last executing test programs:

5m4.89090904s ago: executing program 32 (id=10022):
io_setup(0x239f, &(0x7f0000000380)=<r0=>0x0)
r1 = eventfd2(0x5, 0x1)
io_submit(r0, 0x2, &(0x7f0000000180)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x6, r1, 0x0, 0x0, 0x800002, 0x0, 0x0, r1}, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x7, 0x9841, r1, &(0x7f0000000080)="e2", 0x36, 0x5, 0x0, 0x1, r1}])

4m42.536144066s ago: executing program 33 (id=10699):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0xffffff}, 0x10)
write(r0, &(0x7f0000000000)="240000001a005f0214f9f4070009040081ff000000000000000000000800040001000000", 0x24)

4m19.623130387s ago: executing program 2 (id=11130):
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="480000001c00110c0000001400000f0007000000", @ANYRES32=r1, @ANYBLOB="800202000a000200577f0000aabb000020000e8005"], 0x48}}, 0x0)

4m19.484187331s ago: executing program 2 (id=11132):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x6, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='freezer.parent_freezing\x00', 0x275a, 0x0)
fchmod(r0, 0x20049549e2a2d659)

4m19.403562798s ago: executing program 2 (id=11135):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_NET_SET(r0, &(0x7f00000203c0)={0x0, 0x0, &(0x7f0000020380)={&(0x7f00000201c0)={0x24, r1, 0x1, 0x70bd27, 0x25dfdbfb, {}, [@TIPC_NLA_NET={0x10, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x7}]}]}, 0x24}, 0x1, 0x0, 0x0, 0x4008000}, 0x4000854)

4m19.2930882s ago: executing program 2 (id=11138):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000200)={[{@gid}, {@discard}, {@gid={'gid', 0x3d, 0xee00}}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'cp863'}}, {@errors_continue}, {@discard}, {@umask={'umask', 0x3d, 0x7}}, {@discard}, {@dmask={'dmask', 0x3d, 0x5}}]}, 0x1, 0x1541, &(0x7f0000000840)="$eJzs3AuYT1X3OPC19t5njEn6Nsll2HuvwzeJTZLkkiSXJEmSJLeEpEleSUgMuSUNSZpch+QyhOQyMWnc7/dLQpI0SRKSW7L/j/BXv+r3vu/vvXifd9bnec4zezln7bPOWWfme87BfNt5SI1GNas2ICL4h+CFL0kAEAsAAwDgGgAIAKBsfNn48+tzSkz6x3bC/rkeTrvSFbArifufvXH/szfuf/bG/c/euP/ZG/c/e+P+Z2/cf8ays41TC1zLS/Zd+P3/f796f7qGP///i2SVHP3l6pLXdwGI+VtTuP/ZG/f/v1bwt2zE/c+e+m2/8JX7n13FXukC2H8A/v7PDnL86Rruf/bG/WcsO7vS75+v9AKR7H0OrvT1xxhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGMsezjlL1MAcGl8petijDHGGGOMMcbYP4/PcaUrYIwxxhhjjDHG2L8eggAJCgKIgRwQCzkhDgQAXA254RqIwLUQD9dBHrge8kI+yA8FIAEKQiHQYMACQQiFoQhE4QYoCjdCMbgJikMJcFASSsHNUBpugTJwK5SF26Ac3A7loQJUhEpwB1SGO6EK3AVV4W6oBtWhBtSEe6AW3Au14T6oA/dDXXgA6sGDUB8eggbwMDSER6ARPAqN4TFoAk2hGTSHFv+n/BehO7wEPaAnJEEv6A0vQx/oC/2gPwyAV2AgvAqD4DVIhsEwBF6HofAGDIM3YTi8BSnwNoyAkTAKRsMYGAupMA7GwzswAd6FiTAJJsMUSIOpMA3eg+kwA2bC+zALPoDZMAfmwjxIhw9hPiyADPgIFsLHkAmLYDEsgaWwDJbDClgJq2A1rIG1sA7WwwbYCJtgM2yBrbANtsMnsAM+hZ2wC3bDZ7AHPv8780/+j/wuCAgoUKBChTEYg7EYi3EYh7kwF+bG3BjBCMZjPObBPJgX82J+zI8JmICFsBAaNEhIWBgLYxSjWBSLYjEshsWxODp0WApLYWm8BctgGSyLZbEclsPyWAErYCWshJWxMlbBKlgVq2I1rIY1sAbeg/dgL6yNtbEO1sG6WPfS6ylsgA2wITbERtgIG2NjbIJNsBk2wxbYAltiS2yFrbANtsG22BbbYTtMxERsj+2xA3bAjtgRO2En7IydsQt2xa5ZL+YAfAlfwp5YTfTC3tgb+2Byjn7YH/vjKzgQX8VX8TVMxsE4BF/H1/ENHIYncDi+hSmYgpXFSByFo5HEWEzFVByP43ECTsCJOAkn4RRMw6k4DafhdJyBM/B9nIUf4Ac4B+fgPEzHdJyPCzADM3AhnsRMXISLcQkuxWW4FFfgSlyBq3ENrsZ1uA434AbchJtwC27BbbgNPkEFgJ/iLtyFybgH9+Be3Iv7cB/ux/2YhVl4AA/gQTyIh/AQHsbDeASP4jE8isfxOJ7Ak3gKT+EZPINn8fmErxt+ctOqZBDnKaFEjIgRsSJWxIk4kUvkErlFbhEREREv4kUekUfkFXlFfpFfJIgEUUgUEkYYQSKMAQARFVFRVBQVxUQxUVwUF044UUqUEqVFaVFGlBFlxW2inLhdlBcVRGtXSVQSlUUbV0XcJaqKqqKaqC5qiJqipqglaonaoraoI+qIuqKuqCceFPVFL+yHD4vznWkkBmNjMQSbiKZCXvwJ1lIMw1aitWgjnhRv4XBsJ1q6RPGMaC9GYQfxFzEanxOdxFjsLF4QXURX0U28KLqLVq6H6CkmYi/RW0zBPqKv6Cf6i+lYXbyPs3LWEK+JZDFYDBGvi3n4hhgm3hTDfznSt8UIMVKMEqPFGDFWpIpxYrx4R0wQ74qJYpKYLKaINDFVTBPvielihpgp3hezxAditpgj5op5Il18KOaLBSJDfCQWio9FplgkFoslYqlYJpaLFWKlWCVWizVirVgn1osNYqPYJDaLLWKr2Ca2i0/EDvGp2Cl2id3iM7FHfC72ii/EPvGl2C++Elnia3FAfCMOim/FIfGdOCy+F0fEUXFM/CCOix/FCXFSnBKnxRnxkzgrfhbnhBcgUQoppZKBjJE5ZKzMKePkVTKXDC6e3WtlvLxO5pHXy7wyn8wvC8gEWVAWkloaaSXJUBaWRWRU3iCLyhtlMXmTLC5LSCdLylLyZlla3iLLyFtlWXmbLCdvl+VlBVlRVpJ3yMryTgmRC/uoJqvLGrKmvEcmwb2ytrxP1pH3y7ryAVlPPijry4dkA/mwbCgfkY3ko7KxfEw2kU1lM9lctpCPy5byCdlKtpZt5JOyrXxKtpNPy0T5jGwv/cVL5DnZST4vO8sXZBfZVXaTP8tz0ssesqeEXiB7y5dlH9lX9pP95QD5ihwoX5WD5GsyWQ6WQ+Trcqh8Qw6Tb8rh8i2ZIt+WI+RIOUqOlmPkWJkqx8nx8h05Qb4rJ8pJcrKcItPkVNnv4kwzpfyr+e/8Qf6gX/a+QW6Um+RmuUVuldvkdvmJ3CF3yJ1yp9wtd8s9co/cK/fKfXKf3C/3yyyZJQ/IA/KgPCgPyUPysDwsj8ij8rT8QR6XP8oT8qQ8KU/LM/KMPHvxHIBCJZRUSgUqRuVQsSqnilNXqVzqapVbXaMi6loVr65TedT1Kq/Kp/KrAipBFVSFlFZGWUUqVIVVERVVN+DFC0YVVyWUUyVVKXXz35OviqobVTF102/yL9WX9Cf1tVAtVEvVUrVSrVQb1Ua1VW1VO9VOJapE1V61Vx1UB9VRdVSdVCfVWXVWXVQX1U11U91Vd9VD9VBJKkn1Vi+rPqqv6qf6qwHqFTVQDVSD1CCVrJLVEDVEDVVD1TA1TA1Xw1WKSlEj1Ag1So1SY9QYlapS1Xg1Xk1QE9RENVFNVpNVmkpT09Q0NV1NVzPVTDVLzVKz1Ww1V81V6SpdzVfzVYbKUAvVQpWpFqlFaolaopapZWqFWqFWqVVqjVqj1ql1KlNtVBvVZrVZbVVb1Xa1Xe1QO9ROtVPtVrvVHrVH7VV71T61T+1X+1WWylIH1AF1UB1Uh9QhdVgdVkfUEXVMHVPH1XF1Qp1Qp9QpdUadUWfVWXVOnTt/2xeIQAQqUEFMEBPEBrFBXBAX5ApyBbmD3EEkiATxQXyQJ7g+yBvkC/IHBYKEoGBQKNCBCWwgLjY9GtwQFA1uDIoFNwXFgxKBC0oGpYKbg9LBLUGZ4NagbHBbUC64PSgfVAgqBpWCO4LKwZ1BleCuoGpwd1AtqB7UCGoG9wS1gnuD2sF9QZ3g/qBu8EBQL3gwqB88FDQIHg4aBo8EjYJHg8bBY0GToGnQLGgetPinzu/9iXxPuB66p07SvXRv/bLuo/vqfrq/HqBf0QP1q3qQfk0n68F6iH5dD9Vv6GH6TT1cv6VT9Nt6hB6pR+nReoweq1P1OD1ev6Mn6Hf1RD1JT9ZTdJqeqqfp9/R0PUPP1O/rWfoDPVvP0XP1PJ2uP9Tz9QKdoT/SC/XHOlMv0ov1Er1UL9PL9Qq9Uq/Sq/UavVav0+v1Br1Rb9Kb9Ra9VW/T2/Uneof+VO/Uu/Ru/Zneoz/Xe/UXep/+Uu/XX+ks/bU+oL/RB/W3+pD+Th/W3+sj+qg+pn/Qx/WP+oQ+qU/p0/qM/kmf1T/rc9qfv7k///FulFEmxsSYWBNr4kycyWVymdwmt4mYiIk38SaPyWPymrwmv8lvEkyCKWQKmfPIkClsCpuoiZqipqgpZoqZ4qa4ccaZUqaUKW1KmzKmjClryppyppwpb8qbiqaiucPcYe40d5q7zF3mbnO3qW6qm5qmpqllapnaprapY+qYuqauqWfqmfqmvmlgGpiGpqFpZBqZxqaxaWKamGammWlhWpiWpqVpZVqZNqaNaWvamnamnUk0iaa9aW86mA6mo+loOplOprPpbLqYLqab6Wa6m+6mh+lhkkyS6W16mz6mj+ln+pkBZoAZaAaaQWaQSTbJZogZYoaaoWaYGWaGm7dMyvkbVTPSjDKjzRgz1qSaVDPejDcTzAQz0Uw0k81kk2bSzDQzzUw3081MM9PMMrPMbDPbzDVzTbpJN/PNfJNhMsxCs9Bkmkyz2Cw2S81Ss9wsNyvNSrParDZrYa1Zb9abjWaj2Ww2m61mq9lutpsdZofZaXaa3Wa32WP2mL1mr9ln9pn9Zr/JMlnmgDlgDpqD5pA5ZA6bw+aIOWKOmWPmuDluTpgT5pQ5Zc6YfBc/L72JtTltnL3K5rJX29z2Gvs/4/y2gE2wBW0hq21em+83sbHWFrM32eK2hHW2pC1lb/5dXN5WsBVtJXuHrWzvtFV+F9ey99ra9j5bx95va9p7fhPXtQ/YevZRWx8RwDa1DW1z28g+ahvbx2wT29Q2s81tW/uUbWefton2GdvePvu7eL5dYFfaVXa1XWN32l32lD1tD9pv7Rn7k+1he9oB9hU70L5qB9nXbLId/Ls4xQ6AEXakHWVH2zF2rE2xb9tfx5PtFJtmp9pp9j073c74XZxuP7SzbIadbefYuXbeL/H5mjLsR3ah/dhm2gAW2yV2qV1ml9sV/7/WJXadXW832B32U7vZbrFb7Ta7/dKNsN1ld9vP7B77uT1gv7H77Jd2vz1ks+zXv8Tnj++Q/c4ett/bI/aoPWZ/sMftj+qX3JF9AOxP9gf7sz1nvQVCApKkKKAYykGxlJPi6CrKRVdTbrqGInQtxdN1lIeup7yUj/JTAUqgglSINBmyRBRSYSpCUbqBLpVXnEqQo5JUim6m0nQLlaFbqSzdRuXodipPFagiVaI7qDLdSVXoLqpKd1M1qk41qCbdQ7XoXqpN91Edup/q0gNUjx6k+vQQNaCHqSE9Qo3oUWpMj1ETakrNqDm1oMepJT1Brag1taEnqS09Re3oaUqkZ6g9PUsd6C/UkZ6jTvQ8daYXqAt1pW70InWnl6gH9aQk6kW96WXqQ32pH/WnAfQKDaRXaRC9Rsk0mIbQ6zSU3qBh9CYNp7cohd6mETSSRtFoGkNjKZXG0Xh6hybQuzSRJtFkmkJpNJWm0Xs0nWbQTHqfZtEHNJvm0FyaR+n0Ic2nBZRBH9FC+pgyaREtpiW0lJbRclpBK2kVraY1tJbW0XraQBtpE22mLbSVttF2+oR20Ke0k3bRbvqM9tDntJe+oH30Je2nryiLvqYD9A0dpG/pEH3ne9L3dISO0jH6gY7Tj3SCTtIpOk1n6Cc6Sz/TOfIEIYYilKEKgzAmzBHGhjnDuPCqMFd4dZg7vCaMhNeG8eF1YZ7w+jBvmC/MHxYIE8KCYaFQhya0IYVhWDgsEkbDG8Ki4Y1hsRDD4mGJ0IUlw1LhzWHp8JawTHhrWDa8LSwX3h6WDyuEj95fKbwjrBzeGVYJ7wqrhneH1cLqYY2wZnhPWCu8N6wd3hfWCe8Py4QPhPXCB8P64UNhg/DhsGH4SNgofDRsHD4WNgmbhs3C5mGL8PGwZfhE2CpsHbYJnwzbhk+F7cKnw8TwmbB9+Owv6x9Y8Ofrk8JeYe/w5fDl0Pv75NzovGh69MPo/OiCaEb0o+jC6MfRzOii6OLokujS6LLo8uiK6Mroqujq6Jro2ui66Prohqj3NXOAQyecdMoFLsblcLEup4tzV7k4AMjtrnERd62Ld9e5PO56l9flc/ldAZfgCrpCTjvjrCMXusKuiIu6G1xRd6Mr5m5yxV0J51xJV8o1dy1cC9fSPeFaudaujXvSPemeck+5p93T7hnX3j3rOri/uI4uxXVyz7vn3Quui+vqurkXXXc3LveF78kk19v1dn1cH9fP9XMD3AA30A10g9wgl+yS3RA3xA11Q90wN8wNd8NdiktxI9wIN8qNcmPcGJfqUt14N95NcBPcRDfRTXaTXZpLc9PcNDfdTXeVZ1zYy2w32811c126S3fz3fl7xgy30C10mS7TLXaL3VK31C13y91Kt9KtdqvdWrfWrXfr3Ua30W12m91Wt9Vtd9vdDrfD7fTXXJjU7XF73V63z+1z+91XLst97Q64b9xB96075L5zh9337og76o65H9xx96M74U66U+60O+N+cmfdz+6c8y41Mi4yPvJOZELk3cjEyKTI5MiUSFpkamRa5L3I9MiMyMzI+5FZkQ8isyNzInMj8yLpkQ8j8yMLIhmRjyILIx9HMiOLIosjSyJLI8si3hfcHPrCvoiP+ht8UX+jL+Zv8sV9Ce98SV/K3+xL+1t8GX+rL+tv8+X87b68r+Ar+sd8E9/UN/PNfQv/uG/pn/CtfGvfxj/p2/qnfDv/tE/0z/j2/lnfwf/Fd/TP+U7+ed/Zv+C7+K6+m3/Rd/cv+R6+p0/yvXxv/7Lv4/v6fr6/H+Bf8QP9q36Qf80n+8F+iH/dD/Vv+GH+TT/cv+VTYt72Iy49IsNYn+rH+fH+HT/Bv+sn+kl+sp/i0/xUP82/56f7GX6mf9/P8h/42X6On+vn+XT/oZ/vF/gM/5Ff6D/2mX7RpZfKfrlf4Vf6VX61X+PX+nV+vd/gN/pNfrPf4rf6bX67/8Tv8J/6nX6X3+0/83v8536v/8Lv81/6/f4rn+W/9gf8N/6g/9Yf8t/5w/57f8Qf9cf8D/64/9Gf8Cf9KX/an/E/+bP+Z3+O/88aY4wxxtjfZNzlofjtmguv83v9QY741ca9AeDqLQWyfr3+/B3l2rwXxn1FQtsIADzTs/PDl5Zq1ZKSki5umykhKDIH4NLfBJ0XA5fjRdAGnoJEaA2l/7D+vqLrGfor80dvA4j7VU4sXI4vz/8FACb9wfyPP5kyv1x4Kv5/mX8OQLEil3NywuV4EbT55f1KayjzJ/Xna/nr+mN/P3/OL1MBWv0qJxdcji/XXwqegGch8TdbMsYYY4wxxhhjF/QVFTteev689C8+/+j5PEFdzskBl+O/9nzOGGOMMcYYY4yxK++5rt2efjwxsXXHv39Q5f+U9TcPGsO/auZ/y+Cu/4wy/o6B9wCJia1jLl0a/+CEAOcH8t95FJv++jZw8b3VP7Cv5D85P0tP+wD+M1r5zxhcoR9IjDHGGGOMsX+Zyzf9v/1zdaUKYowxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGsqF/x68T+/X+el65Q2WMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcaumP8XAAD//x2A/UY=")
mount$incfs(&(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, 0x0)
stat(&(0x7f0000000300)='./file0/file0\x00', &(0x7f0000000340))

4m18.949862713s ago: executing program 2 (id=11144):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000002080)={0x7, {"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", 0xfffffffffffffd8f}}, 0x1006)

4m18.78528559s ago: executing program 2 (id=11147):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000001c0)={0x1, &(0x7f0000000180)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
quotactl_fd$Q_SETINFO(r0, 0xffffffff80000601, 0x0, 0x0)

4m18.658483152s ago: executing program 34 (id=11147):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000001c0)={0x1, &(0x7f0000000180)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
quotactl_fd$Q_SETINFO(r0, 0xffffffff80000601, 0x0, 0x0)

3m57.09685545s ago: executing program 4 (id=11555):
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000d000000018010000756cff7c00000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000006c0)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

3m57.042054635s ago: executing program 4 (id=11556):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2e, &(0x7f0000000000)={0x5, {{0xa, 0x0, 0x0, @private1, 0x7f}}, {{0xa, 0xffff, 0x6dc, @loopback, 0x5}}}, 0x108)
getsockopt$inet6_buf(r0, 0x29, 0x30, &(0x7f0000000000)=""/40, &(0x7f0000001000)=0xf9)

3m56.971706032s ago: executing program 4 (id=11558):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000002780), 0xffffffffffffffff)
sendmsg$TIPC_NL_NODE_GET(r0, &(0x7f0000002900)={0x0, 0x0, &(0x7f00000028c0)={&(0x7f00000027c0)={0x14, r1, 0xf1f, 0x70bd29, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4800}, 0x4080)

