last executing test programs:

22.284632221s ago: executing program 2 (id=500):
syz_read_part_table(0x1063, &(0x7f0000000000)="$eJzsz71NxkAQBNDx6Tv7LCFBTBGugwCJiJgmiGiCiIgOaIdigAAd8k8PJngvG+2sVhvOVfLde+/liHN+kuG2ZUnJe0tSH5akb3KZxuRlXNc+936fflPf6h7WwetNnpI6J7lKMtxPLXm+S0kuW+n6qx23hjx+nPAxAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPw7fwEAAP//4/sVvw==")

14.238289716s ago: executing program 0 (id=518):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1008413, &(0x7f0000000000)={[{@noblock_validity}, {@barrier}]}, 0x0, 0x517, &(0x7f00000000c0)="$eJzs3c9vG1kdAPDvOHG2adJNFjjASuwu7KK0gtrJRrsb9VCKhOBUCSj3EhIniuLEVey0TVTRVPwBSAgBEie4cEHiD0BClbhwREiV4AwCBELQwgEk6CDb4zR17CS0rp0mn480nffDM9/33M543sx0JoBT60o2PU7T9EJETGTluWz6ZD2zE/FWRDx6eGehPiWRptf+lkSSlbXWlTa8EmPNRRor+MoXI76e7I9b3dpenS+XSxtZvlhbu1Gsbm1fXFmbXy4tl9ZnZ2fen/tg7r256efp3tJYljgXEZc//6fvfuvHX7j888/c+v31v5z/RtJs8932fvx/hg+sbX6f+TjTtsjGswU7lob3JkaPtsy97J8IAAD9VT8u/VB2nH8hJmLokONZAAAA4OWTfnY8/pO0rt3tM9KlHAAAAHiJ5CJiPJJcIbvfdzxyuUIhGvfwfiTO5sqVau3TS5XN9cV6XcRk5HNLK+XSdHZv62Tkk3p+ppF+kn+3LT8bEa9FxHcmRhv5wkKlvDjokx8AAABwSoy1jf//OdEc/wMAAAAnzOSgGwAAAAC8cMb/AAAAcPIZ/wMAAMCJ9qWrV+tT2nr/9eLNrc3Vys2Li6XqamFtc6GwUNm4UViuVJYbz+xbO3Blu68OXN+8XayVqrVidWv7+lplc712feXpV2ADAAAA/fPam/d/m0TEzqXRGL002igb2VP/7+w9AQNrIPDC7J6yiySbj+z/0O9ebc7/2KdGAX0xNOgGAAMzPOgGAAOTH3QDgIFLDqnvevPOr7L5J3rbHgAAoPemPvbk+v9O2/X/3IFL7hxcDRx7NmI4vVz/h9Orcf2/wy1/HTlYgBMl7wgATr3nvv5/KP+HCAAABm28MSW5QnZ6bzxyuUIh4lzjtQD5ZGmlXJqOiFcj4jcT+Vfq+ZnGksmhYwYAAAAAAAAAAAAAAAAAAAAAAAAAoClNk0gBAACAEy0i9+fkF81n+U9NvDPefn5gJPnXRGSvCL31g2vfuz1fq23M1Mv/vlte+35W/u4gzmAAAAAA7Vrj9NY4HgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB66dHDOwutqZ9x//q5iJjsFH84zjTmZyIfEWf/kcTwnuWSiBjqQfydexHx0U7xk3qzdkN2ij/64uPHZPYtdIo/1oP4cJrdr+9/rnTa/nLxVmPeefsbjngq/6y67/9id/831GX7P3fEGK8/+Gmxa/x7Ea8Pd97/tOInXeK/fcT4X/vq9na3uvSHEVMdf3+Sp2IVa2s3itWt7Ysra/PLpeXS+uzszPtzH8y9NzddXFopl7I/O8b49sd/9vig/p/tEn/ykP6/c8T+//fB7YcfbibzneKff7tD/F/+KPvE/vi57LfvU1m6Xj/VSu8003u98ZNfv3FQ/xe79P+wv//zR+z/hS9/8w9H/CgA0AfVre3V+XK5tHFiE/VR+jFohsQxTNzdX/VmdF0qSQ5eYZqmaX2beo6GJd2j9yeR7JYMes8EAAD02pOj/0G3BAAAAAAAAAAAAAAAAAAAAE6vfjxXrD3mzm4q6cUjtAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeuJ/AQAA//8fp+fv")
lseek(0xffffffffffffffff, 0xfffffffffffffffe, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0xc)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_int(r3, 0x29, 0x19, &(0x7f0000000080)=0x1b, 0x4)

13.612816429s ago: executing program 1 (id=520):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001a80)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(0xffffffffffffffff, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
recvfrom(r2, &(0x7f00000004c0)=""/177, 0xb1, 0x40000003, 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8)
socket$packet(0x11, 0x3, 0x300)
socket$packet(0x11, 0x3, 0x300)
socket$packet(0x11, 0x3, 0x300)
socket$packet(0x11, 0x2, 0x300)
r5 = socket$netlink(0x10, 0x3, 0x0)
socket(0x200000000000011, 0x4000000000080002, 0x0)
writev(r5, &(0x7f00000003c0)=[{&(0x7f0000000380)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fdd411efc40800040000000000000000", 0x39}], 0x1)

11.712596738s ago: executing program 1 (id=522):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x20, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r3, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x73cea2d47785b264, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='sched_switch\x00', r4}, 0x18)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_TCP_QUEUE_SEQ(r5, 0x6, 0x15, &(0x7f00000001c0)=0x9, 0x4)
getpid()

10.846465356s ago: executing program 2 (id=526):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000300)=""/180}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
mknodat$loop(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x6000, 0x1)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x101000, 0x0)
fsync(r2)

10.795491078s ago: executing program 0 (id=527):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
r3 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$KDGETKEYCODE(r3, 0x4b4c, &(0x7f0000000000)={0xd2b3, 0x9})
mount$9p_virtio(&(0x7f0000000080), 0x0, &(0x7f00000003c0), 0x9bfaa07e04a59bd8, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
mkdir(&(0x7f0000002e80)='./file0\x00', 0x80)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000010000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b702000000000000850000008400"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="09000000070000000080000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r4, <r5=>0xffffffffffffffff}, &(0x7f0000000040), &(0x7f0000000280)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xd, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000020d0039000000000000b4a518110000", @ANYRES32=r5], 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mmap$xdp(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1000003, 0x11, 0xffffffffffffffff, 0x80000000)
rt_sigtimedwait(&(0x7f0000000200)={[0x1]}, &(0x7f0000000580), &(0x7f0000000380), 0x8)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r6, 0x0, 0x7fffffffffffffff}, 0xfffffffffffffe35)
syz_mount_image$ext4(&(0x7f0000000340)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed000e, &(0x7f0000000240)={[{@stripe}, {@noload}, {@errors_remount}, {@resgid={'resgid', 0x3d, 0xee00}}, {@min_batch_time={'min_batch_time', 0x3d, 0x6}}, {@usrjquota}, {@nombcache}, {@noquota}, {@grpquota}, {@nodiscard}], [{@rootcontext={'rootcontext', 0x3d, 'system_u'}}, {@context={'context', 0x3d, 'unconfined_u'}}]}, 0x0, 0x478, &(0x7f0000000ec0)="$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")
socket$nl_route(0x10, 0x3, 0x0)

10.012143263s ago: executing program 1 (id=528):
write$P9_RVERSION(0xffffffffffffffff, 0x0, 0x15)
r0 = openat$sndtimer(0xffffffffffffff9c, 0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x40345410, &(0x7f00000083c0)={{0x1}})
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[], 0x50)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
r4 = fsopen(0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
fsmount(r4, 0x0, 0xa)
r5 = syz_open_procfs(0x0, &(0x7f0000000280)='gid_map\x00')
pread64(r5, &(0x7f0000000080)=""/110, 0x98, 0x5)

9.69150105s ago: executing program 2 (id=530):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x109840, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x3, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r3 = socket$nl_audit(0x10, 0x3, 0x9)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f0000000080)={'bridge0\x00', &(0x7f0000000000)=@ethtool_link_settings={0x4c, 0x0, 0x3, 0x2, 0x8, 0x0, 0x9, 0x0, 0x0, 0x3, [0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4]}})
sched_setscheduler(0x0, 0x2, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
r4 = getpid()
sched_setscheduler(r4, 0x1, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0xd, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x18, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
getrlimit(0x4, &(0x7f0000000480))
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r7}, 0x10)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f0000000180)={[{@grpid}, {@mblk_io_submit}, {@nodioread_nolock}, {@test_dummy_encryption}, {@inode_readahead_blks}, {@nodelalloc}, {@minixdf}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x40}}]}, 0x4, 0xbaf, &(0x7f00000017c0)="$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")
r8 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
write$cgroup_subtree(r8, &(0x7f0000000000)=ANY=[], 0x32600)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000440)={{r8}, &(0x7f0000000340), &(0x7f0000000380)}, 0x20)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x200)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2)
ioctl$KVM_SET_IRQCHIP(r2, 0x8208ae63, &(0x7f0000000780)={0x2, 0x0, @ioapic={0x6000, 0x8, 0x0, 0xeffffdff, 0x0, [{0x2, 0x10, 0xfc, '\x00', 0xfb}, {0x3, 0x9, 0x82, '\x00', 0x7c}, {0xfc, 0x2, 0x4, '\x00', 0xb9}, {0x11, 0xb, 0x0, '\x00', 0x7d}, {0xfe, 0x9, 0x6, '\x00', 0xff}, {0x0, 0x0, 0xfe, '\x00', 0x2}, {0xfd, 0x0, 0x7, '\x00', 0x7f}, {0x0, 0xfa}, {0x1, 0x8f, 0x40, '\x00', 0x4}, {0x39, 0x6, 0xd, '\x00', 0x1}, {0xb}, {0x5, 0x99, 0x0, '\x00', 0xff}, {0x0, 0x0, 0x2, '\x00', 0x3}, {0x2, 0x2, 0x6}, {0xc3, 0x0, 0x0, '\x00', 0x49}, {0x4, 0x21, 0x80, '\x00', 0x5}, {0x3, 0x1}, {0x0, 0x2, 0x5, '\x00', 0x10}, {0x48, 0x0, 0x9, '\x00', 0xd9}, {0xf5, 0x80}, {0x0, 0x2, 0x0, '\x00', 0x37}, {0xfe, 0x8, 0x0, '\x00', 0x5}, {0x0, 0x4, 0x9}, {0x7f, 0xfc, 0x6, '\x00', 0x7}]}})
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket(0x400000000010, 0x3, 0x0)
socket$unix(0x1, 0x1, 0x0)

6.716533641s ago: executing program 3 (id=531):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000010000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000009c0)={0x1f, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r2, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000080)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0100000000000000000008000000180001801400020073797a5f74756e000000000000000000180002801400038010"], 0x44}, 0x1, 0x0, 0x0, 0x20004080}, 0x0)

6.433802848s ago: executing program 3 (id=532):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
close(r0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$unix(r2, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32=r2], 0x18}, 0x0)
close(r2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r3=>0xffffffffffffffff})
sendmsg$unix(r3, &(0x7f0000000740)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)=[@rights={{0x14, 0x1, 0x1, [r0]}}], 0x18}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x8, 0x2, 0x4, 0x5}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r4, <r5=>0xffffffffffffffff}, &(0x7f0000000b00), &(0x7f0000000300)}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='kmem_cache_free\x00', r6}, 0x10)
syz_emit_ethernet(0x5b, &(0x7f0000000b40)={@local, @multicast, @val={@void, {0x8100, 0x6}}, {@ipv6={0x86dd, @tipc_packet={0x7, 0x6, "db1136", 0x21, 0x6, 0x1, @local, @ipv4={'\x00', '\xff\xff', @multicast1}, {[@fragment={0x87, 0x0, 0x3, 0x0, 0x0, 0xf, 0x68}], @payload_conn={{{0x19, 0x0, 0x1, 0x0, 0x1, 0x6, 0x7ebb39e2906b5d4b, 0x2, 0xe93, 0x0, 0x3, 0x2, 0x2, 0x0, 0x1, 0x401, 0x0, 0x4e21, 0x4e22}}, [0x0]}}}}}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
r8 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r8, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
close(r1)
close(r7)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x3, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffd}}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r9}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)

6.203623102s ago: executing program 0 (id=533):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10012, r0, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000000)=0x9, 0x4)

6.203378242s ago: executing program 1 (id=534):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
bpf$MAP_CREATE(0x1900000000000000, 0x0, 0x48)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000002c0), 0xc)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_int(r3, 0x0, 0xf, 0x0, 0x0)
connect$unix(r1, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x9)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="666c7573682c73686f72746e616d653d6c6f7765722c73686f72746e616d653d6d697865642c756e695f786c6174653d302c6e6f6e756d7461696c3d302c6e6f6e756d7461696c3d302c73686f72746e616d653d77696e6e742c00a56dc300a96c9b20f3fabdcb10cad696323259cc0500e5f91620d7b9aed9e1fa74020a4f00b8ff"], 0x1, 0x246, &(0x7f00000002c0)="$eJzs2s9rHGUYB/BnYqUxJd2Iv2hB+qIH9TI0OXkQSZAWxICijVAF6dRMdMm4G3aWwIrYeNGrf4Jn8ehNkIoXL7n4F3jwlkuOPYgj7aZtElbIInFD8/lc9mHf+cIzvMPLc3h3Xvv2s/W1Ol8r+jGVZTG1GFtxJ4u5mIr7tuKVl67/9vx71z94a2l5+cq7KV1duja/kFI6f+nnD7/44YXb/XPv/3j+p7OxPffRzu5Xf24/u31h5+9rn7br1K5Tp9tPRbrZ7faLm1WZVtv1ep7SO1VZ1GVqd+qyd2B9repubAxS0VmdndnolXWdis4grZeD1O+mfm+Qik+KdifleZ5mZ4L/YuX7O00Tu83jNyK7/9/sH9GK7MmUPbWYPXMje24ru7DbNK3JNsoxebD/TdM88V2cu23/T5V9h/p0RPXN5srmyvB3uL60Fu2ooozL0Yq/4u5nsmdYX31z+crldM9cfF3d2svf2lx57GB+PloxNzo/P8yng/mzMbM/vxCteHp0fmFkfjpefnFfPo9W/P5xdKOK1bibfZj/cj6lN95ePpS/eO85AIBHTZ4eGDm/5fm/rQ/zY8yHh+arM3HxzGTfnYh68Pl6UVVlTzFOcWnc1PTkez4FRZNFnIA2jlb8+svrr56ANvaKxcNHwaRPJv4PDzf9qInp420IAAAAAAAAAACAIznme4XZODfLAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA0+mfAAAA//9X7c9V")
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000040), 0x208e24b)

5.763424311s ago: executing program 3 (id=535):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1008413, &(0x7f0000000000)={[{@noblock_validity}, {@barrier}]}, 0x0, 0x517, &(0x7f00000000c0)="$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")
lseek(0xffffffffffffffff, 0xfffffffffffffffe, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="18050000000000fe000000004b64ffec850000007d000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0xc)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_int(r4, 0x29, 0x19, &(0x7f0000000080)=0x1b, 0x4)

4.687347813s ago: executing program 0 (id=536):
r0 = creat(&(0x7f0000000340)='./file0\x00', 0x6a)
close(r0)
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x2d41, 0xd5)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, <r2=>0x0, 0x0, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000240)={0x50, 0x0, r2, {0x7, 0x1f, 0x0, 0x202, 0x0, 0x0, 0x2}}, 0x50)
syz_fuse_handle_req(r1, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x109081, 0x34)
syz_fuse_handle_req(r1, &(0x7f0000006380)="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", 0x2000, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000680)={0x28, 0x0, 0xdde, {{0xffffffffffffffff, 0xffffffff, 0x1, r3}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
fcntl$lock(r4, 0x5, &(0x7f0000000200)={0x1})

3.8896694s ago: executing program 2 (id=537):
ioctl$BLKRASET(0xffffffffffffffff, 0x1262, 0x0)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, 0x0)
r0 = syz_open_procfs$namespace(0x0, &(0x7f00000009c0)='ns/cgroup\x00')
ioctl$BTRFS_IOC_SET_FEATURES(r0, 0x40309439, 0x0)

3.644509245s ago: executing program 1 (id=538):
openat$uinput(0xffffffffffffff9c, 0x0, 0x2, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
socket$inet6(0xa, 0x2, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x8000000000002)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
getpriority(0x0, 0x0)

