last executing test programs:

6.763917873s ago: executing program 3 (id=907):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='sched_switch\x00', r4}, 0x10)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, &(0x7f0000000100)={0xa0179e1d})
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, 0xffffffffffffffff, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00'}, 0x10)
r5 = syz_open_dev$usbfs(&(0x7f0000000080), 0x76, 0x0)
ioctl$USBDEVFS_DROP_PRIVILEGES(r5, 0x4004551e, &(0x7f00000000c0))
syz_emit_ethernet(0x46, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaa88aaaaaaaaaaaaaabb86dd"], 0x0)
r6 = syz_open_procfs(r0, &(0x7f0000000040)='stack\x00')
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
waitid(0x0, 0x0, &(0x7f0000002b80), 0x41000004, &(0x7f0000000040))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0)
pread64(r6, &(0x7f0000000080)=""/102356, 0x18fd4, 0xc2a)
ioctl$USBDEVFS_CONNECTINFO(r5, 0x8108551b, &(0x7f0000002a40))
syz_mount_image$fuse(&(0x7f00000190c0), &(0x7f0000019100)='./file0/file0\x00', 0x8010, &(0x7f0000019140)={{}, 0x2c, {'rootmode', 0x3d, 0xa000}, 0x2c, {'user_id', 0x3d, 0xffffffffffffffff}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@allow_other}, {@default_permissions}, {@blksize={'blksize', 0x3d, 0x1c00}}, {@blksize}, {@blksize={'blksize', 0x3d, 0x1000}}], [{@dont_hash}]}}, 0x1, 0x0, &(0x7f0000019280)="d5d4d87977896e4a0517e67541f743054d3292b9cd8f0353198e7d6341ba695b065e2af357ae4817151f8bae430444721b2425e1998833d0b792d974f70f683e38b5401f6b3bd7e53993546fe77ae4d6f2de0d3567cb6408e7e887045087e407c2e5d17249f94860b13559ecc5f83ccdb7b38fc5f3e3c7872761bec3229a3c193e85c18652373ad17088033b690e7ffd07ac497e866b279fa3e0e853aa18db2366ec77199aca03638254ac308806fa33a4342d38d75b8298a50e3a88713344dd1fdc211b4d74d8ef9b0c402351703b977f610404e69c9cc02ca4c49750440e5748363ada31111357")

6.186352231s ago: executing program 2 (id=908):
mkdir(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ddffffff850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000003680)='sched_switch\x00', r3}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x90)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000))
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
sync()

5.891078296s ago: executing program 3 (id=909):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/wireless\x00')
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
read$FUSE(r0, &(0x7f0000004180)={0x2020}, 0x2020)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x2})
read$FUSE(r0, &(0x7f0000002140)={0x2020}, 0x2020)

5.691920643s ago: executing program 3 (id=910):
socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x840, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000100)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r4, &(0x7f0000000540)='asymmetric\x00', &(0x7f0000000580)=@secondary)
keyctl$KEYCTL_MOVE(0x1e, r4, 0xfffffffffffffffd, r4, 0x0)

5.303246975s ago: executing program 2 (id=912):
open$dir(&(0x7f0000000040)='./file0\x00', 0x103840, 0x0)
mount$9p_unix(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1b41052, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x41, 0x0)
mount$9p_rdma(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x841023, 0x0)

5.302803515s ago: executing program 2 (id=913):
socket$inet(0x2, 0x0, 0x0)
prlimit64(0x0, 0x0, 0x0, 0x0)
pipe2$watch_queue(&(0x7f0000000100), 0x80)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x8200, &(0x7f0000000080)={[{@max_dir_size_kb}, {@stripe}, {@grpid}, {@errors_remount}, {@noblock_validity}, {@block_validity}, {@minixdf}, {@noauto_da_alloc}]}, 0x83, 0x5fe, &(0x7f0000001040)="$eJzs3c9rHNcdAPDvzEqqZKuVXYqpTUsFPdhQrB+uqduebF/qg6GG+lBCDhaW5AivbGHJEDuGyJBDAgmEkGsIvuQfyD2YXHMLgSS3nANOCA45JMEbZnbHXla78kbWaiTP5wO7eu/NaN/76ulp3uzo7QRQWZPZUxpxOCIuJRETbdvGo7lxsrXfw+/uXM4eSTQa//s2iaRVVuz/qPV1f/aURIxGxKdnI35f21jv6q3bV+fqjaZXI6bXllemV2/dPr60PHdl4crCtdkT/zx5auZfsydntyXOIq5z5//7p7dee+kfi5/VjydxOi4OvzIfHXFsl8mYjEetENvLhyLiVJbo8nPZa4oQkpLbwdbUWr+PwxFxKCailueaJmLpzVIbBwxUoxbRACoqMf6hoop5QHFuP4jz4N3swZnmCdDG+Iea743EaH5utO9h0nZm1DzfPbAN9Wd1/HznyHvZI3q8DzG0DfX0sn43Iv7YLf4kb9uB/F2cLP400rbvy9IzETHS+lmkW6x/siO/079/vyb+9n7I4j3d+pqVn91i/WXHD0A13T/TOpCvZ7knx79sZljMf6LL/Ge8y7FrK8o+/vWe/xXH+9H8PfK0Yx6WzXkudH/J4c6Cr944906v+tvnf9kjq7+YC+6EB3cjjnTE/3o+mUse93/Spf+zXS71Wcd/Pv/mXK9tZcffuBdxtOv5z5MrWllqem15pSjruD45vbhUX5hpPnet46NPXvygV/1lx5/1f/SIf7P+z8pW+qzjwwv3lnttG39q/OnXI8nFPDXSKnl5bm3txmzESHK+tUtb+YnN21LsU7xGFv+xv3Yf/5vEn3f0ep/xr/z/6sNe2/ru/w1/VXKPGn22oZcs/vkt9v/bfdbxwws3/9xRNFYkNot/7BljAwAAAAAAgKpJ82uwSTr1OJ2mU1PNNbx/iH1p/frq2t8Wr9+8Nh9xLP9/yOG0uNI90cwnWX629f+wRf5ER/7vEXEwIt6tjeX5qcvX6/NlBw8AAAAAAAAAAAAAAAAAAAC7xP7W+v/iPtXf15rr//uydmjArQMGbpA3mAN2N+Mfqisf/1u9gyuwpzn+Q3UZ/1Bdxj9Ul/EP1WX8Q3UZ/1Bdxj9Ul/EPAAAAAM+lg3+5/2USEev/HssfmZHWtuFSWwYMmjEO1VUruwFAaR5f+rf8Hyqnr/n/j60PBxx8c4ASJN0K88lBY/PBf7/rdwIAAAAAAAAAAAAAA3D0sPX/UFVpfFx2E4CSPMP6fx8dAHucj/6H6nKODzxtFf9orw3W/wMAAAAAAAAAAADAjhnPH0k61boF6Hik6dRUxG8j4kAMJ4tL9YWZiPhdRHxRG/5Nlp8tu9EAAAAAAAAAAAAAAAAAAADwnFm9dfvqXL2+cKM98dOGkuc7UdwFdbe0pz0Ryc5XOhYRuyH2wSSG2kqSiPWs53dFw26sxq5oRpo3o+Q/TAAAAAAAAAAAAAAAAAAAUEFta4+7O/L+DrcIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHbek/v/bz2RPOV1yo4RAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANibfgkAAP//4DE4gw==")
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff)
sendmsg$NL80211_CMD_GET_REG(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000380)={0x14, r1, 0x4c466994d56c53cd}, 0x14}}, 0x0)

4.869879532s ago: executing program 2 (id=914):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
socket$inet6(0xa, 0x3, 0x8000000003c)
socket$netlink(0x10, 0x3, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000006c0)={0x4, &(0x7f0000000280)=[{0x7, 0x0, 0x2, 0xfffffffe}, {0x1, 0x4}, {0x3}, {0x6}]})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000001c0)={'wlan1\x00'})
listen(0xffffffffffffffff, 0x0)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x5, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, [@sadb_sa={0x2}]}, 0x20}, 0x1, 0x7}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)

4.437441788s ago: executing program 3 (id=916):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x804810, &(0x7f0000000a40), 0x26, 0x756, &(0x7f00000002c0)="$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")
chdir(&(0x7f0000000240)='./file0\x00')
socket$inet_icmp_raw(0x2, 0x3, 0x1)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000800)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x2040d0, &(0x7f0000000c40)={[{@jqfmt_vfsv0}, {@abort}, {@barrier}, {@barrier}, {@test_dummy_encryption}, {@prjquota}], [{@flag='dirsync'}, {@defcontext={'defcontext', 0x3d, 'system_u'}}, {@hash}, {@smackfsfloor}]}, 0xfb, 0x49f, &(0x7f0000001440)="$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")
keyctl$set_timeout(0xf, 0x0, 0x0)
mkdir(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
getxattr(&(0x7f0000000b00)='./bus\x00', &(0x7f0000000b40)=@known='security.selinux\x00', &(0x7f0000000b80)=""/27, 0x1b)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
fadvise64(r4, 0xf, 0x4, 0x4)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10)
mount$incfs(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000040)='./file0\x00', &(0x7f0000000180), 0x0, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x10000)
ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000a80)={0x1, 0x2, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000c00)={'erspan0\x00', &(0x7f0000000f40)={'sit0\x00', <r6=>0x0, 0x10, 0x1, 0x5, 0x9988, {{0x17, 0x4, 0x0, 0x8, 0x5c, 0x67, 0x0, 0x9, 0x4, 0x0, @private=0xa010101, @broadcast, {[@timestamp={0x44, 0x8, 0xb, 0x0, 0x3, [0x1]}, @timestamp_addr={0x44, 0xc, 0xa9, 0x1, 0x1, [{@multicast1, 0x401}]}, @timestamp_addr={0x44, 0x34, 0x97, 0x1, 0x3, [{@dev={0xac, 0x14, 0x14, 0x1c}, 0x16}, {@rand_addr=0x64010100, 0x6}, {@broadcast, 0xffffffff}, {@loopback, 0x5}, {@multicast1, 0x8001}, {@private=0xa010100, 0x2}]}]}}}}})
bpf$PROG_LOAD(0x5, &(0x7f0000001040)={0x15, 0x2a, &(0x7f0000000d40)=ANY=[@ANYBLOB="180000000700000000000000be000000b7080000000000007b8af8ff00000000b7080000020000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a5000000005d050081000000b7080000000000007b8af8ff00000000b7080000000800007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000a5000000186400000c00000000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000000850000000c000000b700000000000000852000000500000018400000ffffffff000000000000000000009500"/80], &(0x7f0000000bc0)='syzkaller\x00', 0x8a, 0x71, &(0x7f0000000ec0)=""/113, 0x41000, 0x31, '\x00', r6, 0x15, r0, 0x8, &(0x7f0000000cc0)={0xa, 0x3}, 0x8, 0x10, 0x0, 0x0, 0x0, r5, 0x2, &(0x7f0000000fc0)=[r0, r0, r0, r0, r0, r0, r0, r0], &(0x7f0000001000)=[{0x1, 0x4, 0x1}, {0x5, 0x3, 0x7, 0x7}], 0x10, 0xffff8001}, 0x90)
ioctl$FS_IOC_READ_VERITY_METADATA(r0, 0xc0286687, &(0x7f0000000d00)={0x1, 0x0, 0x200001e6, &(0x7f0000000100)=""/230})

3.956906498s ago: executing program 2 (id=921):
syz_read_part_table(0x5fd, &(0x7f0000000d00)="$eJzs2z9olGccB/DvxVzOP9B0cHKpcegkFMXRDFWSU7EQTqUQHLS1iJgpQuCkhwc6tBkUM0jHLlK4ReNkzOBQFIXORRxahAwuBV2kdshbrvc2rfaPR8kNxc9n+T338rvn+/zgWZ/wvzaUarkqar+VDz751/5i9I91O8c6E5MHi6IojiaVHE81Y9++s5hkOK/umh1JRv60z/WvNy9/+fxAtfP4yIv3T9ybH1rbs5Z3k2wZeePRa/1PyaDcGL8/evHSbP1y90e9tbL6cXLz2URj6fD8wuKh6v5T3e8Xkgdlf+9ibMq5NHM+Z3Ny+L+kVl7Jb3fzm+NnHtVbK191nuxa3Vbv3D699+X25St3dydz3Yip1/6XN9+vvqzNX+bPjV2dXmjt23lr67U9zTsPG083/Fz0lJHV9ckFAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGAwbozfH714abZ+uTl+5lG9tfLF9999dPPZRGPp8PzC4qGR/afKvgdlHS7ruTRzPmdzMjOZyWeZ7T9yuvKP+b9sTp7sWt1W79w+vffl5PKVu7vLvqn1GPZvvD7/3NjV6YXWvp23tl7b07zzsPF0Q69vppZPU+2tawM6CwAAAAAAAAAAAAAAAAAAAG+vicmD26c+bBxNKjm+MclPnw91vxflI/ff3+rvKOsPtWRTkusbk/bzA9XO4yMvRk7cm/+x7G+nlnaSLd8sHUveW8u58JfkyqBHow+/BgAA//8hVpWc")
r0 = creat(&(0x7f0000000040)='./file0\x00', 0xbc)
pipe2(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RGETLOCK(r2, &(0x7f0000000040)=ANY=[], 0xffffff6a)
splice(r1, 0x0, r0, 0x0, 0x9aa7, 0x0)

3.510188986s ago: executing program 3 (id=924):
memfd_create(&(0x7f0000000140)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\xea7\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf8\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xcd\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00', 0x0)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000200)=ANY=[@ANYBLOB="12010100000000105801000100000000000109022400010000002009040000010300000009210000000122dc01090589"], 0x0)
mkdir(&(0x7f0000000240)='./bus\x00', 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r1, 0x800c6613, &(0x7f0000000100)=@v1={0x0, @adiantum, 0x0, @desc1})
add_key$fscrypt_v1(&(0x7f0000000040), &(0x7f00000002c0)={'fscrypt:', @desc1}, &(0x7f00000001c0)={0x0, "28d7e4968ab9f26f2da4149683f065714f8a000000008000000127cf0999459cff33a3a9ae50f1af9d51ef5bef3d63520d260804d02200", 0x3c}, 0x65, 0xfffffffffffffffd)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
epoll_create1(0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r3, 0x8924, &(0x7f0000000240)={'macsec0\x00', 0x1})
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_connect$printer(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="12011003000012002505a8a4f0"], 0x0)
syz_usb_control_io(r0, &(0x7f00000000c0)={0x2c, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0}, 0x0)

3.060252493s ago: executing program 2 (id=925):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000580)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581", @ANYRES16], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x1008002, &(0x7f0000000080), 0x1, 0x5de, &(0x7f0000001200)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000200)='./bus\x00', 0x40942, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0xa81, 0x0)
pwritev2(r1, &(0x7f0000000100)=[{&(0x7f00000000c0)='\x00', 0x1}], 0x1, 0xfffffff8, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x0, 0xe, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"/2392], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="00220f000000079b4d3948859f0b6d011fe4b2"], 0x0}, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000"], 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{}, 0x0, &(0x7f00000002c0)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x5, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0xfffffffffffffe69, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x52)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
r2 = socket$netlink(0x10, 0x3, 0x0)
connect$netlink(r2, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000500)={0x2c, 0x0, 0x0, 0x0, &(0x7f00000003c0)={0x20, 0x1, 0x1, "03"}, 0x0})
r3 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x13, r3, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000c40)={&(0x7f0000000580)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x2c, 0x2c, 0x4, [@enum={0x3, 0x1, 0x0, 0xf, 0x4, [{}]}, @array]}, {0x0, [0x0, 0x61]}}, &(0x7f0000001fc0)=""/4128, 0x48, 0x1020, 0x1}, 0x20)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x1218088, &(0x7f00000001c0)=ANY=[@ANYBLOB="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"], 0x6, 0x2c2, &(0x7f00000008c0)="$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")
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x0)
ioctl$FIBMAP(r4, 0x1, &(0x7f0000000080))
openat$null(0xffffffffffffff9c, &(0x7f00000000c0), 0x844000, 0x0)
ioctl$USBDEVFS_CLEAR_HALT(0xffffffffffffffff, 0x80045515, &(0x7f0000000100)={0xe, 0x1})
r5 = syz_open_dev$hiddev(&(0x7f0000000d40), 0x0, 0x0)
ioctl$HIDIOCGUSAGE(r5, 0x4018480c, 0x0)

