367][ T1254] loop0: detected capacity change from 0 to 40427
[   53.429686][ T1254] F2FS-fs (loop0): Found nat_bits in checkpoint
[   53.487410][ T1254] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[   53.518237][ T1254] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[   53.554507][ T1222] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[   53.570347][ T1222] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[   53.601046][ T1276] loop1: detected capacity change from 0 to 256
[   53.601936][ T1257] loop2: detected capacity change from 0 to 40427
[   53.615389][ T1254] syz.0.379: attempt to access beyond end of device
[   53.615389][ T1254] loop0: rw=2049, sector=53248, nr_sectors = 136 limit=40427
[   53.638002][ T1254] syz.0.379: attempt to access beyond end of device
[   53.638002][ T1254] loop0: rw=2049, sector=53384, nr_sectors = 136 limit=40427
[   53.639136][ T1257] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[   53.666002][ T1257] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[   53.668672][ T1276] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[   53.707662][ T1257] F2FS-fs (loop2): invalid crc value
[   53.722195][  T285] syz-executor: attempt to access beyond end of device
[   53.722195][  T285] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   53.739252][   T28] audit: type=1326 audit(1748897910.848:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1275 comm="syz.1.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6d958e969 code=0x7ffc0000
[   53.797395][ T1257] F2FS-fs (loop2): Found nat_bits in checkpoint
[   53.822418][   T28] audit: type=1326 audit(1748897910.848:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1275 comm="syz.1.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb6d958e969 code=0x7ffc0000
[   53.885911][   T28] audit: type=1326 audit(1748897910.848:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1275 comm="syz.1.387" exe="/root/syz-executor" sig=0 arch=c000003e syscall=87 compat=0 ip=0x7fb6d958e969 code=0x7ffc0000
[   53.919488][   T28] audit: type=1400 audit(1748897910.848:251): avc:  denied  { remove_name } for  pid=1275 comm="syz.1.387" name="file1" dev="loop1" ino=1048613 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   53.953945][   T28] audit: type=1400 audit(1748897910.848:252): avc:  denied  { unlink } for  pid=1275 comm="syz.1.387" name="file1" dev="loop1" ino=1048613 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   53.967428][ T1257] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[   53.987290][ T1257] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   54.019520][  T201] Error reading MAC address
[   54.032930][   T37] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[   54.053087][ T1222] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[   54.068413][   T37] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[   54.084493][ T1222] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[   54.308514][  T201] sr9700 4-1:0.41 (unnamed net_device) (uninitialized): Error reading MAC address
[   54.338453][  T201] usb 4-1: USB disconnect, device number 8
[   54.458098][ T1323] SELinux:  Context system_u:object_r:getty_exec_t:s0 is not valid (left unmapped).
[   54.487311][ T1309] loop4: detected capacity change from 0 to 40427
[   54.495133][ T1030] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[   54.536258][ T1309] F2FS-fs (loop4): Found nat_bits in checkpoint
[   54.594322][ T1335] loop0: detected capacity change from 0 to 4096
[   54.602775][ T1309] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[   54.617492][ T1309] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[   54.667047][ T1335] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[   54.690240][ T1030] usb 2-1: Using ep0 maxpacket: 16
[   54.697753][ T1030] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   54.709770][ T1309] syz.4.400: attempt to access beyond end of device
[   54.709770][ T1309] loop4: rw=2049, sector=53248, nr_sectors = 136 limit=40427
[   54.714998][ T1335] EXT4-fs (loop0): shut down requested (1)
[   54.725066][ T1030] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[   54.751813][  T285] EXT4-fs (loop0): unmounting filesystem.
[   54.761118][ T1309] syz.4.400: attempt to access beyond end of device
[   54.761118][ T1309] loop4: rw=2049, sector=53384, nr_sectors = 136 limit=40427
[   54.781636][ T1030] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   54.806572][ T1030] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   54.815503][  T286] syz-executor: attempt to access beyond end of device
[   54.815503][  T286] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   54.816285][ T1030] usb 2-1: Product: syz
[   54.835977][ T1030] usb 2-1: Manufacturer: syz
[   54.858109][ T1030] usb 2-1: SerialNumber: syz
[   54.887344][ T1347] loop0: detected capacity change from 0 to 1024
[   54.896399][ T1345] tipc: Enabling of bearer <eth:s> rejected, failed to enable media
[   54.971144][ T1347] EXT4-fs error (device loop0): ext4_map_blocks:745: inode #3: block 1: comm syz.0.416: lblock 1 mapped to illegal pblock 1 (length 1)
[   55.060550][ T1347] EXT4-fs error (device loop0): ext4_acquire_dquot:6789: comm syz.0.416: Failed to acquire dquot type 0
[   55.120645][ T1347] EXT4-fs error (device loop0): ext4_free_blocks:6210: comm syz.0.416: Freeing blocks not in datazone - block = 0, count = 4096
[   55.135894][ T1361] loop3: detected capacity change from 0 to 128
[   55.137856][ T1349] loop2: detected capacity change from 0 to 40427
[   55.151080][ T1349] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[   55.184147][ T1347] EXT4-fs error (device loop0): ext4_read_inode_bitmap:140: comm syz.0.416: Invalid inode bitmap blk 0 in block_group 0
[   55.200932][    T8] EXT4-fs error (device loop0): ext4_map_blocks:635: inode #3: block 1: comm kworker/u4:0: lblock 1 mapped to illegal pblock 1 (length 1)
[   55.201362][ T1349] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[   55.219256][ T1361] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[   55.238102][ T1347] EXT4-fs error (device loop0) in ext4_free_inode:362: Corrupt filesystem
[   55.254135][    T8] EXT4-fs error (device loop0): ext4_release_dquot:6825: comm kworker/u4:0: Failed to release dquot type 0
[   55.259496][ T1347] EXT4-fs (loop0): 1 orphan inode deleted
[   55.266891][ T1349] F2FS-fs (loop2): invalid crc value
[   55.267959][ T1361] ext4 filesystem being mounted at /86/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   55.274142][ T1347] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[   55.281806][ T1030] usb 2-1: 0:2 : does not exist
[   55.341577][ T1349] F2FS-fs (loop2): Found nat_bits in checkpoint
[   55.373750][  T283] EXT4-fs (loop3): unmounting filesystem.
[   55.387248][ T1349] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[   55.405677][ T1349] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   55.437521][ T1347] EXT4-fs error (device loop0): ext4_map_blocks:635: inode #3: block 1: comm syz.0.416: lblock 1 mapped to illegal pblock 1 (length 1)
[   55.486777][    T8] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[   55.500492][ T1347] EXT4-fs error (device loop0): ext4_acquire_dquot:6789: comm syz.0.416: Failed to acquire dquot type 0
[   55.523254][    T8] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[   55.564348][  T285] EXT4-fs (loop0): unmounting filesystem.
[   55.580350][  T619] EXT4-fs error (device loop0): ext4_map_blocks:635: inode #3: block 1: comm kworker/u4:5: lblock 1 mapped to illegal pblock 1 (length 1)
[   55.630879][  T619] EXT4-fs error (device loop0): ext4_release_dquot:6825: comm kworker/u4:5: Failed to release dquot type 0
[   55.699636][ T1385] loop0: detected capacity change from 0 to 1024
[   55.747810][ T1385] EXT4-fs: Ignoring removed oldalloc option
[   55.773915][ T1376] loop3: detected capacity change from 0 to 40427
[   55.799598][ T1385] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[   55.810034][ T1393] loop4: detected capacity change from 0 to 2048
[   55.836019][ T1376] F2FS-fs (loop3): Found nat_bits in checkpoint
[   55.851645][ T1393]  loop4: p1 < > p2 p3 < p5 p6 > p4
[   55.857920][ T1393] loop4: partition table partially beyond EOD, truncated
[   55.869381][ T1393] loop4: p1 start 3405774849 is beyond EOD, truncated
[   55.877171][ T1393] loop4: p2 size 5046285 extends beyond EOD, truncated
[   55.891634][ T1393] loop4: p5 size 5046285 extends beyond EOD, truncated
[   55.901420][ T1030] usb 2-1: USB disconnect, device number 8
[   55.928568][ T1376] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[   55.932088][ T1401] loop2: detected capacity change from 0 to 256
[   55.952442][ T1376] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   55.982191][ T1401] exFAT-fs (loop2): Invalid boot checksum (boot checksum : 0x1119ac00, checksum : 0x111aac00)
[   55.995671][  T285] EXT4-fs (loop0): unmounting filesystem.
[   56.000329][ T1401] exFAT-fs (loop2): invalid boot region
[   56.022664][ T1376] syz.3.424: attempt to access beyond end of device
[   56.022664][ T1376] loop3: rw=2049, sector=53248, nr_sectors = 136 limit=40427
[   56.047068][ T1401] exFAT-fs (loop2): failed to recognize exfat type
[   56.056961][ T1376] syz.3.424: attempt to access beyond end of device
[   56.056961][ T1376] loop3: rw=2049, sector=53384, nr_sectors = 136 limit=40427
[   56.099963][  T429] udevd[429]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   56.102484][  T436] udevd[436]: inotify_add_watch(7, /dev/loop4p2, 10) failed: No such file or directory
[   56.113320][  T435] udevd[435]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[   56.136458][  T342] udevd[342]: inotify_add_watch(7, /dev/loop4p5, 10) failed: No such file or directory
[   56.138709][  T371] udevd[371]: inotify_add_watch(7, /dev/loop4p6, 10) failed: No such file or directory
[   56.184576][  T283] syz-executor: attempt to access beyond end of device
[   56.184576][  T283] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   56.208194][ T1409] loop0: detected capacity change from 0 to 256
[   56.401776][ T1428] loop4: detected capacity change from 0 to 256
[   56.418701][ T1428] exfat: Unknown parameter 'ÿÿ'
[   56.457816][ T1433] loop1: detected capacity change from 0 to 512
[   56.458256][ T1435] loop3: detected capacity change from 0 to 512
[   56.514037][ T1433] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[   56.530395][ T1433] ext4 filesystem being mounted at /93/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   56.581883][  T284] EXT4-fs (loop1): unmounting filesystem.
[   56.590846][ T1435] EXT4-fs error (device loop3): ext4_acquire_dquot:6789: comm syz.3.449: Failed to acquire dquot type 1
[   56.618869][ T1435] EXT4-fs (loop3): 1 truncate cleaned up
[   56.648516][ T1435] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[   56.679698][ T1435] ext4 filesystem being mounted at /89/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   56.750413][ T1435] EXT4-fs error (device loop3): ext4_acquire_dquot:6789: comm syz.3.449: Failed to acquire dquot type 1
[   56.782062][  T283] EXT4-fs (loop3): unmounting filesystem.