3m56.867071242s ago: executing program 4 (id=11560):
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f0000000a80)='./file0\x00', 0x2800810, &(0x7f0000000180)=ANY=[@ANYBLOB="646f74732c747a3d5554432c646f74732c646f74732c6e6f646f74732c666c7573682c646f74732c6e6f646f74732c71756965742c00b3d27234e95eb4b44190021bbbe89ab824d38c571641668d362b4dff6e47bdf1638c7462a3bd66a53b404ae08c32af6843a2469c7210381b9d48047c77540b6447a8e50c44cb44f91e4264a37e0209c3a234f4803ba56b7a24536ee396f4838f4143b92ad909efb23eb22dce6477c2bb5b8f793b9e07c2120d566cf1f6ba51e4d01e8ef223a2ba72cfb3127844c045765149fb1219f433feb977426596e07082254e9930296256df143ff96377d8c28c533724fbd9fdad260e7d875d0f17374141abc60c8e3c07e4a7bc3817b1172c217f00964aaf6e213a252b9689ae38342862d27437921e13229d407e1a6037e3f16a2cdab8f9c76a66a72ccc67015c9435e200f9fbb9d78ce426b37310b9f127e7b1207c74eff7b853de7043a001de85931463c7fc7c78be9eb9b5f88c0067aabb3a5d1f94bcc90537c1c1ce509450160c56aeb4ea81329579cb59cadd7fc1532d20514c2c7bae38d88b8894b6e6"], 0x3, 0x15d, &(0x7f0000000f00)="$eJzs27+KE1EUB+AzJmrUJrVYDNhYBbWyVCSCOKAoKbRSiDaJBEwzWgWfxNaHEyRVCuGKzpLshoRl/8zO7ub7mhz4ccM9xZ3LGZj3dz6PhpPpp8mreXSyLNqPI49FFt24Eq2ozAIAuEwWKcXvlFK6PosbPyKl1PSOAIC6uf8BYPccev8/amhjAEBtzP8AsHvevH334klR9F/neSfi16wclIPqt8qfPS/69/P/uqtV87IctJb5gyrPD+ZX4+Ze/nBjfi3u3a3yf9nTl8VafiuG9bcPAAAAO6GXL22c73u9bXlV7Xs/sDa/t+N2+8zaAACOYPr12+jDePzxi0JxQYs/KaVjLP/+szoC56SL0y2yiDjZ/zT9ZALqtjr0Te8EAAAAAAAAAAAAAADYpt6vkVpNtwcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAb/Q0AAP//LjxONw==")
mknod$loop(&(0x7f0000000000)='./file0\x00', 0x100000000000600d, 0x0)
mount$incfs(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000040), 0x0, 0x0)

3m56.712390768s ago: executing program 4 (id=11564):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x51)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8})
symlinkat(&(0x7f0000000000)='.\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00')

3m56.627091516s ago: executing program 4 (id=11567):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000080)='./file1\x00', 0x1a00040, &(0x7f0000000240)={[{@utf8}, {@rodir}, {@rodir}, {@utf8no}, {@shortname_win95}, {@uni_xlateno}, {@shortname_mixed}, {@shortname_lower}, {@iocharset={'iocharset', 0x3d, 'cp1251'}}, {@uni_xlateno}, {@iocharset={'iocharset', 0x3d, 'cp861'}}, {@utf8no}, {@iocharset={'iocharset', 0x3d, 'macceltic'}}, {@utf8no}, {@utf8no}]}, 0x3, 0x350, &(0x7f0000000900)="$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")
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x81000)
renameat2(r0, &(0x7f0000000140)='./file0\x00', r0, &(0x7f0000000040)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1)

3m40.57289754s ago: executing program 35 (id=11567):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000080)='./file1\x00', 0x1a00040, &(0x7f0000000240)={[{@utf8}, {@rodir}, {@rodir}, {@utf8no}, {@shortname_win95}, {@uni_xlateno}, {@shortname_mixed}, {@shortname_lower}, {@iocharset={'iocharset', 0x3d, 'cp1251'}}, {@uni_xlateno}, {@iocharset={'iocharset', 0x3d, 'cp861'}}, {@utf8no}, {@iocharset={'iocharset', 0x3d, 'macceltic'}}, {@utf8no}, {@utf8no}]}, 0x3, 0x350, &(0x7f0000000900)="$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")
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x81000)
renameat2(r0, &(0x7f0000000140)='./file0\x00', r0, &(0x7f0000000040)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1)

3m38.666747488s ago: executing program 7 (id=11921):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000800)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x3}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0xf, &(0x7f0000000140)=ANY=[@ANYBLOB="180000007f000000000000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000001008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000010000008500000084000000b70000000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x10, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000400)={r1, 0x0, 0x0}, 0x10)

3m38.580669687s ago: executing program 7 (id=11924):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="1801000000000000000000006dfeff00850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r0}, 0x10)
execveat(0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x1000)

3m38.496126425s ago: executing program 7 (id=11926):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e21, 0x659, @empty, 0xff}, 0x1c)
setsockopt$inet6_IPV6_ADDRFORM(r0, 0x29, 0x1, &(0x7f0000000000), 0x4)

3m38.302015904s ago: executing program 7 (id=11932):
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000040)='./file0\x00', 0xcc04, &(0x7f0000000200)=ANY=[], 0x1, 0x226, &(0x7f0000000300)="$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")
mount$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x80, &(0x7f0000000080)=ANY=[@ANYBLOB='nr_inodes=E'])
mount$tmpfs(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x35c0e2, &(0x7f0000000140)={[{@nr_inodes={'nr_inodes', 0x3d, [0x35]}}, {@huge_never}]})

3m38.116569382s ago: executing program 7 (id=11936):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_SET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000012c0)={&(0x7f0000000200)={0x38, r1, 0x601, 0x40, 0x0, {}, [@TIPC_NLA_LINK={0x24, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x5, 0x1}]}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x0)

3m37.816393552s ago: executing program 7 (id=11941):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000000)={0xfffffffb}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=@getlink={0x30, 0x12, 0x321, 0x70bd25, 0x0, {0x7}, [@IFLA_PROMISCUITY={0x8, 0x1e, 0x10001}, @IFLA_EXT_MASK={0x8}]}, 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x0)

3m37.694678984s ago: executing program 36 (id=11941):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000000)={0xfffffffb}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000002c0)=@getlink={0x30, 0x12, 0x321, 0x70bd25, 0x0, {0x7}, [@IFLA_PROMISCUITY={0x8, 0x1e, 0x10001}, @IFLA_EXT_MASK={0x8}]}, 0x30}, 0x1, 0x0, 0x0, 0x1}, 0x0)

3m32.420937024s ago: executing program 8 (id=12069):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18020000090000000000000000000000850000002c000000850000000800000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r0, 0x27, 0xf, 0x0, &(0x7f0000000300)="0300f90ffac42324e8797dadd1eb69", 0x0, 0x0, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)

3m32.250650572s ago: executing program 8 (id=12076):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=@RTM_NEWMDB={0x18, 0x54, 0x1e5, 0x0, 0x0, {0x7, r1}}, 0x18}, 0x1, 0x0, 0x0, 0x4000084}, 0x0)

3m32.073848389s ago: executing program 8 (id=12080):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r0, &(0x7f0000000140), 0x10)
sendmsg$can_bcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000006c0)=ANY=[], 0x80}}, 0x0)

3m31.896321166s ago: executing program 8 (id=12082):
syz_mount_image$f2fs(&(0x7f0000000780), &(0x7f0000000000)='./file2\x00', 0x18000, &(0x7f0000000080)=ANY=[], 0x1, 0x556e, &(0x7f0000004000)="$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")
syz_clone(0xc0184400, &(0x7f0000000080), 0x0, 0x0, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x40042, 0x1ff)

3m30.699018244s ago: executing program 8 (id=12100):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001200), 0x181101, 0x0)
ioctl$TCSBRKP(r0, 0x5425, 0x6)
ioctl$TCSBRKP(r0, 0x5425, 0x80000000)

3m30.121522592s ago: executing program 8 (id=12116):
syz_mount_image$ext4(&(0x7f0000000bc0)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x4002, &(0x7f0000000000)={[{@test_dummy_encryption_v1}, {@nomblk_io_submit}]}, 0x3, 0xbc9, &(0x7f0000002380)="$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")
setxattr$system_posix_acl(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000140)='system.posix_acl_default\x00', &(0x7f0000000380)=ANY=[@ANYBLOB="0200000001000000000000000400000000000000100000000000000020"], 0x24, 0x0)
listxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)=""/50, 0x32)

3m29.976499176s ago: executing program 37 (id=12116):
syz_mount_image$ext4(&(0x7f0000000bc0)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x4002, &(0x7f0000000000)={[{@test_dummy_encryption_v1}, {@nomblk_io_submit}]}, 0x3, 0xbc9, &(0x7f0000002380)="$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")
setxattr$system_posix_acl(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000140)='system.posix_acl_default\x00', &(0x7f0000000380)=ANY=[@ANYBLOB="0200000001000000000000000400000000000000100000000000000020"], 0x24, 0x0)
listxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040)=""/50, 0x32)

51.890932365s ago: executing program 0 (id=15908):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newtaction={0x90, 0x30, 0x1, 0x70bd2b, 0x25dfdbfb, {}, [{0x7c, 0x1, [@m_bpf={0x78, 0x1, 0x0, 0x0, {{0x8}, {0x50, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x5}, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0x3, 0xef, 0x1, 0x8000, 0x2}}, @TCA_ACT_BPF_OPS={0x2c, 0x4, [{0x28, 0x41, 0x4, 0x6}, {0x2d, 0x0, 0x81, 0x4}, {0xc, 0x90, 0x2, 0x5}, {0xe54, 0x6a, 0x1, 0xfffffff7}, {0xff01, 0x3, 0x81, 0x4}]}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0x90}, 0x1, 0x0, 0x0, 0x4081}, 0x2400c800)

51.838271061s ago: executing program 0 (id=15912):
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='mnt\x00', 0x4, &(0x7f0000000000), 0x0, 0x236, &(0x7f0000000300)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000640)='mnt/encrypted_dir\x00', 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000680)='mnt/encrypted_dir\x00', 0x800, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f00000006c0)=@v1={0x0, @aes256, 0x4eb7f068e19dc133, @desc1})

51.810608033s ago: executing program 0 (id=15915):
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_GET_MSRS_cpu(r2, 0xc008ae88, &(0x7f0000000180)={0x1, 0x0, [{0x40000095, 0x0, 0xb620000000000000}]})

51.332708821s ago: executing program 0 (id=15919):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f00000004c0)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x4}}, {@noload}, {@acl}, {@norecovery}]}, 0x1, 0x783, &(0x7f0000001000)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x143142, 0x40)
pwritev2(r0, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0x1}], 0x1, 0x5405, 0x800, 0x0)
ioctl$EXT4_IOC_GET_ES_CACHE(r0, 0xc020662a, &(0x7f00000001c0)={0x404043002, 0x7fffffff800, 0x5, 0x2})

51.275095836s ago: executing program 0 (id=15921):
r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000200)=0x10)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f00000001c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x56)

51.238899109s ago: executing program 0 (id=15923):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000040)='./file2\x00', 0x0, &(0x7f0000000740)=ANY=[], 0xfd, 0x11f3, &(0x7f0000001b80)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
truncate(&(0x7f0000000000)='./file2\x00', 0x0)
fremovexattr(r0, &(0x7f0000000500)=ANY=[@ANYBLOB='b'])

34.672015814s ago: executing program 38 (id=15923):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000040)='./file2\x00', 0x0, &(0x7f0000000740)=ANY=[], 0xfd, 0x11f3, &(0x7f0000001b80)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
truncate(&(0x7f0000000000)='./file2\x00', 0x0)
fremovexattr(r0, &(0x7f0000000500)=ANY=[@ANYBLOB='b'])

7.318997357s ago: executing program 6 (id=17122):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000440)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nouid32}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file1\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file1\x00', 0x101900, 0x2d)
setxattr$trusted_overlay_upper(&(0x7f0000000200)='./file1\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)

7.214249968s ago: executing program 6 (id=17125):
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f0000001700)='cpu.weight.nice\x00', 0x2, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000500)=ANY=[@ANYRESDEC, @ANYRESDEC], 0x27)

7.146806194s ago: executing program 6 (id=17127):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000004c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$unix(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000180)='/', 0x1}], 0x1, 0x0, 0x0, 0x800}, 0x2000c011)
recvmsg$unix(r0, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x10002)
close(r1)

7.066289382s ago: executing program 6 (id=17131):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3)
ioctl$TIOCPKT(r0, 0x5420, 0x0)
ioctl$TIOCSSOFTCAR(r0, 0x541a, 0x0)

7.044211275s ago: executing program 6 (id=17132):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0xc0800, 0x80)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f00000002c0)=0x20)
mknod$loop(&(0x7f0000000a00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1000, 0x1)
rename(&(0x7f00000000c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000040)='./file1\x00')

7.022233147s ago: executing program 6 (id=17134):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x101801, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000000)={'syzkaller1\x00', 0x5002})
ioctl$TUNSETDEBUG(r0, 0x400454c9, 0xffffffffffffffff)
ioctl$TUNDETACHFILTER(r0, 0x401054d6, 0x0)

1.644303737s ago: executing program 5 (id=17319):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
setsockopt$inet_group_source_req(r0, 0x0, 0x2f, &(0x7f0000000000)={0x2, {{0x2, 0x4e26, @multicast2}}, {{0x2, 0x2, @multicast1}}}, 0x108)
close(0x3)

1.643917148s ago: executing program 5 (id=17322):
syz_clone(0x22000211, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0xa0402, 0x0)
io_setup(0x1, &(0x7f0000002500)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000001480)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x5, r0, &(0x7f0000000380)="a3", 0x1}])

1.380641253s ago: executing program 5 (id=17323):
r0 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
r1 = openat$selinux_commit_pending_bools(0xffffffffffffff9c, &(0x7f0000000080), 0x1, 0x0)
write$binfmt_format(r1, &(0x7f0000000800)='-1\x00', 0x3)
preadv2(r0, &(0x7f0000000cc0)=[{&(0x7f0000000080)=""/176, 0xb0}], 0x1, 0xb, 0x5, 0x11)

1.336220228s ago: executing program 5 (id=17327):
r0 = io_uring_setup(0x6258, &(0x7f0000004180)={0x0, 0x0, 0x80})
mknodat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x11c0, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x148640, 0x78e22799f4a46f8e)
close_range(r0, r1, 0x0)

1.327755979s ago: executing program 9 (id=17329):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0xf)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
sendmmsg$unix(r0, &(0x7f00000bd000), 0x318, 0x0)

876.510713ms ago: executing program 1 (id=17337):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[], 0xa0}}, 0x0)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800019f0000000000000000020000000000000008"], 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x0)
sendmmsg(r0, &(0x7f0000000000), 0x4000000000001f2, 0xea)

875.773293ms ago: executing program 3 (id=17347):
r0 = syz_clone(0x100411, 0x0, 0x0, 0x0, 0x0, 0x0)
tkill(r0, 0x13)
tkill(r0, 0x12)
wait4(r0, 0x0, 0xe000000b, &(0x7f0000000000))

856.933605ms ago: executing program 1 (id=17338):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x20000023896)
close(r0)

848.227656ms ago: executing program 3 (id=17339):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
dup2(0xffffffffffffffff, 0xffffffffffffffff)

622.470948ms ago: executing program 3 (id=17340):
connect$inet6(0xffffffffffffffff, &(0x7f0000000200)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=@base={0x10, 0x4, 0x4, 0x8, 0x0, 0x1}, 0x48)
bpf$BPF_GET_MAP_INFO(0x3, &(0x7f0000000300)={r0, 0x58, &(0x7f0000000200)}, 0x10)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)

544.214536ms ago: executing program 3 (id=17341):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)=@newtclass={0x24, 0x28, 0x0, 0x70bd26, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0x9, 0x4}, {0x7, 0xfffc}, {0xb, 0xf}}}, 0x24}}, 0x80800)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newlink={0x5c, 0x10, 0x401, 0x70bd26, 0x0, {}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_FWMARK={0x8, 0x14, 0x9}, @IFLA_GRE_ERSPAN_VER={0x5, 0x16, 0x1}]}}}, @IFLA_IFNAME={0x14, 0x3, 'nicvf0\x00'}]}, 0x5c}, 0x1, 0x0, 0x0, 0x8c1}, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

539.460217ms ago: executing program 3 (id=17342):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x9a874000)
mremap(&(0x7f000040b000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f00004b3000/0x4000)=nil)
mremap(&(0x7f00003ef000/0x3000)=nil, 0x3000, 0x400000, 0x3, &(0x7f000082a000/0x400000)=nil)
madvise(&(0x7f000042f000/0x800000)=nil, 0x800000, 0x15)

417.806439ms ago: executing program 5 (id=17343):
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
mount$incfs(&(0x7f00000007c0)='.\x00', &(0x7f0000000800)='./bus\x00', &(0x7f0000000840), 0x1004002, 0x0)
chdir(&(0x7f00000001c0)='./bus\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.current\x00', 0x275a, 0x0)

412.999429ms ago: executing program 9 (id=17344):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000002180)='blkio.bfq.io_merged\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r0, 0x0)
mlock2(&(0x7f000072d000/0x1000)=nil, 0x1000, 0x0)
mlock(&(0x7f000035b000/0x400000)=nil, 0x400000)

378.140562ms ago: executing program 9 (id=17345):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f00000001c0)='cpuset.sched_relax_domain_level\x00', 0x2, 0x0)
sendfile(r1, r1, 0x0, 0x100000000)

377.613852ms ago: executing program 1 (id=17346):
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x44)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f0000000540)='cgroup.max.descendants\x00', 0x2, 0x0)
write$cgroup_int(r1, &(0x7f00000004c0)=0x8000000001, 0x12)

319.909788ms ago: executing program 5 (id=17348):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000021"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000010000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000300)='fib_table_lookup\x00', r1}, 0x18)
syz_emit_ethernet(0x3e, &(0x7f00000005c0)={@multicast, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x64, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x0, 0x0, 0x3, 0x24, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @dev={0xac, 0x14, 0x14, 0x35}}}}}}}, 0x0)

262.771344ms ago: executing program 9 (id=17349):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
process_vm_writev(r0, &(0x7f0000001c80)=[{&(0x7f0000001bc0)=""/156, 0x9c}], 0x1, &(0x7f0000001d80)=[{&(0x7f0000001cc0)=""/116, 0x20001c34}], 0x1, 0x0)

260.981104ms ago: executing program 3 (id=17350):
r0 = eventfd2(0x4, 0x800)
io_setup(0x6, &(0x7f0000000140)=<r1=>0x0)
io_submit(r1, 0x2, &(0x7f0000000180)=[&(0x7f0000000000)={0x1802, 0x0, 0x0, 0x5, 0xffed, r0, 0x0, 0x0, 0x0, 0x0, 0x3, r0}, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0x10, r0, 0x0, 0x0, 0x0, 0x0, 0x0, r0}])
read$eventfd(r0, &(0x7f0000000100), 0x8)

254.974944ms ago: executing program 1 (id=17351):
r0 = openat$selinux_relabel(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000006c59850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x2b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000f00)='kfree\x00', r1}, 0x18)
write$selinux_access(r0, &(0x7f0000001a80)=ANY=[@ANYBLOB="73797374656d5f753a6f626a6563745f723a7570647077645f657865635f742073797374656d5f753a73797374656d5f723afaffffffffffffff3a73302030"], 0x56)

125.367477ms ago: executing program 1 (id=17352):
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_ro(r0, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000300)={[{0x2d, 'devices'}]}, 0x9)

46.536505ms ago: executing program 1 (id=17353):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x28100, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000140)={0x1, 0x0, [{0x4b564d02, 0x0, 0x40}]})

398.15µs ago: executing program 9 (id=17354):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000000)={0x3, {{0x2, 0x0, @multicast2}}}, 0x88)
setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000001040)={0x3, {{0x2, 0x0, @multicast1}}}, 0x88)
setsockopt$inet_MCAST_MSFILTER(r0, 0x0, 0x30, &(0x7f00000014c0)={0x3, {{0x2, 0x4e26, @multicast2}}, 0x1, 0x3, [{{0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x38}}}, {{0x2, 0x4e23, @rand_addr=0x64010102}}, {{0x2, 0x4e23, @multicast2}}]}, 0x210)