3.007063168s ago: executing program 4 (id=926):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0xa, 0x4, 0xf1, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001300)={&(0x7f0000000c00)='net_dev_start_xmit\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x55, 0x0, 0xffffffffffffffff, 0x3}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0xe06, 0x1000000, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000}, 0x2c)

2.918534565s ago: executing program 0 (id=927):
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="18000000000000000000000000000000186800000000000090737c73267beee600000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b703000000000000850000000c000000b7000000000000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000060000001800000000000000000000000000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
syz_open_dev$usbmon(0x0, 0x0, 0x0)
prlimit64(0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
ptrace$peek(0x3, r1, &(0x7f0000000000))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@metacopy_on}]})
mknodat$loop(0xffffffffffffffff, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
rename(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000280)='./file0\x00')
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.io_serviced_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r4, 0x0)

2.854337961s ago: executing program 4 (id=928):
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events.local\x00', 0x275a, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000718000/0x18000)=nil, &(0x7f00000000c0)=[@text32={0x20, &(0x7f0000000040)="64111b670fc7360c000f00180f01df320c570f0134df66baf80cb81a869f86ef66bafc0c66edf3f20f86400000000f35", 0x30}], 0x1, 0x58, 0x0, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

2.50850185s ago: executing program 4 (id=929):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000080000000000000000000180100002020702500000000632000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000500)='inet_sock_set_state\x00', r0}, 0x10)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x76dc)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x0, 0x0, @empty}, 0x1c)

2.412500968s ago: executing program 4 (id=930):
syz_mount_image$fuse(0x0, &(0x7f0000000580)='./file0\x00', 0x0, 0x0, 0x8, 0x0, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000000c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f00000001c0)='kfree\x00', r1}, 0x10)
open(&(0x7f00000002c0)='./file0/file0\x00', 0x141840, 0x0)
mount$incfs(&(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, 0x0)
open(&(0x7f0000000200)='./file0/file0\x00', 0x0, 0x0)

2.38880563s ago: executing program 4 (id=931):
prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f0000000180)={0x0, 0x0})
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
faccessat(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000001900)=@bridge_delneigh={0x1b, 0x1e, 0x1, 0x0, 0x0, {0x7}, [@NDA_LLADDR={0xa, 0x5}]}, 0x28}}, 0x0)
r6 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000040), 0x2283, 0x0)
ioctl$FAT_IOCTL_GET_ATTRIBUTES(r6, 0x80047210, &(0x7f0000000080))
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000)='cgroup2\x00', 0x0, 0x0)
r7 = open(&(0x7f0000000200)='./file0\x00', 0x41000, 0x134)
unshare(0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r8 = getpid()
process_vm_readv(r8, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r9 = openat$cgroup_subtree(r7, &(0x7f00000001c0), 0x2, 0x0)
write$cgroup_subtree(r9, &(0x7f0000000100)={[{0x2d, 'pids'}]}, 0x6)

1.934657948s ago: executing program 0 (id=932):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000300)={0x0}}, 0x0)
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
listen(r0, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r1, &(0x7f00000002c0)=[{&(0x7f0000000080)='?', 0x1}], 0x1)
r2 = accept4$unix(r0, 0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f0000001680)=[{{0x0, 0x0, &(0x7f0000003380)=[{&(0x7f0000000140)=""/120, 0x78}, {&(0x7f0000000040)=""/40, 0x28}, {&(0x7f0000003300)=""/107, 0x6b}], 0x3}}], 0x4000000000000a1, 0x2, 0x0)

1.834034577s ago: executing program 0 (id=933):
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000280), 0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x9, 0x0, 0x0, 0x3}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000840)=ANY=[@ANYBLOB="180000000000000000000000000000001811"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
timer_create(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000340)=ANY=[@ANYBLOB="61124c00000000006113500000000000bf2000000000000007000000080000002d0301000000000095000000000000006926000000000000bf67000000000000150600000fff070067060000200000006a0200000ee60000bf050000000000003d350000000000006507000002000000070700004a0000000f75000000000000bf54000000000000070400000400f9ff2d53010000000000840400000000000073720000000000009500000000000000db13d5d8"], 0x0}, 0x90)
mprotect(&(0x7f0000000000/0x2000)=nil, 0x2000, 0xc)

1.347075977s ago: executing program 4 (id=934):
syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0xa1, 0x91, 0xc2, 0x20, 0xb49, 0x64f, 0x284e, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0xba, 0xe4, 0xb2, 0x0, [], [{{0x9, 0x5, 0x3}}]}}]}}]}}, 0x0)

1.1903338s ago: executing program 1 (id=936):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x1, 0x3, 0x261, 0x2}, 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000000c0)={r0, &(0x7f0000000000), &(0x7f0000000080)=@udp}, 0x20)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r0, &(0x7f0000000040), &(0x7f0000000140)=@tcp6, 0x1}, 0x20)

1.190039921s ago: executing program 1 (id=937):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)={0x18, r1, 0x309, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x4}]}, 0x18}}, 0x0)

1.189571441s ago: executing program 1 (id=938):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='sched_process_fork\x00', r1}, 0x10)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

1.173746802s ago: executing program 1 (id=939):
capset(&(0x7f0000000040)={0x20071026}, &(0x7f0000000080)={0x0, 0x0, 0x8})
r0 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000180)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r1, 0xc0145401, &(0x7f0000000140)={0xfdfdffff})

1.155083854s ago: executing program 1 (id=940):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x0, 0x0, 0xfff}, 0x48)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x8, &(0x7f00000019c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x49)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000300)='sys_enter\x00', r0}, 0x10)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2, &(0x7f0000000240)=0x9, 0x4)
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
syz_emit_ethernet(0xd2, &(0x7f0000000d00)={@link_local, @broadcast, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, '\x00', 0x9c, 0x11, 0x0, @remote, @local, {[], {0x0, 0xe22, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "9b92fc056f07d114fe3b41c776904545fb44d8e5dc0e57fdbba583dbc1bf026f", "ba38149afe78e80f44a98eddddbf2b6f237458668eb2461a95cd9a215310bae58679f26df35b2d9306a4a2e1dc85e86f", "6ba2c77aea3ef00f0ac8f0e3066b25082e39f5fb07fb432ca8f22890", {"e79710a9e57f1011496e538064796900", "f9d98c0072c691ce00"}}}}}}}}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
delete_module(0x0, 0x0)

961.83451ms ago: executing program 1 (id=941):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000080007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x5}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000880)={{r0}, &(0x7f0000000800), &(0x7f0000000840)=r1}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r2}, 0x10)
r3 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x1e7d, 0x2c24, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x5, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0)
syz_usb_control_io$hid(r3, 0x0, 0x0)
syz_usb_control_io(r3, &(0x7f00000004c0)={0x2c, &(0x7f0000000240)={0x0, 0x0, 0x7, {0x7, 0x0, "c2817842c4"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)

948.224291ms ago: executing program 3 (id=942):
syz_usb_connect(0x0, 0x5d, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000e22416202104190419ab0102030109024b00010000000009040002000202ff0005a406000105240000000d240f0100000000000000000006241a00000005240100000524"], 0x0)

901.885785ms ago: executing program 0 (id=943):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000900)='./binderfs/binder0\x00', 0x0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="02142000110000000040000000000000030005000000000002000000ffffffff0000000000000000080012000000010000000000000000000600000000000027b20e97a6a9ecae000000ee00000000000000000000000000fc020000000000000000000000000000030006000000000002000000e00000010000000000000000010018"], 0x88}}, 0x0)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)={0x2, 0xf, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @broadcast}}, @sadb_x_policy={0x8, 0x12, 0x0, 0x1, 0x0, 0x0, 0x0, {0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @in6=@empty, @in6=@private2}}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @multicast1}}]}, 0x80}}, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
read$hiddev(0xffffffffffffffff, &(0x7f00000000c0)=""/241, 0xf1)
openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
userfaultfd(0x1)
pselect6(0x40, &(0x7f00000007c0), &(0x7f0000000800)={0x7f}, 0x0, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0)
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000580)='./file0\x00', 0x880, &(0x7f0000000480)=ANY=[], 0xfd, 0x222, &(0x7f00000006c0)="$eJzs2k2LW2UUB/Bz25HWKdNEfKMF8UE3urk0Wblw0UFaEAOKNoIK0lvnRkMyyZAbBiLSzs6tH8G1uHQnSL/AbPwEXbibzSy7EK+0KZ0X4mIQJ9j5/TY5cPKH5+FcLmdx9979YXPQq/JeMY1zWRYr12MnHmbRjHNxPuZ24u277zx47ZPPPv9gvdO58XFKN9dvtdoppcuv//bFdz+/cX966dNfLv96IXabX+7tt//YfWX3yt5ft77pV6lfpdF4mop0ZzyeFneGZdroV4M8pY+GZVGVqT+qysmRfm843tqapWK0sba6NSmrKhWjWRqUszQdp+lkloqvi/4o5Xme1laDf6P708O6jv36udtR1/XzP8al+7H2IBqRvZCyF69nL9/OXt3JruzXdWPZR+U/Yf5nm/mfbeZ/th1a6i5GbH6/3d3uzn/n/fVe9GMYZVyLRvwZjx6TJ+b1zfc7N66lx5qRNu89yd/b7p4/mm9FI5qL8615Ph3NX4jVw/l2NOKlxfn2wvzFeOvNQ/k8GvH7VzGOYWzEo+xB/m4rpfc+7BzLX338PwCAZ02enlq4v+X5P/Xn+RPsh8f2q5W4urLcuxNRzb4dFMNhOVEoFIqnxbLfTJyGg6Ev+yQAAAAAAAAAAACcxGl8TrjsOwIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/w9/BwAA///8j/If")
openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(0xffffffffffffffff, 0xc0185879, 0x0)
openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/fscaps', 0x0, 0x0)

6.32554ms ago: executing program 0 (id=944):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f00000005c0)='kmem_cache_free\x00', r0}, 0x10)
r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x149a82, 0x0)
quotactl$Q_GETQUOTA(0x0, &(0x7f0000000040)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000000), 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r2, 0x0)
write$cgroup_int(r1, &(0x7f0000000040), 0x12)

0s ago: executing program 0 (id=945):
syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x200040, &(0x7f0000000280)=ANY=[@ANYBLOB='nodots,nodots,dots,dots,nodots,errors=continue,time_offset=0xfffffffffffffa93,dots,showexec,nodots,dots,gid=', @ANYRESHEX=0x0, @ANYBLOB="2c646f74732c646f74732c6e66732c6e6f646f74732c646f74732c6e6f646f74732c646f74732c646f74732c6e6f646f74732c646f74732c646f74732c646f74732c636865636b3d72656c617865642c74696d655f6f66667365743d3078303030303030303030303030303437612c646f6e745f686173682c7365636c6162656c2c667373c322e2a50762a3d3fcae283b43ea02757569643d31643067586564382d353166312d62326634"], 0x1, 0x1d3, &(0x7f0000001a00)="$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")
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./bus\x00', 0x0, &(0x7f0000000240), 0x21, 0x4a6, &(0x7f0000000a40)="$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")
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000e80)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

