last executing test programs:

8.944694007s ago: executing program 4 (id=3883):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x80801c, &(0x7f0000000f40), 0x1, 0x503, &(0x7f0000000880)="$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")
creat(&(0x7f0000000140)='./bus\x00', 0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x46100)
write$cgroup_type(0xffffffffffffffff, &(0x7f0000000200), 0xf642e7e)
r0 = openat$binfmt_register(0xffffff9c, 0x0, 0x1, 0x0)
write(r0, &(0x7f0000000280)="493220ad06fd95cc12d49f", 0xb)
r1 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000080)='.pending_reads\x00', 0x1a10c1, 0x0)
r2 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/partitions\x00', 0x0, 0x0)
read$FUSE(r2, &(0x7f000000ac40)={0x2020, 0x0, 0x0, <r3=>0x0, <r4=>0x0}, 0x2020)
fchown(r1, r3, r4)
open(0x0, 0x60142, 0x0)
fallocate(0xffffffffffffffff, 0x8, 0x0, 0x1000)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xe, 0x4, 0x4, 0xc44a, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2000003, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

8.744739655s ago: executing program 4 (id=3890):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000002c0)={<r0=>0xffffffffffffffff})
r1 = openat$selinux_mls(0xffffff9c, &(0x7f0000000040), 0x0, 0x0)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x3000000, 0x4000010, r1, 0xdc413000)
bind$unix(r0, &(0x7f0000000300)=@file={0x1, './file0\x00'}, 0x6e)
setxattr$trusted_overlay_redirect(&(0x7f0000000440)='./file0\x00', &(0x7f0000000480), 0x0, 0x40000, 0x0)
read$FUSE(r1, &(0x7f00000039c0)={0x2020}, 0x2020)

7.609994169s ago: executing program 4 (id=3891):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(0xffffffffffffffff, 0x4138ae84, &(0x7f0000000c40)=@x86={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x4})
r1 = syz_open_dev$usbfs(&(0x7f0000000000), 0x90f, 0x102)
ioctl$USBDEVFS_CONTROL(r1, 0xc0185500, &(0x7f0000000080)={0xa3, 0x0, 0x0, 0x0, 0x2f, 0x0, 0x0})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
utimensat(0xffffffffffffff9c, 0x0, 0x0, 0x8c)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2e)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r6=>0xffffffffffffffff})
splice(r6, 0x0, r5, 0x0, 0x1, 0x0)
fcntl$setpipe(r5, 0x407, 0x8000000000)
close_range(r5, 0xffffffffffffffff, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r7 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
r8 = dup(r7)
syz_kvm_setup_cpu$x86(r8, 0xffffffffffffffff, &(0x7f0000fd7000/0x18000)=nil, &(0x7f00000008c0)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_MSRS(r8, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB])
ioctl$KVM_SET_LAPIC(r7, 0x4400ae8f, 0x0)
r9 = socket(0x10, 0x803, 0x0)
write(r9, &(0x7f0000000040)="2600000022004701050007108980e8ff06006d20002b", 0x16)
setsockopt$sock_int(r9, 0x1, 0x8, 0x0, 0x0)

3.978541763s ago: executing program 4 (id=3911):
r0 = syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000500)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x0, 0x50, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd, 0x24, 0xf, 0x1, 0xbe}, {0x6, 0x24, 0x1a, 0x0, 0xc}}, {{0x9, 0x5, 0x81, 0x3, 0x40}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x200}}, {{0x9, 0x5, 0x3, 0x2, 0x200}}}}}}}]}}, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000340)={0x44, 0x0, 0x0, 0x0, &(0x7f0000000680)={0x20, 0x80, 0x1c, {0x0, 0x0, 0x1000, 0x0, 0xffff, 0x2, 0xffff, 0xffffff01}}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, &(0x7f0000000080)={0x14, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)
syz_usb_control_io$cdc_ncm(r0, &(0x7f0000000100)={0x14, &(0x7f0000000000)={0x0, 0x21, 0x2, {0x2, 0x10}}, &(0x7f00000000c0)={0x0, 0x3, 0x1a, {0x1a}}}, &(0x7f0000000580)={0x44, &(0x7f0000000140)={0x0, 0x13, 0xe9, "3cbe4062014e04a0f9dccebf46332c5853d8561cf34d3845f4a2e3aaa5616232069bb50d55186fbe5e5e8f7bce051846b78c398b67b8c80e7f421af21a2f374877cf5cd6dd4d7a8194cfdc301bc5c94c8d82ec2a79313c72ee0c8169e337e6ceb74386b13aa6bb110ef572fb8c83771792e6881df2758bef6cc42ced593663f6cfb33508d3a7860d95ca2e2c496df2f2ec8357853f494c25abcc8ab3e4d42554ad23220481366fb378777c13b29963fc82cbe488f07108535336f2910637fccf3997c630c98bec5578a789f3225193fdce58976053a09f5f468237a94faba4d747425d5437edf61e7d"}, 0x0, 0x0, &(0x7f0000000300)={0x20, 0x80, 0x1c, {0x1, 0x3, 0x3, 0xf, 0x2, 0x2afd, 0x0, 0x9cfc, 0x5, 0x8, 0x6, 0x4}}, &(0x7f00000003c0)={0x20, 0x85, 0x4}, &(0x7f0000000400)={0x20, 0x83, 0x2, 0x1}, &(0x7f0000000440)={0x20, 0x87, 0x2, 0x7}, &(0x7f0000000480)={0x20, 0x89, 0x2}})

3.947210596s ago: executing program 2 (id=3912):
syz_mount_image$vfat(&(0x7f0000003880), &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="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"], 0x6, 0x2a6, &(0x7f0000000440)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000080)={'#! ', '', [{0x20, '/dev/snd/controlC#\x00'}, {0x20, '\xfb\xb3I\xbc9/dev/sseq\x00'}, {0x20, '#! y\x1aJ\xc0SBF\xd00\xe1g\x10JK\xf8\x94R\x83Z\xfc\xacs^\\\xff.!%h\xab\x18zt\xbf\xe4\xce\xf2\xc7\x19\xc2p\xaf\xa9#4\xc8\xf8\xba'}]}, 0x5c)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10012, r0, 0x0)
creat(&(0x7f0000000040)='./bus\x00', 0x0)

3.896861491s ago: executing program 0 (id=3913):
syz_mount_image$ext4(&(0x7f0000000b00)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x58, &(0x7f0000000b40)={[{@dioread_nolock}, {@errors_remount}, {@jqfmt_vfsv0}, {@acl}, {@usrjquota}, {@noinit_itable}, {@norecovery}]}, 0x1, 0x799, &(0x7f00000001c0)="$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")
rmdir(&(0x7f0000000740)='./file0\x00')
setresuid(0x0, 0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000001800)={0x0, 0x0, &(0x7f0000001780)=[{&(0x7f0000000000)=ANY=[@ANYBLOB="5c00000018000900000000000000000004000080450011803e58b7ab319e4dc9978d61dff31210c35491eccd3141ea5e13bb1abc1383162f"], 0x5c}], 0x1}, 0x0)

3.782103442s ago: executing program 0 (id=3915):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x10e, &(0x7f0000000d00)={[{@errors_remount}, {@nodelalloc}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@debug}, {@data_err_ignore}, {@quota}]}, 0x3, 0x43e, &(0x7f0000000340)="$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")

3.732709726s ago: executing program 2 (id=3916):
r0 = epoll_create1(0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000100)={0x4})
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r0, &(0x7f0000000000)={0xa0000001})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x7, 0x4, 0x8, 0x1005, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'wlan1\x00'})
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000001c0)={r4, &(0x7f0000000140), 0x0}, 0x20)
ppoll(&(0x7f0000000200)=[{r3, 0x201}], 0x1, 0x0, 0x0, 0xfe7a)

3.489290269s ago: executing program 3 (id=3917):
mkdir(&(0x7f0000000100)='./file0\x00', 0x0)
mount$incfs(&(0x7f0000000340)='./file0\x00', &(0x7f0000000140)='./file0\x00', &(0x7f0000000100), 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
io_submit(0x0, 0x1, &(0x7f0000000180)=[&(0x7f0000000000)={0x0, 0x0, 0x0, 0x7, 0x0, r0, &(0x7f00000003c0), 0x0, 0x4, 0x0, 0x1}])
r1 = openat$incfs(r0, &(0x7f0000000080)='.pending_reads\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xc0386723, 0x20000000)

3.457789591s ago: executing program 0 (id=3918):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000004c0)={0x38, 0x4, 0x8, 0x301, 0x0, 0x0, {0xa, 0x0, 0x3}, [@CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x11}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x2f}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x6006}, @CTA_TIMEOUT_DATA={0xc, 0x4, 0x0, 0x1, @udp=[@CTA_TIMEOUT_UDP_REPLIED={0x8, 0x2, 0x1, 0x0, 0x50db}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x4}, 0x44010)

3.376721499s ago: executing program 0 (id=3919):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x200000, &(0x7f0000000280)={[{@min_batch_time={'min_batch_time', 0x3d, 0x1}}, {}, {@nojournal_checksum}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@dioread_nolock}, {@nodelalloc}, {@acl}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x800343}}]}, 0xfd, 0x587, &(0x7f0000001240)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
pwrite64(r0, &(0x7f0000000140)='2', 0xfdef, 0xfecc)

3.376092429s ago: executing program 3 (id=3920):
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000100)={[{@jqfmt_vfsv1}, {@i_version}, {@data_err_abort}, {@noload}, {@orlov}, {@nobarrier}]}, 0xfe, 0x246, &(0x7f0000000ac0)="$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")
r0 = creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
keyctl$setperm(0x5, 0x0, 0x1080420)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
link(&(0x7f0000001240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000bc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
rename(&(0x7f0000000440)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
recvmmsg(r0, 0x0, 0x0, 0x10022, &(0x7f0000002f00)={0x77359400})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x7a05, 0x1700)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
r5 = socket$inet_udp(0x2, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xe, 0x6, &(0x7f0000000000)=ANY=[@ANYBLOB="050000000000000071114f0000000000851000000200000085000000000000009500000000e9ff009500a50500000000"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
ioctl$sock_inet_SIOCSIFDSTADDR(r5, 0x8918, 0x0)
write$cgroup_type(r4, &(0x7f0000000000), 0x248800)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
mount$overlay(0x0, &(0x7f0000000540)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000280), 0x983480, &(0x7f0000000640)={[{@uuid_null}], [{@smackfshat}, {@smackfsroot={'smackfsroot', 0x3d, '#! '}}, {@uid_lt}, {@smackfsfloor={'smackfsfloor', 0x3d, '\x00'}}, {@smackfsfloor}, {@fowner_gt}, {@func={'func', 0x3d, 'POLICY_CHECK'}}, {@defcontext={'defcontext', 0x3d, 'staff_u'}}, {@audit}]})
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)

3.173622588s ago: executing program 0 (id=3921):
request_key(&(0x7f0000002a40)='asymmetric\x00', 0x0, 0x0, 0x0)

3.117657733s ago: executing program 0 (id=3922):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000180)=ANY=[@ANYBLOB="12010100000000105801000100000000000109022400010000002009040000010300000009210000000122dc0109058903"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x3, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="b4050000000000006110b0000000000063012f0000000000950009000000000092195f7e634cc668e2d24c5560b846bea7dbe4bffe455c187b98133bf33647ae4e34fd130fd22c06e32956cc1dee90d41f97fe558712cb9e8863b1eb5cbed5c1dcb9422f16c8197f9804c3ce0e5f8d96cc36b25cd37798ab470059141fc09d47861657d1abebd286a40800277c85da"], 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_usb_connect$cdc_ecm(0x5, 0x4d, &(0x7f00000001c0)={{0x12, 0x1, 0x300, 0x2, 0x0, 0x0, 0x8, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x3b, 0x1, 0x1, 0x81, 0xa0, 0x2, [{{0x9, 0x4, 0x0, 0x1, 0x3, 0x2, 0x6, 0x0, 0x6, {{0x5}, {0x5, 0x24, 0x0, 0xfffe}, {0xd, 0x24, 0xf, 0x1, 0x4, 0x2, 0x5, 0xff}}, {[], {{0x9, 0x5, 0x82, 0x2, 0x8, 0x6, 0x81, 0x6}}, {{0x9, 0x5, 0x3, 0x2, 0x3ff, 0xb, 0x2, 0xbf}}}}}]}}]}}, 0x0)
syz_usb_connect$printer(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="12011003000012002505a8a4f0"], 0x0)
syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0}, 0x0)

2.847039498s ago: executing program 2 (id=3923):
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x380001a, &(0x7f0000000e40)=ANY=[@ANYBLOB="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", @ANYBLOB="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"], 0xd, 0x2a0, &(0x7f0000000840)="$eJzs3c9qM1UUAPAzSZpGXSSIG0VwQBeuyle3bhrlE8SulAjqQoNtQZJQaCFgBWNXfQKXvoeP4MaNbyC4Fdy1i8rIZGaahKZ/qDGF+vutDnPnnHsyt6SrnPnq9dFg7zCJ0/Pfo9VKorYTO3GRRCdqUfkhGgEAPB0XWRZ/ZQ/JbNRW3w0AsA7F///CY/cCAKzHJ599/lF3d/f5x2nailfbZ+NeEhGjs3GvWO8exDcxjP14Fu24jMiuFPEHH+4+j0aa68Rbo8m4l2eOvvy1rN/9M2Kavx3t6CzP304Lc/mTcW8jXow0ugcbVavteGV5/jtL8qPXjLffnOt/K9rx29dxGMPYizx3lv/9dpq+n/14/t0X+TZ5flKL3ub0vpmsvs5zAQAAAAAAAAAAAAAAAAAAAADgadtK06QY3zOd35NfKufv1C+n61tppbM4n6fIT6pCxXygLMoRPZMsfqrm6zxL0zQrb5zlN+K1hhcLAAAAAAAAAAAAAAAAAAAAQO7425NBfzjcP1pJUE0DqH7W/9A6O3NX3oiTQb9+c8HN++81P20g7/XWm6PRiBU9lruCF/J+Vl55c3a4n0YRVAez0r1efq8oejLop+VS9ZAH/eSuvVrVwf08v9SMf9tYNv2TuMwWz7R11epiVnNFT6P50tKlv7Msu1+dd/8ozqi8kkxHbNxv940yWPoB86B1/Sx+ubngjV8Z9ZV88QAAAAAAAAAAAAAAAAAAANfMfvS7ZPH01tTaf9YUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKzZ7P3/VdCKiMUr14JJmXzbPWXQjKPjR/6IAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/A/8EwAA//9s0FAH")
mkdir(&(0x7f0000000340)='./bus/file0\x00', 0x2)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./bus\x00', 0x0, &(0x7f0000000240), 0x21, 0x4b5, &(0x7f0000001080)="$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")
creat(&(0x7f0000000040)='./bus\x00', 0x0)

2.732799068s ago: executing program 2 (id=3924):
r0 = gettid()
rt_sigprocmask(0x0, &(0x7f0000000040)={[0xfffffffffffffffb]}, 0x0, 0x8)
tkill(r0, 0x25)
r1 = gettid()
tkill(r1, 0x14)
rt_sigsuspend(&(0x7f0000000080)={[0x2]}, 0x8)

2.344106364s ago: executing program 3 (id=3925):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000240), 0x25, 0x4b6, &(0x7f0000000540)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000180))
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
write$binfmt_script(r1, &(0x7f0000000280)={'#! ', './file0'}, 0xb)

2.216437196s ago: executing program 3 (id=3926):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./bus\x00', 0x20081e, &(0x7f0000000040)={[{@nodelalloc}, {@orlov}, {@auto_da_alloc}]}, 0x1, 0x4ef, &(0x7f00000003c0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)
ftruncate(r0, 0x2ff8)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuset.effective_mems\x00', 0x275a, 0x0)
write$cgroup_int(r1, &(0x7f0000000380), 0x101bf)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000080)={0x0, r0})

2.031665753s ago: executing program 3 (id=3928):
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
syz_open_procfs$namespace(0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x2000480, &(0x7f0000000280), 0x1, 0x76a, &(0x7f0000001b00)="$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")
r0 = open(&(0x7f0000000100)='./bus\x00', 0x143142, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000500), &(0x7f0000000540))
r1 = open(&(0x7f0000000000)='./bus\x00', 0x60142, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
gettid()
syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
move_mount(0xffffffffffffffff, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
write$FUSE_OPEN(r1, &(0x7f0000000080)={0x20}, 0x20)
sendfile(r1, r0, 0x0, 0x2c62)
sched_setaffinity(0x0, 0x0, 0x0)
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000500)=ANY=[@ANYBLOB="80c3e800", @ANYRES16=0x0, @ANYBLOB="010000000000000000003b0000000800", @ANYRES32=0x0, @ANYBLOB="2a003300d0000000ffffffffffff080211000000505050505050000004040000000076060000000000000000"], 0x48}}, 0x0)
connect$inet6(r3, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @private=0xa010102}}, 0x1c)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_misc(r4, &(0x7f0000000480), 0xed)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r4, 0x0)
r5 = socket$inet6_udplite(0xa, 0x2, 0x88)
getsockopt$inet6_buf(r3, 0x29, 0x3d, 0x0, &(0x7f0000000080))
r6 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000080)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x61, 0x10, 0x6f}, [@ldst={0x6, 0x0, 0x5}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$INCFS_IOC_PERMIT_FILL(r6, 0x40046721, &(0x7f0000000140)={r5})

