last executing test programs:

5.940238273s ago: executing program 2:
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000040)=@framed={{}, [@printk={@llx, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x2d}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x51)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x0, 0x0, 0x8, 0xc}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0}, 0x10)
add_key$fscrypt_v1(&(0x7f0000000000), 0x0, 0x0, 0x0, 0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r5, 0x0, 0x15)
r6 = dup(r5)
write$FUSE_NOTIFY_RETRIEVE(r6, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, 0x0, &(0x7f0000000b80), 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r4, @ANYBLOB=',wfdno=', @ANYRESHEX])

4.706126904s ago: executing program 2:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000070"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000000)='ext4_mark_inode_dirty\x00', r0}, 0x10)
unlink(&(0x7f00000007c0)='./cgroup\x00')

4.688471456s ago: executing program 2:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e000000850000000f00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
io_cancel(0x0, 0x0, 0x0)

4.608425698s ago: executing program 2:
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
bind$unix(r0, &(0x7f0000000180)=@file={0x1, './file0\x00'}, 0x6e)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000240), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f0000006380)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000100)={0x50, 0x0, r2, {0x7, 0x1f}}, 0x50)
syz_fuse_handle_req(r1, &(0x7f00000041c0)="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", 0x2000, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)={0x20, 0x0, 0x0, {0x0, 0x9}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x0)
io_setup(0x202, &(0x7f0000000200)=<r4=>0x0)
io_submit(r4, 0x1, &(0x7f0000000780)=[&(0x7f0000000440)={0xfffffffe, 0x20011004, 0x4, 0x0, 0x0, r3, 0x0}])

3.252424438s ago: executing program 4:
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b800000019000100030000000000000064010102000000000000000000000000fe8000000000000000000000000000380000000000000000020020"], 0xb8}}, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, &(0x7f0000001200)={0x84, 0x0, 0x0, 0x0, &(0x7f0000000040)={0x20, 0x0, 0x4}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)=ANY=[@ANYBLOB="6501000014"], 0x188}}, 0x0)

3.180372829s ago: executing program 3:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x2, 0x4, 0x7fe2, 0x1}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000001c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000e80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = dup2(r1, r0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r2}, 0x10)
fstat(r0, &(0x7f0000000300))

3.166722461s ago: executing program 3:
syz_mount_image$vfat(&(0x7f0000000480), &(0x7f0000000000)='./file0\x00', 0x8c431f5ae08266, &(0x7f0000000740)=ANY=[@ANYBLOB="6e6f6e756d7461696c3d302c757466383d302c696f636861727365743d63703835322c756e695f786c6174653d312c636f6465706167653d3836392c696f636861727365743d6d616363656c7469632c536e695f786c6174653d312c696f636861727398083f65743d69736f383835392d352c6e6f6e756d7461696c3d3000756e695f786c6174653d312c696f636861727365743d69736f383835392d31342c756e695f786c6174653d312c73686f72746e616d653d6d697865642c73686f72746e616d653d6c6f7765722c73686f72746e616d653d6d697865642c00"], 0x25, 0x34f, &(0x7f0000001f80)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000900)=ANY=[@ANYBLOB="1800000000050000000000000000000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000080)='signal_generate\x00', r0}, 0x10)
rt_sigprocmask(0x0, &(0x7f0000000200)={[0xfffffbfd]}, 0x0, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f0000000300))
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000440)='./binderfs/binder0\x00', 0x0, 0x0)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r5 = dup(r4)
ioctl$TIOCL_SETSEL(r5, 0x4b71, &(0x7f0000001900)={0x2, {0x2, 0x0, 0x0, 0x7ff, 0x100}})

2.352389267s ago: executing program 4:
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x1}, 0x10)
r1 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r1, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x1, 0x5}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000240)={0x42, 0x1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='sched_switch\x00', r3}, 0x10)
close(r0)

2.197298081s ago: executing program 3:
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$BTRFS_IOC_BALANCE_PROGRESS(r0, 0x8954, 0x0)

2.162005746s ago: executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000900)={0x34, r1, 0x1, 0x0, 0x0, {}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_0\x00'}]}]}, 0x34}}, 0x0)

2.157349717s ago: executing program 4:
r0 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x4}, 0x1c)
sendmsg(r0, &(0x7f00000000c0)={0x0, 0x953c, &(0x7f0000000100)=[{&(0x7f0000000000)="2b10", 0xffbd}], 0x1, 0x0, 0x0, 0x2c}, 0x4)
getsockname(r0, 0x0, &(0x7f0000000080))

2.153413247s ago: executing program 3:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000500)={{r0}, &(0x7f0000000180), &(0x7f00000004c0)=r1}, 0x20)
creat(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x0, 0x0)

2.131415601s ago: executing program 3:
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000580)=ANY=[@ANYBLOB="12010000459bb2405804035000000000000109021b000111000000090400000195699b0009058b", @ANYRES32], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000940)={0x84, &(0x7f0000000400)={0x0, 0x0, 0x3, "15bf9e"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

1.904103466s ago: executing program 4:
syz_mount_image$vfat(&(0x7f0000000480), &(0x7f0000000000)='./file0\x00', 0x8c431f5ae08266, &(0x7f0000000740)=ANY=[@ANYBLOB="6e6f6e756d7461696c3d302c757466383d302c696f636861727365743d63703835322c756e695f786c6174653d312c636f6465706167653d3836392c696f636861727365743d6d616363656c7469632c536e695f786c6174653d312c696f636861727398083f65743d69736f383835392d352c6e6f6e756d7461696c3d3000756e695f786c6174653d312c696f636861727365743d69736f383835392d31342c756e695f786c6174653d312c73686f72746e616d653d6d697865642c73686f72746e616d653d6c6f7765722c73686f72746e616d653d6d697865642c00"], 0x25, 0x34f, &(0x7f0000001f80)="$eJzs3T9sG2UUAPDnXhKnESUekCqYDBsSqpogBpgSVUWqyABFFv8WLJryJzaVYmEpDHG8gComEAsSTGwdYOyMGBBiY2ClSKiAWOhWqRGHbJ/tc+xQZ3Boxe83RE/v+9597y6n3CVKvrzeiq1L83H51q2bsbhYiLm1c2txuxClOBFJ9OzFRB8tTM4DAPe422kaf6U9d5/9yVI/8uwHgPtX9/n/5qlhoniE4qsPzKIlAGDGpvz+//mJ2SszawsAmKGx5/9jI8MHfsw/N/idAADg/vXiK68+t74RcbFcXoyof9isNCvxzHB8/XK8HbXYjLOxHPsRvReF3ttC5+OzFzbOny13/FaKSqeiWYmot5qV3pvCetKtL8ZKLEcpq08H9UmnfqVbX46IvVZ3/agXmpX5WMrW/3kpNmM1luOhsfqICxvnV8vZASr1fn0roh2L/ZPo9H8mluPHN+JK1OJSdGqH/e+ulMvn0o2R+ua1YnceAAAAAAAAAAAAAAAAAAAAAADMwpnyQGmw/01abzU/uHhwQmlkf5xKbzjbH6jd2x8oLfZ357maHNwfaHR/nmZlLk78p2cOAAAAAAAAAAAAAAAAAAAA947GzkJUa7XN7cbO+1v5oJXLvPv9V9+ejP7QXFb6TjKsiiw5cpz+xNyRkxgskQ7K02RkThYkEf3Je9Vr1wcd5+cUB2cxVt4JimNDhaynaq126tFfP59U9Xcn2Otmkhi7LKNBIVs/N1R/sJNYjIj9w6oOD1bvMudGmqaHle9+Nl4VhYi5OHIbUwTf3Xzr4Scbp5/qZr7JNn14/Inll258+uUfW9VatHtXplZb2G7sp1McudPr+FCSu38K2XUuTLgTJgftYaa93dipJj/9+fIjH/9wYHIy+f5J85n3Dl/r64OZhV5QiCj1L8K/tTo/4eafHLx2Z3D3Hv0Td/qLter13V9+n7Yq90XCRh0AAAAAAAAAAAAAAAAAAHAscn8rfgRPvzC7jgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADg+A3//38uaI9lpgnutGJ8qLi53Th08ZPHeqoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPyP/RMAAP//rShzCQ==")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000900)=ANY=[@ANYBLOB="1800000000050000000000000000000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000080)='signal_generate\x00', r0}, 0x10)
rt_sigprocmask(0x0, &(0x7f0000000200)={[0xfffffbfd]}, 0x0, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f0000000300))
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000440)='./binderfs/binder0\x00', 0x0, 0x0)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r5 = dup(r4)
ioctl$TIOCL_SETSEL(r5, 0x4b71, &(0x7f0000001900)={0x2, {0x2, 0x0, 0x0, 0x7ff, 0x100}})

1.419050771s ago: executing program 2:
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000110020850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_procs(r0, 0x0, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x3a, &(0x7f0000000240)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r5, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(0xffffffffffffffff, 0x6, 0x14, &(0x7f0000000140), 0x4)
connect$inet(r5, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r5, 0x6, 0x16, &(0x7f0000000340)=[@mss, @window, @timestamp, @timestamp, @timestamp, @sack_perm], 0x6)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0x22400049, &(0x7f00000002c0)={[{@dioread_nolock}, {@noinit_itable}, {@nomblk_io_submit}, {@noblock_validity}, {@data_err_abort}, {@nouser_xattr}, {@jqfmt_vfsv0}, {@barrier_val={'barrier', 0x3d, 0xd95b}}, {@debug}]}, 0x84, 0x471, &(0x7f0000000bc0)="$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")
mknodat$loop(0xffffffffffffff9c, 0x0, 0x0, 0x1)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0)
mkdir(&(0x7f0000001240)='./file0\x00', 0x0)
r6 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
getdents(r6, 0x0, 0x0)

870.546465ms ago: executing program 4:
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x0, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$xdp(0x2c, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000002f80)={0x0, 0x0, &(0x7f0000002f40)={&(0x7f0000000080)=@newtaction={0x70, 0x30, 0x9, 0x0, 0x0, {}, [{0x5c, 0x1, [@m_skbedit={0x58, 0x1, 0x0, 0x0, {{0xc}, {0x48, 0x2, 0x0, 0x1, [@TCA_SKBEDIT_PRIORITY={0x8, 0x4}, @TCA_SKBEDIT_PARMS={0x18}, @TCA_SKBEDIT_PTYPE={0x6, 0xa}]}, {0x4}, {0xc, 0x5}, {0xc, 0x9, {0x4c}}}}]}]}, 0x70}}, 0x0)

816.727704ms ago: executing program 1:
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0xfe, 0x0, &(0x7f0000000000))
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000400), 0x0, 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
setsockopt$WPAN_SECURITY_LEVEL(r0, 0x0, 0x2, &(0x7f0000000000), 0x4)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(r1, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1, 0x28811, r2, 0x0)
ftruncate(r2, 0xc17a)
getsockopt$WPAN_SECURITY_LEVEL(r0, 0x0, 0x2, 0x0, &(0x7f00000000c0))

779.60812ms ago: executing program 1:
r0 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @remote, 0x4}, 0x1c)
sendmsg(r0, &(0x7f00000000c0)={0x0, 0x953c, &(0x7f0000000100)=[{&(0x7f0000000000)="2b10", 0xffbd}], 0x1, 0x0, 0x0, 0x2c}, 0x4)
getsockname(r0, 0x0, &(0x7f0000000080))

740.190816ms ago: executing program 0:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000500)={{r0}, &(0x7f0000000180), &(0x7f00000004c0)=r1}, 0x20)
creat(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='ramfs\x00', 0x0, 0x0)

707.532751ms ago: executing program 0:
writev(0xffffffffffffffff, 0x0, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0), 0x48)
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)={0xc0, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x74, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8}, {0x8, 0x2, @multicast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_PROTO={0x43, 0x2, 0x0, 0x1, {0x5, 0x1, 0x6}}, @CTA_TUPLE_PROTO={0xc, 0x3, 0x0, 0x1, {0x5}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}, {0x14, 0x4, @local}}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @initdev={0xac, 0x1e, 0x0, 0x0}}, {0x8, 0x2, @multicast2}}}]}, @CTA_TIMEOUT={0x8}, @CTA_HELP={0xc, 0x5, 0x0, 0x1, {0x8, 0x1, 'RAS\x00'}}]}, 0xc0}}, 0x0)

641.937291ms ago: executing program 0:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x2, 0x4, 0x7fe2, 0x1}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000001c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000e80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = dup2(r1, r0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r2}, 0x10)
fstat(r0, &(0x7f0000000300))

622.859213ms ago: executing program 0:
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x71}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
setfsuid(0x0)

604.701056ms ago: executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000900)={0x34, r1, 0x1, 0x0, 0x0, {}, [@HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bond_slave_0\x00'}]}]}, 0x34}}, 0x0)

588.333759ms ago: executing program 0:
syz_mount_image$vfat(&(0x7f0000000480), &(0x7f0000000000)='./file0\x00', 0x8c431f5ae08266, &(0x7f0000000740)=ANY=[@ANYBLOB="6e6f6e756d7461696c3d302c757466383d302c696f636861727365743d63703835322c756e695f786c6174653d312c636f6465706167653d3836392c696f636861727365743d6d616363656c7469632c536e695f786c6174653d312c696f636861727398083f65743d69736f383835392d352c6e6f6e756d7461696c3d3000756e695f786c6174653d312c696f636861727365743d69736f383835392d31342c756e695f786c6174653d312c73686f72746e616d653d6d697865642c73686f72746e616d653d6c6f7765722c73686f72746e616d653d6d697865642c00"], 0x25, 0x34f, &(0x7f0000001f80)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000900)=ANY=[@ANYBLOB="1800000000050000000000000000000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000080)='signal_generate\x00', r0}, 0x10)
rt_sigprocmask(0x0, &(0x7f0000000200)={[0xfffffbfd]}, 0x0, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000540)=ANY=[@ANYBLOB="61123000000000006113770000000000bf2000000000000015000500511b48013d030100000000009500000000000000bc26000000000000bf67000000000000070300000fff07006702000003000000360600000ee600f0bf050000000000000f650000000000006507f4ff02000000070700004c0040001f75000000000000bf54000000000000070500000300f9ffad430100000000009500000000000000050000000000000095000000000000004d9bd591d568253e9988431ec068e3a83683d58719d72183f2cb7f43dd55788be820b236dcb695dbfd737cbf5fe7030586162c17600674290ca9d8d6413b8199e34f67ceaaa78710f9f8aba4765c91382f497585ca39c595b21afa6bce62b5ab0d44e9c32ad6f0349d92962a58d39494a19a9183362382792ac85578d3de07b7e155cf4ee5e3dd51212d2831bd8e2655b2fbd88791e4c66c832a774919b28b8a62711f0f156e636804e1d3f44a5ff3d63a3a51f0c7ec0c8c25e072194ddd83aa155a537e15c0d91f502deef03f83e826718705c9aef9613ac4a325a428d147c1749196e94226671fd9573ab0d079d44b13b56f793e98ab571c58e98e022f18a3be3f318e0690fff93f44f22473dc8004fc758218349bd3f0516a72a7ea913bfa7603063ed3118b2d680cbc"], &(0x7f0000000100)='GPL\x00'}, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f0000000300))
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, 0x0)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000440)='./binderfs/binder0\x00', 0x0, 0x0)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r5 = dup(r4)
ioctl$TIOCL_SETSEL(r5, 0x4b71, &(0x7f0000001900)={0x2, {0x2, 0x0, 0x0, 0x7ff, 0x100}})