: veth0_to_batadv: link becomes ready
[  125.222533][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  125.251052][ T2492] loop0: detected capacity change from 0 to 2048
[  125.256714][ T2494] loop4: detected capacity change from 0 to 256
[  125.269920][  T343] device bridge_slave_1 left promiscuous mode
[  125.276808][ T2496] loop1: detected capacity change from 0 to 128
[  125.284463][  T343] bridge0: port 2(bridge_slave_1) entered disabled state
[  125.293961][  T343] device bridge_slave_0 left promiscuous mode
[  125.300205][  T343] bridge0: port 1(bridge_slave_0) entered disabled state
[  125.313402][  T343] device veth1_macvtap left promiscuous mode
[  125.319635][  T343] device veth0_vlan left promiscuous mode
[  125.358342][ T2492] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  125.465487][ T2492] EXT4-fs error (device loop0): ext4_xattr_ibody_get:603: inode #15: comm syz.0.623: corrupted in-inode xattr
[  125.496997][ T2492] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2213: inode #15: comm syz.0.623: corrupted in-inode xattr
[  125.509307][ T2492] syz.0.623: attempt to access beyond end of device
[  125.509307][ T2492] loop0: rw=2049, sector=7212754380, nr_sectors = 4 limit=2048
[  125.523651][ T2492] EXT4-fs warning (device loop0): ext4_end_bio:347: I/O error 10 writing to inode 15 starting block 1803188595)
[  125.538753][ T2492] Buffer I/O error on device loop0, logical block 1803188595
[  125.546230][ T2492] syz.0.623: attempt to access beyond end of device
[  125.546230][ T2492] loop0: rw=2049, sector=6806417796, nr_sectors = 4 limit=2048
[  125.560262][ T2492] EXT4-fs warning (device loop0): ext4_end_bio:347: I/O error 10 writing to inode 15 starting block 1701604449)
[  125.572024][ T2492] Buffer I/O error on device loop0, logical block 1701604449
[  125.579644][ T2492] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:477: comm syz.0.623: Invalid block bitmap block 4294967295 in block_group 0
[  125.599189][ T2492] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 117
[  125.611422][ T2492] EXT4-fs (loop0): This should not happen!! Data will be lost
[  125.611422][ T2492] 
[  126.155203][ T2430] EXT4-fs error (device loop0): ext4_readdir:260: inode #2: block 16: comm syz-executor: path /3/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  126.188483][   T10] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2213: inode #15: comm kworker/u4:1: corrupted in-inode xattr
[  126.201624][   T10] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2213: inode #15: comm kworker/u4:1: corrupted in-inode xattr
[  126.214496][ T2430] EXT4-fs (loop0): Inode 15 (ffff888130c06ca8): i_reserved_data_blocks (1) not cleared!
[  126.224721][ T2430] EXT4-fs (loop0): unmounting filesystem.
[  126.241561][ T2504] loop3: detected capacity change from 0 to 40427
[  126.249001][ T2504] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  126.256735][ T2504] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  126.297855][ T2504] F2FS-fs (loop3): Found nat_bits in checkpoint
[  126.355346][ T2504] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  126.369078][ T2504] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  126.375994][ T2504] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  126.795448][   T28] audit: type=1326 audit(1723463186.362:445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2503 comm="syz.3.614" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f85b4d799f9 code=0x0
[  126.941732][ T2523] bridge0: port 1(bridge_slave_0) entered blocking state
[  126.948988][ T2523] bridge0: port 1(bridge_slave_0) entered disabled state
[  126.965920][ T2523] device bridge_slave_0 entered promiscuous mode
[  126.972494][ T2123] F2FS-fs (loop3): invalid namelen(0), ino:0, run fsck to fix.
[  126.972511][ T2123] F2FS-fs (loop3): invalid namelen(0), ino:0, run fsck to fix.
[  126.974745][ T2523] bridge0: port 2(bridge_slave_1) entered blocking state
[  126.994104][ T2123] F2FS-fs (loop3): invalid namelen(0), ino:0, run fsck to fix.
[  126.994118][ T2123] F2FS-fs (loop3): invalid namelen(0), ino:0, run fsck to fix.
[  127.002199][ T2523] bridge0: port 2(bridge_slave_1) entered disabled state
[  127.015847][ T2123] F2FS-fs (loop3): invalid namelen(0), ino:0, run fsck to fix.
[  127.016401][ T2123] F2FS-fs (loop3): invalid namelen(0), ino:0, run fsck to fix.
[  127.028927][ T2123] F2FS-fs (loop3): invalid namelen(0), ino:0, run fsck to fix.
[  127.037416][ T2523] device bridge_slave_1 entered promiscuous mode
[  127.043930][   T28] audit: type=1400 audit(1723463186.652:446): avc:  denied  { create } for  pid=2530 comm="syz.1.622" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  127.057950][ T2533] loop4: detected capacity change from 0 to 256
[  127.076855][   T28] audit: type=1400 audit(1723463186.692:447): avc:  denied  { bind } for  pid=2530 comm="syz.1.622" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  127.082766][ T2533] exFAT-fs (loop4): failed to load upcase table (idx : 0x0001e4a3, chksum : 0x009ea0b8, utbl_chksum : 0x7319d30d)
[  127.126116][ T2537] netlink: 'syz.1.628': attribute type 27 has an invalid length.
[  127.150946][ T2537] bridge0: port 2(bridge_slave_1) entered disabled state
[  127.157945][ T2537] bridge0: port 1(bridge_slave_0) entered disabled state
[  127.210674][ T2524] bridge0: port 1(bridge_slave_0) entered blocking state
[  127.217648][ T2524] bridge0: port 1(bridge_slave_0) entered disabled state
[  127.224756][ T2524] device bridge_slave_0 entered promiscuous mode
[  127.231738][ T2524] bridge0: port 2(bridge_slave_1) entered blocking state
[  127.238775][ T2524] bridge0: port 2(bridge_slave_1) entered disabled state
[  127.430912][ T2524] device bridge_slave_1 entered promiscuous mode
[  127.589721][   T10] device bridge_slave_1 left promiscuous mode
[  127.599501][   T10] bridge0: port 2(bridge_slave_1) entered disabled state
[  127.609372][   T10] device bridge_slave_0 left promiscuous mode
[  127.615410][   T10] bridge0: port 1(bridge_slave_0) entered disabled state
[  127.623575][   T10] device veth1_macvtap left promiscuous mode
[  127.629867][   T10] device veth0_vlan left promiscuous mode
[  127.765737][  T315] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  127.820385][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  127.828136][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  127.844049][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  127.852147][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  127.860108][   T39] bridge0: port 1(bridge_slave_0) entered blocking state
[  127.866944][   T39] bridge0: port 1(bridge_slave_0) entered forwarding state
[  127.874071][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  127.897120][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  127.905245][   T39] bridge0: port 2(bridge_slave_1) entered blocking state
[  127.912108][   T39] bridge0: port 2(bridge_slave_1) entered forwarding state
[  127.919445][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  127.965655][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  127.973331][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  127.981575][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  128.002082][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  128.010115][  T542] bridge0: port 1(bridge_slave_0) entered blocking state
[  128.016960][  T542] bridge0: port 1(bridge_slave_0) entered forwarding state
[  128.024121][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  128.032024][  T315] usb 2-1: Using ep0 maxpacket: 8
[  128.037037][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  128.044899][  T542] bridge0: port 2(bridge_slave_1) entered blocking state
[  128.051683][  T542] bridge0: port 2(bridge_slave_1) entered forwarding state
[  128.286829][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  128.294661][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  128.302615][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  128.310342][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  128.318271][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  128.336207][ T2542] bridge0: port 1(bridge_slave_0) entered blocking state
[  128.343065][ T2542] bridge0: port 1(bridge_slave_0) entered disabled state
[  128.350329][ T2542] device bridge_slave_0 entered promiscuous mode
[  128.357064][ T2542] bridge0: port 2(bridge_slave_1) entered blocking state
[  128.363923][ T2542] bridge0: port 2(bridge_slave_1) entered disabled state
[  128.371370][ T2542] device bridge_slave_1 entered promiscuous mode
[  128.372390][  T315] usb 2-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  128.386412][  T315] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  128.396007][  T315] usb 2-1: config 0 descriptor??
[  128.415450][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  128.425510][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  128.433210][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  128.441119][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  128.464226][ T2523] device veth0_vlan entered promiscuous mode
[  128.470357][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  128.486861][ T2524] device veth0_vlan entered promiscuous mode
[  128.499590][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  128.507700][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  128.514826][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  128.522012][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  128.533247][ T2524] device veth1_macvtap entered promiscuous mode
[  128.548880][ T2523] device veth1_macvtap entered promiscuous mode
[  128.558207][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  128.580577][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  128.588700][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  128.596874][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  128.607086][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  128.615060][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  128.629622][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  128.704026][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  128.719661][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  128.728465][  T542] bridge0: port 1(bridge_slave_0) entered blocking state
[  128.735325][  T542] bridge0: port 1(bridge_slave_0) entered forwarding state
[  128.755186][ T1827] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  128.776391][ T1827] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  128.784529][ T1827] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  128.792998][ T1827] bridge0: port 2(bridge_slave_1) entered blocking state
[  128.799854][ T1827] bridge0: port 2(bridge_slave_1) entered forwarding state
[  128.816525][ T1827] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  128.824438][ T1827] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  128.832565][ T1827] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  128.840464][ T1827] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  128.855422][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  128.863804][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  128.890149][ T2542] device veth0_vlan entered promiscuous mode
[  128.896221][  T772] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  128.903861][  T772] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  128.911923][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  128.919462][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  128.934034][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  128.941996][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  128.950855][ T2542] device veth1_macvtap entered promiscuous mode
[  128.959348][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  128.967594][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  128.975667][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  128.993734][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  129.007887][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  129.022794][ T2566] loop0: detected capacity change from 0 to 2048
[  129.037820][   T39] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  129.057318][ T2566] EXT4-fs error (device loop0): ext4_orphan_get:1422: comm syz.0.644: bad orphan inode 8192
[  129.067581][ T2566] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  129.086201][   T10] device bridge_slave_1 left promiscuous mode
[  129.092185][   T10] bridge0: port 2(bridge_slave_1) entered disabled state
[  129.099653][   T10] device bridge_slave_0 left promiscuous mode
[  129.105731][   T10] bridge0: port 1(bridge_slave_0) entered disabled state
[  129.113687][   T10] device bridge_slave_1 left promiscuous mode
[  129.119953][   T10] bridge0: port 2(bridge_slave_1) entered disabled state
[  129.127459][   T10] device bridge_slave_0 left promiscuous mode
[  129.133426][   T10] bridge0: port 1(bridge_slave_0) entered disabled state
[  129.142391][   T10] device veth1_macvtap left promiscuous mode
[  129.148914][   T10] device veth0_vlan left promiscuous mode
[  129.154800][   T10] device veth1_macvtap left promiscuous mode
[  129.160928][   T10] device veth0_vlan left promiscuous mode
[  129.195352][   T60] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  129.545209][ T2573] loop3: detected capacity change from 0 to 2048
[  129.595418][   T39] usb 3-1: Using ep0 maxpacket: 32
[  129.656051][ T2573] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  129.735565][   T39] usb 3-1: config index 0 descriptor too short (expected 29220, got 36)
[  129.751424][   T39] usb 3-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  129.760221][   T39] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 81
[  129.782420][   T39] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  129.792035][   T39] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  129.801544][   T39] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  129.811061][   T39] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  129.820659][   T60] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  129.831375][   T39] usb 3-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  129.885487][   T60] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  129.895184][   T60] usb 5-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice= 0.00
[  129.896340][ T2523] EXT4-fs (loop0): unmounting filesystem.
[  129.904275][   T39] usb 3-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  129.910548][ T2542] EXT4-fs (loop3): unmounting filesystem.
[  129.918929][   T60] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  129.932171][   T39] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  129.959603][   T39] usb 3-1: config 0 descriptor??
[  129.964754][   T60] usb 5-1: config 0 descriptor??
[  130.216590][   T39] usblp 3-1:0.0: usblp0: USB Bidirectional printer dev 10 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  130.228498][   T39] usb 3-1: USB disconnect, device number 10
[  130.234729][   T39] usblp0: removed
[  130.429341][ T2560] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  130.438240][ T2560] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  130.444250][ T2537] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  130.447286][ T2560] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  130.461507][ T2560] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  130.479823][ T2537] device veth0_vlan left promiscuous mode
[  130.479987][ T2560] loop4: detected capacity change from 0 to 512
[  130.486015][ T2537] device veth0_vlan entered promiscuous mode
[  130.498921][ T2537] device veth1_macvtap left promiscuous mode
[  130.502950][ T2560] EXT4-fs error (device loop4): ext4_find_inline_data_nolock:164: inode #12: comm syz.4.633: inline data xattr refers to an external xattr inode
[  130.505891][ T2537] device veth1_macvtap entered promiscuous mode
[  130.521321][ T2560] EXT4-fs (loop4): Remounting filesystem read-only
[  130.532611][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  130.539831][ T2560] EXT4-fs error (device loop4): ext4_orphan_get:1401: comm syz.4.633: couldn't read orphan inode 12 (err -117)
[  130.540519][  T315] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  130.551761][ T2560] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  130.561686][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  130.579419][  T315] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to send software reset: ffffffb9
[  130.590097][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  130.598128][  T542] bridge0: port 1(bridge_slave_0) entered blocking state
[  130.604948][  T542] bridge0: port 1(bridge_slave_0) entered forwarding state
[  130.612250][  T315] asix: probe of 2-1:0.0 failed with error -71
[  130.619930][  T315] usb 2-1: USB disconnect, device number 13
[  130.626224][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  130.634260][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  130.642716][  T542] bridge0: port 2(bridge_slave_1) entered blocking state
[  130.649580][  T542] bridge0: port 2(bridge_slave_1) entered forwarding state
[  130.656890][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  130.664937][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[  130.665577][   T60] usbhid 5-1:0.0: can't add hid device: -71
[  130.672900][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  130.678689][   T60] usbhid: probe of 5-1:0.0 failed with error -71
[  130.686356][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[  130.696376][   T60] usb 5-1: USB disconnect, device number 10
[  130.700101][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  130.713446][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  130.721256][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  130.729157][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  130.736958][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  130.744769][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  130.752940][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  130.760976][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  130.768969][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  130.776989][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  130.784899][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  130.792828][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  130.800664][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  130.808550][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  130.816769][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  130.824811][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  130.832765][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  130.840482][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  130.847691][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  130.854826][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  130.862740][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  130.870623][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  130.878135][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  131.133268][ T2276] EXT4-fs (loop4): unmounting filesystem.
[  131.176622][ T2588] loop1: detected capacity change from 0 to 40427
[  131.180760][ T2592] loop0: detected capacity change from 0 to 2048
[  131.192143][ T2588] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  131.199725][ T2588] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  131.214663][ T2588] F2FS-fs (loop1): Found nat_bits in checkpoint
[  131.233741][ T2592] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  131.248558][   T60] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  131.256111][ T2588] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  131.276245][ T2602] netem: change failed
[  131.299197][ T2588] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  131.306134][ T2588] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  131.749221][   T28] audit: type=1326 audit(1723463191.362:448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2587 comm="syz.1.635" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fdc9ef799f9 code=0x0