1.997830986s ago: executing program 1 (id=3929):
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="020100090e000000030000000000000405000600000000000a0000000000000400000000000000000000002100000000000100000000000002000100010000000000010200fd0000050005"], 0x70}}, 0x0)
sendmmsg(r0, &(0x7f0000000180), 0x3ef, 0x0)

1.938616431s ago: executing program 1 (id=3930):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000005c0)=ANY=[@ANYBLOB="5000000001010102000000000000000002000000300002802c0001800d000300ff01000000000000000000000000000114000400fe8000000000000000000000000000bb0c0019800800020099"], 0x50}}, 0x0)

1.938076422s ago: executing program 1 (id=3931):
r0 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000001680)={&(0x7f0000000980)=@newtaction={0x14, 0x32, 0x53b}, 0x14}, 0x1, 0x0, 0x0, 0x48004}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
fsetxattr$security_capability(0xffffffffffffffff, &(0x7f00000000c0), &(0x7f0000000100)=@v2, 0x14, 0x0)
fchown(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$key(0xf, 0x3, 0x2)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r2, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
bind$packet(0xffffffffffffffff, &(0x7f0000000140)={0x11, 0x19, 0x0, 0x1, 0x40}, 0x14)
r3 = socket$inet6(0xa, 0x3, 0x7)
connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0x4, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@dev={0xfe, 0x80, '\x00', 0x39}, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x20}, {0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x4, 0x3}, {}, 0x0, 0x6e6bb9, 0x1}, {{@in=@broadcast, 0xfffffffc, 0x33}, 0x0, @in=@empty, 0x0, 0x3, 0x2, 0x7}}, 0xe8)
syz_socket_connect_nvme_tcp()
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x3000)
getdents64(0xffffffffffffffff, &(0x7f0000000f80)=""/4096, 0x1000)
openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
sendmmsg(r3, &(0x7f0000000480), 0x2e9, 0x0)
sendmsg$key(r1, &(0x7f00000001c0)={0x500, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="020100000a0000000600000000000000030006000000000002000000ffffffff0000000000000000030005000000000002000000ac1e00010000000000000000020013"], 0x50}}, 0x0)

1.896725075s ago: executing program 1 (id=3932):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0xfff)
syz_emit_ethernet(0x4e, &(0x7f0000002280)={@local, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x32}, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "1500", 0x18, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x6, 0x2, 0x0, 0x0, 0x9, {[@sack_perm={0x4, 0x2}]}}}}}}}}, 0x0)

1.786542695s ago: executing program 2 (id=3933):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x89}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mmap(&(0x7f0000feb000/0x4000)=nil, 0x4000, 0x9, 0x32, 0xffffffffffffffff, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000000)=@gettaction={0x3c, 0x32, 0x301, 0x0, 0x0, {}, [@action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8}, @action_gd=@TCA_ACT_TAB={0x14, 0x1, [{0x10, 0x0, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'police\x00'}}]}, @action_dump_flags=@TCA_ROOT_FLAGS={0xc}]}, 0x3c}}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='map_files\x00')
getdents64(r4, &(0x7f0000002f40)=""/4098, 0x1002)
socket$nl_route(0x10, 0x3, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newlink={0x30, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_MASTER={0x8}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0)

1.712616722s ago: executing program 1 (id=3934):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
rt_sigprocmask(0x0, &(0x7f0000000480)={[0xfffffffffffffffd]}, 0x0, 0x8)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mprotect(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x2)
syz_mount_image$exfat(&(0x7f0000000040), &(0x7f0000000240)='./file0\x00', 0x8a0844, &(0x7f0000000580)=ANY=[@ANYBLOB="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"/4096], 0x1, 0x1509, &(0x7f00000036c0)="$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")

164.665375ms ago: executing program 4 (id=3935):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040))
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x58, 0x18, &(0x7f0000000340)={@flat=@binder={0x73622a85, 0x100b, 0x2}, @flat=@weak_binder={0x77622a85, 0x0, 0x2}, @ptr={0x70742a85, 0x0, 0x0, 0x0, 0x2, 0x1f}}, &(0x7f0000000200)={0x0, 0x18, 0x30}}}], 0x0, 0x0, 0x0})

113.952409ms ago: executing program 3 (id=3936):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x5}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
fcntl$dupfd(r0, 0x0, r0)
sendmsg$NFQNL_MSG_CONFIG(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000340)={0x34, 0x2, 0x3, 0x401, 0x0, 0x0, {}, [@NFQA_CFG_QUEUE_MAXLEN={0x8, 0x3, 0x1, 0x0, 0x401}, @NFQA_CFG_FLAGS={0x8, 0x5, 0x1, 0x0, 0x18}, @NFQA_CFG_MASK={0x8, 0x4, 0x1, 0x0, 0x6}, @NFQA_CFG_CMD={0x8, 0x1, {0x1, 0x0, 0x1}}]}, 0x34}, 0x1, 0x0, 0x0, 0x11}, 0x2004c084)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
bind$inet6(0xffffffffffffffff, &(0x7f0000000100), 0x1c)
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x10, &(0x7f0000000140)={[{@norecovery}]}, 0xee, 0x469, &(0x7f0000000ac0)="$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")
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events.local\x00', 0x275a, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x0)
ioctl$FIBMAP(r3, 0x1, &(0x7f0000000080))
r4 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000002c0)={'wlan1\x00'})
sendmsg$NL80211_CMD_SET_MCAST_RATE(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, 0x0}, 0x0)
write$binfmt_script(r3, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
syz_usb_connect(0x0, 0x36, &(0x7f0000000080)=ANY=[], 0x0)
unshare(0x6a040000)
creat(0x0, 0x40)
r5 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout_data(r5, 0x107, 0x16, 0x0, 0x0)
syz_emit_ethernet(0x15, &(0x7f00000005c0)={@broadcast, @random="42e17dbe6edb", @val={@void}, {@x25={0x805, {0x3, 0xf, 0x23}}}}, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)

65.102344ms ago: executing program 1 (id=3937):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_CAP_HYPERV_SYNIC(r2, 0x4068aea3, &(0x7f0000000080))

469.24µs ago: executing program 2 (id=3938):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), 0xffffffffffffffff)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f000049c000/0x18000)=nil, &(0x7f0000000400)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000040)={[0x3, 0x6, 0xf62, 0x9, 0x4, 0x6, 0x4, 0x7, 0x637e5110, 0x7fffffff, 0x9, 0x1, 0x8000000000000000, 0x81, 0x9, 0x9], 0x4000, 0x240})
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@arm64={0xff, 0xff, 0x2, '\x00', 0x8})
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r3, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

0s ago: executing program 4 (id=3939):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008802, &(0x7f00000001c0)={[{@resgid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x82}}, {}, {@max_batch_time={'max_batch_time', 0x3d, 0x3}}, {@data_ordered}, {@init_itable_val={'init_itable', 0x3d, 0xc9b}}, {@usrquota}, {@init_itable}]}, 0x9, 0x5f2, &(0x7f0000002540)="$eJzs3c9vVNUeAPDvmf6gpbzXQl7ee7iQJsZAorS0gCHGBWwNafBH3Lix0kKQAg2t0aIJJcGNiXFjjIkrF+J/oUS2rHTlwo0rQ0LUsDRxzJ3eKZ32Tkt/TKf2fj7J0HvPmTvn3JbvnHPPnHMngNIazP6pRByMiOkU0Z/mF/M6I88cXHjeoz8+PJ89UlSrr/2WIuVp9een/GdffnBPRPzwfYoDHSvLnZm7cXl8amryer4/PHtlenhm7sbRS1fGL05enLw6+sLoqZMnTp4aObah87pZkHb29jvv9X889ubXX/6ZRr75eSzF6Xg5f+LS89gqgzFY+52klVl9p7a6sDbqXLafliewY3Xkf7+uiPhf9EfHkr9mf3z0SlsrB7RUNUVUgZJK64j/rLfQyroA26neD6hf2y+/Dq60pVcCbIeHZxYGAFbGf+fC2GD01MYG9j5KDeM8KSI2NjLXaF9E3L83dvvCvbHb0aJxOKDY/K2I+H9R/Kda/A9ETwzU4r/SEP9Zv+Bc/jNLf3WDPYXlQ8XiH7bPQvz3rBr/0ST+31oS/29vog75pcjN3ob4793EKwIAAAAAAEA53T0TEc8Xff5fWZz/EwXzf/oi4vQWlD+4bH/l5/+VB1tQDFDg4ZmIlwrn/1bqs38HOvKtf9XmA3SlC5emJo9FxL8j4kh07cn2R1Yp4+gnB75oljeYz/+rP7Ly7+dzAfN6POjc03jMxPjg+GbPG4h4eCviqcL5v2mx/U8F7X/2fjD9hGUcePbOuWZ5a8c/0CrVryIOF7b/j+9akVa/P8dwrT8wXO8VrPT0B59+26z8jca/W0zA5mXt/97V438gLb1fz8z6yzg+11ltlrex/v/seHd6vXZXoe487f3x2dnrIxHd6WxHltqQPrr+OsNuVI+Herxk8X/kmdXH/4r6/70RMb/stdPvjWuK6/77V98vzeqj/w/tk8X/xLra//VvjN4Z+K5Z+U/W/p+otfVH8pSs/W/dbwT+OT6vh2l3Y3pBOHYWZW13fQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgN6hExL5IlaHF7UplaCiiLyL+E3srU9dmZp+7cO3dqxNZXu37/yv1b/rtX9hPte//r2Tbj/dHo3H/eETsj4jPOnpr+0Pnr01NtPvkAQAAAAAAAAAAAAAAAAAAYIfoa7L+P/NrR7trB7RcZ7srALRNQfz/2I56ANtP+w/ltaH4T/NbXxFg22n/obzEP5SX+IfyEv9QXuIfyso4PgAAAAAA7DL7D939KUXE/Iu9tUemO8/ramvNgFartLsCQNu4xQ+Ul6l/UF6u8YG0Rn5P04PWOnI10+c3cTAAAAAAAAAAAAAAlM7hg9b/Q1lZ/w/lZf0/lFd9/f+hNtcD2H6u8YFYYyV/4fr/NY8CAAAAAAAAAAAAALbSzNyNy+NTU5PXbbyxM6pRtNHboleuVqs3s/8FbT/B3bFRnwq/U+qzbKO+1u/JjmrfexIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANDo7wAAAP//sg0n+g==")
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
write$binfmt_elf64(r4, 0x0, 0x2e6)
sendmsg$nl_xfrm(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e000000200000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000400000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000044000500000000000000000000000000000000000000000033"], 0xfc}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)={0x18, 0x1, 0x1, 0x201, 0x0, 0x0, {0x2, 0x0, 0x2}, [@CTA_FILTER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x4000014}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0xffffffffffffffca, &(0x7f0000000040)=0x10001)
r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r6, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r7 = open(&(0x7f0000000200)='./bus\x00', 0x14507e, 0x46)
r8 = creat(&(0x7f00000000c0)='./bus\x00', 0x0)
lseek(r8, 0x7ffffb, 0x0)
write$binfmt_elf64(r8, &(0x7f0000000140)=ANY=[], 0xfd14)
sendfile(r7, r7, 0x0, 0x100000000)
syz_emit_ethernet(0x4e, &(0x7f00000004c0)=ANY=[@ANYRES64=r1], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

kernel console output (not intermixed with test programs):

