last executing test programs:

1m56.070253863s ago: executing program 32 (id=95):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="180000000000000000000000000000001805000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000b90600008500000004000000850000002300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r0}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000b80)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000980)='sys_exit\x00', r1}, 0x10)

1m53.627244154s ago: executing program 33 (id=165):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f0000000100)={{0x1, 0x0, 0x0, 0x3}})
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r0, 0x40505412, &(0x7f0000000440)={0x0, 0xf4240})
ioctl$SNDRV_TIMER_IOCTL_START(r0, 0x54a0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, 0x0)

1m43.783325321s ago: executing program 34 (id=359):
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newlink={0x30, 0x10, 0xa9, 0x0, 0x0, {0x0, 0x0, 0x0, r1}, [@IFLA_MASTER={0x8, 0xa, r1}, @IFLA_MTU={0x8, 0x4, 0x7f}]}, 0x30}}, 0x0)

1m15.734284223s ago: executing program 1 (id=935):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r1)
waitid(0x0, 0x0, 0x0, 0x2, 0x0)

1m15.716106443s ago: executing program 1 (id=936):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, 0xffffffffffffffff, 0x0, 0x28, &(0x7f0000000000)='/proc\x00s%nN\xd4\xa2\x88\x00\xd1l,K*\xe4Y\xe1e\xac\x81Z*Q[\x00\x00\x05\x00'/42}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
getdents64(r1, 0x0, 0x0)

1m15.687465233s ago: executing program 1 (id=937):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0x1, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r1}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

1m15.643735763s ago: executing program 1 (id=940):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000140)='./file2\x00', 0x200080, &(0x7f0000000340)=ANY=[@ANYRES16=0x0], 0x1, 0x1220, &(0x7f0000000380)="$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")
creat(&(0x7f0000000100)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000340)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x60142, 0x0)
write$binfmt_elf64(r0, 0x0, 0xb2c)

1m15.491600884s ago: executing program 1 (id=944):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)

1m15.230539255s ago: executing program 1 (id=949):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f00000010c0)=0x5, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000000)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c)
syz_emit_ethernet(0xfdef, &(0x7f0000001b80)={@multicast, @dev, @void, {@ipv4={0x800, @generic={{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @empty=0x2, @multicast2}}}}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

1m15.230461096s ago: executing program 35 (id=949):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f00000010c0)=0x5, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000000)=@req3={0x1000, 0x3a, 0x1000, 0x3a}, 0x1c)
syz_emit_ethernet(0xfdef, &(0x7f0000001b80)={@multicast, @dev, @void, {@ipv4={0x800, @generic={{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @empty=0x2, @multicast2}}}}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

1m9.296224844s ago: executing program 7 (id=1050):
munmap(&(0x7f0000002000/0x4000)=nil, 0x4000)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x2a)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@mss, @timestamp, @window, @mss, @timestamp, @window], 0x21a5)

1m9.219399693s ago: executing program 7 (id=1051):
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_SET_CLOCK(r2, 0x4188aec6, &(0x7f0000000040))
close_range(r0, 0xffffffffffffffff, 0x0)

1m9.022307635s ago: executing program 7 (id=1056):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x54, r2, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x0, @loopback}}, {0x14, 0x2, @in={0x2, 0x0, @multicast2}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000840)={0x20, r2, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_NODE={0xc, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_REKEYING={0x8, 0x6, 0xffff}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x20040800}, 0x0)

1m9.014247215s ago: executing program 7 (id=1057):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0x1400c, &(0x7f0000000840)={[{@stripe={'stripe', 0x3d, 0x3d}}, {@init_itable}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}]}, 0x3, 0x44d, &(0x7f0000000340)="$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")
syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
fchmodat(r0, &(0x7f00000000c0)='./file1\x00', 0x0)

1m8.890210685s ago: executing program 7 (id=1059):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REQ_SET_REG(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000200)={0x1c, r1, 0x1, 0x70bd2a, 0x25dfdbfe, {}, [@NL80211_ATTR_USER_REG_HINT_TYPE={0x8, 0x9a, 0x2}]}, 0x1c}}, 0x4084)

1m8.755343176s ago: executing program 7 (id=1060):
r0 = socket(0x10, 0x3, 0x0)
connect$netlink(r0, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x1}, 0xc)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={&(0x7f0000001500)=@newtaction={0x18, 0x32, 0x829, 0x0, 0x0, {}, [{0x4}]}, 0x18}}, 0x0)

1m8.755248946s ago: executing program 36 (id=1060):
r0 = socket(0x10, 0x3, 0x0)
connect$netlink(r0, &(0x7f00000014c0)=@proc={0x10, 0x0, 0x1}, 0xc)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={&(0x7f0000000000), 0xc, &(0x7f0000000040)={&(0x7f0000001500)=@newtaction={0x18, 0x32, 0x829, 0x0, 0x0, {}, [{0x4}]}, 0x18}}, 0x0)

1m8.362114938s ago: executing program 9 (id=1061):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000001c0)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@minixdf}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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")
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000040)='proc\x00', 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0xd4)
getdents64(r0, &(0x7f0000000000)=""/41, 0x29)
getdents64(r0, 0xfffffffffffffffe, 0x29)

1m8.210001659s ago: executing program 9 (id=1063):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000c00)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002e20207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0xa0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x6}, 0x18)
readahead(r0, 0x6, 0x6)

53.183813949s ago: executing program 37 (id=1063):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000c00)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002e20207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0xa0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x6}, 0x18)
readahead(r0, 0x6, 0x6)

27.879690589s ago: executing program 2 (id=1773):
r0 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dc55)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0xffffffffffffff22, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
write$binfmt_elf32(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="5402"], 0x69)
close(r0)
execve(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)

27.829199518s ago: executing program 2 (id=1775):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa, 0x5, 0x2, 0x4, 0x102, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0xfffffffffffffe8b, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
brk(0x20ffc004)

27.758588249s ago: executing program 2 (id=1778):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0xa, 0x8, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000002300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x1e00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000500)={{r0}, &(0x7f0000000480), &(0x7f00000004c0)=r1}, 0x20)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r2)

27.758442409s ago: executing program 2 (id=1779):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x2000006, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], 0x25, 0x354, &(0x7f0000000fc0)="$eJzs3T9oJGUUAPC3N0k2FzyzhXBo42onyHGJWGiVcJxwmEJPFv81Ll7OP9n1IIsLschmG+WwUmwEreyu0PJqsRCxs7D1BDkVG687uODI7sz+y25MUmyM+PsV4fG+7833ZjIwk4V8+1orNq7MxtU7d27H/HwhZlYurMTdQpTiVCSR2YmJPpybnAcATri7aRp/ppmDZ3+80Is8+wHgv6v7/H/jzCBRHITJQcXX75tWWwDAFB3y7//nJmavTa0tAGCKsud/a/D8f3RkeM/H/DMHfyYAAJx4L7z8yrOraxGXy+X5iPoHzUqzEk8PxlevxltRi/U4H4uxG5G9KGRvC52fz1xau3i+3PFrKSqdimYlot5qVrI3hdWkW1+MpViMUl6f9uuTTv1St74cETut7vpRLzQrs7GQr//TQqzHcizGA2P1EZfWLi6X8wNU6r36VkQ75nsn0en/XCzGD6/HtajFlejUDvrfXiqXL6RrI/XNG8XuPAAAAAAAAAAAAAAAAAAAAAAAmIZz5b5Sf/+btN5qvn9574TSyP44lWw43x+one0PlBZ7u/NcT/buDzS6P0+zMhOn/tUzBwAAAAAAAAAAAAAAAAAAgJOjsTUX1VptfbOx9d7GcNAayrzz3ZffnI7e0Exe+nYyqIo8OXKc3sShIyfRXyLtl6fJyJw8SCJ6k3eqN272Ox6eU+yfxVh5JyiODRXynqq12plHfvlsUtVfnWCnm0li7LKMBoV8/aGh+v2dxHxE7O5XtX+wfMCcW2ma7le+/el4VRQiZuLIbRwi+Pb2mw8+0Tj7ZDfzdb7pw2OPL75465Mvft+o1qL9cH5t5jYbu+khjtzpdXwoGbp/Cvl1Lky4EyYH7UGmvdnYqiY//vHSQx99v2dyMvn+SYcz7+6/1ld7M3NZUIgoZY3+87nPTrj5Jwev3uvfvUf/xZ39fKV6c/vn3w5bFRG9C22jDgAAAAAAAAAAAAAAAAAAOBZD/yt+BE89P72OAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOD4Db7/fyhoj2UOE9xrxfhQcX2zse/ip4/1VAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+B/7OwAA//+Yd3HU")
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = creat(&(0x7f0000000280)='./bus\x00', 0x2)
r1 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x2a82)
ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f00000002c0)={r0, 0x800, {0x2a00, 0x80010000, 0x0, 0x3, 0x1, 0x0, 0x9, 0x0, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd6447a4b4e00d9683dda1af1ea09de2b7fb0a0100000000000000000300", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c5512406c7f00", [0x6, 0x40000000000000]}})

27.56073469s ago: executing program 2 (id=1780):
r0 = epoll_create1(0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = timerfd_create(0x0, 0x80000)
timerfd_settime(r1, 0x1, 0x0, 0x0)
r2 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x80001, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r2, &(0x7f0000000600)={0x70000000})

27.399226861s ago: executing program 2 (id=1783):
r0 = syz_usb_connect$hid(0x0, 0x6f, &(0x7f00000021c0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0xc12, 0x30, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x4, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x1, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000080)={0x24, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x22, 0x5, {[@global=@item_4={0x3, 0x1, 0x3, "eb27b7f8"}]}}, 0x0}, 0x0)

27.394888531s ago: executing program 38 (id=1783):
r0 = syz_usb_connect$hid(0x0, 0x6f, &(0x7f00000021c0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0xc12, 0x30, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x4, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x1, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040))
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xf, 0x4, 0x4, 0x12, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000080)={0x24, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x22, 0x5, {[@global=@item_4={0x3, 0x1, 0x3, "eb27b7f8"}]}}, 0x0}, 0x0)

17.01485775s ago: executing program 6 (id=2033):
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x42, 0x0)
r1 = epoll_create1(0x80000)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000100)={0xa000000d})
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f00000000c0)={0xa0002018})
close(r0)

16.872339891s ago: executing program 6 (id=2024):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x804810, &(0x7f0000000a40), 0x26, 0x756, &(0x7f00000002c0)="$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")
chdir(&(0x7f0000000240)='./file0\x00')
truncate(&(0x7f0000000180)='./file0\x00', 0x8fff5)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0xc6880, 0x0)
ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000001040)={0x1, 0x1, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0})
read$FUSE(r0, &(0x7f0000002200)={0x2020}, 0x39)

16.747157841s ago: executing program 6 (id=2028):
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000100)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$tipc(r1, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x1, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000400000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10)
close(r0)

16.686651321s ago: executing program 6 (id=2029):
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x0, &(0x7f0000000340)={[{@noblock_validity}, {@dioread_nolock}, {@noinit_itable}, {@acl}, {@jqfmt_vfsv0}, {@usrjquota, 0x2e}], [], 0x2c}, 0xc4, 0x452, &(0x7f0000000480)="$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")
syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8052, &(0x7f0000000000), 0x7, 0x4c6, &(0x7f0000000100)="$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")
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
mount(0x0, &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x20, &(0x7f0000000140)='usrjquota=')

16.496792522s ago: executing program 6 (id=2035):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x2000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_X2APIC_API(r1, 0x4068aea3, &(0x7f0000000140)={0x81, 0x0, 0x3})
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x200)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000380)={0x2, 0x0, @ioapic={0x5000, 0x7e6f2ec1, 0x0, 0xeffffdfc, 0x0, [{0x0, 0x0, 0x10, '\x00', 0xff}, {0x19, 0x0, 0x0, '\x00', 0x1}, {0x0, 0x9, 0x0, '\x00', 0xff}, {0x0, 0x3, 0x7f}, {0xc, 0x0, 0x0, '\x00', 0xfd}, {0x0, 0x0, 0x0, '\x00', 0x4}, {0x4, 0x0, 0xfc, '\x00', 0x3}, {0x3a, 0x2}, {0x0, 0x6, 0x4, '\x00', 0x80}, {0x0, 0x1}, {}, {0x0, 0x7, 0x7}, {0x0, 0x0, 0xff, '\x00', 0xfc}, {0x0, 0x4}, {0x2, 0x2, 0x0, '\x00', 0x3}, {0x4, 0x1}, {0xff, 0x0, 0x0, '\x00', 0xfc}, {0x1, 0x0, 0x3, '\x00', 0x1}, {0x0, 0x0, 0x8}, {0x0, 0x4}, {0x40, 0x1}, {0x0, 0x40, 0xa}, {0xec}, {0x6, 0x6, 0x20, '\x00', 0x2}]}})

16.351160323s ago: executing program 6 (id=2040):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
statfs(0x0, 0x0)

16.332650703s ago: executing program 39 (id=2040):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
statfs(0x0, 0x0)

3.550584133s ago: executing program 0 (id=2123):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x9, &(0x7f0000000040)=0x7, 0x4)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x5, 0x2, 0x8, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='mmap_lock_acquire_returned\x00', r2}, 0x10)
getsockopt$nfc_llcp(r0, 0x6, 0x9, 0x0, 0x2000e804)

3.515759303s ago: executing program 0 (id=2124):
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x840, &(0x7f0000000540)={[{@test_dummy_encryption}]}, 0x1, 0x236, &(0x7f0000000300)="$eJzs3TFoM2UcBvDnLomf/b4gVRdBUEFEtFDqJrjURaEgpYgIKlREXJRWqC1urZOLg84qnVyKuFkdpUtxUQSnqh3qImhxsDjoELlcK9VGFFNz8t3vB5fcJe97//e4e95kOS5Aa00nmU/SSTKTpJekON/grnqZPt3cntpfTgaDx38shu3q7dpZv2tJtpI8mGSvLPJiN9nYffro54NH731jvXfPe7tPTU30IE8dHx0+dvLu4usfLjyw8fmX3y8WmU//D8d1+YoRn3WL5Jb/otj/RNFtegT8E0uvfvBVlftbk9w9zH8vZeqT9+baDXu93P/OX/V964cvbp/kWIHLNxj0qt/ArQHQOmWSfopyNkm9Xpazs/V/+K87V8uXVtdemXlhdX3l+aZnKuCy9JPDRz6+8tG1P+X/u06df+D6VeX/iaWdb6r1k07TowEmqcr/zLOb90X+oXXkH9pL/qG95B/aS/6hveQf2kv+ob3kH9pL/qG95B/a63z+AYB2GVxp+g5koClNzz8AAAAAAAAAAAAAAAAAAMBF21P7y2fLpGp++nZy/HCS7qj6neHziJMbh69XfyqqZr8r6m5jeebOMXcwpvcbvvv6pm+brf/ZHc3W31xJtl5LMtftXrz+itPr79+7+W++7z03ZoExPfRks/V/3Wm2/sJB8kk1/8yNmn/K3DZ8Hz3/9KvzN2b9l38ZcwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABMzG8BAAD//8n0bSk=")
mkdir(&(0x7f00000002c0)='./bus\x00', 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100000000001c000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000180)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

3.355808704s ago: executing program 0 (id=2136):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="240000001900110000000000000001000a0000000022ff00000c000008000600ff"], 0x24}}, 0x0)
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da07000000000001090224"], 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r1 = fcntl$dupfd(r0, 0x0, r0)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0xc08, 0x3, 0x1e8, 0xc, 0x5002004a, 0xb, 0x310, 0xea02, 0x3d0, 0x3c8, 0x3c8, 0x3d0, 0x3c8, 0x3, 0x0, {[{{@ip={@rand_addr, @local, 0x0, 0x0, 'erspan0\x00', 'ip6tnl0\x00'}, 0x0, 0x70, 0xb8}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'pptp\x00'}}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@unspec=@NFQUEUE2={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x248)

3.258277215s ago: executing program 8 (id=2128):
syz_mount_image$msdos(&(0x7f0000000200), &(0x7f00000000c0)='./file1\x00', 0x10088, &(0x7f0000000580)=ANY=[@ANYBLOB="73686f77657865632c6e6f646f74732c7379735f696d6d757461626c652c646f74732c6e66732c6e6f646f74732c6e6f646f74732c64656275672c646f74732c756d61736b3d30303030303030303030303030303030303030303230302c00c4cd878e2e225ee8a12ec0f0234a613f191236529e2eb19792d74d539f7b74148c4cd01ca5836451894237f5161f323e3dff6322349bb51c07b887571b07ed2b9f7e59a22824b104346da8", @ANYRESOCT], 0x1, 0x1ff, &(0x7f00000002c0)="$eJzs3MtqU1scBvB12p5ecuhldEAnLnSik02tTxCkBTGg1EbUgbBLUw2JSckOmoiDjh35HMWhM0F8gb6FsyJIRx0ZaZNerTqxjZLfD8L6wkdgLULCfweytx68eVZZzZLVtBmGxmMYCmE97IQws5t6/umtQ3t5NBy1Hq7NPt9+fe/ho9v5QmF+McaF/NKNuRjj1KUPL169vfyx+d/9d1Pvx8LmzOOtL3OfNv/fvLD1delpOYvlLNbqzZjG5Xq9mS5XS3GlnFWSGO9WS2lWiuVaVmoc61er9bW1dkxrK5O5tUYpy2Jaa8dKqR2b9dhstGP6JC3XYpIkcTIX+JXixuJimu/3LjhbjUY+HQ4hTHzXFDf6siEAoK/M/4PM/D8Iduf/XO/ze5z5HwAAAAAAAAAAAAAA/gY7nc50p9OZ3l/3H2MhhPEQwv7zfu+Ts+H9H2xH/rg3HsLn9VaxVeyu3X7hVmF+Nu6ZOXzVdqtVHD7or3f7eLz/N+R6/dyp/Wi4eqXb73Y37xRO9BNh5eyPDwAAAAMhiQdOvb5Pkh/13XTk94ET1+8j4eLIuR0DAAAA+Ims/bKSVqulhiAIwkHo9zcTAADwux0O/f3eCQAAAAAAAAAAAAAAAAAAAAyu87idWL/PCAAAAAAAAAAAAAAAAAAAAAAAAH+KbwEAAP//VuHQrA==")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
write$UHID_INPUT(r0, &(0x7f0000000940)={0x8, {"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", 0x1000}}, 0x1006)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r0, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000140), 0x42, 0x0)
mount(0x0, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)

3.193154985s ago: executing program 8 (id=2129):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000340)=ANY=[@ANYBLOB="12010000000000406c256d0000000000000109022400010000000009040000010300000009210000000122050009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000540)={0x2c, &(0x7f0000000200)={0x0, 0x0, 0x5, {0x5, 0x0, "a8c6df"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, 0x0, &(0x7f0000000380)={0x0, 0x3, 0x2, @string={0x2}}, 0x0, 0x0}, 0x0)
syz_usb_control_io(r0, &(0x7f0000000580)={0x2c, 0x0, &(0x7f0000000ac0)=ANY=[@ANYBLOB="0003040000000403"], 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io(r0, &(0x7f0000000400)={0x2c, 0x0, &(0x7f00000005c0)={0x0, 0x3, 0x25, @string={0x25, 0x3, "194a1e6fdbe3df57f25bbbb38eb231061e58e755eabc02c4db5bc43058e2588ce12ab8"}}, 0x0, 0x0, 0x0}, 0x0)

2.889581926s ago: executing program 5 (id=2133):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000100)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581", @ANYRES16], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000001540)={0x24, 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="00220f000000ab574e69629bf85edacab3"], 0x0}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000300)={0x3, 0xffffffff})

1.198781725s ago: executing program 4 (id=2159):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000de0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007200000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='kmem_cache_free\x00', r0}, 0x10)
r1 = open(&(0x7f0000000200)='./file0\x00', 0x4008040, 0x0)
fcntl$setlease(r1, 0x400, 0x0)
r2 = open(&(0x7f00009e1000)='./file0\x00', 0x0, 0x0)
fcntl$setlease(r2, 0x400, 0x1)

1.188425115s ago: executing program 4 (id=2160):
r0 = open(0x0, 0x0, 0x46)
open$dir(0x0, 0x2, 0x0)
read$FUSE(r0, 0x0, 0x0)
r1 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000040), 0x481, 0x0)
syz_usb_connect$hid(0xf63067478e218e8, 0x36, &(0x7f0000000000)=ANY=[], 0x0)
ioctl$KVM_CAP_ARM_INJECT_SERROR_ESR(r1, 0x330f, 0x0)

1.098038435s ago: executing program 3 (id=2164):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
setsockopt$inet_udp_encap(r1, 0x11, 0x64, &(0x7f0000000000)=0x2, 0x4)
syz_emit_ethernet(0x33, &(0x7f0000000300)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x25, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @broadcast}, {0x0, 0x4e20, 0x11, 0x0, @gue={{0x1, 0x0, 0x0, 0x0, 0x0, @void}, "478b78d5ac"}}}}}}, 0x0)

1.088653815s ago: executing program 3 (id=2165):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = eventfd(0x0)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000100)={0x0, 0x0, 0x4, r2})
r3 = eventfd2(0x0, 0x0)
ioctl$KVM_IOEVENTFD(r1, 0x4040ae79, &(0x7f0000000580)={0x0, 0x0, 0x0, r3})