[  131.795395][   T60] usb 4-1: Using ep0 maxpacket: 32
[  131.954445][   T60] usb 4-1: config index 0 descriptor too short (expected 29220, got 36)
[  131.954970][ T2482] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  131.963213][ T2482] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  131.963303][   T60] usb 4-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  131.970636][ T2482] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  131.978540][   T60] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 81
[  131.986868][ T2482] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  131.994006][   T60] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  132.002674][ T2482] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  132.010286][   T60] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  132.033437][ T2482] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  132.066585][   T60] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  132.083818][   T60] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  132.111612][   T60] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  132.124767][ T2482] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  132.137519][ T2523] EXT4-fs (loop0): unmounting filesystem.
[  132.172191][   T60] usb 4-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  132.247094][   T60] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  132.247862][  T315] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  132.264868][   T60] usb 4-1: config 0 descriptor??
[  132.301564][ T2621] loop0: detected capacity change from 0 to 1024
[  132.356524][ T2621] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  132.465869][ T2626] bridge0: port 1(bridge_slave_0) entered blocking state
[  132.472749][ T2626] bridge0: port 1(bridge_slave_0) entered disabled state
[  132.480412][ T2626] device bridge_slave_0 entered promiscuous mode
[  132.532355][   T60] usblp 4-1:0.0: usblp0: USB Bidirectional printer dev 14 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  132.776250][  T315] usb 5-1: Using ep0 maxpacket: 16
[  132.784894][ T2626] bridge0: port 2(bridge_slave_1) entered blocking state
[  132.791795][ T2626] bridge0: port 2(bridge_slave_1) entered disabled state
[  132.793971][   T60] usb 4-1: USB disconnect, device number 14
[  132.800684][ T2626] device bridge_slave_1 entered promiscuous mode
[  132.812798][   T60] usblp0: removed
[  132.852509][ T2626] bridge0: port 2(bridge_slave_1) entered blocking state
[  132.859358][ T2626] bridge0: port 2(bridge_slave_1) entered forwarding state
[  132.866459][ T2626] bridge0: port 1(bridge_slave_0) entered blocking state
[  132.873229][ T2626] bridge0: port 1(bridge_slave_0) entered forwarding state
[  132.892766][ T1827] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  132.906029][ T1827] bridge0: port 1(bridge_slave_0) entered disabled state
[  132.916992][ T1827] bridge0: port 2(bridge_slave_1) entered disabled state
[  132.933888][ T1827] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  132.941753][  T315] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  132.952536][ T1827] bridge0: port 1(bridge_slave_0) entered blocking state
[  132.959373][ T1827] bridge0: port 1(bridge_slave_0) entered forwarding state
[  132.966487][  T315] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8
[  132.976050][ T1827] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  132.983768][  T315] usb 5-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22
[  132.997150][ T1827] bridge0: port 2(bridge_slave_1) entered blocking state
[  133.003974][ T1827] bridge0: port 2(bridge_slave_1) entered forwarding state
[  133.011126][  T315] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  133.020087][ T1827] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  133.027695][  T315] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  133.035720][ T1827] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  133.052494][  T539] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  133.060454][ T2604] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  133.060653][  T539] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  133.075766][  T315] cdc_acm 5-1:1.0: Control and data interfaces are not separated!
[  133.088714][  T539] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  133.096367][  T539] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  133.104101][ T2626] device veth0_vlan entered promiscuous mode
[  133.110457][  T539] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  133.117745][  T539] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  133.130039][ T2626] device veth1_macvtap entered promiscuous mode
[  133.136642][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  133.144956][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  133.153060][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  133.169306][  T772] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  133.177816][ T2523] EXT4-fs (loop0): unmounting filesystem.
[  133.179903][  T772] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  133.190232][ T2633] loop2: detected capacity change from 0 to 128
[  133.197590][  T772] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  133.205498][   T28] audit: type=1400 audit(1723463192.812:449): avc:  denied  { remount } for  pid=2632 comm="syz.2.653" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[  133.225499][  T772] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  133.228931][ T2636] loop2: detected capacity change from 0 to 16
[  133.248806][ T2636] erofs: (device loop2): erofs_read_inode: unsupported datalayout 5 of nid 36
[  133.285997][  T315] cdc_acm 5-1:1.0: ttyACM0: USB ACM device
[  133.293512][  T315] usb 5-1: USB disconnect, device number 11
[  133.323042][ T2647] syz.2.657[2647] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  133.323111][ T2647] syz.2.657[2647] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  133.331911][ T2649] loop1: detected capacity change from 0 to 128
[  133.351568][  T758] device bridge_slave_1 left promiscuous mode
[  133.358022][  T758] bridge0: port 2(bridge_slave_1) entered disabled state
[  133.365698][ T2649] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  133.374176][  T758] device bridge_slave_0 left promiscuous mode
[  133.374239][  T758] bridge0: port 1(bridge_slave_0) entered disabled state
[  133.387984][  T758] device veth1_macvtap left promiscuous mode
[  133.388355][ T2649] ext4 filesystem being mounted at /3/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[  133.393821][  T758] device veth0_vlan left promiscuous mode
[  133.438775][ T2649] syz.1.658 (pid 2649) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  133.595672][  T539] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  133.640138][ T2653] loop3: detected capacity change from 0 to 40427
[  133.647493][ T2653] F2FS-fs (loop3): invalid crc value
[  133.654111][ T2653] F2FS-fs (loop3): Found nat_bits in checkpoint
[  133.678713][ T2653] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  133.793792][   T10] kworker/u4:1: attempt to access beyond end of device
[  133.793792][   T10] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  133.829381][   T28] audit: type=1400 audit(1723463193.442:450): avc:  denied  { bind } for  pid=2662 comm="syz.4.661" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  133.848641][   T28] audit: type=1400 audit(1723463193.442:451): avc:  denied  { node_bind } for  pid=2662 comm="syz.4.661" saddr=224.0.0.1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1
[  134.236099][  T539] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  134.263889][  T539] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  134.274281][  T539] usb 1-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice= 0.00
[  134.283204][   T28] audit: type=1400 audit(1723463193.892:452): avc:  denied  { getopt } for  pid=2668 comm="syz.3.663" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  134.302305][  T539] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  134.326202][  T539] usb 1-1: config 0 descriptor??
[  134.331771][ T2626] EXT4-fs (loop1): unmounting filesystem.
[  134.351831][   T28] audit: type=1400 audit(1723463193.962:453): avc:  denied  { write } for  pid=2678 comm="syz.1.666" name="ppp" dev="devtmpfs" ino=138 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  134.374414][ T2675] loop3: detected capacity change from 0 to 1024
[  134.382177][ T2675] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  134.396366][ T2675] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  134.410522][   T28] audit: type=1400 audit(1723463194.022:454): avc:  denied  { setattr } for  pid=2674 comm="syz.3.665" name="tun" dev="devtmpfs" ino=137 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tun_tap_device_t tclass=chr_file permissive=1
[  134.451998][ T2681] cgroup: Unknown subsys name 'ÿÿÿÿÿÿÿÿ'
[  134.452002][   T28] audit: type=1400 audit(1723463194.062:455): avc:  denied  { remount } for  pid=2680 comm="syz.2.668" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[  134.478735][ T2681] loop2: detected capacity change from 0 to 16
[  134.484876][   T28] audit: type=1400 audit(1723463194.092:456): avc:  denied  { mounton } for  pid=2680 comm="syz.2.668" path="/9/file0" dev="cgroup" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[  134.507684][ T2681] erofs: (device loop2): mounted with root inode @ nid 36.
[  134.507743][ T2542] EXT4-fs (loop3): unmounting filesystem.
[  134.598702][ T2689] loop2: detected capacity change from 0 to 512
[  134.609190][ T2689] EXT4-fs: Ignoring removed oldalloc option
[  134.630486][ T2689] EXT4-fs error (device loop2): ext4_xattr_inode_iget:400: comm syz.2.670: Parent and EA inode have the same ino 15
[  134.655926][ T2689] EXT4-fs error (device loop2): ext4_xattr_inode_iget:400: comm syz.2.670: Parent and EA inode have the same ino 15
[  134.668854][ T2689] EXT4-fs (loop2): 1 orphan inode deleted
[  134.674420][ T2689] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  134.693383][ T2524] EXT4-fs (loop2): unmounting filesystem.
[  134.808553][ T2638] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  134.816998][ T2638] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  134.827392][ T2638] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  134.838299][ T2638] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  134.850663][ T2638] loop0: detected capacity change from 0 to 512
[  134.872316][ T2638] EXT4-fs error (device loop0): ext4_find_inline_data_nolock:164: inode #12: comm syz.0.652: inline data xattr refers to an external xattr inode
[  134.876276][ T2699] loop2: detected capacity change from 0 to 1024
[  134.894626][ T2699] ext4: Unknown parameter 'nouser_xattr'
[  134.903840][ T2707] loop3: detected capacity change from 0 to 512
[  134.910665][ T2638] EXT4-fs (loop0): Remounting filesystem read-only
[  134.915677][ T2707] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  134.917314][ T2638] EXT4-fs error (device loop0): ext4_orphan_get:1401: comm syz.0.652: couldn't read orphan inode 12 (err -117)
[  134.928213][ T2707] EXT4-fs (loop3): 1 truncate cleaned up
[  134.943937][ T2707] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  134.944096][ T2638] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  134.962315][  T935] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  135.065518][  T539] usbhid 1-1:0.0: can't add hid device: -71
[  135.071622][  T539] usbhid: probe of 1-1:0.0 failed with error -71
[  135.078744][  T539] usb 1-1: USB disconnect, device number 12
[  135.195434][   T28] audit: type=1400 audit(1723463194.772:457): avc:  denied  { create } for  pid=2704 comm="syz.3.677" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1
[  135.215284][ T2711] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2213: inode #15: comm syz.3.677: corrupted in-inode xattr
[  135.227763][ T2711] EXT4-fs warning (device loop3): ext4_xattr_set_entry:1745: inode #15: comm syz.3.677: unable to update i_inline_off
[  135.240530][ T2711] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2213: inode #15: comm syz.3.677: corrupted in-inode xattr
[  135.306543][ T2716] syz.1.678[2716] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  135.306612][ T2716] syz.1.678[2716] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  135.314068][ T2714] loop2: detected capacity change from 0 to 2048
[  135.355552][  T935] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  135.375901][ T2718] loop2: detected capacity change from 0 to 128
[  135.389594][ T2718] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  135.398100][ T2718] ext4 filesystem being mounted at /15/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[  135.520833][ T2524] EXT4-fs (loop2): unmounting filesystem.
[  135.534581][ T2724] syz.2.681[2724] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  135.534627][ T2724] syz.2.681[2724] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  135.557233][ T2523] EXT4-fs (loop0): unmounting filesystem.
[  135.835251][ T2542] EXT4-fs (loop3): unmounting filesystem.
[  135.929243][ T2728] loop0: detected capacity change from 0 to 2048
[  135.943632][ T2730] syz.4.683[2730] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  135.943704][ T2730] syz.4.683[2730] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  135.957379][ T2730] loop4: detected capacity change from 0 to 512
[  135.974712][ T2730] EXT4-fs: Ignoring removed nomblk_io_submit option
[  135.979421][ T2728]  loop0: p1 p2 p3
[  135.989895][ T2730] EXT4-fs (loop4): orphan cleanup on readonly fs
[  135.996204][ T2730] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[  136.256569][ T2730] EXT4-fs (loop4): 1 truncate cleaned up
[  136.307691][ T2730] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  136.338049][ T2276] EXT4-fs (loop4): unmounting filesystem.
[  136.362245][ T2741] loop4: detected capacity change from 0 to 256
[  136.373615][ T2742] netlink: 4 bytes leftover after parsing attributes in process `syz.0.686'.
[  136.396664][ T2742] bridge0: port 2(bridge_slave_1) entered disabled state
[  136.403668][ T2742] bridge0: port 1(bridge_slave_0) entered disabled state
[  136.405460][ T2741] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d)
[  136.428287][ T2742] device bridge_slave_1 left promiscuous mode
[  136.435130][ T2742] bridge0: port 2(bridge_slave_1) entered disabled state
[  136.442710][ T2742] device bridge_slave_0 left promiscuous mode
[  136.449511][ T2742] bridge0: port 1(bridge_slave_0) entered disabled state
[  136.466896][ T2747] syz.1.699[2747] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  136.466963][ T2747] syz.1.699[2747] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  136.480679][ T2749] netlink: 12 bytes leftover after parsing attributes in process `syz.0.686'.
[  136.584145][ T2748] loop4: detected capacity change from 0 to 40427
[  136.590794][ T2748] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  136.598390][ T2744] bridge0: port 1(bridge_slave_0) entered disabled state
[  136.598400][ T2748] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  136.615007][ T2750] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=31 sclass=netlink_route_socket pid=2750 comm=syz.0.686
[  136.632842][ T2748] F2FS-fs (loop4): Found nat_bits in checkpoint
[  136.691180][ T2748] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  136.746781][ T2748] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  136.753652][ T2748] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  136.963390][ T2759] loop2: detected capacity change from 0 to 512
[  137.012902][ T2762] loop0: detected capacity change from 0 to 512
[  137.039780][ T2762] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  137.052858][ T2759] EXT4-fs error (device loop2): ext4_orphan_get:1396: inode #15: comm syz.2.689: casefold flag without casefold feature
[  137.074728][ T2759] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: inode #2: comm syz.2.689: missing EA_INODE flag
[  137.116104][ T2759] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.689: error while reading EA inode 2 err=-117
[  137.132950][ T2759] EXT4-fs (loop2): 1 orphan inode deleted
[  137.296095][   T28] kauditd_printk_skb: 2 callbacks suppressed
[  137.296121][   T28] audit: type=1326 audit(1723463197.900:460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2745 comm="syz.4.688" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa2059799f9 code=0x0
[  137.318900][ T2759] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  137.366568][ T2524] EXT4-fs (loop2): unmounting filesystem.
[  137.373814][ T2762] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  137.392546][ T2762] EXT4-fs (loop0): 1 truncate cleaned up
[  137.397638][ T2779] loop2: detected capacity change from 0 to 512
[  137.419769][ T2762] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  137.435426][   T28] audit: type=1400 audit(1723463198.050:461): avc:  denied  { setopt } for  pid=2780 comm="syz.3.697" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  137.503307][   T28] audit: type=1400 audit(1723463198.080:462): avc:  denied  { bind } for  pid=2780 comm="syz.3.697" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  137.537488][   T28] audit: type=1400 audit(1723463198.080:463): avc:  denied  { read } for  pid=2780 comm="syz.3.697" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1
[  137.557798][ T2779] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  137.567097][ T2779] ext4 filesystem being mounted at /19/file0 supports timestamps until 2038 (0x7fffffff)
[  137.586461][ T2524] EXT4-fs (loop2): unmounting filesystem.
[  137.815268][   T28] audit: type=1326 audit(1723463198.360:464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=2785 comm="syz.4.698" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa2059799f9 code=0x0
[  137.908583][ T2793] netlink: 'syz.2.701': attribute type 27 has an invalid length.
[  137.909722][  T539] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  137.923663][ T2795] loop3: detected capacity change from 0 to 512
[  137.932040][ T2523] EXT4-fs (loop0): unmounting filesystem.
[  137.933853][ T2795] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  137.958034][ T2795] EXT4-fs (loop3): orphan cleanup on readonly fs
[  137.964309][ T2795] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:511: comm syz.3.702: Block bitmap for bg 0 marked uninitialized
[  137.977378][ T2795] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6171: Corrupt filesystem
[  137.986402][ T2795] EXT4-fs (loop3): 1 orphan inode deleted
[  137.991955][ T2795] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  137.992004][ T2793] bridge0: port 2(bridge_slave_1) entered disabled state
[  138.028803][ T2542] EXT4-fs (loop3): unmounting filesystem.
[  138.059086][ T2804] loop3: detected capacity change from 0 to 128
[  138.106199][  T935] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  138.175391][  T539] usb 2-1: Using ep0 maxpacket: 8
[  138.225384][  T772] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  138.435768][  T539] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  138.446552][  T539] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  138.456040][  T539] usb 2-1: New USB device found, idVendor=0458, idProduct=4018, bcdDevice= 0.00
[  138.464987][  T539] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  138.465344][  T772] usb 3-1: Using ep0 maxpacket: 8
[  138.484018][  T539] usb 2-1: config 0 descriptor??
[  138.595378][  T772] usb 3-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  138.604294][  T772] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  138.612845][  T772] usb 3-1: config 0 descriptor??
[  138.819074][ T2812] loop0: detected capacity change from 0 to 256
[  138.825980][ T2812] FAT-fs (loop0): Unrecognized mount option "hash" or missing value
[  138.956052][ T2815] bpf_get_probe_write_proto: 4 callbacks suppressed