[   56.800481][ T1439] loop4: detected capacity change from 0 to 40427
[   56.834389][ T1451] input: syz0 as /devices/virtual/input/input7
[   56.858363][ T1451] input: failed to attach handler leds to device input7, error: -6
[   56.872757][ T1439] F2FS-fs (loop4): Found nat_bits in checkpoint
[   56.960394][ T1439] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[   57.021039][ T1439] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[   57.324849][ T1487] netlink: 8 bytes leftover after parsing attributes in process `syz.4.465'.
[   57.342298][ T1426] loop2: detected capacity change from 0 to 131072
[   57.353037][ T1426] F2FS-fs (loop2): Wrong CP boundary, start(512) end(1536) blocks(0)
[   57.374167][ T1426] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[   57.383095][  T315] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[   57.406190][ T1426] F2FS-fs (loop2): invalid crc value
[   57.440853][ T1426] F2FS-fs (loop2): Found nat_bits in checkpoint
[   57.525167][ T1426] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[   57.538245][ T1426] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4
[   57.580258][  T315] usb 2-1: Using ep0 maxpacket: 32
[   57.589884][  T315] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   57.607933][  T315] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   57.629296][  T315] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[   57.652738][ T1492] loop4: detected capacity change from 0 to 40427
[   57.658669][  T315] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   57.665300][ T1492] F2FS-fs (loop4): Invalid segment/section count (31 != 24 * 1)
[   57.677328][ T1492] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[   57.686369][ T1492] F2FS-fs (loop4): heap/no_heap options were deprecated
[   57.693582][  T315] usb 2-1: config 0 descriptor??
[   57.709996][ T1492] F2FS-fs (loop4): invalid crc value
[   57.721109][ T1492] F2FS-fs (loop4): Found nat_bits in checkpoint
[   57.758960][ T1492] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[   57.766777][ T1492] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[   57.819664][ T1492] bio_check_eod: 3 callbacks suppressed
[   57.819687][ T1492] syz.4.470: attempt to access beyond end of device
[   57.819687][ T1492] loop4: rw=2049, sector=53248, nr_sectors = 800 limit=40427
[   57.845101][ T1492] syz.4.470: attempt to access beyond end of device
[   57.845101][ T1492] loop4: rw=2049, sector=53288, nr_sectors = 96 limit=40427
[   57.871972][  T286] syz-executor: attempt to access beyond end of device
[   57.871972][  T286] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   57.933210][ T1511] netlink: 16 bytes leftover after parsing attributes in process `syz.3.478'.
[   58.032408][ T1515] loop3: detected capacity change from 0 to 512
[   58.070481][ T1515] EXT4-fs (loop3): Test dummy encryption mode enabled
[   58.082539][ T1515] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.480: invalid indirect mapped block 2185560079 (level 0)
[   58.119513][  T315] savu 0003:1E7D:2D5A.000D: hiddev96,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.1-1/input0
[   58.130061][ T1523] loop2: detected capacity change from 0 to 256
[   58.157770][ T1523] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x89cb6648, utbl_chksum : 0xe619d30d)
[   58.173697][ T1527] loop0: detected capacity change from 0 to 512
[   58.182537][ T1515] EXT4-fs (loop3): Remounting filesystem read-only
[   58.189824][ T1515] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.480: invalid indirect mapped block 2683928664 (level 1)
[   58.204698][ T1515] EXT4-fs (loop3): Remounting filesystem read-only
[   58.235435][ T1515] EXT4-fs (loop3): 1 truncate cleaned up
[   58.236582][ T1527] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[   58.242578][ T1515] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[   58.264273][ T1527] ext4 filesystem being mounted at /94/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   58.272060][ T1515] EXT4-fs error (device loop3): ext4_lookup:1858: inode #12: comm syz.3.480: unexpected EA_INODE flag
[   58.288654][ T1515] EXT4-fs (loop3): Remounting filesystem read-only
[   58.302627][ T1515] EXT4-fs error (device loop3): ext4_lookup:1858: inode #12: comm syz.3.480: unexpected EA_INODE flag
[   58.320483][ T1515] EXT4-fs (loop3): Remounting filesystem read-only
[   58.334178][ T1534] loop2: detected capacity change from 0 to 1024
[   58.335680][  T285] EXT4-fs (loop0): unmounting filesystem.
[   58.346157][ T1515] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[   58.358103][ T1515] EXT4-fs error (device loop3): __ext4_get_inode_loc:4509: comm syz.3.480: Invalid inode table block 1 in block_group 0
[   58.372774][ T1515] EXT4-fs (loop3): Remounting filesystem read-only
[   58.383482][ T1515] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5916: Corrupt filesystem
[   58.399646][   T40] usb 2-1: USB disconnect, device number 9
[   58.406413][ T1515] EXT4-fs (loop3): Remounting filesystem read-only
[   58.416358][ T1534] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[   58.427539][    T6] usb 5-1: new full-speed USB device number 6 using dummy_hcd
[   58.437539][ T1515] EXT4-fs error (device loop3): __ext4_new_inode:1350: inode #18: comm syz.3.480: mark_inode_dirty error
[   58.453970][ T1534] process 'syz.2.487' launched './file2' with NULL argv: empty string added
[   58.464354][ T1515] EXT4-fs (loop3): Remounting filesystem read-only
[   58.465963][ T1541] SELinux:  Context system_u: is not valid (left unmapped).
[   58.472899][ T1515] EXT4-fs error (device loop3) in __ext4_new_inode:1352: Corrupt filesystem
[   58.483413][   T28] kauditd_printk_skb: 38 callbacks suppressed
[   58.483431][   T28] audit: type=1400 audit(1748897915.588:281): avc:  denied  { nosuid_transition } for  pid=1533 comm="syz.2.487" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=process2 permissive=1
[   58.492423][ T1515] EXT4-fs (loop3): Remounting filesystem read-only
[   58.507174][   T28] audit: type=1400 audit(1748897915.588:282): avc:  denied  { transition } for  pid=1533 comm="syz.2.487" path="/73/file1/file2" dev="loop2" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=process permissive=1
[   58.525284][ T1515] EXT4-fs error (device loop3): __ext4_get_inode_loc:4509: comm syz.3.480: Invalid inode table block 1 in block_group 0
[   58.533187][   T28] audit: type=1400 audit(1748897915.588:283): avc:  denied  { entrypoint } for  pid=1533 comm="syz.2.487" path="/73/file1/file2" dev="loop2" ino=16 scontext=system_u:object_r:hugetlbfs_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   58.559405][ T1515] EXT4-fs (loop3): Remounting filesystem read-only
[   58.604080][   T28] audit: type=1400 audit(1748897915.588:284): avc:  denied  { noatsecure } for  pid=1533 comm="syz.2.487" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=process permissive=1
[   58.612763][  T287] EXT4-fs (loop2): unmounting filesystem.
[   58.643262][ T1515] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5916: Corrupt filesystem
[   58.661421][    T6] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[   58.678648][ T1543] kernel profiling enabled (shift: 5)
[   58.680358][    T6] usb 5-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[   58.689140][ T1515] EXT4-fs (loop3): Remounting filesystem read-only
[   58.698930][    T6] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   58.710250][ T1515] EXT4-fs error (device loop3): ext4_evict_inode:279: inode #18: comm syz.3.480: mark_inode_dirty error
[   58.732082][    T6] usb 5-1: config 0 descriptor??
[   58.738882][ T1525] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[   58.750094][ T1515] EXT4-fs (loop3): Remounting filesystem read-only
[   58.759196][ T1515] EXT4-fs warning (device loop3): ext4_evict_inode:282: couldn't mark inode dirty (err -117)
[   58.787179][ T1515] EXT4-fs error (device loop3): __ext4_get_inode_loc:4509: comm syz.3.480: Invalid inode table block 1 in block_group 0
[   58.802235][ T1549] loop2: detected capacity change from 0 to 512
[   58.842259][ T1549] EXT4-fs: Ignoring removed nomblk_io_submit option
[   58.860805][ T1549] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   58.873076][   T28] audit: type=1400 audit(1748897915.968:285): avc:  denied  { setattr } for  pid=1554 comm="syz.3.495" name="/" dev="incremental-fs" ino=567 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   58.913213][   T28] audit: type=1400 audit(1748897916.018:286): avc:  denied  { map } for  pid=1556 comm="syz.3.496" path="/dev/ashmem" dev="devtmpfs" ino=269 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   58.914239][ T1549] EXT4-fs error (device loop2): ext4_do_update_inode:5255: inode #16: comm syz.2.492: corrupted inode contents
[   58.992068][   T28] audit: type=1400 audit(1748897916.098:287): avc:  denied  { getopt } for  pid=1564 comm="syz.3.497" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   58.999200][ T1549] EXT4-fs error (device loop2): ext4_dirty_inode:6120: inode #16: comm syz.2.492: mark_inode_dirty error
[   59.049423][ T1549] EXT4-fs error (device loop2): ext4_do_update_inode:5255: inode #16: comm syz.2.492: corrupted inode contents
[   59.078382][ T1549] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #16: comm syz.2.492: mark_inode_dirty error
[   59.084024][ T1572] loop0: detected capacity change from 0 to 512
[   59.100986][ T1572] EXT4-fs: Ignoring removed orlov option
[   59.106008][ T1567] loop3: detected capacity change from 0 to 8192
[   59.120570][ T1549] EXT4-fs error (device loop2): ext4_do_update_inode:5255: inode #16: comm syz.2.492: corrupted inode contents
[   59.140170][ T1572] EXT4-fs: Ignoring removed oldalloc option
[   59.144576][ T1567] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   59.151416][ T1549] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[   59.178132][    T6] hid-generic 0003:04F3:0755.000E: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.4-1/input0
[   59.198579][ T1549] EXT4-fs error (device loop2): ext4_do_update_inode:5255: inode #16: comm syz.2.492: corrupted inode contents
[   59.211853][ T1572] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[   59.234178][ T1572] EXT4-fs (loop0): group descriptors corrupted!
[   59.241548][ T1549] EXT4-fs error (device loop2): ext4_truncate:4314: inode #16: comm syz.2.492: mark_inode_dirty error
[   59.280789][ T1549] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[   59.306444][ T1549] EXT4-fs (loop2): 1 truncate cleaned up
[   59.315791][ T1549] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[   59.331645][ T1585] IPv4: Oversized IP packet from 127.0.0.1
[   59.338286][    C1] IPv4: Oversized IP packet from 127.0.0.1
[   59.345587][   T37] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[   59.356250][   T28] audit: type=1400 audit(1748897916.438:288): avc:  denied  { bind } for  pid=1571 comm="syz.0.502" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   59.357770][ T1549] ext4 filesystem being mounted at /76/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   59.415161][   T37] EXT4-fs error (device loop2): ext4_release_dquot:6825: comm kworker/u4:2: Failed to release dquot type 1
[   59.428181][   T40] usb 5-1: USB disconnect, device number 6
[   59.439792][   T28] audit: type=1400 audit(1748897916.538:289): avc:  denied  { watch_reads } for  pid=1588 comm="syz.0.510" path="/103" dev="tmpfs" ino=559 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   59.514276][  T287] EXT4-fs (loop2): unmounting filesystem.