1.074407215s ago: executing program 3 (id=2166):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRESDEC=0x0, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffe, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10)
pause()

652.225007ms ago: executing program 4 (id=2167):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f0000000480)='mm_page_alloc\x00', r0}, 0x10)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000)={0x0, 0x3, 0x0, 0x800080}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
ioctl$TUNSETOFFLOAD(r1, 0xc004743e, 0x20001400)
ioctl$TUNSETOFFLOAD(r1, 0x40047451, 0x2000000c)

613.995627ms ago: executing program 8 (id=2168):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='sched_switch\x00', r0}, 0x10)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_rx_ring(r2, 0x107, 0x5, &(0x7f00000000c0)=@req={0x8000, 0xb4f, 0x300, 0x1daf6}, 0x10)
close_range(r1, 0xffffffffffffffff, 0x0)

597.577838ms ago: executing program 4 (id=2169):
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000000)=ANY=[], 0x1, 0x357, &(0x7f0000000180)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_aout(r0, &(0x7f00000002c0)=ANY=[], 0xc1)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3000005, 0x13, r0, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
getsockopt$packet_int(r1, 0x107, 0x0, 0x0, &(0x7f0000000080))

584.076427ms ago: executing program 4 (id=2170):
syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000001540)='./file0\x00', 0x0, &(0x7f0000000100)=ANY=[], 0x1, 0x14fe, &(0x7f0000002ac0)="$eJzs3QuYjtX6MPB1r7UexjTxNslhWPe6H940WCZJckiSQ5IkSZJTQtIkSUJiyCkJSchxkhyGkBwmJo3z+ZBz0mRLkiSnnML6rqndtve//b/s/e39//y/Pffvutb1rvtaz72etd6beZ/nuebwQ9fhtZrUrt6IiMS/BH57SRFCxAghBgkh8gkhAiFE+fjy8dnjeRSk/GsnYf9ej6Zd6xWwa4nrn7Nx/XM2rn/OxvXP2bj+ORvXP2fj+udsXH/GcrKtMwvfwC3ntn/9+X/Mby/8/P//Q/z5n7Nx/f/TnM7zzxzN9f9Pctl7/89lcP1zNq5/zsb1z9m4/jkb1z9n4/ozlpNd6+fP3K5tu9b//hhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOM5Qzn/BVaCPF7/1qvizHGGGOMMcYYY/8+Pve1XgFjjDHGGGOMMcb+54GQQgktApFL5BYxIo+IFdeJOHG9yCvyiYi4QcSLG0V+cZMoIAqKQqKwSBBFRFFhBAorSISimCguouJmUULcIhJFSVFKlBZOlBFJ4lZRVtwmyonbRXlxh6gg7hQVRSVRWVQRd4mq4m5RTdwjqot7RQ1RU9QStcV9oo64X9QVD4h64kFRXzwkGoiHRUPxiGgkHhWNxWOiiXhcNBVPiGaiuWghWopW/1f5r4ie4lXRS/QWKaKP6CteE/1EfzFADBSDxOtisHhDDBFviqFimBgu3hIjxNtipHhHjBKjxRjxrhgrxonxYoKYKCaJVPGemCzeF1PEB2KqmCamixkiTcwUs8SHYraYI+aKj8Q88bGYLxaIhWKRSBefiMViicgQn4ql4jORKZaJ5WKFWClWidVijVgr1on1YoPYKDaJzWKL2Co+F9vEdrFD7BS7xG6xR3wh9oovxT7xlcgSX/+T+Wf/S343ECBAggQNGnJBLoiBGIiFWIiDOMgLeSECEYiHeMgP+aEAFIBCUAgSIAGKQlFAQCAgKAbFIApRKAElIBESoRSUAgcOkiAJysJtUA7KQXkoDxWgAlSESlAJqkAVqApVoRpUg+pQHWpADagFteA+uA/uh7pQF+pBPagP9aEBNICG0BAaQSNoDI2hCTSBptAUmkEzaAEtoBW0gtbQGtpAG2gH7aA9tIcO0AGSIRk6QkfoBJ2gM3SGLtAFukJX6AbdoTu8Aq/Aq/Aq9IYasg/0hb7QD/rBABgIA+F1GAxvwBvwJgyFYTAc3oK34G0YCWdgFIyGMTAGqspxMB4mAMlJkAqpMBkmwxSYAlNhGkyDGZAGM2EWzILZMAfmwEcwDz6Gj2EBLIBFkA7psBiWQAZkwFI4C5mwDJbDClgJq2AlrIG1sAbWwwZYD5tgE2yBLfA5fA7bYTvshJ2wG3bDF/AFfAlfwlDIgizYD/vhAByAg3AQDsEhOAyH4QgcgaNwFI7BMTgOJ+AknIDTcBrOwFk4B+fgAlyAi3ARLsPl7P/8MpuWWuaSuWSMjJGxMlbGyTiZV+aVERmR8TJe5pf5ZQFZQBaShWSCTJBFZVGJEiXJUBaTxWRURmUJWUImykRZSpaSTjqZJJNkWVlWlpPlZHl5h6wg75QVZSXZ1lWRVWRV2c5Vk/fI6rK6rCFrylqytqwt68g6sq6sK+vJerK+rC8byIdlQ9kHBsCjMrsyTeQwaCqHQzPZXLaQLeXb8KRsLUdCG9lWtpNPy9EwCjrI1i5ZPic7yvHQSb4gJ8CLsoucBF3ly7Kb7C57yFdkT9nG9ZK95VToI/vKGdBP9pcD5EA5G2rK7IrVkm/KoXKYHC7fkovgbTlSviNHydFyjHxXjpXj5Hg5QU6Uk2SqfE9Olu/LKfIDOVVOk9PlDJkmZ8pZ8kM5W86Rc+VHcp78WM6XC+RCuUimy0/kYrlEZshP5VL5mcyUy+RyuUKulKvkarlGrpXr5Hq5QW6Um+RmuUVulZ/LbXK73CF3yl1yt9wjv5B75Zdyn/xKZsmv5X75J3lAfiMPym/lIfmdPCy/l0fkD/Ko/FEekz/J4/KEPClPydPyZ3lGnpXn5Hl5Qf4iL8pL8rL0UihQUimlVaByqdwqRuVRseo6FaeuV3lVPhVRN6h4daPKr25SBVRBVUgVVgmqiCqqjEJlFalQFVPFVVTdrEqoW1SiKqlKqdLKqTIqSd2qyqrbVDl1uyqv7lAV1J2qoqqkKqsq6i5VVd2tqql7VHV1r6qhaqpaqra6T9VR96u66gFVTz2o6quHVAP1sGqoHlGN1KOqsXpMNVGPq6bqCdVMNVctVEvVSj2pWqunVBvVVrVTT6v26hnVQT2rktVzqqN6XnVSL6jO6kXVRb2kuqqXVTfVXfVQl9Rl5VUv1VulqD6qr3pN9VP91QA1UA1Sr6vB6g01RL2phqpharh6S41Qb6uR6h01So1WY9S7aqwap8arCWqimqRS1XtqsnpfTVEfqKlqmpquZqg0NVMN+PNMc/+B/Pf/Tv6QX8++RW1Vn6ttarvaoXaqXWq32qP2qL1qr9qn9qkslaX2q/3qgDqgDqqD6pA6pA6rw+qIOqKOqqPqmDqmjqsT6rw6pU6rn9UZdVadVefVBXVBXfzzeyA0aKmV1jrQuXRuHaPz6Fh9nY7T1+u8Op+O6Bt0vL5R59c36QK6oC6kC+sEXUQX1Uajtpp0qIvp4jqqb9Yl9C06UZfUpXRp7XQZnaRv/Zfzr7a+VrqVbq1b6za6jW6n2+n2ur3uoDvoZJ2sO+qOupPupDvrzrqL7qK76q66m+6me+geuqfuqb0QIkWn6L76Nd1P99cD9EA9SL+uB+vBeogeoofqoXq4Hq5H6BF6pB6pR+lReoweo8fqsXq8Hq8n6ok6VafqyXqynqKn6Kl6qp6up+s0naZn6Vl6tp6t5+q5ep6ep+fr+XqhXqjTdbperBfrDJ2hl+qlOlMv08v0Cr1Cr9Kr9Bq9Rq/T6/QGvUFv0pt0pv79GzR36B16l96l9+g9eq/eq/fpfTpLZ+n9er8+oA/og/qgPqQP6cP6sD6ij+ij+qg+po/p4/q4PqlP6tP6tD6jz+hz+py+oC/oi/qivqwvZ1/2BTKQgQ50kCvIFcQEMUFsEBvEBXFB3iBvEAkiQXwQH+QPbgoKBAWDQkHhICEoEhQNTICBDSgIg2JB8SAa3ByUCG4JEoOSQamgdOCCMkFScGtQNrgtKBfcHpQP7ggqBHcGFYNKQeWgSnBXUDW4O6gW3BNUD+4NagQ1g1pB7eC+oE5wf1A3eCCoFzwY1A8eChoEDwcNg0eCRsGjQePgsaBJ8HjQNHgiaBY0D1oELYNW/9b5vT9T8CnXy/Q2KaaP6WteM/1MfzPADDSDzOtmsHnDDDFvmqFmmBlu3jIjzNtmpHnHjDKjzRjzrhlrxpnxZoKZaCaZVPOemWzeN1PMB2aqmWammxkmzcw0s8yHZraZY+aaj8w887GZbxaYhWaRSTefmMVmickwn5ql5jOTaZaZ5WaFWWlWmdVmjVlr1pn1ZoPZaDaZzWaL2Wo+N9vMdrPD7DS7zG6zx3xh9povzT7zlckyX5v95k/mgPnGHDTfmkPmO3PYfG+OmB/MUfOjOWZ+MsfNCXPSnDKnzc/mjDlrzpnz5oL5xVw0l8xl47Mv7rM/3lGjxlyYC2MwBmMxFuMwDvNiXoxgBOMxHvNjfiyABbAQFsIETMCiWBSzERIWw2IYxSiWwBKYiIlYCkuhQ4dJmIRlsSyWw3JYHstjBayAFbEiVsbs+5G78G68G+/Be/BevBdrYk2sjbWxDtbBulgX62E9rI/1sQE2wIbYEBthI2yMjbEJNsGm2BSbYTNsgS2wFbbC1tga22AbbIftsD22xw7YAZMxGTtiR+yEnbAzdsYu2AW7Ylfsht2wB/bAntgTe2EvTMEU7It9sR/2wwE4AAfhIByMg3EIDsGhOBSH43AcgSNwJI7EUTgax+C7OBbH4XicgBNxEqZiKk7GyTgFp+BUnIrTcTqmYRrOwlk4G2fjXJyL83Aezsf5uBAXYjqm42JcjBmYgUtxKWZiJi7H5bgSV+JqXI1rcS2ux/W4ETfiZtyMW3ErbsNtuAN34C7chXtwD+7FvbgP92EWZuF+3I8H8AAexIN4CA/hYTyMR/AIHsWjeAyP4XE8DifxJJ7G03gGz+A5PIcX8Be8iJfwMnqMsXlsrL3OxtnrbV6bz8bYPL2FEH+JC9nCNsEWsUWtsQVswb+J0VqbaEvaUra0dbaMTbK3/iGuaCvZyraKvctWtXfban+I69j7bV37gK1nH7S17X1/E9e3D9kG9nHb0D5hG9nmtrFtaZvYx21T+4RtZpvbFralbW+fsR3sszbZPmc72uf/EC+2S+xau86utxvsXvulPWfP2yP2B3vB/mJ72d52kH3dDrZv2CH2TTvUDvtDPMa+a8facXa8nWAn2kl/iKfbGTbNzrSz7Id2tp3zhzjdfmLn2Qw73y6wC+2iX+PsNWXYT+1S+5nNtMvscrvCrrSr7Gq75i9rXWE32c12i91jv7Db7Ha7w+60u+zuX+PsfeyzX9ks+7U9bL+3B+w39qA9ag/Z736Ns/d31P5oj9mf7HF7wp60p+xp+7M9Y8/+uv/svZ+yl+xl660gIEmKNAWUi3JTDOWhWLqO4uh6ykv5KEI3UDzdSPnpJipABakQFaYEKkJFyRCSJaKQilFxitLNVIJuoUQqSaWoNDkqQ0l0K5Wl26gc3U7l6Q6qQHdSRapElakK3UVV6W6qRvdQdbqXalBNqkW16T6qQ/dTXXqA6tGDVJ8eogb0MDWkR6gRPUqN6TFqQo9TU3qCmlFzakEtqRU9Sa3pKWpDbakdPU3t6RnqQM9SMj1HHel56kQvUGd6kbrQS9SVXqZu1J160CvUk16lXtSbUqgP9aXXqB/1pwE0kAbR6zSY3qAh9CYNpWE0nN6iEfQ2jaR3aBSNpjH0Lo2lcTSeJtBEmkSp9B5NpvdpCn1AU2kaTacZlEYzaRZ9SLNpDs2lj2gefUzzaQEtpEWUTp/QYlpCGfQpLaXPKJOW0XJaQStpFa2mNbSW1tF62kAbaRNtpi20lT6nbbSddtBO2kW7aQ99QXvpS9pHX1EWfU376U90gL6hg/QtHaLv6DB9T0foBzpKP9Ix+omO0wk6SafoNP1MZ+gsnaPzdIF+oYt0iS6TJxFCKEMV6jAIc4W5w5gwTxgbXhfGhdeHecN8YSS8IYwPbwzzhzeFBcKCYaGwcJgQFgmLhibE0IYUhmGxsHgYDW8OS4S3hIlhybBUWDp0YZkwKbw1LBveFpYLbw/Lh3eEFcI7w4phpbByWCW8K6wa3h1WC+8Jq4f3hjXCmmGtsHZ4X1gnvD+sGz4Q1gsfDMuFD4UNwofDhuEjYaPw0bBx+FjYJHw8bBo+ETYLm4ctwpZhq/DJsHX4VNgmbBu2C58O24fPhB3CZ8Pk8LmwY/j8VcdTwj5h3/C18LXQ+wfUwuiiaHr0k+ji6JJoRvTT6NLoZ9HM6LLo8uiK6Mroqujq6Jro2ui66ProhujG6Kbo5uiWqPe1cwsHTjrltAtcLpfbxbg8LtZd5+Lc9S6vy+ci7gYX7250+d1NroAr6Aq5wi7BFXFFnXHorCMXumKuuIu6m10Jd4tLdCVdKVfaOVfGJbmWrpVr5Vq7p1wb19a1c0+7p90z7hn3rHvWPec6uuddJ/eC6+xedF3cS+4l97Lr5rq7Hu4V19O96nq53i7Fpbi+rq/r5/q5AW6AG+QGucFusBvihrihbqgb7oa7EW6EG+lGulFulBvjxrixbqwb78a7iW6iS3WpbrKb7Ka4KW6qm+qmu+kuzaW5WW6Wm+1mu7lurpvn5rn5br5b6Ba6dJfuFrvFLsNluKVuqct0mW65W+5WupVutVvt1rq1br1b7za6jW6z2+y2uq1um9vmdrgdbpfb5fa4PW6v2+v2uX0uy2W5/W6/O+AOuIPuW3fIfecOu+/dEfeDO+p+dMfcT+64O+FOulPutPvZnXFn3Tl33l1wv7iL7pK77LxLjbwXmRx5PzIl8kFkamRaZHpkRiQtMjMyK/JhZHZkTmRu5KPIvMjHkfmRBZGFkUWR9MgnkcWRJZGMyKeRpZHPIpmRZZHlkRWRlZFVEe+LbAt9MV/cR/3NvoS/xSf6kr6UL+2dL+OT/K2+rL/Nl/O3+/L+Dl/B3+kr+kq+sn/CN/PNfQvf0rfyT/rW/infxrf17fzTvr1/xnfwz/pk/5zv6J/3nfwLvrN/0XfxL/mu/mXfzXf3Pfwrvqd/1ffyvX2K7+P7+td8P9/fD/AD/SD/uh/s3/BD/Jt+qB/mh/u3/Aj/th/p3/Gj/Gg/xr/rx/pxfryf4Cf6ST7Vv+cn+/f9FP+Bn+qn+el+hk/zM/0s/6Gf7ef4uf4jP89/7Of7BX6hX+TT/Sd+sV/iM/ynfqn/zGf6ZX65X+FX+lV+tV/j1/p1fr3f4Df6TX6z3+K3+s/9Nr/d7/A7/S6/2+/xX/i9/ku/z3/ls/zXfr//kz/gv/EH/bf+kP/OH/bf+yP+B3/U/+iP+Z/8cX/Cn/Sn/Gn/sz/jz/pz/ry/4H/xF/0lf5l/Zo0xxhhj7B+irjLe57/JkX/u9xVCXL+98KH/Or6xwG/9/rkT2keEEM/17vro761GjZSUlD8fm6lEUHyBECJyJT+XuBIvE+3EMyJZtBVl/zIe81fn6i+7X6CrzB+9Q4jYv8rJzv89vjL/bX93//3luHlXnX+BEInFr+TkEVfiK/OX+2/mL9j6KvPn+SZViDZ/lRMnrsRX5k8ST4nnRfLfHMkYY4wxxhhjjP2mv6zc+Wr3t9n35wn6Sk5ucSX+e/fnjDHGGGOMMcYY+9/lxe49nn0yObltZ+78T3V8vt/e6v8t6+EOd/6BzrX+ysQYY4wxxhj7d7ty0X+tV8IYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjOVc/y9+ndjv57ra3xpkjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHG/lP9nwAAAP//sjE7Eg==")
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$incfs(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000040), 0x800000, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
rename(&(0x7f0000000040)='./file1\x00', &(0x7f0000000000)='./file0/file0\x00')

563.624448ms ago: executing program 4 (id=2171):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x5, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r1}, 0xc)

548.960588ms ago: executing program 5 (id=2172):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000080)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x2}}, {@grpjquota}, {@usrjquota}, {@block_validity}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x5}}, {@quota}, {@acl}, {@i_version}]}, 0x3, 0x43b, &(0x7f0000000780)="$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")
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r1}, 0x10)
r2 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='.\x00', 0x0, 0x0)
unlinkat(r2, &(0x7f0000000280)='./file1\x00', 0x0)

441.914608ms ago: executing program 8 (id=2173):
r0 = socket(0x840000000002, 0x3, 0xff)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000100)={0x0, <r1=>0x0, <r2=>0x0}, &(0x7f0000000140)=0xc)
syz_mount_image$exfat(&(0x7f0000000400), &(0x7f0000000240)='./file0\x00', 0x2000084c, &(0x7f0000000540)=ANY=[@ANYBLOB='iocharset=ascii,discard,dmask=00000000000000000000007,uid=', @ANYRESHEX=r1, @ANYBLOB=',dmask=00000000000000000000152,fmask=00000000000000000000006,gid=', @ANYRESHEX=r2, @ANYBLOB=',uid=', @ANYRESHEX=0xee00, @ANYBLOB="2c646973636172642c00fb278330ab3b4884d36adf6908d11f57832035e96a1513231140da182ca77aeedc492bbc501d94f854a7e26909bde6e698d72a15ec808a86c25d"], 0x81, 0x14f5, &(0x7f0000001580)="$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")
r3 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
r4 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
renameat2(r4, &(0x7f0000000100)='./file0\x00', r3, &(0x7f0000000180)='./file1\x00', 0x4)

386.303288ms ago: executing program 8 (id=2174):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r0=>0xffffffffffffffff})
bind$unix(r0, &(0x7f0000000140)=@file={0x1, './file0\x00'}, 0x6e)
unshare(0x22020600)
unshare(0x2a020400)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f0000000e00)=[{{&(0x7f0000000080)=@file={0x1, './file0\x00'}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x4}}], 0x1, 0x20)

326.284429ms ago: executing program 0 (id=2175):
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x9, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000100007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r1}, 0x10)
bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000b00)=@base={0x6, 0x4, 0x70be, 0x5c, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2, 0x0, 0x0, @void, @value, @void, @value}, 0x48)

257.643529ms ago: executing program 5 (id=2176):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
listen(r0, 0x100000)
r1 = syz_open_procfs(0x0, &(0x7f00000023c0)='net/tcp\x00')
read$FUSE(r1, &(0x7f0000000000)={0x2020}, 0x96)
close(r0)
read$FUSE(r1, &(0x7f0000004440)={0x2020}, 0x2020)

257.096839ms ago: executing program 8 (id=2177):
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f00000000c0)='./file1\x00', 0x101880a, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x1, 0x550b, &(0x7f00000079c0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x1a37c1, 0x42)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
linkat(r0, &(0x7f0000000180)='./file1\x00', r0, &(0x7f0000000640)='./bus\x00', 0x0)
symlinkat(&(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')
renameat2(0xffffffffffffff9c, &(0x7f0000000a00)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000600)='./file1\x00', 0x2)

223.896739ms ago: executing program 3 (id=2178):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f00000002c0)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r2, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000380)=@newqdisc={0x78, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0xa2, 0x2, {{0x9, 0x1, 0xa, 0x6, 0x7}, 0x7f, 0x0, 0x2, 0xd, 0x36a8, 0x0, 0x5, 0xa, 0x4, 0x2f8, {0x0, 0x8, 0x2a, 0x0, 0x9, 0x6}}}}]}, 0x78}}, 0x0)