552.205514ms ago: executing program 2:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x0, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r2}, 0x10)
r3 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0xc, &(0x7f0000000200)={0x20}, 0x1d)
write(r3, &(0x7f0000000000)="240000001e00ff0214fffffffffffff80700000013000000000000010800090016000000", 0x24)

362.881064ms ago: executing program 1:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000070"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000000)='ext4_mark_inode_dirty\x00', r0}, 0x10)
unlink(&(0x7f00000007c0)='./cgroup\x00')

356.061645ms ago: executing program 1:
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000))
syz_mount_image$fuse(0x0, &(0x7f0000000940)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
lsetxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', &(0x7f0000000180)='system.posix_acl_default\x00', &(0x7f0000000e00), 0x69, 0x0)

342.531087ms ago: executing program 1:
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000280)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@errors_continue}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f0000000680)="$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")
chdir(&(0x7f0000000000)='./file0\x00')
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r0, 0x0)
readv(0xffffffffffffffff, &(0x7f0000001f80)=[{0x0}, {0x0}, {0xffffffffffffffff}], 0x3)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)

7.270379ms ago: executing program 1:
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r2}, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r3}, 0x10)
splice(r1, 0x0, r0, 0x0, 0x1, 0x0)
fcntl$setpipe(r0, 0x408, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

0s ago: executing program 4:
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mkdir(&(0x7f0000000400)='./file1/file0\x00', 0x0)
setxattr$security_selinux(&(0x7f00000003c0)='./file1/file0\x00', &(0x7f00000004c0), &(0x7f0000000500)='system_u:object_r:systemd_notify_exec_t:s0\x00', 0x2b, 0x0)
mount$overlay(0x20000000, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f00000005c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1/file0'}}]})

kernel console output (not intermixed with test programs):