[   59.579928][ T1599] netlink: 'syz.2.514': attribute type 3 has an invalid length.
[   59.600274][ T1599] netlink: 4 bytes leftover after parsing attributes in process `syz.2.514'.
[   59.610149][ T1599] A link change request failed with some changes committed already. Interface wg1 may have been left with an inconsistent configuration, please check.
[   59.774583][ T1593] loop1: detected capacity change from 0 to 40427
[   59.787764][ T1593] F2FS-fs (loop1): fault_injection options not supported
[   59.796538][ T1593] F2FS-fs (loop1): fault_type options not supported
[   59.805627][ T1593] F2FS-fs (loop1): Image doesn't support compression
[   59.814590][ T1593] F2FS-fs (loop1): Image doesn't support compression
[   59.838894][ T1593] F2FS-fs (loop1): invalid crc value
[   59.849548][ T1592] loop3: detected capacity change from 0 to 40427
[   59.861072][ T1593] F2FS-fs (loop1): Found nat_bits in checkpoint
[   59.873887][ T1592] F2FS-fs (loop3): fault_injection options not supported
[   59.901579][ T1592] F2FS-fs (loop3): invalid crc value
[   59.919227][ T1592] F2FS-fs (loop3): Found nat_bits in checkpoint
[   59.968615][ T1593] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   60.008090][ T1592] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   60.013349][ T1621] loop4: detected capacity change from 0 to 2048
[   60.016596][   T40] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[   60.053520][  T283] F2FS-fs (loop3): access invalid blkaddr:2816
[   60.060792][  T284] syz-executor: attempt to access beyond end of device
[   60.060792][  T284] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   60.076427][  T283] CPU: 1 PID: 283 Comm: syz-executor Not tainted 6.1.138-syzkaller-00049-g5b87067cdd87 #0
[   60.086660][  T283] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   60.099693][  T283] Call Trace:
[   60.103302][  T283]  <TASK>
[   60.107445][  T283]  __dump_stack+0x21/0x24
[   60.113234][  T283]  dump_stack_lvl+0xee/0x150
[   60.118593][  T283]  ? __cfi_dump_stack_lvl+0x8/0x8
[   60.125486][  T283]  ? __cfi_f2fs_get_dnode_of_data+0x10/0x10
[   60.132108][  T283]  dump_stack+0x15/0x24
[   60.136766][  T283]  __f2fs_is_valid_blkaddr+0xda6/0x1460
[   60.140808][ T1621] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[   60.143573][  T283]  f2fs_is_valid_blkaddr+0x23/0x30
[   60.159494][  T283]  f2fs_map_blocks+0xc93/0x3a60
[   60.165352][  T283]  ? sched_clock_cpu+0x6e/0x250
[   60.171365][  T283]  ? __cfi_f2fs_map_blocks+0x10/0x10
[   60.175080][ T1627] loop0: detected capacity change from 0 to 256
[   60.178614][  T283]  ? xas_start+0x317/0x3e0
[   60.193224][  T283]  ? xas_load+0x39e/0x3b0
[   60.198038][  T283]  ? xa_load+0xad/0xd0
[   60.203233][  T283]  f2fs_mpage_readpages+0xa3a/0x1b70
[   60.209183][  T283]  ? cgroup_rstat_updated+0xf5/0x370
[   60.216600][  T283]  ? dquot_release_reservation_block+0xa0/0xa0
[   60.224354][  T283]  ? cgroup_rstat_updated+0xf5/0x370
[   60.230236][  T283]  ? xas_nomem+0x6b/0x1f0
[   60.235908][  T283]  f2fs_readahead+0xfc/0x240
[   60.240929][  T283]  ? __cfi_f2fs_readahead+0x10/0x10
[   60.246961][  T283]  read_pages+0x1b0/0xdd0
[   60.252096][  T283]  ? __cfi___filemap_add_folio+0x10/0x10
[   60.258213][  T283]  ? page_cache_ra_unbounded+0x720/0x720
[   60.264787][  T283]  ? folio_add_lru+0x260/0x390
[   60.269751][  T283]  ? filemap_add_folio+0x105/0x150
[   60.275595][  T283]  page_cache_ra_unbounded+0x5d1/0x720
[   60.282280][  T283]  ? __kernel_text_address+0xd/0x30
[   60.288326][  T283]  ? __cfi_page_cache_ra_unbounded+0x10/0x10
[   60.295917][  T283]  ? stack_trace_save+0x98/0xe0
[   60.301491][  T283]  page_cache_ra_order+0x36a/0xb70
[   60.309941][  T283]  ? slab_free_freelist_hook+0xc2/0x190
[   60.317203][  T283]  ? kmem_cache_free+0x12d/0x300
[   60.324585][  T283]  ? __x64_sys_newfstatat+0x9b/0xb0
[   60.330321][  T283]  ? x64_sys_call+0x77c/0x9a0
[   60.335730][  T283]  ? __cfi_page_cache_ra_order+0x10/0x10
[   60.342285][  T283]  ondemand_readahead+0x817/0xdb0
[   60.347982][  T283]  ? page_cache_sync_ra+0x490/0x490
[   60.354709][  T283]  page_cache_sync_ra+0x41b/0x490
[   60.360176][  T283]  f2fs_readdir+0x444/0x940
[   60.365004][  T283]  ? cgroup_rstat_updated+0xf5/0x370
[   60.370743][  T283]  ? __cfi_f2fs_readdir+0x10/0x10
[   60.376252][  T283]  ? handle_mm_fault+0x17be/0x2640
[   60.381816][  T283]  ? down_read_killable+0xb6/0x100
[   60.387538][  T283]  ? __cfi_down_read_killable+0x10/0x10
[   60.394158][  T283]  ? fsnotify_perm+0x269/0x5b0
[   60.399656][  T283]  ? security_file_permission+0x94/0xb0
[   60.405772][  T283]  iterate_dir+0x271/0x610
[   60.410790][  T283]  ? __cfi_f2fs_readdir+0x10/0x10
[   60.416456][  T283]  __se_sys_getdents64+0xe5/0x240
[   60.422168][  T283]  ? __x64_sys_getdents64+0x90/0x90
[   60.427931][  T283]  ? __cfi_filldir64+0x10/0x10
[   60.432831][  T283]  ? do_user_addr_fault+0x9ac/0x1050
[   60.439023][  T283]  ? debug_smp_processor_id+0x17/0x20
[   60.445720][  T283]  __x64_sys_getdents64+0x7b/0x90
[   60.451845][  T283]  x64_sys_call+0x15c/0x9a0
[   60.456631][  T283]  do_syscall_64+0x4c/0xa0
[   60.461183][  T283]  ? clear_bhb_loop+0x15/0x70
[   60.466262][  T283]  ? clear_bhb_loop+0x15/0x70
[   60.471292][  T283]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   60.477803][  T283] RIP: 0033:0x7fe97afc12d3
[   60.483124][  T283] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 52 3e f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8
[   60.505019][  T283] RSP: 002b:00007ffc0cacd848 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[   60.514339][  T283] RAX: ffffffffffffffda RBX: 000055558b3d54e0 RCX: 00007fe97afc12d3
[   60.523062][  T283] RDX: 0000000000008000 RSI: 000055558b3d54e0 RDI: 0000000000000005
[   60.531658][  T283] RBP: 000055558b3d54b4 R08: 0000000000000000 R09: 0000000000000000
[   60.539862][  T283] R10: 0000000000001000 R11: 0000000000000293 R12: ffffffffffffffa8
[   60.548465][  T283] R13: 0000000000000010 R14: 000055558b3d54b0 R15: 00007ffc0cacfb00
[   60.557174][  T283]  </TASK>
[   60.564557][  T283] F2FS-fs (loop3): access invalid blkaddr:2816
[   60.573420][ T1627] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x46ae1815, utbl_chksum : 0xe619d30d)
[   60.593285][ T1627] exFAT-fs (loop0): bogus allocation bitmap size(need : 2, cur : 17179869186)
[   60.594863][  T283] CPU: 0 PID: 283 Comm: syz-executor Not tainted 6.1.138-syzkaller-00049-g5b87067cdd87 #0
[   60.613966][  T283] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   60.625172][  T283] Call Trace:
[   60.628586][  T283]  <TASK>
[   60.631554][  T283]  __dump_stack+0x21/0x24
[   60.636327][  T283]  dump_stack_lvl+0xee/0x150
[   60.641305][  T283]  ? __cfi_dump_stack_lvl+0x8/0x8
[   60.646734][  T283]  ? __cfi_f2fs_get_dnode_of_data+0x10/0x10
[   60.653807][  T283]  dump_stack+0x15/0x24
[   60.658440][  T283]  __f2fs_is_valid_blkaddr+0xda6/0x1460
[   60.664546][  T283]  f2fs_is_valid_blkaddr+0x23/0x30
[   60.670131][  T283]  f2fs_map_blocks+0xc93/0x3a60
[   60.675220][  T283]  ? sched_clock_cpu+0x6e/0x250
[   60.680365][  T283]  ? __cfi_f2fs_map_blocks+0x10/0x10
[   60.686180][  T283]  ? xas_start+0x317/0x3e0
[   60.690289][   T40] usb 3-1: Using ep0 maxpacket: 16
[   60.691001][  T283]  ? xas_load+0x39e/0x3b0
[   60.698693][   T40] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   60.700984][  T283]  ? xa_load+0xad/0xd0
[   60.701019][  T283]  f2fs_mpage_readpages+0xa3a/0x1b70
[   60.722201][   T40] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   60.722568][  T283]  ? cgroup_rstat_updated+0xf5/0x370
[   60.739267][  T283]  ? dquot_release_reservation_block+0xa0/0xa0
[   60.742049][   T40] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[   60.745983][  T283]  ? cgroup_rstat_updated+0xf5/0x370
[   60.746033][  T283]  ? xas_nomem+0x6b/0x1f0
[   60.771030][  T283]  f2fs_readahead+0xfc/0x240
[   60.775035][   T40] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[   60.776562][  T283]  ? __cfi_f2fs_readahead+0x10/0x10
[   60.794823][  T283]  read_pages+0x1b0/0xdd0
[   60.800337][  T283]  ? __cfi___filemap_add_folio+0x10/0x10
[   60.800873][   T40] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   60.807414][  T283]  ? page_cache_ra_unbounded+0x720/0x720
[   60.807457][  T283]  ? folio_add_lru+0x260/0x390
[   60.828516][  T283]  ? filemap_add_folio+0x105/0x150
[   60.829903][   T40] usb 3-1: config 0 descriptor??