3.440637949s ago: executing program 2 (id=539):
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0xfffffffffffffe8b, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001d00)=ANY=[@ANYBLOB="0b00000005000000050000000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
open(0x0, 0x80, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(0x0, 0x0)
r5 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r5, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r5, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
mount$fuse(0x0, 0x0, &(0x7f0000000800), 0x0, 0x0)

2.831523822s ago: executing program 3 (id=540):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x6111471, &(0x7f00000001c0)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@quota}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="1b00"/13], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r3, &(0x7f0000000180)=[{&(0x7f0000000900)="580000001400192340834b80040d8c560a066e0202ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000007000200060c10000000010000000000", 0x58}], 0x1)

477.54098ms ago: executing program 3 (id=541):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000180)='./bus\x00', 0x804, &(0x7f0000000280)=ANY=[@ANYBLOB="726f6469722c6e6f636173652c757466383d302c646973636172642c73686f72746e616d653d6d697865642c757466383d302c73686f72746e616d653d77696e6e742c757466383d302c636865636b3d6e6f726d616c2c756e695f786c6174653d302c636865636b3d7374726963742c757466383d312c73686f72746e616d653d77696e6e742c690328640ef4cad27b3d63703933322c757466383d302c726f6469722c00"], 0x1, 0x27b, &(0x7f0000000640)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x5, 0x7f, 0xef0, 0x9, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000), &(0x7f00000007c0), 0x402, r0}, 0x38)

329.838343ms ago: executing program 2 (id=542):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c1)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000140)='ramfs\x00', 0x10, 0x0)
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x400a8, &(0x7f0000000380)=ANY=[], 0x1, 0x0, 0x0)
symlinkat(&(0x7f0000000080)='.\x00', 0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00')
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x104000, 0x0)
mount$bind(&(0x7f0000000480)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0/../file0\x00', 0x0, 0xa1c08, 0x0)
mount$9p_unix(&(0x7f0000000100)='./file0/file0\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x12d7498, 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)

235.556666ms ago: executing program 1 (id=543):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b0000000500000008040000cd00000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000004c0)={r0, &(0x7f0000000340), &(0x7f00000005c0)=""/155}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
socket$can_bcm(0x1d, 0x2, 0x2)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2002, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r3, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x7c, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

235.356526ms ago: executing program 0 (id=544):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
write$cgroup_int(r1, &(0x7f0000000200), 0x43451)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.events\x00', 0x100002, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000500)='mm_lru_activate\x00', r3}, 0x10)
write$cgroup_int(r2, &(0x7f0000000200), 0x43451)

34.99617ms ago: executing program 3 (id=545):
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000000)={0xffffffffffffffff, 0xe0, &(0x7f0000000880)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffeda, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffb9, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0}}, 0xfffffffffffffe5f)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x49, 0x1}, 0x50)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r1, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xd, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r3}, 0x10)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000740)={r1, &(0x7f0000000000), &(0x7f00000000c0)=""/109}, 0x20)
connect$netlink(r0, &(0x7f0000000280)=@proc={0x10, 0x0, 0x25dfdbfc}, 0xc)
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x1c}}, 0x0)

0s ago: executing program 0 (id=546):
mkdir(&(0x7f00000003c0)='./file0\x00', 0x21)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000280)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000540)=ANY=[], 0x48)
userfaultfd(0x80001)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r3}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10)
sched_setaffinity(0x0, 0x0, 0x0)
gettid()
r5 = open(&(0x7f0000000040)='./file0\x00', 0x400, 0x43)
mknodat$loop(r5, &(0x7f00000002c0)='./file1\x00', 0x4, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
rename(&(0x7f0000000040)='./file1\x00', &(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

kernel console output (not intermixed with test programs):