tate
[  206.477791][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  206.485714][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  206.501905][  T313] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  206.516801][ T7505] device veth0_vlan entered promiscuous mode
[  206.525207][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  206.533331][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  206.540765][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  206.553283][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  206.565146][ T7505] device veth1_macvtap entered promiscuous mode
[  206.576446][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  206.590446][ T2915] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  206.698494][ T7516] loop1: detected capacity change from 0 to 40427
[  206.725653][ T7516] F2FS-fs (loop1): invalid crc value
[  206.732536][ T7516] F2FS-fs (loop1): Found nat_bits in checkpoint
[  206.752765][    T8] device bridge_slave_1 left promiscuous mode
[  206.759866][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[  206.766788][ T7516] F2FS-fs (loop1): Cannot turn on quotas: -2 on 1
[  206.773712][ T7516] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  206.773744][    T8] device bridge_slave_0 left promiscuous mode
[  206.787020][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[  206.795143][    T8] device veth1_macvtap left promiscuous mode
[  206.801376][    T8] device veth0_vlan left promiscuous mode
[  206.841992][   T30] audit: type=1326 audit(1718987136.099:1171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7530 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6bdbbf0a9 code=0x7ffc0000
[  206.869202][   T30] audit: type=1326 audit(1718987136.099:1172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7530 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6bdbbf0a9 code=0x7ffc0000
[  206.902182][   T30] audit: type=1326 audit(1718987136.099:1173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7530 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7fd6bdbbf0a9 code=0x7ffc0000
[  206.926232][   T30] audit: type=1326 audit(1718987136.099:1174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7530 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6bdbbf0a9 code=0x7ffc0000
[  206.931605][  T333] hub 5-1:4.0: set hub depth failed
[  206.950137][   T30] audit: type=1326 audit(1718987136.099:1175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7530 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6bdbbf0a9 code=0x7ffc0000
[  206.979411][   T30] audit: type=1326 audit(1718987136.099:1176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7530 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fd6bdbbf0a9 code=0x7ffc0000
[  207.005899][   T30] audit: type=1326 audit(1718987136.099:1177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7530 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6bdbbf0a9 code=0x7ffc0000
[  207.031603][   T30] audit: type=1326 audit(1718987136.099:1178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7530 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6bdbbf0a9 code=0x7ffc0000
[  207.032288][  T333] usb 5-1: USB disconnect, device number 29
[  207.055566][   T30] audit: type=1326 audit(1718987136.099:1179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7530 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=285 compat=0 ip=0x7fd6bdbbf0a9 code=0x7ffc0000
[  207.198976][ T7552] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[  207.208372][ T7552] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[  207.369422][ T7559] loop0: detected capacity change from 0 to 40427
[  207.402058][ T7559] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  207.409819][ T7559] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  207.420286][ T7559] F2FS-fs (loop0): Found nat_bits in checkpoint
[  207.455778][ T7559] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  207.478067][ T7559] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  207.489871][ T7559] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  207.649247][ T7613] loop0: detected capacity change from 0 to 512
[  207.700951][ T7613] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended
[  207.725375][ T7613] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  207.740127][ T7613] System zones: 0-2, 18-18, 34-35
[  207.759536][ T7613] EXT4-fs (loop0): mounted filesystem without journal. Opts: data=journal,journal_ioprio=0x0000000000000005,,errors=continue. Quota mode: none.
[  207.803545][ T7638] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[  207.812947][ T7638] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[  207.967419][ T7630] loop2: detected capacity change from 0 to 40427
[  208.001758][ T7630] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  208.009356][ T7630] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  208.023650][ T7630] F2FS-fs (loop2): Found nat_bits in checkpoint
[  208.047375][ T7630] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  208.059316][ T7630] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  208.066838][ T7630] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  208.123452][ T7667] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[  208.141318][ T7667] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[  208.442234][ T7686] loop2: detected capacity change from 0 to 40427
[  208.492620][ T7686] F2FS-fs (loop2): Mismatch start address, segment0(512) cp_blkaddr(175702528)
[  208.501658][ T7686] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  208.510310][ T7686] F2FS-fs (loop2): invalid crc value
[  208.517540][ T7686] F2FS-fs (loop2): Found nat_bits in checkpoint
[  208.549576][ T7686] F2FS-fs (loop2): Cannot turn on quotas: -2 on 0
[  208.556671][ T7686] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  208.563633][ T7686] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4
[  208.590691][ T7505] attempt to access beyond end of device
[  208.590691][ T7505] loop2: rw=2049, want=45104, limit=40427
[  209.001594][ T7711] netlink: 'syz-executor.4': attribute type 4 has an invalid length.
[  209.096917][ T7725] netlink: 5 bytes leftover after parsing attributes in process `syz-executor.2'.
[  209.112645][ T7727] loop2: detected capacity change from 0 to 128
[  209.143293][ T7727] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  209.154239][ T7727] ext4 filesystem being mounted at /root/syzkaller-testdir462462970/syzkaller.PAiPyq/51/mnt supports timestamps until 2038 (0x7fffffff)
[  209.407661][ T7756] netlink: 5 bytes leftover after parsing attributes in process `syz-executor.0'.
[  209.452165][ T7758] loop0: detected capacity change from 0 to 128
[  209.519795][ T7758] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  209.538438][ T7758] ext4 filesystem being mounted at /root/syzkaller-testdir1526005487/syzkaller.LxrwQq/61/mnt supports timestamps until 2038 (0x7fffffff)
[  210.283775][ T7788] loop2: detected capacity change from 0 to 2048
[  210.302804][ T7788]  loop2: p2 p3 p7
[  210.401419][ T7811] loop0: detected capacity change from 0 to 1024
[  210.404103][ T7809] loop1: detected capacity change from 0 to 1024
[  210.415440][ T7811] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869)
[  210.426172][ T7811] EXT4-fs (loop0): invalid journal inode
[  210.431884][ T7811] EXT4-fs (loop0): can't get journal size
[  210.438439][ T7811] EXT4-fs (loop0): mounted filesystem without journal. Opts: noload,,errors=continue. Quota mode: none.
[  210.450760][ T7809] EXT4-fs (loop1): Test dummy encryption mode enabled
[  210.457486][ T7809] EXT4-fs (loop1): Quota format mount options ignored when QUOTA feature is enabled
[  210.472165][ T7809] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option
[  210.483710][ T7809] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c815c01c, mo2=0003]
[  210.492616][ T7809] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,delalloc,noblock_validity,debug,test_dummy_encryption,jqfmt=vfsold,nomblk_io_submit,noauto_da_alloc,,errors=continue. Quota mode: writeback.
[  210.632809][ T7824] loop1: detected capacity change from 0 to 256
[  210.683352][ T7824] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  210.723865][ T7824] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe622a5da, utbl_chksum : 0xe619d30d)
[  210.817869][ T7828] loop4: detected capacity change from 0 to 2048
[  210.855898][ T7828]  loop4: p2 p3 p7
[  211.360305][   T30] kauditd_printk_skb: 55 callbacks suppressed
[  211.360346][   T30] audit: type=1326 audit(1718987140.609:1235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7844 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4bf2b60a9 code=0x7ffc0000
[  211.393730][   T30] audit: type=1326 audit(1718987140.649:1236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7844 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4bf2b60a9 code=0x7ffc0000
[  211.432289][   T30] audit: type=1326 audit(1718987140.649:1237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7844 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7ff4bf2b60a9 code=0x7ffc0000
[  211.544569][   T30] audit: type=1326 audit(1718987140.649:1238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7844 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4bf2b60a9 code=0x7ffc0000
[  211.569257][   T30] audit: type=1326 audit(1718987140.649:1239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7844 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4bf2b60a9 code=0x7ffc0000
[  211.670170][ T7862] binder: 7861:7862 ioctl c0306201 200001c0 returned -14
[  211.712053][   T30] audit: type=1326 audit(1718987140.969:1240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7869 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d052480a9 code=0x7ffc0000
[  211.743509][   T30] audit: type=1326 audit(1718987140.969:1241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7869 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7f0d052480a9 code=0x7ffc0000
[  211.768569][   T30] audit: type=1326 audit(1718987140.969:1242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7869 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d052480a9 code=0x7ffc0000
[  211.798651][   T30] audit: type=1326 audit(1718987140.999:1243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=7869 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d052480a9 code=0x7ffc0000
[  211.804014][ T7877] loop1: detected capacity change from 0 to 256
[  211.828641][   T30] audit: type=1400 audit(1718987140.999:1244): avc:  denied  { getattr } for  pid=7867 comm="syz-executor.0" name="/" dev="nsfs" ino=4026532288 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  211.872091][ T7877] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  211.889484][ T7877] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe622a5da, utbl_chksum : 0xe619d30d)
[  212.732752][ T7917] loop0: detected capacity change from 0 to 128
[  212.783733][ T7917] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  212.794241][ T7917] ext4 filesystem being mounted at /root/syzkaller-testdir1526005487/syzkaller.LxrwQq/83/mnt supports timestamps until 2038 (0x7fffffff)
[  212.900993][    T6] usb 3-1: new high-speed USB device number 24 using dummy_hcd
[  213.269484][ T7941] bpf_get_probe_write_proto: 12 callbacks suppressed
[  213.269496][ T7941] syz-executor.4[7941] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  213.276167][ T7941] syz-executor.4[7941] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  213.391137][    T6] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  213.528582][ T7947] loop4: detected capacity change from 0 to 256
[  213.571804][ T7947] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  213.585222][ T7947] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe622a5da, utbl_chksum : 0xe619d30d)
[  213.634945][    T6] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  213.644130][    T6] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  213.652115][    T6] usb 3-1: Product: syz
[  213.656338][    T6] usb 3-1: Manufacturer: syz
[  213.660820][    T6] usb 3-1: SerialNumber: syz
[  213.742246][ T7951] loop1: detected capacity change from 0 to 128
[  213.790899][ T7951] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  213.802619][ T7951] ext4 filesystem being mounted at /root/syzkaller-testdir2413424078/syzkaller.eFmDuS/151/mnt supports timestamps until 2038 (0x7fffffff)
[  214.093378][ T7973] syz-executor.1[7973] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  214.093693][ T7973] syz-executor.1[7973] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  214.201162][    T6] usb 3-1: USB disconnect, device number 24
[  214.573822][ T7990] loop1: detected capacity change from 0 to 2048
[  214.801286][ T7990] EXT4-fs (loop1): mounted filesystem without journal. Opts: nolazytime,journal_ioprio=0x0000000000000007,sb=0x0000000000000009,bsdgroups,journal_path=./file0,,errors=continue. Quota mode: none.
[  214.820684][ T7990] ext4 filesystem being mounted at /root/syzkaller-testdir2413424078/syzkaller.eFmDuS/160/bus supports timestamps until 2038 (0x7fffffff)
[  214.867301][ T8000] loop0: detected capacity change from 0 to 512
[  214.912006][ T8000] EXT4-fs (loop0): Ignoring removed oldalloc option
[  214.952118][ T8000] EXT4-fs (loop0): mounted filesystem without journal. Opts: i_version,dioread_lock,delalloc,oldalloc,usrquota,discard,init_itable=0x0000000000000001,max_batch_time=0x0000000000000020,resgid=0x0000000000000000,,errors=continue. Quota mode: writeback.
[  215.001056][ T8000] ext4 filesystem being mounted at /root/syzkaller-testdir1526005487/syzkaller.LxrwQq/93/file0 supports timestamps until 2038 (0x7fffffff)
[  215.069799][ T8002] loop1: detected capacity change from 0 to 40427
[  215.118271][ T8007] syz-executor.0[8007] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  215.118345][ T8007] syz-executor.0[8007] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  215.156354][ T8002] F2FS-fs (loop1): Found nat_bits in checkpoint
[  215.248995][ T7996] loop2: detected capacity change from 0 to 131072
[  215.255787][ T8002] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  215.270390][ T8014] loop0: detected capacity change from 0 to 512
[  215.311860][ T8014] EXT4-fs (loop0): Mount option "nouser_xattr" will be removed by 3.5
[  215.311860][ T8014] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  215.311860][ T8014] 
[  215.312643][ T7996] F2FS-fs (loop2): Found nat_bits in checkpoint
[  215.390236][ T7996] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  215.409239][ T8014] EXT4-fs error (device loop0): ext4_do_update_inode:5191: inode #3: comm syz-executor.0: corrupted inode contents
[  215.441309][ T8014] EXT4-fs error (device loop0): ext4_dirty_inode:6024: inode #3: comm syz-executor.0: mark_inode_dirty error
[  215.441688][ T8025] netlink: 'syz-executor.4': attribute type 6 has an invalid length.
[  215.453347][ T8014] EXT4-fs error (device loop0): ext4_do_update_inode:5191: inode #3: comm syz-executor.0: corrupted inode contents
[  215.472937][ T8014] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #3: comm syz-executor.0: mark_inode_dirty error
[  215.485177][ T8014] EXT4-fs error (device loop0): ext4_do_update_inode:5191: inode #16: comm syz-executor.0: corrupted inode contents
[  215.497543][ T8014] EXT4-fs error (device loop0): ext4_dirty_inode:6024: inode #16: comm syz-executor.0: mark_inode_dirty error
[  215.509380][ T8014] EXT4-fs error (device loop0): ext4_do_update_inode:5191: inode #16: comm syz-executor.0: corrupted inode contents
[  215.521616][ T8014] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #16: comm syz-executor.0: mark_inode_dirty error
[  215.533218][ T8014] EXT4-fs error (device loop0): ext4_do_update_inode:5191: inode #16: comm syz-executor.0: corrupted inode contents
[  215.545456][ T8014] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[  215.554142][ T8014] EXT4-fs error (device loop0): ext4_do_update_inode:5191: inode #16: comm syz-executor.0: corrupted inode contents
[  215.568234][ T8014] EXT4-fs error (device loop0): ext4_truncate:4292: inode #16: comm syz-executor.0: mark_inode_dirty error
[  215.579796][ T8014] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[  215.589093][ T8014] EXT4-fs (loop0): 1 truncate cleaned up
[  215.594709][ T8014] EXT4-fs (loop0): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,nouser_xattr,,errors=continue. Quota mode: writeback.
[  215.610043][ T8014] ext4 filesystem being mounted at /root/syzkaller-testdir1526005487/syzkaller.LxrwQq/95/file1 supports timestamps until 2038 (0x7fffffff)
[  215.896346][ T8037] loop4: detected capacity change from 0 to 2048
[  215.963384][ T8037] EXT4-fs (loop4): mounted filesystem without journal. Opts: nolazytime,journal_ioprio=0x0000000000000007,sb=0x0000000000000009,bsdgroups,journal_path=./file0,,errors=continue. Quota mode: none.
[  215.982895][ T8037] ext4 filesystem being mounted at /root/syzkaller-testdir1074963447/syzkaller.TZ0QyB/122/bus supports timestamps until 2038 (0x7fffffff)
[  216.064440][ T8056] netlink: 'syz-executor.4': attribute type 6 has an invalid length.
[  216.086901][ T8060] loop4: detected capacity change from 0 to 512
[  216.136553][ T8060] EXT4-fs (loop4): Mount option "nouser_xattr" will be removed by 3.5
[  216.136553][ T8060] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  216.136553][ T8060] 
[  216.268651][ T8060] EXT4-fs error (device loop4): ext4_do_update_inode:5191: inode #3: comm syz-executor.4: corrupted inode contents
[  216.281164][ T8060] EXT4-fs error (device loop4): ext4_dirty_inode:6024: inode #3: comm syz-executor.4: mark_inode_dirty error
[  216.293025][ T8060] EXT4-fs error (device loop4): ext4_do_update_inode:5191: inode #3: comm syz-executor.4: corrupted inode contents
[  216.305143][ T8060] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #3: comm syz-executor.4: mark_inode_dirty error
[  216.317187][ T8060] EXT4-fs error (device loop4): ext4_do_update_inode:5191: inode #16: comm syz-executor.4: corrupted inode contents
[  216.329478][ T8060] EXT4-fs error (device loop4): ext4_dirty_inode:6024: inode #16: comm syz-executor.4: mark_inode_dirty error
[  216.341267][ T8060] EXT4-fs error (device loop4): ext4_do_update_inode:5191: inode #16: comm syz-executor.4: corrupted inode contents
[  216.353773][  T333] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[  216.353975][ T8060] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #16: comm syz-executor.4: mark_inode_dirty error
[  216.372814][ T8060] EXT4-fs error (device loop4): ext4_do_update_inode:5191: inode #16: comm syz-executor.4: corrupted inode contents
[  216.385106][ T8060] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  216.393720][ T8060] EXT4-fs error (device loop4): ext4_do_update_inode:5191: inode #16: comm syz-executor.4: corrupted inode contents
[  216.406167][ T8060] EXT4-fs error (device loop4): ext4_truncate:4292: inode #16: comm syz-executor.4: mark_inode_dirty error
[  216.417668][ T8060] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  216.427268][ T8060] EXT4-fs (loop4): 1 truncate cleaned up
[  216.432930][ T8060] EXT4-fs (loop4): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,nouser_xattr,,errors=continue. Quota mode: writeback.
[  216.447694][ T8060] ext4 filesystem being mounted at /root/syzkaller-testdir1074963447/syzkaller.TZ0QyB/126/file1 supports timestamps until 2038 (0x7fffffff)
[  216.761933][  T333] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  216.772258][  T333] usb 3-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 18