ce= 0.40
[ 2153.374990][  T701] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2153.386688][T22095] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[ 2153.396563][  T701] usb 4-1: Product: с
[ 2153.400546][  T701] usb 4-1: Manufacturer: 龥齜밄紆笠᳕挒㍀౳곡⸮듰짇ൖ輌䈷ṯ웆鍷팧僀ᡐ徹䩼簶䡤٠図릒⣐浱縈ਘ凙턻྇ᯌ䩞ᘽ礏㗷蚖嚋룢㊖喙멩ꇹ햍䩉糍㴗ꏼ忮᫯
[ 2153.421228][T22095] usb 5-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 2153.432156][  T701] usb 4-1: SerialNumber: 薠拣塀鄝ꛅ肊﬩圦ᘬ︖謅蛝뒤㤈﹂繟심䂅蟶䅬䰈觌큈ꗡ徫皞怞簔嘞潅䝭肁Ꮠ蚩傷እ꬧ྈ夹뱸地紏콅⼼ӎ㠏໶및憗㮲
[ 2153.585279][T22095] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 2153.595617][T22095] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2153.603479][T22095] usb 5-1: Product: syz
[ 2153.607881][T12668] usb 1-1: new high-speed USB device number 34 using dummy_hcd
[ 2153.615414][T22095] usb 5-1: Manufacturer: syz
[ 2153.619849][T22095] usb 5-1: SerialNumber: syz
[ 2153.655156][T21445] usb 3-1: failed to enable PITCH for EP 0x82
[ 2153.675144][T21445] usb 3-1: 2:1: cannot set freq 1973785 to ep 0x82
[ 2153.703299][T21445] usb 3-1: USB disconnect, device number 29
[ 2153.777374][T23914] syz-executor: attempt to access beyond end of device
[ 2153.777374][T23914] loop1: rw=2049, sector=45096, nr_sectors = 24 limit=40427
[ 2153.871464][T24009] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=258 sclass=netlink_route_socket pid=24009 comm=syz.1.3678
[ 2154.025593][T23970] EXT4-fs (loop2): unmounting filesystem.
[ 2154.039493][T24014] loop2: detected capacity change from 0 to 256
[ 2154.155647][T22095] usb 5-1: failed to enable PITCH for EP 0x82
[ 2154.175383][T22095] usb 5-1: 2:1: cannot set freq 1973785 to ep 0x82
[ 2154.261196][ T8303] usb 2-1: new high-speed USB device number 48 using dummy_hcd
[ 2154.377026][T22095] usb 5-1: USB disconnect, device number 34
[ 2154.522793][T23979] EXT4-fs (loop4): unmounting filesystem.
[ 2154.634570][T24020] loop4: detected capacity change from 0 to 40427
[ 2154.641383][T24020] F2FS-fs (loop4): Invalid SB checksum offset: 0
[ 2154.649807][T24020] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock
[ 2154.659844][T24020] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[ 2154.682271][T24020] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0
[ 2154.689248][T24020] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 2155.068068][T24029] loop2: detected capacity change from 0 to 512
[ 2155.076617][T24029] EXT4-fs error (device loop2): mb_free_blocks:1815: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[ 2155.091197][T24029] EXT4-fs (loop2): 1 truncate cleaned up
[ 2155.096983][T24029] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 2155.395798][T13609] usb 3-1: new high-speed USB device number 30 using dummy_hcd
[ 2155.403462][T23979] syz-executor: attempt to access beyond end of device
[ 2155.403462][T23979] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2155.457254][T24033] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=258 sclass=netlink_route_socket pid=24033 comm=syz.4.3682
[ 2155.785115][T22095] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[ 2155.795241][T13609] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[ 2155.805936][T13609] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[ 2155.815379][T13609] usb 3-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 2156.005222][T13609] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 2156.014153][T13609] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2156.022139][T13609] usb 3-1: Product: syz
[ 2156.026169][T13609] usb 3-1: Manufacturer: syz
[ 2156.030529][T13609] usb 3-1: SerialNumber: syz
[ 2156.225147][T22095] usb 5-1: config 1 interface 0 has no altsetting 0
[ 2156.385202][T22095] usb 5-1: New USB device found, idVendor=05ac, idProduct=027a, bcdDevice= 0.40
[ 2156.394246][T22095] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2156.402302][T22095] usb 5-1: Product: с
[ 2156.406456][T22095] usb 5-1: Manufacturer: 龥齜밄紆笠᳕挒㍀౳곡⸮듰짇ൖ輌䈷ṯ웆鍷팧僀ᡐ徹䩼簶䡤٠図릒⣐浱縈ਘ凙턻྇ᯌ䩞ᘽ礏㗷蚖嚋룢㊖喙멩ꇹ햍䩉糍㴗ꏼ忮᫯
[ 2156.427078][T22095] usb 5-1: SerialNumber: 薠拣塀鄝ꛅ肊﬩圦ᘬ︖謅蛝뒤㤈﹂繟심䂅蟶䅬䰈觌큈ꗡ徫皞怞簔嘞潅䝭肁Ꮠ蚩傷እ꬧ྈ夹뱸地紏콅⼼ӎ㠏໶및憗㮲
[ 2156.545148][T13609] usb 3-1: failed to enable PITCH for EP 0x82
[ 2156.575296][T13609] usb 3-1: 2:1: cannot set freq 1973785 to ep 0x82
[ 2156.597880][T13609] usb 3-1: USB disconnect, device number 30
[ 2156.609614][ T4698] udevd[4698]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[ 2156.904039][T23970] EXT4-fs (loop2): unmounting filesystem.
[ 2156.905141][  T701] usbhid 4-1:1.0: can't add hid device: -71
[ 2156.919226][  T701] usbhid: probe of 4-1:1.0 failed with error -71
[ 2156.926497][  T701] usb 4-1: USB disconnect, device number 46
[ 2159.365545][  T611] kworker/dying (611) used greatest stack depth: 19832 bytes left
[ 2159.895121][T22095] usbhid 5-1:1.0: can't add hid device: -71
[ 2159.900858][T22095] usbhid: probe of 5-1:1.0 failed with error -71
[ 2159.909434][T22095] usb 5-1: USB disconnect, device number 35
[ 2162.837553][T24045] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2162.844424][T24045] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2162.852128][T24045] device bridge_slave_0 entered promiscuous mode
[ 2162.858846][T24045] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2162.866085][T24045] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2162.873207][T24045] device bridge_slave_1 entered promiscuous mode
[ 2162.914110][T24045] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2162.920987][T24045] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2162.928117][T24045] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2162.934957][T24045] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2162.952648][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2162.960333][T22095] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2162.968326][T22095] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2162.986070][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2162.993993][T12668] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2163.000863][T12668] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2163.008194][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2163.016273][T12668] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2163.023091][T12668] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2163.030914][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2163.038653][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2163.051178][ T9744] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2163.061731][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2163.069547][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2163.076825][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2163.084774][T24045] device veth0_vlan entered promiscuous mode
[ 2163.094602][ T9744] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2163.106085][T24045] device veth1_macvtap entered promiscuous mode
[ 2163.114742][ T9744] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2163.124697][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2163.152804][T24054] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=258 sclass=netlink_route_socket pid=24054 comm=syz.3.3683
[ 2163.321579][T24059] netlink: 'syz.2.3684': attribute type 4 has an invalid length.
[ 2163.588137][T24060] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2163.594980][T24060] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2163.602449][T24060] device bridge_slave_0 entered promiscuous mode
[ 2163.609198][T24060] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2163.616241][T24060] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2163.623340][T24060] device bridge_slave_1 entered promiscuous mode
[ 2163.655991][   T10] device bridge_slave_1 left promiscuous mode
[ 2163.661993][   T10] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2163.669186][   T10] device bridge_slave_0 left promiscuous mode
[ 2163.675164][ T9744] usb 4-1: new high-speed USB device number 47 using dummy_hcd
[ 2163.675350][   T10] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2163.690172][   T10] device veth1_macvtap left promiscuous mode
[ 2163.696085][   T10] device veth0_vlan left promiscuous mode
[ 2163.785157][T24060] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2163.791993][T24060] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2163.799132][T24060] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2163.805909][T24060] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2163.826721][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2163.834060][T12668] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2163.841299][T12668] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2163.850785][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2163.859074][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2163.867291][T13609] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2163.874125][T13609] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2163.882820][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2163.890971][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2163.898982][T12668] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2163.905824][T12668] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2163.917511][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2163.925602][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2163.934919][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2163.943048][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2163.956102][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2163.964604][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2163.977740][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2163.985675][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2163.995908][T24060] device veth0_vlan entered promiscuous mode
[ 2164.008970][T24060] device veth1_macvtap entered promiscuous mode
[ 2164.026105][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2164.034757][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2164.055575][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2164.063614][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2164.089036][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2164.096752][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2164.104948][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2164.113684][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2164.122063][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2164.175238][ T9744] usb 4-1: config 1 interface 0 has no altsetting 0
[ 2164.262726][T24067] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2164.269700][T24067] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2164.277272][T24067] device bridge_slave_0 entered promiscuous mode
[ 2164.288928][T24067] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2164.295851][T24067] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2164.317462][T24067] device bridge_slave_1 entered promiscuous mode
[ 2164.387571][T24074] @: renamed from syztnl2
[ 2164.548474][T24066] loop2: detected capacity change from 0 to 40427
[ 2164.573650][T24066] F2FS-fs (loop2): Invalid SB checksum offset: 0
[ 2164.580166][T24066] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock
[ 2164.590430][T24066] F2FS-fs (loop2): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[ 2164.601510][ T9744] usb 4-1: New USB device found, idVendor=05ac, idProduct=027a, bcdDevice= 0.40
[ 2164.611931][ T9744] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2164.620858][ T9744] usb 4-1: Product: с
[ 2164.624189][T24066] F2FS-fs (loop2): Try to recover 2th superblock, ret: 0
[ 2164.624802][ T9744] usb 4-1: Manufacturer: 龥齜밄紆笠᳕挒㍀౳곡⸮듰짇ൖ輌䈷ṯ웆鍷팧僀ᡐ徹䩼簶䡤٠図릒⣐浱縈ਘ凙턻྇ᯌ䩞ᘽ礏㗷蚖嚋룢㊖喙멩ꇹ햍䩉糍㴗ꏼ忮᫯
[ 2164.632128][T24066] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 2164.652399][ T9744] usb 4-1: SerialNumber: 薠拣塀鄝ꛅ肊﬩圦ᘬ︖謅蛝뒤㤈﹂繟심䂅蟶䅬䰈觌큈ꗡ徫皞怞簔嘞潅䝭肁Ꮠ蚩傷እ꬧ྈ夹뱸地紏콅⼼ӎ㠏໶및憗㮲
[ 2164.697532][T24067] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2164.704405][T24067] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2164.711505][T24067] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2164.718284][T24067] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2164.740305][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2164.747698][T13609] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2164.754748][T13609] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2164.763791][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2164.771759][T13609] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2164.778601][T13609] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2164.798652][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2164.807036][ T8303] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2164.813897][ T8303] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2164.821464][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2164.829514][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2164.852733][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2164.861221][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2164.874057][T24067] device veth0_vlan entered promiscuous mode
[ 2164.881672][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2164.890247][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2164.912212][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2164.919633][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2164.927230][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2164.935655][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2164.949015][T24067] device veth1_macvtap entered promiscuous mode
[ 2164.962704][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2164.970461][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2164.979266][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2165.028330][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2165.040898][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2165.122012][   T10] device bridge_slave_1 left promiscuous mode
[ 2165.129775][   T10] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2165.130238][T24085] loop1: detected capacity change from 0 to 1024
[ 2165.137597][T23970] syz-executor: attempt to access beyond end of device
[ 2165.137597][T23970] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2165.151826][T24085] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 2165.157133][   T10] device bridge_slave_0 left promiscuous mode
[ 2165.171524][   T10] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2165.189446][   T10] device veth1_macvtap left promiscuous mode
[ 2165.196211][   T10] device veth0_vlan left promiscuous mode
[ 2165.517683][T24089] netlink: 'syz.0.3688': attribute type 4 has an invalid length.
[ 2165.842048][T24093] loop2: detected capacity change from 0 to 40427
[ 2165.857283][T24093] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 2165.889024][T24093] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 2166.050247][T24102] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2166.057223][T24102] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2166.064271][T24102] device bridge_slave_0 entered promiscuous mode
[ 2166.071334][T24102] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2166.078275][T24102] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2166.090081][T24102] device bridge_slave_1 entered promiscuous mode
[ 2166.138443][T24107] overlayfs: missing 'lowerdir'
[ 2166.343871][T24102] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2166.350753][T24102] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2166.357847][T24102] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2166.364615][T24102] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2166.399004][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2166.407639][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2166.407889][T23970] syz-executor: attempt to access beyond end of device
[ 2166.407889][T23970] loop2: rw=2049, sector=45096, nr_sectors = 24 limit=40427
[ 2166.416774][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2166.453691][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2166.461554][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2166.514051][   T10] device bridge_slave_1 left promiscuous mode
[ 2166.527556][   T10] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2166.542534][   T10] device bridge_slave_0 left promiscuous mode
[ 2166.557023][T24067] EXT4-fs (loop1): unmounting filesystem.
[ 2166.562788][   T10] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2166.574248][   T10] device veth1_macvtap left promiscuous mode
[ 2166.580160][   T10] device veth0_vlan left promiscuous mode
[ 2167.479050][ T5445] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2167.557595][T24118] netlink: 'syz.1.3693': attribute type 4 has an invalid length.
[ 2167.607626][T24102] device veth0_vlan entered promiscuous mode
[ 2167.614263][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2167.622557][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2167.631173][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2167.639508][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2167.654560][  T701] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2167.662753][  T701] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2167.671720][T24102] device veth1_macvtap entered promiscuous mode
[ 2167.682741][  T701] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2167.690913][  T701] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2167.700382][  T701] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2167.715830][  T701] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2167.734728][  T701] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2167.882814][T24121] loop1: detected capacity change from 0 to 40427
[ 2167.896601][T24121] F2FS-fs (loop1): Invalid SB checksum offset: 0
[ 2167.902960][T24121] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock
[ 2167.913272][T24121] F2FS-fs (loop1): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[ 2167.948655][T24121] F2FS-fs (loop1): Try to recover 2th superblock, ret: 0
[ 2167.950471][T24123] loop4: detected capacity change from 0 to 40427
[ 2167.955577][T24121] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 2167.983411][T24123] F2FS-fs (loop4): Invalid SB checksum offset: 0
[ 2167.989821][T24123] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock
[ 2168.000974][T24123] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[ 2168.033997][T24123] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0
[ 2168.040985][T24123] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 2168.791275][T24067] syz-executor: attempt to access beyond end of device
[ 2168.791275][T24067] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2168.791954][T24102] syz-executor: attempt to access beyond end of device
[ 2168.791954][T24102] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2168.878285][ T9744] usbhid 4-1:1.0: can't add hid device: -71
[ 2168.884045][ T9744] usbhid: probe of 4-1:1.0 failed with error -71
[ 2168.896836][T24138] loop1: detected capacity change from 0 to 256
[ 2168.898210][ T9744] usb 4-1: USB disconnect, device number 47
[ 2169.035725][   T10] device bridge_slave_1 left promiscuous mode
[ 2169.042587][   T10] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2169.053566][   T10] device bridge_slave_0 left promiscuous mode
[ 2169.060006][   T10] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2169.073190][   T10] device veth1_macvtap left promiscuous mode
[ 2169.081073][   T10] device veth0_vlan left promiscuous mode
[ 2169.295968][T24140] loop4: detected capacity change from 0 to 40427
[ 2169.302783][T24140] F2FS-fs (loop4): Invalid SB checksum offset: 0
[ 2169.309264][T24140] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock
[ 2169.319762][T24140] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[ 2169.343661][T24140] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0
[ 2169.350553][T24140] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 2169.786650][T24102] syz-executor: attempt to access beyond end of device
[ 2169.786650][T24102] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2169.803501][T24151] loop1: detected capacity change from 0 to 256
[ 2169.910396][T24156] loop2: detected capacity change from 0 to 1024
[ 2169.934893][T24156] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 2170.711879][T24161] netlink: 'syz.4.3699': attribute type 4 has an invalid length.
[ 2170.952356][T24165] loop1: detected capacity change from 0 to 512
[ 2170.966857][T24165] EXT4-fs error (device loop1): mb_free_blocks:1815: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[ 2170.981629][T24165] EXT4-fs (loop1): 1 truncate cleaned up
[ 2170.988194][T24165] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 2171.070336][T24167] loop4: detected capacity change from 0 to 40427
[ 2171.079275][T24167] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 2171.103162][T24167] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 2171.217826][T24178] overlayfs: failed to resolve './file0': -2