72332][ T5983] ext4 filesystem being mounted at /5/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  109.421073][ T5985] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  109.702463][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.319899][ T6009] loop3: detected capacity change from 0 to 512
[  110.321044][ T6009] ext3: Unknown parameter 'rootcontext'
[  110.394972][ T5994] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  110.398482][ T5788] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  110.597682][ T6004] tty tty26: ldisc open failed (-12), clearing slot 25
[  110.690075][ T6011] loop2: detected capacity change from 0 to 4096
[  110.734904][ T6011] EXT4-fs (loop2): Test dummy encryption mode enabled
[  110.970651][ T6011] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.952412][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.977414][ T6025] loop1: detected capacity change from 0 to 512
[  112.039873][ T6025] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  112.073718][ T6025] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  112.117988][ T6025] EXT4-fs (loop1): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  112.147474][ T6025] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  112.186443][ T6025] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=c042e01c, mo2=0000]
[  112.230562][ T6025] EXT4-fs (loop1): orphan cleanup on readonly fs
[  112.264888][ T6025] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.33: bg 0: block 34: padding at end of block bitmap is not set
[  112.326278][ T6025] Quota error (device loop1): write_blk: dquota write failed
[  112.350300][ T6025] Quota error (device loop1): qtree_write_dquot: Error -28 occurred while creating quota
[  112.370254][ T6025] EXT4-fs error (device loop1): ext4_acquire_dquot:6940: comm syz.1.33: Failed to acquire dquot type 1
[  112.422100][ T6025] EXT4-fs (loop1): 1 truncate cleaned up
[  112.473205][ T6025] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  113.826313][ T5791] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.912691][ T6037] netlink: 8 bytes leftover after parsing attributes in process `syz.2.34'.
[  114.327532][ T6041] loop0: detected capacity change from 0 to 128
[  114.552652][ T6043] loop1: detected capacity change from 0 to 512
[  114.672430][ T6043] EXT4-fs (loop1): Test dummy encryption mode enabled
[  114.713064][ T6043] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2244: inode #15: comm syz.1.37: corrupted in-inode xattr: invalid ea_ino
[  114.728887][ T6043] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.37: couldn't read orphan inode 15 (err -117)
[  114.762153][ T6043] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  116.490341][ T5791] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.714116][ T6048] loop1: detected capacity change from 0 to 128
[  116.798333][ T6048] EXT4-fs (loop1): Test dummy encryption mode enabled
[  116.827064][ T6048] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  116.861410][ T6048] ext4 filesystem being mounted at /8/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  116.881801][ T6050] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  118.008301][ T5791] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  118.026918][ T6065] 9pnet: p9_errstr2errno: server reported unknown error @00000000000000000000004D†�B€|˜�0xffffffffffffffff0xffffffffffffffff
[  119.395885][ T6083] loop1: detected capacity change from 0 to 16
[  119.442155][ T6083] erofs: (device loop1): mounted with root inode @ nid 36.
[  119.495345][ T6083] syz.1.45: attempt to access beyond end of device
[  119.495345][ T6083] loop1: rw=0, sector=8, nr_sectors = 16 limit=16
[  120.636640][ T6087] netlink: 104 bytes leftover after parsing attributes in process `syz.3.47'.
[  122.106296][ T6093] loop1: detected capacity change from 0 to 128
[  122.139344][ T6093] EXT4-fs (loop1): Test dummy encryption mode enabled
[  122.174674][ T6093] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  122.253921][ T6093] ext4 filesystem being mounted at /13/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  123.342801][ T5791] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  123.780961][    T9] usb 2-1: new full-speed USB device number 2 using dummy_hcd
[  124.004822][    T9] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 129, using maximum allowed: 30
[  124.033162][    T9] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64
[  124.055021][    T9] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 129
[  124.084094][    T9] usb 2-1: New USB device found, idVendor=056a, idProduct=0039, bcdDevice= 0.00
[  124.095668][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  124.112420][    T9] usb 2-1: config 0 descriptor??
[  124.142824][ T6110] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  124.551866][ T6124] netlink: 'syz.3.57': attribute type 4 has an invalid length.
[  125.316371][    T9] wacom 0003:056A:0039.0001: hidraw0: USB HID v0.00 Device [HID 056a:0039] on usb-dummy_hcd.1-1/input0
[  125.338241][    T9] usb 2-1: USB disconnect, device number 2
[  125.363565][ T6124] syz.3.57 (6124) used greatest stack depth: 20624 bytes left
[  125.733847][ T6125] fido_id[6125]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  126.248988][ T6131] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  127.025740][ T6136] loop3: detected capacity change from 0 to 128
[  127.050657][ T6136] EXT4-fs (loop3): Test dummy encryption mode enabled
[  127.095435][ T6136] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  127.115729][ T6136] ext4 filesystem being mounted at /16/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  128.033323][ T6149] loop2: detected capacity change from 0 to 128
[  128.229860][ T5790] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  129.123833][ T6157] syz.3.63[6157] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  129.123985][ T6157] syz.3.63[6157] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  129.725100][ T6162] netlink: 'syz.0.64': attribute type 4 has an invalid length.
[  129.744072][ T6162] netlink: 17 bytes leftover after parsing attributes in process `syz.0.64'.
[  130.681155][ T6164] overlay: filesystem on ./file0 not supported as upperdir
[  131.164682][ T6170] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  131.624565][ T6176] loop3: detected capacity change from 0 to 128
[  131.653104][ T6176] EXT4-fs (loop3): Test dummy encryption mode enabled
[  131.823357][ T6179] syz.1.70 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  131.881031][ T6179] loop1: detected capacity change from 0 to 256
[  131.903335][ T6179] exfat: Unknown parameter '0x0000000000000005��00000000000000000000004>'
[  132.227576][ T6176] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  132.455562][ T6176] ext4 filesystem being mounted at /19/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  132.980962][ T1285] ieee802154 phy0 wpan0: encryption failed: -22
[  132.987680][ T1285] ieee802154 phy1 wpan1: encryption failed: -22
[  133.732990][ T5790] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  133.866460][ T6194] overlay: filesystem on ./file0 not supported as upperdir
[  134.727331][ T6204] netlink: 24 bytes leftover after parsing attributes in process `syz.1.75'.
[  135.612622][ T6209] loop0: detected capacity change from 0 to 128
[  137.433537][ T6216] netlink: 'syz.1.79': attribute type 4 has an invalid length.
[  138.602226][ T6223] loop3: detected capacity change from 0 to 128
[  138.646769][ T6223] EXT4-fs (loop3): Test dummy encryption mode enabled
[  138.792026][ T6223] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  138.937365][ T6229] loop2: detected capacity change from 0 to 256
[  139.395909][ T6223] ext4 filesystem being mounted at /22/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  139.428651][ T6231] overlay: filesystem on ./file0 not supported as upperdir
[  140.684469][ T5790] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  140.806319][ T6244] loop2: detected capacity change from 0 to 1024
[  140.831131][ T6244] EXT4-fs: inline encryption not supported
[  141.022273][ T6244] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  141.248745][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.273547][ T6251] capability: warning: `syz.3.87' uses deprecated v2 capabilities in a way that may be insecure
[  141.742683][ T6255] loop2: detected capacity change from 0 to 128
[  142.451783][ T6265] netlink: 'syz.0.92': attribute type 4 has an invalid length.
[  143.969913][ T6276] loop0: detected capacity change from 0 to 1024
[  144.149826][ T6276] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  144.176865][ T6276] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.170279][   T23] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  147.382636][   T23] usb 4-1: config 0 has an invalid interface number: 64 but max is 0
[  147.401318][   T23] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  147.426085][   T23] usb 4-1: config 0 has no interface number 0
[  147.445989][   T23] usb 4-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice= 0.07
[  147.467621][   T23] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  147.500234][   T23] usb 4-1: Product: syz
[  147.505818][   T23] usb 4-1: Manufacturer: syz
[  147.520169][   T23] usb 4-1: SerialNumber: syz
[  147.540681][   T23] usb 4-1: config 0 descriptor??
[  147.970067][   T23] usb 4-1: Found UVC 0.00 device syz (046d:0823)
[  147.980177][   T23] usb 4-1: No valid video chain found.
[  149.877014][  T786] usb 4-1: USB disconnect, device number 2
[  150.586511][ T6332] loop2: detected capacity change from 0 to 1024
[  150.594165][ T6332] EXT4-fs: Ignoring removed i_version option
[  150.633393][ T6332] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  150.665447][ T6332] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:478: comm syz.2.115: Invalid block bitmap block 0 in block_group 0
[  150.690923][ T6332] Quota error (device loop2): write_blk: dquota write failed
[  150.698684][ T6332] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  150.709058][ T6332] EXT4-fs error (device loop2): ext4_acquire_dquot:6940: comm syz.2.115: Failed to acquire dquot type 0
[  150.723263][ T6332] EXT4-fs error (device loop2): ext4_free_blocks:6676: comm syz.2.115: Freeing blocks not in datazone - block = 0, count = 4096
[  150.740647][ T6332] EXT4-fs error (device loop2): ext4_read_inode_bitmap:140: comm syz.2.115: Invalid inode bitmap blk 0 in block_group 0
[  150.755142][ T6332] EXT4-fs error (device loop2) in ext4_free_inode:363: Corrupt filesystem
[  150.764506][   T48] Quota error (device loop2): do_check_range: Getting block 0 out of range 1-8
[  150.764577][ T6332] EXT4-fs (loop2): 1 orphan inode deleted
[  150.781249][ T6332] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  150.822918][   T48] EXT4-fs error (device loop2): ext4_release_dquot:6976: comm kworker/u4:3: Failed to release dquot type 0
[  151.335355][ T6328] loop1: detected capacity change from 0 to 40427
[  151.374041][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.402770][ T6328] F2FS-fs (loop1): heap/no_heap options were deprecated
[  151.458840][ T6328] F2FS-fs (loop1): invalid crc value
[  151.521600][ T6328] F2FS-fs (loop1): Found nat_bits in checkpoint
[  151.675527][ T6328] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  152.920085][ T6355] syz.3.121: attempt to access beyond end of device
[  152.920085][ T6355] loop7: rw=0, sector=0, nr_sectors = 1 limit=0
[  152.942396][ T6355] FAT-fs (loop7): unable to read boot sector
[  153.415774][   T27] audit: type=1326 audit(1757858561.892:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6364 comm="syz.1.125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e9a38eba9 code=0x7ffc0000
[  153.460349][   T27] audit: type=1326 audit(1757858561.892:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6364 comm="syz.1.125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e9a38eba9 code=0x7ffc0000
[  153.506261][   T27] audit: type=1326 audit(1757858561.892:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6364 comm="syz.1.125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1e9a38eba9 code=0x7ffc0000
[  153.570010][   T27] audit: type=1326 audit(1757858561.892:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6364 comm="syz.1.125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e9a38eba9 code=0x7ffc0000
[  153.620216][   T27] audit: type=1326 audit(1757858561.892:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6364 comm="syz.1.125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e9a38eba9 code=0x7ffc0000
[  153.642592][   T27] audit: type=1326 audit(1757858561.892:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6364 comm="syz.1.125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1e9a38eba9 code=0x7ffc0000
[  153.666956][   T27] audit: type=1326 audit(1757858561.892:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6364 comm="syz.1.125" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e9a38eba9 code=0x7ffc0000
[  157.339489][ T6394] loop2: detected capacity change from 0 to 128
[  157.397837][ T6394] EXT4-fs (loop2): Test dummy encryption mode enabled
[  157.451615][ T6394] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  157.545000][ T6394] ext4 filesystem being mounted at /27/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  157.652219][ T6399] loop0: detected capacity change from 0 to 1024
[  157.681690][ T6399] EXT4-fs: Ignoring removed oldalloc option
[  157.725548][ T6399] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  157.832191][ T6399] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  158.584312][ T5787] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  158.829434][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.291056][ T6417] binder: BINDER_SET_CONTEXT_MGR already set
[  159.297381][ T6417] binder: 6411:6417 ioctl 4018620d 200000000040 returned -16
[  162.030533][ T6428] xt_CT: You must specify a L4 protocol and not use inversions on it
[  162.635480][ T6430] loop1: detected capacity change from 0 to 512
[  162.661350][ T6430] EXT4-fs: Ignoring removed mblk_io_submit option
[  162.708731][ T6430] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  162.765456][ T6430] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e028, mo2=0002]
[  162.811899][ T6430] EXT4-fs (loop1): orphan cleanup on readonly fs
[  162.863191][ T6430] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.141: bg 0: block 361: padding at end of block bitmap is not set
[  162.961423][ T6430] EXT4-fs (loop1): Remounting filesystem read-only
[  163.014872][ T6430] EXT4-fs (loop1): 1 truncate cleaned up
[  163.040996][ T6430] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  163.316520][ T5791] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  163.351480][ T6438] loop3: detected capacity change from 0 to 128
[  163.380862][ T6438] EXT4-fs (loop3): Test dummy encryption mode enabled
[  163.523536][ T6438] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  163.573025][ T6438] ext4 filesystem being mounted at /33/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  164.685351][ T5790] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  164.814173][ T6456] loop2: detected capacity change from 0 to 512
[  164.945470][ T6456] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  165.008564][ T6456] ext4 filesystem being mounted at /30/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  165.233363][ T6456] EXT4-fs error (device loop2): ext4_lookup:1858: inode #12: comm syz.2.147: iget: bad i_size value: 2533274857506816
[  165.333599][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.633976][ T6469] overlayfs: missing 'lowerdir'
[  166.311225][ T6477] loop3: detected capacity change from 0 to 512
[  166.328871][ T6477] EXT4-fs: Ignoring removed mblk_io_submit option
[  166.370758][ T6477] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  166.413364][ T6477] EXT4-fs (loop3): 1 truncate cleaned up
[  166.449549][ T6477] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  166.850265][ T2195] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  167.013623][   T27] kauditd_printk_skb: 1 callbacks suppressed
[  167.013638][   T27] audit: type=1326 audit(1757858575.512:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6488 comm="syz.2.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8c498eba9 code=0x7ffc0000
[  167.061684][ T2195] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  167.077495][ T2195] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  167.090532][   T27] audit: type=1326 audit(1757858575.512:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6488 comm="syz.2.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8c498eba9 code=0x7ffc0000
[  167.124447][ T2195] usb 4-1: New USB device found, idVendor=0fc5, idProduct=b080, bcdDevice= 0.00
[  167.151582][ T2195] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  167.168483][   T27] audit: type=1326 audit(1757858575.512:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6488 comm="syz.2.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=187 compat=0 ip=0x7fe8c498eba9 code=0x7ffc0000
[  167.202429][ T2195] usb 4-1: config 0 descriptor??
[  167.230513][   T27] audit: type=1326 audit(1757858575.512:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6488 comm="syz.2.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8c498eba9 code=0x7ffc0000
[  167.290202][   T27] audit: type=1326 audit(1757858575.512:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6488 comm="syz.2.158" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8c498eba9 code=0x7ffc0000
[  167.325761][ T6495] overlayfs: missing 'lowerdir'
[  167.866173][ T6506] loop1: detected capacity change from 0 to 512
[  167.912522][ T6506] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a806e01c, mo2=0002]
[  167.937101][ T6506] System zones: 1-12
[  167.958433][ T6506] EXT4-fs error (device loop1): dx_probe:823: inode #2: comm syz.1.166: Directory hole found for htree index block 0
[  167.975914][ T6506] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -117
[  167.986040][ T6506] EXT4-fs error (device loop1): dx_probe:823: inode #2: comm syz.1.166: Directory hole found for htree index block 0
[  168.020733][ T6506] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -117
[  168.042081][ T6506] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  168.084994][ T2195] hid-led: probe of 0003:0FC5:B080.0002 failed with error -32
[  168.094734][   T27] audit: type=1800 audit(1757858576.572:15): pid=6477 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.153" name="file2" dev="loop3" ino=16 res=0 errno=0
[  168.165084][  T786] usb 4-1: USB disconnect, device number 3
[  168.545793][ T6514] EXT4-fs error (device loop1): dx_probe:823: inode #2: comm syz.1.166: Directory hole found for htree index block 0
[  169.048193][ T5790] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.156659][ T5791] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.211462][ T6518] usb usb5: usbfs: process 6518 (syz.3.168) did not claim interface 0 before use
[  169.404144][ T6520] overlayfs: missing 'lowerdir'
[  169.508502][ T6524] loop3: detected capacity change from 0 to 1024
[  169.557301][ T6524] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  169.638056][ T6524] ext4 filesystem being mounted at /37/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  170.712358][ T6535] EXT4-fs error (device loop3): ext4_free_blocks:6676: comm syz.3.172: Freeing blocks not in datazone - block = 0, count = 16
[  170.844838][ T6524] syz.3.172 (6524) used greatest stack depth: 19944 bytes left
[  170.893010][ T6539] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  170.956768][   T48] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  170.985881][   T48] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 4 with error 28