[  138.956070][ T2815] syz.0.706[2815] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  138.962685][ T2815] syz.0.706[2815] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  138.974448][ T2815] netlink: 12 bytes leftover after parsing attributes in process `syz.0.706'.
[  139.025395][  T539] usbhid 2-1:0.0: can't add hid device: -71
[  139.031198][  T539] usbhid: probe of 2-1:0.0 failed with error -71
[  139.038319][  T539] usb 2-1: USB disconnect, device number 14
[  139.055594][   T28] audit: type=1400 audit(1723463199.670:465): avc:  denied  { create } for  pid=2817 comm="syz.3.718" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  139.075529][   T28] audit: type=1400 audit(1723463199.670:466): avc:  denied  { setopt } for  pid=2817 comm="syz.3.718" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  139.095696][   T28] audit: type=1400 audit(1723463199.670:467): avc:  denied  { read } for  pid=2817 comm="syz.3.718" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  139.113604][ T2820] xt_SECMARK: invalid security context 'system_u:object_r:devicekit_exec_t:s0'
[  139.115350][   T28] audit: type=1400 audit(1723463199.720:468): avc:  denied  { write } for  pid=2817 comm="syz.3.718" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1
[  139.135584][ T2818] syz.4.708[2818] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  139.143588][ T2818] syz.4.708[2818] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  139.145351][   T28] audit: type=1400 audit(1723463199.720:469): avc:  denied  { module_load } for  pid=2817 comm="syz.3.718" path="/17/bus" dev="tmpfs" ino=109 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=system permissive=1
[  139.523180][ T2827] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  139.531769][ T2827] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  139.966858][ T2833] loop4: detected capacity change from 0 to 128
[  139.972197][ T2836] loop0: detected capacity change from 0 to 512
[  140.000949][ T2833] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  140.009684][ T2836] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -13
[  140.017787][ T2833] ext4 filesystem being mounted at /34/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[  140.036132][ T2836] EXT4-fs error (device loop0): ext4_clear_blocks:883: inode #13: comm syz.0.711: attempt to clear invalid blocks 2 len 1
[  140.062307][ T2836] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  140.078267][ T2836] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.711: invalid indirect mapped block 1819239214 (level 0)
[  140.092440][ T2836] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.711: invalid indirect mapped block 1819239214 (level 1)
[  140.106318][ T2833] fscrypt: AES-128-CTS-CBC using implementation "cts-cbc-aes-aesni"
[  140.107167][ T2836] EXT4-fs (loop0): 1 truncate cleaned up
[  140.115002][ T2833] fscrypt: AES-128-CBC-ESSIV using implementation "essiv(cbc-aes-aesni,sha256-avx2)"
[  140.119911][ T2836] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  140.203241][ T2844] loop3: detected capacity change from 0 to 512
[  140.213482][ T2844] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  140.285089][ T2844] EXT4-fs (loop3): orphan cleanup on readonly fs
[  140.294503][ T2844] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.712: bg 0: block 248: padding at end of block bitmap is not set
[  140.310345][ T2844] EXT4-fs error (device loop3): ext4_acquire_dquot:6764: comm syz.3.712: Failed to acquire dquot type 1
[  140.322215][ T2844] EXT4-fs (loop3): 1 truncate cleaned up
[  140.328293][ T2844] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  140.343805][ T2523] EXT4-fs error (device loop0): htree_dirblock_to_tree:1111: inode #2: block 13: comm syz-executor: bad entry in directory: rec_len % 4 != 0 - offset=108, inode=4294901777, rec_len=65535, size=1024 fake=0
[  140.363778][ T2843] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  140.372077][ T2843] EXT4-fs error (device loop3): __ext4_remount:6412: comm syz.3.712: Abort forced by user
[  140.378653][ T2523] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2213: inode #15: comm syz-executor: corrupted in-inode xattr
[  140.394522][ T2843] EXT4-fs (loop3): re-mounted. Quota mode: writeback.
[  140.402634][ T2523] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2213: inode #15: comm syz-executor: corrupted in-inode xattr
[  140.467526][ T2523] EXT4-fs (loop0): unmounting filesystem.
[  140.674055][ T2793] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  140.706055][ T2793] device veth0_vlan left promiscuous mode
[  140.711927][ T2793] device veth0_vlan entered promiscuous mode
[  140.719086][ T2793] device veth1_macvtap left promiscuous mode
[  140.725746][ T2793] device veth1_macvtap entered promiscuous mode
[  140.795368][  T772] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  140.875341][  T772] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to send software reset: ffffffb9
[  140.876244][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  140.885417][  T772] asix: probe of 3-1:0.0 failed with error -71
[  140.896953][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  140.904775][  T772] usb 3-1: USB disconnect, device number 11
[  140.905763][ T2542] EXT4-fs (loop3): unmounting filesystem.
[  140.938532][ T2276] EXT4-fs (loop4): unmounting filesystem.
[  140.944378][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  140.971778][  T315] bridge0: port 1(bridge_slave_0) entered blocking state
[  140.978637][  T315] bridge0: port 1(bridge_slave_0) entered forwarding state
[  140.987470][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  140.995630][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  141.003626][  T315] bridge0: port 2(bridge_slave_1) entered blocking state
[  141.010470][  T315] bridge0: port 2(bridge_slave_1) entered forwarding state
[  141.018049][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  141.026578][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[  141.034479][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  141.042690][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[  141.050737][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  141.058786][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  141.066795][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  141.074729][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  141.082783][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  141.090812][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  141.098995][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  141.107223][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  141.115485][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  141.123611][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  141.131833][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  141.139790][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  141.147722][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  141.155662][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  141.163815][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  141.172078][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  141.180039][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  141.187809][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  141.195098][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  141.202506][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  141.210664][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  141.218728][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  141.228600][ T2853] bridge0: port 1(bridge_slave_0) entered blocking state
[  141.235651][ T2853] bridge0: port 1(bridge_slave_0) entered disabled state
[  141.242953][ T2853] device bridge_slave_0 entered promiscuous mode
[  141.249933][ T2853] bridge0: port 2(bridge_slave_1) entered blocking state
[  141.256981][ T2853] bridge0: port 2(bridge_slave_1) entered disabled state
[  141.264212][ T2853] device bridge_slave_1 entered promiscuous mode
[  141.314777][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  141.850428][ T2872] loop3: detected capacity change from 0 to 256
[  142.203713][ T2874] loop3: detected capacity change from 0 to 2048
[  142.251705][ T1827] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  142.259714][ T1827] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  142.274038][ T1827] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  142.300670][ T2874] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  142.338527][ T1827] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  142.472019][ T2874] EXT4-fs error (device loop3): ext4_xattr_ibody_get:603: inode #15: comm syz.3.725: corrupted in-inode xattr
[  142.485498][   T28] kauditd_printk_skb: 7 callbacks suppressed
[  142.485550][   T28] audit: type=1400 audit(1723463203.030:475): avc:  denied  { create } for  pid=2877 comm="syz.2.726" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1
[  142.515013][ T2874] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2213: inode #15: comm syz.3.725: corrupted in-inode xattr
[  142.528229][ T2874] syz.3.725: attempt to access beyond end of device
[  142.528229][ T2874] loop3: rw=2049, sector=7212754380, nr_sectors = 4 limit=2048
[  142.531291][  T542] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  142.542593][ T2874] EXT4-fs warning (device loop3): ext4_end_bio:347: I/O error 10 writing to inode 15 starting block 1803188595)
[  142.561380][ T2874] Buffer I/O error on device loop3, logical block 1803188595
[  142.562510][ T1827] bridge0: port 1(bridge_slave_0) entered blocking state
[  142.568845][ T2874] syz.3.725: attempt to access beyond end of device
[  142.568845][ T2874] loop3: rw=2049, sector=6806417796, nr_sectors = 4 limit=2048
[  142.575423][ T1827] bridge0: port 1(bridge_slave_0) entered forwarding state
[  142.575651][ T1827] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  142.589566][ T2874] EXT4-fs warning (device loop3): ext4_end_bio:347: I/O error 10 writing to inode 15 starting block 1701604449)
[  142.596599][ T1827] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  142.604408][ T2874] Buffer I/O error on device loop3, logical block 1701604449
[  142.615979][ T1827] bridge0: port 2(bridge_slave_1) entered blocking state
[  142.623793][  T772] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  142.630809][ T1827] bridge0: port 2(bridge_slave_1) entered forwarding state
[  142.631400][ T1827] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  142.645553][ T2874] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:477: comm syz.3.725: Invalid block bitmap block 4294967295 in block_group 0
[  142.673674][ T2874] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 117
[  142.685889][ T2874] EXT4-fs (loop3): This should not happen!! Data will be lost
[  142.685889][ T2874] 
[  142.685976][  T343] device veth1_macvtap left promiscuous mode
[  142.701873][  T343] device veth0_vlan left promiscuous mode
[  142.736955][  T539] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  142.744799][  T539] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  142.764256][ T2853] device veth0_vlan entered promiscuous mode
[  142.770881][  T539] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  142.778805][  T539] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  142.786761][  T539] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  142.794749][  T539] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  142.802785][  T539] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  142.810591][  T539] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  142.818684][  T539] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  142.825733][  T542] usb 5-1: Using ep0 maxpacket: 8
[  142.830808][  T539] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  142.841973][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  142.850095][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  142.858826][ T2853] device veth1_macvtap entered promiscuous mode
[  142.868497][  T539] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  142.876136][  T539] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  142.884039][  T539] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  142.895449][ T1827] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  142.903368][ T1827] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  142.905446][  T772] usb 2-1: Using ep0 maxpacket: 8
[  142.965397][  T542] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  142.976717][  T542] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  142.983790][ T2888] netlink: 8 bytes leftover after parsing attributes in process `syz.0.717'.
[  142.986560][  T542] usb 5-1: New USB device found, idVendor=0458, idProduct=4018, bcdDevice= 0.00
[  143.003838][  T542] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  143.012668][  T542] usb 5-1: config 0 descriptor??
[  143.035605][  T772] usb 2-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  143.044099][  T772] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  143.054030][  T772] usb 2-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  143.062886][  T772] usb 2-1: config 1 has no interface number 1
[  143.068820][  T772] usb 2-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  143.222517][ T2542] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 16: comm syz-executor: path /21/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  143.249936][  T343] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2213: inode #15: comm kworker/u4:4: corrupted in-inode xattr
[  143.255431][  T772] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  143.262151][  T343] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2213: inode #15: comm kworker/u4:4: corrupted in-inode xattr
[  143.270794][  T615] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  143.290186][  T772] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  143.290379][ T2542] EXT4-fs (loop3): Inode 15 (ffff888130dfbee8): i_reserved_data_blocks (1) not cleared!
[  143.298056][  T772] usb 2-1: Product: syz
[  143.298072][  T772] usb 2-1: Manufacturer: syz
[  143.298084][  T772] usb 2-1: SerialNumber: syz
[  143.322447][ T2542] EXT4-fs (loop3): unmounting filesystem.
[  143.523467][ T2902] bridge0: port 1(bridge_slave_0) entered blocking state
[  143.530379][ T2902] bridge0: port 1(bridge_slave_0) entered disabled state
[  143.537921][ T2902] device bridge_slave_0 entered promiscuous mode
[  143.544731][ T2902] bridge0: port 2(bridge_slave_1) entered blocking state
[  143.551981][ T2902] bridge0: port 2(bridge_slave_1) entered disabled state
[  143.559937][ T2902] device bridge_slave_1 entered promiscuous mode
[  143.565368][  T615] usb 1-1: device descriptor read/64, error -71
[  143.575382][  T542] usbhid 5-1:0.0: can't add hid device: -71
[  143.581227][  T542] usbhid: probe of 5-1:0.0 failed with error -71
[  143.589319][  T542] usb 5-1: USB disconnect, device number 12
[  143.615436][  T772] usb 2-1: 2:1 : no or invalid class specific endpoint descriptor
[  143.633465][  T772] usb 2-1: 2:1 : format type 0 is detected, processed as PCM
[  143.646496][  T772] usb 2-1: 2:1 : invalid UAC_FORMAT_TYPE desc
[  143.659783][  T772] usb 2-1: 2:1 : invalid channels 0
[  143.685120][  T772] usb 2-1: USB disconnect, device number 15
[  143.718200][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  143.725964][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  143.749986][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  143.758178][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  143.766321][  T407] bridge0: port 1(bridge_slave_0) entered blocking state
[  143.773170][  T407] bridge0: port 1(bridge_slave_0) entered forwarding state
[  143.780742][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  143.791829][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  143.800136][  T407] bridge0: port 2(bridge_slave_1) entered blocking state
[  143.806986][  T407] bridge0: port 2(bridge_slave_1) entered forwarding state
[  143.825450][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  143.832869][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  143.841067][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  143.849059][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  143.857027][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  143.868550][  T343] device bridge_slave_1 left promiscuous mode
[  143.874593][  T343] bridge0: port 2(bridge_slave_1) entered disabled state
[  143.882764][  T343] device bridge_slave_0 left promiscuous mode
[  143.888895][  T343] bridge0: port 1(bridge_slave_0) entered disabled state
[  143.896945][  T343] device veth1_macvtap left promiscuous mode
[  143.955340][  T615] usb 1-1: device descriptor read/64, error -71
[  143.972233][ T2902] device veth0_vlan entered promiscuous mode
[  143.979675][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  143.988130][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  143.996287][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  144.003955][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  144.012328][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  144.019560][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  144.035072][ T2902] device veth1_macvtap entered promiscuous mode
[  144.053508][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  144.067794][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  144.077287][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  144.095689][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  144.103717][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  144.129477][ T2909] loop1: detected capacity change from 0 to 512
[  144.152783][ T2914] netlink: 76 bytes leftover after parsing attributes in process `syz.4.738'.
[  144.164278][ T2914] netlink: 76 bytes leftover after parsing attributes in process `syz.4.738'.
[  144.182309][ T2915] loop3: detected capacity change from 0 to 1024
[  144.190499][ T2915] EXT4-fs: Ignoring removed nomblk_io_submit option
[  144.203275][ T2915] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e801c01c, mo2=0003]
[  144.211462][ T2915] System zones: 0-1, 3-36
[  144.224485][ T2909] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  144.233672][ T2915] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  144.242419][  T615] usb 1-1: new high-speed USB device number 14 using dummy_hcd
[  144.252595][ T2909] ext4 filesystem being mounted at /14/file0 supports timestamps until 2038 (0x7fffffff)
[  144.263495][   T28] audit: type=1400 audit(1723463204.880:476): avc:  denied  { connect } for  pid=2912 comm="syz.3.735" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  144.288821][ T2626] EXT4-fs (loop1): unmounting filesystem.
[  144.486818][ T2925] loop2: detected capacity change from 0 to 512
[  144.577341][ T2925] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  144.695522][   T28] audit: type=1400 audit(1723463205.250:477): avc:  denied  { map } for  pid=2919 comm="syz.4.740" path="/dev/ashmem" dev="devtmpfs" ino=177 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[  144.729505][ T2925] EXT4-fs (loop2): orphan cleanup on readonly fs
[  144.736700][ T2925] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 19 vs 41 free clusters
[  144.750833][ T2925] Quota error (device loop2): write_blk: dquota write failed
[  144.758104][ T2925] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota
[  144.767709][ T2925] EXT4-fs error (device loop2): ext4_acquire_dquot:6764: comm syz.2.739: Failed to acquire dquot type 0
[  144.780379][ T2925] EXT4-fs (loop2): 1 truncate cleaned up
[  144.906640][ T2925] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  144.950494][ T2902] EXT4-fs (loop3): unmounting filesystem.
[  144.977422][  T615] usb 1-1: device descriptor read/64, error -71
[  146.009851][ T2524] EXT4-fs error (device loop2): ext4_ext_check_inode:520: inode #11: comm syz-executor: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  146.033898][ T2524] EXT4-fs error (device loop2): ext4_ext_check_inode:520: inode #11: comm syz-executor: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  146.055529][ T2945] loop4: detected capacity change from 0 to 2048