[ 2171.275098][ T9744] usb 2-1: new high-speed USB device number 49 using dummy_hcd
[ 2171.660667][T23970] EXT4-fs (loop2): unmounting filesystem.
[ 2171.675380][ T9744] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[ 2171.688593][ T9744] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[ 2171.698686][ T9744] usb 2-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 2171.809735][T24102] syz-executor: attempt to access beyond end of device
[ 2171.809735][T24102] loop4: rw=2049, sector=45096, nr_sectors = 24 limit=40427
[ 2172.135243][ T9744] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 2172.144115][ T9744] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2172.164406][ T9744] usb 2-1: Product: syz
[ 2172.168630][ T9744] usb 2-1: Manufacturer: syz
[ 2172.173038][ T9744] usb 2-1: SerialNumber: syz
[ 2172.371080][T24188] netlink: 'syz.4.3702': attribute type 4 has an invalid length.
[ 2172.795131][ T9744] usb 2-1: failed to enable PITCH for EP 0x82
[ 2172.825111][ T9744] usb 2-1: 2:1: cannot set freq 1973785 to ep 0x82
[ 2172.857505][ T9744] usb 2-1: USB disconnect, device number 49
[ 2173.125107][T24067] EXT4-fs (loop1): unmounting filesystem.
[ 2173.137372][T24195] netlink: 224 bytes leftover after parsing attributes in process `syz.4.3703'.
[ 2173.172880][T24199] loop4: detected capacity change from 0 to 512
[ 2173.215811][T24199] EXT4-fs error (device loop4): mb_free_blocks:1815: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[ 2173.239549][T24199] EXT4-fs (loop4): 1 truncate cleaned up
[ 2173.249185][T24199] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[ 2173.298649][T24202] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2173.305573][T24202] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2173.312986][T24202] device bridge_slave_0 entered promiscuous mode
[ 2173.325094][T24202] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2173.332011][T24202] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2173.339346][T24202] device bridge_slave_1 entered promiscuous mode
[ 2173.369454][T24196] loop1: detected capacity change from 0 to 40427
[ 2173.386111][T24196] F2FS-fs (loop1): Invalid SB checksum offset: 0
[ 2173.392354][T24196] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock
[ 2173.402717][T24196] F2FS-fs (loop1): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[ 2173.434128][T24196] F2FS-fs (loop1): Try to recover 2th superblock, ret: 0
[ 2173.434710][T24202] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2173.441050][T24196] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 2173.447855][T24202] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2173.447942][T24202] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2173.469062][T24202] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2173.506117][ T9744] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2173.513857][ T9744] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2173.521276][ T9744] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2173.545930][ T9744] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2173.553849][ T9744] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2173.560703][ T9744] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2173.567817][   T19] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[ 2173.575458][ T9744] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2173.583404][ T9744] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2173.590340][ T9744] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2173.794931][T22777] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2173.803800][ T9744] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2173.817520][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2173.829843][ T9744] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2173.837780][ T9744] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2173.844946][ T9744] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2173.853222][T24202] device veth0_vlan entered promiscuous mode
[ 2173.864936][ T9744] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2173.873858][T24202] device veth1_macvtap entered promiscuous mode
[ 2173.882957][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2173.892548][ T9744] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2173.917781][T24213] loop3: detected capacity change from 0 to 256
[ 2173.995736][T20380] device bridge_slave_1 left promiscuous mode
[ 2174.001802][T20380] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2174.009315][T24067] syz-executor: attempt to access beyond end of device
[ 2174.009315][T24067] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2174.023621][T20380] device bridge_slave_0 left promiscuous mode
[ 2174.160451][T20380] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2174.237106][T20380] device veth1_macvtap left promiscuous mode
[ 2174.278860][T20380] device veth0_vlan left promiscuous mode
[ 2174.355317][   T19] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[ 2174.369121][   T19] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[ 2174.379009][   T19] usb 5-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 2174.447764][T24218] loop1: detected capacity change from 0 to 40427
[ 2174.456979][T24218] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 2174.480481][T24218] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 2174.545175][   T19] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 2174.554379][   T19] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2174.562453][   T19] usb 5-1: Product: syz
[ 2174.566505][   T19] usb 5-1: Manufacturer: syz
[ 2174.570975][   T19] usb 5-1: SerialNumber: syz
[ 2174.652250][T24224] overlayfs: missing 'lowerdir'
[ 2175.176590][   T19] usb 5-1: failed to enable PITCH for EP 0x82
[ 2175.203644][   T19] usb 5-1: 2:1: cannot set freq 1973785 to ep 0x82
[ 2175.205175][T24232] netlink: 224 bytes leftover after parsing attributes in process `syz.2.3708'.
[ 2175.210271][T24067] syz-executor: attempt to access beyond end of device
[ 2175.210271][T24067] loop1: rw=2049, sector=45096, nr_sectors = 24 limit=40427
[ 2175.256629][   T19] usb 5-1: USB disconnect, device number 36
[ 2175.346289][T24234] loop2: detected capacity change from 0 to 256
[ 2175.476069][T24172] udevd[24172]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[ 2175.819933][T24102] EXT4-fs (loop4): unmounting filesystem.
[ 2175.938342][T24236] netlink: 224 bytes leftover after parsing attributes in process `syz.1.3711'.
[ 2176.014498][T24250] loop1: detected capacity change from 0 to 512
[ 2176.106892][T24252] netlink: 'syz.4.3715': attribute type 4 has an invalid length.
[ 2176.615710][T24253] @: renamed from syztnl2
[ 2176.941573][T24264] loop3: detected capacity change from 0 to 256
[ 2176.959075][T24250] EXT4-fs error (device loop1): mb_free_blocks:1815: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[ 2176.994250][T24250] EXT4-fs (loop1): 1 truncate cleaned up
[ 2176.999810][T24250] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 2177.062573][T24259] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2177.080049][T24259] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2177.095882][T24259] device bridge_slave_0 entered promiscuous mode
[ 2177.128020][T24259] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2177.135273][T24259] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2177.152735][T24259] device bridge_slave_1 entered promiscuous mode
[ 2177.753948][T24259] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2177.760834][T24259] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2177.767941][T24259] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2177.774783][T24259] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2177.795825][T13609] usb 2-1: new high-speed USB device number 50 using dummy_hcd
[ 2177.837986][T24276] loop3: detected capacity change from 0 to 256
[ 2177.853567][ T9744] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2177.862031][ T9744] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2177.876635][ T9744] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2177.902177][ T9744] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2177.915568][ T9744] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2177.922500][ T9744] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2177.930593][ T9744] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2177.954113][ T9744] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2177.960992][ T9744] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2177.975546][  T669] device bridge_slave_1 left promiscuous mode
[ 2177.982831][  T669] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2177.990257][  T669] device bridge_slave_0 left promiscuous mode
[ 2177.996439][  T669] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2178.147841][  T669] device veth1_macvtap left promiscuous mode
[ 2178.180600][  T669] device veth0_vlan left promiscuous mode
[ 2178.347364][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2178.355397][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2178.363221][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2178.371154][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2178.387185][T22777] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2178.395464][T22777] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2178.403651][T22777] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2178.411408][T22777] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2178.419000][T13609] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[ 2178.430935][T24259] device veth0_vlan entered promiscuous mode
[ 2178.433964][T24280] loop4: detected capacity change from 0 to 40427
[ 2178.441900][T13609] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[ 2178.445596][T24259] device veth1_macvtap entered promiscuous mode
[ 2178.456145][T13609] usb 2-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 2178.470644][T22777] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2178.472069][T24280] F2FS-fs (loop4): Found nat_bits in checkpoint
[ 2178.478367][T22777] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2178.491762][T22777] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2178.499939][T22777] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2178.508187][T22777] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2178.514314][T24280] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 2178.515847][T22777] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2178.534032][T22777] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2178.542541][T22777] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2178.550966][T22777] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2178.590365][T24286] loop0: detected capacity change from 0 to 1024
[ 2178.599589][T24286] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[ 2178.625127][T13609] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 2178.688543][T24289] overlayfs: failed to resolve './file0': -2
[ 2178.786312][T13609] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2178.819077][T13609] usb 2-1: Product: syz
[ 2178.824116][T13609] usb 2-1: Manufacturer: syz
[ 2178.826184][T24292] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=258 sclass=netlink_route_socket pid=24292 comm=syz.3.3723
[ 2178.845251][T13609] usb 2-1: SerialNumber: syz
[ 2178.998336][T24067] EXT4-fs (loop1): unmounting filesystem.
[ 2179.110736][T24294] loop1: detected capacity change from 0 to 40427
[ 2179.117909][T24294] F2FS-fs (loop1): Invalid SB checksum offset: 0
[ 2179.124186][T24294] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock
[ 2179.134444][T24294] F2FS-fs (loop1): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[ 2179.134908][T13609] usb 2-1: failed to enable PITCH for EP 0x82
[ 2179.166305][T24294] F2FS-fs (loop1): Try to recover 2th superblock, ret: 0
[ 2179.173214][T24294] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 2179.175464][T13609] usb 2-1: 2:1: cannot set freq 1973785 to ep 0x82
[ 2179.194166][T24102] syz-executor: attempt to access beyond end of device
[ 2179.194166][T24102] loop4: rw=2049, sector=45096, nr_sectors = 24 limit=40427
[ 2179.216994][T13609] usb 2-1: USB disconnect, device number 50
[ 2179.874766][T24067] syz-executor: attempt to access beyond end of device
[ 2179.874766][T24067] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2180.035877][T24259] EXT4-fs (loop0): unmounting filesystem.
[ 2180.158216][T24312] loop0: detected capacity change from 0 to 16
[ 2180.164734][T24312] erofs: (device loop0): erofs_fc_fill_super: rootino(nid 36) is not a directory(i_mode 66300)
[ 2180.455069][ T9744] usb 1-1: new high-speed USB device number 35 using dummy_hcd
[ 2180.745104][ T9744] usb 1-1: device descriptor read/64, error -71
[ 2181.076970][T24321] loop4: detected capacity change from 0 to 256
[ 2181.145092][ T9744] usb 1-1: device descriptor read/64, error -71
[ 2181.535287][ T9744] usb 1-1: new high-speed USB device number 36 using dummy_hcd
[ 2181.835138][ T9744] usb 1-1: device descriptor read/64, error -71
[ 2182.475089][ T9744] usb 1-1: device descriptor read/64, error -71
[ 2182.595321][ T9744] usb usb1-port1: attempt power cycle
[ 2183.015119][ T9744] usb 1-1: new high-speed USB device number 37 using dummy_hcd
[ 2183.147234][T24334] loop2: detected capacity change from 0 to 256
[ 2183.205119][ T9744] usb 1-1: device descriptor read/8, error -71
[ 2183.635185][ T9744] usb 1-1: device descriptor read/8, error -71
[ 2183.925379][ T9744] usb 1-1: new high-speed USB device number 38 using dummy_hcd
[ 2184.015014][T24339] loop2: detected capacity change from 0 to 512
[ 2184.023634][T24339] EXT4-fs error (device loop2): mb_free_blocks:1815: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[ 2184.038326][T24339] EXT4-fs (loop2): 1 truncate cleaned up
[ 2184.043814][T24339] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 2184.105169][ T9744] usb 1-1: device descriptor read/8, error -71
[ 2184.335723][T22777] usb 3-1: new high-speed USB device number 31 using dummy_hcd
[ 2184.395137][ T9744] usb 1-1: device descriptor read/8, error -71
[ 2184.525164][ T9744] usb usb1-port1: unable to enumerate USB device
[ 2184.715159][T22777] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[ 2184.725781][T22777] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[ 2184.735240][T22777] usb 3-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 2184.935123][T22777] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 2184.944021][T22777] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2184.967560][T22777] usb 3-1: Product: syz
[ 2184.971549][T22777] usb 3-1: Manufacturer: syz
[ 2184.976193][T22777] usb 3-1: SerialNumber: syz
[ 2185.181219][T24346] netlink: 'syz.4.3735': attribute type 4 has an invalid length.
[ 2185.475112][T22777] usb 3-1: failed to enable PITCH for EP 0x82
[ 2185.495128][T22777] usb 3-1: 2:1: cannot set freq 1973785 to ep 0x82
[ 2185.517761][T22777] usb 3-1: USB disconnect, device number 31
[ 2185.526481][T24172] udevd[24172]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[ 2185.855126][T23970] EXT4-fs (loop2): unmounting filesystem.
[ 2185.867943][T24350] loop2: detected capacity change from 0 to 256
[ 2186.246250][T24356] netlink: 'syz.4.3737': attribute type 4 has an invalid length.
[ 2187.249195][T24364] loop4: detected capacity change from 0 to 40427
[ 2187.262671][T24364] F2FS-fs (loop4): Invalid SB checksum offset: 0
[ 2187.268901][T24364] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock
[ 2187.278672][T24364] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[ 2187.300085][T24364] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0
[ 2187.307078][T24364] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 2187.683746][T24102] syz-executor: attempt to access beyond end of device
[ 2187.683746][T24102] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2187.736946][T24375] loop4: detected capacity change from 0 to 256
[ 2189.704360][T24383] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2189.711353][T24383] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2189.718737][T24383] device bridge_slave_0 entered promiscuous mode
[ 2189.725702][T24383] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2189.732854][T24383] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2189.741605][T24383] device bridge_slave_1 entered promiscuous mode
[ 2189.813760][T24383] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2189.820738][T24383] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2189.827842][T24383] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2189.834606][T24383] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2189.895193][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2189.902850][ T8303] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2189.914473][ T8303] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2189.956704][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2189.964810][T22095] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2189.971701][T22095] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2190.005193][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2190.013219][T22095] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2190.020099][T22095] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2190.031696][ T9744] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2190.052814][ T9744] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2190.089646][T24383] device veth0_vlan entered promiscuous mode
[ 2190.140692][T22777] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2190.164417][T22777] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2190.430609][T22777] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2190.501853][T22777] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2190.521178][T24402] @: renamed from syztnl2
[ 2190.535512][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2190.551367][T24383] device veth1_macvtap entered promiscuous mode
[ 2190.581655][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2190.599128][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2190.671647][T24400] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2190.678876][T24400] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2190.686476][T24400] device bridge_slave_0 entered promiscuous mode
[ 2190.693405][T24400] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2190.700652][T24400] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2190.708371][T24400] device bridge_slave_1 entered promiscuous mode
[ 2190.725117][T24405] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2190.732022][T24405] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2190.739642][T24405] device bridge_slave_0 entered promiscuous mode
[ 2190.746638][T24405] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2190.753601][T24405] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2190.763021][T24405] device bridge_slave_1 entered promiscuous mode
[ 2190.996326][T24415] netlink: 'syz.3.3741': attribute type 4 has an invalid length.
[ 2191.028579][   T10] device bridge_slave_1 left promiscuous mode
[ 2191.034627][   T10] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2191.042758][   T10] device bridge_slave_0 left promiscuous mode
[ 2191.048830][   T10] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2191.057077][   T10] device veth1_macvtap left promiscuous mode
[ 2191.062942][   T10] device veth0_vlan left promiscuous mode
[ 2191.160758][T24418] loop2: detected capacity change from 0 to 40427
[ 2191.173609][T24418] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 2191.213348][T24418] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 2191.258814][T24405] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2191.265688][T24405] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2191.306364][ T9744] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2191.314066][ T9744] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2191.321408][ T9744] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2191.332411][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2191.340553][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2191.348530][T13609] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2191.355374][T13609] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2191.420406][T24424] overlayfs: missing 'lowerdir'
[ 2191.636894][T24426] loop3: detected capacity change from 0 to 256