0s ago: executing program 9 (id=17355):
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000380)='\x00', 0x89901)
fchdir(r0)
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file1\x00', 0x0, 0x0, 0x1, 0x0, 0x0)
pivot_root(&(0x7f0000000140)='./file1\x00', &(0x7f0000000180)='./file1\x00')

kernel console output (not intermixed with test programs):

ection options not supported
[  533.055554][T32571] F2FS-fs (loop9): invalid crc value
[  533.114784][T32571] F2FS-fs (loop9): Found nat_bits in checkpoint
[  533.243553][T32571] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[  533.389028][T32571] syz.9.15231: attempt to access beyond end of device
[  533.389028][T32571] loop9: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  533.465515][T31672] syz-executor: attempt to access beyond end of device
[  533.465515][T31672] loop9: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  533.994696][T32630] loop9: detected capacity change from 0 to 8192
[  534.040865][T32630]  loop9: p1 p2
[  534.047219][T32630] loop9: p1 start 16777216 is beyond EOD, truncated
[  534.079043][T32630] loop9: p2 size 515840 extends beyond EOD, truncated
[  534.162217][T32642] input: syz1 as /devices/virtual/input/input62
[  534.206987][T32641] SELinux: failed to load policy
[  534.256472][T19751] blk_print_req_error: 17 callbacks suppressed
[  534.256491][T19751] I/O error, dev loop9, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  534.382782][T19751] udevd[19751]: inotify_add_watch(7, /dev/loop9p2, 10) failed: No such file or directory
[  534.510723][T32667] loop1: detected capacity change from 0 to 512
[  534.519867][T32663] syzkaller1: tun_chr_ioctl cmd 1074025677
[  534.547252][T32663] syzkaller1: linktype set to 780
[  534.601856][T32667] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  534.633428][T32667] ext4 filesystem being mounted at /542/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  534.744984][T32667] EXT4-fs error (device loop1): ext4_xattr_block_get:546: inode #15: comm syz.1.15272: corrupted xattr block 33
[  534.801743][T32667] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop1 ino=15
[  534.845902][T32667] EXT4-fs error (device loop1): ext4_xattr_block_get:546: inode #15: comm syz.1.15272: corrupted xattr block 33
[  534.908316][T32667] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop1 ino=15
[  534.940197][T32667] EXT4-fs error (device loop1): ext4_xattr_block_get:546: inode #15: comm syz.1.15272: corrupted xattr block 33
[  534.994776][T32667] EXT4-fs error (device loop1): ext4_xattr_block_get:546: inode #15: comm syz.1.15272: corrupted xattr block 33
[  535.030076][T32667] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop1 ino=15
[  535.046790][T32667] EXT4-fs error (device loop1): ext4_xattr_block_get:546: inode #15: comm syz.1.15272: corrupted xattr block 33
[  535.071317][T32685] SELinux: failed to load policy
[  535.080298][T32667] fscrypt (loop1, inode 15): Error -117 getting encryption context
[  535.161197][T25548] EXT4-fs (loop1): unmounting filesystem.
[  535.191283][T32689] loop9: detected capacity change from 0 to 4096
[  535.237012][T32689] EXT4-fs (loop9): Test dummy encryption mode enabled
[  535.272111][T32689] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  535.294640][T32689] System zones: 0-5
[  535.302156][T32689] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  535.451816][T31672] EXT4-fs (loop9): unmounting filesystem.
[  535.776433][T32727] /dev/loop0: Can't open blockdev
[  535.797483][T32727] /dev/loop0: Can't open blockdev
[  535.977359][   T28] kauditd_printk_skb: 879 callbacks suppressed
[  535.977376][   T28] audit: type=1400 audit(2000000303.926:61312): avc:  denied  { read } for  pid=32738 comm="syz.0.15302" name="binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  536.028864][T32739] binder: 32738:32739 ioctl c018620b 0 returned -14
[  536.067480][   T28] audit: type=1400 audit(2000000303.964:61313): avc:  denied  { read write } for  pid=323 comm="syz-executor" name="loop3" dev="devtmpfs" ino=121 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  536.116499][   T28] audit: type=1400 audit(2000000303.964:61314): avc:  denied  { open } for  pid=323 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=121 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  536.143556][   T28] audit: type=1400 audit(2000000303.964:61315): avc:  denied  { ioctl } for  pid=323 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=121 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  536.149550][T19750] printk: udevd: 760 output lines suppressed due to ratelimiting
[  536.181530][   T28] audit: type=1400 audit(2000000303.964:61316): avc:  denied  { read open } for  pid=32738 comm="syz.0.15302" path="/dev/binderfs/binder0" dev="binder" ino=7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  536.265770][T32751] input: syz1 as /devices/virtual/input/input63
[  536.294182][   T28] audit: type=1400 audit(2000000303.973:61317): avc:  denied  { bpf } for  pid=32737 comm="syz.9.15301" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  536.348397][   T28] audit: type=1400 audit(2000000303.973:61318): avc:  denied  { map_create } for  pid=32737 comm="syz.9.15301" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  536.396106][T32764] audit: audit_backlog=65 > audit_backlog_limit=64
[  536.404285][T32762] audit: audit_backlog=65 > audit_backlog_limit=64
[  536.412442][T25548] audit: audit_backlog=65 > audit_backlog_limit=64
[  536.710213][  T336] loop9: detected capacity change from 0 to 256
[  536.718097][  T337] netlink: 12 bytes leftover after parsing attributes in process `syz.3.15326'.
[  536.730395][  T337] netlink: 12 bytes leftover after parsing attributes in process `syz.3.15326'.
[  536.739946][  T336] exFAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  536.753911][  T339] loop1: detected capacity change from 0 to 256
[  536.761797][  T336] exFAT-fs (loop9): Medium has reported failures. Some data may be lost.
[  536.777485][  T336] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  536.781519][  T339] FAT-fs (loop1): Directory bread(block 64) failed
[  536.809475][  T339] FAT-fs (loop1): Directory bread(block 65) failed
[  536.823241][  T339] FAT-fs (loop1): Directory bread(block 66) failed
[  536.830908][  T339] FAT-fs (loop1): Directory bread(block 67) failed
[  536.853592][  T339] FAT-fs (loop1): Directory bread(block 68) failed
[  536.860601][  T339] FAT-fs (loop1): Directory bread(block 69) failed
[  536.868570][  T339] FAT-fs (loop1): Directory bread(block 70) failed
[  536.879261][  T339] FAT-fs (loop1): Directory bread(block 71) failed
[  536.887376][  T339] FAT-fs (loop1): Directory bread(block 72) failed
[  536.899028][  T339] FAT-fs (loop1): Directory bread(block 73) failed
[  537.097928][  T376] loop6: detected capacity change from 0 to 1024
[  537.133274][  T376] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  537.216022][  T387] netlink: 80 bytes leftover after parsing attributes in process `syz.3.15344'.
[  537.230129][T22430] EXT4-fs (loop6): unmounting filesystem.
[  537.303844][  T395] loop6: detected capacity change from 0 to 256
[  537.313174][  T395] exFAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  537.324665][  T395] exFAT-fs (loop6): Medium has reported failures. Some data may be lost.
[  537.466785][  T395] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  537.468548][  T385] loop1: detected capacity change from 0 to 40427
[  537.489335][  T385] F2FS-fs (loop1): fault_injection options not supported
[  537.500165][  T385] F2FS-fs (loop1): invalid crc value
[  537.510211][  T385] F2FS-fs (loop1): Found nat_bits in checkpoint
[  537.568657][  T385] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  537.614463][T25548] syz-executor: attempt to access beyond end of device
[  537.614463][T25548] loop1: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  537.878002][  T433] loop6: detected capacity change from 0 to 512
[  537.897257][  T433] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  537.937840][  T433] EXT4-fs error (device loop6): ext4_validate_block_bitmap:429: comm syz.6.15364: bg 0: block 5: invalid block bitmap
[  537.972930][  T433] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  537.982493][  T799] usb 1-1: new full-speed USB device number 112 using dummy_hcd
[  538.001811][  T433] EXT4-fs error (device loop6): ext4_free_branches:1030: inode #11: comm syz.6.15364: invalid indirect mapped block 3 (level 2)
[  538.038182][  T433] EXT4-fs (loop6): 2 truncates cleaned up
[  538.044626][  T433] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  538.138347][T22430] EXT4-fs (loop6): unmounting filesystem.
[  538.169242][  T443] netlink: 165 bytes leftover after parsing attributes in process `syz.1.15368'.
[  538.210946][  T799] usb 1-1: config 1 has an invalid interface number: 105 but max is 0
[  538.220227][  T799] usb 1-1: config 1 has no interface number 0
[  538.226759][  T799] usb 1-1: config 1 interface 105 has no altsetting 0
[  538.245043][  T799] usb 1-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=6c.6d
[  538.255063][  T799] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  538.263545][  T799] usb 1-1: Product: syz
[  538.268254][  T799] usb 1-1: Manufacturer: syz
[  538.272897][  T799] usb 1-1: SerialNumber: syz
[  538.467276][  T464] overlayfs: fs on '.' does not support file handles, falling back to xino=off.
[  538.668948][  T476] SELinux: ebitmap: truncated map
[  538.674423][  T476] SELinux: failed to load policy
[  538.946368][  T799] aqc111 1-1:1.105 (unnamed net_device) (uninitialized): Failed to read(0x20) reg index 0x0000: 4
[  538.963119][  T799] aqc111: probe of 1-1:1.105 failed with error -61
[  539.177717][  T799] usb 1-1: USB disconnect, device number 112
[  539.269341][  T484] loop6: detected capacity change from 0 to 131072
[  539.277912][  T484] F2FS-fs (loop6): Wrong CP boundary, start(512) end(1536) blocks(0)
[  539.286069][  T484] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  539.295801][  T484] F2FS-fs (loop6): invalid crc value
[  539.304450][  T484] F2FS-fs (loop6): Found nat_bits in checkpoint
[  539.337412][  T510] netlink: 12 bytes leftover after parsing attributes in process `syz.9.15394'.
[  539.350126][  T484] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  539.358020][  T484] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e4
[  539.507788][  T526] loop9: detected capacity change from 0 to 1024
[  539.515270][  T526] EXT4-fs: Ignoring removed nobh option
[  539.521886][  T526] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  539.554680][  T526] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  539.575196][  T526] EXT4-fs error (device loop9): ext4_validate_block_bitmap:438: comm syz.9.15403: bg 0: block 312: padding at end of block bitmap is not set
[  539.602039][T31672] EXT4-fs (loop9): unmounting filesystem.
[  539.803735][  T549] loop9: detected capacity change from 0 to 512
[  539.813256][  T549] EXT4-fs (loop9): Test dummy encryption mode enabled
[  539.820073][  T549] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  539.845931][  T549] EXT4-fs error (device loop9): ext4_orphan_get:1426: comm syz.9.15412: bad orphan inode 131083
[  539.861263][  T553] loop6: detected capacity change from 0 to 128
[  539.868635][  T549] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  539.932435][  T549] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[  539.965785][T31672] EXT4-fs (loop9): unmounting filesystem.
[  540.438785][  T590] loop1: detected capacity change from 0 to 4096
[  540.462857][  T590] EXT4-fs (loop1): Test dummy encryption mode enabled
[  540.489547][  T590] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  540.503801][  T590] System zones: 0-5
[  540.513545][  T590] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  540.558478][T25548] EXT4-fs (loop1): unmounting filesystem.
[  540.819189][  T594] loop6: detected capacity change from 0 to 40427
[  540.836277][  T594] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  540.847966][  T594] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  540.857980][  T594] F2FS-fs (loop6): invalid crc value
[  540.884851][  T594] F2FS-fs (loop6): Found nat_bits in checkpoint
[  540.940922][  T594] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  540.950219][  T594] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  541.182773][  T632] netlink: 12 bytes leftover after parsing attributes in process `syz.1.15447'.
[  541.208337][  T638] input: syz0 as /devices/virtual/input/input64
[  541.228274][  T628] loop9: detected capacity change from 0 to 8192
[  541.302803][  T646] SELinux:  Context system_u:object_r:memory_device_t:s0 is not valid (left unmapped).
[  541.319892][  T646] 9pnet_fd: p9_fd_create_unix (646): problem connecting socket: éq‰Y’3aK: -111
[  541.329731][   T28] kauditd_printk_skb: 1090 callbacks suppressed
[  541.329750][   T28] audit: type=1400 audit(2000000308.943:62403): avc:  denied  { bpf } for  pid=647 comm="syz.9.15453" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  541.391063][   T28] audit: type=1400 audit(2000000308.943:62404): avc:  denied  { prog_load } for  pid=647 comm="syz.9.15453" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  541.412406][   T28] audit: type=1400 audit(2000000308.943:62405): avc:  denied  { bpf } for  pid=647 comm="syz.9.15453" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  541.435418][   T28] audit: type=1400 audit(2000000308.943:62406): avc:  denied  { perfmon } for  pid=647 comm="syz.9.15453" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  541.472487][   T28] audit: type=1400 audit(2000000308.943:62407): avc:  denied  { prog_run } for  pid=647 comm="syz.9.15453" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  541.493118][   T28] audit: type=1400 audit(2000000308.943:62408): avc:  denied  { associate } for  pid=639 comm="syz.6.15451" name="file0" scontext=root:object_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[  541.515692][   T28] audit: type=1400 audit(2000000308.943:62409): avc:  denied  { bpf } for  pid=647 comm="syz.9.15453" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  541.540641][   T28] audit: type=1400 audit(2000000308.943:62410): avc:  denied  { unlink } for  pid=25548 comm="syz-executor" name=E91F7189591E9233614B dev="tmpfs" ino=2971 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=sock_file permissive=1 trawcon="system_u:object_r:memory_device_t:s0"
[  541.616376][   T28] audit: type=1400 audit(2000000308.943:62411): avc:  denied  { read write } for  pid=25548 comm="syz-executor" name="loop1" dev="devtmpfs" ino=119 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  541.661973][   T42] Bluetooth: hci0: Frame reassembly failed (-84)
[  541.673125][   T28] audit: type=1400 audit(2000000308.943:62412): avc:  denied  { open } for  pid=25548 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=119 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  541.717186][  T683] loop1: detected capacity change from 0 to 1024
[  541.745732][  T683] EXT4-fs: Ignoring removed nobh option
[  541.765475][  T683] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  541.810281][  T683] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  541.849225][  T683] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.15468: bg 0: block 312: padding at end of block bitmap is not set
[  541.910629][T25548] EXT4-fs (loop1): unmounting filesystem.
[  542.192039][  T712] loop1: detected capacity change from 0 to 40427
[  542.202398][  T712] F2FS-fs (loop1): fault_injection options not supported
[  542.219715][  T712] F2FS-fs (loop1): Image doesn't support compression
[  542.233281][  T712] F2FS-fs (loop1): invalid crc value
[  542.251033][  T712] F2FS-fs (loop1): Found nat_bits in checkpoint
[  542.302614][  T712] F2FS-fs (loop1): Start checkpoint disabled!
[  542.309515][  T712] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  542.475534][  T740] loop6: detected capacity change from 0 to 256
[  542.706917][  T764] loop6: detected capacity change from 0 to 512
[  542.738190][  T764] FAT-fs (loop6): error, corrupted directory (invalid entries)
[  542.817032][  T755] loop1: detected capacity change from 0 to 40427
[  542.829293][  T755] F2FS-fs (loop1): fault_injection options not supported
[  542.837351][  T755] F2FS-fs (loop1): Image doesn't support compression
[  542.844422][  T755] F2FS-fs (loop1): Image doesn't support compression
[  542.866121][  T755] F2FS-fs (loop1): invalid crc value
[  542.895812][  T755] F2FS-fs (loop1): Found nat_bits in checkpoint
[  542.941246][  T755] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  543.003039][T25548] syz-executor: attempt to access beyond end of device
[  543.003039][T25548] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  543.110469][  T794] loop6: detected capacity change from 0 to 128
[  543.121975][  T794] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  543.136921][  T794] ext4 filesystem being mounted at /910/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  543.202332][T22430] EXT4-fs (loop6): unmounting filesystem.
[  543.430989][  T828] loop1: detected capacity change from 0 to 128
[  543.434601][  T827] loop6: detected capacity change from 0 to 512
[  543.441887][  T828] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  543.453377][  T828] ext4 filesystem being mounted at /588/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  543.501356][  T827] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  543.510386][  T833] device dummy0 left promiscuous mode
[  543.520747][  T827] ext4 filesystem being mounted at /915/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  543.530680][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  543.542061][T25548] EXT4-fs (loop1): unmounting filesystem.
[  543.669602][    T6] usb 4-1: new full-speed USB device number 108 using dummy_hcd
[  543.863243][    T6] usb 4-1: config 0 has an invalid interface number: 251 but max is 0
[  543.872108][    T6] usb 4-1: config 0 has no interface number 0
[  543.881781][    T6] usb 4-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[  543.883088][T32140] Bluetooth: hci0: command 0x1003 tx timeout
[  543.891960][    T6] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  543.897566][T31167] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  543.907106][    T6] usb 4-1: Product: syz
[  543.917836][    T6] usb 4-1: Manufacturer: syz
[  543.927962][  T853] loop1: detected capacity change from 0 to 40427
[  543.935411][    T6] usb 4-1: SerialNumber: syz
[  543.937395][  T853] F2FS-fs (loop1): Small segment_count (9 < 1 * 24)
[  543.947742][  T853] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  543.947942][    T6] usb 4-1: config 0 descriptor??
[  543.964004][  T853] F2FS-fs (loop1): Found nat_bits in checkpoint
[  543.993580][  T859] loop9: detected capacity change from 0 to 512
[  544.004240][  T859] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a806e02c, mo2=0002]
[  544.009034][  T853] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  544.012337][  T859] System zones: 
[  544.019416][  T853] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  544.019431][  T859] 1-12
[  544.020162][  T859] EXT4-fs error (device loop9): dx_probe:823: inode #2: comm syz.9.15541: Directory hole found for htree index block 0
[  544.048538][T25548] syz-executor: attempt to access beyond end of device
[  544.048538][T25548] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  544.048538][  T859] EXT4-fs (loop9): Remounting filesystem read-only
[  544.069487][  T859] EXT4-fs (loop9): Cannot turn on journaled quota: type 0: error -117
[  544.078205][  T859] EXT4-fs error (device loop9): dx_probe:823: inode #2: comm syz.9.15541: Directory hole found for htree index block 0
[  544.093405][  T859] EXT4-fs (loop9): Remounting filesystem read-only
[  544.101915][T22430] EXT4-fs (loop6): unmounting filesystem.
[  544.103180][  T859] EXT4-fs (loop9): Cannot turn on journaled quota: type 1: error -117
[  544.134136][  T859] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  544.202852][  T859] EXT4-fs (loop9): re-mounted. Quota mode: writeback.
[  544.228191][T31672] EXT4-fs (loop9): unmounting filesystem.
[  544.260406][  T871] loop9: detected capacity change from 0 to 16
[  544.269480][  T871] erofs: (device loop9): mounted with root inode @ nid 36.
[  544.280747][  T871] erofs: (device loop9): init_inode_xattrs: xattr_isize 12 of nid 46 is not supported yet