[  216.814025][ T8087] netlink: 'syz-executor.0': attribute type 6 has an invalid length.
[  216.881097][  T333] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  216.890037][  T333] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  216.897978][  T333] usb 3-1: SerialNumber: syz
[  217.681336][ T8119] netlink: 'syz-executor.0': attribute type 6 has an invalid length.
[  217.776721][  T463] usb 3-1: USB disconnect, device number 25
[  217.788557][ T8123] loop4: detected capacity change from 0 to 512
[  217.812393][ T8123] EXT4-fs (loop4): Ignoring removed oldalloc option
[  217.822653][ T8123] EXT4-fs (loop4): mounted filesystem without journal. Opts: i_version,dioread_lock,delalloc,oldalloc,usrquota,discard,init_itable=0x0000000000000001,max_batch_time=0x0000000000000020,resgid=0x0000000000000000,,errors=continue. Quota mode: writeback.
[  217.846619][ T8123] ext4 filesystem being mounted at /root/syzkaller-testdir1074963447/syzkaller.TZ0QyB/132/file0 supports timestamps until 2038 (0x7fffffff)
[  218.016367][   T30] kauditd_printk_skb: 8 callbacks suppressed
[  218.016382][   T30] audit: type=1400 audit(1718987147.269:1249): avc:  denied  { ioctl } for  pid=8130 comm="syz-executor.1" path="socket:[47678]" dev="sockfs" ino=47678 ioctlcmd=0x8982 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1
[  218.231873][ T8158] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[  218.279036][ T8163] syz-executor.4[8163] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  218.279112][ T8163] syz-executor.4[8163] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  218.339738][ T8178] syz-executor.4[8178] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  218.361039][ T8178] syz-executor.4[8178] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  218.520517][ T8196] loop0: detected capacity change from 0 to 512
[  218.562081][ T8196] EXT4-fs (loop0): Mount option "nouser_xattr" will be removed by 3.5
[  218.562081][ T8196] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  218.562081][ T8196] 
[  218.586043][ T8200] syz-executor.4[8200] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  218.586113][ T8200] syz-executor.4[8200] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  218.627757][ T8196] EXT4-fs error (device loop0): ext4_do_update_inode:5191: inode #3: comm syz-executor.0: corrupted inode contents
[  218.710979][ T8196] EXT4-fs error (device loop0): ext4_dirty_inode:6024: inode #3: comm syz-executor.0: mark_inode_dirty error
[  218.736636][ T8196] EXT4-fs error (device loop0): ext4_do_update_inode:5191: inode #3: comm syz-executor.0: corrupted inode contents
[  218.751808][ T8196] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #3: comm syz-executor.0: mark_inode_dirty error
[  218.765185][ T8211] loop2: detected capacity change from 0 to 16
[  218.771660][ T8196] Quota error (device loop0): write_blk: dquota write failed
[  218.778930][ T8196] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  218.820196][ T8196] EXT4-fs error (device loop0): ext4_do_update_inode:5191: inode #16: comm syz-executor.0: corrupted inode contents
[  218.839703][ T8196] EXT4-fs error (device loop0): ext4_dirty_inode:6024: inode #16: comm syz-executor.0: mark_inode_dirty error
[  218.861882][ T8211] erofs: (device loop2): mounted with root inode @ nid 36.
[  218.869744][ T8196] EXT4-fs error (device loop0): ext4_do_update_inode:5191: inode #16: comm syz-executor.0: corrupted inode contents
[  218.889399][ T8196] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #16: comm syz-executor.0: mark_inode_dirty error
[  218.902248][ T8196] EXT4-fs error (device loop0): ext4_do_update_inode:5191: inode #16: comm syz-executor.0: corrupted inode contents
[  218.929246][ T8196] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[  218.938236][ T8196] EXT4-fs error (device loop0): ext4_do_update_inode:5191: inode #16: comm syz-executor.0: corrupted inode contents
[  218.950585][ T8196] EXT4-fs error (device loop0): ext4_truncate:4292: inode #16: comm syz-executor.0: mark_inode_dirty error
[  218.962641][ T8196] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[  218.972122][ T8196] EXT4-fs (loop0): 1 truncate cleaned up
[  218.977700][ T8196] EXT4-fs (loop0): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,nouser_xattr,,errors=continue. Quota mode: writeback.
[  218.994328][ T8196] ext4 filesystem being mounted at /root/syzkaller-testdir1526005487/syzkaller.LxrwQq/122/file1 supports timestamps until 2038 (0x7fffffff)
[  219.063755][ T8234] TCP: request_sock_TCP: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  219.105912][ T8238] loop4: detected capacity change from 0 to 512
[  219.121995][   T30] audit: type=1326 audit(1718987148.379:1250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8241 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d052480a9 code=0x7ffc0000
[  219.149014][   T30] audit: type=1326 audit(1718987148.399:1251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8241 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=152 compat=0 ip=0x7f0d052480a9 code=0x7ffc0000
[  219.174589][   T30] audit: type=1326 audit(1718987148.399:1252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8241 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0d052480a9 code=0x7ffc0000
[  219.198903][ T8238] EXT4-fs (loop4): Ignoring removed oldalloc option
[  219.236016][ T8249] loop1: detected capacity change from 0 to 512
[  219.243358][ T8238] EXT4-fs (loop4): mounted filesystem without journal. Opts: i_version,dioread_lock,delalloc,oldalloc,usrquota,discard,init_itable=0x0000000000000001,max_batch_time=0x0000000000000020,resgid=0x0000000000000000,,errors=continue. Quota mode: writeback.
[  219.267490][ T8238] ext4 filesystem being mounted at /root/syzkaller-testdir1074963447/syzkaller.TZ0QyB/142/file0 supports timestamps until 2038 (0x7fffffff)
[  219.282053][   T30] audit: type=1326 audit(1718987148.539:1253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8250 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fbd1225a0a9 code=0x0
[  219.311710][ T8249] EXT4-fs (loop1): Mount option "nouser_xattr" will be removed by 3.5
[  219.311710][ T8249] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  219.311710][ T8249] 
[  219.343100][ T8249] EXT4-fs error (device loop1): ext4_do_update_inode:5191: inode #3: comm syz-executor.1: corrupted inode contents
[  219.355459][ T8249] EXT4-fs error (device loop1): ext4_dirty_inode:6024: inode #3: comm syz-executor.1: mark_inode_dirty error
[  219.367588][ T8249] EXT4-fs error (device loop1): ext4_do_update_inode:5191: inode #3: comm syz-executor.1: corrupted inode contents
[  219.379698][ T8249] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #3: comm syz-executor.1: mark_inode_dirty error
[  219.391517][ T8249] Quota error (device loop1): write_blk: dquota write failed
[  219.398836][ T8249] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  219.409077][ T8249] EXT4-fs error (device loop1): ext4_do_update_inode:5191: inode #16: comm syz-executor.1: corrupted inode contents
[  219.421304][ T8249] EXT4-fs error (device loop1): ext4_dirty_inode:6024: inode #16: comm syz-executor.1: mark_inode_dirty error
[  219.433074][ T8249] EXT4-fs error (device loop1): ext4_do_update_inode:5191: inode #16: comm syz-executor.1: corrupted inode contents
[  219.445300][ T8249] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #16: comm syz-executor.1: mark_inode_dirty error
[  219.456948][ T8249] EXT4-fs error (device loop1): ext4_do_update_inode:5191: inode #16: comm syz-executor.1: corrupted inode contents
[  219.469265][ T8249] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  219.477845][ T8249] EXT4-fs error (device loop1): ext4_do_update_inode:5191: inode #16: comm syz-executor.1: corrupted inode contents
[  219.490060][ T8249] EXT4-fs error (device loop1): ext4_truncate:4292: inode #16: comm syz-executor.1: mark_inode_dirty error
[  219.501488][ T8249] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  219.510582][ T8249] EXT4-fs (loop1): 1 truncate cleaned up
[  219.516221][ T8249] EXT4-fs (loop1): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,nouser_xattr,,errors=continue. Quota mode: writeback.
[  219.530896][ T8249] ext4 filesystem being mounted at /root/syzkaller-testdir2413424078/syzkaller.eFmDuS/188/file1 supports timestamps until 2038 (0x7fffffff)
[  219.957665][ T8270] netlink: 'syz-executor.4': attribute type 16 has an invalid length.
[  219.966156][ T8270] netlink: 'syz-executor.4': attribute type 3 has an invalid length.
[  219.974124][ T8270] netlink: 64066 bytes leftover after parsing attributes in process `syz-executor.4'.
[  220.002948][   T30] audit: type=1326 audit(1718987149.259:1254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8275 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff4bf2b60a9 code=0x7ffc0000
[  220.391830][ T8287] loop0: detected capacity change from 0 to 1024
[  220.455875][ T8287] EXT4-fs (loop0): Journaled quota options ignored when QUOTA feature is enabled
[  220.466503][ T8287] EXT4-fs (loop0): Quota format mount options ignored when QUOTA feature is enabled
[  220.479466][ T8287] EXT4-fs (loop0): Ignoring removed nomblk_io_submit option
[  220.487021][ T8287] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  220.504401][ T8287] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e054c01c, mo2=0002]
[  220.512505][ T8287] System zones: 0-1, 3-36
[  220.517552][ T8287] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,nojournal_checksum,usrjquota=./file1,debug,dioread_nolock,jqfmt=vfsold,nomblk_io_submit,journal_dev=0x0000000000000006,nojournal_checksum,,errors=continue. Quota mode: writeback.
[  220.554142][ T8292] bridge0: port 1(bridge_slave_0) entered blocking state
[  220.561096][ T8292] bridge0: port 1(bridge_slave_0) entered disabled state
[  220.568273][ T8292] device bridge_slave_0 entered promiscuous mode
[  220.575251][ T8292] bridge0: port 2(bridge_slave_1) entered blocking state
[  220.582200][ T8292] bridge0: port 2(bridge_slave_1) entered disabled state
[  220.589307][ T8292] device bridge_slave_1 entered promiscuous mode
[  220.660323][ T8292] bridge0: port 2(bridge_slave_1) entered blocking state
[  220.667222][ T8292] bridge0: port 2(bridge_slave_1) entered forwarding state
[  220.674333][ T8292] bridge0: port 1(bridge_slave_0) entered blocking state
[  220.681192][ T8292] bridge0: port 1(bridge_slave_0) entered forwarding state
[  220.711507][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  220.719832][   T20] bridge0: port 1(bridge_slave_0) entered disabled state
[  220.728728][   T20] bridge0: port 2(bridge_slave_1) entered disabled state
[  220.742935][  T463] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  220.751182][  T331] usb 2-1: new high-speed USB device number 36 using dummy_hcd
[  220.759159][  T463] bridge0: port 1(bridge_slave_0) entered blocking state
[  220.766052][  T463] bridge0: port 1(bridge_slave_0) entered forwarding state
[  220.775064][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  220.783509][   T20] bridge0: port 2(bridge_slave_1) entered blocking state
[  220.790448][   T20] bridge0: port 2(bridge_slave_1) entered forwarding state
[  220.803653][  T463] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  220.816406][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  220.847768][ T8292] device veth0_vlan entered promiscuous mode
[  220.854780][ T2071] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  220.864062][ T2071] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  220.872236][ T2071] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  220.879510][ T2071] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  220.923970][ T2071] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  220.943820][ T8292] device veth1_macvtap entered promiscuous mode
[  220.964621][ T8318] loop4: detected capacity change from 0 to 512
[  220.970736][ T8316] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[  220.984395][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  220.993733][ T8318] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  221.013131][   T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  221.042171][ T8318] EXT4-fs (loop4): 1 truncate cleaned up
[  221.047661][ T8318] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  221.078991][  T509] device bridge_slave_1 left promiscuous mode
[  221.087922][  T509] bridge0: port 2(bridge_slave_1) entered disabled state
[  221.096747][  T509] device bridge_slave_0 left promiscuous mode
[  221.118463][  T509] bridge0: port 1(bridge_slave_0) entered disabled state
[  221.131028][  T331] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  221.142000][  T331] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  221.155593][  T331] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  221.155613][  T509] device veth1_macvtap left promiscuous mode
[  221.165380][  T331] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  221.179727][  T331] usb 2-1: config 0 descriptor??
[  221.182745][  T509] device veth0_vlan left promiscuous mode
[  221.528154][ T8357] bridge0: port 1(bridge_slave_0) entered blocking state
[  221.535264][   T26] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[  221.542997][ T8357] bridge0: port 1(bridge_slave_0) entered disabled state
[  221.550532][ T8357] device bridge_slave_0 entered promiscuous mode
[  221.557949][ T8357] bridge0: port 2(bridge_slave_1) entered blocking state
[  221.565046][ T8357] bridge0: port 2(bridge_slave_1) entered disabled state
[  221.572450][ T8357] device bridge_slave_1 entered promiscuous mode
[  221.661723][  T331] plantronics 0003:047F:FFFF.002B: unknown main item tag 0x0
[  221.669121][  T331] plantronics 0003:047F:FFFF.002B: No inputs registered, leaving
[  221.676142][ T8357] bridge0: port 2(bridge_slave_1) entered blocking state
[  221.683540][ T8357] bridge0: port 2(bridge_slave_1) entered forwarding state
[  221.690616][ T8357] bridge0: port 1(bridge_slave_0) entered blocking state
[  221.697410][ T8357] bridge0: port 1(bridge_slave_0) entered forwarding state
[  221.701812][  T331] plantronics 0003:047F:FFFF.002B: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  221.736043][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  221.744040][  T333] bridge0: port 1(bridge_slave_0) entered disabled state
[  221.751605][  T333] bridge0: port 2(bridge_slave_1) entered disabled state
[  221.773881][ T2915] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  221.782374][ T2915] bridge0: port 1(bridge_slave_0) entered blocking state
[  221.789218][ T2915] bridge0: port 1(bridge_slave_0) entered forwarding state
[  221.796865][ T2915] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  221.808415][ T2915] bridge0: port 2(bridge_slave_1) entered blocking state
[  221.815396][ T2915] bridge0: port 2(bridge_slave_1) entered forwarding state
[  221.824936][ T2915] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  221.834703][ T2915] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  221.852530][ T2915] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  221.878216][ T8357] device veth0_vlan entered promiscuous mode
[  221.887841][ T2071] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  221.896921][ T2071] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  221.904206][ T2071] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  221.918867][ T8357] device veth1_macvtap entered promiscuous mode
[  221.927839][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  221.941689][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  221.956251][ T2071] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  221.971576][  T333] usb 2-1: USB disconnect, device number 36
[  222.016042][ T8369] TCP: request_sock_TCP: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  222.072240][   T26] usb 3-1: New USB device found, idVendor=195d, idProduct=7002, bcdDevice= 6.f7
[  222.081262][   T26] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  222.089082][   T26] usb 3-1: Product: syz
[  222.093164][   T26] usb 3-1: Manufacturer: syz
[  222.097502][   T26] usb 3-1: SerialNumber: syz
[  222.102611][   T26] usb 3-1: config 0 descriptor??
[  222.730684][ T8396] TCP: request_sock_TCP: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  222.740049][   T20] usb 3-1: USB disconnect, device number 26
[  222.776502][ T8403] loop4: detected capacity change from 0 to 256
[  222.811197][ T8403] loop4: detected capacity change from 256 to 0
[  222.924284][ T8421] loop1: detected capacity change from 0 to 512
[  222.955091][ T8421] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  222.970688][ T8421] EXT4-fs (loop1): 1 truncate cleaned up
[  222.976238][ T8421] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  223.173885][ T8357] FAT-fs (loop4): error, corrupted directory (invalid entries)
[  223.197043][ T8357] FAT-fs (loop4): Filesystem has been set read-only
[  223.205480][ T8357] FAT-fs (loop4): error, corrupted directory (invalid entries)
[  223.231537][ T2915] usb 1-1: new high-speed USB device number 19 using dummy_hcd
[  223.611180][ T2915] usb 1-1: config 17 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 255, changing to 11
[  223.622470][ T2915] usb 1-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 59391, setting to 1024
[  223.633727][ T2915] usb 1-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  223.642729][ T2915] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  223.667763][ T8429] bridge0: port 1(bridge_slave_0) entered blocking state
[  223.674898][ T8429] bridge0: port 1(bridge_slave_0) entered disabled state
[  223.681935][ T8424] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  223.689417][ T8429] device bridge_slave_0 entered promiscuous mode
[  223.743970][ T8438] bridge0: port 1(bridge_slave_0) entered blocking state
[  223.751082][ T8438] bridge0: port 1(bridge_slave_0) entered disabled state
[  223.758409][ T8438] device bridge_slave_0 entered promiscuous mode
[  223.785135][ T8429] bridge0: port 2(bridge_slave_1) entered blocking state
[  223.792201][ T8429] bridge0: port 2(bridge_slave_1) entered disabled state
[  223.799497][ T8429] device bridge_slave_1 entered promiscuous mode
[  223.805965][ T8438] bridge0: port 2(bridge_slave_1) entered blocking state
[  223.812989][ T8438] bridge0: port 2(bridge_slave_1) entered disabled state
[  223.886115][ T8438] device bridge_slave_1 entered promiscuous mode
[  224.075656][ T8455] loop3: detected capacity change from 0 to 256
[  224.121136][ T8455] loop3: detected capacity change from 256 to 0
[  224.131111][ T2915] aiptek 1-1:17.0: Aiptek using 400 ms programming speed
[  224.138776][ T2915] input: Aiptek as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:17.0/input/input31
[  224.149185][ T2915] usb 1-1: USB disconnect, device number 19
[  224.165150][  T510] device bridge_slave_1 left promiscuous mode
[  224.171157][  T510] bridge0: port 2(bridge_slave_1) entered disabled state
[  224.178373][  T510] device bridge_slave_0 left promiscuous mode
[  224.184388][  T510] bridge0: port 1(bridge_slave_0) entered disabled state
[  224.192043][  T510] device veth1_macvtap left promiscuous mode
[  224.197843][  T510] device veth0_vlan left promiscuous mode
[  224.280033][ T8438] bridge0: port 2(bridge_slave_1) entered blocking state
[  224.286942][ T8438] bridge0: port 2(bridge_slave_1) entered forwarding state
[  224.293989][ T8438] bridge0: port 1(bridge_slave_0) entered blocking state