[   60.834127][  T283]  page_cache_ra_unbounded+0x5d1/0x720
[   60.834167][  T283]  ? __kernel_text_address+0xd/0x30
[   60.853748][  T283]  ? __cfi_page_cache_ra_unbounded+0x10/0x10
[   60.856507][ T1627] exFAT-fs (loop0): error, invalid access to FAT free cluster (entry 0x00000006)
[   60.860381][  T283]  ? stack_trace_save+0x98/0xe0
[   60.860417][  T283]  page_cache_ra_order+0x36a/0xb70
[   60.860445][  T283]  ? slab_free_freelist_hook+0xc2/0x190
[   60.871852][ T1627] exFAT-fs (loop0): Filesystem has been set read-only
[   60.878486][  T283]  ? kmem_cache_free+0x12d/0x300
[   60.878528][  T283]  ? __x64_sys_newfstatat+0x9b/0xb0
[   60.908851][  T283]  ? x64_sys_call+0x77c/0x9a0
[   60.914877][  T283]  ? __cfi_page_cache_ra_order+0x10/0x10
[   60.921381][  T283]  ondemand_readahead+0x817/0xdb0
[   60.926835][  T283]  ? page_cache_sync_ra+0x490/0x490
[   60.932545][  T283]  page_cache_sync_ra+0x41b/0x490
[   60.938003][  T283]  f2fs_readdir+0x444/0x940
[   60.943184][  T283]  ? cgroup_rstat_updated+0xf5/0x370
[   60.949292][  T283]  ? __cfi_f2fs_readdir+0x10/0x10
[   60.955106][  T283]  ? handle_mm_fault+0x17be/0x2640
[   60.960897][  T283]  ? down_read_killable+0xb6/0x100
[   60.966912][  T283]  ? __cfi_down_read_killable+0x10/0x10
[   60.972858][  T283]  ? fsnotify_perm+0x269/0x5b0
[   60.978693][  T283]  ? security_file_permission+0x94/0xb0
[   60.985952][  T283]  iterate_dir+0x271/0x610
[   60.991164][  T283]  ? __cfi_f2fs_readdir+0x10/0x10
[   60.996894][  T283]  __se_sys_getdents64+0xe5/0x240
[   61.002432][  T283]  ? __x64_sys_getdents64+0x90/0x90
[   61.008283][  T283]  ? __cfi_filldir64+0x10/0x10
[   61.013882][  T283]  ? do_user_addr_fault+0x9ac/0x1050
[   61.019775][  T283]  ? debug_smp_processor_id+0x17/0x20
[   61.025588][  T283]  __x64_sys_getdents64+0x7b/0x90
[   61.030724][  T283]  x64_sys_call+0x15c/0x9a0
[   61.035586][  T283]  do_syscall_64+0x4c/0xa0
[   61.040239][  T283]  ? clear_bhb_loop+0x15/0x70
[   61.045329][  T283]  ? clear_bhb_loop+0x15/0x70
[   61.051084][  T283]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   61.057832][  T283] RIP: 0033:0x7fe97afc12d3
[   61.062801][  T283] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 52 3e f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8
[   61.084757][  T283] RSP: 002b:00007ffc0cacd848 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9
[   61.094861][  T283] RAX: ffffffffffffffda RBX: 000055558b3d54e0 RCX: 00007fe97afc12d3
[   61.103670][  T283] RDX: 0000000000008000 RSI: 000055558b3d54e0 RDI: 0000000000000005
[   61.112725][  T283] RBP: 000055558b3d54b4 R08: 0000000000000000 R09: 0000000000000000
[   61.121593][  T283] R10: 0000000000001000 R11: 0000000000000293 R12: ffffffffffffffa8
[   61.130463][  T283] R13: 0000000000000010 R14: 000055558b3d54b0 R15: 00007ffc0cacfb00
[   61.139736][  T283]  </TASK>
[   61.144238][  T283] syz-executor: attempt to access beyond end of device
[   61.144238][  T283] loop3: rw=0, sector=45064, nr_sectors = 8 limit=40427
[   61.231005][  T313] kworker/u4:4: attempt to access beyond end of device
[   61.231005][  T313] loop3: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[   61.240439][  T286] EXT4-fs (loop4): unmounting filesystem.
[   61.270923][   T40] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:045E:07DA.000F/input/input8
[   61.371978][   T40] microsoft 0003:045E:07DA.000F: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0
[   61.384113][ T1640] loop4: detected capacity change from 0 to 8192
[   61.467222][   T40] usb 3-1: USB disconnect, device number 7
[   61.801084][  T313] device bridge_slave_1 left promiscuous mode
[   61.808062][  T313] bridge0: port 2(bridge_slave_1) entered disabled state
[   61.816103][  T313] device bridge_slave_0 left promiscuous mode
[   61.823358][  T313] bridge0: port 1(bridge_slave_0) entered disabled state
[   61.831919][  T313] device veth1_macvtap left promiscuous mode
[   61.838455][  T313] device veth0_vlan left promiscuous mode
[   62.333300][ T1654] bridge0: port 1(bridge_slave_0) entered blocking state
[   62.341559][ T1654] bridge0: port 1(bridge_slave_0) entered disabled state
[   62.350685][ T1654] device bridge_slave_0 entered promiscuous mode
[   62.361616][ T1654] bridge0: port 2(bridge_slave_1) entered blocking state
[   62.369369][ T1654] bridge0: port 2(bridge_slave_1) entered disabled state
[   62.378929][ T1654] device bridge_slave_1 entered promiscuous mode
[   62.448267][ T1671] loop4: detected capacity change from 0 to 512
[   62.490269][ T1030] usb 2-1: new full-speed USB device number 10 using dummy_hcd
[   62.507891][ T1671] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[   62.565616][ T1671] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[   62.578937][ T1671] ext4 filesystem being mounted at /114/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   62.603795][ T1671] SELinux:  Context system_u:object_r:hwdata_t:s0 is not valid (left unmapped).
[   62.616841][ T1671] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[   62.652384][  T286] EXT4-fs (loop4): unmounting filesystem.
[   62.708756][ T1030] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[   62.724240][ T1674] bridge0: port 1(bridge_slave_0) entered blocking state
[   62.724613][ T1030] usb 2-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[   62.732353][ T1674] bridge0: port 1(bridge_slave_0) entered disabled state
[   62.750557][ T1674] device bridge_slave_0 entered promiscuous mode
[   62.756772][ T1030] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   62.767247][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   62.776016][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   62.790644][ T1030] usb 2-1: config 0 descriptor??
[   62.791065][ T1674] bridge0: port 2(bridge_slave_1) entered blocking state
[   62.797500][ T1649] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   62.805101][ T1674] bridge0: port 2(bridge_slave_1) entered disabled state
[   62.822399][ T1674] device bridge_slave_1 entered promiscuous mode
[   62.841542][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   62.851460][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   62.861586][   T10] bridge0: port 1(bridge_slave_0) entered blocking state
[   62.870011][   T10] bridge0: port 1(bridge_slave_0) entered forwarding state
[   62.878986][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   62.888643][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   62.898286][   T10] bridge0: port 2(bridge_slave_1) entered blocking state
[   62.906743][   T10] bridge0: port 2(bridge_slave_1) entered forwarding state
[   62.915603][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   62.927325][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   62.938050][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   62.954571][  T313] device bridge_slave_1 left promiscuous mode
[   62.961522][  T313] bridge0: port 2(bridge_slave_1) entered disabled state
[   62.971654][  T313] device bridge_slave_0 left promiscuous mode
[   62.979511][  T313] bridge0: port 1(bridge_slave_0) entered disabled state
[   62.989519][  T313] device veth1_macvtap left promiscuous mode
[   62.997272][  T313] device veth0_vlan left promiscuous mode
[   63.205688][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   63.230648][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   63.241011][ T1030] hid-generic 0003:04F3:0755.0010: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.1-1/input0
[   63.241439][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   63.263523][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   63.276303][ T1654] device veth0_vlan entered promiscuous mode
[   63.316134][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   63.335514][ T1654] device veth1_macvtap entered promiscuous mode
[   63.350024][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   63.370835][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   63.381028][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   63.395688][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   63.405285][   T10] bridge0: port 1(bridge_slave_0) entered blocking state
[   63.413207][   T10] bridge0: port 1(bridge_slave_0) entered forwarding state
[   63.422096][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   63.432439][   T10] bridge0: port 2(bridge_slave_1) entered blocking state
[   63.440552][   T10] bridge0: port 2(bridge_slave_1) entered forwarding state
[   63.452659][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   63.476827][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   63.485881][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   63.494758][  T305] usb 2-1: USB disconnect, device number 10
[   63.511302][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   63.527129][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   63.539613][   T28] kauditd_printk_skb: 13 callbacks suppressed
[   63.539631][   T28] audit: type=1400 audit(1748897920.638:303): avc:  denied  { mount } for  pid=1654 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   63.577496][   T28] audit: type=1400 audit(1748897920.638:304): avc:  denied  { mounton } for  pid=1654 comm="syz-executor" path="/root/syzkaller.11NNXP/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   63.583367][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   63.641872][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   63.660076][ T1674] device veth0_vlan entered promiscuous mode
[   63.692286][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   63.707840][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   63.718235][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   63.733903][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   63.753858][ T1674] device veth1_macvtap entered promiscuous mode
[   63.770714][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   63.793183][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   63.803127][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   63.821691][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   63.835761][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   63.852591][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   63.867653][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   63.948587][ T1725] loop4: detected capacity change from 0 to 512
[   63.969360][ T1725] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[   63.991438][ T1725] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[   64.001846][ T1725] EXT4-fs (loop4): warning: checktime reached, running e2fsck is recommended
[   64.011596][ T1725] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[   64.021005][ T1725] System zones: 0-2, 18-18, 34-34
[   64.029456][ T1725] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1087: updating to rev 1 because of new feature flag, running e2fsck is recommended
[   64.086015][ T1725] EXT4-fs (loop4): 1 truncate cleaned up
[   64.097035][ T1725] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[   64.154566][ T1739] loop3: detected capacity change from 0 to 128
[   64.168998][  T286] EXT4-fs (loop4): unmounting filesystem.
[   64.351158][ T1753] loop2: detected capacity change from 0 to 2048
[   64.405387][ T1753] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[   64.418701][ T1753] ext4 filesystem being mounted at /3/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   64.464638][ T1674] EXT4-fs (loop2): unmounting filesystem.