[  544.291572][  T871] SELinux: inode_doinit_use_xattr:  getxattr returned 95 for dev=loop9 ino=46
[  544.313746][  T875] loop1: detected capacity change from 0 to 1024
[  544.327417][  T875] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:477: comm syz.1.15548: Invalid block bitmap block 0 in block_group 0
[  544.342079][  T875] EXT4-fs error (device loop1): ext4_acquire_dquot:6803: comm syz.1.15548: Failed to acquire dquot type 0
[  544.355581][  T875] EXT4-fs error (device loop1): ext4_free_blocks:6205: comm syz.1.15548: Freeing blocks not in datazone - block = 0, count = 4096
[  544.369758][  T875] EXT4-fs error (device loop1): ext4_read_inode_bitmap:140: comm syz.1.15548: Invalid inode bitmap blk 0 in block_group 0
[  544.390428][   T42] EXT4-fs error (device loop1): ext4_release_dquot:6839: comm kworker/u4:2: Failed to release dquot type 0
[  544.396608][  T875] EXT4-fs error (device loop1) in ext4_free_inode:362: Corrupt filesystem
[  544.411929][  T875] EXT4-fs (loop1): 1 orphan inode deleted
[  544.417927][  T875] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  544.514730][T25548] EXT4-fs (loop1): unmounting filesystem.
[  544.633149][    T6] asix 4-1:0.251 (unnamed net_device) (uninitialized): Interface mode not supported by driver
[  544.656887][    T6] asix: probe of 4-1:0.251 failed with error -524
[  544.721100][  T914] netlink: 12 bytes leftover after parsing attributes in process `syz.0.15567'.
[  544.744454][  T914] bridge0: port 1(vlan2) entered blocking state
[  544.752572][  T914] bridge0: port 1(vlan2) entered disabled state
[  544.789239][  T924] loop1: detected capacity change from 0 to 256
[  544.879439][    T6] usb 4-1: USB disconnect, device number 108
[  544.893285][  T933] netlink: 8 bytes leftover after parsing attributes in process `syz.0.15575'.
[  544.920937][  T936] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22
[  544.999808][  T949] loop1: detected capacity change from 0 to 128
[  545.032607][  T949] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  545.041917][  T949] ext4 filesystem being mounted at /608/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  545.234775][T25548] EXT4-fs (loop1): unmounting filesystem.
[  546.243256][  T964] netlink: 16 bytes leftover after parsing attributes in process `syz.6.15588'.
[  547.253974][   T28] kauditd_printk_skb: 870 callbacks suppressed
[  547.253991][   T28] audit: type=1400 audit(2000000314.483:63280): avc:  denied  { create } for  pid=967 comm="syz.6.15590" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  547.391047][   T28] audit: type=1400 audit(2000000314.605:63281): avc:  denied  { read write } for  pid=323 comm="syz-executor" name="loop3" dev="devtmpfs" ino=121 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  547.458237][   T28] audit: type=1400 audit(2000000314.605:63282): avc:  denied  { open } for  pid=323 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=121 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  547.489615][   T28] audit: type=1400 audit(2000000314.605:63283): avc:  denied  { ioctl } for  pid=323 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=121 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  547.531180][   T28] audit: type=1400 audit(2000000314.605:63284): avc:  denied  { read write } for  pid=31672 comm="syz-executor" name="loop9" dev="devtmpfs" ino=127 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  547.556839][   T28] audit: type=1400 audit(2000000314.605:63285): avc:  denied  { open } for  pid=31672 comm="syz-executor" path="/dev/loop9" dev="devtmpfs" ino=127 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  547.601376][   T28] audit: type=1400 audit(2000000314.605:63286): avc:  denied  { ioctl } for  pid=31672 comm="syz-executor" path="/dev/loop9" dev="devtmpfs" ino=127 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  547.637884][  T995] loop1: detected capacity change from 0 to 512
[  547.654787][   T28] audit: type=1400 audit(2000000314.614:63287): avc:  denied  { read write } for  pid=25548 comm="syz-executor" name="loop1" dev="devtmpfs" ino=119 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  547.708568][  T995] audit: audit_backlog=65 > audit_backlog_limit=64
[  547.715214][  T995] audit: audit_lost=551 audit_rate_limit=0 audit_backlog_limit=64
[  547.781223][  T995] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  547.806540][  T995] ext4 filesystem being mounted at /612/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  547.844102][ T1009] SELinux: security_context_str_to_sid (Eá…) failed with errno=-22
[  547.924304][  T992] loop6: detected capacity change from 0 to 40427
[  547.935390][T25548] EXT4-fs (loop1): unmounting filesystem.
[  547.944975][  T992] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  547.952929][  T992] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  547.965156][  T992] F2FS-fs (loop6): invalid crc value
[  547.975059][  T992] F2FS-fs (loop6): Found nat_bits in checkpoint
[  548.052741][  T992] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  548.060538][  T992] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  548.062494][ T1030] binder: 1029:1030 ioctl c018620c 2000000001c0 returned -22
[  548.192396][ T1043] loop1: detected capacity change from 0 to 512
[  548.201782][ T1043] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  548.220932][ T1043] EXT4-fs (loop1): Unsupported encryption level 249
[  548.250140][ T1047] loop9: detected capacity change from 0 to 128
[  548.292000][ T1047] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  548.296835][ T1043] netlink: 8 bytes leftover after parsing attributes in process `syz.1.15623'.
[  548.311955][ T1047] ext4 filesystem being mounted at /159/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  548.334193][  T372] tipc: Subscription rejected, illegal request
[  548.437980][T31672] EXT4-fs (loop9): unmounting filesystem.
[  548.446458][ T1061] netlink: 28 bytes leftover after parsing attributes in process `syz.0.15630'.
[  548.683770][ T1088] netlink: 6 bytes leftover after parsing attributes in process `syz.0.15643'.
[  548.737103][ T1093] netlink: 8 bytes leftover after parsing attributes in process `syz.1.15645'.
[  548.744777][ T3550] usb 4-1: new high-speed USB device number 109 using dummy_hcd
[  548.958416][ T3550] usb 4-1: Using ep0 maxpacket: 16
[  548.965293][ T3550] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  549.008643][ T3550] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  549.027141][ T3550] usb 4-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[  549.047670][ T3550] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  549.061781][ T1099] loop1: detected capacity change from 0 to 40427
[  549.074660][ T3550] usb 4-1: config 0 descriptor??
[  549.076142][ T1099] F2FS-fs (loop1): invalid crc value
[  549.125874][ T1099] F2FS-fs (loop1): Found nat_bits in checkpoint
[  549.204258][ T1099] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  549.214360][ T1134] netlink: 24 bytes leftover after parsing attributes in process `syz.6.15662'.
[  549.251904][ T1136] loop6: detected capacity change from 0 to 1024
[  549.258593][ T1099] syz.1.15648: attempt to access beyond end of device
[  549.258593][ T1099] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  549.273238][  T666] usb 10-1: new high-speed USB device number 12 using dummy_hcd
[  549.296180][ T1136] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a802c118, mo2=0002]
[  549.320337][ T1136] System zones: 0-1, 3-12
[  549.337473][ T1136] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  549.485617][  T666] usb 10-1: New USB device found, idVendor=04b4, idProduct=0001, bcdDevice= 0.00
[  549.498801][  T666] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  549.527156][T22430] EXT4-fs (loop6): unmounting filesystem.
[  549.534054][ T3550] hid-generic 0003:04D8:00DD.003A: hidraw0: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.3-1/input0
[  549.534151][  T666] usb 10-1: config 0 descriptor??
[  549.680092][ T1153] loop1: detected capacity change from 0 to 40427
[  549.689331][ T1153] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  549.698089][ T1153] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  549.708664][ T1153] F2FS-fs (loop1): invalid crc value
[  549.720711][ T1153] F2FS-fs (loop1): Found nat_bits in checkpoint
[  549.761280][  T799] usb 4-1: USB disconnect, device number 109
[  549.782215][ T1153] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  549.791979][ T1153] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  550.008349][  T666] cypress 0003:04B4:0001.003B: hidraw0: USB HID v0.06 Device [HID 04b4:0001] on usb-dummy_hcd.9-1/input0
[  550.187167][ T1191] loop1: detected capacity change from 0 to 1024
[  550.195156][ T1191] EXT4-fs: Ignoring removed orlov option
[  550.201475][ T1191] EXT4-fs: Ignoring removed nomblk_io_submit option
[  550.223224][  T799] usb 10-1: USB disconnect, device number 12
[  550.233911][ T1191] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  550.324785][T25548] EXT4-fs (loop1): unmounting filesystem.
[  550.343219][ T1201] netlink: 12 bytes leftover after parsing attributes in process `syz.0.15688'.
[  550.397559][ T1210] loop1: detected capacity change from 0 to 256
[  550.418348][ T1210] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  550.537519][ T1223] loop6: detected capacity change from 0 to 256
[  550.758327][ T1255] dvmrp1: tun_chr_ioctl cmd 1074025677
[  550.774877][ T1255] dvmrp1: linktype set to 825
[  550.912765][ T1275] loop1: detected capacity change from 0 to 2048
[  550.922548][ T1279] loop6: detected capacity change from 0 to 512
[  550.949043][ T1279] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  550.974274][ T1279] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  550.990813][ T1275] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  551.007388][ T1279] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2195: inode #15: comm syz.6.15725: corrupted in-inode xattr
[  551.010017][ T1275] ext4 filesystem being mounted at /632/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  551.042224][ T1279] EXT4-fs error (device loop6): ext4_orphan_get:1405: comm syz.6.15725: couldn't read orphan inode 15 (err -117)
[  551.061811][ T1275] fs-verity (loop1, inode 13): Unknown hash algorithm number: 6
[  551.071167][ T1279] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  551.122138][T25548] EXT4-fs (loop1): unmounting filesystem.
[  551.157486][ T1301] input: syz0 as /devices/virtual/input/input65
[  551.205321][T22430] EXT4-fs (loop6): unmounting filesystem.
[  551.249649][ T1316] loop1: detected capacity change from 0 to 16
[  551.268407][ T1316] erofs: (device loop1): erofs_read_superblock: invalid sb_extslots 4192 (more than a fs block)
[  551.465936][ T1335] loop1: detected capacity change from 0 to 2048
[  551.491040][ T1335] EXT4-fs: Ignoring removed mblk_io_submit option
[  551.537324][ T1335] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  551.580124][ T1344] loop6: detected capacity change from 0 to 512
[  551.641219][T25443] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm kworker/u4:7: bg 0: block 234: padding at end of block bitmap is not set
[  551.683538][T25443] EXT4-fs (loop1): Remounting filesystem read-only
[  551.702466][ T1344] FAT-fs (loop6): error, corrupted directory (invalid entries)
[  551.710950][T25548] EXT4-fs (loop1): unmounting filesystem.
[  551.878300][ T1361] loop6: detected capacity change from 0 to 128
[  551.941411][ T1365] loop1: detected capacity change from 0 to 512
[  551.958872][ T1365] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  551.971568][ T3550] usb 1-1: new high-speed USB device number 113 using dummy_hcd
[  552.004244][ T1365] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  552.023046][ T1365] ext4 filesystem being mounted at /639/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  552.075415][ T1365] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  552.113222][T25548] EXT4-fs (loop1): unmounting filesystem.
[  552.163942][ T3550] usb 1-1: Using ep0 maxpacket: 16
[  552.170749][ T3550] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  552.191868][ T3550] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 2
[  552.215063][ T3550] usb 1-1: New USB device found, idVendor=1189, idProduct=0893, bcdDevice= 0.00
[  552.237915][ T3550] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  552.255678][ T3550] usb 1-1: Product: syz
[  552.260227][ T3550] usb 1-1: Manufacturer: syz
[  552.264953][ T3550] usb 1-1: SerialNumber: syz
[  552.279391][ T3550] usb 1-1: config 0 descriptor??
[  552.541121][ T1399] loop6: detected capacity change from 0 to 1024
[  552.561876][ T1399] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  552.571076][ T1399] ext4 filesystem being mounted at /964/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  552.593587][ T1399] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  552.610304][ T1399] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 21 with max blocks 44 with error 28
[  552.617966][ T1405] netlink: 8 bytes leftover after parsing attributes in process `syz.3.15777'.
[  552.623341][ T1399] EXT4-fs (loop6): This should not happen!! Data will be lost
[  552.623341][ T1399] 
[  552.643435][ T1399] EXT4-fs (loop6): Total free blocks count 0
[  552.649866][   T28] kauditd_printk_skb: 1269 callbacks suppressed
[  552.649883][   T28] audit: type=1400 audit(2000000319.528:64556): avc:  denied  { read write } for  pid=323 comm="syz-executor" name="loop3" dev="devtmpfs" ino=121 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  552.652712][ T1399] EXT4-fs (loop6): Free/Dirty block details
[  552.658048][   T28] audit: type=1400 audit(2000000319.537:64557): avc:  denied  { read write open } for  pid=323 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=121 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  552.681264][ T1399] EXT4-fs (loop6): free_blocks=4293918720
[  552.695643][   T28] audit: type=1400 audit(2000000319.537:64558): avc:  denied  { ioctl } for  pid=323 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=121 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  552.746934][   T28] audit: type=1400 audit(2000000319.593:64559): avc:  denied  { bpf } for  pid=1407 comm="syz.3.15778" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  552.768684][   T28] audit: type=1400 audit(2000000319.593:64560): avc:  denied  { map_create } for  pid=1407 comm="syz.3.15778" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  552.789539][   T28] audit: type=1400 audit(2000000319.593:64561): avc:  denied  { map_read map_write } for  pid=1407 comm="syz.3.15778" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  552.789645][ T1399] EXT4-fs (loop6): dirty_blocks=64
[  552.815343][ T1399] EXT4-fs (loop6): Block reservation details
[  552.820387][   T28] audit: type=1400 audit(2000000319.622:64562): avc:  denied  { ioctl } for  pid=1345 comm="syz.0.15755" path="/dev/raw-gadget" dev="devtmpfs" ino=258 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  552.827219][ T1399] EXT4-fs (loop6): i_reserved_data_blocks=4
[  552.848642][   T28] audit: type=1400 audit(2000000319.622:64563): avc:  denied  { bpf } for  pid=1407 comm="syz.3.15778" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  552.875732][   T28] audit: type=1400 audit(2000000319.622:64564): avc:  denied  { map_create } for  pid=1407 comm="syz.3.15778" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  552.897019][   T28] audit: type=1400 audit(2000000319.622:64565): avc:  denied  { map_read map_write } for  pid=1407 comm="syz.3.15778" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  552.936278][T22430] EXT4-fs (loop6): unmounting filesystem.
[  553.119159][ T1433] netlink: 104 bytes leftover after parsing attributes in process `syz.3.15789'.
[  553.197753][ T3550] asix 1-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  553.207027][ T1445] loop1: detected capacity change from 0 to 512
[  553.212591][ T3550] asix 1-1:0.0 (unnamed net_device) (uninitialized): Failed to write RX_CTL mode to 0x0080: ffffffb9
[  553.228025][ T3550] asix: probe of 1-1:0.0 failed with error -71
[  553.235391][ T3550] usb 1-1: USB disconnect, device number 113
[  553.251658][ T1445] EXT4-fs error (device loop1): ext4_do_update_inode:5256: inode #16: comm syz.1.15796: corrupted inode contents
[  553.264872][ T1445] EXT4-fs error (device loop1): ext4_dirty_inode:6121: inode #16: comm syz.1.15796: mark_inode_dirty error
[  553.277263][ T1445] EXT4-fs error (device loop1): ext4_do_update_inode:5256: inode #16: comm syz.1.15796: corrupted inode contents
[  553.291413][ T1445] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #16: comm syz.1.15796: mark_inode_dirty error
[  553.304229][ T1445] EXT4-fs error (device loop1): ext4_do_update_inode:5256: inode #16: comm syz.1.15796: corrupted inode contents
[  553.320596][ T1445] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  553.331555][ T1445] EXT4-fs error (device loop1): ext4_do_update_inode:5256: inode #16: comm syz.1.15796: corrupted inode contents
[  553.357575][ T1445] EXT4-fs error (device loop1): ext4_truncate:4314: inode #16: comm syz.1.15796: mark_inode_dirty error
[  553.379236][ T1451] loop6: detected capacity change from 0 to 512
[  553.380153][ T1445] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  553.396794][ T1445] EXT4-fs (loop1): 1 truncate cleaned up
[  553.407245][ T1445] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  553.416931][ T1445] ext4 filesystem being mounted at /643/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  553.419169][T25443] EXT4-fs error (device loop1): ext4_release_dquot:6839: comm kworker/u4:7: Failed to release dquot type 1
[  553.491635][T25548] EXT4-fs (loop1): unmounting filesystem.
[  553.790121][ T1498] netlink: 12 bytes leftover after parsing attributes in process `syz.3.15821'.
[  553.933856][ T1523] netlink: 'syz.3.15831': attribute type 12 has an invalid length.
[  553.957697][ T1513] loop9: detected capacity change from 0 to 8192
[  553.994112][ T1513] syz.9.15826: attempt to access beyond end of device
[  553.994112][ T1513] loop9: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  554.022416][ T1513] FAT-fs (loop9): error, invalid access to FAT (entry 0x0000e1b1)
[  554.047454][ T1513] FAT-fs (loop9): Filesystem has been set read-only
[  554.067098][ T1513] FAT-fs (loop9): error, invalid access to FAT (entry 0x0000e1b1)
[  554.091114][ T1513] FAT-fs (loop9): error, invalid access to FAT (entry 0x0000e1b1)
[  554.304335][ T1568] netlink: 12 bytes leftover after parsing attributes in process `syz.3.15853'.
[  554.349279][ T1572] netlink: 8 bytes leftover after parsing attributes in process `syz.0.15855'.
[  554.391096][ T1577] loop1: detected capacity change from 0 to 512
[  554.399810][ T1580] SELinux: security_context_str_to_sid (u) failed with errno=-22
[  554.417287][ T1582] loop6: detected capacity change from 0 to 256
[  554.432452][ T1577] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[  554.442081][ T1577] EXT4-fs error (device loop1): ext4_orphan_get:1426: comm syz.1.15858: bad orphan inode 15
[  554.455561][ T1582] exFAT-fs (loop6): failed to load upcase table (idx : 0x00012153, chksum : 0xc3dffc2e, utbl_chksum : 0xe619d30d)
[  554.460181][ T1577] ext4_test_bit(bit=14, block=4) = 1
[  554.473397][ T1577] is_bad_inode(inode)=0
[  554.477851][ T1577] NEXT_ORPHAN(inode)=0
[  554.482316][ T1577] max_ino=32
[  554.486168][ T1577] i_nlink=1
[  554.489489][ T1577] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  554.511467][ T1577] EXT4-fs error (device loop1): ext4_map_blocks:635: inode #2: block 4: comm syz.1.15858: lblock 0 mapped to illegal pblock 4 (length 1)
[  554.548118][T25548] EXT4-fs (loop1): unmounting filesystem.
[  554.581079][ T1595] Falling back ldisc for ttyS3.
[  555.078598][ T1644] loop1: detected capacity change from 0 to 1024
[  555.096731][ T1644] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  555.140048][ T1644] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  555.190989][T25548] EXT4-fs (loop1): unmounting filesystem.
[  556.368932][ T1723] netlink: 96 bytes leftover after parsing attributes in process `syz.1.15920'.
[  557.998130][   T28] kauditd_printk_skb: 1258 callbacks suppressed