[  146.056730][ T2947] loop3: detected capacity change from 0 to 512
[  146.083281][ T2634] EXT4-fs (loop2): unmounting filesystem.
[  146.090572][ T2947] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  146.099481][ T2947] ext4 filesystem being mounted at /2/bus supports timestamps until 2038 (0x7fffffff)
[  146.105966][ T2945] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  146.180684][ T2952] EXT4-fs error (device loop4): ext4_xattr_ibody_get:603: inode #15: comm syz.4.744: corrupted in-inode xattr
[  146.192982][ T2952] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2213: inode #15: comm syz.4.744: corrupted in-inode xattr
[  146.204890][ T2952] syz.4.744: attempt to access beyond end of device
[  146.204890][ T2952] loop4: rw=2049, sector=7212754380, nr_sectors = 4 limit=2048
[  146.218811][ T2952] EXT4-fs warning (device loop4): ext4_end_bio:347: I/O error 10 writing to inode 15 starting block 1803188595)
[  146.241023][ T2952] Buffer I/O error on device loop4, logical block 1803188595
[  146.462023][ T2958] loop0: detected capacity change from 0 to 256
[  146.486038][ T2952] syz.4.744: attempt to access beyond end of device
[  146.486038][ T2952] loop4: rw=2049, sector=6806417796, nr_sectors = 4 limit=2048
[  146.494469][ T2958] exfat: Deprecated parameter 'utf8'
[  146.518928][ T2952] EXT4-fs warning (device loop4): ext4_end_bio:347: I/O error 10 writing to inode 15 starting block 1701604449)
[  146.530681][ T2952] Buffer I/O error on device loop4, logical block 1701604449
[  146.538103][ T2952] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:477: comm syz.4.744: Invalid block bitmap block 4294967295 in block_group 0
[  146.565407][ T2958] exfat: Deprecated parameter 'utf8'
[  146.574690][ T2958] exfat: Deprecated parameter 'utf8'
[  146.578869][ T2952] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 1 with error 117
[  146.582232][ T2958] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x18acca35, utbl_chksum : 0xe619d30d)
[  146.602182][ T2952] EXT4-fs (loop4): This should not happen!! Data will be lost
[  146.602182][ T2952] 
[  147.734903][ T2902] EXT4-fs (loop3): unmounting filesystem.
[  147.802281][ T2968] loop3: detected capacity change from 0 to 512
[  147.836340][ T2979] loop1: detected capacity change from 0 to 1024
[  147.843648][ T2968] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  147.853114][ T2968] ext4 filesystem being mounted at /3/file0 supports timestamps until 2038 (0x7fffffff)
[  147.863342][ T2979] EXT4-fs error (device loop1): __ext4_fill_super:5386: inode #2: comm syz.1.754: casefold flag without casefold feature
[  147.868425][ T2960] bridge0: port 1(bridge_slave_0) entered blocking state
[  147.875986][   T28] audit: type=1400 audit(1723463208.480:478): avc:  denied  { watch } for  pid=2967 comm="syz.3.750" path="/3/file0" dev="loop3" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[  147.882834][ T2960] bridge0: port 1(bridge_slave_0) entered disabled state
[  147.912207][ T2960] device bridge_slave_0 entered promiscuous mode
[  147.919394][ T2960] bridge0: port 2(bridge_slave_1) entered blocking state
[  147.926265][ T2960] bridge0: port 2(bridge_slave_1) entered disabled state
[  147.933445][ T2960] device bridge_slave_1 entered promiscuous mode
[  147.937542][ T2276] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 16: comm syz-executor: path /39/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  147.964231][   T41] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2213: inode #15: comm kworker/u4:2: corrupted in-inode xattr
[  147.964322][ T2979] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[  147.977018][   T41] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2213: inode #15: comm kworker/u4:2: corrupted in-inode xattr
[  147.987488][ T2979] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  147.998443][ T2276] EXT4-fs (loop4): Inode 15 (ffff888130dfc4a0): i_reserved_data_blocks (1) not cleared!
[  148.016658][ T2902] EXT4-fs (loop3): unmounting filesystem.
[  148.016724][ T2276] EXT4-fs (loop4): unmounting filesystem.
[  148.109010][ T2960] bridge0: port 2(bridge_slave_1) entered blocking state
[  148.115880][ T2960] bridge0: port 2(bridge_slave_1) entered forwarding state
[  148.122961][ T2960] bridge0: port 1(bridge_slave_0) entered blocking state
[  148.129778][ T2960] bridge0: port 1(bridge_slave_0) entered forwarding state
[  148.139094][ T2626] EXT4-fs (loop1): unmounting filesystem.
[  148.777043][ T2987] loop3: detected capacity change from 0 to 512
[  148.797873][ T2987] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  148.879730][ T2987] EXT4-fs (loop3): orphan cleanup on readonly fs
[  148.891062][ T2987] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 19 vs 41 free clusters
[  148.905617][ T2987] Quota error (device loop3): write_blk: dquota write failed
[  148.913029][ T2987] Quota error (device loop3): qtree_write_dquot: Error -28 occurred while creating quota
[  148.922753][ T2987] EXT4-fs error (device loop3): ext4_acquire_dquot:6764: comm syz.3.756: Failed to acquire dquot type 0
[  148.936095][ T2987] EXT4-fs (loop3): 1 truncate cleaned up
[  148.942887][  T343] device bridge_slave_1 left promiscuous mode
[  148.949014][ T2987] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  148.952464][  T343] bridge0: port 2(bridge_slave_1) entered disabled state
[  148.965102][  T343] device bridge_slave_0 left promiscuous mode
[  148.971308][  T343] bridge0: port 1(bridge_slave_0) entered disabled state
[  148.987776][  T343] device veth1_macvtap left promiscuous mode
[  148.997750][  T343] device veth0_vlan left promiscuous mode
[  149.075098][ T3007] loop1: detected capacity change from 0 to 256
[  149.081380][ T3007] exfat: Deprecated parameter 'utf8'
[  149.086556][ T3007] exfat: Deprecated parameter 'utf8'
[  149.091611][ T3007] exfat: Deprecated parameter 'utf8'
[  149.125055][ T2902] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #11: comm syz-executor: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  149.143076][ T3007] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x18acca35, utbl_chksum : 0xe619d30d)
[  149.155184][ T2902] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #11: comm syz-executor: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  149.183250][  T539] bridge0: port 1(bridge_slave_0) entered disabled state
[  149.192370][  T539] bridge0: port 2(bridge_slave_1) entered disabled state
[  149.225702][ T2960] device veth0_vlan entered promiscuous mode
[  149.255583][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  149.262853][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  149.274583][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  149.285178][ T2902] EXT4-fs (loop3): unmounting filesystem.
[  149.291046][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  149.570606][  T315] bridge0: port 1(bridge_slave_0) entered blocking state
[  149.577478][  T315] bridge0: port 1(bridge_slave_0) entered forwarding state
[  149.584675][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  149.592846][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  149.600856][  T315] bridge0: port 2(bridge_slave_1) entered blocking state
[  149.607707][  T315] bridge0: port 2(bridge_slave_1) entered forwarding state
[  149.614867][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  149.622821][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  149.637432][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  149.653570][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  149.665533][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  149.675745][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  149.687017][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  149.697808][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  149.709979][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  149.720405][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  149.742843][ T2960] device veth1_macvtap entered promiscuous mode
[  149.755244][  T539] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  149.763600][  T539] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  149.771714][  T539] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  149.799509][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  149.807620][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  149.816214][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  149.824242][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  149.860259][ T3003] bridge0: port 1(bridge_slave_0) entered blocking state
[  149.870832][ T3021] loop2: detected capacity change from 0 to 256
[  149.878717][ T3003] bridge0: port 1(bridge_slave_0) entered disabled state
[  149.899362][ T3003] device bridge_slave_0 entered promiscuous mode
[  149.906651][ T3021] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xbe9e488b, utbl_chksum : 0xe619d30d)
[  149.929035][ T3003] bridge0: port 2(bridge_slave_1) entered blocking state
[  149.937539][ T3003] bridge0: port 2(bridge_slave_1) entered disabled state
[  149.966378][ T3003] device bridge_slave_1 entered promiscuous mode
[  149.972569][ T3021] exFAT-fs (loop2): error, invalid access to FAT bad cluster (entry 0x00000005)
[  149.990215][ T3021] exFAT-fs (loop2): failed to initialize root inode
[  150.158143][ T3003] bridge0: port 2(bridge_slave_1) entered blocking state
[  150.165027][ T3003] bridge0: port 2(bridge_slave_1) entered forwarding state
[  150.172131][ T3003] bridge0: port 1(bridge_slave_0) entered blocking state
[  150.178912][ T3003] bridge0: port 1(bridge_slave_0) entered forwarding state
[  150.187805][ T3023] bridge0: port 1(bridge_slave_0) entered blocking state
[  150.194641][ T3023] bridge0: port 1(bridge_slave_0) entered disabled state
[  150.204156][ T3023] device bridge_slave_0 entered promiscuous mode
[  150.210974][ T3023] bridge0: port 2(bridge_slave_1) entered blocking state
[  150.217825][ T3023] bridge0: port 2(bridge_slave_1) entered disabled state
[  150.225024][ T3023] device bridge_slave_1 entered promiscuous mode
[  150.231420][  T539] bridge0: port 1(bridge_slave_0) entered disabled state
[  150.238725][  T539] bridge0: port 2(bridge_slave_1) entered disabled state
[  150.257790][ T3032] syz.0.766[3032] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  150.257857][ T3032] syz.0.766[3032] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  150.286786][ T3028] netlink: 12 bytes leftover after parsing attributes in process `syz.1.768'.
[  150.356945][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  150.365137][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  150.379834][  T539] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  150.646442][  T539] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  150.654434][  T539] bridge0: port 1(bridge_slave_0) entered blocking state
[  150.661290][  T539] bridge0: port 1(bridge_slave_0) entered forwarding state
[  150.681747][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  150.686062][ T3041] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=3041 comm=syz.1.771
[  150.690176][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  150.709637][   T39] bridge0: port 2(bridge_slave_1) entered blocking state
[  150.716466][   T39] bridge0: port 2(bridge_slave_1) entered forwarding state
[  150.731477][ T3041] netlink: 12 bytes leftover after parsing attributes in process `syz.1.771'.
[  150.742823][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  150.750759][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  150.758840][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  150.767071][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  150.797736][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  150.805880][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  150.819144][ T3003] device veth0_vlan entered promiscuous mode
[  150.826637][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  150.834314][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  150.842324][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  150.849686][  T542] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  150.859413][   T28] audit: type=1400 audit(1723463211.470:479): avc:  denied  { read } for  pid=3043 comm="syz.1.773" laddr=::1 lport=255 faddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  150.910470][  T772] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  150.918556][  T772] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  150.931297][ T3003] device veth1_macvtap entered promiscuous mode
[  150.944237][  T772] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  150.951646][  T772] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  150.959847][  T772] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  150.973172][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  150.981200][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  151.007944][  T539] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  151.017227][ T3053] loop4: detected capacity change from 0 to 512
[  151.023578][  T539] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  151.027173][ T3053] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  151.041725][ T3052] tipc: Started in network mode
[  151.046526][ T3052] tipc: Node identity fe8000000000000000000000000000aa, cluster identity 4711
[  151.048319][ T3053] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  151.055712][ T3052] tipc: Enabled bearer <udp:syz0>, priority 10
[  151.070071][ T3053] EXT4-fs (loop4): 1 truncate cleaned up
[  151.085954][  T343] device bridge_slave_1 left promiscuous mode
[  151.091879][  T343] bridge0: port 2(bridge_slave_1) entered disabled state
[  151.098935][ T3053] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  151.153897][  T343] device bridge_slave_0 left promiscuous mode
[  151.159937][  T343] bridge0: port 1(bridge_slave_0) entered disabled state
[  151.175070][  T343] device bridge_slave_1 left promiscuous mode
[  151.181452][  T343] bridge0: port 2(bridge_slave_1) entered disabled state
[  151.188872][  T343] device bridge_slave_0 left promiscuous mode
[  151.194878][  T343] bridge0: port 1(bridge_slave_0) entered disabled state
[  151.203323][  T343] device veth1_macvtap left promiscuous mode
[  151.209177][  T343] device veth0_vlan left promiscuous mode
[  151.214966][  T343] device veth1_macvtap left promiscuous mode
[  151.221026][  T343] device veth0_vlan left promiscuous mode
[  151.405408][   T28] audit: type=1326 audit(1723463211.990:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3051 comm="syz.4.767" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7feda77799f9 code=0x0
[  151.531642][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  151.539728][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  151.547692][  T315] bridge0: port 1(bridge_slave_0) entered blocking state
[  151.554514][  T315] bridge0: port 1(bridge_slave_0) entered forwarding state
[  151.561721][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  151.570365][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  151.578507][  T315] bridge0: port 2(bridge_slave_1) entered blocking state
[  151.585336][  T315] bridge0: port 2(bridge_slave_1) entered forwarding state
[  151.594547][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  151.610397][ T3023] device veth0_vlan entered promiscuous mode
[  151.616808][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  151.624559][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  151.632963][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  151.640766][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  151.648432][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  151.656527][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  151.664520][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  151.672077][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  151.679939][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  151.687166][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  151.698749][ T3023] device veth1_macvtap entered promiscuous mode
[  151.705247][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  151.713242][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  151.721114][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  151.731752][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  151.740015][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  151.749951][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  151.757939][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  151.790611][ T3063] loop2: detected capacity change from 0 to 128
[  151.807948][ T3063] EXT4-fs (loop2): Test dummy encryption mode enabled
[  151.816333][ T3063] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  151.824726][ T3063] ext4 filesystem being mounted at /2/mnt supports timestamps until 2038 (0x7fffffff)
[  151.897524][ T3003] EXT4-fs (loop4): unmounting filesystem.
[  151.911621][ T3073] loop1: detected capacity change from 0 to 512
[  151.924546][ T3076] syz.4.777[3076] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  151.924616][ T3076] syz.4.777[3076] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  152.165363][  T772] tipc: Node number set to 4269801642
[  152.203641][ T3073] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  152.212832][ T3073] ext4 filesystem being mounted at /31/bus supports timestamps until 2038 (0x7fffffff)
[  152.242624][ T2626] EXT4-fs (loop1): unmounting filesystem.
[  152.279442][ T3094] syz.0.783 uses obsolete (PF_INET,SOCK_PACKET)
[  152.296882][ T3091] loop1: detected capacity change from 0 to 2048
[  152.371024][ T3091] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  152.386096][ T3091] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 15 with error 28
[  152.398314][ T3091] EXT4-fs (loop1): This should not happen!! Data will be lost
[  152.398314][ T3091] 
[  152.414128][ T3091] EXT4-fs (loop1): Total free blocks count 0
[  152.421673][ T3091] EXT4-fs (loop1): Free/Dirty block details
[  152.427786][ T3091] EXT4-fs (loop1): free_blocks=2415919104
[  152.433457][ T3091] EXT4-fs (loop1): dirty_blocks=16
[  152.438809][ T3091] EXT4-fs (loop1): Block reservation details
[  152.444734][ T3091] EXT4-fs (loop1): i_reserved_data_blocks=1
[  152.459482][ T3098] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  153.041543][   T28] audit: type=1400 audit(1723463213.650:481): avc:  denied  { unmount } for  pid=2626 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1
[  153.071115][   T28] audit: type=1400 audit(1723463213.680:482): avc:  denied  { name_bind } for  pid=3109 comm="syz.1.792" src=20001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=icmp_socket permissive=1
[  153.091643][   T28] audit: type=1400 audit(1723463213.680:483): avc:  denied  { read } for  pid=3109 comm="syz.1.792" lport=5 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  153.185811][ T3118] loop4: detected capacity change from 0 to 1024
[  153.192179][ T3118] EXT4-fs: dax option not supported
[  153.292069][   T28] audit: type=1400 audit(1723463213.900:484): avc:  denied  { watch watch_reads } for  pid=3117 comm="syz.4.795" path="/3/file0" dev="tmpfs" ino=35 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  153.404196][ T3125] binder: 3124:3125 ioctl 40046205 0 returned -22
[  153.732462][ T3138] loop2: detected capacity change from 0 to 512
[  153.740470][ T3136] syz.3.803[3136] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  153.740514][ T3136] syz.3.803[3136] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  153.754678][ T3138] ext4 filesystem being mounted at /5/bus supports timestamps until 2038 (0x7fffffff)
[  154.144746][ T3146] loop1: detected capacity change from 0 to 512
[  154.158853][   T28] audit: type=1400 audit(1723463214.770:485): avc:  denied  { map } for  pid=3148 comm="syz.4.805" path="socket:[30511]" dev="sockfs" ino=30511 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  154.165812][ T3146] EXT4-fs: quotafile must be on filesystem root
[  154.184054][ T3149] loop4: detected capacity change from 0 to 256