[  224.300761][ T8438] bridge0: port 1(bridge_slave_0) entered forwarding state
[  224.335728][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  224.344068][  T333] bridge0: port 1(bridge_slave_0) entered disabled state
[  224.351366][  T333] bridge0: port 2(bridge_slave_1) entered disabled state
[  224.361251][ T2071] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  224.369599][ T2071] bridge0: port 1(bridge_slave_0) entered blocking state
[  224.376463][ T2071] bridge0: port 1(bridge_slave_0) entered forwarding state
[  224.385168][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  224.393588][   T26] bridge0: port 2(bridge_slave_1) entered blocking state
[  224.400519][   T26] bridge0: port 2(bridge_slave_1) entered forwarding state
[  224.417890][ T2071] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  224.425688][ T2071] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  224.445425][ T2915] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  224.454017][ T8292] FAT-fs (loop3): error, corrupted directory (invalid entries)
[  224.461837][ T2915] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  224.462362][ T8292] FAT-fs (loop3): Filesystem has been set read-only
[  224.469201][ T2915] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  224.475842][ T8292] FAT-fs (loop3): error, corrupted directory (invalid entries)
[  224.499493][ T2071] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  224.507637][ T2071] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  224.515643][ T2071] bridge0: port 1(bridge_slave_0) entered blocking state
[  224.522488][ T2071] bridge0: port 1(bridge_slave_0) entered forwarding state
[  224.533669][ T8438] device veth0_vlan entered promiscuous mode
[  224.541108][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  224.567008][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  224.577065][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  224.585277][   T26] bridge0: port 2(bridge_slave_1) entered blocking state
[  224.592142][   T26] bridge0: port 2(bridge_slave_1) entered forwarding state
[  224.599808][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  224.608036][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  224.615344][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  224.636536][ T8438] device veth1_macvtap entered promiscuous mode
[  224.647352][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  224.655838][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  224.664288][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  224.713082][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  224.731473][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  224.739905][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  224.775138][ T8429] device veth0_vlan entered promiscuous mode
[  224.796036][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  224.805449][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  224.834726][ T2071] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  224.839469][ T8459] loop2: detected capacity change from 0 to 40427
[  224.842886][ T2071] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  224.856057][ T2071] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  224.864235][ T2071] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  224.866740][ T8459] F2FS-fs (loop2): Found nat_bits in checkpoint
[  224.893614][ T8429] device veth1_macvtap entered promiscuous mode
[  224.911016][ T2071] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  224.918522][ T2071] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  224.927330][ T8459] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  224.927605][ T2071] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  224.942995][ T2071] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  224.952127][ T2071] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  225.050874][ T8483] IPv6: ADDRCONF(NETDEV_CHANGE): syzkaller0: link becomes ready
[  225.058901][ T8466] bridge0: port 1(bridge_slave_0) entered blocking state
[  225.066408][ T8466] bridge0: port 1(bridge_slave_0) entered disabled state
[  225.079269][ T8466] device bridge_slave_0 entered promiscuous mode
[  225.121424][ T8466] bridge0: port 2(bridge_slave_1) entered blocking state
[  225.128280][ T8466] bridge0: port 2(bridge_slave_1) entered disabled state
[  225.155876][ T8466] device bridge_slave_1 entered promiscuous mode
[  225.394453][ T8466] bridge0: port 2(bridge_slave_1) entered blocking state
[  225.401349][ T8466] bridge0: port 2(bridge_slave_1) entered forwarding state
[  225.408437][ T8466] bridge0: port 1(bridge_slave_0) entered blocking state
[  225.415330][ T8466] bridge0: port 1(bridge_slave_0) entered forwarding state
[  225.495120][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  225.504236][   T26] bridge0: port 1(bridge_slave_0) entered disabled state
[  225.521651][   T26] bridge0: port 2(bridge_slave_1) entered disabled state
[  225.531485][  T510] device bridge_slave_1 left promiscuous mode
[  225.541101][  T510] bridge0: port 2(bridge_slave_1) entered disabled state
[  225.548572][  T510] device bridge_slave_0 left promiscuous mode
[  225.554558][    T6] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  225.561395][  T510] bridge0: port 1(bridge_slave_0) entered disabled state
[  225.570425][  T510] device veth1_macvtap left promiscuous mode
[  225.576331][  T510] device veth0_vlan left promiscuous mode
[  225.681656][ T8516] IPv6: ADDRCONF(NETDEV_CHANGE): syzkaller0: link becomes ready
[  225.689889][ T2915] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  225.699817][ T2915] bridge0: port 1(bridge_slave_0) entered blocking state
[  225.706694][ T2915] bridge0: port 1(bridge_slave_0) entered forwarding state
[  225.714058][ T2915] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  225.723403][ T2915] bridge0: port 2(bridge_slave_1) entered blocking state
[  225.730274][ T2915] bridge0: port 2(bridge_slave_1) entered forwarding state
[  225.765889][ T2915] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  225.773895][ T2915] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  225.795731][ T8466] device veth0_vlan entered promiscuous mode
[  225.803680][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  225.812429][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  225.820681][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  225.828573][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  225.837099][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  225.844840][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  225.860009][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  225.873699][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  225.885934][ T8466] device veth1_macvtap entered promiscuous mode
[  225.897165][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  225.905091][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  225.913513][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  225.930572][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  225.938678][    T6] usb 1-1: config 17 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 255, changing to 11
[  225.950888][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  225.966034][    T6] usb 1-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 59391, setting to 1024
[  225.977239][    T6] usb 1-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  225.986231][    T6] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  226.011005][ T8495] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  226.300997][ T2071] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  226.461088][    T6] aiptek 1-1:17.0: Aiptek using 400 ms programming speed
[  226.469118][    T6] input: Aiptek as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:17.0/input/input32
[  226.484877][    T6] usb 1-1: USB disconnect, device number 20
[  226.490964][    C0] aiptek 1-1:17.0: aiptek_irq - usb_submit_urb failed with result -19
[  226.671147][ T2071] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  226.682369][ T2071] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  226.695236][ T2071] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  226.704274][ T2071] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  226.712997][ T2071] usb 5-1: config 0 descriptor??
[  226.730639][ T8589] loop2: detected capacity change from 0 to 512
[  226.740377][ T8591] IPv6: ADDRCONF(NETDEV_CHANGE): syzkaller0: link becomes ready
[  226.755308][ T8589] EXT4-fs (loop2): filesystem is read-only
[  226.766004][ T8589] EXT4-fs (loop2): filesystem is read-only
[  226.771936][ T8589] EXT4-fs (loop2): orphan cleanup on readonly fs
[  226.778286][ T8589] EXT4-fs error (device loop2): ext4_orphan_get:1423: comm syz-executor.2: bad orphan inode 16
[  226.788704][ T8589] ext4_test_bit(bit=15, block=3) = 0
[  226.794170][ T8589] EXT4-fs (loop2): mounted filesystem without journal. Opts: block_validity,,errors=continue. Quota mode: none.
[  226.964059][   T30] kauditd_printk_skb: 4500 callbacks suppressed
[  226.964073][   T30] audit: type=1400 audit(1718987156.219:5755): avc:  denied  { setattr } for  pid=8605 comm="syz-executor.1" name="file0" dev="9p" ino=7016996764471618667 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=blk_file permissive=1
[  227.142552][   T30] audit: type=1326 audit(1718987156.399:5756): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8612 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6bdbbf0a9 code=0x7ffc0000
[  227.167773][   T30] audit: type=1326 audit(1718987156.399:5757): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8612 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6bdbbf0a9 code=0x7ffc0000
[  227.192048][   T30] audit: type=1326 audit(1718987156.399:5758): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8612 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd6bdbbf0a9 code=0x7ffc0000
[  227.216444][   T30] audit: type=1326 audit(1718987156.429:5759): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8612 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6bdbbf0a9 code=0x7ffc0000
[  227.242127][ T2071] plantronics 0003:047F:FFFF.002C: unknown main item tag 0x0
[  227.249383][ T2071] plantronics 0003:047F:FFFF.002C: unknown main item tag 0x0
[  227.257857][   T30] audit: type=1326 audit(1718987156.429:5760): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8612 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6bdbbf0a9 code=0x7ffc0000
[  227.282374][ T2071] plantronics 0003:047F:FFFF.002C: unknown main item tag 0x0
[  227.282822][   T30] audit: type=1326 audit(1718987156.429:5761): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8612 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd6bdbbf0a9 code=0x7ffc0000
[  227.289782][ T2071] plantronics 0003:047F:FFFF.002C: unknown main item tag 0x0
[  227.289812][ T2071] plantronics 0003:047F:FFFF.002C: unknown main item tag 0x0
[  227.289838][ T2071] plantronics 0003:047F:FFFF.002C: unknown main item tag 0x0
[  227.336230][   T30] audit: type=1326 audit(1718987156.449:5762): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8612 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd6bdbbf0a9 code=0x7ffc0000
[  227.363618][   T30] audit: type=1326 audit(1718987156.449:5763): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8612 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd6bdbbc827 code=0x7ffc0000
[  227.371013][ T2071] plantronics 0003:047F:FFFF.002C: unknown main item tag 0x0
[  227.387844][   T30] audit: type=1326 audit(1718987156.449:5764): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8612 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd6bdb824e9 code=0x7ffc0000
[  227.414849][ T2071] plantronics 0003:047F:FFFF.002C: unknown main item tag 0x0
[  227.431161][ T2071] plantronics 0003:047F:FFFF.002C: No inputs registered, leaving
[  227.449885][ T2071] plantronics 0003:047F:FFFF.002C: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  227.468561][ T2071] usb 5-1: USB disconnect, device number 30
[  227.531042][    T6] usb 2-1: new high-speed USB device number 37 using dummy_hcd
[  227.821008][   T26] usb 4-1: new high-speed USB device number 29 using dummy_hcd
[  227.891166][    T6] usb 2-1: config 17 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 255, changing to 11
[  227.906685][    T6] usb 2-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 59391, setting to 1024
[  227.922813][    T6] usb 2-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  227.934404][    T6] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  227.962496][ T8637] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  228.341284][   T26] usb 4-1: New USB device found, idVendor=195d, idProduct=7002, bcdDevice= 6.f7
[  228.350365][   T26] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  228.358375][   T26] usb 4-1: Product: syz
[  228.362432][   T26] usb 4-1: Manufacturer: syz
[  228.366802][   T26] usb 4-1: SerialNumber: syz
[  228.373277][   T26] usb 4-1: config 0 descriptor??
[  228.421178][    T6] aiptek 2-1:17.0: Aiptek using 400 ms programming speed
[  228.433453][    T6] input: Aiptek as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:17.0/input/input33
[  228.446746][    T6] usb 2-1: USB disconnect, device number 37
[  228.860594][ T2915] usb 4-1: USB disconnect, device number 29
[  229.148929][ T8698] loop0: detected capacity change from 0 to 256
[  229.207596][ T8698] exFAT-fs (loop0): error, found bogus dentry(2) beyond unused empty group(0) (start_clu : 5, cur_clu : 5)
[  229.223155][ T8698] exFAT-fs (loop0): Filesystem has been set read-only
[  229.281102][   T26] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[  229.371258][ T8712] loop4: detected capacity change from 0 to 512
[  229.401961][ T8712] EXT4-fs (loop4): filesystem is read-only
[  229.410532][ T8712] EXT4-fs (loop4): filesystem is read-only
[  229.416342][ T8712] EXT4-fs (loop4): orphan cleanup on readonly fs
[  229.423219][ T8712] EXT4-fs error (device loop4): ext4_orphan_get:1423: comm syz-executor.4: bad orphan inode 16
[  229.434376][ T8712] ext4_test_bit(bit=15, block=3) = 0
[  229.439683][ T8712] EXT4-fs (loop4): mounted filesystem without journal. Opts: block_validity,,errors=continue. Quota mode: none.
[  229.567347][ T8722] serio: Serial port pts0
[  229.671281][   T26] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  229.673870][ T8727] syz-executor.3[8727] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  229.682558][ T8727] syz-executor.3[8727] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  229.687399][   T26] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  229.718809][   T26] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  229.728071][   T26] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  229.758616][   T26] usb 3-1: config 0 descriptor??
[  230.525725][ T8748] loop0: detected capacity change from 0 to 512
[  230.532193][   T26] plantronics 0003:047F:FFFF.002D: unknown main item tag 0x0
[  230.532220][   T26] plantronics 0003:047F:FFFF.002D: unknown main item tag 0x0
[  230.532240][   T26] plantronics 0003:047F:FFFF.002D: unknown main item tag 0x0
[  230.554773][   T26] plantronics 0003:047F:FFFF.002D: unknown main item tag 0x0
[  230.562132][   T26] plantronics 0003:047F:FFFF.002D: unknown main item tag 0x0
[  230.562143][ T8748] EXT4-fs (loop0): filesystem is read-only
[  230.575384][   T26] plantronics 0003:047F:FFFF.002D: unknown main item tag 0x0
[  230.582807][   T26] plantronics 0003:047F:FFFF.002D: unknown main item tag 0x0
[  230.590110][   T26] plantronics 0003:047F:FFFF.002D: unknown main item tag 0x0
[  230.598257][   T26] plantronics 0003:047F:FFFF.002D: No inputs registered, leaving
[  230.609749][ T8748] EXT4-fs (loop0): filesystem is read-only
[  230.615569][ T8748] EXT4-fs (loop0): orphan cleanup on readonly fs
[  230.621969][ T8748] EXT4-fs error (device loop0): ext4_orphan_get:1423: comm syz-executor.0: bad orphan inode 16
[  230.638984][ T8748] ext4_test_bit(bit=15, block=3) = 0
[  230.644183][ T8748] EXT4-fs (loop0): mounted filesystem without journal. Opts: block_validity,,errors=continue. Quota mode: none.
[  230.684911][   T26] plantronics 0003:047F:FFFF.002D: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  230.692543][ T8762] loop1: detected capacity change from 0 to 512
[  230.704059][ T8760] serio: Serial port pts0
[  230.744945][    T6] usb 3-1: USB disconnect, device number 27
[  230.757262][ T8762] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  230.773183][ T8762] ext4 filesystem being mounted at /root/syzkaller-testdir797845312/syzkaller.3hq3FJ/39/file0 supports timestamps until 2038 (0x7fffffff)
[  230.924938][ T8792] loop1: detected capacity change from 0 to 512
[  230.952369][ T8792] EXT4-fs (loop1): filesystem is read-only
[  230.959192][ T8792] EXT4-fs (loop1): filesystem is read-only
[  230.965086][ T8792] EXT4-fs (loop1): orphan cleanup on readonly fs
[  231.045372][ T8792] EXT4-fs error (device loop1): ext4_orphan_get:1423: comm syz-executor.1: bad orphan inode 16
[  231.056989][ T8792] ext4_test_bit(bit=15, block=3) = 0
[  231.062326][ T8792] EXT4-fs (loop1): mounted filesystem without journal. Opts: block_validity,,errors=continue. Quota mode: none.
[  231.554894][ T8833] syz-executor.2[8833] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  231.554947][ T8833] syz-executor.2[8833] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  231.699446][ T8736] usb 2-1: new high-speed USB device number 38 using dummy_hcd
[  231.871858][ T8856] bridge0: port 3(veth0_to_bridge) entered blocking state
[  231.878878][ T8856] bridge0: port 3(veth0_to_bridge) entered disabled state
[  231.886794][ T8856] device veth0_to_bridge entered promiscuous mode
[  231.893552][ T8856] bridge0: adding interface veth0_to_bridge with same address as a received packet (addr:aa:aa:aa:aa:aa:1b, vlan:0)
[  231.906483][   T26] usb 3-1: new high-speed USB device number 28 using dummy_hcd
[  231.911114][ T8856] bridge0: port 3(veth0_to_bridge) entered blocking state
[  231.921299][ T8856] bridge0: port 3(veth0_to_bridge) entered forwarding state
[  232.021007][  T320] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  232.151507][ T8736] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  232.163002][ T8736] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  232.173435][ T8736] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  232.186793][ T8736] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  232.196458][ T8736] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  232.230559][ T8736] usb 2-1: config 0 descriptor??
[  232.271071][   T26] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  232.282325][   T26] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  232.295041][   T26] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  232.304354][   T26] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  232.313469][   T26] usb 3-1: config 0 descriptor??
[  232.381075][  T320] usb 5-1: config 17 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 255, changing to 11
[  232.392512][  T320] usb 5-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 59391, setting to 1024
[  232.404412][  T320] usb 5-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  232.413239][  T320] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  232.441055][ T8841] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[  232.701700][ T8736] plantronics 0003:047F:FFFF.002E: unknown main item tag 0x0
[  232.709060][ T8736] plantronics 0003:047F:FFFF.002E: unknown main item tag 0x0