[   64.513918][   T28] audit: type=1326 audit(1748897921.618:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1756 comm="syz.4.576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe0d538e969 code=0x7fc00000
[   64.601353][ T1747] loop3: detected capacity change from 0 to 40427
[   64.624349][ T1747] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[   64.635471][ T1747] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[   64.647103][ T1747] F2FS-fs (loop3): invalid crc_offset: 33558524
[   64.668100][ T1747] F2FS-fs (loop3): Found nat_bits in checkpoint
[   64.690275][   T24] usb 2-1: new full-speed USB device number 11 using dummy_hcd
[   64.774939][ T1747] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[   64.787875][ T1747] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   64.882429][   T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[   64.903297][   T24] usb 2-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[   64.915177][   T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   64.925733][   T24] usb 2-1: config 0 descriptor??
[   64.932274][ T1759] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   65.107128][ T1774] loop2: detected capacity change from 0 to 40427
[   65.128075][ T1774] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[   65.138199][ T1774] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[   65.158279][ T1774] F2FS-fs (loop2): Found nat_bits in checkpoint
[   65.194022][   T28] audit: type=1326 audit(1748897922.298:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1756 comm="syz.4.576" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe0d538e969 code=0x7fc00000
[   65.226625][ T1784] tun0: tun_chr_ioctl cmd 1074025675
[   65.242634][ T1784] tun0: persist enabled
[   65.262497][ T1784] tun0: tun_chr_ioctl cmd 1074025675
[   65.278831][ T1784] tun0: persist disabled
[   65.284647][ T1774] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[   65.285926][ T1787] syz.4.586[1787] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   65.292302][ T1787] syz.4.586[1787] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   65.293764][ T1774] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[   65.353507][   T24] hid-generic 0003:04F3:0755.0011: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.1-1/input0
[   65.586391][  T315] usb 2-1: USB disconnect, device number 11
[   65.718463][   T28] audit: type=1400 audit(1748897922.818:307): avc:  denied  { ioctl } for  pid=1798 comm="syz.4.592" path="socket:[23667]" dev="sockfs" ino=23667 ioctlcmd=0x8912 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[   65.767932][ T1802] loop3: detected capacity change from 0 to 16
[   65.782037][ T1802] erofs: (device loop3): mounted with root inode @ nid 36.
[   65.799072][ T1804] loop4: detected capacity change from 0 to 512
[   65.829199][ T1804] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   65.852616][ T1804] EXT4-fs (loop4): 1 truncate cleaned up
[   65.858496][ T1804] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[   65.893166][ T1804] EXT4-fs warning (device loop4): ext4_group_add:1743: No reserved GDT blocks, can't resize
[   65.927142][  T286] EXT4-fs (loop4): unmounting filesystem.
[   65.971286][ T1813] incfs: Options parsing error. -22
[   65.977487][ T1813] incfs: mount failed -22
[   66.004892][ T1815] loop3: detected capacity change from 0 to 512
[   66.019519][ T1815] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.597: inode #1: comm syz.3.597: iget: illegal inode #
[   66.022905][ T1818] loop4: detected capacity change from 0 to 256
[   66.039442][ T1815] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.597: error while reading EA inode 1 err=-117
[   66.055153][ T1815] EXT4-fs (loop3): 1 orphan inode deleted
[   66.064565][ T1815] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[   66.069019][ T1818] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011d5f, chksum : 0x09863542, utbl_chksum : 0x000cd30d)
[   66.095183][ T1654] EXT4-fs (loop3): unmounting filesystem.
[   66.103679][ T1818] exFAT-fs (loop4): hint_cluster is invalid (17)
[   66.134531][ T1818] exFAT-fs (loop4): error, invalid access to FAT (entry 0xffffffff)
[   66.145003][ T1818] exFAT-fs (loop4): Filesystem has been set read-only
[   66.154887][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.168806][ T1826] exFAT-fs (loop4): error, failed to bmap (inode : ffff88813307a5f0 iblock : 24, err : -5)
[   66.194927][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.210608][ T1826] exFAT-fs (loop4): error, failed to bmap (inode : ffff88813307a5f0 iblock : 24, err : -5)
[   66.214413][ T1832] loop0: detected capacity change from 0 to 512
[   66.228543][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.235627][ T1826] exFAT-fs (loop4): error, failed to bmap (inode : ffff88813307a5f0 iblock : 25, err : -5)
[   66.247031][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.261438][ T1826] exFAT-fs (loop4): error, failed to bmap (inode : ffff88813307a5f0 iblock : 26, err : -5)
[   66.263509][ T1832] ext4 filesystem being mounted at /128/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   66.272223][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.295193][ T1826] exFAT-fs (loop4): error, failed to bmap (inode : ffff88813307a5f0 iblock : 27, err : -5)
[   66.305829][   T28] audit: type=1400 audit(1748897923.398:308): avc:  denied  { map } for  pid=1831 comm="syz.0.603" path="/128/file0/cpu.stat" dev="loop0" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   66.306026][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.342327][ T1826] exFAT-fs (loop4): error, failed to bmap (inode : ffff88813307a5f0 iblock : 28, err : -5)
[   66.353405][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.359664][ T1826] exFAT-fs (loop4): error, failed to bmap (inode : ffff88813307a5f0 iblock : 29, err : -5)
[   66.406607][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.414090][ T1826] exFAT-fs (loop4): error, failed to bmap (inode : ffff88813307a5f0 iblock : 30, err : -5)
[   66.428181][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.434947][ T1826] exFAT-fs (loop4): error, failed to bmap (inode : ffff88813307a5f0 iblock : 31, err : -5)
[   66.460356][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.467172][ T1826] exFAT-fs (loop4): error, failed to bmap (inode : ffff88813307a5f0 iblock : 32, err : -5)
[   66.489566][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.496321][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.508311][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.515003][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.521645][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.528774][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.536360][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.544316][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.551609][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.558698][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.565605][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.574114][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.581496][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.589341][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.595987][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.603053][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.609710][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.617582][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.624783][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.631189][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.638007][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.645260][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.650263][   T24] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[   66.652721][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.667612][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.675580][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.682037][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.688601][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.695132][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.702100][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.708423][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.714757][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.722177][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.728261][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.734624][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.741156][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.748219][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.754573][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.760642][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.766800][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.773257][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.780951][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.787465][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.793858][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.800037][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.806294][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.819395][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.825660][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.831932][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.838175][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.844515][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.850707][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.851423][   T24] usb 4-1: config 0 has no interfaces?
[   66.856810][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.856826][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.856840][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.856853][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.878281][   T24] usb 4-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[   66.882013][ T1826] exFAT-fs (loop4): error, broken FAT chain.
[   66.902266][   T24] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   66.914744][   T24] usb 4-1: Product: syz
[   66.919183][   T24] usb 4-1: Manufacturer: syz
[   66.928080][   T24] usb 4-1: SerialNumber: syz
[   66.934137][   T24] r8152-cfgselector 4-1: config 0 descriptor??
[   67.154510][ T1847] loop0: detected capacity change from 0 to 512
[   67.162754][ T1847] EXT4-fs: Ignoring removed mblk_io_submit option
[   67.171986][ T1847] EXT4-fs: Ignoring removed mblk_io_submit option
[   67.183011][ T1847] EXT4-fs: Ignoring removed nomblk_io_submit option
[   67.210026][ T1847] EXT4-fs (loop0): Test dummy encryption mode enabled
[   67.223006][ T1847] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   67.239599][ T1847] EXT4-fs (loop0): 1 truncate cleaned up
[   67.371537][ T1030] usb 4-1: USB disconnect, device number 9
[   67.980629][ T1653] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   68.350339][  T315] usb 2-1: new full-speed USB device number 12 using dummy_hcd
[   68.409276][ T1884] netlink: 8 bytes leftover after parsing attributes in process `syz.0.625'.
[   68.507589][   T28] audit: type=1400 audit(1748897925.608:309): avc:  denied  { read } for  pid=1890 comm="syz.0.628" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[   68.542023][  T315] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[   68.542073][  T315] usb 2-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[   68.542101][  T315] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   68.546075][  T315] usb 2-1: config 0 descriptor??
[   68.546382][ T1861] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   68.548734][ T1893] loop3: detected capacity change from 0 to 512
[   68.626418][ T1893] EXT4-fs: Ignoring removed mblk_io_submit option
[   68.626493][ T1893] EXT4-fs: Ignoring removed mblk_io_submit option
[   68.626513][ T1893] EXT4-fs: Ignoring removed nomblk_io_submit option
[   68.635316][ T1893] EXT4-fs (loop3): Test dummy encryption mode enabled
[   68.635337][ T1893] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   68.636885][ T1893] EXT4-fs (loop3): 1 truncate cleaned up
[   68.711143][ T1901] loop0: detected capacity change from 0 to 2048
[   68.751111][ T1901]  loop0: p1 < > p4
[   68.752081][ T1901] loop0: p4 size 8388608 extends beyond EOD, truncated
[   68.839944][  T102]  loop0: p1 < > p4
[   68.840839][  T102] loop0: p4 size 8388608 extends beyond EOD, truncated
[   68.862361][  T429] udevd[429]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[   68.865796][ T1403] udevd[1403]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[   68.874922][  T429] udevd[429]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[   68.877056][ T1403] udevd[1403]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[   68.950761][  T315] hid-generic 0003:04F3:0755.0012: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.1-1/input0
[   69.154874][  T305] usb 2-1: USB disconnect, device number 12
[   69.268132][ T1911] netem: change failed
[   69.299478][ T1691] Bluetooth: hci0: Frame reassembly failed (-84)
[   69.339220][ T1921] loop2: detected capacity change from 0 to 512
[   69.373090][ T1921] EXT4-fs mount: 5 callbacks suppressed
[   69.373112][ T1921] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[   69.405973][ T1921] ext4 filesystem being mounted at /15/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   69.434921][   T28] audit: type=1400 audit(1748897926.538:310): avc:  denied  { setattr } for  pid=1920 comm="syz.2.641" path="/15/file1/file1" dev="loop2" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   69.442421][ T1921] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[   69.522298][ T1929] netlink: 96 bytes leftover after parsing attributes in process `syz.0.643'.
[   69.528017][ T1921] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 31 with error 28
[   69.559128][ T1921] EXT4-fs (loop2): This should not happen!! Data will be lost
[   69.559128][ T1921] 
[   69.561681][ T1654] EXT4-fs (loop3): unmounting filesystem.