[  154.222639][   T28] audit: type=1400 audit(1723463214.800:486): avc:  denied  { read } for  pid=3148 comm="syz.4.805" path="socket:[30511]" dev="sockfs" ino=30511 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[  155.867531][   T28] audit: type=1326 audit(1723463215.580:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3145 comm="syz.1.804" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fbae7f799f9 code=0x0
[  155.895884][ T2960] EXT4-fs unmount: 4 callbacks suppressed
[  155.895901][ T2960] EXT4-fs (loop2): unmounting filesystem.
[  155.920494][ T3160] loop0: detected capacity change from 0 to 512
[  155.929628][   T28] audit: type=1400 audit(1723463215.890:488): avc:  denied  { write } for  pid=3145 comm="syz.1.804" name="task" dev="proc" ino=31072 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  155.957259][   T28] audit: type=1400 audit(1723463215.900:489): avc:  denied  { add_name } for  pid=3145 comm="syz.1.804" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=dir permissive=1
[  155.977045][   T28] audit: type=1400 audit(1723463215.900:490): avc:  denied  { create } for  pid=3145 comm="syz.1.804" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=file permissive=1
[  156.004876][ T3170] loop1: detected capacity change from 0 to 2048
[  156.025995][ T3160] EXT4-fs (loop0): Encoding requested by superblock is unknown
[  156.039779][ T3170] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  156.121419][ T3177] loop0: detected capacity change from 0 to 512
[  156.147044][ T3177] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  156.155884][ T3177] ext4 filesystem being mounted at /17/bus supports timestamps until 2038 (0x7fffffff)
[  156.195406][  T407] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  156.329375][ T2853] EXT4-fs (loop0): unmounting filesystem.
[  156.407589][ T3189] loop0: detected capacity change from 0 to 2048
[  156.417080][ T3189] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  156.430334][ T3189] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  156.445061][ T3189] EXT4-fs (loop0): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 16 with error 28
[  156.445352][  T315] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  156.457332][ T3189] EXT4-fs (loop0): This should not happen!! Data will be lost
[  156.457332][ T3189] 
[  156.474141][ T3189] EXT4-fs (loop0): Total free blocks count 0
[  156.480009][ T3189] EXT4-fs (loop0): Free/Dirty block details
[  156.485804][ T3189] EXT4-fs (loop0): free_blocks=2415919104
[  156.491340][ T3189] EXT4-fs (loop0): dirty_blocks=16
[  156.496275][ T3189] EXT4-fs (loop0): Block reservation details
[  156.502110][ T3189] EXT4-fs (loop0): i_reserved_data_blocks=1
[  156.518138][ T2853] EXT4-fs (loop0): unmounting filesystem.
[  156.525419][  T542] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  156.605366][  T407] usb 3-1: config index 0 descriptor too short (expected 45, got 36)
[  156.613297][  T407] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  156.624334][  T407] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  156.635331][  T407] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  156.648090][  T407] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  156.657081][  T407] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  156.668163][  T407] usb 3-1: config 0 descriptor??
[  156.719552][ T3165] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  156.852969][ T2626] EXT4-fs (loop1): unmounting filesystem.
[  156.869791][ T3198] loop1: detected capacity change from 0 to 512
[  156.886593][ T3198] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  156.895760][ T3198] ext4 filesystem being mounted at /37/bus supports timestamps until 2038 (0x7fffffff)
[  156.935351][  T542] usb 4-1: Using ep0 maxpacket: 16
[  157.104211][  T542] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  157.122204][  T542] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  157.132975][  T542] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  157.159164][  T542] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  157.169067][  T542] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  157.189442][  T407] plantronics 0003:047F:FFFF.000F: unknown main item tag 0xd
[  157.202493][  T407] plantronics 0003:047F:FFFF.000F: No inputs registered, leaving
[  157.207706][  T542] usb 4-1: config 0 descriptor??
[  157.239536][  T315] usb 5-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[  157.252535][  T315] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  157.253140][  T407] plantronics 0003:047F:FFFF.000F: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  157.273898][  T315] usb 5-1: Product: syz
[  157.277958][  T315] usb 5-1: Manufacturer: syz
[  157.282318][  T315] usb 5-1: SerialNumber: syz
[  157.288100][  T315] r8152-cfgselector 5-1: config 0 descriptor??
[  157.401246][ T3205] loop0: detected capacity change from 0 to 128
[  157.407831][ T3205] EXT4-fs (loop0): Test dummy encryption mode enabled
[  157.415185][ T3205] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  157.423758][ T3205] ext4 filesystem being mounted at /21/mnt supports timestamps until 2038 (0x7fffffff)
[  157.435862][ T3205] EXT4-fs (loop0): re-mounted. Quota mode: none.
[  157.445621][ T2853] EXT4-fs (loop0): unmounting filesystem.
[  157.456274][  T407] usb 3-1: USB disconnect, device number 12
[  157.459550][ T3208] xt_TPROXY: Can be used only with -p tcp or -p udp
[  157.471907][ T3208] sch_fq: defrate 0 ignored.
[  157.485240][ T3210] syz.0.822[3210] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  157.485342][ T3210] syz.0.822[3210] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  157.535372][  T315] r8152-cfgselector 5-1: Unknown version 0x0000
[  157.730593][ T2626] EXT4-fs (loop1): unmounting filesystem.
[  157.732385][  T542] input: HID 045e:07da as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:045E:07DA.0010/input/input13
[  157.757939][ T3213] loop1: detected capacity change from 0 to 512
[  157.795388][  T315] r8152-cfgselector 5-1: Unknown version 0x0000
[  157.803065][  T315] r8152-cfgselector 5-1: USB disconnect, device number 13
[  157.820622][  T542] microsoft 0003:045E:07DA.0010: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  157.961800][ T3220] loop1: detected capacity change from 0 to 16
[  157.971982][ T3220] erofs: (device loop1): mounted with root inode @ nid 36.
[  158.136189][  T542] usb 4-1: USB disconnect, device number 15
[  158.585596][ T3236] binder_alloc: 3235: binder_alloc_buf size -168 failed, no address space
[  158.593932][ T3236] binder_alloc: allocated: 0 (num: 0 largest: 0), free: 12288 (num: 1 largest: 12288)
[  158.604168][ T3236] netlink: 8 bytes leftover after parsing attributes in process `syz.0.832'.
[  158.613287][ T3236] netlink: 8 bytes leftover after parsing attributes in process `syz.0.832'.
[  158.976722][ T3251] loop1: detected capacity change from 0 to 512
[  159.021275][ T3251] EXT4-fs error (device loop1): ext4_validate_block_bitmap:429: comm syz.1.837: bg 0: block 5: invalid block bitmap
[  159.028634][  T407] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  159.060559][ T3251] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6171: Corrupt filesystem
[  159.069714][ T3251] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #11: comm syz.1.837: invalid indirect mapped block 3 (level 2)
[  159.082920][ T3251] EXT4-fs (loop1): 1 orphan inode deleted
[  159.088672][ T3251] EXT4-fs (loop1): 1 truncate cleaned up
[  159.103649][ T3251] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  159.123909][ T2626] EXT4-fs (loop1): unmounting filesystem.
[  159.315517][  T407] usb 4-1: Using ep0 maxpacket: 16
[  159.571347][   T28] kauditd_printk_skb: 11 callbacks suppressed
[  159.571364][   T28] audit: type=1400 audit(1723463220.180:502): avc:  denied  { read } for  pid=3275 comm="syz.4.845" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  159.605446][  T407] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  159.616733][  T407] usb 4-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  159.625585][  T407] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  159.639106][  T407] usb 4-1: config 0 descriptor??
[  159.656803][ T3279] loop4: detected capacity change from 0 to 2048
[  159.670051][ T3279] EXT4-fs error (device loop4): ext4_orphan_get:1422: comm syz.4.846: bad orphan inode 8192
[  159.680182][ T3279] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  159.808759][  T315] usb 1-1: new high-speed USB device number 15 using dummy_hcd
[  159.872768][ T3287] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[  159.881525][ T3287] overlayfs: missing 'lowerdir'
[  160.022736][ T3290] loop1: detected capacity change from 0 to 512
[  160.030701][ T3290] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  160.043286][ T3290] EXT4-fs (loop1): 1 truncate cleaned up
[  160.048821][ T3290] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  160.064645][ T2626] EXT4-fs (loop1): unmounting filesystem.
[  160.206023][ T3245] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  160.214367][ T3245] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  160.226180][  T407] hid (null): report_id 0 is invalid
[  160.232780][  T407] hid-generic 0003:0158:0100.0011: unknown main item tag 0x1
[  160.240142][  T407] hid-generic 0003:0158:0100.0011: unexpected long global item
[  160.247778][  T407] hid-generic: probe of 0003:0158:0100.0011 failed with error -22
[  160.275367][  T315] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  160.432923][ T1827] usb 4-1: USB disconnect, device number 16
[  160.445454][  T315] usb 1-1: New USB device found, idVendor=18ec, idProduct=3288, bcdDevice=69.cf
[  160.454334][  T315] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  160.462158][  T315] usb 1-1: Product: syz
[  160.466200][  T315] usb 1-1: Manufacturer: syz
[  160.470527][  T315] usb 1-1: SerialNumber: syz
[  160.475538][  T315] usb 1-1: config 0 descriptor??
[  160.500574][ T3003] EXT4-fs (loop4): unmounting filesystem.
[  160.515959][  T315] usb 1-1: Found UVC 0.00 device syz (18ec:3288)
[  160.522349][  T315] usb 1-1: No valid video chain found.
[  160.673693][ T3305] bridge0: port 1(bridge_slave_0) entered blocking state
[  160.680703][ T3305] bridge0: port 1(bridge_slave_0) entered disabled state
[  160.688011][ T3305] device bridge_slave_0 entered promiscuous mode
[  160.694812][ T3305] bridge0: port 2(bridge_slave_1) entered blocking state
[  160.701777][ T3305] bridge0: port 2(bridge_slave_1) entered disabled state
[  160.709141][ T3305] device bridge_slave_1 entered promiscuous mode
[  160.720724][ T1827] usb 1-1: USB disconnect, device number 15
[  160.786882][ T3305] bridge0: port 2(bridge_slave_1) entered blocking state
[  160.793764][ T3305] bridge0: port 2(bridge_slave_1) entered forwarding state
[  160.800850][ T3305] bridge0: port 1(bridge_slave_0) entered blocking state
[  160.807627][ T3305] bridge0: port 1(bridge_slave_0) entered forwarding state
[  160.832749][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  160.840863][  T315] bridge0: port 1(bridge_slave_0) entered disabled state
[  160.848174][  T315] bridge0: port 2(bridge_slave_1) entered disabled state
[  160.849851][ T3312] loop2: detected capacity change from 0 to 512
[  160.874840][   T28] audit: type=1400 audit(1723463221.480:503): avc:  denied  { remount } for  pid=3303 comm="syz.2.856" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  160.877464][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  160.902439][  T315] bridge0: port 1(bridge_slave_0) entered blocking state
[  160.909297][  T315] bridge0: port 1(bridge_slave_0) entered forwarding state
[  160.917452][  T315] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  160.927072][  T315] bridge0: port 2(bridge_slave_1) entered blocking state
[  160.933924][  T315] bridge0: port 2(bridge_slave_1) entered forwarding state
[  160.958222][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  160.991300][  T615] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  161.002084][  T615] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  161.009888][   T28] audit: type=1400 audit(1723463221.610:504): avc:  denied  { create } for  pid=3315 comm="syz.3.858" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1
[  161.032004][ T3316] xt_bpf: check failed: parse error
[  161.044628][ T3305] device veth0_vlan entered promiscuous mode
[  161.053164][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  161.062482][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  161.080773][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  161.103963][ T3305] device veth1_macvtap entered promiscuous mode
[  161.119624][  T615] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  161.136431][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  161.144820][  T407] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  161.238776][ T3324] device syzkaller0 entered promiscuous mode
[  161.273201][  T327] device bridge_slave_1 left promiscuous mode
[  161.285629][  T327] bridge0: port 2(bridge_slave_1) entered disabled state
[  161.309042][  T327] device bridge_slave_0 left promiscuous mode
[  161.315218][  T327] bridge0: port 1(bridge_slave_0) entered disabled state
[  161.327973][  T327] device veth1_macvtap left promiscuous mode
[  161.333820][  T327] device veth0_vlan left promiscuous mode
[  161.467502][   T28] audit: type=1326 audit(1723463222.070:505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3323 comm="syz.4.855" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f06581799f9 code=0x0
[  161.498629][ T3352] netlink: 12 bytes leftover after parsing attributes in process `syz.1.870'.
[  161.540153][ T3360] loop2: detected capacity change from 0 to 512
[  161.561394][ T3358] loop0: detected capacity change from 0 to 512
[  161.726636][ T3358] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  161.793462][ T3360] EXT4-fs error (device loop2): ext4_orphan_get:1396: inode #15: comm syz.2.869: casefold flag without casefold feature
[  161.796688][ T3358] EXT4-fs (loop0): 1 truncate cleaned up
[  161.811295][  T772] usb 2-1: new full-speed USB device number 16 using dummy_hcd
[  161.814137][ T3360] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: inode #2: comm syz.2.869: missing EA_INODE flag
[  161.835095][ T3358] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  161.846406][ T3360] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.869: error while reading EA inode 2 err=-117
[  161.860317][   T28] audit: type=1400 audit(1723463222.480:506): avc:  denied  { create } for  pid=3357 comm="syz.0.873" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1
[  161.877139][ T3365] syz.4.874[3365] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  161.880626][ T3365] syz.4.874[3365] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  161.881249][ T3360] EXT4-fs (loop2): 1 orphan inode deleted
[  161.925365][ T3360] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  162.857784][ T2960] EXT4-fs (loop2): unmounting filesystem.
[  162.865437][  T772] usb 2-1: config 0 has an invalid interface number: 159 but max is 0
[  162.878053][  T772] usb 2-1: config 0 has no interface number 0
[  162.941102][  T772] usb 2-1: config 0 interface 159 altsetting 0 has an invalid endpoint with address 0x80, skipping
[  162.951766][  T772] usb 2-1: config 0 interface 159 altsetting 0 endpoint 0x8 has invalid maxpacket 1024, setting to 64
[  162.962684][  T772] usb 2-1: config 0 interface 159 altsetting 0 endpoint 0xC has invalid wMaxPacketSize 0
[  162.972405][  T772] usb 2-1: config 0 interface 159 altsetting 0 has an invalid endpoint with address 0x0, skipping
[  162.982851][  T772] usb 2-1: config 0 interface 159 altsetting 0 endpoint 0xB has invalid maxpacket 1023, setting to 64
[  163.001182][  T772] usb 2-1: config 0 interface 159 altsetting 0 has a duplicate endpoint with address 0xE, skipping
[  163.028034][  T772] usb 2-1: config 0 interface 159 altsetting 0 has a duplicate endpoint with address 0x8, skipping
[  163.109779][  T772] usb 2-1: New USB device found, idVendor=19d2, idProduct=1091, bcdDevice=90.5d
[  163.142309][  T772] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  163.150636][   T28] audit: type=1400 audit(1723463223.660:507): avc:  denied  { relabelfrom } for  pid=3374 comm="syz.3.875" name="" dev="pipefs" ino=32091 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1
[  163.228148][  T772] usb 2-1: config 0 descriptor??
[  163.375337][  T542] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[  163.479058][  T772] usb 2-1: USB disconnect, device number 16
[  163.615330][  T542] usb 5-1: Using ep0 maxpacket: 8
[  163.735412][  T542] usb 5-1: config 179 has an invalid interface number: 65 but max is 0
[  163.749848][ T3386] fuse: Bad value for 'fd'
[  163.750798][  T542] usb 5-1: config 179 has no interface number 0
[  163.777353][  T542] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  163.797351][  T542] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1029, setting to 1024
[  163.814052][  T542] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 255, changing to 11
[  163.826265][  T542] usb 5-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 59391, setting to 1024
[  163.837856][  T542] usb 5-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[  163.851596][  T542] usb 5-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[  163.860729][  T542] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  163.895382][ T3376] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  163.903492][ T3376] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[  163.916645][  T542] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:179.65/input/input14
[  164.180565][  T772] usb 5-1: USB disconnect, device number 14
[  164.195331][    C0] xpad 5-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[  164.224322][  T772] xpad 5-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[  164.375976][ T3393] netlink: 16 bytes leftover after parsing attributes in process `syz.2.880'.
[  164.425155][ T3395] loop2: detected capacity change from 0 to 512
[  164.480216][ T3395] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  164.491146][ T3395] ext4 filesystem being mounted at /16/file0 supports timestamps until 2038 (0x7fffffff)
[  164.517671][ T3395] overlayfs: failed to resolve './file1': -2
[  164.933518][ T3404] loop3: detected capacity change from 0 to 2048
[  164.939982][ T3404] journal_path: Lookup failure for './file0'
[  164.945842][ T3404] EXT4-fs: error: could not find journal device path
[  165.246888][ T3410] kernel profiling enabled (shift: 4)
[  165.283274][ T2960] EXT4-fs (loop2): unmounting filesystem.
[  165.825354][  T542] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  165.997823][ T3425] loop3: detected capacity change from 0 to 2048
[  166.013963][ T3425] EXT4-fs: Ignoring removed orlov option
[  166.044401][ T3425] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  166.072477][ T3425] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  166.105452][ T3425] EXT4-fs (loop3): Remounting filesystem read-only
[  166.112696][ T3425] EXT4-fs error (device loop3): __ext4_remount:6412: comm syz.3.889: Abort forced by user
[  166.165853][ T3023] EXT4-fs (loop3): unmounting filesystem.
[  166.205386][  T542] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  166.484270][  T542] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  166.494484][  T542] usb 3-1: New USB device found, idVendor=258a, idProduct=6a88, bcdDevice= 0.00
[  166.517446][  T542] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  166.534663][  T542] usb 3-1: config 0 descriptor??
[  166.978202][ T3444] loop4: detected capacity change from 0 to 512
[  166.997481][ T3447] loop3: detected capacity change from 0 to 16
[  167.017490][ T3444] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  167.027110][ T3447] erofs: (device loop3): mounted with root inode @ nid 36.
[  167.038506][ T3444] ext4 filesystem being mounted at /5/bus supports timestamps until 2038 (0x7fffffff)