[  557.998149][   T28] audit: type=1400 audit(2000000324.544:65823): avc:  denied  { setattr } for  pid=320 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  558.028320][   T28] audit: type=1400 audit(2000000324.544:65824): avc:  denied  { setattr } for  pid=320 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  558.057904][   T28] audit: type=1400 audit(2000000324.544:65825): avc:  denied  { setattr } for  pid=320 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  558.091026][  T320] audit: audit_backlog=65 > audit_backlog_limit=64
[  558.095644][ T1743] audit: audit_backlog=65 > audit_backlog_limit=64
[  558.105212][ T1743] audit: audit_lost=552 audit_rate_limit=0 audit_backlog_limit=64
[  558.106720][T25548] audit: audit_backlog=65 > audit_backlog_limit=64
[  558.113743][ T1743] audit: backlog limit exceeded
[  558.120529][  T320] audit: audit_lost=553 audit_rate_limit=0 audit_backlog_limit=64
[  558.134369][ T1743] audit: audit_backlog=65 > audit_backlog_limit=64
[  558.963333][ T1814] loop9: detected capacity change from 0 to 256
[  559.009343][ T1814] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0xd6e00b17, utbl_chksum : 0xe619d30d)
[  559.334534][ T1840] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  559.372722][ T1842] loop6: detected capacity change from 0 to 512
[  559.396593][ T1842] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  559.503058][ T1851] loop1: detected capacity change from 0 to 1024
[  559.548012][ T1851] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  559.627613][   T42] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  559.663606][   T42] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[  559.696798][   T42] EXT4-fs (loop1): This should not happen!! Data will be lost
[  559.696798][   T42] 
[  559.727708][   T42] EXT4-fs (loop1): Total free blocks count 0
[  559.750148][   T42] EXT4-fs (loop1): Free/Dirty block details
[  559.756281][   T42] EXT4-fs (loop1): free_blocks=68451041280
[  559.781749][   T42] EXT4-fs (loop1): dirty_blocks=16
[  559.787577][   T42] EXT4-fs (loop1): Block reservation details
[  559.795415][   T42] EXT4-fs (loop1): i_reserved_data_blocks=1
[  559.806146][T25548] EXT4-fs (loop1): unmounting filesystem.
[  559.883003][ T1880] x_tables: unsorted entry at hook 1
[  560.533042][ T1935] netlink: 12 bytes leftover after parsing attributes in process `syz.1.16020'.
[  560.664901][ T1940] loop1: detected capacity change from 0 to 8192
[  560.759759][ T1952] loop1: detected capacity change from 0 to 256
[  560.777215][ T1952] FAT-fs (loop1): error, clusters badly computed (0 != 128)
[  560.785211][ T1952] FAT-fs (loop1): Filesystem has been set read-only
[  560.803127][ T1952] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  560.911318][ T1959] netlink: 'syz.6.16031': attribute type 1 has an invalid length.
[  560.919262][ T1959] netlink: 24 bytes leftover after parsing attributes in process `syz.6.16031'.
[  560.992430][ T1963] I/O error, dev loop13, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  561.002307][ T1963] FAT-fs (loop13): unable to read boot sector
[  561.105927][ T1970] loop6: detected capacity change from 0 to 1024
[  561.117843][    T6] usb 2-1: new high-speed USB device number 97 using dummy_hcd
[  561.126386][ T1970] EXT4-fs: Ignoring removed i_version option
[  561.144653][ T1970] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  561.216447][ T1970] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  561.267820][T22430] EXT4-fs (loop6): unmounting filesystem.
[  561.320884][    T6] usb 2-1: Using ep0 maxpacket: 16
[  561.332891][    T6] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  561.355519][ T1986] netlink: 52 bytes leftover after parsing attributes in process `syz.6.16042'.
[  561.363760][    T6] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  561.385160][    T6] usb 2-1: config 0 interface 0 has no altsetting 0
[  561.391938][    T6] usb 2-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  561.416991][    T6] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  561.453151][    T6] usb 2-1: config 0 descriptor??
[  563.031000][    T6] hid (null): unknown global tag 0xc
[  563.329648][    T6] usb 2-1: USB disconnect, device number 97
[  563.353289][   T28] kauditd_printk_skb: 3578 callbacks suppressed
[  563.353305][   T28] audit: type=1400 audit(2000000329.551:69399): avc:  denied  { setattr } for  pid=320 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  563.385094][   T28] audit: type=1400 audit(2000000329.551:69400): avc:  denied  { setattr } for  pid=320 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  563.413681][  T320] audit: audit_backlog=65 > audit_backlog_limit=64
[  563.424524][   T28] audit: type=1400 audit(2000000329.551:69401): avc:  denied  { setattr } for  pid=320 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  563.430293][T22430] audit: audit_backlog=65 > audit_backlog_limit=64
[  563.448374][   T28] audit: type=1400 audit(2000000329.551:69402): avc:  denied  { setattr } for  pid=320 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  563.462492][ T1993] audit: audit_backlog=65 > audit_backlog_limit=64
[  563.483752][T22430] audit: audit_lost=556 audit_rate_limit=0 audit_backlog_limit=64
[  563.485815][  T320] audit: audit_lost=557 audit_rate_limit=0 audit_backlog_limit=64
[  563.485832][  T320] audit: backlog limit exceeded
[  563.970710][    T6] usb 4-1: new high-speed USB device number 110 using dummy_hcd
[  564.037900][ T2007] loop9: detected capacity change from 0 to 40427
[  564.052510][ T2007] F2FS-fs (loop9): Fix alignment : internally, start(4096) end(16896) block(12288)
[  564.077117][ T2007] F2FS-fs (loop9): invalid crc value
[  564.097421][ T2007] F2FS-fs (loop9): Found nat_bits in checkpoint
[  564.171556][ T2007] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[  564.175356][    T6] usb 4-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  564.187225][ T2013] loop6: detected capacity change from 0 to 40427
[  564.198784][ T2013] F2FS-fs (loop6): invalid crc value
[  564.205460][ T2007] F2FS-fs (loop9): Try to recover all the superblocks, ret: 0
[  564.212035][    T6] usb 4-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config
[  564.216688][ T2013] F2FS-fs (loop6): Found nat_bits in checkpoint
[  564.252124][    T6] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 66
[  564.277544][ T2013] F2FS-fs (loop6): Start checkpoint disabled!
[  564.285984][ T2013] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6
[  564.288984][    T6] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9
[  564.306041][ T2015] loop1: detected capacity change from 0 to 40427
[  564.331478][ T2015] F2FS-fs (loop1): fault_injection options not supported
[  564.346110][    T6] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024
[  564.359146][ T2015] F2FS-fs (loop1): fault_type options not supported
[  564.365818][ T2015] F2FS-fs (loop1): Image doesn't support compression
[  564.380192][  T372] kworker/u4:4: attempt to access beyond end of device
[  564.380192][  T372] loop6: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  564.389149][    T6] usb 4-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  564.419528][    T6] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  564.428229][    T6] usb 4-1: Product: syz
[  564.441219][ T2015] F2FS-fs (loop1): invalid crc value
[  564.447263][    T6] usb 4-1: Manufacturer: syz
[  564.464727][ T2015] F2FS-fs (loop1): Found nat_bits in checkpoint
[  564.472718][    T6] cdc_wdm 4-1:1.0: skipping garbage
[  564.483549][    T6] cdc_wdm 4-1:1.0: skipping garbage
[  564.515645][    T6] cdc_wdm 4-1:1.0: cdc-wdm0: USB WDM device
[  564.560120][ T2015] F2FS-fs (loop1): Start checkpoint disabled!
[  564.580457][ T2015] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  564.692228][    T6] usb 4-1: USB disconnect, device number 110
[  564.698800][  T372] kworker/u4:4: attempt to access beyond end of device
[  564.698800][  T372] loop1: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  564.721112][ T2029] vxcan1: tun_chr_ioctl cmd 1074025677
[  564.734776][ T2029] vxcan1: linktype set to 778
[  564.761768][ T2033] loop9: detected capacity change from 0 to 256
[  564.769286][ T2033] exfat: Deprecated parameter 'utf8'
[  564.775738][ T2033] exfat: Deprecated parameter 'utf8'
[  564.807444][ T2033] exFAT-fs (loop9): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  564.975615][ T2043] netlink: 'syz.1.16067': attribute type 5 has an invalid length.
[  564.988772][ T2043] netlink: 24 bytes leftover after parsing attributes in process `syz.1.16067'.
[  565.106942][ T2056] loop6: detected capacity change from 0 to 1024
[  565.124181][ T2056] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  565.141079][ T2059] loop9: detected capacity change from 0 to 1024
[  565.149419][ T2059] EXT4-fs: Ignoring removed orlov option
[  565.166191][ T2059] EXT4-fs: Ignoring removed nomblk_io_submit option
[  565.175777][ T2056] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  565.205065][ T2059] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  565.257473][T22430] EXT4-fs (loop6): unmounting filesystem.
[  566.533358][ T2057] loop1: detected capacity change from 0 to 40427
[  566.558312][ T2057] F2FS-fs (loop1): Found nat_bits in checkpoint
[  566.600865][T31672] EXT4-fs (loop9): unmounting filesystem.
[  566.620531][ T2057] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  566.812725][T25548] syz-executor: attempt to access beyond end of device
[  566.812725][T25548] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  566.964240][ T2097] loop6: detected capacity change from 0 to 128
[  567.117156][ T2103] netlink: 200 bytes leftover after parsing attributes in process `syz.9.16093'.
[  567.143970][ T2103] netlink: 24 bytes leftover after parsing attributes in process `syz.9.16093'.
[  567.365765][ T2123] loop1: detected capacity change from 0 to 16
[  567.375288][ T2121] loop6: detected capacity change from 0 to 256
[  567.384808][ T2123] erofs: (device loop1): mounted with root inode @ nid 36.
[  567.396871][ T2121] exFAT-fs (loop6): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x89cb6648, utbl_chksum : 0xe619d30d)
[  567.824299][ T2151] netlink: 'syz.3.16116': attribute type 8 has an invalid length.
[  567.833185][ T2151] netlink: 8 bytes leftover after parsing attributes in process `syz.3.16116'.
[  567.843976][ T2150] dvmrp1: tun_chr_ioctl cmd 1074025677
[  567.859588][ T2150] dvmrp1: linktype set to 0
[  567.965690][ T2159] netlink: 44 bytes leftover after parsing attributes in process `syz.3.16120'.
[  568.711930][   T28] kauditd_printk_skb: 3532 callbacks suppressed
[  568.711947][   T28] audit: type=1400 audit(2000000334.558:72842): avc:  denied  { setattr } for  pid=320 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  568.783452][   T28] audit: type=1400 audit(2000000334.558:72843): avc:  denied  { setattr } for  pid=320 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  568.815970][  T320] audit: audit_backlog=65 > audit_backlog_limit=64
[  568.832314][  T320] audit: audit_lost=589 audit_rate_limit=0 audit_backlog_limit=64
[  568.862547][  T320] audit: backlog limit exceeded
[  568.869185][  T320] audit: audit_backlog=65 > audit_backlog_limit=64
[  568.883626][   T28] audit: type=1400 audit(2000000334.558:72844): avc:  denied  { setattr } for  pid=320 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  568.909527][T31672] audit: audit_backlog=65 > audit_backlog_limit=64
[  568.916166][T31672] audit: audit_lost=590 audit_rate_limit=0 audit_backlog_limit=64
[  568.917772][   T28] audit: type=1400 audit(2000000334.558:72845): avc:  denied  { setattr } for  pid=320 comm="syz-executor" path="/dev/binderfs" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  569.080885][ T2220] loop1: detected capacity change from 0 to 4096
[  569.127116][ T2220] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  569.163413][ T2220] EXT4-fs error (device loop1): ext4_do_update_inode:5256: inode #15: comm syz.1.16148: corrupted inode contents
[  569.209912][ T2220] EXT4-fs error (device loop1): ext4_dirty_inode:6121: inode #15: comm syz.1.16148: mark_inode_dirty error
[  569.239786][ T2220] EXT4-fs error (device loop1): ext4_do_update_inode:5256: inode #15: comm syz.1.16148: corrupted inode contents
[  569.265395][ T2220] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #15: comm syz.1.16148: mark_inode_dirty error
[  569.291747][ T2220] EXT4-fs error (device loop1): ext4_do_update_inode:5256: inode #15: comm syz.1.16148: corrupted inode contents
[  569.314458][ T2220] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #15: comm syz.1.16148: mark_inode_dirty error
[  569.351116][ T2220] EXT4-fs error (device loop1): ext4_do_update_inode:5256: inode #15: comm syz.1.16148: corrupted inode contents
[  569.396959][ T2220] EXT4-fs error (device loop1): ext4_truncate:4314: inode #15: comm syz.1.16148: mark_inode_dirty error
[  569.428443][ T2220] EXT4-fs error (device loop1) in ext4_setattr:5660: Corrupt filesystem
[  569.451782][ T2234] EXT4-fs error (device loop1): ext4_do_update_inode:5256: inode #15: comm syz.1.16148: corrupted inode contents
[  569.534911][T25548] EXT4-fs warning (device loop1): ext4_evict_inode:282: couldn't mark inode dirty (err -117)
[  569.562490][T25548] EXT4-fs (loop1): unmounting filesystem.
[  570.047989][ T2258] loop9: detected capacity change from 0 to 40427
[  570.096253][ T2258] F2FS-fs (loop9): Found nat_bits in checkpoint
[  570.114690][ T2274] loop6: detected capacity change from 0 to 512
[  570.136959][ T2274] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  570.174177][ T2274] EXT4-fs (loop6): 1 truncate cleaned up
[  570.184816][ T2274] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  570.197078][ T2258] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[  570.310815][T22430] EXT4-fs (loop6): unmounting filesystem.
[  570.364473][T31672] syz-executor: attempt to access beyond end of device
[  570.364473][T31672] loop9: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  570.447319][ T2286] loop6: detected capacity change from 0 to 128
[  571.018456][ T2314] loop1: detected capacity change from 0 to 512
[  571.045562][ T2314] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  571.068428][ T2314] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  571.078108][ T2314] ext4 filesystem being mounted at /729/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  571.133424][ T2320] netlink: 32 bytes leftover after parsing attributes in process `syz.9.16189'.
[  571.145818][ T2320] netlink: 32 bytes leftover after parsing attributes in process `syz.9.16189'.
[  571.477665][ T2314] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  571.514467][ T2314] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 2048 with error 28
[  571.535975][ T2314] EXT4-fs (loop1): This should not happen!! Data will be lost
[  571.535975][ T2314] 
[  571.557152][ T2314] EXT4-fs (loop1): Total free blocks count 0
[  571.739842][ T2314] EXT4-fs (loop1): Free/Dirty block details
[  571.813162][ T2314] EXT4-fs (loop1): free_blocks=39626
[  571.828797][ T2314] EXT4-fs (loop1): dirty_blocks=4095
[  571.862415][ T2314] EXT4-fs (loop1): Block reservation details
[  572.850843][ T2314] EXT4-fs (loop1): i_reserved_data_blocks=4095
[  572.936845][ T2333] loop6: detected capacity change from 0 to 128
[  572.965813][ T2333] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  572.982375][ T2333] ext4 filesystem being mounted at /1082/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  573.083641][ T2339] loop9: detected capacity change from 0 to 1024
[  573.102888][ T2339] EXT4-fs: Ignoring removed orlov option
[  573.165112][ T2339] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  573.184094][T25443] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 2046 with error 28
[  573.202962][T22430] EXT4-fs (loop6): unmounting filesystem.
[  573.210236][  T372] tipc: Left network mode
[  573.289789][ T2339] EXT4-fs (loop9): re-mounted. Quota mode: writeback.
[  573.342850][T31672] EXT4-fs (loop9): unmounting filesystem.
[  573.374982][ T2359] loop1: detected capacity change from 0 to 128
[  573.391931][ T2359] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  573.428452][ T2343] bridge0: port 1(bridge_slave_0) entered blocking state
[  573.436302][ T2359] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  573.437318][ T2365] netlink: 24 bytes leftover after parsing attributes in process `syz.3.16207'.
[  573.450532][ T2343] bridge0: port 1(bridge_slave_0) entered disabled state
[  573.463954][ T2343] device bridge_slave_0 entered promiscuous mode
[  573.473516][ T2343] bridge0: port 2(bridge_slave_1) entered blocking state
[  573.480783][ T2343] bridge0: port 2(bridge_slave_1) entered disabled state
[  573.489380][ T2343] device bridge_slave_1 entered promiscuous mode
[  573.500473][T25443] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  573.780166][ T2343] bridge0: port 2(bridge_slave_1) entered blocking state
[  573.787304][ T2343] bridge0: port 2(bridge_slave_1) entered forwarding state
[  573.794857][ T2343] bridge0: port 1(bridge_slave_0) entered blocking state
[  573.801932][ T2343] bridge0: port 1(bridge_slave_0) entered forwarding state
[  573.870527][  T372] device veth1_macvtap left promiscuous mode
[  573.953607][ T2423] loop1: detected capacity change from 0 to 512
[  573.961551][ T2423] EXT4-fs: Ignoring removed nobh option
[  573.969378][ T2423] EXT4-fs: dax option not supported
[  574.013512][ T2423] netlink: 8 bytes leftover after parsing attributes in process `syz.1.16231'.
[  574.024728][ T2423] netlink: 8 bytes leftover after parsing attributes in process `syz.1.16231'.
[  574.065195][   T28] kauditd_printk_skb: 2713 callbacks suppressed
[  574.065213][   T28] audit: type=1400 audit(2000000340.568:75379): avc:  denied  { read write } for  pid=2430 comm="syz.1.16235" name="loop1" dev="devtmpfs" ino=119 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  574.065625][ T2431] loop1: detected capacity change from 0 to 256
[  574.080107][   T28] audit: type=1400 audit(2000000340.568:75380): avc:  denied  { open } for  pid=2430 comm="syz.1.16235" path="/dev/loop1" dev="devtmpfs" ino=119 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  574.098699][ T2431] exfat: Deprecated parameter 'utf8'
[  574.118551][   T28] audit: type=1400 audit(2000000340.568:75381): avc:  denied  { ioctl } for  pid=2430 comm="syz.1.16235" path="/dev/loop1" dev="devtmpfs" ino=119 ioctlcmd=0x4c00 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  574.136178][ T2431] exfat: Deprecated parameter 'namecase'
[  574.168669][ T2431] exfat: Deprecated parameter 'utf8'
[  574.178625][ T2431] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x389acbd6, utbl_chksum : 0xe619d30d)
[  574.189548][   T28] audit: type=1400 audit(2000000340.605:75382): avc:  denied  { mounton } for  pid=2430 comm="syz.1.16235" path="/738/file0" dev="tmpfs" ino=3850 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  574.224385][   T28] audit: type=1400 audit(2000000340.718:75383): avc:  denied  { mount } for  pid=2430 comm="syz.1.16235" name="/" dev="loop1" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  574.261697][   T28] audit: type=1400 audit(2000000340.718:75384): avc:  denied  { read write } for  pid=2430 comm="syz.1.16235" name="loop1" dev="devtmpfs" ino=119 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  574.287500][   T28] audit: type=1400 audit(2000000340.718:75385): avc:  denied  { open } for  pid=2430 comm="syz.1.16235" path="/dev/loop1" dev="devtmpfs" ino=119 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  574.313988][   T28] audit: type=1400 audit(2000000340.718:75386): avc:  denied  { ioctl } for  pid=2430 comm="syz.1.16235" path="/dev/loop1" dev="devtmpfs" ino=119 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  574.345375][   T28] audit: type=1400 audit(2000000340.718:75387): avc:  denied  { read write } for  pid=31672 comm="syz-executor" name="loop9" dev="devtmpfs" ino=127 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  574.373175][   T28] audit: type=1400 audit(2000000340.718:75388): avc:  denied  { open } for  pid=31672 comm="syz-executor" path="/dev/loop9" dev="devtmpfs" ino=127 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  574.567527][T25443] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  574.579363][T25443] bridge0: port 1(bridge_slave_0) entered disabled state
[  574.588726][T25443] bridge0: port 2(bridge_slave_1) entered disabled state
[  574.599392][ T2439] netlink: 16 bytes leftover after parsing attributes in process `syz.9.16238'.