[   69.575267][ T1921] EXT4-fs (loop2): Total free blocks count 0
[   69.603451][ T1921] EXT4-fs (loop2): Free/Dirty block details
[   69.618936][ T1921] EXT4-fs (loop2): free_blocks=65280
[   69.630603][ T1921] EXT4-fs (loop2): dirty_blocks=31
[   69.639395][ T1921] EXT4-fs (loop2): Block reservation details
[   69.647173][ T1921] EXT4-fs (loop2): i_reserved_data_blocks=31
[   69.676153][   T28] audit: type=1400 audit(1748897926.778:311): avc:  denied  { shutdown } for  pid=1936 comm="syz.3.647" laddr=::1 lport=255 faddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[   69.760059][ T1674] EXT4-fs (loop2): unmounting filesystem.
[   69.885137][   T28] audit: type=1400 audit(1748897926.988:312): avc:  denied  { unmount } for  pid=1674 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[   69.932207][   T28] audit: type=1400 audit(1748897927.038:313): avc:  denied  { listen } for  pid=1952 comm="syz.2.653" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   69.982136][   T28] audit: type=1400 audit(1748897927.088:314): avc:  denied  { shutdown } for  pid=1954 comm="syz.2.654" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[   70.030245][  T201] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[   70.035623][ T1957] loop2: detected capacity change from 0 to 512
[   70.048952][ T1957] EXT4-fs: Ignoring removed mblk_io_submit option
[   70.060745][ T1957] EXT4-fs: Ignoring removed mblk_io_submit option
[   70.060773][ T1957] EXT4-fs: Ignoring removed nomblk_io_submit option
[   70.061255][ T1957] EXT4-fs (loop2): Test dummy encryption mode enabled
[   70.097424][ T1957] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   70.099434][ T1957] EXT4-fs (loop2): 1 truncate cleaned up
[   70.121452][ T1957] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[   70.211825][  T201] usb 4-1: Using ep0 maxpacket: 32
[   70.213256][  T201] usb 4-1: config 0 interface 0 altsetting 4 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   70.213286][  T201] usb 4-1: config 0 interface 0 has no altsetting 0
[   70.213307][  T201] usb 4-1: New USB device found, idVendor=5543, idProduct=0781, bcdDevice= 0.00
[   70.213324][  T201] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   70.214029][  T201] usb 4-1: config 0 descriptor??
[   70.625708][  T201] uclogic 0003:5543:0781.0013: ignoring exceeding usage max
[   70.627383][  T201] uclogic 0003:5543:0781.0013: unbalanced collection at end of report description
[   70.627623][  T201] uclogic 0003:5543:0781.0013: parse failed
[   70.627669][  T201] uclogic: probe of 0003:5543:0781.0013 failed with error -22
[   70.758485][ T1962] syz.0.657[1962] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   70.758573][ T1962] syz.0.657[1962] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   70.827002][  T305] usb 4-1: USB disconnect, device number 10
[   70.980446][ T1674] EXT4-fs (loop2): unmounting filesystem.
[   70.988600][ T1960] loop1: detected capacity change from 0 to 40427
[   71.007549][ T1970] loop2: detected capacity change from 0 to 16
[   71.017123][ T1970] erofs: (device loop2): mounted with root inode @ nid 36.
[   71.025936][ T1960] F2FS-fs (loop1): invalid crc value
[   71.045079][ T1960] F2FS-fs (loop1): Found nat_bits in checkpoint
[   71.092656][ T1960] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   71.129449][   T28] audit: type=1400 audit(1748897928.228:315): avc:  denied  { write } for  pid=1979 comm="syz.2.664" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   71.135184][ T1980] netlink: 104 bytes leftover after parsing attributes in process `syz.2.664'.
[   71.154291][   T28] audit: type=1400 audit(1748897928.228:316): avc:  denied  { nlmsg_write } for  pid=1979 comm="syz.2.664" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   71.187880][   T28] audit: type=1400 audit(1748897928.228:317): avc:  denied  { nlmsg_read } for  pid=1979 comm="syz.2.664" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   71.204464][  T284] syz-executor: attempt to access beyond end of device
[   71.204464][  T284] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   71.229609][ T1030] usb 1-1: new full-speed USB device number 6 using dummy_hcd
[   71.340321][ T1811] Bluetooth: hci0: command 0x1003 tx timeout
[   71.347694][ T1653] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   71.413143][ T1030] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[   71.464680][ T1030] usb 1-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[   71.471308][ T1996] loop1: detected capacity change from 0 to 512
[   71.487386][ T1998] loop3: detected capacity change from 0 to 512
[   71.496505][ T1030] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   71.522287][ T1998] EXT4-fs: Ignoring removed mblk_io_submit option
[   71.538278][ T1030] usb 1-1: config 0 descriptor??
[   71.547822][ T1996] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.671: casefold flag without casefold feature
[   71.568817][ T1998] EXT4-fs: Ignoring removed mblk_io_submit option
[   71.587225][ T1968] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[   71.626835][ T1998] EXT4-fs: Ignoring removed nomblk_io_submit option
[   71.645933][ T1996] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.671: couldn't read orphan inode 15 (err -117)
[   71.660544][ T1998] EXT4-fs (loop3): Test dummy encryption mode enabled
[   71.668615][ T1998] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   71.689968][ T1996] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[   71.726223][ T1998] EXT4-fs (loop3): 1 truncate cleaned up
[   71.733551][ T1998] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[   71.776945][  T284] EXT4-fs (loop1): unmounting filesystem.
[   72.031092][ T1030] hid-generic 0003:04F3:0755.0014: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.0-1/input0
[   72.209470][   T28] audit: type=1400 audit(1748897929.308:318): avc:  denied  { mount } for  pid=2024 comm="syz.2.682" name="/" dev="sysfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[   72.238844][ T1030] usb 1-1: USB disconnect, device number 6
[   72.262672][   T28] audit: type=1400 audit(1748897929.358:319): avc:  denied  { unmount } for  pid=1674 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1
[   72.396283][ T2040] loop1: detected capacity change from 0 to 128
[   72.416268][  T102] udevd[102]: worker [436] terminated by signal 33 (Unknown signal 33)
[   72.425516][  T102] udevd[102]: worker [436] failed while handling '/devices/virtual/block/loop1'
[   72.426757][ T1654] EXT4-fs (loop3): unmounting filesystem.
[   72.711032][ T2067] loop3: detected capacity change from 0 to 256
[   72.735734][ T2067] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x1aabf3fb, utbl_chksum : 0xe619d30d)
[   72.805069][ T2071] loop0: detected capacity change from 0 to 512
[   72.826203][ T2071] EXT4-fs: Ignoring removed mblk_io_submit option
[   72.845035][ T2071] EXT4-fs: Ignoring removed mblk_io_submit option
[   72.880907][ T2071] EXT4-fs: Ignoring removed nomblk_io_submit option
[   72.895946][ T2071] EXT4-fs (loop0): Test dummy encryption mode enabled
[   72.917719][ T2071] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   72.953829][ T2071] EXT4-fs (loop0): 1 truncate cleaned up
[   72.963962][ T2071] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[   73.089143][ T2088] Zero length message leads to an empty skb
[   73.145700][ T2090] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[   73.153572][ T2090] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[   73.180317][    T6] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[   73.260532][  T201] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[   73.380241][    T6] usb 2-1: Using ep0 maxpacket: 32
[   73.397426][    T6] usb 2-1: config 0 has an invalid interface number: 2 but max is 0
[   73.409750][    T6] usb 2-1: config 0 has no interface number 0
[   73.423343][    T6] usb 2-1: config 0 interface 2 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   73.447859][    T6] usb 2-1: config 0 interface 2 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0
[   73.460284][  T201] usb 4-1: Using ep0 maxpacket: 16
[   73.468473][    T6] usb 2-1: config 0 interface 2 altsetting 4 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   73.484923][  T201] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   73.499607][    T6] usb 2-1: config 0 interface 2 has no altsetting 0
[   73.513412][  T201] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   73.522340][    T6] usb 2-1: New USB device found, idVendor=5543, idProduct=0781, bcdDevice= 0.00
[   73.548084][  T201] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[   73.563415][    T6] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   73.590511][  T201] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[   73.610578][    T6] usb 2-1: config 0 descriptor??
[   73.621750][  T201] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   73.641001][  T201] usb 4-1: config 0 descriptor??
[   73.730514][  T285] EXT4-fs (loop0): unmounting filesystem.
[   74.021789][    T6] uclogic 0003:5543:0781.0015: unknown main item tag 0x0
[   74.028977][    T6] uclogic 0003:5543:0781.0015: unknown main item tag 0x0
[   74.043058][    T6] uclogic 0003:5543:0781.0015: unknown main item tag 0x0
[   74.060008][  T201] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[   74.060256][    T6] uclogic 0003:5543:0781.0015: unknown main item tag 0x0
[   74.077479][  T201] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[   74.090669][    T6] uclogic 0003:5543:0781.0015: unknown main item tag 0x0
[   74.097507][  T201] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[   74.110329][    T6] uclogic 0003:5543:0781.0015: unknown main item tag 0x0
[   74.111548][  T201] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[   74.117643][    T6] uclogic 0003:5543:0781.0015: unknown main item tag 0x0
[   74.117965][    T6] uclogic 0003:5543:0781.0015: No inputs registered, leaving
[   74.126122][  T201] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[   74.150143][  T201] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[   74.151466][    T6] uclogic 0003:5543:0781.0015: hidraw0: USB HID v0.07 Device [HID 5543:0781] on usb-dummy_hcd.1-1/input2
[   74.158751][  T201] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[   74.178471][  T201] microsoft 0003:045E:07DA.0016: unknown main item tag 0x0
[   74.192591][  T201] input: HID 045e:07da as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:045E:07DA.0016/input/input11
[   74.228314][   T24] usb 2-1: USB disconnect, device number 13
[   74.292964][  T201] microsoft 0003:045E:07DA.0016: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[   74.312774][  T201] usb 4-1: USB disconnect, device number 11
[   74.370833][ T2126] fido_id[2126]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[   74.397702][ T2097] loop4: detected capacity change from 0 to 131072
[   74.424884][ T2097] F2FS-fs (loop4): invalid crc value
[   74.462061][ T2097] F2FS-fs (loop4): Found nat_bits in checkpoint
[   74.530261][ T2097] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4
[   74.816706][   T28] kauditd_printk_skb: 5 callbacks suppressed
[   74.816722][   T28] audit: type=1400 audit(1748897931.918:325): avc:  denied  { write } for  pid=2142 comm="syz.3.731" name="usbmon0" dev="devtmpfs" ino=159 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[   74.880675][   T28] audit: type=1400 audit(1748897931.988:326): avc:  denied  { append } for  pid=2148 comm="syz.1.734" name="kvm" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   74.959729][ T2153] loop4: detected capacity change from 0 to 512
[   74.987014][ T2153] EXT4-fs: Ignoring removed mblk_io_submit option
[   75.004732][ T2153] EXT4-fs: Ignoring removed mblk_io_submit option
[   75.011354][ T2153] EXT4-fs: Ignoring removed nomblk_io_submit option
[   75.020726][ T2153] EXT4-fs (loop4): Test dummy encryption mode enabled
[   75.027535][ T2153] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   75.047142][ T2153] EXT4-fs (loop4): 1 truncate cleaned up
[   75.053011][ T2153] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[   75.110916][   T24] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[   75.170274][   T40] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[   75.230256][  T201] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[   75.300356][   T24] usb 4-1: Using ep0 maxpacket: 8
[   75.314445][   T24] usb 4-1: config 179 has an invalid interface number: 65 but max is 0
[   75.323627][   T24] usb 4-1: config 179 has no interface number 0
[   75.331078][   T24] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[   75.343862][   T24] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[   75.356568][   T24] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[   75.368972][   T24] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[   75.381292][   T24] usb 4-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[   75.397746][   T40] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   75.409641][   T24] usb 4-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[   75.420347][   T40] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[   75.430095][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   75.441733][  T201] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[   75.454093][   T40] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[   75.464769][  T201] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   75.476968][ T2144] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[   75.477615][   T40] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[   75.509495][  T201] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   75.520396][   T40] usb 2-1: SerialNumber: syz
[   75.526010][  T201] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[   75.548041][  T201] usb 1-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[   75.558295][  T201] usb 1-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[   75.567610][  T201] usb 1-1: Manufacturer: syz
[   75.580676][  T201] usb 1-1: config 0 descriptor??