[  232.716507][ T8736] plantronics 0003:047F:FFFF.002E: No inputs registered, leaving
[  232.725207][ T8736] plantronics 0003:047F:FFFF.002E: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  232.794572][   T26] plantronics 0003:047F:FFFF.002F: unknown main item tag 0x0
[  232.802169][   T26] plantronics 0003:047F:FFFF.002F: unknown main item tag 0x0
[  232.809525][   T26] plantronics 0003:047F:FFFF.002F: unknown main item tag 0x0
[  232.817455][   T26] plantronics 0003:047F:FFFF.002F: unknown main item tag 0x0
[  232.824813][   T26] plantronics 0003:047F:FFFF.002F: unknown main item tag 0x0
[  232.832826][   T26] plantronics 0003:047F:FFFF.002F: unknown main item tag 0x0
[  232.840126][   T26] plantronics 0003:047F:FFFF.002F: unknown main item tag 0x0
[  232.847710][   T26] plantronics 0003:047F:FFFF.002F: unknown main item tag 0x0
[  232.860757][ T8873] input: syz1 as /devices/virtual/input/input35
[  232.861788][   T26] plantronics 0003:047F:FFFF.002F: No inputs registered, leaving
[  232.888281][   T26] plantronics 0003:047F:FFFF.002F: hiddev97,hidraw1: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  232.901088][  T320] aiptek 5-1:17.0: Aiptek using 400 ms programming speed
[  232.913063][  T320] input: Aiptek as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:17.0/input/input34
[  232.926024][  T320] usb 5-1: USB disconnect, device number 31
[  232.972194][ T2915] usb 2-1: USB disconnect, device number 38
[  233.031872][    T6] usb 3-1: USB disconnect, device number 28
[  233.208829][   T30] kauditd_printk_skb: 6326 callbacks suppressed
[  233.208844][   T30] audit: type=1326 audit(1718987162.459:12091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8888 comm="syz-executor.3" exe="/root/syz-executor.3" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fea0e1b10a9 code=0x0
[  233.561086][ T8902] input: syz1 as /devices/virtual/input/input36
[  233.760156][ T8923] loop2: detected capacity change from 0 to 256
[  233.793759][ T8923] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  233.805604][ T8923] uffd: Set unprivileged_userfaultfd sysctl knob to 1 if kernel faults must be handled without obtaining CAP_SYS_PTRACE capability
[  233.998242][ T8936] input: syz1 as /devices/virtual/input/input37
[  234.021013][    T6] usb 2-1: new high-speed USB device number 39 using dummy_hcd
[  234.221004][  T333] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[  234.262630][   T30] audit: type=1326 audit(1718987163.519:12092): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8941 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd1225a0a9 code=0x7ffc0000
[  234.313467][   T30] audit: type=1326 audit(1718987163.519:12093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8941 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbd1225a0a9 code=0x7ffc0000
[  234.338012][   T30] audit: type=1326 audit(1718987163.549:12094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8941 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd1225a0a9 code=0x7ffc0000
[  234.362138][   T30] audit: type=1326 audit(1718987163.549:12095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8941 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd1225a0a9 code=0x7ffc0000
[  234.386285][   T30] audit: type=1326 audit(1718987163.549:12096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8941 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbd1225a0a9 code=0x7ffc0000
[  234.410587][   T30] audit: type=1326 audit(1718987163.549:12097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8941 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd1225a0a9 code=0x7ffc0000
[  234.434947][   T30] audit: type=1326 audit(1718987163.549:12098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8941 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fbd12257827 code=0x7ffc0000
[  234.460946][    T6] usb 2-1: config 17 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 255, changing to 11
[  234.461011][   T30] audit: type=1326 audit(1718987163.549:12099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8941 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fbd1221d4e9 code=0x7ffc0000
[  234.473121][    T6] usb 2-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 59391, setting to 1024
[  234.496697][   T30] audit: type=1326 audit(1718987163.549:12100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=8941 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fbd12257827 code=0x7ffc0000
[  234.507576][    T6] usb 2-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  234.548181][    T6] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  234.571088][ T8918] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  234.597530][ T8954] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[  234.691157][  T333] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  234.702475][  T333] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  234.715360][  T333] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  234.724337][  T333] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  234.732925][  T333] usb 3-1: config 0 descriptor??
[  235.031053][    T6] aiptek 2-1:17.0: Aiptek using 400 ms programming speed
[  235.040447][    T6] input: Aiptek as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:17.0/input/input38
[  235.062898][    T6] usb 2-1: USB disconnect, device number 39
[  235.102779][ T8973] loop3: detected capacity change from 0 to 256
[  235.123570][ T8973] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  235.192972][ T8981] device pim6reg1 entered promiscuous mode
[  235.201918][  T333] plantronics 0003:047F:FFFF.0030: unknown main item tag 0x0
[  235.209384][  T333] plantronics 0003:047F:FFFF.0030: unknown main item tag 0x0
[  235.216965][  T333] plantronics 0003:047F:FFFF.0030: unknown main item tag 0x0
[  235.224447][  T333] plantronics 0003:047F:FFFF.0030: unknown main item tag 0x0
[  235.231881][  T333] plantronics 0003:047F:FFFF.0030: unknown main item tag 0x0
[  235.239370][  T333] plantronics 0003:047F:FFFF.0030: unknown main item tag 0x0
[  235.246639][  T333] plantronics 0003:047F:FFFF.0030: unknown main item tag 0x0
[  235.254316][  T333] plantronics 0003:047F:FFFF.0030: unknown main item tag 0x0
[  235.261727][  T333] plantronics 0003:047F:FFFF.0030: No inputs registered, leaving
[  235.270182][  T333] plantronics 0003:047F:FFFF.0030: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  235.404946][   T26] usb 3-1: USB disconnect, device number 29
[  235.975119][ T9014] syz-executor.2[9014] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  235.975171][ T9014] syz-executor.2[9014] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  235.987649][ T9014] xt_SECMARK: invalid security context 'system_u:object_r:devicekit_exec_t:s0'
[  236.206363][ T9025] loop3: detected capacity change from 0 to 2048
[  236.301975][ T9027] loop2: detected capacity change from 0 to 512
[  236.468895][ T9025] EXT4-fs (loop3): mounted filesystem without journal. Opts: jqfmt=vfsv0,errors=remount-ro,. Quota mode: none.
[  236.469120][ T9027] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2
[  236.488538][ T9027] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2
[  236.498632][ T9027] EXT4-fs (loop2): 1 truncate cleaned up
[  236.504237][ T9027] EXT4-fs (loop2): mounted filesystem without journal. Opts: usrquota,usrjquota="data=ordered,noload,noinit_itable,grpjquota="init_itable,jqfmt=vfsold,noblock_validity,,errors=continue. Quota mode: writeback.
[  236.560566][ T9025] EXT4-fs error (device loop3): __ext4_get_inode_loc:4340: comm syz-executor.3: Invalid inode table block 17950205685819571681 in block_group 0
[  236.576135][ T9025] EXT4-fs (loop3): Remounting filesystem read-only
[  236.583671][ T9025] EXT4-fs error (device loop3): __ext4_get_inode_loc:4340: comm syz-executor.3: Invalid inode table block 17950205685819571681 in block_group 0
[  236.603959][ T9025] EXT4-fs error (device loop3): __ext4_get_inode_loc:4340: comm syz-executor.3: Invalid inode table block 17950205685819571681 in block_group 0
[  236.624951][ T9024] EXT4-fs error (device loop3): __ext4_get_inode_loc:4340: comm syz-executor.3: Invalid inode table block 17950205685819571681 in block_group 0
[  236.646670][ T9025] EXT4-fs error (device loop3): __ext4_get_inode_loc:4340: comm syz-executor.3: Invalid inode table block 17950205685819571681 in block_group 0
[  236.665915][ T9047] syz-executor.1[9047] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  236.665991][ T9047] syz-executor.1[9047] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  236.678652][ T9025] EXT4-fs error (device loop3): __ext4_get_inode_loc:4340: comm syz-executor.3: Invalid inode table block 17950205685819571681 in block_group 0
[  236.704942][ T9025] EXT4-fs error (device loop3): __ext4_get_inode_loc:4340: comm syz-executor.3: Invalid inode table block 17950205685819571681 in block_group 0
[  236.719777][ T9024] EXT4-fs error (device loop3): __ext4_get_inode_loc:4340: comm syz-executor.3: Invalid inode table block 17950205685819571681 in block_group 0
[  236.756403][ T9025] EXT4-fs error (device loop3): __ext4_get_inode_loc:4340: comm syz-executor.3: Invalid inode table block 17950205685819571681 in block_group 0
[  236.771240][ T9047] xt_SECMARK: invalid security context 'system_u:object_r:devicekit_exec_t:s0'
[  236.771784][ T9050] EXT4-fs error (device loop3): __ext4_get_inode_loc:4340: comm syz-executor.3: Invalid inode table block 17950205685819571681 in block_group 0
[  236.806164][ T9049] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  237.031489][  T320] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[  237.049232][ T8466] EXT4-fs warning (device loop3): htree_dirblock_to_tree:1082: inode #2: lblock 0: comm syz-executor.3: error -117 reading directory block
[  237.395945][ T9094] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'.
[  237.406795][ T9094] device lo entered promiscuous mode
[  237.414619][ T9094] loop2: detected capacity change from 0 to 128
[  237.446722][ T9094] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  237.457963][ T9094] ext4 filesystem being mounted at /root/syzkaller-testdir462462970/syzkaller.PAiPyq/136/mnt supports timestamps until 2038 (0x7fffffff)
[  237.479196][ T9094] device lo left promiscuous mode
[  237.561137][  T320] usb 1-1: New USB device found, idVendor=195d, idProduct=7002, bcdDevice= 6.f7
[  237.573165][  T320] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  237.581571][  T320] usb 1-1: Product: syz
[  237.585632][  T320] usb 1-1: Manufacturer: syz
[  237.590026][  T320] usb 1-1: SerialNumber: syz
[  237.604650][  T320] usb 1-1: config 0 descriptor??
[  237.691249][    T8] device veth0_to_bridge left promiscuous mode
[  237.697339][    T8] bridge0: port 3(veth0_to_bridge) entered disabled state
[  237.711744][    T8] device bridge_slave_1 left promiscuous mode
[  237.718784][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[  237.750071][    T8] device bridge_slave_0 left promiscuous mode
[  237.769297][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[  237.785264][    T8] device veth1_macvtap left promiscuous mode
[  237.798151][    T8] device veth0_vlan left promiscuous mode
[  237.850687][ T9119] loop4: detected capacity change from 0 to 512
[  237.904769][  T333] usb 1-1: USB disconnect, device number 21
[  237.908072][ T9122] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  237.929631][ T9122] netlink: 104 bytes leftover after parsing attributes in process `syz-executor.1'.
[  238.020772][ T9124] bridge0: port 1(bridge_slave_0) entered blocking state
[  238.027685][ T9124] bridge0: port 1(bridge_slave_0) entered disabled state
[  238.034929][ T9124] device bridge_slave_0 entered promiscuous mode
[  238.042172][ T9124] bridge0: port 2(bridge_slave_1) entered blocking state
[  238.049175][ T9124] bridge0: port 2(bridge_slave_1) entered disabled state
[  238.056599][ T9124] device bridge_slave_1 entered promiscuous mode
[  238.098869][ T9124] bridge0: port 2(bridge_slave_1) entered blocking state
[  238.105723][ T9124] bridge0: port 2(bridge_slave_1) entered forwarding state
[  238.112821][ T9124] bridge0: port 1(bridge_slave_0) entered blocking state
[  238.119793][ T9124] bridge0: port 1(bridge_slave_0) entered forwarding state
[  238.140884][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  238.148479][  T333] bridge0: port 1(bridge_slave_0) entered disabled state
[  238.155795][  T333] bridge0: port 2(bridge_slave_1) entered disabled state
[  238.171287][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  238.179392][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  238.187480][  T333] bridge0: port 1(bridge_slave_0) entered blocking state
[  238.194406][  T333] bridge0: port 1(bridge_slave_0) entered forwarding state
[  238.201701][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  238.210610][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  238.219278][  T333] bridge0: port 2(bridge_slave_1) entered blocking state
[  238.228662][  T333] bridge0: port 2(bridge_slave_1) entered forwarding state
[  238.236509][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  238.244523][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  238.253125][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  238.261437][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  238.276445][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  238.284732][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  238.299614][ T9124] device veth0_vlan entered promiscuous mode
[  238.305901][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  238.314209][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  238.322754][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  238.330222][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  238.342596][ T9124] device veth1_macvtap entered promiscuous mode
[  238.351048][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  238.359045][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  238.367071][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  238.376073][  T320] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  238.384790][  T320] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  238.398673][  T320] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  238.406931][  T320] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  238.691045][  T320] usb 4-1: new high-speed USB device number 30 using dummy_hcd
[  239.071141][  T320] usb 4-1: config 17 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 255, changing to 11
[  239.082202][  T320] usb 4-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 59391, setting to 1024
[  239.093238][  T320] usb 4-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  239.102071][  T320] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  239.121095][ T9130] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  239.275566][ T9138] loop2: detected capacity change from 0 to 256
[  239.323435][ T9146] EXT4-fs warning (device sda1): ext4_group_extend:1822: can't shrink FS - resize aborted
[  239.405013][ T9138] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  239.409060][ T9154] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[  239.492475][ T9156] loop0: detected capacity change from 0 to 512
[  239.574590][  T320] aiptek 4-1:17.0: Aiptek using 400 ms programming speed
[  239.620563][  T320] input: Aiptek as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:17.0/input/input39
[  239.663441][ T9156] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2
[  239.666802][ T9154] netlink: 104 bytes leftover after parsing attributes in process `syz-executor.4'.
[  239.671321][ T9156] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -2
[  239.688901][ T9156] EXT4-fs (loop0): 1 truncate cleaned up
[  239.694654][ T9156] EXT4-fs (loop0): mounted filesystem without journal. Opts: usrquota,usrjquota="data=ordered,noload,noinit_itable,grpjquota="init_itable,jqfmt=vfsold,noblock_validity,,errors=continue. Quota mode: writeback.
[  239.696536][ T9162] syz-executor.4[9162] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  239.733788][ T9162] syz-executor.4[9162] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  239.748415][  T320] usb 4-1: USB disconnect, device number 30
[  239.765656][    C1] aiptek 4-1:17.0: aiptek_irq - usb_submit_urb failed with result -19
[  239.786768][ T9162] xt_SECMARK: invalid security context 'system_u:object_r:devicekit_exec_t:s0'
[  239.808823][ T9167] loop4: detected capacity change from 0 to 512
[  239.839263][ T9163] futex_wake_op: syz-executor.1 tries to shift op by -1; fix this program
[  239.889151][ T9166] loop2: detected capacity change from 0 to 40427
[  239.932629][ T9166] F2FS-fs (loop2): invalid crc value
[  239.939211][ T9166] F2FS-fs (loop2): Found nat_bits in checkpoint
[  239.962919][ T9166] F2FS-fs (loop2): Cannot turn on quotas: -2 on 1
[  239.969959][ T9166] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  240.339878][ T9184] loop1: detected capacity change from 0 to 2048
[  240.366077][ T9184] EXT4-fs (loop1): mounted filesystem without journal. Opts: jqfmt=vfsv0,errors=remount-ro,. Quota mode: none.
[  240.403959][   T30] kauditd_printk_skb: 9030 callbacks suppressed
[  240.403983][   T30] audit: type=1326 audit(1718987169.659:21131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9185 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fbd12257827 code=0x7ffc0000
[  240.880596][   T30] audit: type=1326 audit(1718987169.689:21132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9185 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fbd1221d4e9 code=0x7ffc0000
[  240.916194][   T30] audit: type=1326 audit(1718987169.689:21133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9185 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd1225a0a9 code=0x7ffc0000
[  240.927267][ T9184] EXT4-fs error (device loop1): __ext4_get_inode_loc:4340: comm syz-executor.1: Invalid inode table block 17950205685819571681 in block_group 0
[  240.940448][   T30] audit: type=1326 audit(1718987169.699:21134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9185 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fbd12257827 code=0x7ffc0000
[  240.978481][   T30] audit: type=1326 audit(1718987169.699:21135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9185 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fbd1221d4e9 code=0x7ffc0000
[  241.003446][   T30] audit: type=1326 audit(1718987169.699:21136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9185 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd1225a0a9 code=0x7ffc0000
[  241.027571][   T30] audit: type=1326 audit(1718987169.699:21137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9185 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fbd12257827 code=0x7ffc0000
[  241.052334][   T30] audit: type=1326 audit(1718987169.699:21138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9185 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fbd1221d4e9 code=0x7ffc0000
[  241.055436][ T7505] attempt to access beyond end of device
[  241.055436][ T7505] loop2: rw=2049, want=45120, limit=40427
[  241.078084][ T9184] EXT4-fs (loop1): Remounting filesystem read-only
[  241.099281][ T9184] EXT4-fs error (device loop1): __ext4_get_inode_loc:4340: comm syz-executor.1: Invalid inode table block 17950205685819571681 in block_group 0
[  241.114427][   T30] audit: type=1326 audit(1718987169.699:21139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9185 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbd1225a0a9 code=0x7ffc0000