169.423269ms ago: executing program 0 (id=2179):
syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000000), 0x200, 0x102)
r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
read$FUSE(r1, &(0x7f00000013c0)={0x2020}, 0x2020)
r2 = dup(r0)
ioctl$USBDEVFS_SUBMITURB(r2, 0x8038550a, &(0x7f0000000100)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0xffff}, 0x10007, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

126.008629ms ago: executing program 5 (id=2180):
r0 = socket$inet6(0xa, 0x3, 0xff)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @empty}, 0x1c)
r1 = dup2(r0, r0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
write$tun(r1, 0x0, 0x46)

37.90759ms ago: executing program 5 (id=2181):
r0 = add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f0000000080)={'fscrypt:', @desc2}, &(0x7f00000000c0)={0x0, "f1a1173fb9462d3589e67197f90be6e423ceb0ab4912f9f6a31854ec98e950cfed21fcad7ff0fbcb566a0982f8938caa52dd8d39af14c31ed56ad59300"}, 0x52ba, 0xffffffffffffffff)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r2}, 0x10)
keyctl$revoke(0x3, r0)

37.42848ms ago: executing program 5 (id=2182):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000340)={[{@nogrpid}, {@resuid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@jqfmt_vfsv0}, {@nombcache}, {@quota}]}, 0x3, 0x42f, &(0x7f0000000940)="$eJzs289rHFUcAPDvzCat/WViqT+aVo1WMfgjadJae/CiKHhQEPRQjzFJS+y2kSaCLUGjSD1Kwbt4FPwLPOlF1JPgVe9SKJJLq6eV2Z1Jdje7aZJustX9fGCS92be8t53Z97ue/N2AuhZw9mfJGJ/RPweEQO1bGOB4dq/W8uLU38vL04lUam89VdSLXdzeXGqKFq8bl+R6YtIP0viSIt65y9fOT9ZLs9cyvNjCxfeH5u/fOW52QuT52bOzVycOH365InxF05NPN+ROLO4bg59NHf08GvvXHtj6sy1d3/+Ninib4qjQ4bXO/hkpdLh6rrrQF066etiQ9iUUq2bRn+1/w9EKVZP3kC8+mlXGwdsq0qlUnmg/eGlCvA/lkS3WwB0R/FFn81/i22Hhh53hRsv1SZAWdy38q12pC/SvEx/0/y2k4Yj4szSP19lW2zPfQgAgAbfZ+OfZ1uN/9Kovy90b76GMhgR90XEwYg4FRGHIuL+iGrZByPioU3W37xIsnb8k17fUmAblI3/XszXthrHf8XoLwZLee5ANf7+5OxseeZ4/p6MRP/uLD++Th0/vPLbF+2O1Y//si2rvxgL5u243re78TXTkwuTdxJzvRufRAz1tYo/WVkJSCLicEQMbbGO2ae/Odru2O3jX0cH1pkqX0c8VTv/S9EUfyFZf31y7J4ozxwfK66KtX759eqb7eq/o/g7IDv/e1te/yvxDyb167Xzm6/j6h+ft53TbPX635W83bDvw8mFhUvjEbuS12uNrt8/0VRuYrV8Fv/Isdb9/2CsvhNHIiK7iB+OiEci4tG87Y9FxOMRcWyd+H96+Yn3th7/9srin97U+V9N7IrmPa0TpfM/ftdQ6eBm4s/O/8lqaiTfs5HPv420a2tXMwAAAPz3pBGxP5J0dCWdpqOjtd/wH4q9aXlufuGZs3MfXJyuPSMwGP1pcadroO5+6Hg+rS/yE035E/l94y9Le6r50am58nS3g4cet69N/8/8Wep264Bt53kt6F36P/Qu/R96l/4PvatF/9/TjXYAO6/V9//HXWgHsPOa+r9lP+gh5v/Qu/R/6F36P/Sk+T1x+4fkJSTWJCK9K5ohsU2Jbn8yAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAdMa/AQAA//9QOObV")
unlink(&(0x7f0000000180)='./file1\x00')
syz_mount_image$fuse(0x0, &(0x7f0000000240)='./file1\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./bus\x00', 0x0)
setxattr$trusted_overlay_origin(&(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000180)='./bus\x00', &(0x7f0000000400), 0x204000, &(0x7f0000000300)={[{@workdir={'workdir', 0x3d, './bus'}}, {@index_on}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}]})

35.792ms ago: executing program 3 (id=2183):
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'vlan0\x00', <r2=>0x0})
sendto$packet(r1, &(0x7f0000000180)="02030e00d3fc02000000ab5d71acedd7c9560385dcb186dd84d7dc039806112405ce811cc352", 0xff88, 0x0, &(0x7f0000000140)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @broadcast}, 0x14)
recvmmsg(r1, &(0x7f0000003680)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f0000000280)=""/209, 0xd1}], 0x1}, 0x5}], 0x1, 0x0, 0x0)

32.42965ms ago: executing program 0 (id=2184):
pipe2$9p(&(0x7f00000000c0), 0x1000)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, <r1=>0xffffffffffffffff}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xa, 0x10, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000020000007b8a00fe0000000087080000000000007b8af0ff00000000bda100000000000027000000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b704000008000000850000004900000095"], &(0x7f0000000440)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000900)={r2, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000040)="76389e6a65585578f830e9000000", 0x0, 0x7fffffff, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

0s ago: executing program 3 (id=2185):
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000040)=ANY=[@ANYBLOB="0100000005080000024d564b"])
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x2000, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x200)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newtfilter={0x4c, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0x3}, {}, {0x1c}}, [@filter_kind_options=@f_flower={{0xb}, {0x1c, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS={0x18, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x14, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_HWID={0x5, 0x4, 0xa}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_DIR={0x0, 0x3, 0x3}]}]}]}}]}, 0x4c}}, 0x0)
ioctl$KVM_GET_MSRS(r2, 0xc008ae88, &(0x7f0000000040))

kernel console output (not intermixed with test programs):