[  171.003676][   T48] EXT4-fs (loop3): This should not happen!! Data will be lost
[  171.003676][   T48] 
[  171.015198][   T48] EXT4-fs (loop3): Total free blocks count 0
[  171.023710][   T48] EXT4-fs (loop3): Free/Dirty block details
[  171.033083][   T48] EXT4-fs (loop3): free_blocks=4293918736
[  171.038972][   T48] EXT4-fs (loop3): dirty_blocks=16
[  171.054722][   T48] EXT4-fs (loop3): Block reservation details
[  171.061237][   T48] EXT4-fs (loop3): i_reserved_data_blocks=1
[  171.101920][ T5790] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  171.288727][ T6545] overlayfs: missing 'lowerdir'
[  171.488727][ T6552] loop3: detected capacity change from 0 to 512
[  171.515239][ T6552] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2244: inode #15: comm syz.3.183: corrupted in-inode xattr: invalid ea_ino
[  171.558991][ T6552] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.183: couldn't read orphan inode 15 (err -117)
[  171.684220][ T6552] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  171.737910][ T6555] loop2: detected capacity change from 0 to 128
[  173.025333][ T5790] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.061866][ T6566] netlink: 8 bytes leftover after parsing attributes in process `syz.2.187'.
[  174.001396][ T6572] loop1: detected capacity change from 0 to 256
[  174.295317][ T6577] overlayfs: missing 'lowerdir'
[  176.482470][ T6595] loop1: detected capacity change from 0 to 128
[  176.567300][ T6581] loop3: detected capacity change from 0 to 512
[  176.600001][ T6581] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  176.626098][ T6581] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  176.646170][ T6581] EXT4-fs (loop3): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  176.693185][ T6581] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  176.704747][ T6581] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=c042e01c, mo2=0000]
[  176.717253][ T6581] EXT4-fs (loop3): orphan cleanup on readonly fs
[  176.729215][ T6581] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.193: bg 0: block 34: padding at end of block bitmap is not set
[  176.748068][ T6581] Quota error (device loop3): write_blk: dquota write failed
[  176.760932][ T6581] Quota error (device loop3): qtree_write_dquot: Error -28 occurred while creating quota
[  176.771337][ T6581] EXT4-fs error (device loop3): ext4_acquire_dquot:6940: comm syz.3.193: Failed to acquire dquot type 1
[  176.788214][ T6581] EXT4-fs (loop3): 1 truncate cleaned up
[  176.797686][ T6581] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  176.812656][ T6581] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  177.309459][ T6601] netlink: 8 bytes leftover after parsing attributes in process `syz.2.197'.
[  178.682280][ T6609] loop0: detected capacity change from 0 to 128
[  179.950953][ T6615] overlayfs: missing 'lowerdir'
[  179.988661][ T6617] loop3: detected capacity change from 0 to 512
[  180.069556][ T6617] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  180.080568][ T6617] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  180.091615][ T6617] EXT4-fs (loop3): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  180.107176][ T6617] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  180.115489][ T6617] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=c042e01c, mo2=0000]
[  180.128876][ T6617] EXT4-fs (loop3): orphan cleanup on readonly fs
[  180.201200][ T6617] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.203: bg 0: block 34: padding at end of block bitmap is not set
[  180.462828][ T6617] Quota error (device loop3): write_blk: dquota write failed
[  180.614264][ T6617] Quota error (device loop3): qtree_write_dquot: Error -28 occurred while creating quota
[  180.849571][ T6617] EXT4-fs error (device loop3): ext4_acquire_dquot:6940: comm syz.3.203: Failed to acquire dquot type 1
[  181.131038][ T6617] EXT4-fs (loop3): 1 truncate cleaned up
[  181.152125][ T6617] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  181.426157][   T23] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  181.733126][   T23] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  181.779478][   T23] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  181.824803][   T23] usb 3-1: New USB device found, idVendor=06a3, idProduct=0cfa, bcdDevice= 0.00
[  181.867661][   T23] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  181.902998][   T23] usb 3-1: config 0 descriptor??
[  182.103089][ T5790] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  182.634705][ T6642] loop3: detected capacity change from 0 to 128
[  183.583162][   T23] saitek 0003:06A3:0CFA.0003: item fetching failed at offset 5/7
[  183.630894][   T23] saitek 0003:06A3:0CFA.0003: parse failed
[  183.676113][   T23] saitek: probe of 0003:06A3:0CFA.0003 failed with error -22
[  183.727965][   T23] usb 3-1: USB disconnect, device number 2
[  184.509725][ T6650] syz.2.211 uses obsolete (PF_INET,SOCK_PACKET)
[  184.598878][ T6650] loop2: detected capacity change from 0 to 1024
[  184.640979][ T6650] EXT4-fs: Ignoring removed orlov option
[  184.674366][ T6650] EXT4-fs: Ignoring removed nomblk_io_submit option
[  184.773362][ T6650] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  184.837261][ T6654] loop0: detected capacity change from 0 to 128
[  185.168798][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  186.044052][ T6665] loop2: detected capacity change from 0 to 256
[  186.098706][ T6665] FAT-fs (loop2): Unrecognized mount option "��0xffffffffffffffff�" or missing value
[  186.167872][ T6669] loop0: detected capacity change from 0 to 512
[  186.203265][ T6669] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  186.245696][ T6669] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  186.282396][ T6669] EXT4-fs (loop0): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  186.338890][ T6669] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  186.367042][ T6669] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=c042e01c, mo2=0000]
[  186.513688][ T6669] EXT4-fs (loop0): orphan cleanup on readonly fs
[  186.561567][ T6669] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.216: bg 0: block 34: padding at end of block bitmap is not set
[  186.646528][ T6669] Quota error (device loop0): write_blk: dquota write failed
[  186.660842][ T6669] Quota error (device loop0): qtree_write_dquot: Error -28 occurred while creating quota
[  186.684951][ T6669] EXT4-fs error (device loop0): ext4_acquire_dquot:6940: comm syz.0.216: Failed to acquire dquot type 1
[  186.726148][ T6669] EXT4-fs (loop0): 1 truncate cleaned up
[  186.737409][ T6669] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  187.312893][ T6677] loop1: detected capacity change from 0 to 256
[  187.439968][ T6677] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  187.617452][   T27] audit: type=1800 audit(1757858596.072:16): pid=6677 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.218" name="bus" dev="loop1" ino=1048598 res=0 errno=0
[  187.701843][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  187.957812][ T6682] loop1: detected capacity change from 0 to 512
[  187.996847][ T6682] EXT4-fs: Ignoring removed i_version option
[  188.022955][ T6682] EXT4-fs: Ignoring removed mblk_io_submit option
[  188.040318][ T6682] EXT4-fs (loop1): Test dummy encryption mode enabled
[  188.269457][ T6682] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c018, mo2=0103]
[  188.297823][ T6682] EXT4-fs error (device loop1): ext4_orphan_get:1399: comm syz.1.220: inode #13: comm syz.1.220: iget: illegal inode #
[  188.362928][ T6682] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.220: couldn't read orphan inode 13 (err -117)
[  188.467478][ T6692] loop0: detected capacity change from 0 to 512
[  188.625966][ T6692] EXT4-fs (loop0): 1 orphan inode deleted
[  188.640442][ T6692] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  188.654971][ T6692] ext4 filesystem being mounted at /52/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  188.764725][ T6692] Zero length message leads to an empty skb
[  189.013660][ T6682] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  189.185250][ T6682] EXT4-fs error (device loop1): __ext4_remount:6743: comm syz.1.220: Abort forced by user
[  189.225882][ T6696] loop2: detected capacity change from 0 to 128
[  189.255518][ T6682] EXT4-fs (loop1): Remounting filesystem read-only
[  189.318600][ T6682] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000.
[  190.190364][ T3425] Quota error (device loop0): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  190.505521][ T3425] EXT4-fs error (device loop0): ext4_release_dquot:6976: comm kworker/u4:8: Failed to release dquot type 1
[  190.803910][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.834576][ T5791] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.053840][ T6708] loop0: detected capacity change from 0 to 512
[  191.075219][ T6708] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  191.089805][ T6708] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  191.130489][ T6708] EXT4-fs (loop0): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  191.160417][ T6708] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  191.168685][ T6708] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=c042e01c, mo2=0000]
[  191.177513][ T6708] EXT4-fs (loop0): orphan cleanup on readonly fs
[  191.206935][ T6708] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.227: bg 0: block 34: padding at end of block bitmap is not set
[  191.227912][ T6708] Quota error (device loop0): write_blk: dquota write failed
[  191.235910][ T6708] Quota error (device loop0): qtree_write_dquot: Error -28 occurred while creating quota
[  191.246319][ T6708] EXT4-fs error (device loop0): ext4_acquire_dquot:6940: comm syz.0.227: Failed to acquire dquot type 1
[  191.262569][ T6708] EXT4-fs (loop0): 1 truncate cleaned up
[  191.265840][   T23] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  191.270954][ T6708] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  191.510999][   T27] audit: type=1326 audit(1757858599.942:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6710 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e9a38eba9 code=0x7ffc0000
[  191.536598][   T27] audit: type=1326 audit(1757858599.942:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6710 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e9a38eba9 code=0x7ffc0000
[  191.584577][   T27] audit: type=1326 audit(1757858599.952:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6710 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1e9a38eba9 code=0x7ffc0000
[  191.725276][   T23] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  191.794661][   T27] audit: type=1326 audit(1757858599.952:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6710 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e9a38eba9 code=0x7ffc0000
[  191.983930][   T23] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  192.033313][   T23] usb 3-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00
[  192.062286][   T27] audit: type=1326 audit(1757858599.952:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6710 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1e9a38eba9 code=0x7ffc0000
[  192.100196][   T23] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  192.136945][   T23] usb 3-1: config 0 descriptor??
[  192.201222][   T27] audit: type=1326 audit(1757858599.952:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6710 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e9a38eba9 code=0x7ffc0000
[  192.294428][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.309965][   T27] audit: type=1326 audit(1757858599.952:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6710 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f1e9a38eba9 code=0x7ffc0000
[  192.363035][   T27] audit: type=1326 audit(1757858599.952:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6710 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e9a38eba9 code=0x7ffc0000
[  192.433120][   T27] audit: type=1326 audit(1757858599.962:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6710 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f1e9a38eba9 code=0x7ffc0000
[  192.472534][   T27] audit: type=1326 audit(1757858599.962:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6710 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e9a38eba9 code=0x7ffc0000
[  192.550590][   T27] audit: type=1326 audit(1757858599.962:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6710 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1e9a38eba9 code=0x7ffc0000
[  192.575507][   T27] audit: type=1326 audit(1757858599.962:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6710 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e9a38eba9 code=0x7ffc0000
[  192.600362][   T27] audit: type=1326 audit(1757858599.962:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6710 comm="syz.1.229" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e9a38eba9 code=0x7ffc0000
[  193.120343][   T23] usbhid 3-1:0.0: can't add hid device: -71
[  193.126409][   T23] usbhid: probe of 3-1:0.0 failed with error -71
[  193.152912][   T23] usb 3-1: USB disconnect, device number 3
[  193.210707][ T6731] netlink: 104 bytes leftover after parsing attributes in process `syz.0.234'.
[  193.663920][ T6735] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  193.672997][ T6735] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[  193.694566][ T6735] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  194.030728][ T6724] loop1: detected capacity change from 0 to 40427
[  194.087141][ T6724] F2FS-fs (loop1): invalid crc value
[  194.143475][ T6742] loop3: detected capacity change from 0 to 512
[  194.169288][ T6724] F2FS-fs (loop1): Found nat_bits in checkpoint
[  194.221360][ T6742] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  194.242381][ T6742] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  194.263944][ T6742] EXT4-fs (loop3): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  194.374083][ T6750] loop0: detected capacity change from 0 to 128
[  194.394252][ T1285] ieee802154 phy0 wpan0: encryption failed: -22
[  194.401771][ T1285] ieee802154 phy1 wpan1: encryption failed: -22
[  194.529034][ T6742] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  195.303641][ T6742] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=c042e01c, mo2=0000]
[  195.340820][ T6724] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  195.369960][ T6742] EXT4-fs (loop3): orphan cleanup on readonly fs
[  195.442341][ T6742] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.240: bg 0: block 34: padding at end of block bitmap is not set
[  195.764916][ T6742] EXT4-fs error (device loop3): ext4_acquire_dquot:6940: comm syz.3.240: Failed to acquire dquot type 1
[  196.530676][ T6742] EXT4-fs (loop3): 1 truncate cleaned up
[  196.561930][ T6742] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  198.581961][ T5790] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  198.699926][ T6770] loop0: detected capacity change from 0 to 512
[  198.712582][ T6770] ext3: Unknown parameter 'rootcontext'
[  198.815449][ T6770] netlink: 'syz.0.245': attribute type 9 has an invalid length.
[  198.823624][ T6770] netlink: 'syz.0.245': attribute type 6 has an invalid length.
[  199.374023][ T6772] loop1: detected capacity change from 0 to 128
[  199.459248][ T6772] EXT4-fs (loop1): Test dummy encryption mode enabled
[  199.508728][ T6772] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  199.557661][ T6772] ext4 filesystem being mounted at /71/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  200.833251][ T5791] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  201.404148][ T6791] netlink: 104 bytes leftover after parsing attributes in process `syz.3.247'.
[  201.579037][ T6792] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  201.636742][ T6792] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[  201.694872][ T6792] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  202.156083][ T6801] loop1: detected capacity change from 0 to 512
[  202.163506][ T6801] ext3: Unknown parameter 'rootcontext'
[  205.200850][ T5799] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  205.407409][ T6804] loop2: detected capacity change from 0 to 128
[  205.558517][ T6810] loop0: detected capacity change from 0 to 128
[  205.616334][ T6810] EXT4-fs (loop0): Test dummy encryption mode enabled
[  205.753579][ T6810] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  205.780598][ T6810] ext4 filesystem being mounted at /62/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  207.663221][ T5788] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  208.222844][ T2195] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  208.459236][ T2195] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  208.479924][ T6832] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  208.485725][ T2195] usb 1-1: config 0 has no interfaces?
[  208.494236][ T6832] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[  208.494306][ T6832] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  208.540374][ T2195] usb 1-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  208.549681][ T2195] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  208.593650][ T2195] usb 1-1: config 0 descriptor??
[  208.878392][ T6834] netlink: 104 bytes leftover after parsing attributes in process `syz.1.261'.
[  209.499852][ T6844] loop1: detected capacity change from 0 to 128
[  211.192617][ T2195] usb 1-1: USB disconnect, device number 2
[  211.837763][ T5797] Bluetooth: hci2: command 0x0406 tx timeout
[  211.843937][ T5105] Bluetooth: hci3: command 0x0406 tx timeout
[  211.849989][ T5105] Bluetooth: hci1: command 0x0406 tx timeout
[  211.857195][ T5105] Bluetooth: hci0: command 0x0406 tx timeout
[  212.192282][ T6855] overlayfs: missing 'lowerdir'
[  212.919354][ T6860] netlink: 104 bytes leftover after parsing attributes in process `syz.0.270'.
[  214.489030][ T6873] loop3: detected capacity change from 0 to 128
[  214.562664][ T6873] syz.3.275: attempt to access beyond end of device
[  214.562664][ T6873] loop3: rw=2049, sector=170, nr_sectors = 80 limit=128
[  214.579558][ T6873] syz.3.275: attempt to access beyond end of device
[  214.579558][ T6873] loop3: rw=2049, sector=138, nr_sectors = 32 limit=128
[  214.630230][ T2195] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  215.361322][ T5877] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  215.400748][ T2195] usb 1-1: Using ep0 maxpacket: 8
[  215.480697][ T6883] loop3: detected capacity change from 0 to 128
[  215.828951][ T6884] overlayfs: missing 'lowerdir'
[  216.570355][ T6887] netlink: 104 bytes leftover after parsing attributes in process `syz.2.279'.
[  217.162351][ T2195] usb 1-1: device descriptor read/all, error -71
[  217.177249][ T6893] loop0: detected capacity change from 0 to 512
[  217.187787][ T6893] EXT4-fs: Ignoring removed mblk_io_submit option
[  217.200371][ T6893] EXT4-fs: Ignoring removed mblk_io_submit option
[  217.211884][ T6893] EXT4-fs (loop0): Test dummy encryption mode enabled
[  217.243642][ T6893] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  217.335653][ T6893] EXT4-fs (loop0): 1 truncate cleaned up
[  217.351916][ T6893] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  218.883604][ T6896] x_tables: ip_tables: ah match: only valid for protocol 51
[  218.940161][ T5877] usb 2-1: Using ep0 maxpacket: 32
[  219.021655][ T5877] usb 2-1: device descriptor read/all, error -71
[  219.198753][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.278636][ T6908] loop3: detected capacity change from 0 to 128
[  219.347275][ T6910] loop0: detected capacity change from 0 to 256
[  219.365675][ T6910] exfat: Deprecated parameter 'namecase'
[  219.400050][ T6910] exfat: Deprecated parameter 'utf8'