[  241.131246][ T9181] EXT4-fs error (device loop1): __ext4_get_inode_loc:4340: comm syz-executor.1: Invalid inode table block 17950205685819571681 in block_group 0
[  241.142663][   T30] audit: type=1326 audit(1718987169.699:21140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9185 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fbd12257827 code=0x7ffc0000
[  241.181409][ T9181] EXT4-fs error (device loop1): __ext4_get_inode_loc:4340: comm syz-executor.1: Invalid inode table block 17950205685819571681 in block_group 0
[  241.197716][ T9184] EXT4-fs error (device loop1): __ext4_get_inode_loc:4340: comm syz-executor.1: Invalid inode table block 17950205685819571681 in block_group 0
[  241.215839][ T9184] EXT4-fs error (device loop1): __ext4_get_inode_loc:4340: comm syz-executor.1: Invalid inode table block 17950205685819571681 in block_group 0
[  241.231217][ T9208] syz-executor.0[9208] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  241.231267][ T9208] syz-executor.0[9208] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  241.251099][ T9184] EXT4-fs error (device loop1): __ext4_get_inode_loc:4340: comm syz-executor.1: Invalid inode table block 17950205685819571681 in block_group 0
[  241.291560][ T9209] syz-executor.0[9209] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  241.291639][ T9209] syz-executor.0[9209] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  241.321257][ T9181] EXT4-fs error (device loop1): __ext4_get_inode_loc:4340: comm syz-executor.1: Invalid inode table block 17950205685819571681 in block_group 0
[  241.358201][ T9211] loop2: detected capacity change from 0 to 256
[  241.365311][ T9212] EXT4-fs error (device loop1): __ext4_get_inode_loc:4340: comm syz-executor.1: Invalid inode table block 17950205685819571681 in block_group 0
[  241.380217][ T9184] EXT4-fs error (device loop1): __ext4_get_inode_loc:4340: comm syz-executor.1: Invalid inode table block 17950205685819571681 in block_group 0
[  241.417315][ T9211] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  241.483935][ T9215] loop3: detected capacity change from 0 to 512
[  241.556389][ T9215] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[  241.564424][ T9215] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2
[  241.574531][ T9215] EXT4-fs (loop3): 1 truncate cleaned up
[  241.580117][ T9215] EXT4-fs (loop3): mounted filesystem without journal. Opts: usrquota,usrjquota="data=ordered,noload,noinit_itable,grpjquota="init_itable,jqfmt=vfsold,noblock_validity,,errors=continue. Quota mode: writeback.
[  241.649311][ T8429] EXT4-fs warning (device loop1): htree_dirblock_to_tree:1082: inode #2: lblock 0: comm syz-executor.1: error -117 reading directory block
[  241.704315][ T9217] bridge0: port 1(bridge_slave_0) entered blocking state
[  241.711527][ T9217] bridge0: port 1(bridge_slave_0) entered disabled state
[  241.718684][ T9217] device bridge_slave_0 entered promiscuous mode
[  241.728656][ T9217] bridge0: port 2(bridge_slave_1) entered blocking state
[  241.735762][ T9217] bridge0: port 2(bridge_slave_1) entered disabled state
[  241.743590][ T9217] device bridge_slave_1 entered promiscuous mode
[  241.825465][ T9217] bridge0: port 2(bridge_slave_1) entered blocking state
[  241.832375][ T9217] bridge0: port 2(bridge_slave_1) entered forwarding state
[  241.839510][ T9217] bridge0: port 1(bridge_slave_0) entered blocking state
[  241.846314][ T9217] bridge0: port 1(bridge_slave_0) entered forwarding state
[  241.891222][ T2915] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  241.899060][ T2915] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  241.907795][ T2915] bridge0: port 2(bridge_slave_1) entered disabled state
[  241.931583][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  241.939988][    T6] bridge0: port 2(bridge_slave_1) entered blocking state
[  241.946940][    T6] bridge0: port 2(bridge_slave_1) entered forwarding state
[  241.967150][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  241.975164][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  241.987029][ T9228] bridge0: port 1(bridge_slave_0) entered blocking state
[  241.994717][ T9228] bridge0: port 1(bridge_slave_0) entered disabled state
[  242.002456][ T9228] device bridge_slave_0 entered promiscuous mode
[  242.009690][ T9228] bridge0: port 2(bridge_slave_1) entered blocking state
[  242.016679][ T9228] bridge0: port 2(bridge_slave_1) entered disabled state
[  242.024046][ T9228] device bridge_slave_1 entered promiscuous mode
[  242.048653][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  242.112810][  T320] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  242.120865][  T320] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  242.128637][  T320] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  242.146074][ T9217] device veth0_vlan entered promiscuous mode
[  242.177132][ T9244] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'.
[  242.205411][ T2915] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  242.218491][ T9217] device veth1_macvtap entered promiscuous mode
[  242.233185][ T2915] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  242.245127][ T9246] loop3: detected capacity change from 0 to 256
[  242.252860][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  242.302912][ T9246] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  242.323307][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  242.343915][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  242.352593][  T333] bridge0: port 1(bridge_slave_0) entered blocking state
[  242.359442][  T333] bridge0: port 1(bridge_slave_0) entered forwarding state
[  242.366768][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  242.375351][  T333] bridge0: port 2(bridge_slave_1) entered blocking state
[  242.382223][  T333] bridge0: port 2(bridge_slave_1) entered forwarding state
[  242.411908][ T2915] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  242.419724][ T2915] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  242.438562][ T2915] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  242.446556][ T2915] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  242.455271][    T8] device bridge_slave_1 left promiscuous mode
[  242.462425][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[  242.496665][    T8] device bridge_slave_0 left promiscuous mode
[  242.514330][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[  242.531502][    T8] device veth1_macvtap left promiscuous mode
[  242.543173][    T8] device veth0_vlan left promiscuous mode
[  242.784544][ T9228] device veth0_vlan entered promiscuous mode
[  242.803568][ T2915] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  242.815159][ T2915] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  242.817724][ T9270] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=9270 comm=syz-executor.3
[  242.829313][ T2915] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  242.862602][ T2915] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  242.872502][ T2915] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  242.877001][ T9272] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  242.881349][ T9228] device veth1_macvtap entered promiscuous mode
[  242.914083][ T9272] netlink: 104 bytes leftover after parsing attributes in process `syz-executor.3'.
[  242.923329][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  242.923611][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  242.942019][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  242.963111][ T2915] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  242.972920][ T2915] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  243.157471][ T9298] loop2: detected capacity change from 0 to 512
[  243.289613][ T9298] EXT4-fs (loop2): orphan cleanup on readonly fs
[  243.340803][ T9298] EXT4-fs (loop2): 1 orphan inode deleted
[  243.366698][ T9298] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  243.479769][ T9310] syz-executor.0[9310] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  243.479845][ T9310] syz-executor.0[9310] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  243.493349][ T9300] loop1: detected capacity change from 0 to 40427
[  243.553251][ T9300] F2FS-fs (loop1): invalid crc value
[  243.561747][ T9300] F2FS-fs (loop1): Found nat_bits in checkpoint
[  243.598729][ T9300] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  243.627297][ T9228] attempt to access beyond end of device
[  243.627297][ T9228] loop1: rw=2049, want=45104, limit=40427
[  243.918600][ T9324] loop2: detected capacity change from 0 to 128
[  244.485493][ T9332] incfs: Can't find or create .index dir in ./file0
[  244.503175][ T9332] incfs: mount failed -14
[  244.536915][ T9338] loop0: detected capacity change from 0 to 256
[  244.547679][ T9341] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  244.558509][ T9344] loop2: detected capacity change from 0 to 512
[  244.568310][ T9338] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011a39, chksum : 0xd82bb37b, utbl_chksum : 0xe619d30d)
[  244.583890][ T9343] loop3: detected capacity change from 0 to 512
[  244.623367][ T9343] EXT4-fs (loop3): Mount option "noacl" will be removed by 3.5
[  244.623367][ T9343] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  244.623367][ T9343] 
[  244.644105][ T9343] EXT4-fs (loop3): mounted filesystem without journal. Opts: noacl,grpquota,,errors=continue. Quota mode: writeback.
[  244.743366][ T9361] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'.
[  244.755526][ T9352] bridge0: port 1(bridge_slave_0) entered blocking state
[  244.765920][ T9352] bridge0: port 1(bridge_slave_0) entered disabled state
[  244.773463][ T9352] device bridge_slave_0 entered promiscuous mode
[  244.785140][ T9352] bridge0: port 2(bridge_slave_1) entered blocking state
[  244.792035][ T9352] bridge0: port 2(bridge_slave_1) entered disabled state
[  244.799451][ T9352] device bridge_slave_1 entered promiscuous mode
[  244.853297][ T9369] loop3: detected capacity change from 0 to 128
[  245.418685][   T30] kauditd_printk_skb: 7431 callbacks suppressed
[  245.418727][   T30] audit: type=1326 audit(1718987174.209:28572): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9370 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fea3f2884e9 code=0x7ffc0000
[  245.468915][ T9352] bridge0: port 2(bridge_slave_1) entered blocking state
[  245.475821][ T9352] bridge0: port 2(bridge_slave_1) entered forwarding state
[  245.483002][ T9352] bridge0: port 1(bridge_slave_0) entered blocking state
[  245.489749][ T9352] bridge0: port 1(bridge_slave_0) entered forwarding state
[  245.511263][   T30] audit: type=1326 audit(1718987174.709:28573): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9370 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea3f2c50a9 code=0x7ffc0000
[  245.535454][   T30] audit: type=1326 audit(1718987174.709:28574): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9370 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fea3f2c2827 code=0x7ffc0000
[  245.559361][   T30] audit: type=1326 audit(1718987174.709:28575): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9370 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fea3f2884e9 code=0x7ffc0000
[  245.583450][   T30] audit: type=1326 audit(1718987174.709:28576): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9370 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea3f2c50a9 code=0x7ffc0000
[  245.609279][   T30] audit: type=1326 audit(1718987174.709:28577): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9370 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fea3f2c2827 code=0x7ffc0000
[  245.617623][ T9377] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  245.634961][   T30] audit: type=1326 audit(1718987174.709:28578): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9370 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fea3f2884e9 code=0x7ffc0000
[  245.664655][ T8736] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  245.667122][   T30] audit: type=1326 audit(1718987174.709:28579): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9370 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea3f2c50a9 code=0x7ffc0000
[  245.695874][ T8736] bridge0: port 1(bridge_slave_0) entered disabled state
[  245.698156][   T30] audit: type=1326 audit(1718987174.709:28580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9370 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fea3f2c2827 code=0x7ffc0000
[  245.716225][ T9385] loop3: detected capacity change from 0 to 512
[  245.733117][   T30] audit: type=1326 audit(1718987174.709:28581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9370 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fea3f2884e9 code=0x7ffc0000
[  245.733184][ T8736] bridge0: port 2(bridge_slave_1) entered disabled state
[  245.780518][ T9379] incfs: Can't find or create .index dir in ./file0
[  245.789198][ T9379] incfs: mount failed -14
[  245.790824][  T320] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  245.802798][  T320] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  245.811560][  T320] bridge0: port 1(bridge_slave_0) entered blocking state
[  245.811753][ T9385] EXT4-fs (loop3): Mount option "noacl" will be removed by 3.5
[  245.811753][ T9385] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  245.811753][ T9385] 
[  245.818460][  T320] bridge0: port 1(bridge_slave_0) entered forwarding state
[  245.843526][  T320] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  245.851913][  T320] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  245.861142][ T9385] EXT4-fs (loop3): mounted filesystem without journal. Opts: noacl,grpquota,,errors=continue. Quota mode: writeback.
[  245.863215][  T320] bridge0: port 2(bridge_slave_1) entered blocking state
[  245.880326][  T320] bridge0: port 2(bridge_slave_1) entered forwarding state
[  245.891032][ T9390] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.4'.
[  245.907988][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  245.916318][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  245.924336][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  245.932273][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  245.959998][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  245.976238][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  245.988105][ T9352] device veth0_vlan entered promiscuous mode
[  245.995158][ T9398] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=9398 comm=syz-executor.4
[  246.013821][ T2915] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  246.029209][ T2915] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  246.055888][ T9352] device veth1_macvtap entered promiscuous mode
[  246.063312][ T9406] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  246.070706][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  246.078293][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  246.092349][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  246.107464][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  246.117406][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  246.139619][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  246.155327][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  246.164966][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  246.173710][  T333] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  246.184126][    T8] device bridge_slave_1 left promiscuous mode
[  246.190066][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[  246.205709][ T9416] incfs: Can't find or create .index dir in ./file0
[  246.212895][    T8] device bridge_slave_0 left promiscuous mode
[  246.218836][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[  246.226039][ T9416] incfs: mount failed -14
[  246.237193][    T8] device veth1_macvtap left promiscuous mode
[  246.244198][    T8] device veth0_vlan left promiscuous mode
[  246.320170][ T9422] loop0: detected capacity change from 0 to 512
[  246.352088][ T9422] EXT4-fs (loop0): Mount option "noacl" will be removed by 3.5
[  246.352088][ T9422] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  246.352088][ T9422] 
[  246.376904][ T9422] EXT4-fs (loop0): mounted filesystem without journal. Opts: noacl,grpquota,,errors=continue. Quota mode: writeback.
[  246.400964][  T313] usb 5-1: new full-speed USB device number 32 using dummy_hcd
[  246.501702][ T9429] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=9429 comm=syz-executor.0
[  246.556283][ T9434] loop1: detected capacity change from 0 to 512
[  246.577908][ T9438] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  246.606197][ T9434] EXT4-fs (loop1): orphan cleanup on readonly fs
[  246.613604][ T9434] EXT4-fs (loop1): 1 orphan inode deleted
[  246.623879][ T9434] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  246.666420][ T9446] incfs: Can't find or create .index dir in ./file0
[  246.673546][ T9446] incfs: mount failed -14
[  246.751931][ T9452] tap0: tun_chr_ioctl cmd 1074025677
[  246.757175][ T9452] tap0: linktype set to 821
[  246.771057][  T313] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 4
[  246.781687][  T313] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[  246.791293][  T313] usb 5-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 4
[  246.841640][ T9454] loop0: detected capacity change from 0 to 512
[  246.871853][ T9454] EXT4-fs (loop0): Mount option "noacl" will be removed by 3.5
[  246.871853][ T9454] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  246.871853][ T9454] 
[  246.890837][ T9454] EXT4-fs (loop0): mounted filesystem without journal. Opts: noacl,grpquota,,errors=continue. Quota mode: writeback.
[  246.917486][ T9459] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=9459 comm=syz-executor.3
[  246.990098][ T9467] netlink: 277 bytes leftover after parsing attributes in process `syz-executor.3'.
[  246.990717][ T9468] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[  247.006639][  T313] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  247.015870][  T313] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  247.030963][  T313] usb 5-1: Product: syz
[  247.035074][  T313] usb 5-1: Manufacturer: syz
[  247.039720][  T313] usb 5-1: SerialNumber: syz
[  247.209354][ T9472] loop0: detected capacity change from 0 to 512
[  247.320947][ T9472] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -2
[  247.328928][ T9472] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -2
[  247.337360][ T9472] EXT4-fs (loop0): 1 truncate cleaned up
[  247.342993][ T9472] EXT4-fs (loop0): mounted filesystem without journal. Opts: usrquota,usrjquota="data=ordered,noload,noinit_itable,grpjquota="init_itable,jqfmt=vfsold,noblock_validity,,errors=continue. Quota mode: writeback.
[  247.421263][  T313] usb 5-1: 2:1 : unknown format tag 0x0 is detected.  processed as MPEG.
[  247.429587][  T313] usb 5-1: found format II with max.bitrate = 0, frame size=0
[  247.437251][  T313] usb 5-1: 2:1 : invalid UAC_FORMAT_TYPE desc
[  247.462809][  T313] usb 5-1: USB disconnect, device number 32
[  247.470659][ T9479] incfs: Can't find or create .index dir in ./file0
[  247.478556][ T9479] incfs: mount failed -14
[  247.554994][ T9489] tap0: tun_chr_ioctl cmd 1074025677
[  247.560160][ T9489] tap0: linktype set to 821
[  247.918319][ T9508] netlink: 277 bytes leftover after parsing attributes in process `syz-executor.4'.
[  247.974900][ T9514] tap0: tun_chr_ioctl cmd 1074025677
[  247.980134][ T9514] tap0: linktype set to 821