[   75.701052][  T315] usb 4-1: USB disconnect, device number 12
[   75.709490][    C1] xpad 4-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[   75.719076][    C1] xpad 4-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[   75.749394][   T40] usb 2-1: 0:2 : does not exist
[   75.759976][   T40] usb 2-1: USB disconnect, device number 14
[   75.841398][  T286] EXT4-fs (loop4): unmounting filesystem.
[   75.884322][   T28] audit: type=1400 audit(1748897932.988:327): avc:  denied  { read } for  pid=2165 comm="syz.4.739" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[   75.961647][  T304] Bluetooth: hci0: Frame reassembly failed (-84)
[   75.970802][ T1403] udevd[1403]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[   75.976007][ T2169] Bluetooth: hci0: Frame reassembly failed (-84)
[   75.997705][  T201] appleir 0003:05AC:8243.0017: unknown main item tag 0x0
[   76.005503][  T201] appleir 0003:05AC:8243.0017: No inputs registered, leaving
[   76.014822][  T201] appleir 0003:05AC:8243.0017: hiddev96,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.0-1/input0
[   76.261180][  T201] usb 1-1: USB disconnect, device number 7
[   76.318945][   T28] audit: type=1400 audit(1748897933.418:328): avc:  denied  { read } for  pid=2184 comm="syz.2.746" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   76.355690][ T2191] loop1: detected capacity change from 0 to 512
[   76.363478][ T2191] EXT4-fs: Ignoring removed mblk_io_submit option
[   76.376035][   T28] audit: type=1400 audit(1748897933.478:329): avc:  denied  { setopt } for  pid=2184 comm="syz.2.746" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[   76.403798][ T2191] EXT4-fs: Ignoring removed mblk_io_submit option
[   76.414691][ T2191] EXT4-fs: Ignoring removed nomblk_io_submit option
[   76.436744][ T2191] EXT4-fs (loop1): Test dummy encryption mode enabled
[   76.448536][ T2197] loop2: detected capacity change from 0 to 1024
[   76.455459][ T2191] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   76.473945][ T2197] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   76.494535][ T2191] EXT4-fs (loop1): 1 truncate cleaned up
[   76.507551][ T2191] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[   76.516294][ T2197] EXT4-fs (loop2): Test dummy encryption mode enabled
[   76.549304][ T2197] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[   76.827330][   T28] audit: type=1400 audit(1748897933.928:330): avc:  denied  { bind } for  pid=2204 comm="syz.0.753" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[   76.862877][   T19] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[   77.061459][   T19] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   77.082638][   T19] usb 3-1: New USB device found, idVendor=050d, idProduct=011b, bcdDevice=6f.a4
[   77.107071][   T19] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   77.137349][   T19] usb 3-1: config 0 descriptor??
[   77.154262][   T19] usb 3-1: bad CDC descriptors
[   77.291061][  T284] EXT4-fs (loop1): unmounting filesystem.
[   77.350605][   T28] audit: type=1400 audit(1748897934.458:331): avc:  denied  { rename } for  pid=2196 comm="syz.2.751" name="file1" dev="loop2" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   77.384163][  T315] usb 3-1: USB disconnect, device number 8
[   77.400501][   T28] audit: type=1400 audit(1748897934.458:332): avc:  denied  { unlink } for  pid=2196 comm="syz.2.751" name="file0" dev="loop2" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[   77.588160][ T2233] loop0: detected capacity change from 0 to 40427
[   77.597948][ T2233] F2FS-fs (loop0): fault_injection options not supported
[   77.605528][ T2233] F2FS-fs (loop0): Image doesn't support compression
[   77.612573][ T1030] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[   77.635366][ T2233] F2FS-fs (loop0): invalid crc value
[   77.647399][ T2233] F2FS-fs (loop0): Found nat_bits in checkpoint
[   77.679597][ T2233] F2FS-fs (loop0): Start checkpoint disabled!
[   77.687417][ T2233] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[   77.713225][ T2233] syz.0.766: attempt to access beyond end of device
[   77.713225][ T2233] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   77.727235][ T2242] loop1: detected capacity change from 0 to 256
[   77.730815][ T2233] syz.0.766: attempt to access beyond end of device
[   77.730815][ T2233] loop0: rw=0, sector=45096, nr_sectors = 8 limit=40427
[   77.779400][ T1691] kworker/u4:6: attempt to access beyond end of device
[   77.779400][ T1691] loop0: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[   77.800240][ T1030] usb 4-1: Using ep0 maxpacket: 16
[   77.829041][ T1030] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   77.847011][ T1030] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[   77.864769][ T1030] usb 4-1: config 0 interface 0 has no altsetting 0
[   77.871658][ T1030] usb 4-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[   77.895607][ T1030] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   77.911271][ T1030] usb 4-1: config 0 descriptor??
[   77.930753][ T1674] EXT4-fs (loop2): unmounting filesystem.
[   77.969934][ T2248] loop2: detected capacity change from 0 to 512
[   77.977620][ T2248] EXT4-fs: Ignoring removed mblk_io_submit option
[   77.987112][ T1811] Bluetooth: hci0: command 0x1003 tx timeout
[   77.990259][ T1653] Bluetooth: hci0: Opcode 0x1003 failed: -110
[   77.997319][ T2248] EXT4-fs: Ignoring removed mblk_io_submit option
[   78.028896][ T2250] netlink: 'syz.4.773': attribute type 1 has an invalid length.
[   78.047058][ T2248] EXT4-fs: Ignoring removed nomblk_io_submit option
[   78.090013][ T2248] EXT4-fs (loop2): Test dummy encryption mode enabled
[   78.110289][ T2248] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   78.136905][ T2248] EXT4-fs (loop2): 1 truncate cleaned up
[   78.159013][  T286] ------------[ cut here ]------------
[   78.162631][ T2248] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[   78.164881][  T286] WARNING: CPU: 0 PID: 286 at fs/inode.c:332 drop_nlink+0xc5/0x110
[   78.182012][  T286] Modules linked in:
[   78.186140][  T286] CPU: 0 PID: 286 Comm: syz-executor Not tainted 6.1.138-syzkaller-00049-g5b87067cdd87 #0
[   78.196647][  T286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   78.207395][  T286] RIP: 0010:drop_nlink+0xc5/0x110
[   78.212589][  T286] Code: 1b 48 8d bb b8 04 00 00 be 08 00 00 00 e8 63 ee f0 ff f0 48 ff 83 b8 04 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 1b 93 ac ff <0f> 0b eb 86 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 5e ff ff ff 4c
[   78.233259][  T286] RSP: 0018:ffffc9000dabfc38 EFLAGS: 00010293
[   78.239571][  T286] RAX: ffffffff81c35df5 RBX: ffff8881200871a8 RCX: ffff888121251440
[   78.247941][  T286] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   78.256246][  T286] RBP: ffffc9000dabfc60 R08: 0000000000000004 R09: 0000000000000003
[   78.264584][  T286] R10: fffff52001b57f78 R11: 1ffff92001b57f78 R12: dffffc0000000000
[   78.272805][  T286] R13: 1ffff11024010e3e R14: ffff8881200871f0 R15: 0000000000000000
[   78.281137][  T286] FS:  000055557a74a500(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[   78.290653][  T286] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   78.298279][  T286] CR2: 000055557a76d4e8 CR3: 0000000130e5a000 CR4: 00000000003506b0
[   78.307119][  T286] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   78.316653][  T286] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   78.325167][  T286] Call Trace:
[   78.330456][  T286]  <TASK>
[   78.333856][  T286]  shmem_rmdir+0x5b/0x90
[   78.338503][  T286]  vfs_rmdir+0x393/0x500
[   78.343454][  T286]  incfs_kill_sb+0x105/0x220
[   78.348847][  T286]  deactivate_locked_super+0xb5/0x120
[   78.354523][  T286]  deactivate_super+0xaf/0xe0
[   78.359892][  T286]  cleanup_mnt+0x45f/0x4e0
[   78.365621][  T286]  __cleanup_mnt+0x19/0x20
[   78.370906][  T286]  task_work_run+0x1db/0x240
[   78.376080][  T286]  ? __cfi_task_work_run+0x10/0x10
[   78.381539][  T286]  ? __x64_sys_umount+0x125/0x160
[   78.387583][  T286]  ? __cfi___x64_sys_umount+0x10/0x10
[   78.393870][  T286]  exit_to_user_mode_loop+0x9b/0xb0
[   78.399567][  T286]  exit_to_user_mode_prepare+0x5a/0xa0
[   78.405367][  T286]  syscall_exit_to_user_mode+0x1a/0x30
[   78.411380][  T286]  do_syscall_64+0x58/0xa0
[   78.415947][  T286]  ? clear_bhb_loop+0x15/0x70
[   78.420780][  T286]  ? clear_bhb_loop+0x15/0x70
[   78.426111][  T286]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   78.432345][  T286] RIP: 0033:0x7fe0d538fc97
[   78.436971][  T286] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   78.457777][  T286] RSP: 002b:00007ffdf2e031a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   78.466808][  T286] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fe0d538fc97
[   78.475964][  T286] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffdf2e03260
[   78.484365][  T286] RBP: 00007ffdf2e03260 R08: 0000000000000000 R09: 0000000000000000
[   78.492588][  T286] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffdf2e042f0
[   78.500711][  T286] R13: 00007fe0d541089d R14: 000000000001312c R15: 00007ffdf2e04330
[   78.508721][  T286]  </TASK>
[   78.511799][  T286] ---[ end trace 0000000000000000 ]---
[   78.518632][ T1674] EXT4-fs (loop2): unmounting filesystem.