[  219.498266][ T6910] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  219.647233][ T6912] loop2: detected capacity change from 0 to 512
[  220.491135][ T5994] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  220.754226][ T6917] overlayfs: missing 'lowerdir'
[  221.003820][ T6920] netlink: 104 bytes leftover after parsing attributes in process `syz.0.288'.
[  221.106374][ T6906] loop1: detected capacity change from 0 to 40427
[  221.124826][ T6906] F2FS-fs (loop1): invalid crc value
[  221.138730][ T6906] F2FS-fs (loop1): Found nat_bits in checkpoint
[  221.337203][ T6906] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  222.516295][ T6937] loop0: detected capacity change from 0 to 128
[  223.169304][ T5791] syz-executor: attempt to access beyond end of device
[  223.169304][ T5791] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  223.224420][ T5791] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  224.487306][ T6941] loop3: detected capacity change from 0 to 512
[  224.494670][ T6941] EXT4-fs: Ignoring removed nobh option
[  224.832322][ T6941] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  225.098044][ T6941] EXT4-fs (loop3): orphan cleanup on readonly fs
[  225.161854][ T6941] __quota_error: 11 callbacks suppressed
[  225.161948][ T6941] Quota error (device loop3): v2_read_file_info: Free block number 1 out of range (1, 6).
[  225.178286][ T6941] EXT4-fs warning (device loop3): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  225.201477][ T6941] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  225.228732][ T6941] EXT4-fs (loop3): 1 truncate cleaned up
[  225.254511][ T6941] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  226.595814][ T6950] overlayfs: missing 'workdir'
[  226.802158][ T6953] loop2: detected capacity change from 0 to 16
[  226.985112][ T6953] erofs: (device loop2): mounted with root inode @ nid 36.
[  227.021265][ T6953] syz.2.295: attempt to access beyond end of device
[  227.021265][ T6953] loop2: rw=0, sector=8, nr_sectors = 16 limit=16
[  227.052581][ T5790] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.578517][ T6960] netlink: 'syz.0.298': attribute type 4 has an invalid length.
[  230.398462][ T6967] syz.1.292[6967] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  230.398602][ T6967] syz.1.292[6967] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  230.414584][ T6967] loop1: detected capacity change from 0 to 128
[  230.433963][ T6967] FAT-fs (loop1): Unrecognized mount option "uni_late=0" or missing value
[  231.910388][ T6969] loop3: detected capacity change from 0 to 40427
[  231.949446][ T6969] F2FS-fs (loop3): invalid crc value
[  231.989907][ T6969] F2FS-fs (loop3): Found nat_bits in checkpoint
[  232.160307][ T6969] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  233.451016][ T6984] loop0: detected capacity change from 0 to 128
[  233.972426][ T5790] syz-executor: attempt to access beyond end of device
[  233.972426][ T5790] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  235.399886][ T6986] loop1: detected capacity change from 0 to 512
[  235.407481][ T6986] ext3: Unknown parameter 'rootcontext'
[  235.547722][ T5790] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  236.173286][ T5789] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  237.189180][ T6986] netlink: 'syz.1.301': attribute type 9 has an invalid length.
[  237.197102][ T6986] netlink: 'syz.1.301': attribute type 6 has an invalid length.
[  237.604983][ T6996] overlayfs: missing 'workdir'
[  237.940308][ T7000] netlink: 'syz.1.308': attribute type 3 has an invalid length.
[  238.057600][ T7003] loop2: detected capacity change from 0 to 512
[  238.102159][ T7003] EXT4-fs: Ignoring removed mblk_io_submit option
[  238.140251][ T7003] EXT4-fs: Ignoring removed mblk_io_submit option
[  238.167928][ T7006] loop1: detected capacity change from 0 to 512
[  238.174435][ T7003] EXT4-fs (loop2): Test dummy encryption mode enabled
[  238.203469][ T7007] loop3: detected capacity change from 0 to 512
[  238.212010][ T7003] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  238.240201][ T7006] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  238.249989][ T7006] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  238.296641][ T7006] EXT4-fs (loop1): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  238.317640][ T7006] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  238.330443][ T7003] EXT4-fs (loop2): 1 truncate cleaned up
[  238.370966][ T7003] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  238.383213][ T7006] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=c042e01c, mo2=0000]
[  238.432922][ T7006] EXT4-fs (loop1): orphan cleanup on readonly fs
[  238.458624][ T7006] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.310: bg 0: block 34: padding at end of block bitmap is not set
[  238.545328][ T7006] Quota error (device loop1): write_blk: dquota write failed
[  238.565786][ T7006] Quota error (device loop1): qtree_write_dquot: Error -28 occurred while creating quota
[  238.590126][ T7006] EXT4-fs error (device loop1): ext4_acquire_dquot:6940: comm syz.1.310: Failed to acquire dquot type 1
[  238.623060][ T7006] EXT4-fs (loop1): 1 truncate cleaned up
[  238.666693][ T7006] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  239.746659][ T7014] x_tables: ip_tables: ah match: only valid for protocol 51
[  241.101775][ T5791] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  241.122768][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  241.701894][ T7033] loop2: detected capacity change from 0 to 128
[  242.346539][ T7034] overlay: filesystem on ./file0 not supported as upperdir
[  243.363458][ T7045] loop3: detected capacity change from 0 to 256
[  243.395842][ T7045] exfat: Deprecated parameter 'utf8'
[  243.446974][ T7045] exfat: Deprecated parameter 'utf8'
[  243.480515][ T7045] exfat: Deprecated parameter 'namecase'
[  243.557160][ T7045] exFAT-fs (loop3): error, The cluster chain has a loop
[  243.574066][ T7047] syz.1.316[7047] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  243.574219][ T7047] syz.1.316[7047] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  243.622599][ T7045] exFAT-fs (loop3): Filesystem has been set read-only
[  243.724680][ T7051] loop0: detected capacity change from 0 to 512
[  243.735546][ T7045] exFAT-fs (loop3): failed to count the number of clusters in root
[  243.795008][ T7045] exFAT-fs (loop3): failed to recognize exfat type
[  243.807992][ T7051] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  243.845143][ T7051] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  243.858921][ T7053] loop2: detected capacity change from 0 to 512
[  243.890281][ T7051] EXT4-fs (loop0): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  243.920846][ T7051] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  243.937649][ T7051] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=c042e01c, mo2=0000]
[  243.981110][ T7051] EXT4-fs (loop0): orphan cleanup on readonly fs
[  243.988717][ T6012] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  244.066007][ T7051] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.321: bg 0: block 34: padding at end of block bitmap is not set
[  244.160702][ T7051] Quota error (device loop0): write_blk: dquota write failed
[  244.185747][ T7051] Quota error (device loop0): qtree_write_dquot: Error -28 occurred while creating quota
[  244.219219][ T7056] loop1: detected capacity change from 0 to 512
[  244.231494][ T7051] EXT4-fs error (device loop0): ext4_acquire_dquot:6940: comm syz.0.321: Failed to acquire dquot type 1
[  244.302625][ T7056] EXT4-fs: Ignoring removed mblk_io_submit option
[  244.309220][ T7056] EXT4-fs: Ignoring removed mblk_io_submit option
[  244.342576][ T7056] EXT4-fs (loop1): Test dummy encryption mode enabled
[  244.349436][ T7056] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  244.469365][ T7059] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  244.615529][ T7051] EXT4-fs (loop0): 1 truncate cleaned up
[  245.106317][ T7056] EXT4-fs (loop1): 1 truncate cleaned up
[  245.152669][ T7056] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  245.226243][ T7051] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  245.762269][ T7070] x_tables: ip_tables: ah match: only valid for protocol 51
[  246.610499][ T5791] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  246.841900][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  247.427144][ T7068] loop3: detected capacity change from 0 to 40427
[  247.455319][ T7068] F2FS-fs (loop3): invalid crc value
[  247.484805][ T7068] F2FS-fs (loop3): Found nat_bits in checkpoint
[  247.681889][ T7068] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  247.803797][   T27] audit: type=1804 audit(1757858656.292:39): pid=7068 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.325" name="/newroot/69/file0/bus" dev="loop3" ino=10 res=1 errno=0
[  248.063117][ T7098] loop1: detected capacity change from 0 to 128
[  250.533726][ T7102] loop0: detected capacity change from 0 to 40427
[  250.563835][ T7102] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  250.571842][ T7102] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  250.606908][ T7102] F2FS-fs (loop0): invalid crc value
[  250.726196][ T7102] F2FS-fs (loop0): Found nat_bits in checkpoint
[  250.894139][ T7102] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  250.901495][ T7102] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  251.178803][   T27] audit: type=1804 audit(1757858659.652:40): pid=7107 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.332" name="/newroot/85/bus/bus" dev="loop0" ino=10 res=1 errno=0
[  252.072703][   T27] audit: type=1804 audit(1757858659.762:41): pid=7102 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.332" name="/newroot/85/bus/bus" dev="loop0" ino=10 res=1 errno=0
[  252.897987][ T7115] loop2: detected capacity change from 0 to 512
[  252.921198][ T7115] EXT4-fs: Ignoring removed nobh option
[  255.169400][ T5790] syz-executor: attempt to access beyond end of device
[  255.169400][ T5790] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  255.195260][ T7115] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  255.690740][ T7115] workqueue: Failed to create a rescuer kthread for wq "ext4-rsv-conversion": -EINTR
[  255.691145][ T7115] EXT4-fs: failed to create workqueue
[  255.706507][ T7115] EXT4-fs (loop2): mount failed
[  255.740232][ T5790] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  255.851489][ T1285] ieee802154 phy0 wpan0: encryption failed: -22
[  255.857860][ T1285] ieee802154 phy1 wpan1: encryption failed: -22
[  256.038068][ T7120] loop2: detected capacity change from 0 to 16
[  256.079653][ T7120] erofs: (device loop2): erofs_read_inode: unsupported i_format 32 of nid 36
[  256.501336][ T5779] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  256.710829][ T5779] usb 3-1: Using ep0 maxpacket: 32
[  256.736650][ T5779] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  256.960791][ T5779] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  257.117613][ T5779] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  257.279282][ T5779] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  257.319844][ T5779] usb 3-1: config 0 descriptor??
[  257.754248][ T5779] savu 0003:1E7D:2D5A.0004: unknown main item tag 0x0
[  257.775090][ T5779] savu 0003:1E7D:2D5A.0004: unknown main item tag 0x0
[  257.795320][ T5779] savu 0003:1E7D:2D5A.0004: unknown main item tag 0x0
[  257.810279][ T5779] savu 0003:1E7D:2D5A.0004: unknown main item tag 0x0
[  257.830436][ T5779] savu 0003:1E7D:2D5A.0004: unknown main item tag 0x0
[  257.837336][ T5779] savu 0003:1E7D:2D5A.0004: unbalanced collection at end of report description
[  257.850899][ T5779] savu 0003:1E7D:2D5A.0004: parse failed
[  257.860250][ T5779] savu: probe of 0003:1E7D:2D5A.0004 failed with error -22
[  257.917591][ T7137] loop3: detected capacity change from 0 to 512
[  257.978537][    T9] usb 3-1: USB disconnect, device number 4
[  258.111317][ T7141] loop0: detected capacity change from 0 to 256
[  258.299152][ T7141] FAT-fs (loop0): Directory bread(block 64) failed
[  258.306177][ T7141] FAT-fs (loop0): Directory bread(block 65) failed
[  258.313505][ T7141] FAT-fs (loop0): Directory bread(block 66) failed
[  258.320191][ T7141] FAT-fs (loop0): Directory bread(block 67) failed
[  258.327385][ T7141] FAT-fs (loop0): Directory bread(block 68) failed
[  258.334170][ T7141] FAT-fs (loop0): Directory bread(block 69) failed
[  258.341511][ T7141] FAT-fs (loop0): Directory bread(block 70) failed
[  258.348177][ T7141] FAT-fs (loop0): Directory bread(block 71) failed
[  258.354863][ T7141] FAT-fs (loop0): Directory bread(block 72) failed
[  258.361571][ T7141] FAT-fs (loop0): Directory bread(block 73) failed
[  262.954992][ T7168] loop0: detected capacity change from 0 to 512
[  262.956993][ T7166] loop3: detected capacity change from 0 to 4096
[  262.996096][ T7166] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  263.036075][ T7166] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  263.250251][ T5877] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  263.260205][   T23] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  263.439097][ T5790] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  263.448521][ T5877] usb 2-1: Using ep0 maxpacket: 8
[  263.458727][ T5877] usb 2-1: config index 0 descriptor too short (expected 5924, got 36)
[  263.467517][ T5877] usb 2-1: config 250 has an invalid interface number: 228 but max is -1
[  263.479887][ T5877] usb 2-1: config 250 has 1 interface, different from the descriptor's value: 0
[  263.491056][ T5877] usb 2-1: config 250 has no interface number 0
[  263.492243][   T23] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  263.497642][ T5877] usb 2-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  263.533249][ T5877] usb 2-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  263.543347][   T23] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  263.564826][   T23] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  263.573205][ T5877] usb 2-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0
[  263.580152][   T23] usb 3-1: Product: syz
[  263.587907][   T23] usb 3-1: Manufacturer: syz
[  263.603080][   T23] usb 3-1: SerialNumber: syz
[  263.614975][ T5877] usb 2-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 0
[  263.640875][ T5877] usb 2-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  263.669322][ T5877] usb 2-1: config 250 interface 228 has no altsetting 0
[  263.689305][ T5877] usb 2-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  263.699159][ T5877] usb 2-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  263.712244][ T5877] usb 2-1: Product: syz
[  263.717451][ T5877] usb 2-1: SerialNumber: syz
[  263.762454][ T5877] hub 2-1:250.228: bad descriptor, ignoring hub
[  263.782609][ T5877] hub: probe of 2-1:250.228 failed with error -5
[  263.984510][ T5877] usblp 2-1:250.228: usblp0: USB Bidirectional printer dev 5 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  264.342059][ T5779] usb 2-1: USB disconnect, device number 5
[  264.357973][ T5779] usblp0: removed
[  264.482581][   T23] cdc_ncm 3-1:1.0: SET_CRC_MODE failed
[  264.492726][   T23] cdc_ncm 3-1:1.0: SET_NTB_FORMAT failed
[  264.617457][   T23] cdc_ncm 3-1:1.0: bind() failure
[  264.627541][   T23] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found
[  264.636196][   T23] cdc_ncm 3-1:1.1: bind() failure
[  264.663097][   T23] usb 3-1: USB disconnect, device number 5
[  264.707730][ T7186] loop0: detected capacity change from 0 to 1024
[  264.759391][ T7186] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  264.780176][ T7186] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  264.789838][ T7186] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  264.808233][ T7186] EXT4-fs error (device loop0): ext4_get_journal_inode:5807: inode #5: comm syz.0.359: unexpected bad inode w/o EXT4_IGET_BAD
[  264.830194][ T7186] EXT4-fs (loop0): no journal found
[  264.840347][ T7186] EXT4-fs (loop0): can't get journal size
[  264.853743][ T7186] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  264.978165][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  265.232808][ T7198] loop0: detected capacity change from 0 to 128
[  265.263750][ T7198] EXT4-fs (loop0): Test dummy encryption mode enabled
[  265.322017][ T7198] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  265.381871][ T7198] ext4 filesystem being mounted at /94/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  265.736889][ T7205] loop1: detected capacity change from 0 to 128
[  267.193463][ T5788] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  271.422919][    T9] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  271.513272][ T7242] loop0: detected capacity change from 0 to 128
[  271.539646][ T7242] EXT4-fs (loop0): Test dummy encryption mode enabled
[  271.558757][ T7242] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  271.572264][ T7242] ext4 filesystem being mounted at /98/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  271.640168][    T9] usb 3-1: Using ep0 maxpacket: 8
[  271.648344][    T9] usb 3-1: config index 0 descriptor too short (expected 5924, got 36)
[  271.658495][    T9] usb 3-1: config 250 has an invalid interface number: 228 but max is -1
[  271.667196][    T9] usb 3-1: config 250 has 1 interface, different from the descriptor's value: 0
[  271.678976][    T9] usb 3-1: config 250 has no interface number 0
[  271.687247][    T9] usb 3-1: config 250 interface 228 altsetting 255 endpoint 0x1 has invalid maxpacket 65280, setting to 1024
[  271.699204][    T9] usb 3-1: config 250 interface 228 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 1024
[  271.711247][    T9] usb 3-1: config 250 interface 228 altsetting 255 endpoint 0x82 has invalid wMaxPacketSize 0
[  271.736091][    T9] usb 3-1: config 250 interface 228 altsetting 255 bulk endpoint 0x82 has invalid maxpacket 0
[  271.748424][    T9] usb 3-1: config 250 interface 228 altsetting 255 has 2 endpoint descriptors, different from the interface descriptor's value: 17
[  271.767518][    T9] usb 3-1: config 250 interface 228 has no altsetting 0
[  271.779319][    T9] usb 3-1: New USB device found, idVendor=0525, idProduct=d292, bcdDevice= 0.07
[  271.794050][    T9] usb 3-1: New USB device strings: Mfr=0, Product=106, SerialNumber=59
[  271.805510][    T9] usb 3-1: Product: syz
[  271.826029][    T9] usb 3-1: SerialNumber: syz
[  271.852038][    T9] hub 3-1:250.228: bad descriptor, ignoring hub
[  271.867514][    T9] hub: probe of 3-1:250.228 failed with error -5
[  272.655357][    T9] usblp 3-1:250.228: usblp0: USB Bidirectional printer dev 6 if 228 alt 255 proto 3 vid 0x0525 pid 0xD292
[  272.696300][ T5788] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  273.895420][ T5858] usb 3-1: USB disconnect, device number 6
[  273.919721][ T5858] usblp0: removed
[  274.220131][ T5779] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  274.428098][ T5779] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  274.453914][ T7278] loop2: detected capacity change from 0 to 128
[  274.464545][ T5779] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  274.470584][ T7278] EXT4-fs (loop2): Test dummy encryption mode enabled
[  274.499326][ T5779] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  274.522607][ T7278] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  274.531458][ T5779] usb 2-1: config 0 descriptor??
[  274.548623][ T7278] ext4 filesystem being mounted at /89/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  275.014907][ T5779] keytouch 0003:0926:3333.0005: fixing up Keytouch IEC report descriptor
[  275.466287][ T5779] input: HID 0926:3333 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:0926:3333.0005/input/input10