syz
[   96.952048][   T20] usb 7-1: SerialNumber: syz
[   96.990565][ T3741] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=16 sclass=netlink_audit_socket pid=3741 comm=syz.8.1383
[   97.004797][ T3741] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=17 sclass=netlink_audit_socket pid=3741 comm=syz.8.1383
[   97.117326][ T1787] Bluetooth: hci0: command 0x1003 tx timeout
[   97.123205][   T47] Bluetooth: hci0: sending frame failed (-49)
[   97.266810][  T318] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[   97.366879][   T20] usb 7-1: 2:1 : format type 0 is detected, processed as PCM
[   97.374067][   T20] usb 7-1: 2:1 : sample bitwidth 153 in over sample bytes 2
[   97.381368][   T20] usb 7-1: 2:1 : invalid UAC_FORMAT_TYPE desc
[   97.408834][   T20] usb 7-1: USB disconnect, device number 16
[   97.516826][  T318] usb 3-1: Using ep0 maxpacket: 32
[   97.636893][  T318] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   97.647582][  T318] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   97.657140][  T318] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[   97.665965][  T318] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   97.674726][  T318] usb 3-1: config 0 descriptor??
[   97.717300][  T318] hub 3-1:0.0: USB hub found
[   97.946907][  T318] hub 3-1:0.0: 1 port detected
[   98.216860][  T318] hub 3-1:0.0: hub_hub_status failed (err = -71)
[   98.223007][  T318] hub 3-1:0.0: config failed, can't get hub status (err -71)
[   98.326876][  T318] usbhid 3-1:0.0: can't add hid device: -71
[   98.332618][  T318] usbhid: probe of 3-1:0.0 failed with error -71
[   98.367068][  T318] usb 3-1: USB disconnect, device number 3
[   99.197120][   T26] Bluetooth: hci0: command 0x1001 tx timeout
[   99.202989][   T47] Bluetooth: hci0: sending frame failed (-49)
[  101.276853][ T1787] Bluetooth: hci0: command 0x1009 tx timeout
[  105.618407][   T30] kauditd_printk_skb: 78 callbacks suppressed
[  105.618422][   T30] audit: type=1400 audit(2000000069.709:1415): avc:  denied  { bind } for  pid=3763 comm="syz.8.1389" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  105.841623][ T3795] loop6: detected capacity change from 0 to 256
[  105.897570][ T3795] raw_sendmsg: syz.6.1405 forgot to set AF_INET. Fix it!
[  105.929037][ T3800] loop8: detected capacity change from 0 to 512
[  106.024763][   T30] audit: type=1400 audit(2000000070.109:1416): avc:  denied  { watch } for  pid=3799 comm="syz.8.1407" path="/27/file0" dev="cgroup" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[  106.066535][ T3802] netlink: 'syz.8.1409': attribute type 6 has an invalid length.
[  106.116767][   T20] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  106.136870][ T3808] loop8: detected capacity change from 0 to 512
[  106.207781][ T3808] EXT4-fs (loop8): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  106.221774][ T3808] EXT4-fs error (device loop8): ext4_get_branch:178: inode #11: block 4294967295: comm syz.8.1411: invalid block
[  106.233992][ T3808] EXT4-fs (loop8): Remounting filesystem read-only
[  106.240910][ T3808] EXT4-fs error (device loop8): ext4_free_branches:1030: inode #11: comm syz.8.1411: invalid indirect mapped block 4294967295 (level 1)
[  106.254963][ T3808] EXT4-fs error (device loop8): ext4_free_branches:1030: inode #11: comm syz.8.1411: invalid indirect mapped block 4294967295 (level 1)
[  106.269241][ T3808] EXT4-fs (loop8): 2 truncates cleaned up
[  106.274982][ T3808] EXT4-fs (loop8): mounted filesystem without journal. Opts: noauto_da_alloc,errors=remount-ro,dioread_nolock,. Quota mode: writeback.
[  106.307377][ T3808] EXT4-fs error (device loop8): ext4_validate_block_bitmap:429: comm syz.8.1411: bg 0: block 5: invalid block bitmap
[  106.319834][ T3808] EXT4-fs (loop8): Remounting filesystem read-only
[  106.372086][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.376883][   T26] usb 7-1: new high-speed USB device number 17 using dummy_hcd
[  106.379467][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.394475][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.401898][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.409183][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.416321][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.423624][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.430857][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.438172][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.445381][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.452717][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.459959][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.467135][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.474328][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.481643][   T20] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  106.492454][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.499748][   T20] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  106.509412][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.516761][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.524053][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.531420][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.538707][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.546021][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.553367][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.560582][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.567895][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.575276][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.582493][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.589770][   T20] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2db4, bcdDevice= 0.00
[  106.598725][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.605969][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.613194][   T20] usb 3-1: New USB device strings: Mfr=0, Product=9, SerialNumber=0
[  106.621012][   T20] usb 3-1: Product: syz
[  106.625432][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.626855][   T26] usb 7-1: Using ep0 maxpacket: 16
[  106.633623][   T20] usb 3-1: config 0 descriptor??
[  106.642463][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.649915][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.657285][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.664612][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.672117][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.679416][   T30] audit: type=1326 audit(2000000070.759:1417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3826 comm="syz.5.1419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb02488819 code=0x7ffc0000
[  106.703708][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.711156][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.718652][   T30] audit: type=1326 audit(2000000070.769:1418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3826 comm="syz.5.1419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb02488819 code=0x7ffc0000
[  106.742002][   T30] audit: type=1326 audit(2000000070.769:1419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3826 comm="syz.5.1419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fbb024870b7 code=0x7ffc0000
[  106.742052][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.765599][   T30] audit: type=1326 audit(2000000070.769:1420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3826 comm="syz.5.1419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb02488819 code=0x7ffc0000
[  106.772597][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.795870][   T26] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  106.803034][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.820973][   T26] usb 7-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  106.821103][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.836971][   T26] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  106.837376][   T30] audit: type=1326 audit(2000000070.769:1421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3826 comm="syz.5.1419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb02488819 code=0x7ffc0000
[  106.868115][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.868404][   T26] usb 7-1: config 0 descriptor??
[  106.875249][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.880605][   T30] audit: type=1326 audit(2000000070.769:1422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3826 comm="syz.5.1419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbb02488819 code=0x7ffc0000
[  106.911373][ T1027] hid-generic 0000:0000:0000.002C: unknown main item tag 0x0
[  106.914629][   T30] audit: type=1326 audit(2000000070.789:1423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3826 comm="syz.5.1419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb02488819 code=0x7ffc0000
[  106.919872][ T1027] hid-generic 0000:0000:0000.002C: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  106.943945][   T30] audit: type=1326 audit(2000000070.799:1424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3826 comm="syz.5.1419" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb02488819 code=0x7ffc0000
[  106.999566][ T3832] loop5: detected capacity change from 0 to 2048
[  107.013262][ T3834] SELinux: security_context_str_to_sid(unconfined_u) failed for (dev ?, type ?) errno=-22
[  107.023148][ T3834] SELinux: security_context_str_to_sid(unconfined_u) failed for (dev ?, type ?) errno=-22
[  107.033288][ T3834] SELinux:  duplicate or incompatible mount options
[  107.049528][ T3832] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  107.127756][   T20] konepure 0003:1E7D:2DB4.002D: item fetching failed at offset 10/11
[  107.136198][   T20] konepure 0003:1E7D:2DB4.002D: parse failed
[  107.142110][   T20] konepure: probe of 0003:1E7D:2DB4.002D failed with error -22
[  107.188387][ T3845] loop5: detected capacity change from 0 to 512
[  107.205684][ T3845] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  107.217360][ T3845] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c119, mo2=0002]
[  107.225237][ T3845] System zones: 1-12
[  107.230356][ T3845] EXT4-fs (loop5): 1 truncate cleaned up
[  107.237934][ T3845] EXT4-fs (loop5): mounted filesystem without journal. Opts: nolazytime,init_itable=0x0000000000000006,debug,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[  107.310067][ T3859] loop5: detected capacity change from 0 to 512
[  107.335869][   T20] usb 3-1: USB disconnect, device number 4
[  107.350701][ T3859] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  107.367228][ T3805] UDC core: couldn't find an available UDC or it's busy: -16
[  107.374494][ T3805] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  107.384133][ T3859] EXT4-fs error (device loop5): ext4_orphan_get:1401: inode #17: comm syz.5.1431: iget: bad i_size value: -6917529027641081756
[  107.400572][   T26] hid (null): unknown global tag 0x83
[  107.405808][   T26] hid (null): unknown global tag 0xc
[  107.411250][ T3859] EXT4-fs error (device loop5): ext4_orphan_get:1406: comm syz.5.1431: couldn't read orphan inode 17 (err -117)
[  107.414297][   T26] hid-generic 0003:0158:0100.002E: unknown main item tag 0x1
[  107.430309][ T3859] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  107.430344][   T26] hid-generic 0003:0158:0100.002E: unexpected long global item
[  107.448725][   T26] hid-generic: probe of 0003:0158:0100.002E failed with error -22
[  107.461212][ T3859] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.1431: bg 0: block 65: padding at end of block bitmap is not set
[  107.475671][ T3859] EXT4-fs error (device loop5): ext4_acquire_dquot:6187: comm syz.5.1431: Failed to acquire dquot type 0
[  107.487018][ T3857] loop8: detected capacity change from 0 to 40427
[  107.535058][ T3857] F2FS-fs (loop8): invalid crc value
[  107.553105][ T3857] F2FS-fs (loop8): Found nat_bits in checkpoint
[  107.588469][ T3857] F2FS-fs (loop8): Cannot turn on quotas: -2 on 0
[  107.595332][ T3857] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e4
[  107.652688][ T3304] attempt to access beyond end of device
[  107.652688][ T3304] loop8: rw=2049, want=45104, limit=40427
[  107.658647][  T296] usb 7-1: USB disconnect, device number 17
[  107.773585][ T3874] syz.5.1436[3874] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  107.773660][ T3874] syz.5.1436[3874] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  107.822401][ T3880] loop8: detected capacity change from 0 to 512
[  107.866548][ T3886] loop2: detected capacity change from 0 to 512
[  107.900662][ T3886] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  107.912668][ T3880] EXT4-fs (loop8): mounted filesystem without journal. Opts: inlinecrypt,nodioread_nolock,,errors=continue. Quota mode: writeback.
[  107.915652][ T3886] ext4 filesystem being mounted at /12/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.926911][ T3880] ext4 filesystem being mounted at /39/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  107.980528][ T3886] SELinux:  Context system_u:object_r:apt_var_lib_t:s0 is not valid (left unmapped).
[  108.146837][   T26] usb 6-1: new high-speed USB device number 15 using dummy_hcd
[  108.346944][  T296] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[  108.439905][ T3910] loop6: detected capacity change from 0 to 40427
[  108.516952][   T26] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  108.532032][ T3910] F2FS-fs (loop6): fault_injection options not supported
[  108.547568][ T3910] F2FS-fs (loop6): invalid crc value
[  108.553011][   T26] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  108.562969][   T26] usb 6-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[  108.572095][   T26] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  108.581529][ T3910] F2FS-fs (loop6): Found nat_bits in checkpoint
[  108.597824][   T26] usb 6-1: config 0 descriptor??
[  108.632724][ T3910] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  108.704733][ T3910] F2FS-fs (loop6): access invalid blkaddr:2816
[  108.711904][ T3910] CPU: 0 PID: 3910 Comm: syz.6.1450 Not tainted 5.15.167-syzkaller-00348-g2e66050fb753 #0
[  108.716930][  T296] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  108.721698][ T3910] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  108.721715][ T3910] Call Trace:
[  108.721732][ T3910]  <TASK>
[  108.741100][  T296] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  108.742270][ T3910]  dump_stack_lvl+0x151/0x1c0
[  108.746814][  T296] usb 9-1: New USB device found, idVendor=06a3, idProduct=0621, bcdDevice= 0.00
[  108.748171][ T3910]  ? io_uring_drop_tctx_refs+0x190/0x190
[  108.766817][  T296] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  108.771088][ T3910]  ? f2fs_is_valid_blkaddr+0xcb9/0x12d0
[  108.771118][ T3910]  dump_stack+0x15/0x20
[  108.793751][ T3910]  f2fs_is_valid_blkaddr+0xcc3/0x12d0
[  108.798968][ T3910]  f2fs_map_blocks+0x1622/0x3ab0
[  108.803726][ T3910]  ? __stack_depot_save+0x34/0x470
[  108.808728][ T3910]  ? f2fs_do_map_lock+0x70/0x70
[  108.813369][ T3910]  ? debug_smp_processor_id+0x17/0x20
[  108.818564][ T3910]  ? try_charge_memcg+0x213/0x1550
[  108.823514][ T3910]  f2fs_mpage_readpages+0xc9a/0x21a0
[  108.828633][ T3910]  ? __mem_cgroup_uncharge_list+0x8b/0x150
[  108.834277][ T3910]  ? dquot_release_reservation_block+0xa0/0xa0
[  108.840261][ T3910]  ? __this_cpu_preempt_check+0x13/0x20
[  108.845660][ T3910]  ? __pagevec_lru_add+0xcde/0xd70
[  108.850588][ T3910]  f2fs_readahead+0xfd/0x250
[  108.855016][ T3910]  ? blk_start_plug+0x5a/0x170
[  108.859613][ T3910]  read_pages+0x15e/0xb00
[  108.863780][ T3910]  ? lru_cache_add+0x279/0x540
[  108.868380][ T3910]  ? page_cache_ra_unbounded+0xa50/0xa50
[  108.873845][ T3910]  ? add_to_page_cache_lru+0x225/0x2c0
[  108.879141][ T3910]  ? add_to_page_cache_locked+0x40/0x40
[  108.884524][ T3910]  page_cache_ra_unbounded+0x7ed/0xa50
[  108.889821][ T3910]  ? read_cache_pages_invalidate_pages+0x1c0/0x1c0
[  108.896158][ T3910]  ondemand_readahead+0x9c8/0xfa0
[  108.901013][ T3910]  ? kasan_set_free_info+0x23/0x40
[  108.905958][ T3910]  ? ____kasan_slab_free+0x126/0x160
[  108.911080][ T3910]  ? __kasan_slab_free+0x11/0x20
[  108.915854][ T3910]  ? putname+0xfa/0x150
[  108.919850][ T3910]  ? page_cache_sync_ra+0x4d0/0x4d0
[  108.924884][ T3910]  page_cache_sync_ra+0x2e9/0x4d0
[  108.929743][ T3910]  ? force_page_cache_ra+0x420/0x420
[  108.934863][ T3910]  f2fs_readdir+0x52d/0xba0
[  108.939210][ T3910]  ? f2fs_fill_dentries+0xd60/0xd60
[  108.944237][ T3910]  ? slab_free_freelist_hook+0xbd/0x190
[  108.949618][ T3910]  ? avc_policy_seqno+0x1b/0x70
[  108.954304][ T3910]  ? __kasan_check_read+0x11/0x20
[  108.959168][ T3910]  ? security_file_permission+0x86/0xb0
[  108.964547][ T3910]  iterate_dir+0x265/0x600
[  108.968802][ T3910]  ? f2fs_fill_dentries+0xd60/0xd60
[  108.973833][ T3910]  __se_sys_getdents+0x1eb/0x4b0
[  108.978613][ T3910]  ? __x64_sys_getdents+0x90/0x90
[  108.983467][ T3910]  ? fillonedir+0x420/0x420
[  108.987808][ T3910]  ? __kasan_check_write+0x14/0x20
[  108.992754][ T3910]  ? switch_fpu_return+0x15f/0x2e0
[  108.997707][ T3910]  __x64_sys_getdents+0x7b/0x90
[  109.002390][ T3910]  x64_sys_call+0x24a/0x9a0
[  109.006737][ T3910]  do_syscall_64+0x3b/0xb0
[  109.010989][ T3910]  ? clear_bhb_loop+0x35/0x90
[  109.015497][ T3910]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  109.021224][ T3910] RIP: 0033:0x7f54976e0819
[  109.025481][ T3910] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.044922][ T3910] RSP: 002b:00007f5495d59038 EFLAGS: 00000246 ORIG_RAX: 000000000000004e
[  109.053166][ T3910] RAX: ffffffffffffffda RBX: 00007f5497897fa0 RCX: 00007f54976e0819
[  109.060976][ T3910] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[  109.068800][ T3910] RBP: 00007f549775375e R08: 0000000000000000 R09: 0000000000000000
[  109.076599][ T3910] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  109.084412][ T3910] R13: 0000000000000000 R14: 00007f5497897fa0 R15: 00007fff12501ce8
[  109.092229][ T3910]  </TASK>
[  109.100141][  T296] usb 9-1: config 0 descriptor??
[  109.107124][ T3910] F2FS-fs (loop6): access invalid blkaddr:2816
[  109.127098][ T3910] CPU: 1 PID: 3910 Comm: syz.6.1450 Not tainted 5.15.167-syzkaller-00348-g2e66050fb753 #0
[  109.136821][ T3910] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  109.146722][ T3910] Call Trace:
[  109.150107][ T3910]  <TASK>
[  109.152903][ T3910]  dump_stack_lvl+0x151/0x1c0
[  109.157390][ T3910]  ? io_uring_drop_tctx_refs+0x190/0x190
[  109.162858][ T3910]  dump_stack+0x15/0x20
[  109.166848][ T3910]  f2fs_is_valid_blkaddr+0xcc3/0x12d0
[  109.172059][ T3910]  f2fs_map_blocks+0x1622/0x3ab0
[  109.176828][ T3910]  ? __stack_depot_save+0x34/0x470
[  109.181791][ T3910]  ? f2fs_do_map_lock+0x70/0x70
[  109.186477][ T3910]  f2fs_mpage_readpages+0xc9a/0x21a0
[  109.191587][ T3910]  ? __mem_cgroup_uncharge_list+0x8b/0x150
[  109.197242][ T3910]  ? dquot_release_reservation_block+0xa0/0xa0
[  109.203227][ T3910]  ? __this_cpu_preempt_check+0x13/0x20
[  109.208602][ T3910]  ? __pagevec_lru_add+0xcde/0xd70
[  109.213547][ T3910]  f2fs_readahead+0xfd/0x250
[  109.217966][ T3910]  ? blk_start_plug+0x5a/0x170
[  109.222566][ T3910]  read_pages+0x15e/0xb00
[  109.226735][ T3910]  ? lru_cache_add+0x279/0x540
[  109.231333][ T3910]  ? page_cache_ra_unbounded+0xa50/0xa50
[  109.236799][ T3910]  ? add_to_page_cache_lru+0x225/0x2c0
[  109.242095][ T3910]  ? add_to_page_cache_locked+0x40/0x40
[  109.247478][ T3910]  page_cache_ra_unbounded+0x7ed/0xa50
[  109.252772][ T3910]  ? read_cache_pages_invalidate_pages+0x1c0/0x1c0
[  109.259109][ T3910]  ondemand_readahead+0x9c8/0xfa0
[  109.263969][ T3910]  ? kasan_set_free_info+0x23/0x40
[  109.268913][ T3910]  ? ____kasan_slab_free+0x126/0x160
[  109.274035][ T3910]  ? __kasan_slab_free+0x11/0x20
[  109.278809][ T3910]  ? putname+0xfa/0x150
[  109.282802][ T3910]  ? page_cache_sync_ra+0x4d0/0x4d0
[  109.287841][ T3910]  page_cache_sync_ra+0x2e9/0x4d0
[  109.292697][ T3910]  ? force_page_cache_ra+0x420/0x420
[  109.297820][ T3910]  f2fs_readdir+0x52d/0xba0
[  109.302166][ T3910]  ? f2fs_fill_dentries+0xd60/0xd60
[  109.307191][ T3910]  ? slab_free_freelist_hook+0xbd/0x190
[  109.312588][ T3910]  ? avc_policy_seqno+0x1b/0x70
[  109.317262][ T3910]  ? __kasan_check_read+0x11/0x20
[  109.322124][ T3910]  ? security_file_permission+0x86/0xb0
[  109.327504][ T3910]  iterate_dir+0x265/0x600
[  109.331757][ T3910]  ? f2fs_fill_dentries+0xd60/0xd60
[  109.336791][ T3910]  __se_sys_getdents+0x1eb/0x4b0
[  109.341563][ T3910]  ? __x64_sys_getdents+0x90/0x90
[  109.346420][ T3910]  ? fillonedir+0x420/0x420
[  109.350763][ T3910]  ? __kasan_check_write+0x14/0x20
[  109.355709][ T3910]  ? switch_fpu_return+0x15f/0x2e0
[  109.360657][ T3910]  __x64_sys_getdents+0x7b/0x90
[  109.365344][ T3910]  x64_sys_call+0x24a/0x9a0
[  109.369684][ T3910]  do_syscall_64+0x3b/0xb0
[  109.373933][ T3910]  ? clear_bhb_loop+0x35/0x90
[  109.378460][ T3910]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  109.384175][ T3910] RIP: 0033:0x7f54976e0819
[  109.388432][ T3910] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.407871][ T3910] RSP: 002b:00007f5495d59038 EFLAGS: 00000246 ORIG_RAX: 000000000000004e
[  109.416117][ T3910] RAX: ffffffffffffffda RBX: 00007f5497897fa0 RCX: 00007f54976e0819
[  109.423927][ T3910] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[  109.431742][ T3910] RBP: 00007f549775375e R08: 0000000000000000 R09: 0000000000000000
[  109.439560][ T3910] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  109.447365][ T3910] R13: 0000000000000000 R14: 00007f5497897fa0 R15: 00007fff12501ce8
[  109.455183][ T3910]  </TASK>
[  109.460546][ T3910] attempt to access beyond end of device
[  109.460546][ T3910] loop6: rw=0, want=45072, limit=40427
[  109.477699][   T26] cp2112 0003:10C4:EA90.002F: item fetching failed at offset 5/7
[  109.489886][   T26] cp2112 0003:10C4:EA90.002F: parse failed
[  109.496104][   T26] cp2112: probe of 0003:10C4:EA90.002F failed with error -22
[  109.547887][ T3927] attempt to access beyond end of device
[  109.547887][ T3927] loop6: rw=0, want=45072, limit=40427
[  109.551703][ T3936] loop2: detected capacity change from 0 to 128
[  109.578982][  T820] attempt to access beyond end of device
[  109.578982][  T820] loop6: rw=2049, want=45104, limit=40427
[  109.606208][ T3936] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  109.626926][ T3936] ext4 filesystem being mounted at /16/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  109.680776][   T20] usb 6-1: USB disconnect, device number 15
[  109.829528][ T3955] loop6: detected capacity change from 0 to 8192
[  109.897996][  T296] saitek 0003:06A3:0621.0030: unbalanced collection at end of report description
[  109.907214][  T296] saitek 0003:06A3:0621.0030: parse failed
[  109.912843][  T296] saitek: probe of 0003:06A3:0621.0030 failed with error -22
[  109.982321][ T3962] netlink: 'syz.6.1469': attribute type 4 has an invalid length.
[  110.121315][ T1027] usb 9-1: USB disconnect, device number 6
[  110.286801][   T20] usb 7-1: new high-speed USB device number 18 using dummy_hcd
[  110.398825][ T3967] loop5: detected capacity change from 0 to 40427
[  110.458070][ T3967] F2FS-fs (loop5): fault_injection options not supported
[  110.466126][ T3967] F2FS-fs (loop5): invalid crc value
[  110.472697][ T3967] F2FS-fs (loop5): Found nat_bits in checkpoint
[  110.508743][ T3967] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  110.542256][ T3967] F2FS-fs (loop5): access invalid blkaddr:2816
[  110.548318][ T3967] CPU: 0 PID: 3967 Comm: syz.5.1471 Not tainted 5.15.167-syzkaller-00348-g2e66050fb753 #0
[  110.557968][ T3967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  110.567849][ T3967] Call Trace:
[  110.570968][ T3967]  <TASK>
[  110.573749][ T3967]  dump_stack_lvl+0x151/0x1c0
[  110.578259][ T3967]  ? io_uring_drop_tctx_refs+0x190/0x190
[  110.583725][ T3967]  ? arch_stack_walk+0xf3/0x140
[  110.588413][ T3967]  dump_stack+0x15/0x20
[  110.592406][ T3967]  f2fs_is_valid_blkaddr+0xcc3/0x12d0
[  110.597622][ T3967]  f2fs_map_blocks+0x1622/0x3ab0
[  110.602385][ T3967]  ? __stack_depot_save+0x34/0x470
[  110.607341][ T3967]  ? f2fs_do_map_lock+0x70/0x70
[  110.612021][ T3967]  ? debug_smp_processor_id+0x17/0x20
[  110.617230][ T3967]  ? try_charge_memcg+0x213/0x1550
[  110.622177][ T3967]  f2fs_mpage_readpages+0xc9a/0x21a0
[  110.627301][ T3967]  ? dquot_release_reservation_block+0xa0/0xa0
[  110.633293][ T3967]  ? workingset_activation+0x3f0/0x3f0
[  110.638606][ T3967]  f2fs_readahead+0xfd/0x250
[  110.643005][ T3967]  ? blk_start_plug+0x5a/0x170
[  110.647607][ T3967]  read_pages+0x15e/0xb00
[  110.651775][ T3967]  ? lru_cache_add+0x279/0x540
[  110.656373][ T3967]  ? page_cache_ra_unbounded+0xa50/0xa50
[  110.661841][ T3967]  ? add_to_page_cache_lru+0x225/0x2c0
[  110.667139][ T3967]  ? add_to_page_cache_locked+0x40/0x40