[ 2191.661439][ T9744] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2191.669037][ T9744] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2191.676467][ T9744] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2191.683781][ T9744] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2191.692175][ T9744] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2191.702036][ T9744] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2191.708931][ T9744] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2191.716332][ T9744] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2191.724382][ T9744] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2191.731257][ T9744] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2191.738838][ T9744] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2191.758599][ T9744] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2191.766738][ T9744] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2191.773571][ T9744] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2191.784270][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2191.796169][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2191.804217][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2191.812092][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2192.070644][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2192.071178][T23970] syz-executor: attempt to access beyond end of device
[ 2192.071178][T23970] loop2: rw=2049, sector=45096, nr_sectors = 24 limit=40427
[ 2192.085555][ T9744] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2192.100491][ T9744] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2192.117342][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2192.125477][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2192.148762][T24405] device veth0_vlan entered promiscuous mode
[ 2192.155574][ T1635] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2192.163454][ T1635] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2192.172777][ T1635] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2192.183008][T24430] loop2: detected capacity change from 0 to 256
[ 2192.184138][ T1635] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2192.239268][T24405] device veth1_macvtap entered promiscuous mode
[ 2192.253847][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2192.261880][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2192.269820][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2192.280716][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2192.289340][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2192.300159][ T1635] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2192.311323][ T1635] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2192.556410][T24400] device veth0_vlan entered promiscuous mode
[ 2192.564166][ T1635] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2192.572601][ T1635] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2192.580980][ T1635] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2192.588948][ T1635] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2192.598167][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2192.605701][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2192.625899][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2192.634113][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2192.649937][T24400] device veth1_macvtap entered promiscuous mode
[ 2192.668127][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2192.677846][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2192.690179][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2192.713017][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2192.737230][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2192.770361][T24442] loop1: detected capacity change from 0 to 512
[ 2192.833441][T24438] netlink: 224 bytes leftover after parsing attributes in process `syz.3.3751'.
[ 2193.108236][T24442] EXT4-fs error (device loop1): mb_free_blocks:1815: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[ 2193.126389][T24442] EXT4-fs (loop1): 1 truncate cleaned up
[ 2193.155659][T24442] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 2193.472180][   T10] device bridge_slave_1 left promiscuous mode
[ 2193.479736][T24455] loop4: detected capacity change from 0 to 16
[ 2193.489035][   T10] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2193.505249][T12668] usb 2-1: new high-speed USB device number 51 using dummy_hcd
[ 2193.536364][   T10] device bridge_slave_0 left promiscuous mode
[ 2193.546467][   T10] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2193.553835][T24455] erofs: (device loop4): erofs_fc_fill_super: rootino(nid 36) is not a directory(i_mode 66300)
[ 2193.564940][   T10] device bridge_slave_1 left promiscuous mode
[ 2193.571022][   T10] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2193.578439][   T10] device bridge_slave_0 left promiscuous mode
[ 2193.584410][   T10] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2193.592623][   T10] device veth1_macvtap left promiscuous mode
[ 2193.598649][   T10] device veth0_vlan left promiscuous mode
[ 2193.604579][   T10] device veth1_macvtap left promiscuous mode
[ 2193.610789][   T10] device veth0_vlan left promiscuous mode
[ 2193.885091][ T8303] usb 5-1: new high-speed USB device number 37 using dummy_hcd
[ 2193.915136][T12668] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[ 2193.926119][T12668] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[ 2193.935685][T12668] usb 2-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 2194.105116][T12668] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 2194.115211][T12668] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2194.123018][T12668] usb 2-1: Product: syz
[ 2194.123314][T24458] loop2: detected capacity change from 0 to 40427
[ 2194.130977][T12668] usb 2-1: Manufacturer: syz
[ 2194.143589][T12668] usb 2-1: SerialNumber: syz
[ 2194.144161][T24458] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 2194.173577][T24458] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 2194.331274][T24464] overlayfs: failed to resolve './file0': -2
[ 2194.705223][T12668] usb 2-1: failed to enable PITCH for EP 0x82
[ 2194.725324][T12668] usb 2-1: 2:1: cannot set freq 1973785 to ep 0x82
[ 2194.755631][T12668] usb 2-1: USB disconnect, device number 51
[ 2194.869119][T23970] syz-executor: attempt to access beyond end of device
[ 2194.869119][T23970] loop2: rw=2049, sector=45096, nr_sectors = 24 limit=40427
[ 2194.954446][T24470] loop2: detected capacity change from 0 to 256
[ 2195.275182][T24400] EXT4-fs (loop1): unmounting filesystem.
[ 2195.482696][T24476] @: renamed from syztnl2
[ 2195.728923][T24479] loop0: detected capacity change from 0 to 256
[ 2196.168960][T24487] loop1: detected capacity change from 0 to 256
[ 2196.210243][T24483] netlink: 224 bytes leftover after parsing attributes in process `syz.2.3759'.
[ 2196.618696][T24497] loop0: detected capacity change from 0 to 256
[ 2197.483950][T24505] loop0: detected capacity change from 0 to 256
[ 2197.990170][T24510] loop1: detected capacity change from 0 to 40427
[ 2197.999025][T24510] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 2198.023237][T24510] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 2198.183373][T24516] overlayfs: failed to resolve './file0': -2
[ 2198.426944][T24520] loop0: detected capacity change from 0 to 256
[ 2198.763666][T24400] syz-executor: attempt to access beyond end of device
[ 2198.763666][T24400] loop1: rw=2049, sector=45096, nr_sectors = 24 limit=40427
[ 2198.866280][T24525] loop1: detected capacity change from 0 to 256
[ 2200.268683][T24542] netlink: 'syz.2.3769': attribute type 4 has an invalid length.
[ 2201.657927][T24550] loop2: detected capacity change from 0 to 40427
[ 2201.664732][T24550] F2FS-fs (loop2): Invalid SB checksum offset: 0
[ 2201.670961][T24550] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock
[ 2201.680785][T24550] F2FS-fs (loop2): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[ 2201.702605][T24550] F2FS-fs (loop2): Try to recover 2th superblock, ret: 0
[ 2201.709495][T24550] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 2202.437423][T23970] syz-executor: attempt to access beyond end of device
[ 2202.437423][T23970] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2202.592680][T24559] loop0: detected capacity change from 0 to 40427
[ 2202.621339][T24559] F2FS-fs (loop0): Found nat_bits in checkpoint
[ 2202.921471][T24559] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 2203.152714][T24573] overlayfs: missing 'lowerdir'
[ 2203.423118][T24405] syz-executor: attempt to access beyond end of device
[ 2203.423118][T24405] loop0: rw=2049, sector=45096, nr_sectors = 24 limit=40427
[ 2203.499172][T24572] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2203.527307][T24572] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2203.534617][T24572] device bridge_slave_0 entered promiscuous mode
[ 2203.573711][T24572] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2203.585937][T24572] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2203.604552][T24572] device bridge_slave_1 entered promiscuous mode
[ 2203.775414][T24579] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2203.782285][T24579] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2203.790384][T24579] device bridge_slave_0 entered promiscuous mode
[ 2203.812738][T24579] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2203.819624][T24579] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2203.824321][T24581] loop0: detected capacity change from 0 to 40427
[ 2203.836994][T24579] device bridge_slave_1 entered promiscuous mode
[ 2203.843900][T24572] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2203.850792][T24572] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2203.857867][T24572] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2203.864633][T24572] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2203.884361][T24581] F2FS-fs (loop0): Found nat_bits in checkpoint
[ 2203.938313][T24581] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 2203.938585][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2203.963905][ T8303] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2203.972301][ T8303] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2204.044988][T12742] device bridge_slave_1 left promiscuous mode
[ 2204.051024][T12742] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2204.058472][T12742] device bridge_slave_0 left promiscuous mode
[ 2204.064438][T12742] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2204.072477][T12742] device veth1_macvtap left promiscuous mode
[ 2204.078386][T12742] device veth0_vlan left promiscuous mode
[ 2204.149037][T24598] overlayfs: failed to resolve './file0': -2
[ 2204.407377][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2204.415497][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2204.423421][T12668] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2204.430270][T12668] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2204.455308][T24405] syz-executor: attempt to access beyond end of device
[ 2204.455308][T24405] loop0: rw=2049, sector=45096, nr_sectors = 24 limit=40427
[ 2204.475892][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2204.484067][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2204.492100][ T8303] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2204.498951][ T8303] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2204.506840][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2204.514736][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2204.522590][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2204.530486][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2204.538420][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2204.546522][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2204.560898][T24572] device veth0_vlan entered promiscuous mode
[ 2204.571957][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2204.580733][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2204.601299][T24572] device veth1_macvtap entered promiscuous mode
[ 2204.608887][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2204.616945][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2204.624276][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2204.632872][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2204.641192][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2204.663146][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2204.671590][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2204.679992][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2204.688960][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2204.710533][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2204.729950][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2204.803702][T24600] loop0: detected capacity change from 0 to 40427
[ 2204.813347][T24600] F2FS-fs (loop0): Invalid SB checksum offset: 0
[ 2204.819890][T24600] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock
[ 2204.831997][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2204.840742][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2204.841431][T24600] F2FS-fs (loop0): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[ 2204.848848][T12668] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2204.866276][T12668] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2204.874402][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2204.879698][T24600] F2FS-fs (loop0): Try to recover 2th superblock, ret: 0
[ 2204.882654][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2204.889313][T24600] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 2204.897577][T12668] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2204.911229][T12668] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2205.092434][T24608] netlink: 'syz.4.3776': attribute type 4 has an invalid length.
[ 2205.154835][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2205.164390][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2205.174675][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2205.188358][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2205.199648][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2205.226807][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2205.242340][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2205.250933][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2205.258663][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2205.270075][T24579] device veth0_vlan entered promiscuous mode
[ 2205.282906][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2205.292894][T24579] device veth1_macvtap entered promiscuous mode
[ 2205.304446][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2205.313510][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2205.333162][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2205.352436][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2205.534783][T24616] netlink: 'syz.3.3778': attribute type 4 has an invalid length.
[ 2205.799397][T12742] device bridge_slave_1 left promiscuous mode
[ 2205.841746][T12742] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2205.856630][T12742] device bridge_slave_0 left promiscuous mode
[ 2205.866772][T12742] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2205.887315][T12742] device veth1_macvtap left promiscuous mode
[ 2205.903503][T12742] device veth0_vlan left promiscuous mode
[ 2205.977528][T24405] syz-executor: attempt to access beyond end of device
[ 2205.977528][T24405] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2206.045355][T24620] @: renamed from syztnl2
[ 2206.103035][T24622] loop2: detected capacity change from 0 to 256
[ 2206.239146][T24627] loop0: detected capacity change from 0 to 256
[ 2207.226856][T24640] loop1: detected capacity change from 0 to 256
[ 2207.258117][T24625] loop3: detected capacity change from 0 to 40427
[ 2207.759051][T24625] F2FS-fs (loop3): Invalid SB checksum offset: 0
[ 2207.955170][T24625] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock
[ 2208.037321][T24625] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[ 2208.144995][T24625] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0
[ 2208.151925][T24625] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 2208.331427][T24647] netlink: 224 bytes leftover after parsing attributes in process `syz.4.3789'.
[ 2208.635319][T24579] syz-executor: attempt to access beyond end of device
[ 2208.635319][T24579] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2208.645471][T24652] loop1: detected capacity change from 0 to 40427
[ 2208.679673][   T28] audit: type=1400 audit(1728040263.439:271): avc:  denied  { connect } for  pid=24657 comm="syz.4.3791" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 2208.733757][T24652] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 2208.736667][   T28] audit: type=1400 audit(1728040263.459:272): avc:  denied  { setopt } for  pid=24657 comm="syz.4.3791" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 2208.770587][T24665] loop4: detected capacity change from 0 to 256
[ 2208.778767][T24667] loop3: detected capacity change from 0 to 512
[ 2208.784946][   T28] audit: type=1400 audit(1728040263.499:273): avc:  denied  { unmount } for  pid=24572 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[ 2208.811372][T24665] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[ 2208.813627][T24652] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 2208.890060][T24667] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 2208.899494][T24667] ext4 filesystem being mounted at /2/file0 supports timestamps until 2038 (0x7fffffff)
[ 2208.915522][T24579] EXT4-fs (loop3): unmounting filesystem.
[ 2209.081717][T24680] overlayfs: failed to resolve './file0': -2
[ 2209.189621][T24679] exFAT-fs (loop4): hint_cluster is invalid (17)
[ 2209.535224][T13609] usb 4-1: new high-speed USB device number 48 using dummy_hcd
[ 2209.678319][   T28] audit: type=1400 audit(1728040264.429:274): avc:  denied  { write } for  pid=24572 comm="syz-executor" name="/" dev="loop4" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 2209.700241][   T28] audit: type=1400 audit(1728040264.429:275): avc:  denied  { remove_name } for  pid=24572 comm="syz-executor" name="file.cold" dev="loop4" ino=1050501 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 2209.724614][   T28] audit: type=1400 audit(1728040264.429:276): avc:  denied  { unlink } for  pid=24572 comm="syz-executor" name="file.cold" dev="loop4" ino=1050501 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 2209.748317][T24400] syz-executor: attempt to access beyond end of device
[ 2209.748317][T24400] loop1: rw=2049, sector=45096, nr_sectors = 24 limit=40427
[ 2209.886791][T24686] loop1: detected capacity change from 0 to 512
[ 2209.898873][T24686] [EXT4 FS bs=1024, gc=1, bpg=256, ipg=32, mo=e000e01c, mo2=0000]
[ 2209.906908][T24686] System zones: 1-12
[ 2209.911463][T24686] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.3798: invalid indirect mapped block 2 (level 0)
[ 2209.924946][T24686] EXT4-fs error (device loop1): ext4_clear_blocks:883: inode #13: comm syz.1.3798: attempt to clear invalid blocks 2 len 1
[ 2209.938619][T24686] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.3798: bg 0: block 255: padding at end of block bitmap is not set
[ 2209.953702][T24686] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6173: Corrupt filesystem
[ 2209.962466][T24686] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.3798: invalid indirect mapped block 1819239214 (level 0)
[ 2209.976488][T24686] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.3798: invalid indirect mapped block 1819239214 (level 1)
[ 2209.990878][T24686] EXT4-fs (loop1): 1 truncate cleaned up
[ 2209.991100][T24687] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2209.996479][T24686] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 2210.005553][T13609] usb 4-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[ 2210.012210][T24687] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2210.020818][T13609] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2210.028196][T24687] device bridge_slave_0 entered promiscuous mode
[ 2210.041948][T24400] EXT4-fs (loop1): unmounting filesystem.
[ 2210.043028][T13609] usb 4-1: config 0 descriptor??
[ 2210.053870][T24687] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2210.061584][T24687] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2210.063883][T24694] loop1: detected capacity change from 0 to 512
[ 2210.069162][T24687] device bridge_slave_1 entered promiscuous mode
[ 2210.081032][T24694] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 2210.092651][T24694] EXT4-fs (loop1): 1 truncate cleaned up
[ 2210.098345][T24694] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 2210.110537][T24694] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2213: inode #15: comm syz.1.3801: corrupted in-inode xattr
[ 2210.110742][   T28] audit: type=1400 audit(1728040264.869:277): avc:  denied  { rename } for  pid=24693 comm="syz.1.3801" name="file1" dev="loop1" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 2210.122694][T24694] EXT4-fs warning (device loop1): ext4_xattr_set_entry:1745: inode #15: comm syz.1.3801: unable to update i_inline_off
[ 2210.157036][T24694] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2810: Unable to expand inode 15. Delete some EAs or run e2fsck.
[ 2210.197069][T24400] EXT4-fs (loop1): unmounting filesystem.