[  574.620528][T25443] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  574.629909][T25443] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  574.655108][T25443] bridge0: port 1(bridge_slave_0) entered blocking state
[  574.663117][T25443] bridge0: port 1(bridge_slave_0) entered forwarding state
[  574.701104][T25443] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  574.713137][T25443] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  574.723310][T25443] bridge0: port 2(bridge_slave_1) entered blocking state
[  574.731081][T25443] bridge0: port 2(bridge_slave_1) entered forwarding state
[  574.771686][T25443] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  574.781062][T25443] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  574.790613][T25443] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  574.800191][T25443] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  574.824116][ T2462] batadv0: tun_chr_ioctl cmd 1074025673
[  574.892059][T25443] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  574.905951][T25443] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  574.936370][T25443] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  574.959471][T25443] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  574.971018][ T2343] device veth0_vlan entered promiscuous mode
[  574.980735][T25443] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  574.989867][T25443] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  575.043296][T25443] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  575.064884][T25443] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  575.086719][ T2343] device veth1_macvtap entered promiscuous mode
[  575.107745][T25443] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  575.120967][T25443] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  575.130916][T25443] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  575.153045][T25443] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  575.163698][T25443] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  575.174264][ T2489] serio: Serial port ttyS3
[  575.312318][ T2506] loop5: detected capacity change from 0 to 512
[  575.323174][ T2506] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  575.342060][  T666] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  575.350022][  T666] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  575.373727][  T666] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  575.374254][ T2506] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  575.395327][ T2506] ext4 filesystem being mounted at /1/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  575.664484][ T2506] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1097: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  575.680312][ T2506] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 1 with max blocks 2048 with error 28
[  575.681264][ T2546] device ip6gretap0 entered promiscuous mode
[  575.693186][ T2506] EXT4-fs (loop5): This should not happen!! Data will be lost
[  575.693186][ T2506] 
[  575.700695][   T24] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  575.709605][ T2506] EXT4-fs (loop5): Total free blocks count 0
[  575.724294][ T2506] EXT4-fs (loop5): Free/Dirty block details
[  575.737942][ T2506] EXT4-fs (loop5): free_blocks=39626
[  575.745802][ T2506] EXT4-fs (loop5): dirty_blocks=4095
[  575.752949][ T2506] EXT4-fs (loop5): Block reservation details
[  575.772339][ T2506] EXT4-fs (loop5): i_reserved_data_blocks=4095
[  575.944549][T25443] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 2050 with max blocks 2046 with error 28
[  576.130771][ T2575] netlink: 20 bytes leftover after parsing attributes in process `syz.3.16297'.
[  576.169859][ T2556] loop1: detected capacity change from 0 to 40427
[  576.183530][ T2556] F2FS-fs (loop1): fault_injection options not supported
[  576.203497][ T2556] F2FS-fs (loop1): fault_type options not supported
[  576.220954][ T2556] F2FS-fs (loop1): invalid crc value
[  576.249471][ T2556] F2FS-fs (loop1): Found nat_bits in checkpoint
[  576.299932][ T2591] pimreg: tun_chr_ioctl cmd 2147767517
[  576.334319][ T2556] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  576.357434][   T24] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  576.387371][T25548] syz-executor: attempt to access beyond end of device
[  576.387371][T25548] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  576.526473][ T2608] loop5: detected capacity change from 0 to 512
[  576.569668][ T2614] netlink: 27 bytes leftover after parsing attributes in process `syz.1.16308'.
[  576.580440][ T2608] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  576.590118][ T2608] ext4 filesystem being mounted at /4/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  576.601231][ T2617] netlink: 27 bytes leftover after parsing attributes in process `syz.3.16313'.
[  576.641396][ T2619] netlink: 52 bytes leftover after parsing attributes in process `syz.3.16315'.
[  576.705015][ T2343] EXT4-fs (loop5): unmounting filesystem.
[  577.290822][ T2684] netlink: 56 bytes leftover after parsing attributes in process `syz.3.16345'.
[  577.380815][ T2694] Bluetooth: hci1: Frame reassembly failed (-84)
[  577.387849][  T372] Bluetooth: hci1: Frame reassembly failed (-84)
[  577.918553][ T2754] loop9: detected capacity change from 0 to 512
[  577.927210][ T2754] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  577.943514][ T2754] EXT4-fs (loop9): 1 truncate cleaned up
[  577.949405][ T2754] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  577.974281][T31672] EXT4-fs (loop9): unmounting filesystem.
[  578.161096][ T2779] netlink: 28 bytes leftover after parsing attributes in process `syz.9.16387'.
[  578.418398][ T2802] syz.9.16398[2802] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  578.418485][ T2802] syz.9.16398[2802] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  579.093996][T31167] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  579.094152][ T2761] Bluetooth: hci0: command 0x1003 tx timeout
[  579.238200][ T2842] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=2842 comm=syz.5.16416
[  579.293472][  T372] Bluetooth: hci0: Frame reassembly failed (-84)
[  579.299987][ T2845] Bluetooth: hci0: Frame reassembly failed (-84)
[  579.350656][    C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  579.426368][   T28] kauditd_printk_skb: 886 callbacks suppressed
[  579.426387][   T28] audit: type=1400 audit(2000000345.591:76275): avc:  denied  { read write } for  pid=31672 comm="syz-executor" name="loop9" dev="devtmpfs" ino=127 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  579.458594][   T28] audit: type=1400 audit(2000000345.591:76276): avc:  denied  { open } for  pid=31672 comm="syz-executor" path="/dev/loop9" dev="devtmpfs" ino=127 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  579.484012][   T28] audit: type=1400 audit(2000000345.591:76277): avc:  denied  { ioctl } for  pid=31672 comm="syz-executor" path="/dev/loop9" dev="devtmpfs" ino=127 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  579.510905][   T28] audit: type=1400 audit(2000000345.600:76278): avc:  denied  { create } for  pid=2850 comm="syz.9.16420" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1
[  579.532928][T32140] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  579.539784][   T28] audit: type=1400 audit(2000000345.610:76279): avc:  denied  { read write } for  pid=31672 comm="syz-executor" name="loop9" dev="devtmpfs" ino=127 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  579.565774][   T28] audit: type=1400 audit(2000000345.610:76280): avc:  denied  { open } for  pid=31672 comm="syz-executor" path="/dev/loop9" dev="devtmpfs" ino=127 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  579.595936][   T28] audit: type=1400 audit(2000000345.610:76281): avc:  denied  { ioctl } for  pid=31672 comm="syz-executor" path="/dev/loop9" dev="devtmpfs" ino=127 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  579.622679][   T28] audit: type=1400 audit(2000000345.638:76282): avc:  denied  { read write } for  pid=31672 comm="syz-executor" name="loop9" dev="devtmpfs" ino=127 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  579.648071][   T28] audit: type=1400 audit(2000000345.638:76283): avc:  denied  { open } for  pid=31672 comm="syz-executor" path="/dev/loop9" dev="devtmpfs" ino=127 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  579.674386][   T28] audit: type=1400 audit(2000000345.638:76284): avc:  denied  { ioctl } for  pid=31672 comm="syz-executor" path="/dev/loop9" dev="devtmpfs" ino=127 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  579.884967][ T2885] loop6: detected capacity change from 0 to 1024
[  579.899271][ T2885] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  579.909672][ T2885] ext4 filesystem being mounted at /1118/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  579.938662][T22430] EXT4-fs (loop6): unmounting filesystem.
[  580.194669][ T2913] caif0: tun_chr_ioctl cmd 1074025692
[  580.205934][   T45] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  580.922088][   T24] usb 10-1: new high-speed USB device number 13 using dummy_hcd
[  581.114485][   T24] usb 10-1: Using ep0 maxpacket: 16
[  581.121560][   T24] usb 10-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  581.132887][   T24] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 3
[  581.144916][   T24] usb 10-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  581.156276][   T24] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  581.173756][   T24] usb 10-1: Product: syz
[  581.187168][   T24] usb 10-1: Manufacturer: syz
[  581.197025][   T24] usb 10-1: SerialNumber: syz
[  581.244227][ T2943] netlink: 76 bytes leftover after parsing attributes in process `syz.1.16461'.
[  581.253845][ T2943] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  581.315024][ T2951] loop6: detected capacity change from 0 to 512
[  581.343850][ T2951] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  581.376936][T22430] EXT4-fs (loop6): unmounting filesystem.
[  581.426087][   T24] usb 10-1: 0:2 : does not exist
[  581.440334][   T24] usb 10-1: 5:0: failed to get current value for ch 0 (-22)
[  581.460990][   T24] usb 10-1: USB disconnect, device number 13
[  581.488692][ T2695] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  581.580106][ T2972] loop5: detected capacity change from 0 to 1024
[  581.613688][ T2972] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  581.629882][ T2972] ext4 filesystem being mounted at /15/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  581.644230][ T2982] loop1: detected capacity change from 0 to 4096
[  581.665055][ T2982] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  581.674715][ T2972] EXT4-fs error (device loop5): ext4_map_blocks:745: inode #15: block 4: comm syz.5.16474: lblock 4 mapped to illegal pblock 4 (length 1)
[  581.695291][ T2972] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 1 with error 117
[  581.712091][ T2972] EXT4-fs (loop5): This should not happen!! Data will be lost
[  581.712091][ T2972] 
[  581.723560][ T2990] EXT4-fs error (device loop5): ext4_map_blocks:635: inode #15: block 4: comm syz.5.16474: lblock 4 mapped to illegal pblock 4 (length 1)
[  581.750658][ T2990] EXT4-fs error (device loop5): ext4_map_blocks:635: inode #15: block 4: comm syz.5.16474: lblock 4 mapped to illegal pblock 4 (length 1)
[  581.789117][ T2343] EXT4-fs (loop5): unmounting filesystem.
[  581.797711][T25548] EXT4-fs (loop1): unmounting filesystem.
[  582.004025][ T3020] syzkaller1: tun_chr_ioctl cmd 1074025681
[  582.193077][ T3033] netlink: 8 bytes leftover after parsing attributes in process `syz.3.16501'.
[  582.343929][   T24] usb 10-1: new high-speed USB device number 14 using dummy_hcd
[  582.568419][   T24] usb 10-1: Using ep0 maxpacket: 32
[  582.575856][   T24] usb 10-1: config 0 interface 0 altsetting 3 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  582.599895][   T24] usb 10-1: config 0 interface 0 has no altsetting 0
[  582.608367][   T24] usb 10-1: New USB device found, idVendor=056a, idProduct=00f4, bcdDevice= 0.00
[  582.628298][ T3047] netlink: 'syz.3.16507': attribute type 11 has an invalid length.
[  582.630621][   T24] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  582.636473][ T3047] netlink: 12 bytes leftover after parsing attributes in process `syz.3.16507'.
[  582.650651][   T24] usb 10-1: config 0 descriptor??
[  582.996100][ T3092] netlink: 55 bytes leftover after parsing attributes in process `syz.3.16529'.
[  583.014313][ T3094] loop5: detected capacity change from 0 to 128
[  583.105118][   T24] wacom 0003:056A:00F4.003D: item fetching failed at offset 0/1
[  583.113196][   T24] wacom 0003:056A:00F4.003D: parse failed
[  583.127207][   T24] wacom: probe of 0003:056A:00F4.003D failed with error -22
[  583.137363][   T24] kernel write not supported for file /input/event2 (pid: 24 comm: kworker/1:0)
[  583.331943][  T666] usb 10-1: USB disconnect, device number 14
[  583.786115][ T3157] loop1: detected capacity change from 0 to 16
[  583.794399][ T3157] erofs: (device loop1): mounted with root inode @ nid 36.
[  583.805406][ T3157] erofs: (device loop1): erofs_map_blocks_flatmode: inline data cross block boundary @ nid 36
[  583.933230][ T3168] loop1: detected capacity change from 0 to 256
[  583.949361][ T3172] serio: Serial port ptm1
[  583.956745][ T3168] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 198)
[  583.966885][ T3168] FAT-fs (loop1): Filesystem has been set read-only
[  583.975038][ T3168] FAT-fs (loop1): error, fat_free: invalid cluster chain (i_pos 198)
[  583.984312][ T3168] FAT-fs (loop1): error, fat_free: invalid cluster chain (i_pos 198)
[  584.186687][ T3190] syzkaller0: tun_chr_ioctl cmd 2147767507
[  584.279954][ T3202] loop1: detected capacity change from 0 to 128
[  584.629097][ T3220] loop5: detected capacity change from 0 to 40427
[  584.638914][ T3220] F2FS-fs (loop5): invalid crc value
[  584.647650][ T3220] F2FS-fs (loop5): Found nat_bits in checkpoint
[  584.678260][ T3220] F2FS-fs (loop5): Start checkpoint disabled!
[  584.687228][ T3220] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[  584.713598][ T3220] syz.5.16588: attempt to access beyond end of device
[  584.713598][ T3220] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  584.781420][ T3550] usb 2-1: new full-speed USB device number 99 using dummy_hcd
[  584.790486][   T28] kauditd_printk_skb: 852 callbacks suppressed
[  584.790502][   T28] audit: type=1400 audit(2000000003.068:77137): avc:  denied  { ioctl } for  pid=3219 comm="syz.1.16589" path="/dev/raw-gadget" dev="devtmpfs" ino=258 ioctlcmd=0x5503 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  584.823085][   T28] audit: type=1400 audit(2000000003.077:77138): avc:  denied  { read write } for  pid=22430 comm="syz-executor" name="loop6" dev="devtmpfs" ino=124 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  584.854631][   T28] audit: type=1400 audit(2000000003.077:77139): avc:  denied  { open } for  pid=22430 comm="syz-executor" path="/dev/loop6" dev="devtmpfs" ino=124 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  584.887280][   T28] audit: type=1400 audit(2000000003.077:77140): avc:  denied  { ioctl } for  pid=22430 comm="syz-executor" path="/dev/loop6" dev="devtmpfs" ino=124 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  584.915045][   T42] kworker/u4:2: attempt to access beyond end of device
[  584.915045][   T42] loop5: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  584.952052][   T28] audit: type=1400 audit(2000000003.077:77141): avc:  denied  { ioctl } for  pid=3219 comm="syz.1.16589" path="/dev/raw-gadget" dev="devtmpfs" ino=258 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  584.971007][ T3244] netlink: 4 bytes leftover after parsing attributes in process `syz.6.16601'.
[  584.997691][   T28] audit: type=1400 audit(2000000003.105:77142): avc:  denied  { read write } for  pid=22430 comm="syz-executor" name="loop6" dev="devtmpfs" ino=124 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  585.018203][ T3550] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  585.025466][   T28] audit: type=1400 audit(2000000003.105:77143): avc:  denied  { open } for  pid=22430 comm="syz-executor" path="/dev/loop6" dev="devtmpfs" ino=124 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  585.055779][ T3550] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  585.060965][   T28] audit: type=1400 audit(2000000003.105:77144): avc:  denied  { ioctl } for  pid=22430 comm="syz-executor" path="/dev/loop6" dev="devtmpfs" ino=124 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  585.074095][ T3550] usb 2-1: New USB device found, idVendor=5543, idProduct=0047, bcdDevice= 0.00
[  585.106497][   T28] audit: type=1400 audit(2000000003.105:77145): avc:  denied  { unmount } for  pid=2343 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[  585.128881][   T28] audit: type=1400 audit(2000000003.133:77146): avc:  denied  { read write } for  pid=323 comm="syz-executor" name="loop3" dev="devtmpfs" ino=121 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  585.132251][ T3550] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  585.175600][ T3248] tun0: tun_chr_ioctl cmd 1074025676
[  585.182486][ T3550] usb 2-1: config 0 descriptor??
[  585.188204][ T3248] tun0: owner set to 0
[  585.276237][ T3258] syzkaller0: tun_chr_ioctl cmd 1074025677
[  585.298249][ T3258] syzkaller0: linktype set to 776
[  585.641580][ T3289] netlink: 'syz.6.16620': attribute type 4 has an invalid length.
[  585.656526][ T3289] netlink: 17 bytes leftover after parsing attributes in process `syz.6.16620'.
[  585.842667][ T3550] usb 2-1: string descriptor 0 read error: -71
[  585.853030][ T3550] uclogic 0003:5543:0047.003E: failed retrieving string descriptor #200: -71
[  585.867469][ T3550] uclogic 0003:5543:0047.003E: failed retrieving pen parameters: -71
[  585.879272][ T3550] uclogic 0003:5543:0047.003E: failed probing pen v2 parameters: -71
[  585.889062][ T3550] uclogic 0003:5543:0047.003E: failed probing parameters: -71
[  585.898682][ T3550] uclogic: probe of 0003:5543:0047.003E failed with error -71
[  585.910587][ T3550] usb 2-1: USB disconnect, device number 99
[  585.935788][ T3283] loop5: detected capacity change from 0 to 32768
[  585.973587][ T3283]  loop5: p1 p2 p3 < p5 p6 >
[  585.991516][ T3283] loop5: p1 size 242222080 extends beyond EOD, truncated
[  586.010562][ T3283] loop5: p2 start 4294967295 is beyond EOD, truncated
[  586.018805][ T3324] loop6: detected capacity change from 0 to 256
[  586.039164][ T3324] exFAT-fs (loop6): failed to load upcase table (idx : 0x0001e4a3, chksum : 0x009ea0b8, utbl_chksum : 0x7319d30d)
[  586.215539][ T3336] SELinux: failed to load policy
[  586.466794][ T3358] Falling back ldisc for ttyS3.
[  587.304615][    C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  587.451044][ T3458] loop6: detected capacity change from 0 to 512
[  587.451047][ T3456] loop1: detected capacity change from 0 to 1024
[  587.454935][ T3458] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  587.480178][ T3458] EXT4-fs (loop6): 1 truncate cleaned up
[  587.489553][ T3456] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  587.499408][ T3458] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  587.517585][ T3456] ext4 filesystem being mounted at /842/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  587.536426][ T3458] EXT4-fs error (device loop6): ext4_xattr_block_get:546: inode #15: comm syz.6.16698: corrupted xattr block 33
[  587.537520][ T3456] EXT4-fs error (device loop1): ext4_map_blocks:745: inode #15: block 1: comm syz.1.16697: lblock 1 mapped to illegal pblock 1 (length 1)
[  587.560512][ T3458] EXT4-fs (loop6): Remounting filesystem read-only
[  587.564685][ T3456] EXT4-fs error (device loop1): ext4_ext_remove_space:2930: inode #15: comm syz.1.16697: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  587.570761][ T3458] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop6 ino=15
[  587.599833][ T3458] EXT4-fs error (device loop6): ext4_xattr_block_get:546: inode #15: comm syz.6.16698: corrupted xattr block 33
[  587.613331][ T3458] EXT4-fs (loop6): Remounting filesystem read-only
[  587.614013][T25548] EXT4-fs (loop1): unmounting filesystem.
[  587.620854][ T3458] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop6 ino=15
[  587.636669][ T3458] EXT4-fs error (device loop6): ext4_xattr_block_find:1837: inode #15: comm syz.6.16698: corrupted xattr block 33
[  587.650339][ T3458] EXT4-fs (loop6): Remounting filesystem read-only