[  110.672520][ T3967]  page_cache_ra_unbounded+0x7ed/0xa50
[  110.677816][ T3967]  ? read_cache_pages_invalidate_pages+0x1c0/0x1c0
[  110.684150][ T3967]  ondemand_readahead+0x9c8/0xfa0
[  110.689011][ T3967]  ? kasan_set_free_info+0x23/0x40
[  110.693953][ T3967]  ? ____kasan_slab_free+0x126/0x160
[  110.699078][ T3967]  ? __kasan_slab_free+0x11/0x20
[  110.703853][ T3967]  ? putname+0xfa/0x150
[  110.707844][ T3967]  ? page_cache_sync_ra+0x4d0/0x4d0
[  110.712883][ T3967]  page_cache_sync_ra+0x2e9/0x4d0
[  110.717739][ T3967]  ? force_page_cache_ra+0x420/0x420
[  110.722860][ T3967]  f2fs_readdir+0x52d/0xba0
[  110.727203][ T3967]  ? f2fs_fill_dentries+0xd60/0xd60
[  110.732246][ T3967]  ? slab_free_freelist_hook+0xbd/0x190
[  110.737623][ T3967]  ? avc_policy_seqno+0x1b/0x70
[  110.742305][ T3967]  ? __kasan_check_read+0x11/0x20
[  110.747162][ T3967]  ? security_file_permission+0x86/0xb0
[  110.752549][ T3967]  iterate_dir+0x265/0x600
[  110.756798][ T3967]  ? f2fs_fill_dentries+0xd60/0xd60
[  110.761836][ T3967]  __se_sys_getdents+0x1eb/0x4b0
[  110.766604][ T3967]  ? __x64_sys_getdents+0x90/0x90
[  110.771464][ T3967]  ? fillonedir+0x420/0x420
[  110.775803][ T3967]  ? __kasan_check_write+0x14/0x20
[  110.780748][ T3967]  ? switch_fpu_return+0x15f/0x2e0
[  110.785699][ T3967]  __x64_sys_getdents+0x7b/0x90
[  110.790383][ T3967]  x64_sys_call+0x24a/0x9a0
[  110.794727][ T3967]  do_syscall_64+0x3b/0xb0
[  110.798976][ T3967]  ? clear_bhb_loop+0x35/0x90
[  110.803491][ T3967]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  110.809219][ T3967] RIP: 0033:0x7fbb02488819
[  110.813472][ T3967] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  110.832914][ T3967] RSP: 002b:00007fbb00b01038 EFLAGS: 00000246 ORIG_RAX: 000000000000004e
[  110.841161][ T3967] RAX: ffffffffffffffda RBX: 00007fbb0263ffa0 RCX: 00007fbb02488819
[  110.848971][ T3967] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[  110.856782][ T3967] RBP: 00007fbb024fb75e R08: 0000000000000000 R09: 0000000000000000
[  110.864592][ T3967] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  110.872405][ T3967] R13: 0000000000000000 R14: 00007fbb0263ffa0 R15: 00007ffe3cb0d598
[  110.880222][ T3967]  </TASK>
[  110.897266][ T3967] F2FS-fs (loop5): access invalid blkaddr:2816
[  110.903286][ T3967] CPU: 1 PID: 3967 Comm: syz.5.1471 Not tainted 5.15.167-syzkaller-00348-g2e66050fb753 #0
[  110.912973][ T3967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  110.922879][ T3967] Call Trace:
[  110.925999][ T3967]  <TASK>
[  110.928778][ T3967]  dump_stack_lvl+0x151/0x1c0
[  110.933287][ T3967]  ? io_uring_drop_tctx_refs+0x190/0x190
[  110.938752][ T3967]  dump_stack+0x15/0x20
[  110.942741][ T3967]  f2fs_is_valid_blkaddr+0xcc3/0x12d0
[  110.947953][ T3967]  f2fs_map_blocks+0x1622/0x3ab0
[  110.952725][ T3967]  ? __stack_depot_save+0x34/0x470
[  110.957679][ T3967]  ? f2fs_do_map_lock+0x70/0x70
[  110.962362][ T3967]  f2fs_mpage_readpages+0xc9a/0x21a0
[  110.967747][ T3967]  ? dquot_release_reservation_block+0xa0/0xa0
[  110.973726][ T3967]  ? workingset_activation+0x3f0/0x3f0
[  110.979027][ T3967]  f2fs_readahead+0xfd/0x250
[  110.983538][ T3967]  ? blk_start_plug+0x5a/0x170
[  110.988137][ T3967]  read_pages+0x15e/0xb00
[  110.992304][ T3967]  ? lru_cache_add+0x279/0x540
[  110.996918][ T3967]  ? page_cache_ra_unbounded+0xa50/0xa50
[  111.002369][ T3967]  ? add_to_page_cache_lru+0x225/0x2c0
[  111.007668][ T3967]  ? add_to_page_cache_locked+0x40/0x40
[  111.013060][ T3967]  page_cache_ra_unbounded+0x7ed/0xa50
[  111.018348][ T3967]  ? read_cache_pages_invalidate_pages+0x1c0/0x1c0
[  111.024682][ T3967]  ondemand_readahead+0x9c8/0xfa0
[  111.029544][ T3967]  ? kasan_set_free_info+0x23/0x40
[  111.034482][ T3967]  ? ____kasan_slab_free+0x126/0x160
[  111.039610][ T3967]  ? __kasan_slab_free+0x11/0x20
[  111.044381][ T3967]  ? putname+0xfa/0x150
[  111.048378][ T3967]  ? page_cache_sync_ra+0x4d0/0x4d0
[  111.053409][ T3967]  page_cache_sync_ra+0x2e9/0x4d0
[  111.058273][ T3967]  ? force_page_cache_ra+0x420/0x420
[  111.063389][ T3967]  f2fs_readdir+0x52d/0xba0
[  111.067730][ T3967]  ? f2fs_fill_dentries+0xd60/0xd60
[  111.072760][ T3967]  ? slab_free_freelist_hook+0xbd/0x190
[  111.078143][ T3967]  ? avc_policy_seqno+0x1b/0x70
[  111.082830][ T3967]  ? __kasan_check_read+0x11/0x20
[  111.087690][ T3967]  ? security_file_permission+0x86/0xb0
[  111.093070][ T3967]  iterate_dir+0x265/0x600
[  111.097327][ T3967]  ? f2fs_fill_dentries+0xd60/0xd60
[  111.102357][ T3967]  __se_sys_getdents+0x1eb/0x4b0
[  111.107134][ T3967]  ? __x64_sys_getdents+0x90/0x90
[  111.111993][ T3967]  ? fillonedir+0x420/0x420
[  111.116331][ T3967]  ? __kasan_check_write+0x14/0x20
[  111.121282][ T3967]  ? switch_fpu_return+0x15f/0x2e0
[  111.126226][ T3967]  __x64_sys_getdents+0x7b/0x90
[  111.130917][ T3967]  x64_sys_call+0x24a/0x9a0
[  111.135253][ T3967]  do_syscall_64+0x3b/0xb0
[  111.139939][ T3967]  ? clear_bhb_loop+0x35/0x90
[  111.144454][ T3967]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  111.150183][ T3967] RIP: 0033:0x7fbb02488819
[  111.154441][ T3967] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  111.173963][ T3967] RSP: 002b:00007fbb00b01038 EFLAGS: 00000246 ORIG_RAX: 000000000000004e
[  111.182213][ T3967] RAX: ffffffffffffffda RBX: 00007fbb0263ffa0 RCX: 00007fbb02488819
[  111.190022][ T3967] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[  111.197834][ T3967] RBP: 00007fbb024fb75e R08: 0000000000000000 R09: 0000000000000000
[  111.205644][ T3967] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  111.213460][ T3967] R13: 0000000000000000 R14: 00007fbb0263ffa0 R15: 00007ffe3cb0d598
[  111.221273][ T3967]  </TASK>
[  111.224739][ T3967] attempt to access beyond end of device
[  111.224739][ T3967] loop5: rw=0, want=45072, limit=40427
[  111.244963][ T3980] attempt to access beyond end of device
[  111.244963][ T3980] loop5: rw=0, want=45072, limit=40427
[  111.268051][ T3989] input: syz0 as /devices/virtual/input/input22
[  111.308112][ T3992] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1482'.
[  111.317000][   T20] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  111.324307][ T3987] loop8: detected capacity change from 0 to 8192
[  111.330473][   T20] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  111.334558][  T602] attempt to access beyond end of device
[  111.334558][  T602] loop5: rw=2049, want=45104, limit=40427
[  111.348219][   T20] usb 7-1: New USB device found, idVendor=06cb, idProduct=81a7, bcdDevice= 0.00
[  111.368203][ T3996] binder: 3995:3996 ioctl c018620b 20000600 returned -14
[  111.379863][   T20] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  111.395483][   T20] usb 7-1: config 0 descriptor??
[  111.522429][ T4016] loop5: detected capacity change from 0 to 256
[  111.597260][ T4016] exfat: Deprecated parameter 'utf8'
[  111.604713][ T4016] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  111.639758][ T4025] loop2: detected capacity change from 0 to 128
[  111.698621][   T30] kauditd_printk_skb: 40 callbacks suppressed
[  111.698636][   T30] audit: type=1326 audit(2000000075.789:1463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4031 comm="syz.8.1499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83ac379819 code=0x7ffc0000
[  111.743144][ T4025] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  111.766372][ T4035] 9pnet: p9_errstr2errno: server reported unknown error �@íÎhQI¸¥Š
[  111.774569][ T4025] ext4 filesystem being mounted at /26/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  111.817891][   T30] audit: type=1326 audit(2000000075.829:1464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4031 comm="syz.8.1499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f83ac3780b7 code=0x7ffc0000
[  111.846949][   T30] audit: type=1326 audit(2000000075.829:1465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4031 comm="syz.8.1499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83ac379819 code=0x7ffc0000
[  111.872455][   T20] hid-rmi 0003:06CB:81A7.0031: unknown main item tag 0x0
[  111.880988][   T20] hid-rmi 0003:06CB:81A7.0031: hidraw0: USB HID v0.00 Device [HID 06cb:81a7] on usb-dummy_hcd.6-1/input0
[  111.908747][   T30] audit: type=1326 audit(2000000075.829:1466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4031 comm="syz.8.1499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f83ac379819 code=0x7ffc0000
[  111.932442][   T30] audit: type=1326 audit(2000000075.829:1467): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4031 comm="syz.8.1499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83ac379819 code=0x7ffc0000
[  111.956210][   T30] audit: type=1326 audit(2000000075.829:1468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4031 comm="syz.8.1499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f83ac379819 code=0x7ffc0000
[  112.035749][   T30] audit: type=1326 audit(2000000075.829:1469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4031 comm="syz.8.1499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83ac379819 code=0x7ffc0000
[  112.111919][ T1027] usb 7-1: USB disconnect, device number 18
[  112.112183][   T30] audit: type=1326 audit(2000000075.829:1470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4031 comm="syz.8.1499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=428 compat=0 ip=0x7f83ac379819 code=0x7ffc0000
[  112.142210][   T30] audit: type=1326 audit(2000000075.829:1471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4031 comm="syz.8.1499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83ac379819 code=0x7ffc0000
[  112.169688][   T30] audit: type=1326 audit(2000000075.829:1472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4031 comm="syz.8.1499" exe="/root/syz-executor" sig=0 arch=c000003e syscall=269 compat=0 ip=0x7f83ac379819 code=0x7ffc0000
[  112.303028][ T4079] loop8: detected capacity change from 0 to 256
[  112.360133][ T4079] exFAT-fs (loop8): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  112.390598][ T4093] device pim6reg1 entered promiscuous mode
[  112.413604][  T848] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0
[  112.426111][  T848] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0
[  112.433660][  T848] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0
[  112.446956][  T848] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0
[  112.454254][  T848] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0
[  112.461751][  T848] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0
[  112.469285][  T848] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0
[  112.478406][ T4101] loop8: detected capacity change from 0 to 16
[  112.486291][  T848] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0
[  112.494032][  T848] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0
[  112.501532][  T848] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0
[  112.510169][  T848] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0
[  112.517508][  T848] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0
[  112.524913][  T848] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0
[  112.532211][  T848] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0
[  112.539560][  T848] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0
[  112.546866][  T848] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0
[  112.554256][  T848] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0
[  112.565116][ T4101] loop8: detected capacity change from 0 to 256
[  112.586904][  T848] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0
[  112.594134][  T848] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0
[  112.601407][  T848] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0
[  112.608554][  T848] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0
[  112.615736][  T848] hid-generic 0000:0000:0000.0032: unknown main item tag 0x0
[  112.624632][  T848] hid-generic 0000:0000:0000.0032: hidraw0: <UNKNOWN> HID vffffff.fe Device [syz0] on syz1
[  112.644129][ T4080] printk: udevd: 3 output lines suppressed due to ratelimiting
[  112.674339][ T4108] syz.4.1532[4108] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  112.674418][ T4108] syz.4.1532[4108] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  112.773633][ T4126] loop6: detected capacity change from 0 to 256
[  112.829482][ T4126] exFAT-fs (loop6): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d)
[  112.925428][ T4126] exFAT-fs (loop6): error, exfat_alloc_cluster: invalid used clusters(t:15,u:4294930443)
[  112.925428][ T4126] 
[  112.945347][ T4126] exFAT-fs (loop6): Filesystem has been set read-only
[  112.952616][ T4126] exFAT-fs (loop6): error, failed to bmap (inode : ffff88810994dab0 iblock : 8, err : -5)
[  112.963323][ T4151] SELinux:  Context Ü is not valid (left unmapped).
[  112.982464][ T4126] exFAT-fs (loop6): error, exfat_alloc_cluster: invalid used clusters(t:15,u:4294930443)
[  112.982464][ T4126] 
[  112.995180][ T4126] exFAT-fs (loop6): error, failed to bmap (inode : ffff88810994dab0 iblock : 8, err : -5)
[  113.006848][ T4128] loop2: detected capacity change from 0 to 40427
[  113.063133][ T4128] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  113.070872][ T4128] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  113.098720][ T4128] F2FS-fs (loop2): Found nat_bits in checkpoint
[  113.139162][ T4128] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  113.146118][ T4128] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  113.206256][ T4189] loop6: detected capacity change from 0 to 512
[  113.270464][ T4203] loop5: detected capacity change from 0 to 128
[  113.279159][ T4189] EXT4-fs (loop6): mounted filesystem without journal. Opts: grpid,grpquota,,errors=continue. Quota mode: writeback.
[  113.291754][ T4189] ext4 filesystem being mounted at /225/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  113.328442][ T4203] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  113.339454][ T4203] ext4 filesystem being mounted at /311/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  113.354099][ T4209] tipc: Started in network mode
[  113.358828][ T4209] tipc: Node identity ac1414aa, cluster identity 4711
[  113.366830][ T4209] tipc: New replicast peer: 100.1.1.1
[  113.372179][ T4209] tipc: Enabled bearer <udp:syz2>, priority 10
[  113.395783][ T4214] loop2: detected capacity change from 0 to 256
[  113.403794][ T4216] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1581'.
[  113.413951][ T4216] device bridge0 entered promiscuous mode
[  113.419846][ T4216] device macsec1 entered promiscuous mode
[  113.438636][ T4214] FAT-fs (loop2): Directory bread(block 64) failed
[  113.446380][ T4222] loop5: detected capacity change from 0 to 512
[  113.449376][ T4214] FAT-fs (loop2): Directory bread(block 65) failed
[  113.462125][ T4214] FAT-fs (loop2): Directory bread(block 66) failed
[  113.469509][ T4214] FAT-fs (loop2): Directory bread(block 67) failed
[  113.476383][ T4214] FAT-fs (loop2): Directory bread(block 68) failed
[  113.480380][ T4222] EXT4-fs error (device loop5): ext4_orphan_get:1401: inode #15: comm syz.5.1583: casefold flag without casefold feature
[  113.483513][ T4214] FAT-fs (loop2): Directory bread(block 69) failed
[  113.502563][ T4214] FAT-fs (loop2): Directory bread(block 70) failed
[  113.506193][ T4222] EXT4-fs error (device loop5): ext4_orphan_get:1406: comm syz.5.1583: couldn't read orphan inode 15 (err -117)
[  113.516443][ T4214] FAT-fs (loop2): Directory bread(block 71) failed
[  113.526928][ T4222] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  113.537759][ T4214] FAT-fs (loop2): Directory bread(block 72) failed
[  113.544411][ T4214] FAT-fs (loop2): Directory bread(block 73) failed
[  113.584028][   T45] attempt to access beyond end of device
[  113.584028][   T45] loop2: rw=1, want=1356, limit=256
[  113.726804][  T848] usb 9-1: new high-speed USB device number 7 using dummy_hcd
[  113.946829][  T318] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  114.086805][  T848] usb 9-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[  114.096943][  T848] usb 9-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[  114.105795][  T848] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  114.157473][  T848] snd-usb-audio: probe of 9-1:27.0 failed with error -2
[  114.168774][ T4248] loop5: detected capacity change from 0 to 131072
[  114.207526][ T4248] F2FS-fs (loop5): QUOTA feature is enabled, so ignore jquota_fmt
[  114.217949][ T4248] F2FS-fs (loop5): Found nat_bits in checkpoint
[  114.239683][ T4248] F2FS-fs (loop5): sanity_check_inode: corrupted inode ino=3, run fsck to fix.
[  114.248928][ T4248] F2FS-fs (loop5): Failed to read root inode
[  114.358018][  T848] usb 9-1: USB disconnect, device number 7
[  114.366935][  T318] usb 3-1: config 17 has an invalid descriptor of length 0, skipping remainder of the config
[  114.377269][  T318] usb 3-1: config 17 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  114.390349][  T318] usb 3-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  114.399526][  T318] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  114.408213][ T1027] tipc: Node number set to 2886997162
[  114.426433][ T4256] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1594'.
[  114.435508][ T4256] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1594'.
[  114.696803][  T318] usb 3-1: string descriptor 0 read error: -71
[  114.707547][  T318] aiptek 3-1:17.0: interface has no int in endpoints, but must have minimum 1
[  114.718332][  T318] usb 3-1: USB disconnect, device number 5
[  114.734453][ T4297] loop6: detected capacity change from 0 to 2048
[  114.805620][ T4297] EXT4-fs (loop6): mounted filesystem without journal. Opts: commit=0x0000000000000005,,errors=continue. Quota mode: none.
[  114.830347][ T4297] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  114.937697][ T4323] loop6: detected capacity change from 0 to 512
[  114.957718][ T4323] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  114.982188][ T4329] loop8: detected capacity change from 0 to 512
[  114.986374][ T4323] EXT4-fs (loop6): 1 truncate cleaned up
[  114.993818][ T4323] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  115.066048][ T4329] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  115.077246][ T4329] ext4 filesystem being mounted at /80/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  115.263982][ T4291] loop5: detected capacity change from 0 to 131072
[  115.308217][ T4291] F2FS-fs (loop5): invalid crc value
[  115.315014][ T4291] F2FS-fs (loop5): Found nat_bits in checkpoint
[  115.364556][ T4291] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e4
[  115.384756][ T4365] loop6: detected capacity change from 0 to 512
[  115.461517][ T4365] EXT4-fs (loop6): mounted filesystem without journal. Opts: grpid,grpquota,,errors=continue. Quota mode: writeback.
[  115.474610][ T4365] ext4 filesystem being mounted at /251/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  115.484992][ T4371] device sit0 entered promiscuous mode
[  115.491805][ T4371] netlink: 'syz.2.1641': attribute type 1 has an invalid length.
[  115.499618][ T4371] netlink: 1 bytes leftover after parsing attributes in process `syz.2.1641'.
[  115.723466][ T4404] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1656'.
[  115.798170][ T4413] loop2: detected capacity change from 0 to 16
[  115.869368][ T4413] loop2: detected capacity change from 0 to 256
[  115.966438][ T4418] overlayfs: missing 'lowerdir'
[  116.086831][ T1787] usb 7-1: new high-speed USB device number 19 using dummy_hcd
[  116.121297][ T4437] loop5: detected capacity change from 0 to 2048
[  116.188740][ T4437] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  116.256776][ T1027] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  116.466932][ T1787] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  116.477771][ T1787] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  116.488409][ T1787] usb 7-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00
[  116.497480][ T1787] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  116.506513][ T1787] usb 7-1: config 0 descriptor??
[  116.506828][ T1027] usb 3-1: Using ep0 maxpacket: 32
[  116.570254][ T4463] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  116.578844][ T4463] tipc: Enabling of bearer <ib:xfrm0> rejected, media not registered
[  116.636839][ T1027] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  116.648299][ T1027] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  116.658235][ T1027] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  116.667226][ T1027] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  116.678325][ T1027] usb 3-1: config 0 descriptor??
[  116.717277][ T1027] hub 3-1:0.0: USB hub found
[  116.836957][   T30] kauditd_printk_skb: 179 callbacks suppressed
[  116.836973][   T30] audit: type=1400 audit(2000000080.929:1652): avc:  denied  { listen } for  pid=4479 comm="syz.4.1690" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  116.863257][   T30] audit: type=1400 audit(2000000080.959:1653): avc:  denied  { accept } for  pid=4479 comm="syz.4.1690" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  116.933072][ T4483] device wireguard0 entered promiscuous mode
[  116.976835][ T1027] hub 3-1:0.0: config failed, can't read hub descriptor (err -22)
[  116.988354][ T1787] hid-steam 0003:28DE:1142.0033: item fetching failed at offset 2/5
[  116.996500][ T1787] hid-steam 0003:28DE:1142.0033: steam_probe:parse of hid interface failed
[  117.005247][ T1787] hid-steam: probe of 0003:28DE:1142.0033 failed with error -22
[  117.041274][   T30] audit: type=1326 audit(2000000081.129:1654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4489 comm="syz.4.1694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f600bd17819 code=0x7ffc0000
[  117.076823][ T1027] usbhid 3-1:0.0: can't add hid device: -71
[  117.082606][ T1027] usbhid: probe of 3-1:0.0 failed with error -71
[  117.089484][   T30] audit: type=1326 audit(2000000081.129:1655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4489 comm="syz.4.1694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f600bd17819 code=0x7ffc0000
[  117.113555][   T30] audit: type=1326 audit(2000000081.129:1656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4489 comm="syz.4.1694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f600bd17819 code=0x7ffc0000
[  117.144824][   T30] audit: type=1326 audit(2000000081.129:1657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4489 comm="syz.4.1694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f600bd17819 code=0x7ffc0000
[  117.168532][ T1027] usb 3-1: USB disconnect, device number 6
[  117.175760][   T30] audit: type=1326 audit(2000000081.129:1658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4489 comm="syz.4.1694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f600bd17819 code=0x7ffc0000
[  117.203377][ T4495] loop8: detected capacity change from 0 to 512
[  117.209655][   T30] audit: type=1326 audit(2000000081.159:1659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4489 comm="syz.4.1694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f600bd17819 code=0x7ffc0000
[  117.233079][   T30] audit: type=1326 audit(2000000081.159:1660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4489 comm="syz.4.1694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f600bd17819 code=0x7ffc0000
[  117.257154][ T1787] usb 7-1: USB disconnect, device number 19
[  117.259298][   T30] audit: type=1326 audit(2000000081.159:1661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4489 comm="syz.4.1694" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f600bd17819 code=0x7ffc0000
[  117.299035][ T4495] EXT4-fs error (device loop8): ext4_do_update_inode:5205: inode #3: comm syz.8.1696: corrupted inode contents
[  117.311298][ T4495] EXT4-fs error (device loop8): ext4_dirty_inode:6038: inode #3: comm syz.8.1696: mark_inode_dirty error
[  117.323180][ T4495] EXT4-fs error (device loop8): ext4_do_update_inode:5205: inode #3: comm syz.8.1696: corrupted inode contents
[  117.335528][ T4495] EXT4-fs error (device loop8): __ext4_ext_dirty:183: inode #3: comm syz.8.1696: mark_inode_dirty error
[  117.347361][ T4495] EXT4-fs error (device loop8): ext4_acquire_dquot:6187: comm syz.8.1696: Failed to acquire dquot type 0
[  117.359946][ T4495] EXT4-fs (loop8): 1 orphan inode deleted
[  117.365587][ T4495] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  117.376960][ T4495] ext4 filesystem being mounted at /88/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  117.417434][ T4503] blk_update_request: I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  117.428278][ T4503] F2FS-fs (loop9): Unable to read 1th superblock
[  117.434507][ T4503] blk_update_request: I/O error, dev loop9, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  117.445414][ T4503] F2FS-fs (loop9): Unable to read 2th superblock
[  117.780760][ T4535] loop6: detected capacity change from 0 to 16