[  275.672764][ T5787] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  275.831833][ T5779] keytouch 0003:0926:3333.0005: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.1-1/input0
[  275.909047][ T7291] loop2: detected capacity change from 0 to 512
[  275.923996][ T5779] usb 2-1: USB disconnect, device number 6
[  275.951331][ T7291] EXT4-fs: Ignoring removed nobh option
[  275.988852][ T7291] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  276.018162][ T7291] EXT4-fs (loop2): Test dummy encryption mode enabled
[  276.061147][ T7292] fido_id[7292]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/2-1/report_descriptor': No such file or directory
[  276.138564][ T7291] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.386: casefold flag without casefold feature
[  276.232780][ T7276] loop3: detected capacity change from 0 to 40427
[  276.245496][ T7291] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.386: couldn't read orphan inode 15 (err -117)
[  276.286991][ T7291] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  276.312796][ T7276] F2FS-fs (loop3): invalid crc value
[  276.674770][ T7276] F2FS-fs (loop3): Found nat_bits in checkpoint
[  277.174735][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  277.187610][ T7276] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  277.272082][   T27] audit: type=1804 audit(1757858685.772:42): pid=7276 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.384" name="/newroot/82/file0/bus" dev="loop3" ino=10 res=1 errno=0
[  277.589838][ T7311] loop2: detected capacity change from 0 to 1024
[  277.665869][ T7311] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  277.682422][ T7311] ext4 filesystem being mounted at /92/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  277.784757][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  278.343980][ T7322] loop1: detected capacity change from 0 to 128
[  278.411505][ T7322] EXT4-fs (loop1): Test dummy encryption mode enabled
[  278.466979][ T7322] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  278.483800][ T7322] ext4 filesystem being mounted at /111/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  278.500621][ T5790] syz-executor: attempt to access beyond end of device
[  278.500621][ T5790] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  278.558049][ T5790] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  278.715396][ T7327] loop2: detected capacity change from 0 to 512
[  279.952340][ T7331] loop2: detected capacity change from 0 to 16
[  279.990468][ T7331] erofs: (device loop2): erofs_read_inode: unsupported i_format 32 of nid 36
[  280.588359][ T7348] netlink: 'syz.3.396': attribute type 4 has an invalid length.
[  281.325464][ T7350] loop2: detected capacity change from 0 to 1024
[  281.351509][ T7350] EXT4-fs: Ignoring removed oldalloc option
[  281.357506][ T7350] EXT4-fs: Ignoring removed bh option
[  281.401383][ T7350] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  281.467122][ T7350] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  281.601751][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  281.758382][ T7362] loop0: detected capacity change from 0 to 512
[  281.893683][ T7368] loop3: detected capacity change from 0 to 512
[  281.912054][ T7362] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  281.958746][ T7362] ext4 filesystem being mounted at /107/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  281.983198][ T5789] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  282.131454][ T7362] tipc: Started in network mode
[  282.136398][ T7362] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[  282.226861][ T7362] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  282.896430][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  283.124024][ T7373] loop3: detected capacity change from 0 to 16
[  283.202971][ T7373] erofs: (device loop3): erofs_read_inode: unsupported i_format 32 of nid 36
[  283.584849][ T5791] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  283.609019][ T7364] loop2: detected capacity change from 0 to 40427
[  283.649542][ T7364] F2FS-fs (loop2): invalid crc value
[  283.812855][ T7387] netlink: 'syz.3.410': attribute type 4 has an invalid length.
[  283.904110][ T7364] F2FS-fs (loop2): Found nat_bits in checkpoint
[  284.654171][ T7364] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  284.668471][ T7391] loop3: detected capacity change from 0 to 128
[  284.730207][   T27] audit: type=1804 audit(1757858693.222:43): pid=7364 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.404" name="/newroot/99/file0/bus" dev="loop2" ino=10 res=1 errno=0
[  284.960959][ T7394] loop3: detected capacity change from 0 to 512
[  285.529326][ T7401] loop3: detected capacity change from 0 to 512
[  285.667028][ T6012] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  285.830664][ T5787] syz-executor: attempt to access beyond end of device
[  285.830664][ T5787] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  285.851431][ T5787] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  286.446719][ T7410] loop2: detected capacity change from 0 to 16
[  286.462575][ T7410] erofs: (device loop2): erofs_read_inode: unsupported i_format 32 of nid 36
[  286.659096][ T7414] loop1: detected capacity change from 0 to 128
[  286.712300][ T7414] EXT4-fs (loop1): Test dummy encryption mode enabled
[  286.843535][ T7414] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  287.949742][ T7417] netlink: 'syz.2.421': attribute type 4 has an invalid length.
[  287.991098][ T7414] ext4 filesystem being mounted at /114/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  288.260416][ T7422] loop0: detected capacity change from 0 to 128
[  288.987477][ T7424] loop2: detected capacity change from 0 to 512
[  289.182113][ T7424] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  289.280390][ T7424] ext4 filesystem being mounted at /102/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  289.695993][ T7428] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #2: comm syz.2.423: corrupted inode contents
[  289.747547][ T7428] EXT4-fs error (device loop2): ext4_dirty_inode:6106: inode #2: comm syz.2.423: mark_inode_dirty error
[  289.809125][ T7428] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #2: comm syz.2.423: corrupted inode contents
[  289.870207][ T7428] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #2: comm syz.2.423: mark_inode_dirty error
[  290.094392][ T5791] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  290.424565][ T7433] loop0: detected capacity change from 0 to 256
[  290.524110][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  290.561102][ T7433] FAT-fs (loop0): Directory bread(block 64) failed
[  290.573305][ T7433] FAT-fs (loop0): Directory bread(block 65) failed
[  290.579991][ T7433] FAT-fs (loop0): Directory bread(block 66) failed
[  290.588643][ T7433] FAT-fs (loop0): Directory bread(block 67) failed
[  290.595638][ T7433] FAT-fs (loop0): Directory bread(block 68) failed
[  290.647410][ T7433] FAT-fs (loop0): Directory bread(block 69) failed
[  290.676472][ T7433] FAT-fs (loop0): Directory bread(block 70) failed
[  290.703618][ T7433] FAT-fs (loop0): Directory bread(block 71) failed
[  290.717607][ T7433] FAT-fs (loop0): Directory bread(block 72) failed
[  290.727548][ T7433] FAT-fs (loop0): Directory bread(block 73) failed
[  291.129375][ T7445] loop0: detected capacity change from 0 to 16
[  291.158630][ T7445] erofs: (device loop0): erofs_read_inode: unsupported i_format 32 of nid 36
[  292.149778][ T7452] loop3: detected capacity change from 0 to 128
[  292.200344][ T7452] EXT4-fs (loop3): Test dummy encryption mode enabled
[  292.261535][ T7452] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  292.359833][ T7452] ext4 filesystem being mounted at /93/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  292.523477][ T7460] netlink: 'syz.1.435': attribute type 3 has an invalid length.
[  292.621542][ T7465] loop0: detected capacity change from 0 to 128
[  293.062871][ T7464] loop2: detected capacity change from 0 to 512
[  293.932457][ T7472] loop1: detected capacity change from 0 to 16
[  293.959640][ T7472] erofs: (device loop1): erofs_read_inode: unsupported i_format 32 of nid 36
[  294.348425][ T7474] loop1: detected capacity change from 0 to 512
[  294.380484][ T7474] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  294.420190][ T7474] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  294.455858][ T7474] EXT4-fs (loop1): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  294.486073][ T7474] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  294.500352][ T7474] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=c042e01c, mo2=0000]
[  294.519092][ T7474] EXT4-fs (loop1): orphan cleanup on readonly fs
[  294.539987][ T7474] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.440: bg 0: block 34: padding at end of block bitmap is not set
[  294.576841][ T7474] Quota error (device loop1): write_blk: dquota write failed
[  294.595857][ T7474] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  294.616318][ T7474] EXT4-fs error (device loop1): ext4_acquire_dquot:6940: comm syz.1.440: Failed to acquire dquot type 1
[  294.647992][ T7474] EXT4-fs (loop1): 1 truncate cleaned up
[  294.676456][ T7474] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  294.857157][ T7480] loop0: detected capacity change from 0 to 128
[  294.896618][ T7480] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  294.929732][ T7480] ext4 filesystem being mounted at /117/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  295.126936][ T5791] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  295.188113][ T5788] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  295.301445][ T5790] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  296.489669][ T7503] netlink: 'syz.3.447': attribute type 4 has an invalid length.
[  298.481367][ T7510] veth0_vlan: entered allmulticast mode
[  298.975868][ T7514] loop1: detected capacity change from 0 to 512
[  298.995975][ T7514] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  299.030478][ T7514] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  299.048951][ T7514] EXT4-fs (loop1): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  299.073561][ T7514] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  299.092818][ T7514] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=c042e01c, mo2=0000]
[  299.140784][ T7514] EXT4-fs (loop1): orphan cleanup on readonly fs
[  299.189389][ T7514] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.450: bg 0: block 34: padding at end of block bitmap is not set
[  299.245810][ T7514] Quota error (device loop1): write_blk: dquota write failed
[  299.269259][ T7519] loop0: detected capacity change from 0 to 128
[  299.296617][ T7514] Quota error (device loop1): qtree_write_dquot: Error -28 occurred while creating quota
[  299.337466][ T7514] EXT4-fs error (device loop1): ext4_acquire_dquot:6940: comm syz.1.450: Failed to acquire dquot type 1
[  299.368169][ T7514] EXT4-fs (loop1): 1 truncate cleaned up
[  299.387997][ T7514] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  299.400207][ T7519] EXT4-fs (loop0): Test dummy encryption mode enabled
[  300.230370][ T7519] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  300.302100][ T7519] ext4 filesystem being mounted at /119/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  300.675077][ T5791] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  300.710570][ T7527] loop3: detected capacity change from 0 to 512
[  300.770237][ T6012] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  300.925093][ T7529] loop1: detected capacity change from 0 to 256
[  300.961763][ T7529] exfat: Deprecated parameter 'utf8'
[  300.967203][ T7529] exfat: Deprecated parameter 'utf8'
[  301.040135][ T7529] exfat: Deprecated parameter 'namecase'
[  301.090133][ T7529] exFAT-fs (loop1): error, The cluster chain has a loop
[  301.110522][ T7529] exFAT-fs (loop1): Filesystem has been set read-only
[  301.117348][ T7529] exFAT-fs (loop1): failed to count the number of clusters in root
[  301.160100][ T7529] exFAT-fs (loop1): failed to recognize exfat type
[  301.612195][ T7535] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  301.622319][ T7535] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  302.621676][ T7549] netlink: 'syz.2.456': attribute type 4 has an invalid length.
[  302.810965][ T5788] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  304.387347][ T7557] bridge0: entered promiscuous mode
[  304.705190][ T7565] loop0: detected capacity change from 0 to 512
[  304.746847][ T7565] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  304.770133][ T7565] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  304.794929][ T7565] EXT4-fs (loop0): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  304.856030][ T7565] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  304.944403][ T7565] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=c042e01c, mo2=0000]
[  304.980605][ T7565] EXT4-fs (loop0): orphan cleanup on readonly fs
[  305.009010][ T7565] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.462: bg 0: block 34: padding at end of block bitmap is not set
[  305.035652][ T7565] Quota error (device loop0): write_blk: dquota write failed
[  305.048182][ T7565] Quota error (device loop0): qtree_write_dquot: Error -28 occurred while creating quota
[  305.059011][ T7565] EXT4-fs error (device loop0): ext4_acquire_dquot:6940: comm syz.0.462: Failed to acquire dquot type 1
[  305.078538][ T7565] EXT4-fs (loop0): 1 truncate cleaned up
[  305.123253][ T7565] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  305.219295][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  305.254031][ T7572] veth1_to_bond: entered allmulticast mode
[  305.311565][ T7571] veth1_to_bond: left allmulticast mode
[  305.678160][ T7579] overlayfs: "xino" feature enabled using 2 upper inode bits.
[  305.780334][ T2195] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  305.992247][ T7585] netlink: 'syz.2.467': attribute type 4 has an invalid length.
[  306.682225][ T2195] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  306.703986][ T2195] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  306.733484][ T2195] usb 1-1: New USB device found, idVendor=1d34, idProduct=000a, bcdDevice= 0.00
[  306.766275][ T2195] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  306.811716][ T2195] usb 1-1: config 0 descriptor??
[  306.973881][   T27] audit: type=1326 audit(1757858715.472:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7587 comm="syz.3.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb58b38eba9 code=0x7ffc0000
[  307.025314][   T27] audit: type=1326 audit(1757858715.492:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7587 comm="syz.3.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb58b38eba9 code=0x7ffc0000
[  307.088912][ T7574] loop0: detected capacity change from 0 to 128
[  307.096904][   T27] audit: type=1326 audit(1757858715.492:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7587 comm="syz.3.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb58b38eba9 code=0x7ffc0000
[  307.260353][   T27] audit: type=1326 audit(1757858715.492:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7587 comm="syz.3.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb58b38eba9 code=0x7ffc0000
[  307.410108][   T27] audit: type=1326 audit(1757858715.492:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7587 comm="syz.3.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb58b38eba9 code=0x7ffc0000
[  307.452956][ T7593] loop2: detected capacity change from 0 to 512
[  307.478725][   T27] audit: type=1326 audit(1757858715.502:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7587 comm="syz.3.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb58b38eba9 code=0x7ffc0000
[  308.028511][ T7593] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  308.185526][   T27] audit: type=1326 audit(1757858715.502:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7587 comm="syz.3.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb58b38eba9 code=0x7ffc0000
[  308.284438][ T7593] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  308.338402][ T7593] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  308.352954][ T7593] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  308.361120][ T7593] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=c042e01c, mo2=0000]
[  308.369332][ T7593] EXT4-fs (loop2): orphan cleanup on readonly fs
[  308.379535][ T7593] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.473: bg 0: block 34: padding at end of block bitmap is not set
[  308.394012][   T27] audit: type=1326 audit(1757858715.502:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7587 comm="syz.3.470" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb58b38eba9 code=0x7ffc0000
[  308.395015][ T7593] EXT4-fs error (device loop2): ext4_acquire_dquot:6940: comm syz.2.473: Failed to acquire dquot type 1
[  308.440773][ T7593] EXT4-fs (loop2): 1 truncate cleaned up
[  308.465032][ T7593] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  308.532867][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  308.673110][ T7600] loop2: detected capacity change from 0 to 512
[  308.741871][ T6012] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  308.865140][ T7584] loop1: detected capacity change from 0 to 40427
[  309.463922][ T2195] usbhid 1-1:0.0: can't add hid device: -71
[  309.469984][ T2195] usbhid: probe of 1-1:0.0 failed with error -71
[  309.480377][ T2195] usb 1-1: USB disconnect, device number 5
[  309.520931][ T7591] loop3: detected capacity change from 0 to 40427
[  309.540357][    T9] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  309.582799][ T7591] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  309.618226][ T7591] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  309.654300][ T7591] F2FS-fs (loop3): invalid crc value
[  309.671445][ T7591] F2FS-fs (loop3): Found nat_bits in checkpoint
[  309.762552][ T7591] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  309.773846][ T7591] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  309.784811][    T9] usb 2-1: config 0 interface 0 altsetting 128 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  309.796714][    T9] usb 2-1: config 0 interface 0 altsetting 128 endpoint 0x81 has invalid wMaxPacketSize 0
[  309.811073][    T9] usb 2-1: config 0 interface 0 has no altsetting 0
[  309.817885][    T9] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  309.827848][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  309.872316][    T9] usb 2-1: config 0 descriptor??
[  310.031615][ T5790] syz-executor: attempt to access beyond end of device
[  310.031615][ T5790] loop3: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[  310.053747][ T5790] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  310.515954][    T9] usb 2-1: string descriptor 0 read error: -71
[  310.543488][    T9] uclogic 0003:256C:006D.0006: failed retrieving string descriptor #200: -71
[  310.567848][    T9] uclogic 0003:256C:006D.0006: failed retrieving pen parameters: -71
[  310.587224][    T9] uclogic 0003:256C:006D.0006: failed probing pen v2 parameters: -71
[  310.609209][    T9] uclogic 0003:256C:006D.0006: failed probing parameters: -71
[  310.629527][    T9] uclogic: probe of 0003:256C:006D.0006 failed with error -71
[  310.667071][    T9] usb 2-1: USB disconnect, device number 7
[  310.802546][ T7617] loop0: detected capacity change from 0 to 512
[  310.819841][ T7617] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  310.878576][   T27] kauditd_printk_skb: 6 callbacks suppressed
[  310.878591][   T27] audit: type=1804 audit(1757858719.372:56): pid=7617 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.479" name="/newroot/124/file0/file1" dev="loop0" ino=15 res=1 errno=0