[   78.518755][ T1030] hid (null): unknown global tag 0xd
[   78.529971][ T1030] hid (null): unknown global tag 0xc
[   78.530567][  T286] ==================================================================
[   78.536127][ T1030] hid (null): unknown global tag 0xc
[   78.545206][  T286] BUG: KASAN: null-ptr-deref in ihold+0x20/0x60
[   78.545250][  T286] Write of size 4 at addr 0000000000000170 by task syz-executor/286
[   78.545267][  T286] 
[   78.545274][  T286] CPU: 1 PID: 286 Comm: syz-executor Tainted: G        W          6.1.138-syzkaller-00049-g5b87067cdd87 #0
[   78.558030][ T1030] hid-generic 0003:060B:500A.0018: unknown main item tag 0x0
[   78.566113][  T286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   78.566134][  T286] Call Trace:
[   78.566141][  T286]  <TASK>
[   78.566150][  T286]  __dump_stack+0x21/0x24
[   78.566184][  T286]  dump_stack_lvl+0xee/0x150
[   78.566211][  T286]  ? __cfi_dump_stack_lvl+0x8/0x8
[   78.566239][  T286]  ? ihold+0x20/0x60
[   78.566267][  T286]  ? ihold+0x20/0x60
[   78.566295][  T286]  print_report+0x3d/0x60
[   78.566319][  T286]  kasan_report+0x122/0x150
[   78.566341][  T286]  ? ihold+0x20/0x60
[   78.566371][  T286]  kasan_check_range+0x280/0x290
[   78.566393][  T286]  __kasan_check_write+0x14/0x20
[   78.569208][ T1030] hid-generic 0003:060B:500A.0018: unknown main item tag 0x0
[   78.582249][  T286]  ihold+0x20/0x60
[   78.582299][  T286]  vfs_rmdir+0x25f/0x500
[   78.582322][  T286]  incfs_kill_sb+0x105/0x220
[   78.582342][  T286]  deactivate_locked_super+0xb5/0x120
[   78.582369][  T286]  deactivate_super+0xaf/0xe0
[   78.582389][  T286]  cleanup_mnt+0x45f/0x4e0
[   78.589970][ T1030] hid-generic 0003:060B:500A.0018: unknown main item tag 0x0
[   78.600622][  T286]  __cleanup_mnt+0x19/0x20
[   78.600663][  T286]  task_work_run+0x1db/0x240
[   78.600687][  T286]  ? __cfi_task_work_run+0x10/0x10
[   78.600710][  T286]  ? __x64_sys_umount+0x125/0x160
[   78.600732][  T286]  ? __cfi___x64_sys_umount+0x10/0x10
[   78.600754][  T286]  exit_to_user_mode_loop+0x9b/0xb0
[   78.600774][  T286]  exit_to_user_mode_prepare+0x5a/0xa0
[   78.600793][  T286]  syscall_exit_to_user_mode+0x1a/0x30
[   78.600824][  T286]  do_syscall_64+0x58/0xa0
[   78.600850][  T286]  ? clear_bhb_loop+0x15/0x70
[   78.604662][ T1030] hid-generic 0003:060B:500A.0018: unknown main item tag 0x0
[   78.607208][  T286]  ? clear_bhb_loop+0x15/0x70
[   78.612177][ T1030] hid-generic 0003:060B:500A.0018: unknown main item tag 0x0
[   78.617003][  T286]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   78.617049][  T286] RIP: 0033:0x7fe0d538fc97
[   78.622369][ T1030] hid-generic 0003:060B:500A.0018: unknown main item tag 0x0
[   78.626147][  T286] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   78.626169][  T286] RSP: 002b:00007ffdf2e031a8 EFLAGS: 00000246
[   78.630208][ T1030] hid-generic 0003:060B:500A.0018: unknown main item tag 0x0
[   78.634706][  T286]  ORIG_RAX: 00000000000000a6
[   78.634724][  T286] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fe0d538fc97
[   78.634739][  T286] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffdf2e03260
[   78.634751][  T286] RBP: 00007ffdf2e03260 R08: 0000000000000000 R09: 0000000000000000
[   78.639653][ T1030] hid-generic 0003:060B:500A.0018: unknown main item tag 0x0
[   78.643477][  T286] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffdf2e042f0
[   78.643507][  T286] R13: 00007fe0d541089d R14: 000000000001312c R15: 00007ffdf2e04330
[   78.643529][  T286]  </TASK>
[   78.643536][  T286] ==================================================================
[   78.645691][  T201] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[   78.649844][ T1030] hid-generic 0003:060B:500A.0018: unknown main item tag 0x0
[   78.767460][  T286] Disabling lock debugging due to kernel taint
[   78.774931][ T1030] hid-generic 0003:060B:500A.0018: unknown main item tag 0x0
[   78.784359][  T286] BUG: kernel NULL pointer dereference, address: 0000000000000170
[   78.936979][  T286] #PF: supervisor write access in kernel mode
[   78.943136][  T286] #PF: error_code(0x0002) - not-present page
[   78.949158][  T286] PGD 133421067 P4D 133421067 PUD 0 
[   78.954646][  T286] Oops: 0002 [#1] PREEMPT SMP KASAN
[   78.959946][  T286] CPU: 1 PID: 286 Comm: syz-executor Tainted: G    B   W          6.1.138-syzkaller-00049-g5b87067cdd87 #0
[   78.972949][  T286] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   78.984884][  T286] RIP: 0010:ihold+0x26/0x60
[   78.990117][  T286] Code: 33 36 7c df 55 48 89 e5 41 56 53 48 89 fb e8 81 8a ac ff 48 8d bb 70 01 00 00 be 04 00 00 00 e8 a0 e5 f0 ff 41 be 01 00 00 00 <f0> 44 0f c1 b3 70 01 00 00 41 ff c6 bf 02 00 00 00 44 89 f6 e8 71
[   79.011777][  T286] RSP: 0018:ffffc9000dabfc78 EFLAGS: 00010246
[   79.019112][  T286] RAX: ffff888121251400 RBX: 0000000000000000 RCX: ffff888121251440
[   79.027730][  T286] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   79.037054][  T286] RBP: ffffc9000dabfc88 R08: dffffc0000000000 R09: fffffbfff0f2cafd
[   79.046023][  T286] R10: fffffbfff0f2cafd R11: 1ffffffff0f2cafc R12: ffff8881200871b4
[   79.055285][  T286] R13: dffffc0000000000 R14: 0000000000000001 R15: 0000000000000000
[   79.065150][  T286] FS:  000055557a74a500(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[   79.075777][  T286] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   79.083796][  T286] CR2: 0000000000000170 CR3: 0000000130e5a000 CR4: 00000000003506a0
[   79.092828][  T286] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   79.102908][  T286] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   79.112049][  T286] Call Trace:
[   79.115893][  T286]  <TASK>
[   79.119324][  T286]  vfs_rmdir+0x25f/0x500
[   79.124424][  T286]  incfs_kill_sb+0x105/0x220
[   79.129379][  T286]  deactivate_locked_super+0xb5/0x120
[   79.135071][  T286]  deactivate_super+0xaf/0xe0
[   79.141131][  T286]  cleanup_mnt+0x45f/0x4e0
[   79.146247][  T286]  __cleanup_mnt+0x19/0x20
[   79.151045][  T286]  task_work_run+0x1db/0x240
[   79.157003][  T286]  ? __cfi_task_work_run+0x10/0x10
[   79.162876][  T286]  ? __x64_sys_umount+0x125/0x160
[   79.168356][  T286]  ? __cfi___x64_sys_umount+0x10/0x10
[   79.175055][  T286]  exit_to_user_mode_loop+0x9b/0xb0
[   79.180560][  T286]  exit_to_user_mode_prepare+0x5a/0xa0
[   79.186624][  T286]  syscall_exit_to_user_mode+0x1a/0x30
[   79.192469][  T286]  do_syscall_64+0x58/0xa0
[   79.197102][  T286]  ? clear_bhb_loop+0x15/0x70
[   79.202051][  T286]  ? clear_bhb_loop+0x15/0x70
[   79.207291][  T286]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   79.214081][  T286] RIP: 0033:0x7fe0d538fc97
[   79.218612][  T286] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[   79.239312][  T286] RSP: 002b:00007ffdf2e031a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   79.248725][  T286] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fe0d538fc97
[   79.257854][  T286] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffdf2e03260
[   79.266212][  T286] RBP: 00007ffdf2e03260 R08: 0000000000000000 R09: 0000000000000000
[   79.274821][  T286] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffdf2e042f0
[   79.284278][  T286] R13: 00007fe0d541089d R14: 000000000001312c R15: 00007ffdf2e04330
[   79.293716][  T286]  </TASK>
[   79.296951][  T286] Modules linked in:
[   79.301644][  T286] CR2: 0000000000000170
[   79.305979][  T286] ---[ end trace 0000000000000000 ]---
[   79.311735][  T286] RIP: 0010:ihold+0x26/0x60
[   79.316623][  T286] Code: 33 36 7c df 55 48 89 e5 41 56 53 48 89 fb e8 81 8a ac ff 48 8d bb 70 01 00 00 be 04 00 00 00 e8 a0 e5 f0 ff 41 be 01 00 00 00 <f0> 44 0f c1 b3 70 01 00 00 41 ff c6 bf 02 00 00 00 44 89 f6 e8 71
[   79.337837][  T286] RSP: 0018:ffffc9000dabfc78 EFLAGS: 00010246
[   79.344378][  T286] RAX: ffff888121251400 RBX: 0000000000000000 RCX: ffff888121251440
[   79.352655][  T286] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   79.360809][  T286] RBP: ffffc9000dabfc88 R08: dffffc0000000000 R09: fffffbfff0f2cafd
[   79.368976][  T286] R10: fffffbfff0f2cafd R11: 1ffffffff0f2cafc R12: ffff8881200871b4
[   79.377354][  T286] R13: dffffc0000000000 R14: 0000000000000001 R15: 0000000000000000
[   79.385647][  T286] FS:  000055557a74a500(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[   79.395200][  T286] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   79.401905][  T286] CR2: 0000000000000170 CR3: 0000000130e5a000 CR4: 00000000003506a0
[   79.410060][  T286] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   79.418049][  T286] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   79.426036][  T286] Kernel panic - not syncing: Fatal exception
[   79.432638][  T286] Kernel Offset: disabled
[   79.437210][  T286] Rebooting in 86400 seconds..