[  117.798511][ T4537] loop8: detected capacity change from 0 to 128
[  117.879628][ T4537] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  117.892701][ T4535] loop6: detected capacity change from 0 to 256
[  117.919424][ T4537] ext4 filesystem being mounted at /93/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  118.034875][ T4544] input: syz0 as /devices/virtual/input/input25
[  118.153516][ T4556] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[  118.175248][ T4556] bridge0: port 2(bridge_slave_1) entered disabled state
[  118.182313][ T4556] bridge0: port 1(bridge_slave_0) entered disabled state
[  118.336777][  T318] usb 9-1: new high-speed USB device number 8 using dummy_hcd
[  118.596658][  T848] kernel write not supported for file /895/net/snmp (pid: 848 comm: kworker/1:5)
[  118.643634][ T4614] input: syz1 as /devices/virtual/input/input26
[  118.706829][  T318] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  118.721932][  T318] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  118.740328][  T318] usb 9-1: New USB device found, idVendor=046d, idProduct=c222, bcdDevice= 0.00
[  118.758450][  T318] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  118.774495][  T318] usb 9-1: config 0 descriptor??
[  118.836939][ T4608] loop2: detected capacity change from 0 to 40427
[  118.887468][ T4608] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  118.895121][ T4608] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  118.904490][ T4608] F2FS-fs (loop2): invalid crc value
[  118.911293][ T4608] F2FS-fs (loop2): Found nat_bits in checkpoint
[  118.945356][ T4608] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  118.952317][ T4608] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  118.956782][  T848] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[  118.968730][ T4608] attempt to access beyond end of device
[  118.968730][ T4608] loop2: rw=2049, want=45104, limit=40427
[  118.987257][ T3618] attempt to access beyond end of device
[  118.987257][ T3618] loop2: rw=2049, want=40968, limit=40427
[  118.990273][ T4626] netlink: 80 bytes leftover after parsing attributes in process `syz.4.1752'.
[  119.007339][ T4626] netlink: 80 bytes leftover after parsing attributes in process `syz.4.1752'.
[  119.017086][ T4626] netlink: 80 bytes leftover after parsing attributes in process `syz.4.1752'.
[  119.189470][ T4638] loop2: detected capacity change from 0 to 2048
[  119.246417][ T4638] EXT4-fs (loop2): mounted filesystem without journal. Opts: commit=0x0000000000000005,,errors=continue. Quota mode: none.
[  119.261751][  T318] lg-g15 0003:046D:C222.0034: unknown main item tag 0x0
[  119.270420][  T318] lg-g15 0003:046D:C222.0034: unknown main item tag 0x0
[  119.286891][ T4638] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  119.304379][  T318] lg-g15 0003:046D:C222.0034: unknown main item tag 0x0
[  119.313592][  T318] lg-g15 0003:046D:C222.0034: unknown main item tag 0x0
[  119.320618][  T318] lg-g15 0003:046D:C222.0034: unknown main item tag 0x0
[  119.335864][  T318] lg-g15 0003:046D:C222.0034: unknown main item tag 0x0
[  119.339629][ T4653] syz.4.1763[4653] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  119.342697][ T4653] syz.4.1763[4653] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  119.354416][  T848] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  119.356520][  T318] lg-g15 0003:046D:C222.0034: unknown main item tag 0x0
[  119.365955][  T848] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  119.383713][  T318] lg-g15 0003:046D:C222.0034: unknown main item tag 0x0
[  119.399835][  T318] lg-g15 0003:046D:C222.0034: unknown main item tag 0x0
[  119.404762][  T848] usb 6-1: New USB device found, idVendor=056a, idProduct=0045, bcdDevice= 0.00
[  119.407032][  T318] lg-g15 0003:046D:C222.0034: unknown main item tag 0x0
[  119.415783][  T848] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  119.422637][  T318] lg-g15 0003:046D:C222.0034: unknown main item tag 0x0
[  119.430917][  T848] usb 6-1: config 0 descriptor??
[  119.442751][  T318] lg-g15 0003:046D:C222.0034: hidraw0: USB HID v0.00 Device [HID 046d:c222] on usb-dummy_hcd.8-1/input0
[  119.482540][  T318] usb 9-1: USB disconnect, device number 8
[  119.656497][ T4687] loop2: detected capacity change from 0 to 256
[  119.701696][ T4687] FAT-fs (loop2): Directory bread(block 64) failed
[  119.716916][ T4687] FAT-fs (loop2): Directory bread(block 65) failed
[  119.723278][ T4687] FAT-fs (loop2): Directory bread(block 66) failed
[  119.746765][ T4687] FAT-fs (loop2): Directory bread(block 67) failed
[  119.753142][ T4687] FAT-fs (loop2): Directory bread(block 68) failed
[  119.766762][ T4687] FAT-fs (loop2): Directory bread(block 69) failed
[  119.773133][ T4687] FAT-fs (loop2): Directory bread(block 70) failed
[  119.786791][ T4687] FAT-fs (loop2): Directory bread(block 71) failed
[  119.794297][ T4687] FAT-fs (loop2): Directory bread(block 72) failed
[  119.808208][ T4687] FAT-fs (loop2): Directory bread(block 73) failed
[  119.861918][ T3618] FAT-fs (loop2): error, corrupted directory (invalid entries)
[  119.869572][ T3618] FAT-fs (loop2): Filesystem has been set read-only
[  119.918438][  T848] wacom 0003:056A:0045.0035: Unknown device_type for 'HID 056a:0045'. Assuming pen.
[  119.928312][  T848] wacom 0003:056A:0045.0035: hidraw0: USB HID v0.00 Device [HID 056a:0045] on usb-dummy_hcd.5-1/input0
[  119.945743][  T327] tipc: Disabling bearer <udp:syz2>
[  119.950974][  T848] input: Wacom Intuos2 12x18 Pen as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:056A:0045.0035/input/input27
[  119.951299][  T327] tipc: Left network mode
[  120.193880][  T848] usb 6-1: USB disconnect, device number 16
[  120.218078][ T4706] loop8: detected capacity change from 0 to 512
[  120.235131][ T4700] bridge0: port 1(bridge_slave_0) entered blocking state
[  120.242193][ T4700] bridge0: port 1(bridge_slave_0) entered disabled state
[  120.250188][ T4706] EXT4-fs (loop8): feature flags set on rev 0 fs, running e2fsck is recommended
[  120.268315][ T4700] device bridge_slave_0 entered promiscuous mode
[  120.282020][ T4700] bridge0: port 2(bridge_slave_1) entered blocking state
[  120.289884][ T4700] bridge0: port 2(bridge_slave_1) entered disabled state
[  120.290789][ T4706] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  120.308784][ T4700] device bridge_slave_1 entered promiscuous mode
[  120.317698][ T4706] EXT4-fs error (device loop8): ext4_do_update_inode:5205: inode #2: comm syz.8.1789: corrupted inode contents
[  120.347097][ T4706] EXT4-fs error (device loop8): ext4_dirty_inode:6038: inode #2: comm syz.8.1789: mark_inode_dirty error
[  120.362249][ T4706] EXT4-fs error (device loop8): ext4_do_update_inode:5205: inode #2: comm syz.8.1789: corrupted inode contents
[  120.423885][ T4700] bridge0: port 2(bridge_slave_1) entered blocking state
[  120.430789][ T4700] bridge0: port 2(bridge_slave_1) entered forwarding state
[  120.437912][ T4700] bridge0: port 1(bridge_slave_0) entered blocking state
[  120.444758][ T4700] bridge0: port 1(bridge_slave_0) entered forwarding state
[  120.475204][  T641] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  120.482873][  T641] bridge0: port 1(bridge_slave_0) entered disabled state
[  120.490234][  T641] bridge0: port 2(bridge_slave_1) entered disabled state
[  120.502197][  T641] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  120.510389][  T641] bridge0: port 1(bridge_slave_0) entered blocking state
[  120.517247][  T641] bridge0: port 1(bridge_slave_0) entered forwarding state
[  120.529379][  T641] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  120.537991][  T641] bridge0: port 2(bridge_slave_1) entered blocking state
[  120.544860][  T641] bridge0: port 2(bridge_slave_1) entered forwarding state
[  120.557870][  T327] device bridge_slave_1 left promiscuous mode
[  120.563926][  T327] bridge0: port 2(bridge_slave_1) entered disabled state
[  120.571717][  T327] device bridge_slave_0 left promiscuous mode
[  120.578448][  T327] bridge0: port 1(bridge_slave_0) entered disabled state
[  120.586464][  T327] device veth1_macvtap left promiscuous mode
[  120.592402][  T327] device veth0_vlan left promiscuous mode
[  120.688060][  T641] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  120.696191][  T641] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  120.710854][ T4700] device veth0_vlan entered promiscuous mode
[  120.717649][  T641] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  120.731642][  T641] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  120.742880][  T641] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  120.750761][  T641] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  120.769781][  T641] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  120.779167][ T4700] device veth1_macvtap entered promiscuous mode
[  120.790153][  T641] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  120.812089][  T641] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  120.899768][ T4739] loop5: detected capacity change from 0 to 512
[  120.938798][ T4739] EXT4-fs (loop5): 1 orphan inode deleted
[  120.944356][ T4739] EXT4-fs (loop5): mounted filesystem without journal. Opts: resgid=0x000000000000ee00,grpquota,noblock_validity,init_itable,stripe=0x000000000000002e,resgid=0x0000000000000000,sysvgroups,norecovery,usrquota,,errors=continue. Quota mode: writeback.
[  120.968481][ T4739] ext4 filesystem being mounted at /353/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  120.993570][ T4743] loop8: detected capacity change from 0 to 128
[  121.019111][ T4743] EXT4-fs (loop8): mounted filesystem without journal. Opts: minixdf,nodelalloc,,errors=continue. Quota mode: none.
[  121.031402][ T4743] ext4 filesystem being mounted at /102/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  121.112115][ T4748] loop8: detected capacity change from 0 to 2048
[  121.118436][   T20] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[  121.125877][ T1027] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  121.158890][ T4748] EXT4-fs (loop8): mounted filesystem without journal. Opts: jqfmt=vfsv0,errors=remount-ro,. Quota mode: none.
[  121.173787][ T4748] EXT4-fs (loop8): shut down requested (0)
[  121.252662][ T4761] loop6: detected capacity change from 0 to 8192
[  121.366773][ T1027] usb 4-1: Using ep0 maxpacket: 8
[  121.371782][   T20] usb 5-1: Using ep0 maxpacket: 16
[  121.385682][ T4778] loop8: detected capacity change from 0 to 2048
[  121.446478][ T4778] EXT4-fs (loop8): mounted filesystem without journal. Opts: grpquota,norecovery,data_err=abort,noblock_validity,,errors=continue. Quota mode: writeback.
[  121.465461][ T4778] EXT4-fs error (device loop8): ext4_find_extent:929: inode #2: comm syz.8.1816: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[  121.497043][   T20] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 8
[  121.506067][ T1027] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  121.518135][ T1027] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  121.527962][ T1027] usb 4-1: New USB device found, idVendor=054c, idProduct=0ce6, bcdDevice= 0.00
[  121.537142][ T1027] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  121.546434][ T1027] usb 4-1: config 0 descriptor??
[  121.610296][ T4797] loop8: detected capacity change from 0 to 512
[  121.627538][ T4797] EXT4-fs (loop8): feature flags set on rev 0 fs, running e2fsck is recommended
[  121.637672][ T4797] EXT4-fs (loop8): warning: checktime reached, running e2fsck is recommended
[  121.646648][ T4797] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c01c, mo2=0002]
[  121.654985][ T4797] System zones: 0-2, 18-18, 34-34
[  121.656899][   T20] usb 5-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00
[  121.669075][   T20] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  121.669102][ T4797] EXT4-fs warning (device loop8): ext4_update_dynamic_rev:1053: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  121.676988][   T20] usb 5-1: Product: syz
[  121.695120][   T20] usb 5-1: Manufacturer: syz
[  121.699492][   T20] usb 5-1: SerialNumber: syz
[  121.704830][   T20] usb 5-1: config 0 descriptor??
[  121.710288][ T4797] EXT4-fs (loop8): 1 truncate cleaned up
[  121.715921][ T4797] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  121.747027][ T4793] loop6: detected capacity change from 0 to 40427
[  121.747408][   T20] ftdi_sio 5-1:0.0: FTDI USB Serial Device converter detected
[  121.761113][   T20] usb 5-1: Detected FT232RL
[  121.797348][ T4793] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  121.805014][ T4793] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  121.814257][ T4793] F2FS-fs (loop6): invalid crc value
[  121.821058][ T4793] F2FS-fs (loop6): Found nat_bits in checkpoint
[  121.856576][ T4793] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  121.863623][ T4793] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  121.955003][   T30] kauditd_printk_skb: 99 callbacks suppressed
[  121.955019][   T30] audit: type=1326 audit(2000000086.039:1759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4805 comm="syz.8.1825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83ac379819 code=0x7ffc0000
[  121.988944][   T30] audit: type=1326 audit(2000000086.039:1760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4805 comm="syz.8.1825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83ac379819 code=0x7ffc0000
[  122.018816][   T30] audit: type=1326 audit(2000000086.059:1761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4805 comm="syz.8.1825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f83ac379819 code=0x7ffc0000
[  122.047358][   T30] audit: type=1326 audit(2000000086.059:1762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4805 comm="syz.8.1825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83ac379819 code=0x7ffc0000
[  122.048025][ T1027] playstation 0003:054C:0CE6.0036: unknown main item tag 0x0
[  122.078198][ T1027] playstation 0003:054C:0CE6.0036: unknown main item tag 0x0
[  122.083924][   T30] audit: type=1326 audit(2000000086.059:1763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4805 comm="syz.8.1825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83ac379819 code=0x7ffc0000
[  122.087028][ T1027] playstation 0003:054C:0CE6.0036: unknown main item tag 0x0
[  122.111030][   T30] audit: type=1326 audit(2000000086.059:1764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4805 comm="syz.8.1825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f83ac379819 code=0x7ffc0000
[  122.118290][ T4810] loop8: detected capacity change from 0 to 256
[  122.147916][   T30] audit: type=1326 audit(2000000086.079:1765): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4805 comm="syz.8.1825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83ac379819 code=0x7ffc0000
[  122.149836][ T1027] playstation 0003:054C:0CE6.0036: unknown main item tag 0x0
[  122.173698][ T1027] playstation 0003:054C:0CE6.0036: unknown main item tag 0x0
[  122.187073][   T30] audit: type=1326 audit(2000000086.079:1766): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4805 comm="syz.8.1825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f83ac379819 code=0x7ffc0000
[  122.212725][   T30] audit: type=1326 audit(2000000086.109:1767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4805 comm="syz.8.1825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83ac379819 code=0x7ffc0000
[  122.218732][ T1027] playstation 0003:054C:0CE6.0036: unknown main item tag 0x0
[  122.243587][   T30] audit: type=1326 audit(2000000086.109:1768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4805 comm="syz.8.1825" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f83ac379819 code=0x7ffc0000
[  122.267308][ T1027] playstation 0003:054C:0CE6.0036: unknown main item tag 0x0
[  122.272791][ T4810] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0x207d53fc, utbl_chksum : 0xe619d30d)
[  122.291677][ T1027] playstation 0003:054C:0CE6.0036: hidraw0: USB HID v0.00 Device [HID 054c:0ce6] on usb-dummy_hcd.3-1/input0
[  122.314235][   T20] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[  122.336810][   T20] ftdi_sio 5-1:0.0: GPIO initialisation failed: -71
[  122.341909][ T4822] input: syz0 as /devices/virtual/input/input30
[  122.349624][   T20] usb 5-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  122.366517][   T20] usb 5-1: USB disconnect, device number 21
[  122.383045][   T20] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  122.401644][ T4828] xt_hashlimit: size too large, truncated to 1048576
[  122.406845][ T1027] playstation 0003:054C:0CE6.0036: Invalid reportID received, expected 9 got 0
[  122.426947][   T20] ftdi_sio 5-1:0.0: device disconnected
[  122.432607][ T1027] playstation 0003:054C:0CE6.0036: Failed to retrieve DualSense pairing info: -22
[  122.447257][ T1027] playstation 0003:054C:0CE6.0036: Failed to get MAC address from DualSense
[  122.465886][ T1027] playstation 0003:054C:0CE6.0036: Failed to create dualsense.
[  122.484772][ T1027] playstation: probe of 0003:054C:0CE6.0036 failed with error -22
[  122.689806][ T1787] usb 4-1: USB disconnect, device number 3
[  122.756552][ T4852] loop8: detected capacity change from 0 to 128
[  122.778632][ T4856] loop6: detected capacity change from 0 to 16
[  122.788972][ T4852] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  122.800725][ T4852] ext4 filesystem being mounted at /114/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.816520][ T4856] erofs: (device loop6): mounted with root inode @ nid 36.
[  122.901453][ T4866] input: syz1 as /devices/virtual/input/input31
[  123.005505][ T4870] syz.4.1855[4870] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  123.005582][ T4870] syz.4.1855[4870] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  123.076365][ T4882] syz.4.1861[4882] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  123.078956][ T4879] loop6: detected capacity change from 0 to 2048
[  123.087951][ T4882] syz.4.1861[4882] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  123.113576][ T4884] loop8: detected capacity change from 0 to 512
[  123.175484][ T4820] loop5: detected capacity change from 0 to 131072
[  123.187411][ T4890] binfmt_misc: register: failed to install interpreter file ./file0/../file0
[  123.200259][ T4884] EXT4-fs error (device loop8): ext4_xattr_inode_iget:404: comm syz.8.1862: inode #1: comm syz.8.1862: iget: illegal inode #
[  123.213453][ T4884] EXT4-fs error (device loop8): ext4_xattr_inode_iget:409: comm syz.8.1862: error while reading EA inode 1 err=-117
[  123.227307][ T4884] EXT4-fs error (device loop8): ext4_xattr_inode_iget:404: comm syz.8.1862: inode #1: comm syz.8.1862: iget: illegal inode #
[  123.227319][ T4820] F2FS-fs (loop5): Wrong CP boundary, start(512) end(198144) blocks(1024)
[  123.227341][ T4820] F2FS-fs (loop5): Can't find valid F2FS filesystem in 2th superblock
[  123.257311][ T4879] EXT4-fs (loop6): mounted filesystem without journal. Opts: commit=0x0000000000000005,,errors=continue. Quota mode: none.
[  123.258286][ T4820] F2FS-fs (loop5): invalid crc value
[  123.276789][ T4884] EXT4-fs error (device loop8): ext4_xattr_inode_iget:409: comm syz.8.1862: error while reading EA inode 1 err=-117
[  123.289838][ T4884] EXT4-fs (loop8): 1 orphan inode deleted
[  123.295460][ T4884] EXT4-fs (loop8): mounted filesystem without journal. Opts: barrier,nogrpid,debug_want_extra_isize=0x000000000000005c,minixdf,resgid=0x0000000000000000,sysvgroups,usrjquota=,,errors=continue. Quota mode: none.
[  123.317159][ T4820] F2FS-fs (loop5): Found nat_bits in checkpoint
[  123.362723][ T4884] EXT4-fs (loop8): re-mounted. Opts: usrquota,usrjquota="errors=continue,noload,data_err=ignore,grpjquota="grpquota,jqfmt=vfsold,noblock_validity,. Quota mode: writeback.
[  123.381945][ T4820] F2FS-fs (loop5): Try to recover 2th superblock, ret: 0
[  123.389325][ T4820] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e4
[  123.445471][ T4917] loop6: detected capacity change from 0 to 512
[  123.456116][ T4820] syz.5.1832 (4820) used greatest stack depth: 19104 bytes left
[  123.478845][ T4924] loop8: detected capacity change from 0 to 256
[  123.489128][ T4917] EXT4-fs (loop6): Ignoring removed orlov option
[  123.509646][ T4917] EXT4-fs (loop6): orphan cleanup on readonly fs
[  123.516612][ T4917] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.1871: bg 0: block 248: padding at end of block bitmap is not set
[  123.539065][ T4924] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0x72685a33, utbl_chksum : 0xe619d30d)
[  123.541386][ T4917] EXT4-fs error (device loop6): ext4_acquire_dquot:6187: comm syz.6.1871: Failed to acquire dquot type 1
[  123.563018][ T4917] EXT4-fs (loop6): 1 truncate cleaned up
[  123.571665][ T4917] EXT4-fs (loop6): mounted filesystem without journal. Opts: bsdgroups,nodiscard,noblock_validity,grpjquota=,grpjquota=,orlov,abort,nombcache,journal_ioprio=0x0000000000000001,,errors=continue. Quota mode: writeback.
[  123.599006][ T4917] EXT4-fs (loop6): Ignoring removed orlov option
[  123.605334][ T4917] EXT4-fs error (device loop6): ext4_remount:5845: comm syz.6.1871: Abort forced by user
[  123.689334][ T4940] loop6: detected capacity change from 0 to 512
[  123.707880][ T4945] syz.8.1888[4945] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  123.707979][ T4945] syz.8.1888[4945] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  123.726859][  T848] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  123.775176][ T4940] EXT4-fs error (device loop6): ext4_xattr_inode_iget:404: comm syz.6.1885: inode #1: comm syz.6.1885: iget: illegal inode #
[  123.797305][ T4940] EXT4-fs error (device loop6): ext4_xattr_inode_iget:409: comm syz.6.1885: error while reading EA inode 1 err=-117
[  123.827911][ T4940] EXT4-fs error (device loop6): ext4_xattr_inode_iget:404: comm syz.6.1885: inode #1: comm syz.6.1885: iget: illegal inode #
[  123.841179][ T4940] EXT4-fs error (device loop6): ext4_xattr_inode_iget:409: comm syz.6.1885: error while reading EA inode 1 err=-117
[  123.853790][ T4940] EXT4-fs (loop6): 1 orphan inode deleted
[  123.859619][ T4940] EXT4-fs (loop6): mounted filesystem without journal. Opts: barrier,nogrpid,debug_want_extra_isize=0x000000000000005c,minixdf,resgid=0x0000000000000000,sysvgroups,usrjquota=,,errors=continue. Quota mode: none.
[  123.892008][ T4940] EXT4-fs (loop6): re-mounted. Opts: usrquota,usrjquota="errors=continue,noload,data_err=ignore,grpjquota="grpquota,jqfmt=vfsold,noblock_validity,. Quota mode: writeback.
[  124.086768][   T20] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[  124.176921][  T848] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  124.187938][  T848] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  124.201385][  T848] usb 4-1: New USB device found, idVendor=05ac, idProduct=0262, bcdDevice= 0.00
[  124.210755][  T848] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  124.231682][  T848] usb 4-1: config 0 descriptor??
[  124.240698][ T4964] loop8: detected capacity change from 0 to 8192
[  124.446835][   T20] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  124.456894][   T20] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  124.536848][   T20] usb 6-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  124.545879][   T20] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  124.554054][   T20] usb 6-1: SerialNumber: syz
[  124.566826][ T1787] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  124.718039][  T848] apple 0003:05AC:0262.0037: bogus close delimiter
[  124.725135][  T848] apple 0003:05AC:0262.0037: item 0 1 2 10 parsing failed
[  124.732786][  T848] apple 0003:05AC:0262.0037: parse failed
[  124.738662][  T848] apple: probe of 0003:05AC:0262.0037 failed with error -22
[  124.765056][ T4974] loop8: detected capacity change from 0 to 131072
[  124.817403][ T4974] F2FS-fs (loop8): QUOTA feature is enabled, so ignore qf_name
[  124.825736][ T4974] F2FS-fs (loop8): invalid crc value
[  124.832394][ T4974] F2FS-fs (loop8): Disable nat_bits due to incorrect cp_ver (15359802341028777995, 275811881701387)
[  124.847432][   T20] usb 6-1: 0:2 : does not exist
[  124.855467][ T4974] F2FS-fs (loop8): Mounted with checkpoint version = 753bd00b
[  124.887014][   T20] usb 6-1: unit 2 not found!
[  124.892595][   T20] usb 6-1: USB disconnect, device number 17
[  124.918157][   T60] usb 4-1: USB disconnect, device number 4
[  125.016952][ T1787] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[  125.028060][ T1787] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  125.038023][ T1787] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[  125.048736][ T1787] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[  125.196881][ T1027] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[  125.216991][ T1787] usb 5-1: New USB device found, idVendor=0738, idProduct=a2c5, bcdDevice=1e.ce