[  587.683607][T22430] EXT4-fs (loop6): unmounting filesystem.
[  587.764129][ T3486] loop1: detected capacity change from 0 to 256
[  587.827622][ T3486] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011bf5, chksum : 0xcea91b8a, utbl_chksum : 0xe619d30d)
[  587.856835][ T3486] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  587.913336][ T3498] netlink: 8 bytes leftover after parsing attributes in process `syz.3.16714'.
[  588.039388][ T3506] netlink: 20 bytes leftover after parsing attributes in process `syz.6.16719'.
[  588.263144][ T3534] SELinux: ebitmap: truncated map
[  588.269123][ T3534] SELinux: failed to load policy
[  588.309425][ T3536] loop1: detected capacity change from 0 to 512
[  588.350800][ T3536] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  588.365785][ T3536] ext4 filesystem being mounted at /848/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  588.400623][T25548] EXT4-fs (loop1): unmounting filesystem.
[  588.457575][ T3556] loop5: detected capacity change from 0 to 4096
[  588.467799][ T3560] netlink: 8 bytes leftover after parsing attributes in process `syz.1.16742'.
[  588.469836][ T3556] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  588.493172][ T3560] ip6gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[  588.536682][ T2343] EXT4-fs (loop5): unmounting filesystem.
[  588.566592][ T3570] loop1: detected capacity change from 0 to 512
[  588.575228][ T3570] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  588.588092][ T3570] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  588.601159][ T3570] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:477: comm syz.1.16747: Invalid block bitmap block 0 in block_group 0
[  588.617198][ T3570] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  588.628329][ T3570] EXT4-fs error (device loop1): ext4_clear_blocks:883: inode #11: comm syz.1.16747: attempt to clear invalid blocks 983261 len 1
[  588.643136][ T3570] EXT4-fs error (device loop1): __ext4_get_inode_loc:4509: comm syz.1.16747: Invalid inode table block 0 in block_group 0
[  588.658562][ T3570] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5917: Corrupt filesystem
[  588.683904][ T3570] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  588.693735][ T3570] EXT4-fs error (device loop1): __ext4_get_inode_loc:4509: comm syz.1.16747: Invalid inode table block 0 in block_group 0
[  588.707687][ T3570] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5917: Corrupt filesystem
[  588.718319][ T3570] EXT4-fs error (device loop1): ext4_truncate:4314: inode #11: comm syz.1.16747: mark_inode_dirty error
[  588.730299][ T3570] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  588.740409][ T3570] EXT4-fs error (device loop1): __ext4_get_inode_loc:4509: comm syz.1.16747: Invalid inode table block 0 in block_group 0
[  588.754112][ T3570] EXT4-fs (loop1): 1 truncate cleaned up
[  588.760334][ T3570] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  588.774837][ T3570] EXT4-fs error (device loop1): ext4_read_inode_bitmap:140: comm syz.1.16747: Invalid inode bitmap blk 0 in block_group 0
[  588.790438][ T3570] EXT4-fs (loop1): re-mounted. Quota mode: none.
[  588.806469][T25548] EXT4-fs (loop1): unmounting filesystem.
[  588.865729][ T3596] netlink: 4 bytes leftover after parsing attributes in process `syz.5.16758'.
[  588.899766][ T3602] netlink: 104 bytes leftover after parsing attributes in process `syz.1.16761'.
[  589.066664][ T3620] loop5: detected capacity change from 0 to 512
[  589.097876][ T3620] EXT4-fs: Ignoring removed bh option
[  589.122049][ T3620] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  589.144462][ T3620] EXT4-fs (loop5): 1 truncate cleaned up
[  589.150432][ T3620] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  589.191141][ T3631] netem: incorrect ge model size
[  589.196916][ T3631] netem: change failed
[  589.216058][ T2343] EXT4-fs (loop5): unmounting filesystem.
[  589.247364][ T3639] netlink: 24 bytes leftover after parsing attributes in process `syz.6.16777'.
[  589.257092][ T3637] sch_tbf: burst 32855 is lower than device lo mtu (65550) !
[  589.278515][ T3641] netlink: 56 bytes leftover after parsing attributes in process `syz.1.16778'.
[  589.311142][ T3645] pim6reg0: tun_chr_ioctl cmd 2148553947
[  589.402150][ T3550] kernel write not supported for file /input/event2 (pid: 3550 comm: kworker/0:6)
[  589.448237][ T3661] netlink: 24 bytes leftover after parsing attributes in process `syz.1.16787'.
[  589.538574][ T3670] loop1: detected capacity change from 0 to 512
[  589.540898][ T3672] loop5: detected capacity change from 0 to 128
[  589.552757][ T3672] EXT4-fs: Ignoring removed nomblk_io_submit option
[  589.562140][ T3670] EXT4-fs (loop1): failed to initialize system zone (-117)
[  589.570084][ T3670] EXT4-fs (loop1): mount failed
[  589.576780][ T3672] EXT4-fs (loop5): Test dummy encryption mode enabled
[  589.589102][ T3672] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  589.599057][ T3672] ext4 filesystem being mounted at /73/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  589.647502][ T2343] EXT4-fs (loop5): unmounting filesystem.
[  589.819161][ T3700] Bluetooth: received HCILL_WAKE_UP_ACK in state 2
[  590.045544][ T3712] loop9: detected capacity change from 0 to 512
[  590.106235][ T3712] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  590.116406][ T3712] ext4 filesystem being mounted at /392/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  590.141013][   T28] kauditd_printk_skb: 1070 callbacks suppressed
[  590.141031][   T28] audit: type=1400 audit(2000000008.072:78217): avc:  denied  { read } for  pid=3710 comm="syz.9.16808" dev="nsfs" ino=4026532394 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  590.169789][   T28] audit: type=1400 audit(2000000008.072:78218): avc:  denied  { open } for  pid=3710 comm="syz.9.16808" path="net:[4026532394]" dev="nsfs" ino=4026532394 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  590.197753][   T28] audit: type=1400 audit(2000000008.072:78219): avc:  denied  { create } for  pid=3710 comm="syz.9.16808" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  590.202100][T31672] EXT4-fs (loop9): unmounting filesystem.
[  590.219017][   T28] audit: type=1400 audit(2000000008.072:78220): avc:  denied  { perfmon } for  pid=3715 comm="syz.1.16809" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  590.249912][   T28] audit: type=1400 audit(2000000008.072:78221): avc:  denied  { bpf } for  pid=3715 comm="syz.1.16809" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  590.271472][   T28] audit: type=1400 audit(2000000008.072:78222): avc:  denied  { perfmon } for  pid=3715 comm="syz.1.16809" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  590.293154][   T28] audit: type=1400 audit(2000000008.072:78223): avc:  denied  { bpf } for  pid=3715 comm="syz.1.16809" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  590.343980][   T28] audit: type=1400 audit(2000000008.072:78224): avc:  denied  { prog_run } for  pid=3715 comm="syz.1.16809" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  590.373037][   T28] audit: type=1400 audit(2000000008.072:78225): avc:  denied  { setopt } for  pid=3710 comm="syz.9.16808" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  590.414825][   T28] audit: type=1400 audit(2000000008.109:78226): avc:  denied  { bpf } for  pid=3715 comm="syz.1.16809" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  590.653820][ T3746] loop5: detected capacity change from 0 to 128
[  590.749780][ T3761] netlink: 80 bytes leftover after parsing attributes in process `syz.5.16830'.
[  590.884481][ T3770] netlink: 20 bytes leftover after parsing attributes in process `syz.5.16834'.
[  591.117128][ T3550] kernel write not supported for file /vcsa1 (pid: 3550 comm: kworker/0:6)
[  591.457983][ T3827] loop1: detected capacity change from 0 to 128
[  592.008395][ T2695] Bluetooth: hci0: command 0x1003 tx timeout
[  592.015223][   T45] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  593.586867][ T3936] netlink: 28 bytes leftover after parsing attributes in process `syz.5.16909'.
[  593.611613][ T3938] netlink: 'syz.9.16911': attribute type 11 has an invalid length.
[  593.630598][ T3938] netlink: 12 bytes leftover after parsing attributes in process `syz.9.16911'.
[  593.743171][ T3959] netlink: 48 bytes leftover after parsing attributes in process `syz.9.16921'.
[  593.772608][ T3958] netlink: 12 bytes leftover after parsing attributes in process `syz.6.16919'.
[  593.812916][ T3958] netlink: 12 bytes leftover after parsing attributes in process `syz.6.16919'.
[  593.871078][ T3970] netlink: 'syz.5.16926': attribute type 2 has an invalid length.
[  593.885536][ T3928] loop1: detected capacity change from 0 to 32768
[  593.944933][ T3928]  loop1: p1 p3 < p5 p6 >
[  594.184829][ T3999] loop1: detected capacity change from 0 to 4096
[  594.192242][ T3999] EXT4-fs: Ignoring removed mblk_io_submit option
[  594.201815][ T3999] EXT4-fs (loop1): Test dummy encryption mode enabled
[  594.213319][ T3999] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  594.245768][T25548] EXT4-fs (loop1): unmounting filesystem.
[  594.278081][ T4005] loop1: detected capacity change from 0 to 512
[  594.285227][ T4005] EXT4-fs: Ignoring removed nobh option
[  594.298876][ T4005] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -117
[  594.308643][ T4005] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.16940: invalid indirect mapped block 256 (level 1)
[  594.325498][ T4005] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.16940: invalid indirect mapped block 2683928664 (level 1)
[  594.329060][ T3986] loop9: detected capacity change from 0 to 40427
[  594.341742][ T4005] EXT4-fs (loop1): 1 truncate cleaned up
[  594.349733][ T3986] F2FS-fs (loop9): invalid crc value
[  594.353250][ T4005] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  594.359801][ T3986] F2FS-fs (loop9): Found nat_bits in checkpoint
[  594.392422][T25548] EXT4-fs (loop1): unmounting filesystem.
[  594.418062][ T3986] F2FS-fs (loop9): Start checkpoint disabled!
[  594.427520][ T3986] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e6
[  594.486578][T25443] kworker/u4:7: attempt to access beyond end of device
[  594.486578][T25443] loop9: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  594.605292][ T4027] loop9: detected capacity change from 0 to 4096
[  594.619503][ T4027] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  594.705022][T31672] EXT4-fs (loop9): unmounting filesystem.
[  594.866939][ T4041] loop9: detected capacity change from 0 to 40427
[  594.875273][ T4041] F2FS-fs (loop9): fault_injection options not supported
[  594.883260][ T4041] F2FS-fs (loop9): invalid crc value
[  594.891337][ T4041] F2FS-fs (loop9): Found nat_bits in checkpoint
[  594.922672][ T4041] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[  594.940741][ T4041] syz.9.16956: attempt to access beyond end of device
[  594.940741][ T4041] loop9: rw=2049, sector=77824, nr_sectors = 848 limit=40427
[  594.965345][T31672] syz-executor: attempt to access beyond end of device
[  594.965345][T31672] loop9: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  594.971723][ T4051] netlink: 8 bytes leftover after parsing attributes in process `syz.3.16960'.
[  594.988970][ T4051] netlink: 12 bytes leftover after parsing attributes in process `syz.3.16960'.
[  595.096497][ T4061] netlink: 8 bytes leftover after parsing attributes in process `syz.9.16959'.
[  595.134720][ T4065] loop9: detected capacity change from 0 to 1024
[  595.175749][ T4065] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  595.195500][ T4065] ext4 filesystem being mounted at /444/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  595.228484][ T4065] EXT4-fs error (device loop9): ext4_map_blocks:745: inode #15: block 4: comm syz.9.16966: lblock 4 mapped to illegal pblock 4 (length 1)
[  595.248574][ T4065] EXT4-fs (loop9): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 1 with error 117
[  595.267406][ T4075] pim6reg: tun_chr_ioctl cmd 21731
[  595.279831][ T4065] EXT4-fs (loop9): This should not happen!! Data will be lost
[  595.279831][ T4065] 
[  595.297656][ T4076] EXT4-fs error (device loop9): ext4_map_blocks:635: inode #15: block 4: comm syz.9.16966: lblock 4 mapped to illegal pblock 4 (length 1)
[  595.303164][ T4063] loop5: detected capacity change from 0 to 32768
[  595.334244][T31672] EXT4-fs (loop9): unmounting filesystem.
[  595.364902][ T4063]  loop5: p2 p3 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p2
[  595.647201][   T28] kauditd_printk_skb: 871 callbacks suppressed
[  595.647219][   T28] audit: type=1400 audit(2000000003.367:79098): avc:  denied  { read write } for  pid=323 comm="syz-executor" name="loop3" dev="devtmpfs" ino=121 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  596.040603][   T28] audit: type=1400 audit(2000000003.367:79099): avc:  denied  { open } for  pid=323 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=121 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  596.065749][   T28] audit: type=1400 audit(2000000003.367:79100): avc:  denied  { ioctl } for  pid=323 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=121 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  596.092627][   T28] audit: type=1400 audit(2000000003.367:79101): avc:  denied  { bpf } for  pid=4101 comm="syz.3.16981" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  596.117855][   T28] audit: type=1400 audit(2000000003.367:79102): avc:  denied  { map_create } for  pid=4101 comm="syz.3.16981" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  596.156920][   T28] audit: type=1400 audit(2000000003.367:79103): avc:  denied  { map_read map_write } for  pid=4101 comm="syz.3.16981" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  596.185035][   T28] audit: type=1400 audit(2000000003.367:79104): avc:  denied  { prog_load } for  pid=4101 comm="syz.3.16981" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  596.210604][   T28] audit: type=1400 audit(2000000003.367:79105): avc:  denied  { perfmon } for  pid=4101 comm="syz.3.16981" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  596.244745][   T28] audit: type=1400 audit(2000000003.367:79106): avc:  denied  { prog_run } for  pid=4101 comm="syz.3.16981" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  596.274938][   T28] audit: type=1400 audit(2000000003.460:79107): avc:  denied  { read write } for  pid=25548 comm="syz-executor" name="loop1" dev="devtmpfs" ino=119 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  596.450096][ T4136] netlink: 36 bytes leftover after parsing attributes in process `syz.1.16997'.
[  596.790025][ T4174] bridge0: port 1(syz_tun) entered blocking state
[  596.796541][ T4174] bridge0: port 1(syz_tun) entered disabled state
[  596.811716][ T4174] device syz_tun entered promiscuous mode
[  596.884127][ T4179] loop1: detected capacity change from 0 to 1024
[  596.907440][ T4179] EXT4-fs: Ignoring removed bh option
[  596.923945][ T4179] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  596.932688][ T4152] loop5: detected capacity change from 0 to 32768
[  596.970576][ T4152]  loop5: p1 p2 p3 < p5 p6 p7 >
[  596.973537][ T4179] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  596.998632][ T4152] loop5: p2 size 16775168 extends beyond EOD, truncated
[  597.006996][ T4194] netlink: 8 bytes leftover after parsing attributes in process `syz.6.17021'.
[  597.030009][ T4152] loop5: p5 start 4294970168 is beyond EOD, truncated
[  597.097933][T25548] EXT4-fs (loop1): unmounting filesystem.
[  597.105621][ T4205] can0: slcan on ttyS3.
[  597.166427][ T4213] pim6reg1: tun_chr_ioctl cmd 2147767521
[  597.183705][ T4205] can0 (unregistered): slcan off ttyS3.
[  597.622874][ T4253] loop6: detected capacity change from 0 to 256
[  597.804663][ T3550] usb 2-1: new high-speed USB device number 100 using dummy_hcd
[  597.815366][ T4253] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  598.110988][ T3550] usb 2-1: Using ep0 maxpacket: 8
[  598.139457][ T3550] usb 2-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  598.443326][ T3550] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  598.465154][ T3550] usb 2-1: config 0 descriptor??
[  598.468416][ T4257] netlink: 'syz.3.17049': attribute type 3 has an invalid length.
[  598.488843][ T4261] loop5: detected capacity change from 0 to 512
[  598.525155][ T4261] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  598.542881][ T4261] ext4 filesystem being mounted at /113/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  598.631829][ T2343] EXT4-fs (loop5): unmounting filesystem.
[  598.688473][ T3550] asix 2-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random
[  598.698665][ T4281] tap0: tun_chr_ioctl cmd 1074025678
[  598.709108][ T4281] tap0: group set to 0
[  598.774308][ T4290] Dead loop on virtual device ip6_vti0, fix it urgently!
[  599.117904][ T3550] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[  599.139445][ T3550] asix: probe of 2-1:0.0 failed with error -71
[  599.148909][ T3550] usb 2-1: USB disconnect, device number 100
[  599.215350][ T4269] loop9: detected capacity change from 0 to 131072
[  599.225683][ T4269] F2FS-fs (loop9): Test dummy encryption mode enabled
[  599.230724][ T4320] loop6: detected capacity change from 0 to 512
[  599.234952][ T4269] F2FS-fs (loop9): invalid crc value
[  599.242634][ T4320] EXT4-fs: Ignoring removed nobh option
[  599.249924][ T4269] F2FS-fs (loop9): Found nat_bits in checkpoint
[  599.253336][ T4320] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  599.271864][ T4320] EXT4-fs (loop6): 1 truncate cleaned up
[  599.277662][ T4320] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  599.294730][ T4269] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[  599.308275][ T4320] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2195: inode #15: comm syz.6.17080: corrupted in-inode xattr
[  599.322099][ T4320] EXT4-fs (loop6): Remounting filesystem read-only
[  599.328865][ T4320] EXT4-fs warning (device loop6): ext4_xattr_set_entry:1732: inode #15: comm syz.6.17080: unable to update i_inline_off
[  599.345503][ T4320] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2195: inode #15: comm syz.6.17080: corrupted in-inode xattr
[  599.359652][ T4320] EXT4-fs (loop6): Remounting filesystem read-only
[  599.378861][T22430] EXT4-fs (loop6): unmounting filesystem.
[  599.494015][ T4335] loop6: detected capacity change from 0 to 1024
[  599.501827][ T4335] EXT4-fs: Ignoring removed nobh option
[  599.508871][ T4335] EXT4-fs: Ignoring removed bh option
[  599.516719][ T4335] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  599.536973][ T4335] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  599.559757][T22430] EXT4-fs (loop6): unmounting filesystem.
[  599.607040][ T4348] sock: sock_timestamping_bind_phc: sock not bind to device
[  599.689892][ T4356] dvmrp1: tun_chr_ioctl cmd 2147767520
[  599.965031][ T4386] __nla_validate_parse: 2 callbacks suppressed
[  599.965052][ T4386] netlink: 24 bytes leftover after parsing attributes in process `syz.6.17110'.
[  600.050669][ T4362] loop5: detected capacity change from 0 to 40427
[  600.070777][ T4362] F2FS-fs (loop5): fault_injection options not supported
[  600.092407][ T4362] F2FS-fs (loop5): invalid crc value
[  600.111763][ T4362] F2FS-fs (loop5): Found nat_bits in checkpoint
[  600.161355][ T4362] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  600.250007][ T2343] syz-executor: attempt to access beyond end of device
[  600.250007][ T2343] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  600.311614][ T4417] loop6: detected capacity change from 0 to 1024
[  600.326187][ T4417] EXT4-fs: Ignoring removed nomblk_io_submit option
[  600.363142][ T4417] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  600.406135][T22430] EXT4-fs (loop6): unmounting filesystem.
[  600.917943][ T4479] loop9: detected capacity change from 0 to 512
[  600.928252][ T4479] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  600.948126][ T4479] EXT4-fs (loop9): 1 truncate cleaned up
[  600.955446][ T4479] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none.
[  600.977869][T31672] EXT4-fs (loop9): unmounting filesystem.
[  601.012432][   T28] kauditd_printk_skb: 914 callbacks suppressed