[ 2211.086025][   T28] audit: type=1400 audit(1728040265.579:278): avc:  denied  { bind } for  pid=24698 comm="syz.1.3804" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 2211.116450][T19480] device bridge_slave_1 left promiscuous mode
[ 2211.122407][T19480] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2211.155439][T19480] device bridge_slave_0 left promiscuous mode
[ 2211.165117][T19480] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2211.206248][T19480] device veth1_macvtap left promiscuous mode
[ 2211.212105][T19480] device veth0_vlan left promiscuous mode
[ 2214.299469][ T1635] usb 4-1: USB disconnect, device number 48
[ 2214.324457][T24714] netlink: 104 bytes leftover after parsing attributes in process `syz.1.3805'.
[ 2214.376686][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2214.383989][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2214.409863][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2214.425718][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2214.439406][   T19] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2214.446278][   T19] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2214.453817][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2214.461929][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2214.469835][   T19] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2214.476575][   T19] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2214.483695][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2214.492903][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2214.501603][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2214.510322][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2214.519931][ T5445] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2214.541011][T24708] kvm: emulating exchange as write
[ 2214.541088][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2214.558271][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2214.582479][T24687] device veth0_vlan entered promiscuous mode
[ 2214.591988][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2214.602847][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2214.628396][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2214.636722][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2214.651479][ T1635] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2214.662052][T24727] af_packet: tpacket_rcv: packet too big, clamped from 210 to 4294967286. macoff=82
[ 2214.663803][T24687] device veth1_macvtap entered promiscuous mode
[ 2214.693401][ T1635] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2214.717170][ T1635] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2214.751031][ T1635] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2214.752785][T24729] loop3: detected capacity change from 0 to 512
[ 2214.759285][ T1635] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2214.916354][T24729] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 2214.932985][T24729] ext4 filesystem being mounted at /7/file0 supports timestamps until 2038 (0x7fffffff)
[ 2214.955711][   T28] audit: type=1400 audit(1728040269.719:279): avc:  denied  { setattr } for  pid=24728 comm="syz.3.3809" path="/7/file0/bus" dev="loop3" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[ 2215.148127][T24745] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[ 2215.275130][T24743] loop0: detected capacity change from 0 to 1024
[ 2215.288234][T24743] EXT4-fs: Ignoring removed bh option
[ 2215.337206][T24743] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[ 2215.405177][ T5445] usb 4-1: new full-speed USB device number 49 using dummy_hcd
[ 2215.413076][   T28] audit: type=1400 audit(1728040270.169:280): avc:  denied  { mounton } for  pid=24742 comm="syz.0.3813" path="/16/file1/bus" dev="loop0" ino=19 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[ 2215.424484][T24743] EXT4-fs error (device loop0): ext4_ind_map_blocks:604: inode #20: comm syz.0.3813: Can't allocate blocks for non-extent mapped inodes with bigalloc
[ 2215.453039][   T28] audit: type=1400 audit(1728040270.169:281): avc:  denied  { map } for  pid=24742 comm="syz.0.3813" path="/16/file1/bus" dev="devtmpfs" ino=114 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[ 2215.457135][T24743] EXT4-fs (loop0): Remounting filesystem read-only
[ 2215.492008][T24743] EXT4-fs error (device loop0) in ext4_evict_inode:254: Readonly filesystem
[ 2215.502999][T24743] EXT4-fs error (device loop0): ext4_xattr_block_set:2191: inode #12: comm syz.0.3813: bad block 0
[ 2215.584487][T24405] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:405: inode #11: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[ 2215.600408][T24405] EXT4-fs error (device loop0): ext4_readdir:220: inode #11: comm syz-executor: path /16/file1/lost+found: directory fails checksum at offset 0
[ 2215.618735][T24405] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:405: inode #11: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[ 2215.634445][T24405] EXT4-fs error (device loop0): ext4_readdir:220: inode #11: comm syz-executor: path /16/file1/lost+found: directory fails checksum at offset 1024
[ 2215.650912][T24405] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:405: inode #11: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[ 2215.666477][T24405] EXT4-fs error (device loop0): ext4_readdir:220: inode #11: comm syz-executor: path /16/file1/lost+found: directory fails checksum at offset 2048
[ 2215.701062][T24405] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:405: inode #11: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[ 2215.716942][T24405] EXT4-fs error (device loop0): ext4_readdir:220: inode #11: comm syz-executor: path /16/file1/lost+found: directory fails checksum at offset 3072
[ 2215.787590][ T5445] usb 4-1: device descriptor read/64, error -71
[ 2215.792983][T24405] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:405: inode #11: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[ 2215.795995][   T28] audit: type=1400 audit(1728040270.549:282): avc:  denied  { mount } for  pid=24751 comm="syz.4.3816" name="/" dev="devpts" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[ 2215.809705][T24405] EXT4-fs error (device loop0): ext4_readdir:220: inode #11: comm syz-executor: path /16/file1/lost+found: directory fails checksum at offset 4096
[ 2215.833462][   T28] audit: type=1400 audit(1728040270.549:283): avc:  denied  { remount } for  pid=24751 comm="syz.4.3816" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[ 2215.847307][T24405] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:405: inode #11: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[ 2215.866700][   T28] audit: type=1400 audit(1728040270.549:284): avc:  denied  { unmount } for  pid=24687 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[ 2215.884583][T24405] EXT4-fs error (device loop0): ext4_readdir:220: inode #11: comm syz-executor: path /16/file1/lost+found: directory fails checksum at offset 5120
[ 2215.908300][T24754] loop4: detected capacity change from 0 to 512
[ 2215.916714][T24405] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:405: inode #11: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[ 2215.937392][T24405] EXT4-fs error (device loop0): ext4_readdir:220: inode #11: comm syz-executor: path /16/file1/lost+found: directory fails checksum at offset 6144
[ 2215.942251][T24754] EXT4-fs (loop4): 1 truncate cleaned up
[ 2215.953566][T24405] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:405: inode #11: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[ 2215.958172][T24754] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 2215.986603][T24405] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:405: inode #11: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[ 2216.002157][   T28] audit: type=1400 audit(1728040270.749:285): avc:  denied  { ioctl } for  pid=24753 comm="syz.4.3817" path="/2/file0/file0/.pending_reads" dev="incremental-fs" ino=2 ioctlcmd=0x671e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 2216.004429][T24687] EXT4-fs error (device loop4): htree_dirblock_to_tree:1111: inode #2: block 13: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=76, inode=196608, rec_len=0, size=1024 fake=0
[ 2216.050270][T24405] EXT4-fs warning (device loop0): ext4_dirblock_csum_verify:405: inode #11: comm syz-executor: No space for directory leaf checksum. Please run e2fsck -D.
[ 2216.052413][T24687] EXT4-fs error (device loop4): ext4_ext_check_inode:520: inode #11: comm syz-executor: pblk 0 bad header/extent: invalid magic - magic e, entries 0, max 15(0), depth 0(0)
[ 2216.089414][T24687] EXT4-fs error (device loop4): ext4_ext_check_inode:520: inode #11: comm syz-executor: pblk 0 bad header/extent: invalid magic - magic e, entries 0, max 15(0), depth 0(0)
[ 2216.089641][T24405] EXT4-fs (loop0): unmounting filesystem.
[ 2216.173998][T24687] EXT4-fs (loop4): unmounting filesystem.
[ 2216.374466][ T5445] usb 4-1: device descriptor read/64, error -71
[ 2216.885229][ T5445] usb 4-1: new full-speed USB device number 50 using dummy_hcd
[ 2216.909540][T24766] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2216.916577][T24766] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2216.923885][T24766] device bridge_slave_0 entered promiscuous mode
[ 2216.931258][T24766] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2216.938303][T24766] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2216.946129][T24766] device bridge_slave_1 entered promiscuous mode
[ 2216.997667][T24766] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2217.004515][T24766] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2217.011632][T24766] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2217.018405][T24766] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2217.043312][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2217.051015][T13609] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2217.095841][T13609] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2217.127315][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2217.145426][T13609] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2217.152275][T13609] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2217.168681][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2217.176638][ T5445] usb 4-1: device descriptor read/64, error -71
[ 2217.180097][   T28] audit: type=1400 audit(1728040271.939:286): avc:  denied  { write } for  pid=24782 comm="syz.1.3826" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1
[ 2217.182851][T13609] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2217.201637][   T28] audit: type=1400 audit(1728040271.939:287): avc:  denied  { write } for  pid=24782 comm="syz.1.3826" name="ptp0" dev="devtmpfs" ino=172 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1
[ 2217.208429][T13609] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2217.209589][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2217.246503][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2217.275130][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2217.293503][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2217.307277][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2217.315461][   T28] audit: type=1400 audit(1728040272.079:288): avc:  denied  { ioctl } for  pid=24788 comm="syz.1.3827" path="socket:[215243]" dev="sockfs" ino=215243 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[ 2217.315557][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2217.350779][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2217.358409][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2217.368878][T24766] device veth0_vlan entered promiscuous mode
[ 2217.391905][T24766] device veth1_macvtap entered promiscuous mode
[ 2217.400434][T24791] loop1: detected capacity change from 0 to 128
[ 2217.408721][T22777] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2217.419061][T22777] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2217.435517][T22777] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2217.528373][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2217.537128][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2217.545370][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2217.553579][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2217.562393][T24781] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2217.569504][T24781] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2217.577671][T24781] device bridge_slave_0 entered promiscuous mode
[ 2217.585157][ T5445] usb 4-1: device descriptor read/64, error -71
[ 2217.592200][T19480] device bridge_slave_1 left promiscuous mode
[ 2217.599131][T19480] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2217.608098][T19480] device bridge_slave_0 left promiscuous mode
[ 2217.614173][T19480] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2217.625136][T24796] capability: warning: `syz.1.3828' uses deprecated v2 capabilities in a way that may be insecure
[ 2217.641524][T19480] device veth1_macvtap left promiscuous mode
[ 2217.647818][T19480] device veth0_vlan left promiscuous mode
[ 2217.715258][ T5445] usb usb4-port1: attempt power cycle
[ 2217.750934][T24579] EXT4-fs (loop3): unmounting filesystem.
[ 2217.862156][T24781] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2217.880575][T24781] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2217.901276][T24781] device bridge_slave_1 entered promiscuous mode
[ 2218.016202][T24803] loop4: detected capacity change from 0 to 256
[ 2218.087159][T24803] FAT-fs (loop4): Directory bread(block 64) failed
[ 2218.093984][T24803] FAT-fs (loop4): Directory bread(block 65) failed
[ 2218.102385][T24803] FAT-fs (loop4): Directory bread(block 66) failed
[ 2218.109459][T24803] FAT-fs (loop4): Directory bread(block 67) failed
[ 2218.116751][T24803] FAT-fs (loop4): Directory bread(block 68) failed
[ 2218.123313][T24803] FAT-fs (loop4): Directory bread(block 69) failed
[ 2218.130738][T24803] FAT-fs (loop4): Directory bread(block 70) failed
[ 2218.137895][T24803] FAT-fs (loop4): Directory bread(block 71) failed
[ 2218.144525][T24803] FAT-fs (loop4): Directory bread(block 72) failed
[ 2218.151425][T24803] FAT-fs (loop4): Directory bread(block 73) failed
[ 2218.228220][ T5445] usb 4-1: new high-speed USB device number 51 using dummy_hcd
[ 2218.246774][T24781] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2218.253655][T24781] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2218.260762][T24781] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2218.267534][T24781] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2218.341813][  T701] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2218.358680][  T701] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2218.367523][  T701] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2218.425827][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2218.434430][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2218.465126][ T5445] usb 4-1: Using ep0 maxpacket: 16
[ 2218.494598][T22095] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2218.501479][T22095] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2218.509138][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2218.517444][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2218.526682][T22095] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2218.533514][T22095] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2218.587626][T24819] loop1: detected capacity change from 0 to 2048
[ 2218.612948][T12668] usb 1-1: new high-speed USB device number 39 using dummy_hcd
[ 2218.673126][ T1635] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2218.683266][ T1635] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2218.693475][ T1635] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2218.703172][ T1635] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2218.747525][T24781] device veth0_vlan entered promiscuous mode
[ 2218.755765][T24819]  loop1: p1 < > p2 p3 < p5 > p4
[ 2218.760523][T24819] loop1: partition table partially beyond EOD, truncated
[ 2218.767485][T24819] loop1: p1 start 4278190080 is beyond EOD, truncated
[ 2218.773961][T24819] loop1: p2 start 16908800 is beyond EOD, truncated
[ 2218.786532][T24819] loop1: p4 start 11326 is beyond EOD, truncated
[ 2218.792682][T24819] loop1: p5 start 16908800 is beyond EOD, truncated
[ 2218.812373][  T103]  loop1: p1 < > p2 p3 < p5 > p4
[ 2218.818380][  T103] loop1: partition table partially beyond EOD, truncated
[ 2218.825853][  T103] loop1: p1 start 4278190080 is beyond EOD, truncated
[ 2218.832745][  T103] loop1: p2 start 16908800 is beyond EOD, truncated
[ 2218.840750][  T103] loop1: p4 start 11326 is beyond EOD, truncated
[ 2218.847153][  T103] loop1: p5 start 16908800 is beyond EOD, truncated
[ 2218.848896][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2218.861974][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2218.870159][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2218.878081][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2218.888991][  T701] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2218.896284][  T701] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2218.905327][ T5445] usb 4-1: config 0 has no interfaces?
[ 2218.908159][T24781] device veth1_macvtap entered promiscuous mode
[ 2218.917202][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2218.925455][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2218.933391][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2218.945603][T22777] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2218.953830][T22777] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2218.963384][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2218.971492][T22095] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2218.995219][T12668] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2219.015241][ T5445] usb 4-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[ 2219.024644][ T5445] usb 4-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[ 2219.032791][ T5445] usb 4-1: Manufacturer: syz
[ 2219.040431][ T5445] usb 4-1: config 0 descriptor??
[ 2219.050159][T12668] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 2219.071335][T12668] usb 1-1: New USB device found, idVendor=04f2, idProduct=1421, bcdDevice= 0.00
[ 2219.080275][T12668] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2219.089811][T12668] usb 1-1: config 0 descriptor??
[ 2219.390149][ T5445] usb 4-1: USB disconnect, device number 51
[ 2219.405915][T24826] usb usb8: usbfs: process 24826 (syz.4.3837) did not claim interface 0 before use
[ 2219.426078][T19480] device bridge_slave_1 left promiscuous mode
[ 2219.432372][T19480] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2219.435531][T24828] loop4: detected capacity change from 0 to 512
[ 2219.446180][T19480] device bridge_slave_0 left promiscuous mode
[ 2219.452123][T19480] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2219.460889][T19480] device veth1_macvtap left promiscuous mode
[ 2219.469392][T19480] device veth0_vlan left promiscuous mode
[ 2219.490919][T24828] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 2219.500303][T24828] ext4 filesystem being mounted at /4/file0 supports timestamps until 2038 (0x7fffffff)
[ 2219.596556][T24840] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3838'.
[ 2219.615956][T12668] chicony 0003:04F2:1421.0001: unknown main item tag 0x0
[ 2219.622861][T12668] chicony 0003:04F2:1421.0001: unknown main item tag 0x0
[ 2219.630463][T12668] chicony 0003:04F2:1421.0001: unbalanced collection at end of report description
[ 2219.640495][T12668] chicony 0003:04F2:1421.0001: Chicony hid parse failed: -22
[ 2219.647775][T12668] chicony: probe of 0003:04F2:1421.0001 failed with error -22
[ 2219.675124][T24841] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3840'.
[ 2219.819190][T22777] usb 1-1: USB disconnect, device number 39
[ 2220.051528][T24845] loop3: detected capacity change from 0 to 256
[ 2220.438150][   T28] kauditd_printk_skb: 21 callbacks suppressed
[ 2220.438166][   T28] audit: type=1400 audit(1728040275.199:310): avc:  denied  { read write } for  pid=24861 comm="syz.3.3848" name="binder0" dev="binder" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[ 2220.493925][T24766] EXT4-fs (loop4): unmounting filesystem.
[ 2220.498322][T24860] loop2: detected capacity change from 0 to 256
[ 2220.522281][T24867] ip6t_REJECT: ECHOREPLY is not supported
[ 2220.562771][   T28] audit: type=1400 audit(1728040275.199:311): avc:  denied  { ioctl open } for  pid=24861 comm="syz.3.3848" path="/dev/binderfs/binder0" dev="binder" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[ 2220.845388][T24874] input: syz0 as /devices/virtual/input/input6
[ 2220.878547][T24876] loop4: detected capacity change from 0 to 128
[ 2220.962737][   T28] audit: type=1400 audit(1728040275.709:312): avc:  denied  { read write } for  pid=24873 comm="syz.1.3854" name="ppp" dev="devtmpfs" ino=138 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[ 2220.979437][T24876] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[ 2220.998162][T24882] loop0: detected capacity change from 0 to 512