[  125.225913][ T1787] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  125.233960][ T1787] usb 5-1: Product: syz
[  125.238487][ T1787] usb 5-1: Manufacturer: syz
[  125.243075][ T1787] usb 5-1: SerialNumber: syz
[  125.249290][ T1787] usb 5-1: config 0 descriptor??
[  125.287454][ T1787] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90
[  125.297659][ T1787] input: Generic X-Box pad as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input32
[  125.450634][ T5003] loop8: detected capacity change from 0 to 2048
[  125.488418][ T1787] usb 5-1: USB disconnect, device number 22
[  125.494465][ T1787] xpad 5-1:0.0: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  125.506388][ T5003] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  125.517035][ T5003] ext4 filesystem being mounted at /133/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  125.529626][ T5003] fs-verity: sha256 using implementation "sha256-avx2"
[  125.556855][ T1027] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  125.566827][ T1027] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  125.737099][ T1027] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  125.746007][ T1027] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  125.753835][ T1027] usb 7-1: Product: syz
[  125.757889][ T1027] usb 7-1: Manufacturer: syz
[  125.762307][ T1027] usb 7-1: SerialNumber: syz
[  125.856809][   T60] usb 9-1: new high-speed USB device number 9 using dummy_hcd
[  126.096796][   T60] usb 9-1: Using ep0 maxpacket: 16
[  126.216896][   T60] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  126.227826][   T60] usb 9-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.00
[  126.236678][   T60] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  126.245367][   T60] usb 9-1: config 0 descriptor??
[  126.498317][ T5038] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1925'.
[  126.586845][   T60] usbhid 9-1:0.0: can't add hid device: -71
[  126.592738][   T60] usbhid: probe of 9-1:0.0 failed with error -71
[  126.600069][   T60] usb 9-1: USB disconnect, device number 9
[  126.696822][   T20] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  126.906987][ T1027] cdc_ncm 7-1:1.0: bind() failure
[  126.912685][ T1027] cdc_ncm 7-1:1.1: CDC Union missing and no IAD found
[  126.919312][ T1027] cdc_ncm 7-1:1.1: bind() failure
[  126.940394][ T5053] tmpfs: Unknown parameter 'itimer_state'
[  126.969856][ T5059] loop5: detected capacity change from 0 to 256
[  126.987931][ T5059] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  127.010881][ T5059] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  127.054046][   T30] kauditd_printk_skb: 44 callbacks suppressed
[  127.054062][   T30] audit: type=1400 audit(2000000091.139:1811): avc:  denied  { unmount } for  pid=3304 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  127.056905][   T20] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  127.110998][ T1787] usb 7-1: USB disconnect, device number 20
[  127.116783][   T20] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 32
[  127.276892][   T20] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  127.285769][   T20] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  127.295204][ T5067] loop8: detected capacity change from 0 to 40427
[  127.314262][   T20] usb 5-1: Product: syz
[  127.320663][   T30] audit: type=1326 audit(2000000091.419:1812): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5070 comm="syz.5.1940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb02488819 code=0x7ffc0000
[  127.344040][   T30] audit: type=1326 audit(2000000091.419:1813): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5070 comm="syz.5.1940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb02488819 code=0x7ffc0000
[  127.344362][   T20] usb 5-1: Manufacturer: syz
[  127.371971][   T20] usb 5-1: SerialNumber: syz
[  127.376256][ T5067] F2FS-fs (loop8): Wrong SIT boundary, start(1536) end(50334208) blocks(1024)
[  127.377477][   T30] audit: type=1326 audit(2000000091.419:1814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5070 comm="syz.5.1940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7fbb02488819 code=0x7ffc0000
[  127.408543][   T30] audit: type=1326 audit(2000000091.419:1815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5070 comm="syz.5.1940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb02488819 code=0x7ffc0000
[  127.411135][ T5067] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[  127.443150][   T30] audit: type=1326 audit(2000000091.419:1816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5070 comm="syz.5.1940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb02488819 code=0x7ffc0000
[  127.446635][ T5073] loop5: detected capacity change from 0 to 256
[  127.472793][   T30] audit: type=1326 audit(2000000091.419:1817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5070 comm="syz.5.1940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7fbb02488819 code=0x7ffc0000
[  127.496205][   T30] audit: type=1326 audit(2000000091.419:1818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5070 comm="syz.5.1940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb02488819 code=0x7ffc0000
[  127.519883][   T30] audit: type=1326 audit(2000000091.419:1819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5070 comm="syz.5.1940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb02488819 code=0x7ffc0000
[  127.521912][ T5067] F2FS-fs (loop8): invalid crc value
[  127.543461][   T30] audit: type=1326 audit(2000000091.419:1820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5070 comm="syz.5.1940" exe="/root/syz-executor" sig=0 arch=c000003e syscall=263 compat=0 ip=0x7fbb02488819 code=0x7ffc0000
[  127.548703][ T5073] FAT-fs (loop5): Unrecognized mount option "smackfsdef=" or missing value
[  127.581007][ T5067] F2FS-fs (loop8): Found nat_bits in checkpoint
[  127.605578][ T5067] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[  127.612553][ T5067] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  127.631754][ T5082] xt_hashlimit: size too large, truncated to 1048576
[  127.643573][ T5026] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[  127.661766][ T3304] attempt to access beyond end of device
[  127.661766][ T3304] loop8: rw=2049, want=45104, limit=40427
[  127.921665][ T5101] serio: Serial port ptm0
[  128.031975][ T5091] loop6: detected capacity change from 0 to 40427
[  128.070209][ T5091] F2FS-fs (loop6): fault_injection options not supported
[  128.078999][ T5091] F2FS-fs (loop6): invalid crc value
[  128.085370][ T5091] F2FS-fs (loop6): Found nat_bits in checkpoint
[  128.117051][ T5103] loop5: detected capacity change from 0 to 40427
[  128.120842][ T5091] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  128.147327][ T5103] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  128.154929][ T5103] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  128.164505][ T5103] F2FS-fs (loop5): invalid crc value
[  128.171378][ T5103] F2FS-fs (loop5): Found nat_bits in checkpoint
[  128.205247][ T5103] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  128.212249][ T5103] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  128.219382][ T5091] attempt to access beyond end of device
[  128.219382][ T5091] loop6: rw=10241, want=45104, limit=40427
[  128.230999][ T5091] attempt to access beyond end of device
[  128.230999][ T5091] loop6: rw=2049, want=45104, limit=40427
[  128.287195][  T820] attempt to access beyond end of device
[  128.287195][  T820] loop6: rw=2049, want=45120, limit=40427
[  128.327442][ T5026] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[  128.360950][ T5125] loop5: detected capacity change from 0 to 128
[  128.407354][ T5125] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[  128.425758][ T5125] attempt to access beyond end of device
[  128.425758][ T5125] loop5: rw=3, want=6952, limit=128
[  128.436389][ T5125] attempt to access beyond end of device
[  128.436389][ T5125] loop5: rw=2051, want=7894, limit=128
[  128.537001][ T5149] loop6: detected capacity change from 0 to 256
[  128.566978][   T20] cdc_ncm 5-1:1.0: MAC-Address: 42:42:42:42:42:42
[  128.573244][   T20] cdc_ncm 5-1:1.0: dwNtbInMaxSize=0 is too small. Using 2048
[  128.584354][   T20] cdc_ncm 5-1:1.0: setting rx_max = 2048
[  128.599250][ T5149] exFAT-fs (loop6): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  128.663620][ T5150] bridge0: port 1(bridge_slave_0) entered blocking state
[  128.671089][ T5150] bridge0: port 1(bridge_slave_0) entered disabled state
[  128.675268][ T5167] loop8: detected capacity change from 0 to 1024
[  128.678780][ T5150] device bridge_slave_0 entered promiscuous mode
[  128.690989][ T5150] bridge0: port 2(bridge_slave_1) entered blocking state
[  128.698109][ T5150] bridge0: port 2(bridge_slave_1) entered disabled state
[  128.705502][ T5150] device bridge_slave_1 entered promiscuous mode
[  128.712742][ T5167] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  128.729109][ T5167] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a800e11d, mo2=0002]
[  128.740904][ T5167] System zones: 0-1, 2-3, 4-36, 98-101, 102-102
[  128.752019][ T5167] EXT4-fs (loop8): mounted filesystem without journal. Opts: nombcache,debug,norecovery,grpid,init_itable=0x0000000000000004,,errors=continue. Quota mode: writeback.
[  128.786845][   T20] cdc_ncm 5-1:1.0: setting tx_max = 32
[  128.804061][   T20] cdc_ncm 5-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.4-1, CDC NCM, 42:42:42:42:42:42
[  128.822301][   T20] usb 5-1: USB disconnect, device number 23
[  128.829094][   T20] cdc_ncm 5-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.4-1, CDC NCM
[  128.839406][ T5150] bridge0: port 2(bridge_slave_1) entered blocking state
[  128.846253][ T5150] bridge0: port 2(bridge_slave_1) entered forwarding state
[  128.853387][ T5150] bridge0: port 1(bridge_slave_0) entered blocking state
[  128.860142][ T5150] bridge0: port 1(bridge_slave_0) entered forwarding state
[  128.919165][  T641] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  128.930331][  T641] bridge0: port 1(bridge_slave_0) entered disabled state
[  128.937227][   T60] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[  128.945191][  T641] bridge0: port 2(bridge_slave_1) entered disabled state
[  128.969831][  T641] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  128.980169][  T641] bridge0: port 1(bridge_slave_0) entered blocking state
[  128.987079][  T641] bridge0: port 1(bridge_slave_0) entered forwarding state
[  128.995170][  T641] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  129.004005][  T641] bridge0: port 2(bridge_slave_1) entered blocking state
[  129.010903][  T641] bridge0: port 2(bridge_slave_1) entered forwarding state
[  129.028347][  T641] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  129.036859][  T641] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  129.053899][  T641] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  129.067407][  T641] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  129.076193][  T641] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  129.083884][  T641] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  129.091513][ T5150] device veth0_vlan entered promiscuous mode
[  129.103465][  T641] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  129.112947][ T5150] device veth1_macvtap entered promiscuous mode
[  129.122771][  T641] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  129.132124][    T8] device bridge_slave_1 left promiscuous mode
[  129.138811][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[  129.146166][    T8] device bridge_slave_0 left promiscuous mode
[  129.152254][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[  129.160016][    T8] device veth1_macvtap left promiscuous mode
[  129.165899][    T8] device veth0_vlan left promiscuous mode
[  129.176794][   T60] usb 6-1: Using ep0 maxpacket: 16
[  129.229873][  T641] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  129.252332][ T5196] syz.3.1971[5196] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  129.252383][ T5196] syz.3.1971[5196] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  129.297093][   T60] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  129.319355][   T60] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  129.328965][ T1027] usb 9-1: new high-speed USB device number 10 using dummy_hcd
[  129.336331][   T60] usb 6-1: New USB device found, idVendor=0419, idProduct=0001, bcdDevice= 0.00
[  129.345221][   T60] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  129.353495][   T60] usb 6-1: config 0 descriptor??
[  129.454366][ T5214] bridge0: port 1(bridge_slave_0) entered disabled state
[  129.600850][ T5225] loop6: detected capacity change from 0 to 256
[  129.628070][ T5225] FAT-fs (loop6): Unrecognized mount option "smackfsdef=" or missing value
[  129.687048][ T1027] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  129.697935][ T1027] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  129.707559][ T1027] usb 9-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  129.716449][ T1027] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  129.725092][ T1027] usb 9-1: config 0 descriptor??
[  129.749582][ T5230] loop6: detected capacity change from 0 to 512
[  129.788816][ T5230] EXT4-fs (loop6): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  129.804721][ T5230] ext4 filesystem being mounted at /315/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  129.832216][ T5235] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  129.841533][   T60] samsung 0003:0419:0001.0038: hidraw0: USB HID v0.00 Device [HID 0419:0001] on usb-dummy_hcd.5-1/input0
[  129.852965][  T848] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  129.860535][  T848] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  129.917083][  T848] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  130.040970][  T848] usb 6-1: USB disconnect, device number 18
[  130.128364][ T5250] bridge1: the hash_elasticity option has been deprecated and is always 16
[  130.207149][ T1027] hid (null): bogus close delimiter
[  130.426874][ T1027] usb 9-1: language id specifier not provided by device, defaulting to English
[  130.446849][  T296] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  130.476941][   T20] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  130.564478][ T5275] loop6: detected capacity change from 0 to 2048
[  130.594133][ T5278] loop5: detected capacity change from 0 to 8192
[  130.608630][ T5275] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  130.626949][ T5275] ext4 filesystem being mounted at /324/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  130.709318][ T5282] bridge2: the hash_elasticity option has been deprecated and is always 16
[  130.741583][ T5291] loop6: detected capacity change from 0 to 512
[  130.787466][ T5291] EXT4-fs (loop6): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  130.801469][ T5291] EXT4-fs (loop6): Cannot turn on journaled quota: type 0: error -13
[  130.810203][ T5291] EXT4-fs error (device loop6): ext4_free_branches:1030: inode #13: comm syz.6.2029: invalid indirect mapped block 2683928664 (level 1)
[  130.830837][  T296] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  130.840889][  T296] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  130.840929][ T5291] EXT4-fs (loop6): 1 truncate cleaned up
[  130.855468][ T5291] EXT4-fs (loop6): mounted filesystem without journal. Opts: noblock_validity,dioread_nolock,noinit_itable,acl,jqfmt=vfsv0,usrjquota=.,,errors=continue. Quota mode: writeback.
[  130.877492][ T1787] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  130.885161][ T1787] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  130.897580][ T5291] EXT4-fs (loop6): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  130.909776][ T5291] EXT4-fs (loop6): re-mounted. Opts: usrjquota=. Quota mode: writeback.
[  130.924096][  T820] EXT4-fs error (device loop6): htree_dirblock_to_tree:1112: inode #2: block 13: comm syz-executor: bad entry in directory: rec_len % 4 != 0 - offset=108, inode=4294901777, rec_len=65535, size=1024 fake=0
[  130.945281][  T820] EXT4-fs error (device loop6): ext4_read_block_bitmap_nowait:476: comm syz-executor: Invalid block bitmap block 3 in block_group 0
[  130.959328][  T296] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  130.968715][  T820] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6183: Corrupt filesystem
[  130.977338][  T296] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  130.985143][  T296] usb 4-1: SerialNumber: syz
[  130.990514][  T820] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2219: inode #15: comm syz-executor: corrupted in-inode xattr
[  131.003978][  T820] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2219: inode #15: comm syz-executor: corrupted in-inode xattr
[  131.028304][ T5302] syz.5.2038[5302] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  131.028362][ T5302] syz.5.2038[5302] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  131.047109][ T1787] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[  131.086824][ T1027] uclogic 0003:256C:006D.0039: failed retrieving string descriptor #100: -71
[  131.095529][ T1027] uclogic 0003:256C:006D.0039: failed retrieving pen parameters: -71
[  131.106403][ T1027] uclogic 0003:256C:006D.0039: failed probing pen v1 parameters: -71
[  131.116047][ T1027] uclogic 0003:256C:006D.0039: failed probing parameters: -71
[  131.117505][ T5307] loop5: detected capacity change from 0 to 16
[  131.123667][ T1027] uclogic: probe of 0003:256C:006D.0039 failed with error -71
[  131.138219][ T1027] usb 9-1: USB disconnect, device number 10
[  131.167462][ T5307] erofs: (device loop5): mounted with root inode @ nid 36.
[  131.178356][ T5307] erofs: (device loop5): erofs_map_blocks_flatmode: inline data cross block boundary @ nid 36
[  131.188768][ T5307] attempt to access beyond end of device
[  131.188768][ T5307] loop5: rw=524288, want=34359740336, limit=16
[  131.212097][ T5308] bridge0: port 1(bridge_slave_0) entered blocking state
[  131.219017][ T5308] bridge0: port 1(bridge_slave_0) entered disabled state
[  131.226128][ T5308] device bridge_slave_0 entered promiscuous mode
[  131.234658][ T5308] bridge0: port 2(bridge_slave_1) entered blocking state
[  131.241639][ T5308] bridge0: port 2(bridge_slave_1) entered disabled state
[  131.248943][ T5308] device bridge_slave_1 entered promiscuous mode
[  131.257398][  T296] usb 4-1: 0:2 : does not exist
[  131.311656][ T5308] bridge0: port 2(bridge_slave_1) entered blocking state
[  131.318533][ T5308] bridge0: port 2(bridge_slave_1) entered forwarding state
[  131.325612][ T5308] bridge0: port 1(bridge_slave_0) entered blocking state
[  131.332425][ T5308] bridge0: port 1(bridge_slave_0) entered forwarding state
[  131.339574][ T1787] usb 5-1: Using ep0 maxpacket: 16
[  131.356415][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  131.364178][   T10] bridge0: port 1(bridge_slave_0) entered disabled state
[  131.371660][   T10] bridge0: port 2(bridge_slave_1) entered disabled state
[  131.382713][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  131.390719][   T10] bridge0: port 1(bridge_slave_0) entered blocking state
[  131.397610][   T10] bridge0: port 1(bridge_slave_0) entered forwarding state
[  131.406234][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  131.414367][   T10] bridge0: port 2(bridge_slave_1) entered blocking state
[  131.421222][   T10] bridge0: port 2(bridge_slave_1) entered forwarding state
[  131.435652][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  131.444990][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  131.458833][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  131.467326][ T1787] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  131.472395][ T5308] device veth0_vlan entered promiscuous mode
[  131.484871][ T1787] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  131.494657][ T1787] usb 5-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00
[  131.503561][ T1787] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  131.511990][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  131.519844][ T1787] usb 5-1: config 0 descriptor??
[  131.520039][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  131.532362][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  131.543804][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  131.552244][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  131.561079][  T641] device bridge_slave_1 left promiscuous mode
[  131.567109][  T641] bridge0: port 2(bridge_slave_1) entered disabled state
[  131.574253][  T641] device bridge_slave_0 left promiscuous mode
[  131.580544][  T641] bridge0: port 1(bridge_slave_0) entered disabled state
[  131.588306][  T641] device veth1_macvtap left promiscuous mode
[  131.594108][  T641] device veth0_vlan left promiscuous mode
[  131.652736][ T5328] loop5: detected capacity change from 0 to 512
[  131.668124][ T1027] usb 4-1: USB disconnect, device number 5
[  131.681868][ T5328] EXT4-fs error (device loop5): ext4_validate_block_bitmap:438: comm syz.5.2049: bg 0: block 393: padding at end of block bitmap is not set
[  131.696633][ T5328] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6183: Corrupt filesystem
[  131.697600][ T5308] device veth1_macvtap entered promiscuous mode
[  131.705660][ T5328] EXT4-fs (loop5): 2 truncates cleaned up
[  131.718257][ T5328] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  131.739149][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  131.747846][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  131.756230][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  131.774402][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  131.786255][   T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  131.806981][ T5341] overlayfs: failed to resolve './file1': -2
[  131.816796][ T5339] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[  131.840300][ T5345] loop8: detected capacity change from 0 to 1024
[  131.848056][ T5347] loop0: detected capacity change from 0 to 512
[  131.857604][ T5345] EXT4-fs (loop8): Test dummy encryption mode enabled
[  131.864219][ T5345] EXT4-fs (loop8): Ignoring removed orlov option
[  131.872236][ T5345] EXT4-fs (loop8): mounted filesystem without journal. Opts: test_dummy_encryption,debug_want_extra_isize=0x0000000000000084,stripe=0x0000000000000007,commit=0x0000000000000005,orlov,barrier=0x0000000000000005,max_batch_time=0x0000000000000000,data_err=abort,,errors=continue. Quota mode: writeback.
[  131.878997][ T5347] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  131.917099][ T5347] ext4 filesystem being mounted at /2/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  132.028765][ T1787] hid-multitouch 0003:1FD2:6007.003A: hidraw0: USB HID v0.00 Device [HID 1fd2:6007] on usb-dummy_hcd.4-1/input0
[  132.047515][ T5360] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=5360 comm=syz.0.2062
[  132.086307][ T5363] loop0: detected capacity change from 0 to 2048
[  132.118377][ T5363] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  132.128921][ T5363] ext4 filesystem being mounted at /5/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  132.230867][ T1787] usb 5-1: USB disconnect, device number 24
[  132.375730][   T30] kauditd_printk_skb: 124 callbacks suppressed
[  132.375746][   T30] audit: type=1326 audit(2000000096.459:1945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5377 comm="syz.3.2070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f55da0819 code=0x7ffc0000
[  132.406593][   T30] audit: type=1326 audit(2000000096.459:1946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5377 comm="syz.3.2070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f55da0819 code=0x7ffc0000
[  132.430380][   T30] audit: type=1326 audit(2000000096.459:1947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5377 comm="syz.3.2070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3f55da0819 code=0x7ffc0000
[  132.454303][   T30] audit: type=1326 audit(2000000096.459:1948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5377 comm="syz.3.2070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f55da0819 code=0x7ffc0000
[  132.479098][   T30] audit: type=1326 audit(2000000096.459:1949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5377 comm="syz.3.2070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f55da0819 code=0x7ffc0000
[  132.503291][   T30] audit: type=1326 audit(2000000096.459:1950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5377 comm="syz.3.2070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3f55da0819 code=0x7ffc0000
[  132.526679][   T30] audit: type=1326 audit(2000000096.479:1951): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5377 comm="syz.3.2070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f55da0819 code=0x7ffc0000