[  167.061002][ T3447] syz.3.895: attempt to access beyond end of device
[  167.061002][ T3447] loop3: rw=0, sector=8, nr_sectors = 16 limit=16
[  167.087331][  T542] itetech 0003:258A:6A88.0012: unknown main item tag 0x0
[  167.102547][ T3447] syz.3.895: attempt to access beyond end of device
[  167.102547][ T3447] loop3: rw=524288, sector=16, nr_sectors = 16 limit=16
[  167.119820][  T542] itetech 0003:258A:6A88.0012: hidraw0: USB HID v0.00 Device [HID 258a:6a88] on usb-dummy_hcd.2-1/input0
[  167.155000][ T3444] EXT4-fs error (device loop4): ext4_do_update_inode:5212: inode #19: comm syz.4.894: corrupted inode contents
[  167.171117][ T3447] syz.3.895: attempt to access beyond end of device
[  167.171117][ T3447] loop3: rw=524288, sector=8, nr_sectors = 16 limit=16
[  167.190624][ T3444] EXT4-fs error (device loop4): ext4_dirty_inode:6074: inode #19: comm syz.4.894: mark_inode_dirty error
[  167.206077][ T3444] EXT4-fs error (device loop4): ext4_do_update_inode:5212: inode #19: comm syz.4.894: corrupted inode contents
[  167.234377][ T3453] loop3: detected capacity change from 0 to 256
[  167.241672][ T3444] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2955: inode #19: comm syz.4.894: mark_inode_dirty error
[  167.261595][ T3444] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2958: inode #19: comm syz.4.894: mark inode dirty (error -117)
[  167.282635][ T3444] EXT4-fs warning (device loop4): ext4_evict_inode:299: xattr delete (err -117)
[  167.297366][  T542] usb 3-1: USB disconnect, device number 13
[  167.404327][ T3305] EXT4-fs (loop4): unmounting filesystem.
[  167.755413][ T1827] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[  168.015344][ T1827] usb 5-1: Using ep0 maxpacket: 8
[  168.385378][ T1827] usb 5-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  168.395959][ T1827] usb 5-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  168.410987][ T1827] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  168.455411][  T542] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  168.534499][   T28] audit: type=1400 audit(1723463229.140:508): avc:  denied  { nlmsg_write } for  pid=3480 comm="syz.3.905" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_tcpdiag_socket permissive=1
[  168.585481][ T1827] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  168.597437][ T1827] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  168.609357][ T1827] usb 5-1: Product: syz
[  168.615506][ T1827] usb 5-1: Manufacturer: syz
[  168.621998][ T1827] usb 5-1: SerialNumber: syz
[  169.291337][  T542] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  169.607598][ T1827] usb 5-1: 0:2 : does not exist
[  169.613638][ T1827] usb 5-1: USB disconnect, device number 15
[  169.619523][  T542] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  169.630179][  T542] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  169.639778][  T542] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  169.660309][  T542] usb 2-1: config 0 descriptor??
[  169.955639][ T3501] loop4: detected capacity change from 0 to 2048
[  170.062971][ T3501] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  170.082565][ T3508] loop2: detected capacity change from 0 to 1024
[  170.135588][  T542] hid (null): bogus close delimiter
[  170.161154][ T3508] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  170.175943][ T3508] EXT4-fs (loop2): orphan cleanup on readonly fs
[  170.198530][ T3508] EXT4-fs error (device loop2): __ext4_get_inode_loc:4497: comm syz.2.913: Invalid inode table block 0 in block_group 0
[  170.265924][ T3508] EXT4-fs (loop2): Remounting filesystem read-only
[  170.272309][ T3508] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5870: Corrupt filesystem
[  170.309635][ T3508] EXT4-fs error (device loop2): ext4_quota_write:7159: inode #3: comm syz.2.913: mark_inode_dirty error
[  170.322958][ T3508] Quota error (device loop2): write_blk: dquota write failed
[  170.385657][ T3508] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  170.406033][  T542] usb 2-1: language id specifier not provided by device, defaulting to English
[  170.414875][ T3508] EXT4-fs error (device loop2): ext4_acquire_dquot:6764: comm syz.2.913: Failed to acquire dquot type 0
[  170.429955][ T3508] EXT4-fs (loop2): 1 truncate cleaned up
[  170.438619][ T3508] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  170.470625][ T2960] EXT4-fs (loop2): unmounting filesystem.
[  170.686550][   T28] audit: type=1326 audit(1723463231.300:509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=3513 comm="syz.2.914" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9474d799f9 code=0x0
[  170.875032][ T3305] EXT4-fs (loop4): unmounting filesystem.
[  170.889723][  T542] input: HID 256c:006d Pen as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:256C:006D.0013/input/input15
[  170.903492][  T542] input: HID 256c:006d Pad as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:256C:006D.0013/input/input16
[  170.922326][ T3521] tap0: tun_chr_ioctl cmd 1074812118
[  170.938871][  T542] input: HID 256c:006d Touch Strip as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:256C:006D.0013/input/input17
[  170.946730][ T3520] loop3: detected capacity change from 0 to 2048
[  170.966480][  T542] input: HID 256c:006d Dial as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:256C:006D.0013/input/input18
[  170.995701][ T3520] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  171.003994][ T3520] ext4 filesystem being mounted at /37/file0 supports timestamps until 2038 (0x7fffffff)
[  171.020024][  T542] uclogic 0003:256C:006D.0013: input,hiddev96,hidraw0: USB HID v0.00 Keypad [HID 256c:006d] on usb-dummy_hcd.1-1/input0
[  171.103701][  T615] usb 2-1: USB disconnect, device number 17
[  171.129714][ T3529] loop4: detected capacity change from 0 to 16
[  171.142064][ T3529] erofs: (device loop4): mounted with root inode @ nid 36.
[  171.313215][ T3531] incfs: Error accessing: ./file0.
[  171.318315][ T3531] incfs: mount failed -20
[  171.325806][   T28] audit: type=1400 audit(1723463231.920:510): avc:  denied  { mounton } for  pid=3519 comm="syz.3.916" path="/37/file0/file0/file0" dev="loop3" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  171.553437][ T3537] loop2: detected capacity change from 0 to 2048
[  171.605725][ T3537]  loop2: p1 < > p4
[  171.610189][ T3537] loop2: p4 size 8388608 extends beyond EOD, truncated
[  171.785058][ T3023] EXT4-fs (loop3): unmounting filesystem.
[  171.889478][ T3545] bridge0: port 1(bridge_slave_0) entered blocking state
[  171.898053][ T3545] bridge0: port 1(bridge_slave_0) entered disabled state
[  171.905276][ T3545] device bridge_slave_0 entered promiscuous mode
[  171.922403][ T3545] bridge0: port 2(bridge_slave_1) entered blocking state
[  171.931809][ T3545] bridge0: port 2(bridge_slave_1) entered disabled state
[  171.942290][ T3545] device bridge_slave_1 entered promiscuous mode
[  171.985341][  T615] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  172.071693][  T772] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  172.075349][  T542] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[  172.079427][  T772] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  172.114735][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  172.123351][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  172.141487][   T39] bridge0: port 1(bridge_slave_0) entered blocking state
[  172.148340][   T39] bridge0: port 1(bridge_slave_0) entered forwarding state
[  172.155760][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  172.163880][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  172.172508][   T39] bridge0: port 2(bridge_slave_1) entered blocking state
[  172.179356][   T39] bridge0: port 2(bridge_slave_1) entered forwarding state
[  172.186790][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  172.194547][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  172.212180][ T3545] device veth0_vlan entered promiscuous mode
[  172.219227][  T772] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  172.227825][  T772] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  172.235486][  T615] usb 2-1: Using ep0 maxpacket: 16
[  172.240994][  T772] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  172.248537][  T772] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  172.256315][  T772] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  172.270222][ T3545] device veth1_macvtap entered promiscuous mode
[  172.282006][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  172.295632][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  172.304202][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  172.325504][  T542] usb 4-1: Using ep0 maxpacket: 16
[  172.356224][  T615] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  172.375498][  T615] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  172.395221][  T615] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  172.414386][  T615] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  172.446767][  T615] usb 2-1: config 0 descriptor??
[  172.455457][  T542] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid maxpacket 33032, setting to 1024
[  172.475555][  T542] usb 4-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00
[  172.484499][  T542] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  172.577209][  T542] usb 4-1: config 0 descriptor??
[  172.880274][  T315] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  173.046828][  T615] savu 0003:1E7D:2D5A.0014: item fetching failed at offset 3/5
[  173.056467][  T615] savu 0003:1E7D:2D5A.0014: parse failed
[  173.064011][  T615] savu: probe of 0003:1E7D:2D5A.0014 failed with error -22
[  173.215537][   T28] audit: type=1400 audit(1723463233.780:511): avc:  denied  { write } for  pid=3568 comm="syz.4.931" name="loop-control" dev="devtmpfs" ino=113 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:loop_control_device_t tclass=chr_file permissive=1
[  173.373964][ T3544] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  173.386939][ T3544] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  173.395544][  T539] usb 2-1: USB disconnect, device number 18
[  173.438843][  T542] hid (null): invalid report_size 1684763247
[  173.450338][  T542] hid-generic 0003:0158:0100.0015: unknown main item tag 0x1
[  173.462833][  T542] hid-generic 0003:0158:0100.0015: unexpected long global item
[  173.470498][  T542] hid-generic: probe of 0003:0158:0100.0015 failed with error -22
[  173.483656][   T28] audit: type=1400 audit(1723463234.100:512): avc:  denied  { write } for  pid=3573 comm="syz.0.932" path="socket:[33121]" dev="sockfs" ino=33121 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  173.495395][  T315] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  173.520771][  T315] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  173.525489][   T28] audit: type=1400 audit(1723463234.100:513): avc:  denied  { accept } for  pid=3573 comm="syz.0.932" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  173.533906][  T315] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  173.561903][  T315] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  173.570572][   T28] audit: type=1400 audit(1723463234.100:514): avc:  denied  { read } for  pid=3573 comm="syz.0.932" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  173.593068][  T315] usb 3-1: config 0 descriptor??
[  173.668881][  T539] usb 4-1: USB disconnect, device number 17
[  174.199511][ T3550] loop2: detected capacity change from 0 to 1024
[  174.230173][ T3550] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  174.256405][  T315] plantronics 0003:047F:FFFF.0016: No inputs registered, leaving
[  174.275354][  T542] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[  174.284841][  T315] plantronics 0003:047F:FFFF.0016: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  174.555349][  T542] usb 5-1: Using ep0 maxpacket: 32
[  174.655332][  T772] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  174.675399][  T542] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  174.755623][  T407] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[  174.845371][  T542] usb 5-1: New USB device found, idVendor=0b49, idProduct=064f, bcdDevice=28.4e
[  174.854247][  T542] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  174.872152][  T542] usb 5-1: Product: syz
[  174.876160][  T542] usb 5-1: Manufacturer: syz
[  174.880552][  T542] usb 5-1: SerialNumber: syz
[  174.908541][  T542] usb 5-1: config 0 descriptor??
[  174.925336][  T772] usb 2-1: Using ep0 maxpacket: 8
[  175.005403][  T407] usb 4-1: Using ep0 maxpacket: 32
[  175.045396][  T772] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  175.060574][  T772] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  175.074751][  T772] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  175.095324][  T772] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2c24, bcdDevice= 0.00
[  175.114320][  T772] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  175.122858][  T772] usb 2-1: config 0 descriptor??
[  175.145431][  T407] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  175.166021][  T407] usb 4-1: config 0 interface 0 has no altsetting 0
[  175.172676][  T615] usb 5-1: USB disconnect, device number 16
[  175.217375][   T39] usb 3-1: USB disconnect, device number 14
[  175.343645][ T3358] general protection fault, probably for non-canonical address 0xdffffc0000000007: 0000 [#1] PREEMPT SMP KASAN
[  175.355191][ T3358] KASAN: null-ptr-deref in range [0x0000000000000038-0x000000000000003f]
[  175.363436][ T3358] CPU: 0 PID: 3358 Comm: syz.0.873 Not tainted 6.1.90-syzkaller-00004-g79436849ef1d #0
[  175.372901][ T3358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  175.382798][ T3358] RIP: 0010:__ext4_journal_get_write_access+0xb0/0x690
[  175.389472][ T3358] Code: 88 ff 49 8d 5e 30 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 fe 16 d0 ff 48 8b 1b 48 83 c3 38 48 89 d8 48 c1 e8 03 <42> 80 3c 28 00 74 08 48 89 df e8 e1 16 d0 ff 4c 8b 23 4d 85 e4 4c
[  175.395486][  T407] usb 4-1: New USB device found, idVendor=0421, idProduct=0419, bcdDevice=ab.19
[  175.408910][ T3358] RSP: 0018:ffffc9000723f280 EFLAGS: 00010202
[  175.408932][ T3358] RAX: 0000000000000007 RBX: 0000000000000038 RCX: 0000000000040000
[  175.408944][ T3358] RDX: ffffc900053d9000 RSI: 000000000003ffff RDI: 0000000000040000
[  175.408956][ T3358] RBP: ffffc9000723f350 R08: ffff88811c75bb28 R09: 0000000000000001
[  175.408969][ T3358] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff11026186a40
[  175.427625][  T407] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  175.431476][ T3358] R13: dffffc0000000000 R14: ffff88811c75bb28 R15: 0000000000000001
[  175.431494][ T3358] FS:  00007f109df536c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[  175.431511][ T3358] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  175.445501][  T407] usb 4-1: Product: syz
[  175.447098][ T3358] CR2: 00007ffd8df2ca58 CR3: 000000010fe37000 CR4: 00000000003506b0
[  175.447118][ T3358] DR0: 0000000000000000 DR1: 000000000000000a DR2: 0000000000000000
[  175.459241][  T407] usb 4-1: Manufacturer: syz
[  175.462725][ T3358] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  175.462741][ T3358] Call Trace:
[  175.462746][ T3358]  <TASK>
[  175.477020][  T407] usb 4-1: SerialNumber: syz
[  175.479301][ T3358]  ? __die_body+0x62/0xb0
[  175.490148][  T407] usb 4-1: config 0 descriptor??
[  175.497527][ T3358]  ? die_addr+0x9f/0xd0
[  175.497553][ T3358]  ? exc_general_protection+0x317/0x4c0
[  175.497579][ T3358]  ? asm_exc_general_protection+0x27/0x30
[  175.497601][ T3358]  ? __ext4_journal_get_write_access+0xb0/0x690
[  175.557853][ T3358]  ? __ext4_journal_stop+0x36/0x1c0
[  175.562885][ T3358]  ? __ext4_journal_ensure_credits+0x470/0x470
[  175.568873][ T3358]  ? __ext4_expand_extra_isize+0x420/0x420
[  175.574519][ T3358]  ext4_xattr_block_set+0x1dcc/0x3760
[  175.579727][ T3358]  ? ext4_xattr_block_find+0x320/0x320
[  175.585016][ T3358]  ? ext4_reserve_inode_write+0x2b3/0x360
[  175.590569][ T3358]  ? ext4_mark_iloc_dirty+0x1970/0x1970
[  175.595951][ T3358]  ? ext4_xattr_ibody_find+0x102/0x530
[  175.601247][ T3358]  ext4_xattr_set_handle+0xdac/0x1560
[  175.606457][ T3358]  ? ext4_xattr_set_entry+0x3ef0/0x3ef0
[  175.611841][ T3358]  ? selinux_inode_free_security+0x210/0x210
[  175.617650][ T3358]  ext4_initxattrs+0xa7/0x120
[  175.622163][ T3358]  security_inode_init_security+0x252/0x390
[  175.627893][ T3358]  ? ext4_init_security+0x40/0x40
[  175.632753][ T3358]  ? security_dentry_create_files_as+0xc0/0xc0
[  175.638742][ T3358]  ? __ext4_set_acl+0x5e0/0x5e0
[  175.643425][ T3358]  ? _raw_spin_unlock+0x4c/0x70
[  175.648114][ T3358]  ext4_init_security+0x34/0x40
[  175.652801][ T3358]  __ext4_new_inode+0x31ef/0x40a0
[  175.657666][ T3358]  ? ext4_has_group_desc_csum+0x1f0/0x1f0
[  175.663215][ T3358]  ? dquot_initialize+0x20/0x20
[  175.667903][ T3358]  ? ext4_get_dummy_policy+0x1b/0x60
[  175.673022][ T3358]  ? ext4_set_context+0x560/0x560
[  175.677885][ T3358]  ? fscrypt_policy_to_inherit+0xba/0x160
[  175.683439][ T3358]  ext4_symlink+0x396/0xc10
[  175.687784][ T3358]  ? ext4_unlink+0x3f0/0x3f0
[  175.692206][ T3358]  ? security_inode_symlink+0xb8/0x100
[  175.697503][ T3358]  vfs_symlink+0x24e/0x3e0
[  175.701765][ T3358]  do_symlinkat+0x1ea/0x5a0
[  175.706092][ T3358]  ? __check_object_size+0x48e/0x650
[  175.711215][ T3358]  ? vfs_symlink+0x3e0/0x3e0
[  175.715641][ T3358]  ? getname_flags+0x1fd/0x520
[  175.720240][ T3358]  __x64_sys_symlinkat+0x99/0xb0
[  175.725012][ T3358]  x64_sys_call+0x6fe/0x9a0
[  175.729353][ T3358]  do_syscall_64+0x3b/0xb0
[  175.733604][ T3358]  ? clear_bhb_loop+0x55/0xb0
[  175.738120][ T3358]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  175.743854][ T3358] RIP: 0033:0x7f109d1799f9
[  175.748102][ T3358] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  175.767629][ T3358] RSP: 002b:00007f109df53038 EFLAGS: 00000246 ORIG_RAX: 000000000000010a
[  175.775873][ T3358] RAX: ffffffffffffffda RBX: 00007f109d315f80 RCX: 00007f109d1799f9
[  175.783685][ T3358] RDX: 00000000200003c0 RSI: 0000000000000008 RDI: 0000000020000240
[  175.791495][ T3358] RBP: 00007f109d1e78ee R08: 0000000000000000 R09: 0000000000000000
[  175.799309][ T3358] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  175.807121][ T3358] R13: 0000000000000000 R14: 00007f109d315f80 R15: 00007fff27794478
[  175.814939][ T3358]  </TASK>
[  175.817795][ T3358] Modules linked in:
[  175.822074][  T407] rndis_host 4-1:0.0: skipping garbage
[  175.830170][  T407] usb 4-1: bad CDC descriptors
[  175.840278][  T407] cdc_acm 4-1:0.0: skipping garbage
[  175.852333][ T3358] ---[ end trace 0000000000000000 ]---
[  175.872325][ T3358] RIP: 0010:__ext4_journal_get_write_access+0xb0/0x690
[  175.879398][ T3358] Code: 88 ff 49 8d 5e 30 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 fe 16 d0 ff 48 8b 1b 48 83 c3 38 48 89 d8 48 c1 e8 03 <42> 80 3c 28 00 74 08 48 89 df e8 e1 16 d0 ff 4c 8b 23 4d 85 e4 4c
[  175.899244][ T3358] RSP: 0018:ffffc9000723f280 EFLAGS: 00010202
[  175.905123][ T3358] RAX: 0000000000000007 RBX: 0000000000000038 RCX: 0000000000040000
[  175.913129][ T3358] RDX: ffffc900053d9000 RSI: 000000000003ffff RDI: 0000000000040000
[  175.921448][ T3358] RBP: ffffc9000723f350 R08: ffff88811c75bb28 R09: 0000000000000001
[  175.942498][ T2960] EXT4-fs (loop2): unmounting filesystem.
[  175.948395][ T3358] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff11026186a40
[  175.956522][ T3358] R13: dffffc0000000000 R14: ffff88811c75bb28 R15: 0000000000000001
[  175.964506][ T3358] FS:  00007f109df536c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  175.977833][ T3358] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  175.984237][ T3358] CR2: 00007f06582e7ab8 CR3: 000000010fe37000 CR4: 00000000003506a0
[  175.992236][ T3358] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  176.000277][ T3358] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  176.008185][ T3358] Kernel panic - not syncing: Fatal exception
[  176.014155][ T3358] Kernel Offset: disabled
[  176.018273][ T3358] Rebooting in 86400 seconds..