[ 2221.015720][T24876] ext4 filesystem being mounted at /6/mnt supports timestamps until 2038 (0x7fffffff)
[ 2221.051768][T24882] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[ 2221.097100][   T28] audit: type=1400 audit(1728040275.709:313): avc:  denied  { open } for  pid=24873 comm="syz.1.3854" path="/dev/ppp" dev="devtmpfs" ino=138 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[ 2221.165114][T22777] usb 3-1: new high-speed USB device number 32 using dummy_hcd
[ 2221.188769][T24882] ext4 filesystem being mounted at /22/file0 supports timestamps until 2038 (0x7fffffff)
[ 2221.323539][   T28] audit: type=1400 audit(1728040275.709:314): avc:  denied  { ioctl } for  pid=24873 comm="syz.1.3854" path="/dev/ppp" dev="devtmpfs" ino=138 ioctlcmd=0x743e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[ 2221.460769][T24766] EXT4-fs (loop4): unmounting filesystem.
[ 2221.882482][T24892] loop1: detected capacity change from 0 to 512
[ 2221.912197][   T28] audit: type=1400 audit(1728040275.889:315): avc:  denied  { create } for  pid=24878 comm="syz.3.3856" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[ 2221.931753][   T28] audit: type=1400 audit(1728040275.889:316): avc:  denied  { write } for  pid=24878 comm="syz.3.3856" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[ 2222.033161][   T28] audit: type=1400 audit(1728040275.889:317): avc:  denied  { setopt } for  pid=24878 comm="syz.3.3856" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[ 2222.053792][T24709] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 2222.071133][T24892] loop1: detected capacity change from 0 to 1024
[ 2222.149775][T24892] EXT4-fs: Ignoring removed bh option
[ 2222.158624][T24405] EXT4-fs (loop0): unmounting filesystem.
[ 2222.185429][T22777] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 2222.195704][T22777] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 2222.195914][T24892] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[ 2222.285172][T22777] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[ 2222.289685][T24910] loop0: detected capacity change from 0 to 512
[ 2222.307200][T24911] EXT4-fs error (device loop1): __ext4_get_inode_loc:4497: comm syz.1.3859: Invalid inode table block 0 in block_group 0
[ 2222.320008][T22777] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 2222.320374][T24910] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[ 2222.337842][T22777] usb 3-1: SerialNumber: syz
[ 2222.340210][T24910] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #16: comm syz.0.3864: invalid indirect mapped block 83886080 (level 1)
[ 2222.357981][T24910] EXT4-fs (loop0): 1 orphan inode deleted
[ 2222.360891][T24911] EXT4-fs (loop1): Remounting filesystem read-only
[ 2222.370019][T24911] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5870: Corrupt filesystem
[ 2222.370383][T24910] EXT4-fs (loop0): 1 truncate cleaned up
[ 2222.385063][T24910] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[ 2222.441444][T24400] EXT4-fs error (device loop1): ext4_map_blocks:607: inode #2: block 16: comm syz-executor: lblock 0 mapped to illegal pblock 16 (length 1)
[ 2222.446450][T24405] EXT4-fs error (device loop0): htree_dirblock_to_tree:1111: inode #2: block 13: comm syz-executor: bad entry in directory: rec_len is too small for name_len - offset=12, inode=2, rec_len=12, size=1024 fake=0
[ 2222.496527][T24405] EXT4-fs (loop0): unmounting filesystem.
[ 2222.504881][T24833] EXT4-fs (loop1): unmounting filesystem.
[ 2222.647997][T22777] usb 3-1: 0:2 : does not exist
[ 2222.868723][T24921] loop4: detected capacity change from 0 to 2048
[ 2222.918644][T24921] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[ 2222.931338][T24921] ext4 filesystem being mounted at /10/file0 supports timestamps until 2038 (0x7fffffff)
[ 2222.941614][T24915] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2222.948727][T24915] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2222.956538][T24915] device bridge_slave_0 entered promiscuous mode
[ 2222.963306][T24766] EXT4-fs (loop4): unmounting filesystem.
[ 2222.963768][T24915] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2222.969078][T22777] usb 3-1: 5:0: failed to get current value for ch 0 (-22)
[ 2222.976116][T24915] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2222.990285][T24915] device bridge_slave_1 entered promiscuous mode
[ 2223.007212][   T28] audit: type=1400 audit(1728040277.769:318): avc:  denied  { watch } for  pid=24931 comm="syz.4.3873" path="/11" dev="tmpfs" ino=73 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[ 2223.039133][T24934] loop4: detected capacity change from 0 to 16
[ 2223.046760][T24934] erofs: (device loop4): mounted with root inode @ nid 36.
[ 2223.054043][   T28] audit: type=1400 audit(1728040277.809:319): avc:  denied  { mount } for  pid=24933 comm="syz.4.3874" name="/" dev="loop4" ino=36 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[ 2223.129494][T24930] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2223.136367][T24930] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2223.144045][T24930] device bridge_slave_0 entered promiscuous mode
[ 2223.151336][T24930] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2223.156334][T24943] loop2: detected capacity change from 0 to 256
[ 2223.158527][T24930] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2223.170624][T24943] FAT-fs (loop2): Directory bread(block 64) failed
[ 2223.172446][T13609] usb 4-1: new full-speed USB device number 52 using dummy_hcd
[ 2223.178466][T24943] FAT-fs (loop2): Directory bread(block 65) failed
[ 2223.185837][T24930] device bridge_slave_1 entered promiscuous mode
[ 2223.191584][T24943] FAT-fs (loop2): Directory bread(block 66) failed
[ 2223.206151][T24943] FAT-fs (loop2): Directory bread(block 67) failed
[ 2223.213968][T24943] FAT-fs (loop2): Directory bread(block 68) failed
[ 2223.220710][T24943] FAT-fs (loop2): Directory bread(block 69) failed
[ 2223.227108][T24943] FAT-fs (loop2): Directory bread(block 70) failed
[ 2223.233385][T24943] FAT-fs (loop2): Directory bread(block 71) failed
[ 2223.239866][T24943] FAT-fs (loop2): Directory bread(block 72) failed
[ 2223.246303][T24943] FAT-fs (loop2): Directory bread(block 73) failed
[ 2223.262369][   T10] device bridge_slave_1 left promiscuous mode
[ 2223.268462][   T10] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2223.275766][   T10] device bridge_slave_0 left promiscuous mode
[ 2223.281755][   T10] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2223.289490][   T10] device veth1_macvtap left promiscuous mode
[ 2223.295475][   T10] device veth0_vlan left promiscuous mode
[ 2223.415803][T24915] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2223.422690][T24915] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2223.429816][T24915] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2223.436659][T24915] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2223.445238][T22777] usb 3-1: 5:0: cannot get min/max values for control 5 (id 5)
[ 2223.452782][T24930] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2223.460106][T24930] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2223.467290][T24930] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2223.474062][T24930] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2223.500977][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2223.508753][   T19] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2223.516622][   T19] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2223.523737][   T19] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2223.531033][   T19] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2223.541764][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2223.550162][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2223.558228][ T8303] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2223.565289][ T8303] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2223.574400][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2223.582155][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2223.589508][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2223.597728][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2223.605794][   T19] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2223.612622][   T19] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2223.619878][T13609] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 2223.630993][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2223.639620][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2223.647715][T12668] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2223.654575][T12668] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2223.661791][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2223.665906][T22777] usb 3-1: 5:0: failed to get current value for ch 1 (-22)
[ 2223.670198][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2223.677127][T13609] usb 4-1: not running at top speed; connect to a high speed hub
[ 2223.684699][T12668] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2223.698931][T12668] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2223.719125][ T5445] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2223.727272][ T5445] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2223.735062][ T5445] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2223.742960][ T5445] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2223.751242][ T5445] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 2223.759213][ T5445] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2223.773081][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 2223.785187][T13609] usb 4-1: config 1 interface 0 has no altsetting 0
[ 2223.789656][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2223.799597][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2223.807780][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2223.818276][T24915] device veth0_vlan entered promiscuous mode
[ 2223.834040][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2223.841835][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2223.850322][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2223.858731][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2223.867614][ T9744] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2223.874873][ T9744] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2223.887824][T24930] device veth0_vlan entered promiscuous mode
[ 2223.894516][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2223.902793][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2223.921645][T24930] device veth1_macvtap entered promiscuous mode
[ 2223.936338][T24915] device veth1_macvtap entered promiscuous mode
[ 2223.939503][T22777] usb 3-1: USB disconnect, device number 32
[ 2223.944846][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2223.959809][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2223.965119][T13609] usb 4-1: New USB device found, idVendor=16c0, idProduct=05e1, bcdDevice= 0.40
[ 2223.968852][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2223.978607][T13609] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2223.987194][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2223.992705][T13609] usb 4-1: Product: syz
[ 2224.000186][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2224.003319][T13609] usb 4-1: Manufacturer: syz
[ 2224.011110][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2224.015516][T13609] usb 4-1: SerialNumber: syz
[ 2224.022971][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2224.035639][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 2224.058217][T24954] loop4: detected capacity change from 0 to 2048
[ 2224.065121][T21445] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2224.073170][T21445] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2224.082519][T21445] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2224.091532][T21445] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2224.097041][T24954] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[ 2224.099800][T21445] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2224.115760][T21445] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2224.125772][ T5445] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2224.133868][ T5445] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2224.136386][T24954] EXT4-fs error (device loop4): ext4_find_dest_de:2112: inode #2: block 16: comm syz.4.3882: bad entry in directory: directory entry overrun - offset=128, inode=18, rec_len=1920, size=2036 fake=0
[ 2224.202446][T24959] netlink: 'syz.1.3878': attribute type 1 has an invalid length.
[ 2224.243619][T24965] loop1: detected capacity change from 0 to 1024
[ 2224.251332][T24965] EXT4-fs: Ignoring removed orlov option
[ 2224.263370][T24967] loop0: detected capacity change from 0 to 16
[ 2224.266850][T24965] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 2224.277262][T24967] erofs: (device loop0): mounted with root inode @ nid 36.
[ 2224.308709][T24965] EXT4-fs error (device loop1): ext4_find_dest_de:2112: inode #12: block 7: comm syz.1.3885: bad entry in directory: directory entry overrun - offset=0, inode=1793120026, rec_len=34652, size=56 fake=0
[ 2224.328707][T22777] usb 3-1: new high-speed USB device number 33 using dummy_hcd
[ 2224.333567][T24965] EXT4-fs error (device loop1): ext4_xattr_ibody_get:603: inode #12: comm syz.1.3885: corrupted in-inode xattr
[ 2224.383051][T24957] EXT4-fs (loop4): unmounting filesystem.
[ 2224.423760][T24977] loop0: detected capacity change from 0 to 512
[ 2224.444652][T24977] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[ 2224.454570][T24977] EXT4-fs (loop0): invalid journal inode
[ 2224.462020][T24977] EXT4-fs (loop0): can't get journal size
[ 2224.469334][T24977] EXT4-fs (loop0): 1 truncate cleaned up
[ 2224.474840][T24977] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[ 2224.505111][T13609] usbhid 4-1:1.0: can't add hid device: -71
[ 2224.510963][T13609] usbhid: probe of 4-1:1.0 failed with error -71
[ 2224.523412][T13609] usb 4-1: USB disconnect, device number 52
[ 2224.554692][T24981] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2224.561564][T24981] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2224.569492][T24981] device bridge_slave_0 entered promiscuous mode
[ 2224.575994][T22777] usb 3-1: Using ep0 maxpacket: 16
[ 2224.582502][   T10] device bridge_slave_1 left promiscuous mode
[ 2224.588521][   T10] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2224.595757][   T10] device bridge_slave_0 left promiscuous mode
[ 2224.601683][   T10] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2224.609427][   T10] device veth1_macvtap left promiscuous mode
[ 2224.615268][   T10] device veth0_vlan left promiscuous mode
[ 2224.698087][T24981] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2224.704978][T24981] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2224.712170][T24981] device bridge_slave_1 entered promiscuous mode
[ 2224.715136][T22777] usb 3-1: config 1 interface 0 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 2224.731561][T22777] usb 3-1: config 1 interface 0 has no altsetting 0
[ 2224.769661][T24981] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2224.776509][T24981] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2224.783691][T24981] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2224.790537][T24981] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2224.821580][T13609] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2224.830753][T13609] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2224.838874][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2224.846326][T13609] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2224.863051][T24930] EXT4-fs error (device loop1): ext4_lookup:1855: inode #11: comm syz-executor: iget: bad extra_isize 7293 (inode size 256)
[ 2224.876259][T24930] EXT4-fs error (device loop1): ext4_lookup:1855: inode #11: comm syz-executor: iget: bad extra_isize 7293 (inode size 256)
[ 2224.893205][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2224.902992][ T8303] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2224.909867][ T8303] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2224.917446][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2224.925334][T22777] usb 3-1: New USB device found, idVendor=04f3, idProduct=074d, bcdDevice= 0.40
[ 2224.925759][ T8303] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2224.938995][T22777] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2224.940961][ T8303] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2224.949058][T22777] usb 3-1: Product: syz
[ 2224.960002][T22777] usb 3-1: Manufacturer: syz
[ 2224.964501][T22777] usb 3-1: SerialNumber: syz
[ 2224.974922][T24994] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3897'.
[ 2224.991889][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2225.001783][T24996] incfs_lookup_dentry err:-5
[ 2225.005919][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2225.007118][T24996] incfs: Can't find or create .index dir in ./file0
[ 2225.020740][T24996] incfs: mount failed -5
[ 2225.021168][T24930] EXT4-fs (loop1): unmounting filesystem.
[ 2225.034575][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2225.053504][T24981] device veth0_vlan entered promiscuous mode
[ 2225.102563][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2225.112688][T24915] EXT4-fs (loop0): unmounting filesystem.
[ 2225.119561][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2225.158374][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2225.183505][T24981] device veth1_macvtap entered promiscuous mode
[ 2225.270335][T12668] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2225.355890][T21445] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2225.369836][T21445] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2225.528391][T22777] usbhid 3-1:1.0: can't add hid device: -71
[ 2225.556958][T22777] usbhid: probe of 3-1:1.0 failed with error -71
[ 2225.580543][T25004] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2225.583148][T22777] usb 3-1: USB disconnect, device number 33
[ 2227.099823][T25004] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2227.144387][T25004] device bridge_slave_0 entered promiscuous mode
[ 2227.192343][T25004] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2227.212225][T25004] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2227.237955][T25004] device bridge_slave_1 entered promiscuous mode
[ 2229.117351][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 2229.125466][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 2229.138976][   T28] kauditd_printk_skb: 10 callbacks suppressed
[ 2229.138992][   T28] audit: type=1400 audit(1728040283.889:330): avc:  denied  { getopt } for  pid=25037 comm="syz.3.3907" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[ 2229.167065][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 2229.185915][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 2229.219071][ T8303] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2229.225962][ T8303] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2229.241188][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 2229.250030][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 2229.255643][T25048] loop2: detected capacity change from 0 to 256
[ 2229.258141][ T8303] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2229.265674][T25047] loop0: detected capacity change from 0 to 2048
[ 2229.270772][ T8303] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2229.285643][T25047] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2229.297044][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 2229.304775][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 2229.313992][T25047] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[ 2229.328075][T25047] EXT4-fs error (device loop0): empty_inline_dir:1858: inode #12: block 5: comm syz.0.3913: bad entry in directory: directory entry overrun - offset=4, inode=13, rec_len=7952, size=60 fake=0
[ 2229.347542][T25047] EXT4-fs (loop0): Remounting filesystem read-only
[ 2229.355485][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2229.363900][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2229.369833][T25047] EXT4-fs warning (device loop0): empty_inline_dir:1865: bad inline directory (dir #12) - inode 13, rec_len 7952, name_len 0inline size 60
[ 2229.374601][T25053] loop3: detected capacity change from 0 to 128
[ 2229.391795][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2229.399836][T24915] EXT4-fs (loop0): unmounting filesystem.
[ 2229.399853][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2229.412722][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 2229.419411][T25053] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 2229.425694][T25004] device veth0_vlan entered promiscuous mode