[  132.550096][   T30] audit: type=1326 audit(2000000096.479:1952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5377 comm="syz.3.2070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f3f55da0819 code=0x7ffc0000
[  132.573543][   T30] audit: type=1326 audit(2000000096.499:1953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5377 comm="syz.3.2070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f55da0819 code=0x7ffc0000
[  132.597021][   T30] audit: type=1326 audit(2000000096.499:1954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5377 comm="syz.3.2070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=155 compat=0 ip=0x7f3f55da0819 code=0x7ffc0000
[  132.926754][    T6] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  133.032439][ T5393] loop8: detected capacity change from 0 to 40427
[  133.087432][ T5393] F2FS-fs (loop8): fault_injection options not supported
[  133.095169][ T5393] F2FS-fs (loop8): invalid crc value
[  133.101626][ T5393] F2FS-fs (loop8): Found nat_bits in checkpoint
[  133.124408][ T5393] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  133.230977][ T5393] attempt to access beyond end of device
[  133.230977][ T5393] loop8: rw=10241, want=45104, limit=40427
[  133.243156][ T5393] attempt to access beyond end of device
[  133.243156][ T5393] loop8: rw=2049, want=45104, limit=40427
[  133.285809][ T3304] attempt to access beyond end of device
[  133.285809][ T3304] loop8: rw=2049, want=45120, limit=40427
[  133.336828][    T6] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[  133.347651][    T6] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  133.358568][    T6] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  133.368166][    T6] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  133.456854][    T6] usb 4-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[  133.465787][    T6] usb 4-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[  133.473638][    T6] usb 4-1: Manufacturer: syz
[  133.478598][    T6] usb 4-1: config 0 descriptor??
[  133.836984][   T20] Bluetooth: hci0: command 0x1003 tx timeout
[  133.842855][   T47] Bluetooth: hci0: sending frame failed (-49)
[  133.947474][    T6] appleir 0003:05AC:8243.003B: No inputs registered, leaving
[  133.955563][    T6] appleir 0003:05AC:8243.003B: hiddev96,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.3-1/input0
[  134.718245][    T6] usb 4-1: USB disconnect, device number 6
[  135.917068][    T6] Bluetooth: hci0: command 0x1001 tx timeout
[  135.922946][   T47] Bluetooth: hci0: sending frame failed (-49)
[  137.996840][    T6] Bluetooth: hci0: command 0x1009 tx timeout
[  142.106582][ T5412] loop5: detected capacity change from 0 to 2048
[  142.138564][ T5412] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  142.149126][ T5412] ext4 filesystem being mounted at /407/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  142.174771][   T30] kauditd_printk_skb: 5 callbacks suppressed
[  142.174786][   T30] audit: type=1400 audit(2000000106.259:1960): avc:  denied  { bind } for  pid=5423 comm="syz.8.2082" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  142.208713][   T30] audit: type=1326 audit(2000000106.289:1961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5420 comm="syz.4.2081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f600bd17819 code=0x7ffc0000
[  142.238828][   T30] audit: type=1326 audit(2000000106.289:1962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5420 comm="syz.4.2081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f600bd17819 code=0x7ffc0000
[  142.263374][   T30] audit: type=1326 audit(2000000106.299:1963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5420 comm="syz.4.2081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f600bd17819 code=0x7ffc0000
[  142.294185][ T5427] loop0: detected capacity change from 0 to 8192
[  142.300467][   T30] audit: type=1326 audit(2000000106.299:1964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5420 comm="syz.4.2081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f600bd17819 code=0x7ffc0000
[  142.325131][   T30] audit: type=1326 audit(2000000106.299:1965): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5420 comm="syz.4.2081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f600bd17819 code=0x7ffc0000
[  142.349067][   T30] audit: type=1326 audit(2000000106.299:1966): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5420 comm="syz.4.2081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f600bd17819 code=0x7ffc0000
[  142.373971][   T30] audit: type=1326 audit(2000000106.299:1967): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5420 comm="syz.4.2081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f600bd17819 code=0x7ffc0000
[  142.397982][   T30] audit: type=1326 audit(2000000106.299:1968): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5420 comm="syz.4.2081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f600bd17819 code=0x7ffc0000
[  142.424188][ T5435] /dev/loop0: Can't open blockdev
[  142.433928][   T30] audit: type=1326 audit(2000000106.299:1969): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5420 comm="syz.4.2081" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f600bd17819 code=0x7ffc0000
[  142.467014][   T20] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  142.726768][   T20] usb 4-1: Using ep0 maxpacket: 8
[  142.846890][   T20] usb 4-1: config 135 has an invalid interface number: 230 but max is 0
[  142.866542][   T20] usb 4-1: config 135 has an invalid descriptor of length 0, skipping remainder of the config
[  142.887040][   T20] usb 4-1: config 135 has no interface number 0
[  142.891619][ T5444] loop5: detected capacity change from 0 to 40427
[  142.893129][   T20] usb 4-1: config 135 interface 230 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  142.927980][ T5444] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  142.935629][ T5444] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  142.964808][ T5450] loop8: detected capacity change from 0 to 40427
[  142.977292][ T5444] F2FS-fs (loop5): Found nat_bits in checkpoint
[  143.018580][ T5450] F2FS-fs (loop8): invalid crc value
[  143.027824][ T5450] F2FS-fs (loop8): Found nat_bits in checkpoint
[  143.045387][ T5444] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  143.052441][ T5444] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  143.094937][ T5450] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  143.106991][   T20] usb 4-1: New USB device found, idVendor=18ec, idProduct=3288, bcdDevice=3f.3a
[  143.128397][   T20] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  143.139395][   T20] usb 4-1: Product: syz
[  143.143484][   T20] usb 4-1: Manufacturer: syz
[  143.158030][   T20] usb 4-1: SerialNumber: syz
[  143.207315][   T20] usb 4-1: Found UVC 0.00 device syz (18ec:3288)
[  143.213500][   T20] usb 4-1: No valid video chain found.
[  143.242504][ T3304] attempt to access beyond end of device
[  143.242504][ T3304] loop8: rw=2049, want=45104, limit=40427
[  143.354032][ T5480] loop5: detected capacity change from 0 to 512
[  143.407264][ T5480] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  143.416813][ T5480] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem
[  143.420407][ T5470] loop0: detected capacity change from 0 to 40427
[  143.437738][   T20] usb 4-1: USB disconnect, device number 7
[  143.454395][ T5480] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  143.472563][ T5480] System zones: 0-2, 18-18, 34-34
[  143.479988][ T5485] loop8: detected capacity change from 0 to 128
[  143.486081][ T5480] EXT4-fs warning (device loop5): ext4_update_dynamic_rev:1053: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  143.501005][ T5480] EXT4-fs (loop5): 1 truncate cleaned up
[  143.501268][ T5470] F2FS-fs (loop0): Unrecognized mount option "yode=adaptive" or missing value
[  143.506474][ T5480] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  143.527539][ T5485] EXT4-fs (loop8): Test dummy encryption mode enabled
[  143.535695][ T5485] EXT4-fs (loop8): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue. Quota mode: none.
[  143.548167][ T5485] ext4 filesystem being mounted at /173/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  143.562863][ T5485] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[  143.571834][ T5480] EXT4-fs error (device loop5): ext4_find_dest_de:2113: inode #2: block 3: comm syz.5.2106: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1
[  143.626301][ T5485] overlayfs: failed to resolve './file0': -2
[  143.805592][ T5513] loop0: detected capacity change from 0 to 2048
[  143.831852][ T5519] loop8: detected capacity change from 0 to 256
[  143.848945][ T5513] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  143.910614][ T5527] loop0: detected capacity change from 0 to 128
[  143.957457][ T5527] EXT4-fs (loop0): Test dummy encryption mode enabled
[  143.965516][ T5527] EXT4-fs (loop0): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue. Quota mode: none.
[  143.978206][ T5527] ext4 filesystem being mounted at /15/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  144.002199][ T5527] overlayfs: failed to resolve './file0': -2
[  144.168507][ T5539] loop8: detected capacity change from 0 to 128
[  144.226759][    T6] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  144.536820][   T60] usb 9-1: new high-speed USB device number 11 using dummy_hcd
[  144.616866][    T6] usb 4-1: config 17 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 255, changing to 11
[  144.627980][    T6] usb 4-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 59391, setting to 1024
[  144.639239][    T6] usb 4-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  144.648186][    T6] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  144.666840][ T5529] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  144.796820][   T20] usb 6-1: new high-speed USB device number 19 using dummy_hcd
[  144.926835][   T60] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  144.937593][   T60] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  144.947119][   T60] usb 9-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  144.955938][   T60] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  144.964330][   T60] usb 9-1: config 0 descriptor??
[  145.136883][    T6] aiptek 4-1:17.0: Aiptek using 400 ms programming speed
[  145.144343][    T6] input: Aiptek as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:17.0/input/input33
[  145.154949][    T6] usb 4-1: USB disconnect, device number 8
[  145.176866][   T20] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  145.187602][   T20] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  145.200449][   T20] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  145.209267][   T20] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  145.217864][   T20] usb 6-1: config 0 descriptor??
[  145.437016][   T60] hid (null): bogus close delimiter
[  145.646885][   T60] usb 9-1: language id specifier not provided by device, defaulting to English
[  145.687910][   T20] plantronics 0003:047F:FFFF.003D: No inputs registered, leaving
[  145.698612][   T20] plantronics 0003:047F:FFFF.003D: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0
[  145.700830][ T5572] TCP: request_sock_TCP: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  145.795920][ T5577] xt_hashlimit: size too large, truncated to 1048576
[  146.087737][   T60] input: HID 256c:006d Pen as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.0/0003:256C:006D.003C/input/input34
[  146.101741][   T60] input: HID 256c:006d Pad as /devices/platform/dummy_hcd.8/usb9/9-1/9-1:0.0/0003:256C:006D.003C/input/input35
[  146.123936][   T60] uclogic 0003:256C:006D.003C: input,hidraw1: USB HID v0.00 Keypad [HID 256c:006d] on usb-dummy_hcd.8-1/input0
[  146.202194][ T5603] syz.4.2157[5603] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  146.202268][ T5603] syz.4.2157[5603] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  146.269648][ T5613] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0)
[  146.289197][ T5613] SELinux: failed to load policy
[  146.292384][  T848] usb 9-1: USB disconnect, device number 11
[  146.357444][   T60] usb 6-1: USB disconnect, device number 19
[  146.850616][  T295] ------------[ cut here ]------------
[  146.856197][  T295] WARNING: CPU: 1 PID: 295 at fs/inode.c:307 drop_nlink+0xc1/0x110
[  146.874810][  T295] Modules linked in:
[  146.880233][  T295] CPU: 1 PID: 295 Comm: syz-executor Not tainted 5.15.167-syzkaller-00348-g2e66050fb753 #0
[  146.883381][ T5633] loop5: detected capacity change from 0 to 512
[  146.890841][  T295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  146.907187][  T295] RIP: 0010:drop_nlink+0xc1/0x110
[  146.912313][  T295] Code: 1e 48 8d bb b8 04 00 00 be 08 00 00 00 e8 e7 f4 f0 ff f0 48 ff 83 b8 04 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 df 99 ae ff <0f> 0b eb 88 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 62 ff ff ff 4c
[  146.926379][ T5635] loop8: detected capacity change from 0 to 256
[  146.932315][  T295] RSP: 0018:ffffc90000a37c88 EFLAGS: 00010293
[  146.943994][  T295] RAX: ffffffff81c1bd81 RBX: 0000000000000000 RCX: ffff88810ae90000
[  146.952094][  T295] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  146.952142][ T5633] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  146.959966][  T295] RBP: ffffc90000a37cb0 R08: ffffffff81c1bd04 R09: 0000000000000003
[  146.959986][  T295] R10: fffff52000146f80 R11: dffffc0000000001 R12: dffffc0000000000
[  146.959998][  T295] R13: 1ffff1102244710c R14: ffff888112238818 R15: ffff888112238860
[  146.960010][  T295] FS:  000055558f46a500(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  146.960023][  T295] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  146.960088][  T295] CR2: 00007fbb02641bac CR3: 0000000125f99000 CR4: 00000000003506a0
[  146.960105][  T295] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  146.960114][  T295] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  146.960125][  T295] Call Trace:
[  146.960130][  T295]  <TASK>
[  146.960137][  T295]  ? show_regs+0x58/0x60
[  146.982070][ T5633] EXT4-fs (loop5): 1 truncate cleaned up
[  146.987184][  T295]  ? __warn+0x160/0x2f0
[  146.997389][ T5635] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  147.003205][ T5633] EXT4-fs (loop5): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000002,grpjquota=,usrjquota=,block_validity,max_dir_size_kb=0x0000000000000005,quota,acl,i_version,,errors=continue. Quota mode: writeback.
[  147.026673][  T295]  ? drop_nlink+0xc1/0x110
[  147.091283][  T295]  ? report_bug+0x3d9/0x5b0
[  147.095806][  T295]  ? drop_nlink+0xc1/0x110
[  147.100277][  T295]  ? handle_bug+0x41/0x70
[  147.104438][  T295]  ? exc_invalid_op+0x1b/0x50
[  147.110877][  T295]  ? asm_exc_invalid_op+0x1b/0x20
[  147.115758][  T295]  ? drop_nlink+0x44/0x110
[  147.120154][  T295]  ? drop_nlink+0xc1/0x110
[  147.124693][  T295]  ? drop_nlink+0xc1/0x110
[  147.133879][  T295]  ? drop_nlink+0xc1/0x110
[  147.138211][  T295]  shmem_rmdir+0x59/0x90
[  147.142770][  T295]  vfs_rmdir+0x324/0x470
[  147.147065][  T295]  incfs_kill_sb+0x113/0x230
[  147.151943][  T295]  deactivate_locked_super+0xad/0x110
[  147.157260][  T295]  deactivate_super+0xbe/0xf0
[  147.165572][  T295]  cleanup_mnt+0x45c/0x510
[  147.174590][  T295]  __cleanup_mnt+0x19/0x20
[  147.179998][  T295]  task_work_run+0x129/0x190
[  147.184636][  T295]  exit_to_user_mode_loop+0xc4/0xe0
[  147.197558][  T295]  exit_to_user_mode_prepare+0x5a/0xa0
[  147.203213][  T295]  syscall_exit_to_user_mode+0x26/0x160
[  147.219387][  T295]  do_syscall_64+0x47/0xb0
[  147.223658][  T295]  ? clear_bhb_loop+0x35/0x90
[  147.230139][ T5647] netlink: 24 bytes leftover after parsing attributes in process `syz.3.2178'.
[  147.246884][  T295]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  147.252651][  T295] RIP: 0033:0x7f600bd18b47
[  147.256495][ T5647] netlink: 76 bytes leftover after parsing attributes in process `syz.3.2178'.
[  147.256904][  T295] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  147.256923][  T295] RSP: 002b:00007ffc4dafa4f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  147.256942][  T295] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f600bd18b47
[  147.256953][  T295] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc4dafa5b0
[  147.256966][  T295] RBP: 00007ffc4dafa5b0 R08: 0000000000000000 R09: 0000000000000000
[  147.256977][  T295] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc4dafb630
[  147.270756][   T30] kauditd_printk_skb: 70 callbacks suppressed
[  147.270772][   T30] audit: type=1400 audit(2000000001.039:2040): avc:  denied  { write } for  pid=5648 comm="syz.0.2179" name="usbmon0" dev="devtmpfs" ino=151 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1
[  147.332206][  T295] R13: 00007f600bd8a5fc R14: 0000000000023d86 R15: 00007ffc4dafb670
[  147.395072][ T5656] loop5: detected capacity change from 0 to 512
[  147.411030][  T295]  </TASK>
[  147.413931][  T295] ---[ end trace 424b988ec877244f ]---
[  147.419981][  T295] ==================================================================
[  147.428071][  T295] BUG: KASAN: null-ptr-deref in ihold+0x20/0x60
[  147.434141][  T295] Write of size 4 at addr 0000000000000170 by task syz-executor/295
[  147.442049][  T295] 
[  147.444232][  T295] CPU: 1 PID: 295 Comm: syz-executor Tainted: G        W         5.15.167-syzkaller-00348-g2e66050fb753 #0
[  147.455419][  T295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  147.465304][  T295] Call Trace:
[  147.468427][  T295]  <TASK>
[  147.471200][  T295]  dump_stack_lvl+0x151/0x1c0
[  147.475720][  T295]  ? io_uring_drop_tctx_refs+0x190/0x190
[  147.481189][  T295]  ? _raw_spin_lock+0xa4/0x1b0
[  147.485875][  T295]  ? _raw_spin_trylock_bh+0x190/0x190
[  147.491085][  T295]  kasan_report+0x16f/0x1c0
[  147.496023][  T295]  ? ihold+0x20/0x60
[  147.500360][  T295]  ? ihold+0x20/0x60
[  147.504101][  T295]  kasan_check_range+0x293/0x2a0
[  147.508871][  T295]  __kasan_check_write+0x14/0x20
[  147.513652][  T295]  ihold+0x20/0x60
[  147.517205][  T295]  vfs_rmdir+0x201/0x470
[  147.521281][  T295]  incfs_kill_sb+0x113/0x230
[  147.525720][  T295]  deactivate_locked_super+0xad/0x110
[  147.531051][  T295]  deactivate_super+0xbe/0xf0
[  147.535662][  T295]  cleanup_mnt+0x45c/0x510
[  147.539902][  T295]  __cleanup_mnt+0x19/0x20
[  147.544142][  T295]  task_work_run+0x129/0x190
[  147.548574][  T295]  exit_to_user_mode_loop+0xc4/0xe0
[  147.553597][  T295]  exit_to_user_mode_prepare+0x5a/0xa0
[  147.558893][  T295]  syscall_exit_to_user_mode+0x26/0x160
[  147.564273][  T295]  do_syscall_64+0x47/0xb0
[  147.568529][  T295]  ? clear_bhb_loop+0x35/0x90
[  147.573125][  T295]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  147.578857][  T295] RIP: 0033:0x7f600bd18b47
[  147.583109][  T295] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  147.602564][  T295] RSP: 002b:00007ffc4dafa4f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  147.610803][  T295] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f600bd18b47
[  147.618702][  T295] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc4dafa5b0
[  147.626516][  T295] RBP: 00007ffc4dafa5b0 R08: 0000000000000000 R09: 0000000000000000
[  147.634322][  T295] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc4dafb630
[  147.642138][  T295] R13: 00007f600bd8a5fc R14: 0000000000023d86 R15: 00007ffc4dafb670
[  147.649950][  T295]  </TASK>
[  147.652807][  T295] ==================================================================
[  147.660715][  T295] Disabling lock debugging due to kernel taint
[  147.679245][  T295] BUG: kernel NULL pointer dereference, address: 0000000000000170
[  147.687062][  T295] #PF: supervisor write access in kernel mode
[  147.692959][  T295] #PF: error_code(0x0002) - not-present page
[  147.698796][  T295] PGD 12868e067 P4D 12868e067 PUD 0 
[  147.704398][  T295] Oops: 0002 [#1] PREEMPT SMP KASAN
[  147.709387][  T295] CPU: 1 PID: 295 Comm: syz-executor Tainted: G    B   W         5.15.167-syzkaller-00348-g2e66050fb753 #0
[  147.720845][  T295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  147.730741][  T295] RIP: 0010:ihold+0x25/0x60
[  147.735069][  T295] Code: 00 00 00 00 00 55 48 89 e5 41 56 53 49 89 fe e8 f1 91 ae ff 49 8d be 70 01 00 00 be 04 00 00 00 e8 d0 ec f0 ff bb 01 00 00 00 <f0> 41 0f c1 9e 70 01 00 00 ff c3 bf 02 00 00 00 89 de e8 74 95 ae
[  147.754521][  T295] RSP: 0018:ffffc90000a37cc8 EFLAGS: 00010246
[  147.760454][  T295] RAX: ffff88810ae90000 RBX: 0000000000000001 RCX: ffff88810ae90000
[  147.768223][  T295] RDX: 0000000000000000 RSI: 0000000000000286 RDI: 00000000ffffffff
[  147.776064][  T295] RBP: ffffc90000a37cd8 R08: ffffffff8141991b R09: 0000000000000003
[  147.783847][  T295] R10: fffffbfff0e9a64c R11: dffffc0000000001 R12: dffffc0000000000
[  147.791660][  T295] R13: ffff888110da6660 R14: 0000000000000000 R15: 1ffff110221b4cd2
[  147.799920][  T295] FS:  000055558f46a500(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  147.808671][  T295] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  147.815092][  T295] CR2: 0000000000000170 CR3: 0000000125f99000 CR4: 00000000003526a0
[  147.823008][  T295] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  147.830817][  T295] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  147.838629][  T295] Call Trace:
[  147.841747][  T295]  <TASK>
[  147.847107][  T295]  ? __die_body+0x62/0xb0
[  147.851253][  T295]  ? __die+0x7e/0x90
[  147.854993][  T295]  ? page_fault_oops+0x7f9/0xa90
[  147.859754][  T295]  ? _raw_spin_unlock+0x4d/0x70
[  147.864448][  T295]  ? kernelmode_fixup_or_oops+0xd0/0xd0
[  147.869919][  T295]  ? __schedule+0xcd4/0x1590
[  147.874345][  T295]  ? exc_page_fault+0x510/0x7f0
[  147.879036][  T295]  ? asm_exc_page_fault+0x27/0x30
[  147.883898][  T295]  ? check_panic_on_warn+0x5b/0xb0
[  147.888842][  T295]  ? ihold+0x25/0x60
[  147.892928][  T295]  ? ihold+0x20/0x60
[  147.896650][  T295]  vfs_rmdir+0x201/0x470
[  147.900740][  T295]  incfs_kill_sb+0x113/0x230
[  147.905251][  T295]  deactivate_locked_super+0xad/0x110
[  147.910549][  T295]  deactivate_super+0xbe/0xf0
[  147.915047][  T295]  cleanup_mnt+0x45c/0x510
[  147.919408][  T295]  __cleanup_mnt+0x19/0x20
[  147.923656][  T295]  task_work_run+0x129/0x190
[  147.928091][  T295]  exit_to_user_mode_loop+0xc4/0xe0
[  147.933115][  T295]  exit_to_user_mode_prepare+0x5a/0xa0
[  147.938413][  T295]  syscall_exit_to_user_mode+0x26/0x160
[  147.943795][  T295]  do_syscall_64+0x47/0xb0
[  147.948043][  T295]  ? clear_bhb_loop+0x35/0x90
[  147.952556][  T295]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  147.958286][  T295] RIP: 0033:0x7f600bd18b47
[  147.962638][  T295] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  147.982067][  T295] RSP: 002b:00007ffc4dafa4f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  147.990401][  T295] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f600bd18b47
[  147.998213][  T295] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc4dafa5b0
[  148.006023][  T295] RBP: 00007ffc4dafa5b0 R08: 0000000000000000 R09: 0000000000000000
[  148.012531][ T5643] loop8: detected capacity change from 0 to 40427
[  148.013842][  T295] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffc4dafb630
[  148.027896][  T295] R13: 00007f600bd8a5fc R14: 0000000000023d86 R15: 00007ffc4dafb670
[  148.035711][  T295]  </TASK>
[  148.038570][  T295] Modules linked in:
[  148.042320][  T295] CR2: 0000000000000170
[  148.046339][  T295] ---[ end trace 424b988ec8772450 ]---
[  148.051590][  T295] RIP: 0010:ihold+0x25/0x60
[  148.055940][  T295] Code: 00 00 00 00 00 55 48 89 e5 41 56 53 49 89 fe e8 f1 91 ae ff 49 8d be 70 01 00 00 be 04 00 00 00 e8 d0 ec f0 ff bb 01 00 00 00 <f0> 41 0f c1 9e 70 01 00 00 ff c3 bf 02 00 00 00 89 de e8 74 95 ae
[  148.075461][  T295] RSP: 0018:ffffc90000a37cc8 EFLAGS: 00010246
[  148.081369][  T295] RAX: ffff88810ae90000 RBX: 0000000000000001 RCX: ffff88810ae90000
[  148.089168][  T295] RDX: 0000000000000000 RSI: 0000000000000286 RDI: 00000000ffffffff
[  148.096989][  T295] RBP: ffffc90000a37cd8 R08: ffffffff8141991b R09: 0000000000000003
[  148.104966][  T295] R10: fffffbfff0e9a64c R11: dffffc0000000001 R12: dffffc0000000000
[  148.112794][  T295] R13: ffff888110da6660 R14: 0000000000000000 R15: 1ffff110221b4cd2
[  148.120677][  T295] FS:  000055558f46a500(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  148.129453][  T295] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  148.135884][  T295] CR2: 0000000000000170 CR3: 0000000125f99000 CR4: 00000000003526a0
[  148.143680][  T295] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  148.151487][  T295] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  148.159311][  T295] Kernel panic - not syncing: Fatal exception
[  148.165420][  T295] Kernel Offset: disabled
[  148.169553][  T295] Rebooting in 86400 seconds..