[  311.085391][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  311.422184][ T7632] loop1: detected capacity change from 0 to 512
[  311.455235][ T7632] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  311.572590][ T7634] loop0: detected capacity change from 0 to 512
[  311.584860][ T7634] ext3: Unknown parameter 'rootcontext'
[  311.634387][ T7632] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  311.802470][ T7632] EXT4-fs (loop1): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  312.407337][ T7632] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  312.527446][ T7632] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=c042e01c, mo2=0000]
[  312.720784][ T7632] EXT4-fs (loop1): orphan cleanup on readonly fs
[  312.870657][ T7632] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.482: bg 0: block 34: padding at end of block bitmap is not set
[  313.119634][ T7632] Quota error (device loop1): write_blk: dquota write failed
[  313.177422][ T5789] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  313.192815][ T7632] Quota error (device loop1): qtree_write_dquot: Error -28 occurred while creating quota
[  313.359707][ T7632] EXT4-fs error (device loop1): ext4_acquire_dquot:6940: comm syz.1.482: Failed to acquire dquot type 1
[  313.472823][ T7632] EXT4-fs (loop1): 1 truncate cleaned up
[  313.507756][ T7632] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  315.094753][ T7641] bridge0: entered promiscuous mode
[  315.206829][ T5791] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  315.246575][ T7644] loop0: detected capacity change from 0 to 512
[  315.681837][ T7653] netlink: 'syz.3.488': attribute type 4 has an invalid length.
[  316.616416][   T27] audit: type=1326 audit(1757858725.112:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7655 comm="syz.3.489" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb58b38eba9 code=0x7ffc0000
[  316.659745][   T27] audit: type=1326 audit(1757858725.112:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7655 comm="syz.3.489" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb58b38eba9 code=0x7ffc0000
[  316.693250][   T27] audit: type=1326 audit(1757858725.142:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7655 comm="syz.3.489" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb58b38d510 code=0x7ffc0000
[  316.752956][   T27] audit: type=1326 audit(1757858725.142:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7655 comm="syz.3.489" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb58b38e7ab code=0x7ffc0000
[  316.777478][   T27] audit: type=1326 audit(1757858725.142:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7655 comm="syz.3.489" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb58b38e7ab code=0x7ffc0000
[  316.800383][   T27] audit: type=1326 audit(1757858725.152:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7655 comm="syz.3.489" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb58b38e7ab code=0x7ffc0000
[  316.824334][   T27] audit: type=1326 audit(1757858725.152:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7655 comm="syz.3.489" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb58b38e7ab code=0x7ffc0000
[  316.920211][ T5877] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  316.940187][   T27] audit: type=1326 audit(1757858725.422:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7655 comm="syz.3.489" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb58b38e7ab code=0x7ffc0000
[  316.999114][   T27] audit: type=1326 audit(1757858725.432:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7655 comm="syz.3.489" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb58b38e7ab code=0x7ffc0000
[  317.390940][ T1285] ieee802154 phy0 wpan0: encryption failed: -22
[  317.397300][ T1285] ieee802154 phy1 wpan1: encryption failed: -22
[  317.460266][ T5877] usb 4-1: Using ep0 maxpacket: 32
[  317.480930][   T27] audit: type=1326 audit(1757858725.972:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7655 comm="syz.3.489" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fb58b38e7ab code=0x7ffc0000
[  317.510279][ T5877] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  317.528283][ T5877] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  317.538752][ T5877] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  317.549690][ T5877] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  317.566219][ T5877] usb 4-1: config 0 descriptor??
[  317.618301][ T7664] loop1: detected capacity change from 0 to 256
[  317.709901][ T7664] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x53fda505, utbl_chksum : 0xe619d30d)
[  317.751712][ T7664] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  317.769213][ T7666] loop2: detected capacity change from 0 to 512
[  317.799045][ T7666] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  317.819243][ T7666] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  317.851594][ T7666] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  317.886663][ T7666] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  317.918474][ T7666] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=c042e01c, mo2=0000]
[  317.981200][ T7666] EXT4-fs (loop2): orphan cleanup on readonly fs
[  318.032694][ T7666] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.493: bg 0: block 34: padding at end of block bitmap is not set
[  318.127920][ T5877] savu 0003:1E7D:2D5A.0007: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.3-1/input0
[  318.153628][ T7664] syz.1.492: attempt to access beyond end of device
[  318.153628][ T7664] loop1: rw=524288, sector=280, nr_sectors = 128 limit=256
[  318.161375][ T7666] EXT4-fs error (device loop2): ext4_acquire_dquot:6940: comm syz.2.493: Failed to acquire dquot type 1
[  318.169768][ T7664] syz.1.492: attempt to access beyond end of device
[  318.169768][ T7664] loop1: rw=524288, sector=408, nr_sectors = 256 limit=256
[  318.193080][ T7664] syz.1.492: attempt to access beyond end of device
[  318.193080][ T7664] loop1: rw=0, sector=280, nr_sectors = 8 limit=256
[  318.245012][ T7666] EXT4-fs (loop2): 1 truncate cleaned up
[  318.267187][ T7666] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  318.315380][ T5877] usb 4-1: USB disconnect, device number 4
[  318.355571][ T7673] loop0: detected capacity change from 0 to 2048
[  318.399046][ T7672] fido_id[7672]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  318.512663][ T7673]  loop0: p1 < > p3
[  318.552200][ T7673] loop0: p3 size 134217728 extends beyond EOD, truncated
[  318.794505][ T5789] udevd[5789]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory
[  318.808976][ T6012] udevd[6012]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[  319.285211][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  320.115809][ T7685] netlink: 'syz.3.498': attribute type 4 has an invalid length.
[  320.357774][ T7689] loop2: detected capacity change from 0 to 8192
[  320.451493][ T7689]  loop2: p1 p2 p3 p4 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p216 p217 p218 p219 p220 p221 p222 p223 p224
[  320.451831][ T7689] loop2: p1 size 100663296 extends beyond EOD, 
[  320.580195][ T7693] loop3: detected capacity change from 0 to 512
[  320.750170][ T7689] truncated
[  320.777878][ T7689] loop2: p2 start 591104 is beyond EOD, truncated
[  320.848560][ T7689] loop2: p3 start 33572980 is beyond EOD, truncated
[  320.876629][ T7689] loop2: p5 size 100663296 extends beyond EOD, truncated
[  320.925711][ T7689] loop2: p6 start 591104 is beyond EOD, truncated
[  320.991679][ T7689] loop2: p7 size 100663296 extends beyond EOD, truncated
[  321.022171][ T7689] loop2: p8 start 591104 is beyond EOD, truncated
[  321.028749][ T7689] loop2: p9 size 100663296 extends beyond EOD, truncated
[  321.074896][ T7689] loop2: p10 start 591104 is beyond EOD, truncated
[  321.100191][ T7689] loop2: p11 size 100663296 extends beyond EOD, truncated
[  321.139959][ T7689] loop2: p12 start 591104 is beyond EOD, truncated
[  321.150398][ T7689] loop2: p13 size 100663296 extends beyond EOD, truncated
[  321.180890][ T7689] loop2: p14 start 591104 is beyond EOD, truncated
[  321.205371][ T7689] loop2: p15 size 100663296 extends beyond EOD, truncated
[  321.219748][ T7689] loop2: p16 start 591104 is beyond EOD, truncated
[  321.236127][ T7689] loop2: p17 size 100663296 extends beyond EOD, truncated
[  321.248783][ T7689] loop2: p18 start 591104 is beyond EOD, truncated
[  321.258103][ T7689] loop2: p19 size 100663296 extends beyond EOD, truncated
[  321.277432][ T7689] loop2: p20 start 591104 is beyond EOD, truncated
[  321.287388][ T7689] loop2: p21 size 100663296 extends beyond EOD, truncated
[  321.306882][ T7689] loop2: p22 start 591104 is beyond EOD, truncated
[  321.323954][ T7689] loop2: p23 size 100663296 extends beyond EOD, truncated
[  321.346121][ T7689] loop2: p24 start 591104 is beyond EOD, truncated
[  321.358953][ T7689] loop2: p25 size 100663296 extends beyond EOD, truncated
[  321.375277][ T7689] loop2: p26 start 591104 is beyond EOD, truncated
[  321.386584][ T7689] loop2: p27 size 100663296 extends beyond EOD, truncated
[  321.399479][ T7689] loop2: p28 start 591104 is beyond EOD, truncated
[  321.409048][ T7689] loop2: p29 size 100663296 extends beyond EOD, truncated
[  321.424638][ T7689] loop2: p30 start 591104 is beyond EOD, truncated
[  321.435532][ T7689] loop2: p31 size 100663296 extends beyond EOD, truncated
[  321.483171][ T7689] loop2: p32 start 591104 is beyond EOD, truncated
[  321.510140][ T7689] loop2: p33 size 100663296 extends beyond EOD, truncated
[  321.545037][ T7689] loop2: p34 start 591104 is beyond EOD, truncated
[  321.601904][ T7689] loop2: p35 size 100663296 extends beyond EOD, truncated
[  321.780900][ T7689] loop2: p36 start 591104 is beyond EOD, truncated
[  321.943054][ T7689] loop2: p37 size 100663296 extends beyond EOD, truncated
[  322.172240][ T7689] loop2: p38 start 591104 is beyond EOD, truncated
[  322.178812][ T7689] loop2: p39 size 100663296 extends beyond EOD, truncated
[  322.256015][ T7689] loop2: p40 start 591104 is beyond EOD, truncated
[  322.308832][ T7689] loop2: p41 size 100663296 extends beyond EOD, truncated
[  322.338350][ T7689] loop2: p42 start 591104 is beyond EOD, truncated
[  322.360243][ T7689] loop2: p43 size 100663296 extends beyond EOD, truncated
[  322.401599][ T7689] loop2: p44 start 591104 is beyond EOD, truncated
[  322.420925][ T7689] loop2: p45 size 100663296 extends beyond EOD, truncated
[  322.446758][ T7689] loop2: p46 start 591104 is beyond EOD, truncated
[  322.488437][ T7689] loop2: p47 size 100663296 extends beyond EOD, truncated
[  322.516931][ T7706] loop1: detected capacity change from 0 to 16
[  322.518445][ T7689] loop2: p48 start 591104 is beyond EOD, truncated
[  322.541831][ T7706] erofs: (device loop1): erofs_read_inode: unsupported i_format 32 of nid 36
[  322.580758][ T7689] loop2: p49 size 100663296 extends beyond EOD, truncated
[  322.610531][ T7689] loop2: p50 start 591104 is beyond EOD, truncated
[  322.630080][ T7689] loop2: p51 size 100663296 extends beyond EOD, truncated
[  322.660345][ T7689] loop2: p52 start 591104 is beyond EOD, truncated
[  322.666931][ T7689] loop2: p53 size 100663296 extends beyond EOD, truncated
[  322.744900][ T7710] loop1: detected capacity change from 0 to 512
[  322.752153][ T7689] loop2: p54 start 591104 is beyond EOD, truncated
[  322.763919][ T7689] loop2: p55 size 100663296 extends beyond EOD, truncated
[  322.789333][ T7710] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  322.830515][ T7689] loop2: p56 start 591104 is beyond EOD, truncated
[  322.847141][ T7710] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  322.870249][ T7689] loop2: p57 size 100663296 extends beyond EOD, truncated
[  322.892665][ T7710] EXT4-fs (loop1): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  322.906900][ T7689] loop2: p58 start 591104 is beyond EOD, truncated
[  322.944007][ T7689] loop2: p59 size 100663296 extends beyond EOD, truncated
[  322.957633][ T7710] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  323.044430][ T7713] netlink: 'syz.0.507': attribute type 4 has an invalid length.
[  323.052251][ T7713] netlink: 17 bytes leftover after parsing attributes in process `syz.0.507'.
[  323.150307][ T7710] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=c042e01c, mo2=0000]
[  323.202819][ T7710] EXT4-fs (loop1): orphan cleanup on readonly fs
[  323.245832][ T7689] loop2: p60 start 591104 is beyond EOD, truncated
[  323.313166][ T7689] loop2: p61 size 100663296 extends beyond EOD, truncated
[  323.444521][ T7710] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.508: bg 0: block 34: padding at end of block bitmap is not set
[  323.640309][ T7689] loop2: p62 start 591104 is beyond EOD, truncated
[  323.667241][ T7689] loop2: p63 size 100663296 extends beyond EOD, truncated
[  323.677059][ T7710] __quota_error: 43 callbacks suppressed
[  323.677075][ T7710] Quota error (device loop1): write_blk: dquota write failed
[  323.704180][ T7689] loop2: p64 start 591104 is beyond EOD, truncated
[  323.723961][ T7689] loop2: p65 size 100663296 extends beyond EOD, truncated
[  323.733094][ T7710] Quota error (device loop1): qtree_write_dquot: Error -28 occurred while creating quota
[  323.766042][ T7689] loop2: p66 start 591104 is beyond EOD, truncated
[  323.777347][ T7710] EXT4-fs error (device loop1): ext4_acquire_dquot:6940: comm syz.1.508: Failed to acquire dquot type 1
[  323.790408][ T7689] loop2: p67 size 100663296 extends beyond EOD, truncated
[  323.819722][ T7689] loop2: p68 start 591104 is beyond EOD, truncated
[  323.827778][ T7689] loop2: p69 size 100663296 extends beyond EOD, truncated
[  323.842120][ T7689] loop2: p70 start 591104 is beyond EOD, truncated
[  323.849108][ T7689] loop2: p71 size 100663296 extends beyond EOD, truncated
[  323.858310][ T7689] loop2: p72 start 591104 is beyond EOD, truncated
[  323.866092][ T7689] loop2: p73 size 100663296 extends beyond EOD, truncated
[  323.875593][ T7689] loop2: p74 start 591104 is beyond EOD, truncated
[  323.879976][ T7710] EXT4-fs (loop1): 1 truncate cleaned up
[  323.882767][ T7689] loop2: p75 size 100663296 extends beyond EOD, truncated
[  323.901742][ T7710] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  323.907797][ T7689] loop2: p76 start 591104 is beyond EOD, truncated
[  323.948579][ T7715] loop0: detected capacity change from 0 to 1024
[  323.957373][ T7689] loop2: p77 size 100663296 extends beyond EOD, truncated
[  323.973751][ T7689] loop2: p78 start 591104 is beyond EOD, truncated
[  323.981514][ T7689] loop2: p79 size 100663296 extends beyond EOD, truncated
[  324.002345][ T7689] loop2: p80 start 591104 is beyond EOD, truncated
[  324.012181][ T7689] loop2: p81 size 100663296 extends beyond EOD, truncated
[  324.031114][ T7715] EXT4-fs (loop0): inodes count not valid: 8192 vs 32
[  324.068220][ T7689] loop2: p82 start 591104 is beyond EOD, truncated
[  324.111761][ T7689] loop2: p83 size 100663296 extends beyond EOD, truncated
[  324.148554][ T7689] loop2: p84 start 591104 is beyond EOD, truncated
[  324.165207][ T7689] loop2: p85 size 100663296 extends beyond EOD, truncated
[  324.201786][ T7689] loop2: p86 start 591104 is beyond EOD, truncated
[  324.236401][ T7689] loop2: p87 size 100663296 extends beyond EOD, truncated
[  324.269368][ T7689] loop2: p88 start 591104 is beyond EOD, truncated
[  324.295046][ T7689] loop2: p89 size 100663296 extends beyond EOD, truncated
[  324.341992][ T7689] loop2: p90 start 591104 is beyond EOD, truncated
[  324.366786][ T7689] loop2: p91 size 100663296 extends beyond EOD, truncated
[  324.402093][ T7689] loop2: p92 start 591104 is beyond EOD, truncated
[  324.417456][ T7689] loop2: p93 size 100663296 extends beyond EOD, truncated
[  324.428479][ T7689] loop2: p94 start 591104 is beyond EOD, truncated
[  324.469088][ T7689] loop2: p95 size 100663296 extends beyond EOD, truncated
[  324.496384][ T7689] loop2: p96 start 591104 is beyond EOD, truncated
[  324.515994][ T7689] loop2: p97 size 100663296 extends beyond EOD, truncated
[  324.537521][ T7689] loop2: p98 start 591104 is beyond EOD, truncated
[  324.568269][ T7689] loop2: p99 size 100663296 extends beyond EOD, truncated
[  324.585496][ T7689] loop2: p100 start 591104 is beyond EOD, truncated
[  324.603532][ T7689] loop2: p101 size 100663296 extends beyond EOD, truncated
[  324.624789][ T7689] loop2: p102 start 591104 is beyond EOD, truncated
[  324.639451][ T7689] loop2: p103 size 100663296 extends beyond EOD, truncated
[  324.658881][ T7689] loop2: p104 start 591104 is beyond EOD, truncated
[  324.682814][ T7689] loop2: p105 size 100663296 extends beyond EOD, truncated
[  324.697057][ T7689] loop2: p106 start 591104 is beyond EOD, truncated
[  324.720123][ T7689] loop2: p107 size 100663296 extends beyond EOD, truncated
[  324.742157][ T7689] loop2: p108 start 591104 is beyond EOD, truncated
[  324.760758][ T7689] loop2: p109 size 100663296 extends beyond EOD, truncated
[  324.786621][ T7689] loop2: p110 start 591104 is beyond EOD, truncated
[  324.804888][ T7689] loop2: p111 size 100663296 extends beyond EOD, truncated
[  324.824639][ T7689] loop2: p112 start 591104 is beyond EOD, truncated
[  324.833556][ T5791] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  324.842687][ T7689] loop2: p113 size 100663296 extends beyond EOD, truncated
[  324.866064][ T7689] loop2: p114 start 591104 is beyond EOD, truncated
[  324.887972][ T7689] loop2: p115 size 100663296 extends beyond EOD, truncated
[  324.941198][ T7689] loop2: p116 start 591104 is beyond EOD, truncated
[  324.957202][ T7689] loop2: p117 size 100663296 extends beyond EOD, truncated
[  324.972333][ T7689] loop2: p118 start 591104 is beyond EOD, truncated
[  324.979172][ T7689] loop2: p119 size 100663296 extends beyond EOD, truncated
[  324.988507][ T7689] loop2: p120 start 591104 is beyond EOD, truncated
[  324.995500][ T7689] loop2: p121 size 100663296 extends beyond EOD, truncated
[  325.004822][ T7689] loop2: p122 start 591104 is beyond EOD, truncated
[  325.049301][ T7689] loop2: p123 size 100663296 extends beyond EOD, truncated
[  325.068593][ T7689] loop2: p124 start 591104 is beyond EOD, truncated
[  325.097373][ T7689] loop2: p125 size 100663296 extends beyond EOD, truncated
[  325.124378][ T7723] loop3: detected capacity change from 0 to 512
[  325.151123][ T7689] loop2: p126 start 591104 is beyond EOD, truncated
[  325.157782][ T7689] loop2: p127 size 100663296 extends beyond EOD, truncated
[  325.192008][ T7723] EXT4-fs (loop3): Test dummy encryption mode enabled
[  325.222758][ T7689] loop2: p128 start 591104 is beyond EOD, truncated
[  325.229976][ T7689] loop2: p129 size 100663296 extends beyond EOD, truncated
[  325.244056][ T7689] loop2: p130 start 591104 is beyond EOD, truncated
[  325.250940][ T7689] loop2: p131 size 100663296 extends beyond EOD, truncated
[  325.345179][ T7726] netlink: 'syz.1.510': attribute type 4 has an invalid length.
[  325.465781][ T7689] loop2: p132 start 591104 is beyond EOD, truncated
[  325.617375][ T7723] EXT4-fs (loop3): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  325.632435][ T7689] loop2: p133 size 100663296 extends beyond EOD, truncated
[  325.941684][ T7689] loop2: p134 start 591104 is beyond EOD, truncated
[  325.949159][ T7689] loop2: p135 size 100663296 extends beyond EOD, truncated
[  326.040695][ T7689] loop2: p136 start 591104 is beyond EOD, truncated
[  326.067732][ T7689] loop2: p137 size 100663296 extends beyond EOD, truncated
[  326.112574][ T7689] loop2: p138 start 591104 is beyond EOD, truncated
[  326.119243][ T7689] loop2: p139 size 100663296 extends beyond EOD, truncated
[  326.167221][ T7689] loop2: p140 start 591104 is beyond EOD, truncated
[  326.191480][ T7689] loop2: p141 size 100663296 extends beyond EOD, truncated
[  326.220760][ T7689] loop2: p142 start 591104 is beyond EOD, truncated
[  326.227421][ T7689] loop2: p143 size 100663296 extends beyond EOD, truncated
[  326.242151][ T7689] loop2: p144 start 591104 is beyond EOD, truncated