[  601.012451][   T28] audit: type=1400 audit(2000000008.390:80022): avc:  denied  { read write } for  pid=4482 comm="syz.3.17150" name="loop3" dev="devtmpfs" ino=121 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  601.047251][   T28] audit: type=1400 audit(2000000008.390:80023): avc:  denied  { read write open } for  pid=4482 comm="syz.3.17150" path="/dev/loop3" dev="devtmpfs" ino=121 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  601.090323][ T4487] loop9: detected capacity change from 0 to 1024
[  601.101364][   T28] audit: type=1400 audit(2000000008.390:80024): avc:  denied  { ioctl } for  pid=4482 comm="syz.3.17150" path="/dev/loop3" dev="devtmpfs" ino=121 ioctlcmd=0x4c00 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  601.118169][ T4487] EXT4-fs: Ignoring removed bh option
[  601.128626][   T28] audit: type=1400 audit(2000000008.409:80025): avc:  denied  { read write } for  pid=323 comm="syz-executor" name="loop3" dev="devtmpfs" ino=121 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  601.138258][ T4487] EXT4-fs: Ignoring removed nobh option
[  601.158574][   T28] audit: type=1400 audit(2000000008.409:80026): avc:  denied  { read write open } for  pid=323 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=121 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  601.189636][ T4487] EXT4-fs: Ignoring removed bh option
[  601.189710][   T28] audit: type=1400 audit(2000000008.409:80027): avc:  denied  { ioctl } for  pid=323 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=121 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  601.213571][ T4487] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  601.223098][   T28] audit: type=1400 audit(2000000008.409:80028): avc:  denied  { read write } for  pid=31672 comm="syz-executor" name="loop9" dev="devtmpfs" ino=127 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  601.258925][   T28] audit: type=1400 audit(2000000008.409:80029): avc:  denied  { open } for  pid=31672 comm="syz-executor" path="/dev/loop9" dev="devtmpfs" ino=127 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  601.285442][   T28] audit: type=1400 audit(2000000008.409:80030): avc:  denied  { ioctl } for  pid=31672 comm="syz-executor" path="/dev/loop9" dev="devtmpfs" ino=127 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  601.313257][   T28] audit: type=1400 audit(2000000008.456:80031): avc:  denied  { read write } for  pid=4486 comm="syz.9.17151" name="loop9" dev="devtmpfs" ino=127 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  601.321958][ T4487] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  601.369840][ T4487] EXT4-fs error (device loop9): ext4_mb_mark_diskspace_used:3836: comm syz.9.17151: Allocating blocks 497-513 which overlap fs metadata
[  601.384526][ T4487] EXT4-fs (loop9): pa ffff888115184690: logic 256, phys. 385, len 8
[  601.392590][ T4487] EXT4-fs error (device loop9): ext4_mb_release_inode_pa:4876: group 0, free 0, pa_free 1
[  601.475429][T31672] EXT4-fs (loop9): unmounting filesystem.
[  601.629276][ T4524] syzkaller0: tun_chr_ioctl cmd 1074025677
[  601.636054][ T4524] syzkaller0: linktype set to 805
[  601.800667][ T4540] loop9: detected capacity change from 0 to 4096
[  601.808588][ T4540] EXT4-fs: Ignoring removed mblk_io_submit option
[  601.817985][ T4540] EXT4-fs (loop9): Test dummy encryption mode enabled
[  601.828315][ T4540] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  601.858857][T31672] EXT4-fs (loop9): unmounting filesystem.
[  602.418025][ T4553] netlink: 12 bytes leftover after parsing attributes in process `syz.5.17181'.
[  602.433570][ T4553] netlink: 12 bytes leftover after parsing attributes in process `syz.5.17181'.
[  602.509110][   T42] Bluetooth: hci0: Frame reassembly failed (-84)
[  602.525056][ T4565] Bluetooth: hci0: received HCILL_GO_TO_SLEEP_ACK in state 2
[  602.911068][ T4606] pim6reg: tun_chr_ioctl cmd 1074025672
[  602.916836][ T4606] pim6reg: ignored: set checksum enabled
[  603.041015][    C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  603.349330][ T4627] loop1: detected capacity change from 0 to 1024
[  603.363512][ T4627] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  603.372237][ T4627] ext4 filesystem being mounted at /967/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  603.391666][ T4627] EXT4-fs error (device loop1): ext4_map_blocks:745: inode #15: block 4: comm syz.1.17214: lblock 4 mapped to illegal pblock 4 (length 1)
[  603.406801][ T4627] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 1 with error 117
[  603.419697][ T4627] EXT4-fs (loop1): This should not happen!! Data will be lost
[  603.419697][ T4627] 
[  603.431229][ T4627] EXT4-fs error (device loop1): ext4_map_blocks:635: inode #15: block 4: comm syz.1.17214: lblock 4 mapped to illegal pblock 4 (length 1)
[  603.447499][ T4627] EXT4-fs error (device loop1): ext4_map_blocks:635: inode #15: block 4: comm syz.1.17214: lblock 4 mapped to illegal pblock 4 (length 1)
[  603.471296][T25548] EXT4-fs (loop1): unmounting filesystem.
[  603.571956][ T4639] loop1: detected capacity change from 0 to 16
[  603.580199][ T4639] erofs: (device loop1): erofs_fc_fill_super: rootino(nid 36) is not a directory(i_mode 25144)
[  603.601330][ T4641] netlink: 71 bytes leftover after parsing attributes in process `syz.3.17219'.
[  604.028891][ T4687] Â: renamed from pim6reg1
[  604.209397][ T4711] syz.1.17252[4711] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  604.209482][ T4711] syz.1.17252[4711] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  604.273978][ T4719] netlink: 8 bytes leftover after parsing attributes in process `syz.1.17256'.
[  604.665971][   T45] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  604.665969][ T2695] Bluetooth: hci0: command 0x1003 tx timeout
[  604.948369][ T4775] loop1: detected capacity change from 0 to 256
[  604.956215][ T4775] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  604.974185][ T4775] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  605.480931][ T4815] loop1: detected capacity change from 0 to 256
[  605.496832][ T4815] FAT-fs (loop1): Directory bread(block 64) failed
[  605.503634][ T4815] FAT-fs (loop1): Directory bread(block 65) failed
[  605.511740][ T4815] FAT-fs (loop1): Directory bread(block 66) failed
[  605.518557][ T4815] FAT-fs (loop1): Directory bread(block 67) failed
[  605.525930][ T4815] FAT-fs (loop1): Directory bread(block 68) failed
[  605.533412][ T4815] FAT-fs (loop1): Directory bread(block 69) failed
[  605.540201][ T4815] FAT-fs (loop1): Directory bread(block 70) failed
[  605.548232][ T4815] FAT-fs (loop1): Directory bread(block 71) failed
[  605.555793][ T4815] FAT-fs (loop1): Directory bread(block 72) failed
[  605.562792][ T4815] FAT-fs (loop1): Directory bread(block 73) failed
[  605.663911][ T4822] loop1: detected capacity change from 0 to 128
[  605.671104][ T4822] EXT4-fs: Ignoring removed nomblk_io_submit option
[  605.692271][ T4822] EXT4-fs (loop1): Test dummy encryption mode enabled
[  605.732507][ T4822] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  605.757152][ T4822] ext4 filesystem being mounted at /1002/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  605.809348][T25548] EXT4-fs (loop1): unmounting filesystem.
[  605.859114][ T4844] netlink: 176 bytes leftover after parsing attributes in process `syz.3.17313'.
[  605.870262][ T4846] IPv6: NLM_F_CREATE should be specified when creating new route
[  606.441084][   T28] kauditd_printk_skb: 898 callbacks suppressed
[  606.441101][   T28] audit: type=1400 audit(2000000013.469:80930): avc:  denied  { read write } for  pid=323 comm="syz-executor" name="loop3" dev="devtmpfs" ino=121 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  606.474279][   T28] audit: type=1400 audit(2000000013.469:80931): avc:  denied  { open } for  pid=323 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=121 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  606.491259][ T4887] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  606.500182][   T28] audit: type=1400 audit(2000000013.469:80932): avc:  denied  { ioctl } for  pid=323 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=121 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  606.534913][   T28] audit: type=1400 audit(2000000013.469:80933): avc:  denied  { read write } for  pid=323 comm="syz-executor" name="loop3" dev="devtmpfs" ino=121 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  606.560538][   T28] audit: type=1400 audit(2000000013.469:80934): avc:  denied  { open } for  pid=323 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=121 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  606.588072][   T28] audit: type=1400 audit(2000000013.469:80935): avc:  denied  { ioctl } for  pid=323 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=121 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  606.615972][   T28] audit: type=1400 audit(2000000013.535:80936): avc:  denied  { read write } for  pid=323 comm="syz-executor" name="loop3" dev="devtmpfs" ino=121 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  606.646799][   T28] audit: type=1400 audit(2000000013.535:80937): avc:  denied  { open } for  pid=323 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=121 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  606.673014][   T28] audit: type=1400 audit(2000000013.535:80938): avc:  denied  { ioctl } for  pid=323 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=121 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  606.701463][   T28] audit: type=1400 audit(2000000013.638:80939): avc:  denied  { read write } for  pid=323 comm="syz-executor" name="loop3" dev="devtmpfs" ino=121 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  607.267226][ T2343] ------------[ cut here ]------------
[  607.272918][ T2343] WARNING: CPU: 1 PID: 2343 at fs/inode.c:335 drop_nlink+0xc5/0x110
[  607.281028][ T2343] Modules linked in:
[  607.285462][ T2343] CPU: 1 PID: 2343 Comm: syz-executor Not tainted syzkaller #0
[  607.293267][ T2343] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  607.303989][ T2343] RIP: 0010:drop_nlink+0xc5/0x110
[  607.309325][ T2343] Code: 1b 48 8d bb b8 04 00 00 be 08 00 00 00 e8 a3 e4 f0 ff f0 48 ff 83 b8 04 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 9b 72 ac ff <0f> 0b eb 86 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 5e ff ff ff 4c
[  607.331627][ T2343] RSP: 0018:ffffc90005627c38 EFLAGS: 00010293
[  607.339528][ T2343] RAX: ffffffff81c3ab65 RBX: ffff88811937dec0 RCX: ffff888113b06540
[  607.348277][ T2343] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  607.358115][ T2343] RBP: ffffc90005627c60 R08: 0000000000000004 R09: 0000000000000003
[  607.366833][ T2343] R10: fffff52000ac4f78 R11: 1ffff92000ac4f78 R12: dffffc0000000000
[  607.375582][ T2343] R13: 1ffff1102326fbe1 R14: ffff88811937df08 R15: 0000000000000000
[  607.383934][ T2343] FS:  00005555715c9500(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  607.394248][ T2343] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  607.401903][ T2343] CR2: 0000001b30721ff8 CR3: 0000000125d7d000 CR4: 00000000003506a0
[  607.411122][ T2343] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  607.419516][ T2343] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  607.428656][ T2343] Call Trace:
[  607.432739][ T2343]  <TASK>
[  607.436287][ T2343]  shmem_rmdir+0x5b/0x90
[  607.441117][ T2343]  vfs_rmdir+0x393/0x500
[  607.445959][ T2343]  incfs_kill_sb+0x105/0x220
[  607.450868][ T2343]  deactivate_locked_super+0xb5/0x120
[  607.456807][ T2343]  deactivate_super+0xaf/0xe0
[  607.461799][ T2343]  cleanup_mnt+0x45f/0x4e0
[  607.466559][ T2343]  __cleanup_mnt+0x19/0x20
[  607.471405][ T2343]  task_work_run+0x1db/0x240
[  607.476282][ T2343]  ? __cfi_task_work_run+0x10/0x10
[  607.482103][ T2343]  ? __x64_sys_umount+0x125/0x160
[  607.487764][ T2343]  ? __cfi___x64_sys_umount+0x10/0x10
[  607.493472][ T2343]  exit_to_user_mode_loop+0x9b/0xb0
[  607.499210][ T2343]  exit_to_user_mode_prepare+0x5a/0xa0
[  607.504914][ T2343]  syscall_exit_to_user_mode+0x1a/0x30
[  607.510727][ T2343]  do_syscall_64+0x58/0xa0
[  607.515501][ T2343]  ? clear_bhb_loop+0x30/0x80
[  607.520760][ T2343]  ? clear_bhb_loop+0x30/0x80
[  607.526282][ T2343]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  607.532460][ T2343] RIP: 0033:0x7f2144d902f7
[  607.537117][ T2343] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  607.557398][ T2343] RSP: 002b:00007fff9528c428 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  607.566609][ T2343] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f2144d902f7
[  607.574914][ T2343] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff9528c4e0
[  607.583942][ T2343] RBP: 00007fff9528c4e0 R08: 0000000000000000 R09: 0000000000000000
[  607.592180][ T2343] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff9528d570
[  607.600835][ T2343] R13: 00007f2144e11d7d R14: 000000000008c879 R15: 00007fff9528d5b0
[  607.609769][ T2343]  </TASK>
[  607.612901][ T2343] ---[ end trace 0000000000000000 ]---
[  607.619711][ T2343] ==================================================================
[  607.628512][ T2343] BUG: KASAN: null-ptr-deref in ihold+0x20/0x60
[  607.635145][ T2343] Write of size 4 at addr 0000000000000170 by task syz-executor/2343
[  607.643853][ T2343] 
[  607.646415][ T2343] CPU: 1 PID: 2343 Comm: syz-executor Tainted: G        W          syzkaller #0
[  607.658099][ T2343] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  607.669234][ T2343] Call Trace:
[  607.672746][ T2343]  <TASK>
[  607.675797][ T2343]  __dump_stack+0x21/0x24
[  607.680253][ T2343]  dump_stack_lvl+0xee/0x150
[  607.684968][ T2343]  ? __cfi_dump_stack_lvl+0x8/0x8
[  607.690389][ T2343]  ? ihold+0x20/0x60
[  607.694491][ T2343]  ? ihold+0x20/0x60
[  607.698656][ T2343]  print_report+0x3d/0x60
[  607.703091][ T2343]  kasan_report+0x122/0x150
[  607.707832][ T2343]  ? ihold+0x20/0x60
[  607.712324][ T2343]  kasan_check_range+0x280/0x290
[  607.717674][ T2343]  __kasan_check_write+0x14/0x20
[  607.722821][ T2343]  ihold+0x20/0x60
[  607.726759][ T2343]  vfs_rmdir+0x25f/0x500
[  607.731300][ T2343]  incfs_kill_sb+0x105/0x220
[  607.735928][ T2343]  deactivate_locked_super+0xb5/0x120
[  607.741701][ T2343]  deactivate_super+0xaf/0xe0
[  607.746682][ T2343]  cleanup_mnt+0x45f/0x4e0
[  607.751253][ T2343]  __cleanup_mnt+0x19/0x20
[  607.756144][ T2343]  task_work_run+0x1db/0x240
[  607.760843][ T2343]  ? __cfi_task_work_run+0x10/0x10
[  607.765983][ T2343]  ? __x64_sys_umount+0x125/0x160
[  607.771290][ T2343]  ? __cfi___x64_sys_umount+0x10/0x10
[  607.776707][ T2343]  exit_to_user_mode_loop+0x9b/0xb0
[  607.782114][ T2343]  exit_to_user_mode_prepare+0x5a/0xa0
[  607.787766][ T2343]  syscall_exit_to_user_mode+0x1a/0x30
[  607.793249][ T2343]  do_syscall_64+0x58/0xa0
[  607.797793][ T2343]  ? clear_bhb_loop+0x30/0x80
[  607.802691][ T2343]  ? clear_bhb_loop+0x30/0x80
[  607.807834][ T2343]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  607.814683][ T2343] RIP: 0033:0x7f2144d902f7
[  607.819555][ T2343] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  607.840192][ T2343] RSP: 002b:00007fff9528c428 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  607.849071][ T2343] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f2144d902f7
[  607.857217][ T2343] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff9528c4e0
[  607.865685][ T2343] RBP: 00007fff9528c4e0 R08: 0000000000000000 R09: 0000000000000000
[  607.874282][ T2343] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff9528d570
[  607.883346][ T2343] R13: 00007f2144e11d7d R14: 000000000008c879 R15: 00007fff9528d5b0
[  607.891766][ T2343]  </TASK>
[  607.895274][ T2343] ==================================================================
[  607.904562][ T2343] Disabling lock debugging due to kernel taint
[  607.911921][ T2343] BUG: kernel NULL pointer dereference, address: 0000000000000170
[  607.920109][ T2343] #PF: supervisor write access in kernel mode
[  607.926378][ T2343] #PF: error_code(0x0002) - not-present page
[  607.932554][ T2343] PGD 14ec44067 P4D 14ec44067 PUD 0 
[  607.938389][ T2343] Oops: 0002 [#1] PREEMPT SMP KASAN
[  607.943861][ T2343] CPU: 0 PID: 2343 Comm: syz-executor Tainted: G    B   W          syzkaller #0
[  607.953510][ T2343] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  607.963831][ T2343] RIP: 0010:ihold+0x26/0x60
[  607.968452][ T2343] Code: 33 36 7c df 55 48 89 e5 41 56 53 48 89 fb e8 01 6a ac ff 48 8d bb 70 01 00 00 be 04 00 00 00 e8 e0 db f0 ff 41 be 01 00 00 00 <f0> 44 0f c1 b3 70 01 00 00 41 ff c6 bf 02 00 00 00 44 89 f6 e8 f1
[  607.989033][ T2343] RSP: 0018:ffffc90005627c78 EFLAGS: 00010246
[  607.995138][ T2343] RAX: ffff888113b06500 RBX: 0000000000000000 RCX: ffff888113b06540
[  608.003299][ T2343] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  608.011630][ T2343] RBP: ffffc90005627c88 R08: dffffc0000000000 R09: fffffbfff0f2d8fd
[  608.020228][ T2343] R10: fffffbfff0f2d8fd R11: 1ffffffff0f2d8fc R12: ffff88811937decc
[  608.028702][ T2343] R13: dffffc0000000000 R14: 0000000000000001 R15: 0000000000000000
[  608.037319][ T2343] FS:  00005555715c9500(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[  608.047093][ T2343] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  608.054005][ T2343] CR2: 0000000000000170 CR3: 0000000125d7d000 CR4: 00000000003526b0
[  608.062448][ T2343] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  608.071450][ T2343] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  608.080150][ T2343] Call Trace:
[  608.083629][ T2343]  <TASK>
[  608.087113][ T2343]  vfs_rmdir+0x25f/0x500
[  608.091654][ T2343]  incfs_kill_sb+0x105/0x220
[  608.096610][ T2343]  deactivate_locked_super+0xb5/0x120
[  608.102261][ T2343]  deactivate_super+0xaf/0xe0
[  608.107039][ T2343]  cleanup_mnt+0x45f/0x4e0
[  608.111846][ T2343]  __cleanup_mnt+0x19/0x20
[  608.116819][ T2343]  task_work_run+0x1db/0x240
[  608.121712][ T2343]  ? __cfi_task_work_run+0x10/0x10
[  608.127280][ T2343]  ? __x64_sys_umount+0x125/0x160
[  608.132505][ T2343]  ? __cfi___x64_sys_umount+0x10/0x10
[  608.138680][ T2343]  exit_to_user_mode_loop+0x9b/0xb0
[  608.145206][ T2343]  exit_to_user_mode_prepare+0x5a/0xa0
[  608.152130][ T2343]  syscall_exit_to_user_mode+0x1a/0x30
[  608.158347][ T2343]  do_syscall_64+0x58/0xa0
[  608.162939][ T2343]  ? clear_bhb_loop+0x30/0x80
[  608.168172][ T2343]  ? clear_bhb_loop+0x30/0x80
[  608.173224][ T2343]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  608.180178][ T2343] RIP: 0033:0x7f2144d902f7
[  608.184953][ T2343] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  608.206287][ T2343] RSP: 002b:00007fff9528c428 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  608.215083][ T2343] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f2144d902f7
[  608.223268][ T2343] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff9528c4e0
[  608.231618][ T2343] RBP: 00007fff9528c4e0 R08: 0000000000000000 R09: 0000000000000000
[  608.239819][ T2343] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff9528d570
[  608.247992][ T2343] R13: 00007f2144e11d7d R14: 000000000008c879 R15: 00007fff9528d5b0
[  608.256351][ T2343]  </TASK>
[  608.259388][ T2343] Modules linked in:
[  608.263399][ T2343] CR2: 0000000000000170
[  608.267596][ T2343] ---[ end trace 0000000000000000 ]---
[  608.273229][ T2343] RIP: 0010:ihold+0x26/0x60
[  608.278044][ T2343] Code: 33 36 7c df 55 48 89 e5 41 56 53 48 89 fb e8 01 6a ac ff 48 8d bb 70 01 00 00 be 04 00 00 00 e8 e0 db f0 ff 41 be 01 00 00 00 <f0> 44 0f c1 b3 70 01 00 00 41 ff c6 bf 02 00 00 00 44 89 f6 e8 f1
[  608.298185][ T2343] RSP: 0018:ffffc90005627c78 EFLAGS: 00010246
[  608.304277][ T2343] RAX: ffff888113b06500 RBX: 0000000000000000 RCX: ffff888113b06540
[  608.312267][ T2343] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  608.320270][ T2343] RBP: ffffc90005627c88 R08: dffffc0000000000 R09: fffffbfff0f2d8fd
[  608.328271][ T2343] R10: fffffbfff0f2d8fd R11: 1ffffffff0f2d8fc R12: ffff88811937decc
[  608.336263][ T2343] R13: dffffc0000000000 R14: 0000000000000001 R15: 0000000000000000
[  608.344294][ T2343] FS:  00005555715c9500(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[  608.354280][ T2343] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  608.361142][ T2343] CR2: 0000000000000170 CR3: 0000000125d7d000 CR4: 00000000003526b0
[  608.369597][ T2343] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  608.377754][ T2343] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  608.386198][ T2343] Kernel panic - not syncing: Fatal exception
[  608.392933][ T2343] Kernel Offset: disabled
[  608.397465][ T2343] Rebooting in 86400 seconds..