[ 2229.436574][T25053] ext4 filesystem being mounted at /30/mnt supports timestamps until 2038 (0x7fffffff)
[ 2229.455627][T25058] loop0: detected capacity change from 0 to 512
[ 2229.475085][ T8303] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2229.488595][T25058] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[ 2229.499960][T25004] device veth1_macvtap entered promiscuous mode
[ 2229.508368][T13609] usb 5-1: new high-speed USB device number 38 using dummy_hcd
[ 2229.528946][   T28] audit: type=1400 audit(1728040284.289:331): avc:  denied  { block_suspend } for  pid=25055 comm="syz.2.3916" capability=36  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[ 2229.529325][T25058] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec028, mo2=0002]
[ 2229.554839][T22777] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2229.567349][T25058] System zones: 1-12
[ 2229.575989][   T10] device bridge_slave_1 left promiscuous mode
[ 2229.581998][   T10] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2229.590019][   T10] device bridge_slave_0 left promiscuous mode
[ 2229.596447][   T10] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2229.604477][   T10] device bridge_slave_1 left promiscuous mode
[ 2229.610716][   T10] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2229.618203][   T10] device bridge_slave_0 left promiscuous mode
[ 2229.624386][   T10] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2229.624631][T25058] EXT4-fs (loop0): 1 orphan inode deleted
[ 2229.637844][   T10] device veth1_macvtap left promiscuous mode
[ 2229.643698][   T10] device veth0_vlan left promiscuous mode
[ 2229.649457][T25058] EXT4-fs (loop0): 1 truncate cleaned up
[ 2229.654958][T25058] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[ 2229.663799][   T10] device veth1_macvtap left promiscuous mode
[ 2229.669836][   T10] device veth0_vlan left promiscuous mode
[ 2229.669893][T25053] syz.3.3914 (25053) used greatest stack depth: 19016 bytes left
[ 2229.703597][T24579] EXT4-fs (loop3): unmounting filesystem.
[ 2229.729400][T24915] EXT4-fs (loop0): unmounting filesystem.
[ 2229.743797][T25064] Source file dentry negative
[ 2229.784000][T25068] loop0: detected capacity change from 0 to 1024
[ 2229.790249][T13609] usb 5-1: Using ep0 maxpacket: 8
[ 2229.795558][T25070] loop3: detected capacity change from 0 to 128
[ 2229.805689][T25068] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2229.820861][T25070] EXT4-fs: Ignoring removed i_version option
[ 2229.831924][T25070] EXT4-fs: Ignoring removed orlov option
[ 2229.839295][T25070] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 2229.848280][T25070] ext4 filesystem being mounted at /32/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[ 2229.884920][T25068] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[ 2229.935126][T13609] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 2229.976867][T25068] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #11: comm syz.0.3919: missing EA_INODE flag
[ 2229.988576][T25068] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.3919: error while reading EA inode 11 err=-117
[ 2230.008281][T24915] EXT4-fs (loop0): unmounting filesystem.
[ 2230.034450][T22777] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2230.068225][   T28] audit: type=1400 audit(1728040284.829:332): avc:  denied  { link } for  pid=25069 comm="syz.3.3920" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop3" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[ 2230.155165][T13609] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 2230.164221][T13609] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2230.173780][T13609] usb 5-1: Product: syz
[ 2230.178656][T13609] usb 5-1: Manufacturer: syz
[ 2230.183128][T13609] usb 5-1: SerialNumber: syz
[ 2230.345132][T22777] usb 1-1: new high-speed USB device number 40 using dummy_hcd
[ 2230.358490][T25085] loop2: detected capacity change from 0 to 256
[ 2230.595077][T22777] usb 1-1: Using ep0 maxpacket: 16
[ 2230.837637][T24579] EXT4-fs (loop3): unmounting filesystem.
[ 2230.868702][T25089] loop3: detected capacity change from 0 to 512
[ 2230.896663][T25089] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 2230.905496][T25089] ext4 filesystem being mounted at /33/file0 supports timestamps until 2038 (0x7fffffff)
[ 2230.915478][T22777] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x89 has an invalid bInterval 0, changing to 7
[ 2230.922589][   T28] audit: type=1400 audit(1728040285.679:333): avc:  denied  { setattr } for  pid=25088 comm="syz.3.3925" path="/33/file0/file1" dev="loop3" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 2230.926225][T22777] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0
[ 2230.958942][T22777] usb 1-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[ 2230.967803][T22777] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2230.968631][T24579] EXT4-fs (loop3): unmounting filesystem.
[ 2230.976109][T22777] usb 1-1: config 0 descriptor??
[ 2231.018385][T25094] loop1: detected capacity change from 0 to 128
[ 2231.026387][T25094] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 2231.034945][T25094] ext4 filesystem being mounted at /1/mnt supports timestamps until 2038 (0x7fffffff)
[ 2231.059449][T25097] loop3: detected capacity change from 0 to 512
[ 2231.067464][T25097] EXT4-fs: Ignoring removed orlov option
[ 2231.091039][T25097] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[ 2231.101238][T25097] ext4 filesystem being mounted at /34/bus supports timestamps until 2038 (0x7fffffff)
[ 2231.121062][   T28] audit: type=1400 audit(1728040285.879:334): avc:  denied  { ioctl } for  pid=25096 comm="syz.3.3926" path="/34/bus/cpuset.effective_mems" dev="loop3" ino=19 ioctlcmd=0x660f scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[ 2231.150511][T24579] EXT4-fs (loop3): unmounting filesystem.
[ 2231.169634][T25102] loop3: detected capacity change from 0 to 2048
[ 2231.182713][T25004] EXT4-fs (loop1): unmounting filesystem.
[ 2231.197153][T25102] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 2231.213423][T25108] netlink: 24 bytes leftover after parsing attributes in process `syz.1.3930'.
[ 2231.249764][T25110] tc_dump_action: action bad kind
[ 2231.256946][   T28] audit: type=1400 audit(1728040286.019:335): avc:  denied  { bind } for  pid=25109 comm="syz.1.3931" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[ 2231.439915][T13609] cdc_ncm 5-1:1.0: MAC-Address: 42:42:42:42:42:42
[ 2231.443042][T25118] loop1: detected capacity change from 0 to 256
[ 2231.446818][   T28] audit: type=1326 audit(1728040286.199:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25117 comm="syz.1.3934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f0957dff9 code=0x7ffc0000
[ 2231.486484][T13609] cdc_ncm 5-1:1.0: setting tx_max = 16384
[ 2232.963608][T25116] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 2232.972218][T25116] device bridge_slave_0 left promiscuous mode
[ 2232.978229][T25116] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2232.986045][T25116] device bridge_slave_1 left promiscuous mode
[ 2232.992027][T25116] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2233.035364][T25080] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2233.043638][T25080] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2233.051738][   T10] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[ 2233.062616][T13609] cdc_ncm 5-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.4-1, CDC NCM (NO ZLP), 42:42:42:42:42:42
[ 2233.077874][   T10] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 6 with error 28
[ 2233.089818][   T28] audit: type=1326 audit(1728040286.199:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25117 comm="syz.1.3934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f4f0957dff9 code=0x7ffc0000
[ 2233.120056][T25080] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 2233.132723][T25080] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 2233.142244][   T10] EXT4-fs (loop3): This should not happen!! Data will be lost
[ 2233.142244][   T10] 
[ 2233.151782][   T28] audit: type=1326 audit(1728040286.199:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25117 comm="syz.1.3934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f0957dff9 code=0x7ffc0000
[ 2233.161212][T22777] hid (null): unknown global tag 0xc
[ 2233.184865][   T10] EXT4-fs (loop3): Total free blocks count 0
[ 2233.191451][   T10] EXT4-fs (loop3): Free/Dirty block details
[ 2233.195689][T13609] usb 5-1: USB disconnect, device number 38
[ 2233.216270][T13609] cdc_ncm 5-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.4-1, CDC NCM (NO ZLP)
[ 2233.217727][   T10] EXT4-fs (loop3): free_blocks=2415919104
[ 2233.226634][T22777] hid (null): unknown global tag 0xd
[ 2233.230995][   T28] audit: type=1326 audit(1728040286.199:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=25117 comm="syz.1.3934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f4f0957dff9 code=0x7ffc0000
[ 2233.236207][   T10] EXT4-fs (loop3): dirty_blocks=32
[ 2233.265560][T22777] hid (null): invalid report_count 14028
[ 2233.271342][T22777] hid (null): invalid report_size 4696984
[ 2233.279734][T22777] hid-generic 0003:0158:0100.0002: unknown main item tag 0x1
[ 2233.287326][T22777] hid-generic 0003:0158:0100.0002: unexpected long global item
[ 2233.291472][T25136] loop4: detected capacity change from 0 to 1024
[ 2233.294835][T22777] hid-generic: probe of 0003:0158:0100.0002 failed with error -22
[ 2233.308785][   T10] EXT4-fs (loop3): Block reservation details
[ 2233.311459][T25136] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[ 2233.314568][   T10] EXT4-fs (loop3): i_reserved_data_blocks=1
[ 2233.346453][   T10] EXT4-fs (loop3): Delayed block allocation failed for inode 19 at logical offset 0 with max blocks 1 with error 28
[ 2233.358721][T22777] ==================================================================
[ 2233.366589][T22777] BUG: KASAN: use-after-free in __list_del_entry_valid+0xa6/0x130
[ 2233.374224][T22777] Read of size 8 at addr ffff888116680cf0 by task kworker/0:4/22777
[ 2233.382035][T22777] 
[ 2233.384207][T22777] CPU: 0 PID: 22777 Comm: kworker/0:4 Not tainted 6.1.99-syzkaller-00108-gd4dab27b9d1c #0
[ 2233.393927][T22777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[ 2233.403818][T22777] Workqueue: events binder_deferred_func
[ 2233.409293][T22777] Call Trace:
[ 2233.412411][T22777]  <TASK>
[ 2233.415191][T22777]  dump_stack_lvl+0x151/0x1b7
[ 2233.419700][T22777]  ? nf_tcp_handle_invalid+0x3f1/0x3f1
[ 2233.425000][T22777]  ? _printk+0xd1/0x111
[ 2233.428988][T22777]  ? __virt_addr_valid+0x242/0x2f0
[ 2233.433932][T22777]  print_report+0x158/0x4e0
[ 2233.438273][T22777]  ? __virt_addr_valid+0x242/0x2f0
[ 2233.443223][T22777]  ? kasan_complete_mode_report_info+0x90/0x1b0
[ 2233.449295][T22777]  ? __list_del_entry_valid+0xa6/0x130
[ 2233.454589][T22777]  kasan_report+0x13c/0x170
[ 2233.458930][T22777]  ? __list_del_entry_valid+0xa6/0x130
[ 2233.464225][T22777]  __asan_report_load8_noabort+0x14/0x20
[ 2233.469693][T22777]  __list_del_entry_valid+0xa6/0x130
[ 2233.474813][T22777]  process_one_work+0x4d7/0xcb0
[ 2233.479500][T22777]  worker_thread+0xa60/0x1260
[ 2233.484016][T22777]  kthread+0x26d/0x300
[ 2233.487917][T22777]  ? worker_clr_flags+0x1a0/0x1a0
[ 2233.492789][T22777]  ? kthread_blkcg+0xd0/0xd0
[ 2233.497208][T22777]  ret_from_fork+0x1f/0x30
[ 2233.501463][T22777]  </TASK>
[ 2233.504333][T22777] 
[ 2233.506498][T22777] Allocated by task 13609:
[ 2233.510749][T22777]  kasan_set_track+0x4b/0x70
[ 2233.515174][T22777]  kasan_save_alloc_info+0x1f/0x30
[ 2233.520121][T22777]  __kasan_kmalloc+0x9c/0xb0
[ 2233.524550][T22777]  __kmalloc_node+0xb4/0x1e0
[ 2233.529008][T22777]  kvmalloc_node+0x221/0x640
[ 2233.533400][T22777]  alloc_netdev_mqs+0x8c/0xf90
[ 2233.537998][T22777]  alloc_etherdev_mqs+0x36/0x40
[ 2233.542684][T22777]  usbnet_probe+0x207/0x27c0
[ 2233.547112][T22777]  usb_probe_interface+0x5b6/0xa90
[ 2233.552061][T22777]  really_probe+0x2b8/0x920
[ 2233.556484][T22777]  __driver_probe_device+0x1a0/0x310
[ 2233.561611][T22777]  driver_probe_device+0x54/0x3d0
[ 2233.566466][T22777]  __device_attach_driver+0x2e3/0x490
[ 2233.571675][T22777]  bus_for_each_drv+0x183/0x200
[ 2233.576365][T22777]  __device_attach+0x312/0x510
[ 2233.580962][T22777]  device_initial_probe+0x1a/0x20
[ 2233.585823][T22777]  bus_probe_device+0xbe/0x1e0
[ 2233.590429][T22777]  device_add+0xb60/0xf10
[ 2233.594675][T22777]  usb_set_configuration+0x190f/0x1e80
[ 2233.600067][T22777]  usb_generic_driver_probe+0x8b/0x150
[ 2233.605350][T22777]  usb_probe_device+0x144/0x260
[ 2233.610082][T22777]  really_probe+0x2b8/0x920
[ 2233.614375][T22777]  __driver_probe_device+0x1a0/0x310
[ 2233.619498][T22777]  driver_probe_device+0x54/0x3d0
[ 2233.624444][T22777]  __device_attach_driver+0x2e3/0x490
[ 2233.629650][T22777]  bus_for_each_drv+0x183/0x200
[ 2233.634339][T22777]  __device_attach+0x312/0x510
[ 2233.638941][T22777]  device_initial_probe+0x1a/0x20
[ 2233.643797][T22777]  bus_probe_device+0xbe/0x1e0
[ 2233.648398][T22777]  device_add+0xb60/0xf10
[ 2233.652564][T22777]  usb_new_device+0xf2f/0x1820
[ 2233.657164][T22777]  hub_event+0x2db1/0x4830
[ 2233.661416][T22777]  process_one_work+0x73d/0xcb0
[ 2233.666105][T22777]  worker_thread+0xa60/0x1260
[ 2233.670617][T22777]  kthread+0x26d/0x300
[ 2233.674525][T22777]  ret_from_fork+0x1f/0x30
[ 2233.678776][T22777] 
[ 2233.680946][T22777] Freed by task 13609:
[ 2233.684853][T22777]  kasan_set_track+0x4b/0x70
[ 2233.689276][T22777]  kasan_save_free_info+0x2b/0x40
[ 2233.694140][T22777]  ____kasan_slab_free+0x131/0x180
[ 2233.699095][T22777]  __kasan_slab_free+0x11/0x20
[ 2233.703686][T22777]  __kmem_cache_free+0x218/0x3b0
[ 2233.708460][T22777]  kfree+0x7a/0xf0
[ 2233.712019][T22777]  kvfree+0x35/0x40
[ 2233.715754][T22777]  netdev_freemem+0x3f/0x60
[ 2233.720089][T22777]  netdev_release+0x7f/0xb0
[ 2233.724539][T22777]  device_release+0x95/0x1c0
[ 2233.728960][T22777]  kobject_put+0x178/0x260
[ 2233.733215][T22777]  put_device+0x1f/0x30
[ 2233.737208][T22777]  free_netdev+0x393/0x480
[ 2233.741459][T22777]  usbnet_disconnect+0x245/0x390
[ 2233.746239][T22777]  usb_unbind_interface+0x1fa/0x8c0
[ 2233.751270][T22777]  device_release_driver_internal+0x53e/0x870
[ 2233.757168][T22777]  device_release_driver+0x19/0x20
[ 2233.762117][T22777]  bus_remove_device+0x2fa/0x360
[ 2233.766888][T22777]  device_del+0x663/0xe90
[ 2233.771054][T22777]  usb_disable_device+0x380/0x720
[ 2233.775917][T22777]  usb_disconnect+0x32a/0x890
[ 2233.780427][T22777]  hub_event+0x1ed8/0x4830
[ 2233.784683][T22777]  process_one_work+0x73d/0xcb0
[ 2233.789512][T22777]  worker_thread+0xd71/0x1260
[ 2233.794164][T22777]  kthread+0x26d/0x300
[ 2233.798071][T22777]  ret_from_fork+0x1f/0x30
[ 2233.802329][T22777] 
[ 2233.804490][T22777] Last potentially related work creation:
[ 2233.810132][T22777]  kasan_save_stack+0x3b/0x60
[ 2233.814650][T22777]  __kasan_record_aux_stack+0xb4/0xc0
[ 2233.819851][T22777]  kasan_record_aux_stack_noalloc+0xb/0x10
[ 2233.825495][T22777]  insert_work+0x56/0x310
[ 2233.829659][T22777]  __queue_work+0x9b6/0xd70
[ 2233.834001][T22777]  queue_work_on+0x105/0x170
[ 2233.838426][T22777]  usbnet_link_change+0xeb/0x100
[ 2233.843200][T22777]  usbnet_probe+0x1dbe/0x27c0
[ 2233.847713][T22777]  usb_probe_interface+0x5b6/0xa90
[ 2233.852660][T22777]  really_probe+0x2b8/0x920
[ 2233.857001][T22777]  __driver_probe_device+0x1a0/0x310
[ 2233.862121][T22777]  driver_probe_device+0x54/0x3d0
[ 2233.866987][T22777]  __device_attach_driver+0x2e3/0x490
[ 2233.872194][T22777]  bus_for_each_drv+0x183/0x200
[ 2233.876878][T22777]  __device_attach+0x312/0x510
[ 2233.881511][T22777]  device_initial_probe+0x1a/0x20
[ 2233.886341][T22777]  bus_probe_device+0xbe/0x1e0
[ 2233.890937][T22777]  device_add+0xb60/0xf10
[ 2233.895102][T22777]  usb_set_configuration+0x190f/0x1e80
[ 2233.900396][T22777]  usb_generic_driver_probe+0x8b/0x150
[ 2233.905691][T22777]  usb_probe_device+0x144/0x260
[ 2233.910377][T22777]  really_probe+0x2b8/0x920
[ 2233.914718][T22777]  __driver_probe_device+0x1a0/0x310
[ 2233.919837][T22777]  driver_probe_device+0x54/0x3d0
[ 2233.924696][T22777]  __device_attach_driver+0x2e3/0x490
[ 2233.929906][T22777]  bus_for_each_drv+0x183/0x200
[ 2233.934602][T22777]  __device_attach+0x312/0x510
[ 2233.939195][T22777]  device_initial_probe+0x1a/0x20
[ 2233.944055][T22777]  bus_probe_device+0xbe/0x1e0
[ 2233.948655][T22777]  device_add+0xb60/0xf10
[ 2233.952829][T22777]  usb_new_device+0xf2f/0x1820
[ 2233.957420][T22777]  hub_event+0x2db1/0x4830
[ 2233.961671][T22777]  process_one_work+0x73d/0xcb0
[ 2233.966358][T22777]  worker_thread+0xa60/0x1260
[ 2233.970880][T22777]  kthread+0x26d/0x300
[ 2233.974778][T22777]  ret_from_fork+0x1f/0x30
[ 2233.979032][T22777] 
[ 2233.981203][T22777] The buggy address belongs to the object at ffff888116680000
[ 2233.981203][T22777]  which belongs to the cache kmalloc-4k of size 4096
[ 2233.995175][T22777] The buggy address is located 3312 bytes inside of
[ 2233.995175][T22777]  4096-byte region [ffff888116680000, ffff888116681000)
[ 2234.008456][T22777] 
[ 2234.010622][T22777] The buggy address belongs to the physical page:
[ 2234.016889][T22777] page:ffffea000459a000 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x116680
[ 2234.026938][T22777] head:ffffea000459a000 order:3 compound_mapcount:0 compound_pincount:0
[ 2234.035097][T22777] flags: 0x4000000000010200(slab|head|zone=1)
[ 2234.041091][T22777] raw: 4000000000010200 0000000000000000 dead000000000001 ffff888100043380
[ 2234.049597][T22777] raw: 0000000000000000 0000000000040004 00000001ffffffff 0000000000000000
[ 2234.058011][T22777] page dumped because: kasan: bad access detected
[ 2234.064270][T22777] page_owner tracks the page as allocated
[ 2234.069816][T22777] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x1d20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 12668, tgid 12668 (kworker/1:7), ts 2002014824295, free_ts 2002007334390
[ 2234.092913][T22777]  post_alloc_hook+0x213/0x220
[ 2234.097505][T22777]  prep_new_page+0x1b/0x110
[ 2234.101841][T22777]  get_page_from_freelist+0x27ea/0x2870
[ 2234.107221][T22777]  __alloc_pages+0x3a1/0x780
[ 2234.111658][T22777]  alloc_slab_page+0x6c/0xf0
[ 2234.116076][T22777]  new_slab+0x90/0x3e0
[ 2234.119980][T22777]  ___slab_alloc+0x6f9/0xb80
[ 2234.124407][T22777]  __slab_alloc+0x5d/0xa0
[ 2234.128574][T22777]  __kmem_cache_alloc_node+0x1af/0x250
[ 2234.133872][T22777]  __kmalloc_node_track_caller+0xa2/0x1e0
[ 2234.139424][T22777]  __alloc_skb+0x125/0x2d0
[ 2234.143676][T22777]  rtmsg_ifinfo_build_skb+0x7f/0x180
[ 2234.148798][T22777]  rtmsg_ifinfo+0x78/0x120
[ 2234.153050][T22777]  netdev_state_change+0x1be/0x250
[ 2234.158018][T22777]  linkwatch_do_dev+0x110/0x160
[ 2234.162682][T22777]  __linkwatch_run_queue+0x448/0x6b0
[ 2234.167806][T22777] page last free stack trace:
[ 2234.172318][T22777]  free_unref_page_prepare+0x83d/0x850
[ 2234.177613][T22777]  free_unref_page+0xb2/0x5c0
[ 2234.182123][T22777]  free_compound_page+0x9d/0xd0
[ 2234.186811][T22777]  destroy_large_folio+0x56/0x90
[ 2234.191585][T22777]  __folio_put+0xcf/0xe0
[ 2234.195664][T22777]  skb_release_data+0x3c1/0x840
[ 2234.200351][T22777]  consume_skb+0xac/0x250
[ 2234.204518][T22777]  __dev_kfree_skb_any+0x159/0x180
[ 2234.209475][T22777]  napi_consume_skb+0x155/0x2d0
[ 2234.214150][T22777]  free_old_xmit_skbs+0x119/0x290
[ 2234.219099][T22777]  start_xmit+0x185/0x1670
[ 2234.223349][T22777]  dev_hard_start_xmit+0x1de/0x630
[ 2234.228297][T22777]  sch_direct_xmit+0x298/0x9b0
[ 2234.232902][T22777]  __dev_queue_xmit+0x17c2/0x36e0
[ 2234.237758][T22777]  ip_finish_output2+0xb44/0xf70
[ 2234.242618][T22777]  __ip_finish_output+0x162/0x370
[ 2234.247480][T22777] 
[ 2234.249649][T22777] Memory state around the buggy address:
[ 2234.255120][T22777]  ffff888116680b80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2234.263017][T22777]  ffff888116680c00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2234.270914][T22777] >ffff888116680c80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2234.278811][T22777]                                                              ^
[ 2234.286364][T22777]  ffff888116680d00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2234.294263][T22777]  ffff888116680d80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2234.302157][T22777] ==================================================================
[ 2234.310058][T22777] Disabling lock debugging due to kernel taint
[ 2234.355815][T25018] usb 1-1: USB disconnect, device number 40
[ 2234.442245][T25160] loop3: detected capacity change from 0 to 512
[ 2234.462491][T25160] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[ 2234.471496][T25160] EXT4-fs (loop3): invalid journal inode
[ 2234.477081][T25160] EXT4-fs (loop3): can't get journal size
[ 2234.484131][T25160] EXT4-fs (loop3): 1 truncate cleaned up
[ 2234.490727][T25160] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[ 2234.580733][T24981] EXT4-fs (loop4): unmounting filesystem.
[ 2235.057338][T24579] EXT4-fs (loop3): unmounting filesystem.