[  326.251057][ T7689] loop2: p145 size 100663296 extends beyond EOD, truncated
[  326.270319][ T7689] loop2: p146 start 591104 is beyond EOD, truncated
[  326.277011][ T7689] loop2: p147 size 100663296 extends beyond EOD, truncated
[  326.293469][ T7689] loop2: p148 start 591104 is beyond EOD, truncated
[  326.340727][ T7689] loop2: p149 size 100663296 extends beyond EOD, truncated
[  326.358544][ T7689] loop2: p150 start 591104 is beyond EOD, truncated
[  326.370083][ T7689] loop2: p151 size 100663296 extends beyond EOD, truncated
[  326.390499][ T7689] loop2: p152 start 591104 is beyond EOD, truncated
[  326.397759][ T7689] loop2: p153 size 100663296 extends beyond EOD, truncated
[  326.416232][ T7689] loop2: p154 start 591104 is beyond EOD, truncated
[  326.425563][ T7689] loop2: p155 size 100663296 extends beyond EOD, truncated
[  326.442106][ T7689] loop2: p156 start 591104 is beyond EOD, truncated
[  326.459083][ T7689] loop2: p157 size 100663296 extends beyond EOD, truncated
[  326.469610][ T7689] loop2: p158 start 591104 is beyond EOD, truncated
[  326.479657][ T7689] loop2: p159 size 100663296 extends beyond EOD, truncated
[  326.498924][ T7689] loop2: p160 start 591104 is beyond EOD, truncated
[  326.516005][ T7689] loop2: p161 size 100663296 extends beyond EOD, truncated
[  326.532187][ T7689] loop2: p162 start 591104 is beyond EOD, truncated
[  326.549526][ T7689] loop2: p163 size 100663296 extends beyond EOD, truncated
[  326.570758][ T7689] loop2: p164 start 591104 is beyond EOD, truncated
[  326.614794][ T7689] loop2: p165 size 100663296 extends beyond EOD, truncated
[  326.624259][ T7689] loop2: p166 start 591104 is beyond EOD, truncated
[  326.632138][ T7689] loop2: p167 size 100663296 extends beyond EOD, truncated
[  326.641479][ T7689] loop2: p168 start 591104 is beyond EOD, truncated
[  326.653328][ T7689] loop2: p169 size 100663296 extends beyond EOD, truncated
[  326.662762][ T7689] loop2: p170 start 591104 is beyond EOD, truncated
[  326.669415][ T7689] loop2: p171 size 100663296 extends beyond EOD, truncated
[  326.685077][ T7689] loop2: p172 start 591104 is beyond EOD, truncated
[  326.694386][ T7689] loop2: p173 size 100663296 extends beyond EOD, truncated
[  326.711357][ T7689] loop2: p174 start 591104 is beyond EOD, truncated
[  326.718025][ T7689] loop2: p175 size 100663296 extends beyond EOD, truncated
[  326.731756][ T7689] loop2: p176 start 591104 is beyond EOD, truncated
[  326.738407][ T7689] loop2: p177 size 100663296 extends beyond EOD, truncated
[  326.753020][ T7689] loop2: p178 start 591104 is beyond EOD, truncated
[  326.759776][ T7689] loop2: p179 size 100663296 extends beyond EOD, truncated
[  326.774200][ T7689] loop2: p180 start 591104 is beyond EOD, truncated
[  326.784332][ T7689] loop2: p181 size 100663296 extends beyond EOD, truncated
[  326.798957][ T5790] EXT4-fs (loop3): unmounting filesystem 00000005-0000-0000-0000-000000000000.
[  326.798971][ T7689] loop2: p182 start 591104 is beyond EOD, truncated
[  326.825746][ T7689] loop2: p183 size 100663296 extends beyond EOD, truncated
[  326.836765][ T7689] loop2: p184 start 591104 is beyond EOD, truncated
[  326.847827][ T7689] loop2: p185 size 100663296 extends beyond EOD, truncated
[  326.873452][ T7689] loop2: p186 start 591104 is beyond EOD, truncated
[  326.893683][ T7689] loop2: p187 size 100663296 extends beyond EOD, truncated
[  326.932667][ T7689] loop2: p188 start 591104 is beyond EOD, truncated
[  326.939466][ T7689] loop2: p189 size 100663296 extends beyond EOD, truncated
[  326.955264][ T7689] loop2: p190 start 591104 is beyond EOD, truncated
[  326.963607][ T7689] loop2: p191 size 100663296 extends beyond EOD, truncated
[  326.978376][ T7689] loop2: p192 start 591104 is beyond EOD, truncated
[  326.990876][ T7689] loop2: p193 size 100663296 extends beyond EOD, truncated
[  327.010341][ T7689] loop2: p194 start 591104 is beyond EOD, truncated
[  327.023040][ T7689] loop2: p195 size 100663296 extends beyond EOD, truncated
[  327.053356][ T7689] loop2: p196 start 591104 is beyond EOD, truncated
[  327.072661][ T7689] loop2: p197 size 100663296 extends beyond EOD, truncated
[  327.087943][ T7689] loop2: p198 start 591104 is beyond EOD, truncated
[  327.096037][ T7689] loop2: p199 size 100663296 extends beyond EOD, truncated
[  327.108598][ T7689] loop2: p200 start 591104 is beyond EOD, truncated
[  327.138604][ T7689] loop2: p201 size 100663296 extends beyond EOD, truncated
[  327.155033][ T7689] loop2: p202 start 591104 is beyond EOD, truncated
[  327.192233][ T7689] loop2: p203 size 100663296 extends beyond EOD, truncated
[  327.218944][ T7689] loop2: p204 start 591104 is beyond EOD, truncated
[  327.229362][ T7689] loop2: p205 size 100663296 extends beyond EOD, truncated
[  327.239913][ T7689] loop2: p206 start 591104 is beyond EOD, truncated
[  327.252682][ T7689] loop2: p207 size 100663296 extends beyond EOD, truncated
[  327.268300][ T7689] loop2: p208 start 591104 is beyond EOD, truncated
[  327.277584][ T7740] loop3: detected capacity change from 0 to 16
[  327.278709][ T7689] loop2: p209 size 100663296 extends beyond EOD, truncated
[  327.298220][ T7689] loop2: p210 start 591104 is beyond EOD, truncated
[  327.307841][ T7689] loop2: p211 size 100663296 extends beyond EOD, truncated
[  327.328502][ T7689] loop2: p212 start 591104 is beyond EOD, truncated
[  327.330522][ T7740] erofs: (device loop3): erofs_read_inode: unsupported i_format 32 of nid 36
[  327.369170][ T7689] loop2: p213 size 100663296 extends beyond EOD, truncated
[  327.395957][ T7689] loop2: p214 start 591104 is beyond EOD, truncated
[  327.400821][ T7742] loop0: detected capacity change from 0 to 512
[  327.409305][ T7689] loop2: p215 size 100663296 extends beyond EOD, truncated
[  327.441422][ T7742] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  327.470558][ T7742] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  327.472441][ T7689] loop2: p216 start 591104 is beyond EOD, 
[  327.485518][ T7742] EXT4-fs (loop0): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  327.507051][ T7689] truncated
[  327.529015][ T7689] loop2: p217 size 100663296 extends beyond EOD, truncated
[  327.555948][ T7689] loop2: p218 start 591104 is beyond EOD, truncated
[  327.574980][ T7742] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  327.579485][ T7745] loop3: detected capacity change from 0 to 512
[  327.604883][ T7742] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=c042e01c, mo2=0000]
[  327.607641][ T7689] loop2: p219 size 100663296 extends beyond EOD, truncated
[  327.631640][ T7742] EXT4-fs (loop0): orphan cleanup on readonly fs
[  327.650298][ T7742] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.518: bg 0: block 34: padding at end of block bitmap is not set
[  327.685275][ T7689] loop2: p220 start 591104 is beyond EOD, truncated
[  327.790230][ T7689] loop2: p221 size 100663296 extends beyond EOD, truncated
[  327.813350][ T7742] Quota error (device loop0): write_blk: dquota write failed
[  327.840405][ T7742] Quota error (device loop0): qtree_write_dquot: Error -28 occurred while creating quota
[  327.864923][ T7689] loop2: p222 start 591104 is beyond EOD, truncated
[  327.905365][ T7689] loop2: p223 size 100663296 extends beyond EOD, truncated
[  327.941142][ T7742] EXT4-fs error (device loop0): ext4_acquire_dquot:6940: comm syz.0.518: Failed to acquire dquot type 1
[  327.945107][ T7689] loop2: p224 start 591104 is beyond EOD, truncated
[  327.959212][ T7689] loop2: p225 size 100663296 extends beyond EOD, truncated
[  328.114246][ T7689] loop2: p226 start 591104 is beyond EOD, truncated
[  328.229326][ T7742] EXT4-fs (loop0): 1 truncate cleaned up
[  328.303621][ T7689] loop2: p227 size 100663296 extends beyond EOD, truncated
[  328.368524][ T7742] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  328.781341][ T7689] loop2: p228 start 591104 is beyond EOD, truncated
[  328.788009][ T7689] loop2: p229 size 100663296 extends beyond EOD, truncated
[  328.810651][ T7689] loop2: p230 start 591104 is beyond EOD, truncated
[  328.902260][ T7753] netlink: 'syz.1.520': attribute type 4 has an invalid length.
[  328.935309][ T7689] loop2: p231 size 100663296 extends beyond EOD, truncated
[  329.600745][ T7689] loop2: p232 start 591104 is beyond EOD, truncated
[  329.623500][ T7689] loop2: p233 size 100663296 extends beyond EOD, truncated
[  329.651808][ T7689] loop2: p234 start 591104 is beyond EOD, truncated
[  329.658469][ T7689] loop2: p235 size 100663296 extends beyond EOD, truncated
[  329.801098][ T7689] loop2: p236 start 591104 is beyond EOD, truncated
[  329.807848][ T7689] loop2: p237 size 100663296 extends beyond EOD, truncated
[  329.861356][ T7689] loop2: p238 start 591104 is beyond EOD, truncated
[  329.889907][ T7689] loop2: p239 size 100663296 extends beyond EOD, truncated
[  329.914416][ T7689] loop2: p240 start 591104 is beyond EOD, truncated
[  329.967224][ T7689] loop2: p241 size 100663296 extends beyond EOD, truncated
[  330.007786][ T7689] loop2: p242 start 591104 is beyond EOD, truncated
[  330.026031][ T7689] loop2: p243 size 100663296 extends beyond EOD, truncated
[  330.115354][ T7689] loop2: p244 start 591104 is beyond EOD, truncated
[  330.138146][ T7689] loop2: p245 size 100663296 extends beyond EOD, truncated
[  330.203194][ T7689] loop2: p246 start 591104 is beyond EOD, truncated
[  330.263944][ T7689] loop2: p247 size 100663296 extends beyond EOD, truncated
[  330.314263][ T7689] loop2: p248 start 591104 is beyond EOD, truncated
[  330.358281][ T7689] loop2: p249 size 100663296 extends beyond EOD, truncated
[  330.415823][ T7689] loop2: p250 start 591104 is beyond EOD, truncated
[  330.466745][ T7689] loop2: p251 size 100663296 extends beyond EOD, truncated
[  330.521071][ T7689] loop2: p252 start 591104 is beyond EOD, truncated
[  330.534104][ T7689] loop2: p253 size 100663296 extends beyond EOD, truncated
[  330.546369][ T7689] loop2: p254 start 591104 is beyond EOD, truncated
[  330.555597][ T7689] loop2: p255 size 100663296 extends beyond EOD, truncated
[  330.729788][ T5788] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  331.743930][ T7777] loop3: detected capacity change from 0 to 512
[  332.276401][ T7779] loop0: detected capacity change from 0 to 512
[  332.287137][ T7779] ext3: Unknown parameter 'rootcontext'
[  334.694452][ T5994] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  335.324468][ T5799] udevd[5799]: inotify_add_watch(7, /dev/loop2p7, 10) failed: No such file or directory
[  335.348357][ T5789] udevd[5789]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  335.374033][ T5800] udevd[5800]: inotify_add_watch(7, /dev/loop2p9, 10) failed: No such file or directory
[  335.389277][ T6012] udevd[6012]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  335.403103][ T5994] udevd[5994]: inotify_add_watch(7, /dev/loop2p5, 10) failed: No such file or directory
[  335.513424][   T27] audit: type=1326 audit(1757858743.942:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7784 comm="syz.3.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb58b38eba9 code=0x7ffc0000
[  335.582015][ T7787] udevd[7787]: inotify_add_watch(7, /dev/loop2p11, 10) failed: No such file or directory
[  335.643564][ T7794] udevd[7794]: inotify_add_watch(7, /dev/loop2p17, 10) failed: No such file or directory
[  335.688672][ T7789] udevd[7789]: inotify_add_watch(7, /dev/loop2p13, 10) failed: No such file or directory
[  335.698142][ T7793] udevd[7793]: inotify_add_watch(7, /dev/loop2p15, 10) failed: No such file or directory
[  335.785089][ T7802] loop1: detected capacity change from 0 to 128
[  336.110998][ T7803] loop2: detected capacity change from 0 to 4096
[  336.123751][ T7803] EXT4-fs: Ignoring removed mblk_io_submit option
[  336.326019][   T27] audit: type=1326 audit(1757858743.942:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7784 comm="syz.3.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fb58b38eba9 code=0x7ffc0000
[  336.524542][ T7803] EXT4-fs (loop2): Test dummy encryption mode enabled
[  336.637137][ T7798] udevd[7798]: inotify_add_watch(7, /dev/loop2p19, 10) failed: No such file or directory
[  336.659890][ T7803] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  336.874721][   T27] audit: type=1326 audit(1757858743.942:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7784 comm="syz.3.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb58b38eba9 code=0x7ffc0000
[  337.095458][   T27] audit: type=1326 audit(1757858743.942:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7784 comm="syz.3.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=428 compat=0 ip=0x7fb58b38eba9 code=0x7ffc0000
[  337.154501][ T7809] loop3: detected capacity change from 0 to 512
[  337.258915][ T7809] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  337.303877][   T27] audit: type=1326 audit(1757858743.942:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7784 comm="syz.3.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb58b38eba9 code=0x7ffc0000
[  337.345414][ T7809] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  337.414580][ T7809] EXT4-fs (loop3): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  337.464911][   T27] audit: type=1326 audit(1757858743.942:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7784 comm="syz.3.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=429 compat=0 ip=0x7fb58b38eba9 code=0x7ffc0000
[  337.541859][ T7809] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  337.574391][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  337.583865][ T7809] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=c042e01c, mo2=0000]
[  337.600389][   T27] audit: type=1326 audit(1757858743.942:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7784 comm="syz.3.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb58b38eba9 code=0x7ffc0000
[  337.668665][ T7809] EXT4-fs (loop3): orphan cleanup on readonly fs
[  337.777569][ T7809] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.535: bg 0: block 34: padding at end of block bitmap is not set
[  337.821425][   T27] audit: type=1326 audit(1757858743.952:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7784 comm="syz.3.532" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fb58b38eba9 code=0x7ffc0000
[  337.894686][ T7809] Quota error (device loop3): write_blk: dquota write failed
[  337.908384][ T7809] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  337.943403][ T7809] EXT4-fs error (device loop3): ext4_acquire_dquot:6940: comm syz.3.535: Failed to acquire dquot type 1
[  338.017543][ T7809] EXT4-fs (loop3): 1 truncate cleaned up
[  338.061293][ T7809] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  338.662692][ T5790] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  338.855351][ T7823] loop3: detected capacity change from 0 to 512
[  341.226811][ T7830] loop3: detected capacity change from 0 to 256
[  341.282229][ T7830] FAT-fs (loop3): Unrecognized mount option "i(d๔สา{=cp932" or missing value
[  341.576532][ T7840] 
[  341.578912][ T7840] ============================================
[  341.585080][ T7840] WARNING: possible recursive locking detected
[  341.591265][ T7840] syzkaller #0 Not tainted
[  341.595714][ T7840] --------------------------------------------
[  341.601895][ T7840] syz.3.545/7840 is trying to acquire lock:
[  341.607840][ T7840] ffff888026ed0238 (&trie->lock){..-.}-{2:2}, at: trie_delete_elem+0x96/0x6a0
[  341.616771][ T7840] 
[  341.616771][ T7840] but task is already holding lock:
[  341.624182][ T7840] ffff88807960aa38 (&trie->lock){..-.}-{2:2}, at: trie_update_elem+0xca/0xea0
[  341.633106][ T7840] 
[  341.633106][ T7840] other info that might help us debug this:
[  341.641187][ T7840]  Possible unsafe locking scenario:
[  341.641187][ T7840] 
[  341.648657][ T7840]        CPU0
[  341.651972][ T7840]        ----
[  341.655267][ T7840]   lock(&trie->lock);
[  341.659366][ T7840]   lock(&trie->lock);
[  341.663484][ T7840] 
[  341.663484][ T7840]  *** DEADLOCK ***
[  341.663484][ T7840] 
[  341.671657][ T7840]  May be due to missing lock nesting notation
[  341.671657][ T7840] 
[  341.680002][ T7840] 3 locks held by syz.3.545/7840:
[  341.685047][ T7840]  #0: ffffffff8cd2fe20 (rcu_read_lock){....}-{1:2}, at: bpf_map_update_value+0x41d/0x720
[  341.695030][ T7840]  #1: ffff88807960aa38 (&trie->lock){..-.}-{2:2}, at: trie_update_elem+0xca/0xea0
[  341.704392][ T7840]  #2: ffffffff8cd2fe20 (rcu_read_lock){....}-{1:2}, at: bpf_trace_run4+0xfd/0x420
[  341.713758][ T7840] 
[  341.713758][ T7840] stack backtrace:
[  341.719679][ T7840] CPU: 0 PID: 7840 Comm: syz.3.545 Not tainted syzkaller #0
[  341.726987][ T7840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  341.737081][ T7840] Call Trace:
[  341.740381][ T7840]  <TASK>
[  341.743339][ T7840]  dump_stack_lvl+0x16c/0x230
[  341.748050][ T7840]  ? show_regs_print_info+0x20/0x20
[  341.753290][ T7840]  ? print_deadlock_bug+0x435/0x5d0
[  341.758536][ T7840]  __lock_acquire+0x5d40/0x7c80
[  341.763441][ T7840]  ? mark_lock+0x94/0x320
[  341.767830][ T7840]  ? verify_lock_unused+0x140/0x140
[  341.773058][ T7840]  ? __lock_acquire+0x1260/0x7c80
[  341.778127][ T7840]  lock_acquire+0x197/0x410
[  341.782664][ T7840]  ? trie_delete_elem+0x96/0x6a0
[  341.787643][ T7840]  ? verify_lock_unused+0x140/0x140
[  341.792895][ T7840]  ? page_counter_try_charge+0x293/0x2c0
[  341.798572][ T7840]  ? read_lock_is_recursive+0x20/0x20
[  341.803981][ T7840]  ? try_charge_memcg+0x1342/0x1810
[  341.809210][ T7840]  _raw_spin_lock_irqsave+0xa8/0xf0
[  341.814441][ T7840]  ? trie_delete_elem+0x96/0x6a0
[  341.819420][ T7840]  ? _raw_spin_lock+0x40/0x40
[  341.824128][ T7840]  trie_delete_elem+0x96/0x6a0
[  341.828898][ T7840]  ? __cant_sleep+0x210/0x210
[  341.833605][ T7840]  bpf_prog_1db1603a7cfa36fb+0x45/0x49
[  341.839085][ T7840]  bpf_trace_run4+0x1f9/0x420
[  341.843780][ T7840]  ? bpf_trace_run4+0xfd/0x420
[  341.848551][ T7840]  ? bpf_trace_run3+0x400/0x400
[  341.853418][ T7840]  ? percpu_ref_put+0xef/0x180
[  341.858198][ T7840]  ? __memcg_kmem_charge_page+0x264/0x380
[  341.863926][ T7840]  __alloc_pages+0x429/0x460
[  341.868530][ T7840]  ? zone_statistics+0x170/0x170
[  341.873494][ T7840]  ? bpf_map_get_memcg+0x4e/0x4e0
[  341.878565][ T7840]  ? __lock_acquire+0x7c80/0x7c80
[  341.883616][ T7840]  ? __rwlock_init+0x150/0x150
[  341.888406][ T7840]  __kmalloc_large_node+0x8c/0x1e0
[  341.893546][ T7840]  ? bpf_map_kmalloc_node+0xbc/0x1b0
[  341.898858][ T7840]  __kmalloc_node+0x10f/0x230
[  341.903556][ T7840]  ? _raw_spin_lock+0x40/0x40
[  341.908244][ T7840]  bpf_map_kmalloc_node+0xbc/0x1b0
[  341.913377][ T7840]  trie_update_elem+0x166/0xea0
[  341.918255][ T7840]  ? asm_exc_page_fault+0x26/0x30
[  341.923299][ T7840]  bpf_map_update_value+0x660/0x720
[  341.928527][ T7840]  map_update_elem+0x57b/0x700
[  341.933303][ T7840]  __sys_bpf+0x652/0x800
[  341.937561][ T7840]  ? bpf_link_show_fdinfo+0x350/0x350
[  341.942948][ T7840]  ? lock_chain_count+0x20/0x20
[  341.947819][ T7840]  __x64_sys_bpf+0x7c/0x90
[  341.952254][ T7840]  do_syscall_64+0x55/0xb0
[  341.956694][ T7840]  ? clear_bhb_loop+0x40/0x90
[  341.961396][ T7840]  ? clear_bhb_loop+0x40/0x90
[  341.966093][ T7840]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  341.972010][ T7840] RIP: 0033:0x7fb58b38eba9
[  341.976432][ T7840] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  341.996050][ T7840] RSP: 002b:00007fb58c148038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  342.004473][ T7840] RAX: ffffffffffffffda RBX: 00007fb58b5d5fa0 RCX: 00007fb58b38eba9
[  342.012480][ T7840] RDX: 0000000000000020 RSI: 0000200000000080 RDI: 0000000000000002
[  342.020468][ T7840] RBP: 00007fb58b411e19 R08: 0000000000000000 R09: 0000000000000000
[  342.028445][ T7840] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  342.036421][ T7840] R13: 00007fb58b5d6038 R14: 00007fb58b5d5fa0 R15: 00007ffec6ebc9b8
[  342.044410][ T7840]  </TASK>