[  248.340962][  T313] usb 1-1: new full-speed USB device number 22 using dummy_hcd
[  248.477885][ T9539] tap0: tun_chr_ioctl cmd 1074025677
[  248.483887][ T9539] tap0: linktype set to 821
[  248.552489][ T9543] tipc: Failed to remove unknown binding: 66,1,1/0:1283679395/1283679397
[  248.560815][ T9543] tipc: Failed to remove unknown binding: 66,1,1/0:1283679395/1283679397
[  248.638182][ T9546] loop4: detected capacity change from 0 to 512
[  248.713053][ T9546] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[  248.721079][ T9546] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2
[  248.731177][ T9546] EXT4-fs (loop4): 1 truncate cleaned up
[  248.736678][ T9546] EXT4-fs (loop4): mounted filesystem without journal. Opts: usrquota,usrjquota="data=ordered,noload,noinit_itable,grpjquota="init_itable,jqfmt=vfsold,noblock_validity,,errors=continue. Quota mode: writeback.
[  248.895672][ T9560] netlink: 277 bytes leftover after parsing attributes in process `syz-executor.3'.
[  248.931670][  T313] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 4
[  248.943118][  T313] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[  248.952639][  T313] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 4
[  248.971059][  T463] usb 2-1: new high-speed USB device number 40 using dummy_hcd
[  249.291096][  T313] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  249.300114][  T313] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  249.308034][  T313] usb 1-1: Product: syz
[  249.312370][  T313] usb 1-1: Manufacturer: syz
[  249.318005][  T313] usb 1-1: SerialNumber: syz
[  249.341194][  T463] usb 2-1: config 17 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 255, changing to 11
[  249.352447][  T463] usb 2-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 59391, setting to 1024
[  249.363560][  T463] usb 2-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  249.372374][  T463] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  249.372436][ T9570] loop4: detected capacity change from 0 to 256
[  249.391317][ T9551] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[  249.723649][ T9580] loop3: detected capacity change from 0 to 512
[  249.776648][ T9580] EXT4-fs (loop3): Ignoring removed nomblk_io_submit option
[  249.784091][ T9580] EXT4-fs (loop3): Mount option "nouser_xattr" will be removed by 3.5
[  249.784091][ T9580] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  249.784091][ T9580] 
[  249.802733][ T9580] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  249.822124][ T9580] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  249.829944][ T9580] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=1842801c, mo2=0002]
[  249.841006][ T9580] EXT4-fs (loop3): couldn't mount RDWR because of unsupported optional features (80)
[  249.850356][ T9580] EXT4-fs (loop3): Skipping orphan cleanup due to unknown ROCOMPAT features
[  249.858931][ T9580] EXT4-fs (loop3): mounted filesystem without journal. Opts: dioread_nolock,noinit_itable,nomblk_io_submit,noblock_validity,data_err=abort,nouser_xattr,jqfmt=vfsv0,barrier=0x000000000000d95b,debug,,errors=continue. Quota mode: none.
[  250.056436][ T9580] EXT4-fs warning (device loop3): dx_probe:892: inode #2: comm syz-executor.3: dx entry: limit 65535 != root limit 120
[  250.068840][ T9580] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended
[  250.082136][ T9582] EXT4-fs warning (device loop3): dx_probe:892: inode #2: comm syz-executor.3: dx entry: limit 65535 != root limit 120
[  250.094502][ T9582] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended
[  250.107875][ T9584] EXT4-fs warning (device loop3): dx_probe:892: inode #2: comm syz-executor.3: dx entry: limit 65535 != root limit 120
[  250.120272][ T9584] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended
[  250.136652][ T9580] EXT4-fs warning (device loop3): dx_probe:892: inode #2: comm syz-executor.3: dx entry: limit 65535 != root limit 120
[  250.149081][ T9580] EXT4-fs warning (device loop3): dx_probe:965: inode #2: comm syz-executor.3: Corrupt directory, running e2fsck is recommended
[  250.162185][ T9580] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 3: comm syz-executor.3: path /root/syzkaller-testdir2711440713/syzkaller.bJLmL5/51/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4294967295, rec_len=17, size=1024 fake=0
[  250.252723][  T313] usb 1-1: 2:1 : unknown format tag 0x0 is detected.  processed as MPEG.
[  250.262048][  T313] usb 1-1: found format II with max.bitrate = 0, frame size=0
[  250.269499][  T313] usb 1-1: 2:1 : invalid UAC_FORMAT_TYPE desc
[  250.316429][  T313] usb 1-1: USB disconnect, device number 22
[  250.447488][ T9602] netlink: 277 bytes leftover after parsing attributes in process `syz-executor.3'.
[  250.485674][   T30] kauditd_printk_skb: 135 callbacks suppressed
[  250.485689][   T30] audit: type=1326 audit(1718987179.739:28717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9606 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea3f2c50a9 code=0x7ffc0000
[  250.516095][   T30] audit: type=1326 audit(1718987179.739:28718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9606 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea3f2c50a9 code=0x7ffc0000
[  250.540474][   T30] audit: type=1326 audit(1718987179.739:28719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9606 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=131 compat=0 ip=0x7fea3f2c50a9 code=0x7ffc0000
[  250.564600][   T30] audit: type=1326 audit(1718987179.739:28720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9606 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea3f2c50a9 code=0x7ffc0000
[  250.588854][   T30] audit: type=1326 audit(1718987179.739:28721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9606 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea3f2c50a9 code=0x7ffc0000
[  250.612926][   T30] audit: type=1326 audit(1718987179.849:28722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9610 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea3f2c50a9 code=0x7ffc0000
[  250.637138][   T30] audit: type=1326 audit(1718987179.849:28723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9610 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea3f2c50a9 code=0x7ffc0000
[  250.661481][   T30] audit: type=1326 audit(1718987179.849:28724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9610 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=141 compat=0 ip=0x7fea3f2c50a9 code=0x7ffc0000
[  250.687199][ T9615] loop0: detected capacity change from 0 to 256
[  250.693435][   T30] audit: type=1326 audit(1718987179.849:28725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9610 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea3f2c50a9 code=0x7ffc0000
[  250.717930][   T30] audit: type=1326 audit(1718987179.849:28726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=9610 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fea3f2c50a9 code=0x7ffc0000
[  250.893705][ T9619] loop4: detected capacity change from 0 to 512
[  251.193051][ T9619] EXT4-fs (loop4): Ignoring removed nomblk_io_submit option
[  251.200266][ T9619] EXT4-fs (loop4): Mount option "nouser_xattr" will be removed by 3.5
[  251.200266][ T9619] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  251.200266][ T9619] 
[  251.218575][ T9619] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  251.251160][  T463] aiptek 2-1:17.0: Aiptek using 400 ms programming speed
[  251.261790][  T463] input: Aiptek as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:17.0/input/input42
[  251.277636][  T463] usb 2-1: USB disconnect, device number 40
[  251.289991][ T9619] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  251.297820][ T9619] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=1842801c, mo2=0002]
[  251.306207][ T9619] EXT4-fs (loop4): couldn't mount RDWR because of unsupported optional features (80)
[  251.315787][ T9619] EXT4-fs (loop4): Skipping orphan cleanup due to unknown ROCOMPAT features
[  251.324294][ T9619] EXT4-fs (loop4): mounted filesystem without journal. Opts: dioread_nolock,noinit_itable,nomblk_io_submit,noblock_validity,data_err=abort,nouser_xattr,jqfmt=vfsv0,barrier=0x000000000000d95b,debug,,errors=continue. Quota mode: none.
[  251.361689][ T9618] EXT4-fs warning (device loop4): dx_probe:892: inode #2: comm syz-executor.4: dx entry: limit 65535 != root limit 120
[  251.374040][ T9618] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended
[  251.387802][ T9618] EXT4-fs warning (device loop4): dx_probe:892: inode #2: comm syz-executor.4: dx entry: limit 65535 != root limit 120
[  251.400531][ T9618] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended
[  251.413995][ T9618] EXT4-fs warning (device loop4): dx_probe:892: inode #2: comm syz-executor.4: dx entry: limit 65535 != root limit 120
[  251.426554][ T9618] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended
[  251.440190][ T9618] EXT4-fs warning (device loop4): dx_probe:892: inode #2: comm syz-executor.4: dx entry: limit 65535 != root limit 120
[  251.452821][ T9618] EXT4-fs warning (device loop4): dx_probe:965: inode #2: comm syz-executor.4: Corrupt directory, running e2fsck is recommended
[  251.465994][ T9618] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 3: comm syz-executor.4: path /root/syzkaller-testdir1391525014/syzkaller.vmuEqu/85/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4294967295, rec_len=17, size=1024 fake=0
[  251.617646][ T9637] tipc: Failed to remove unknown binding: 66,1,1/0:4209364310/4209364312
[  251.629948][ T9637] tipc: Failed to remove unknown binding: 66,1,1/0:4209364310/4209364312
[  251.692710][ T9647] netlink: 277 bytes leftover after parsing attributes in process `syz-executor.4'.
[  251.774955][ T9655] loop3: detected capacity change from 0 to 256
[  252.194697][ T9665] loop1: detected capacity change from 0 to 512
[  252.244584][ T9665] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option
[  252.251985][ T9665] EXT4-fs (loop1): Mount option "nouser_xattr" will be removed by 3.5
[  252.251985][ T9665] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  252.251985][ T9665] 
[  252.270422][ T9665] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  252.329773][ T9665] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  252.337977][ T9665] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=1842801c, mo2=0002]
[  252.348041][ T9665] EXT4-fs (loop1): couldn't mount RDWR because of unsupported optional features (80)
[  252.357692][ T9665] EXT4-fs (loop1): Skipping orphan cleanup due to unknown ROCOMPAT features
[  252.366492][ T9665] EXT4-fs (loop1): mounted filesystem without journal. Opts: dioread_nolock,noinit_itable,nomblk_io_submit,noblock_validity,data_err=abort,nouser_xattr,jqfmt=vfsv0,barrier=0x000000000000d95b,debug,,errors=continue. Quota mode: none.
[  252.421808][ T9665] EXT4-fs warning (device loop1): dx_probe:892: inode #2: comm syz-executor.1: dx entry: limit 65535 != root limit 120
[  252.434185][ T9665] EXT4-fs warning (device loop1): dx_probe:965: inode #2: comm syz-executor.1: Corrupt directory, running e2fsck is recommended
[  252.451383][ T9665] EXT4-fs warning (device loop1): dx_probe:892: inode #2: comm syz-executor.1: dx entry: limit 65535 != root limit 120
[  252.463787][ T9665] EXT4-fs warning (device loop1): dx_probe:965: inode #2: comm syz-executor.1: Corrupt directory, running e2fsck is recommended
[  252.479984][ T9665] EXT4-fs warning (device loop1): dx_probe:892: inode #2: comm syz-executor.1: dx entry: limit 65535 != root limit 120
[  252.492302][ T9665] EXT4-fs warning (device loop1): dx_probe:965: inode #2: comm syz-executor.1: Corrupt directory, running e2fsck is recommended
[  252.509032][ T9665] EXT4-fs warning (device loop1): dx_probe:892: inode #2: comm syz-executor.1: dx entry: limit 65535 != root limit 120
[  252.521369][ T9665] EXT4-fs warning (device loop1): dx_probe:965: inode #2: comm syz-executor.1: Corrupt directory, running e2fsck is recommended
[  252.534666][ T9665] EXT4-fs error (device loop1): ext4_readdir:260: inode #2: block 3: comm syz-executor.1: path /root/syzkaller-testdir177055947/syzkaller.JkBikI/17/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4294967295, rec_len=17, size=1024 fake=0
[  252.729370][ T9668] tipc: Failed to remove unknown binding: 66,1,1/0:3331752275/3331752277
[  252.745635][ T9668] tipc: Failed to remove unknown binding: 66,1,1/0:3331752275/3331752277
[  252.909370][ T9644] loop0: detected capacity change from 0 to 131072
[  252.951686][ T9644] F2FS-fs (loop0): Invalid log sectors per block(3) log sectorsize(12)
[  252.960155][ T9644] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  252.970427][ T9644] F2FS-fs (loop0): Found nat_bits in checkpoint
[  253.009057][ T9644] F2FS-fs (loop0): recover fsync data on readonly fs
[  253.016795][ T9644] F2FS-fs (loop0): Try to recover 1th superblock, ret: -30
[  253.023927][ T9644] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  253.036944][ T9694] loop4: detected capacity change from 0 to 256
[  253.081023][ T9583] usb 4-1: new high-speed USB device number 31 using dummy_hcd
[  253.141962][  T347] device bridge_slave_1 left promiscuous mode
[  253.147924][  T347] bridge0: port 2(bridge_slave_1) entered disabled state
[  253.184963][  T347] device bridge_slave_0 left promiscuous mode
[  253.201332][  T347] bridge0: port 1(bridge_slave_0) entered disabled state
[  253.219623][  T347] device veth1_macvtap left promiscuous mode
[  253.243135][  T347] device veth0_vlan left promiscuous mode
[  253.539476][ T9704] tipc: Failed to remove unknown binding: 66,1,1/0:718916074/718916076
[  253.547837][ T9704] tipc: Failed to remove unknown binding: 66,1,1/0:718916074/718916076
[  253.640370][ T9706] loop2: detected capacity change from 0 to 512
[  253.680563][ T9583] usb 4-1: config 17 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 255, changing to 11
[  253.684614][ T9706] EXT4-fs (loop2): Ignoring removed nomblk_io_submit option
[  253.702922][ T9706] EXT4-fs (loop2): Mount option "nouser_xattr" will be removed by 3.5
[  253.702922][ T9706] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  253.702922][ T9706] 
[  253.721427][ T9706] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  253.747694][ T9583] usb 4-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 59391, setting to 1024
[  253.762173][ T9706] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  253.769962][ T9706] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=1842801c, mo2=0002]
[  253.779986][ T9706] EXT4-fs (loop2): couldn't mount RDWR because of unsupported optional features (80)
[  253.789455][ T9706] EXT4-fs (loop2): Skipping orphan cleanup due to unknown ROCOMPAT features
[  253.797951][ T9706] EXT4-fs (loop2): mounted filesystem without journal. Opts: dioread_nolock,noinit_itable,nomblk_io_submit,noblock_validity,data_err=abort,nouser_xattr,jqfmt=vfsv0,barrier=0x000000000000d95b,debug,,errors=continue. Quota mode: none.
[  253.854786][ T9706] EXT4-fs warning (device loop2): dx_probe:892: inode #2: comm syz-executor.2: dx entry: limit 65535 != root limit 120
[  253.867296][ T9706] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended
[  253.881637][ T9706] EXT4-fs warning (device loop2): dx_probe:892: inode #2: comm syz-executor.2: dx entry: limit 65535 != root limit 120
[  253.893947][ T9706] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended
[  253.908907][ T9706] EXT4-fs warning (device loop2): dx_probe:892: inode #2: comm syz-executor.2: dx entry: limit 65535 != root limit 120
[  253.922241][ T9706] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended
[  253.935867][ T9706] EXT4-fs warning (device loop2): dx_probe:892: inode #2: comm syz-executor.2: dx entry: limit 65535 != root limit 120
[  253.949459][ T9706] EXT4-fs warning (device loop2): dx_probe:965: inode #2: comm syz-executor.2: Corrupt directory, running e2fsck is recommended
[  253.962852][ T9706] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 3: comm syz-executor.2: path /root/syzkaller-testdir462462970/syzkaller.PAiPyq/164/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4294967295, rec_len=17, size=1024 fake=0
[  254.062621][ T9583] usb 4-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  254.071551][ T9583] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  254.101066][ T9678] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  254.171798][ T9722] SELinux:  Context system_u:object_r:systemd_notify_exec_t:s0 is not valid (left unmapped).
[  254.238500][ T9730] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[  254.248139][ T9730] netlink: 31 bytes leftover after parsing attributes in process `syz-executor.0'.
[  254.258880][ T9730] netlink: 'syz-executor.0': attribute type 3 has an invalid length.
[  254.267087][ T9730] netlink: 'syz-executor.0': attribute type 2 has an invalid length.
[  254.275346][ T9730] netlink: 31 bytes leftover after parsing attributes in process `syz-executor.0'.
[  254.355487][ T9738] loop0: detected capacity change from 0 to 256
[  254.768179][ T9749] loop1: detected capacity change from 0 to 1024
[  254.816132][ T9749] EXT4-fs (loop1): Ignoring removed orlov option
[  254.822904][ T9749] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option
[  254.867009][ T9749] EXT4-fs (loop1): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,norecovery,debug_want_extra_isize=0x0000000000000080,orlov,errors=continue,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none.
[  254.895309][ T9749] EXT4-fs error (device loop1): get_max_inline_xattr_value_size:69: inode #12: comm syz-executor.1: corrupt xattr in inline inode
[  254.909015][ T9749] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2213: inode #12: comm syz-executor.1: corrupted in-inode xattr
[  254.927711][ T9352] ==================================================================
[  254.935832][ T9352] BUG: KASAN: use-after-free in ext4_xattr_delete_inode+0xcd0/0xce0
[  254.943832][ T9352] Read of size 4 at addr ffff8881381d0000 by task syz-executor.1/9352
[  254.951868][ T9352] 
[  254.954036][ T9352] CPU: 0 PID: 9352 Comm: syz-executor.1 Tainted: G        W         5.15.149-syzkaller-00165-g85445b5a2107 #0
[  254.965593][ T9352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  254.975563][ T9352] Call Trace:
[  254.978695][ T9352]  <TASK>
[  254.981463][ T9352]  dump_stack_lvl+0x151/0x1b7
[  254.985979][ T9352]  ? io_uring_drop_tctx_refs+0x190/0x190
[  254.991445][ T9352]  ? panic+0x751/0x751
[  254.995351][ T9352]  print_address_description+0x87/0x3b0
[  255.000740][ T9352]  kasan_report+0x179/0x1c0
[  255.005097][ T9352]  ? ext4_xattr_delete_inode+0xcd0/0xce0
[  255.010638][ T9352]  ? ext4_xattr_delete_inode+0xcd0/0xce0
[  255.016185][ T9352]  __asan_report_load4_noabort+0x14/0x20
[  255.021655][ T9352]  ext4_xattr_delete_inode+0xcd0/0xce0
[  255.027158][ T9352]  ? sb_end_intwrite+0x120/0x120
[  255.031920][ T9352]  ? ext4_expand_extra_isize_ea+0x1bb0/0x1bb0
[  255.037819][ T9352]  ? ext4_journal_check_start+0x16c/0x230
[  255.043373][ T9352]  ? __kasan_check_read+0x11/0x20
[  255.048240][ T9352]  ? ext4_inode_is_fast_symlink+0x295/0x3d0
[  255.053965][ T9352]  ? ext4_evict_inode+0xb8d/0x14e0
[  255.058914][ T9352]  ext4_evict_inode+0xea1/0x14e0
[  255.063812][ T9352]  ? _raw_spin_unlock+0x4d/0x70
[  255.068604][ T9352]  ? ext4_inode_is_fast_symlink+0x3d0/0x3d0
[  255.074315][ T9352]  ? _raw_spin_unlock+0x4d/0x70
[  255.078997][ T9352]  ? inode_io_list_del+0x18b/0x1a0
[  255.083944][ T9352]  ? ext4_inode_is_fast_symlink+0x3d0/0x3d0
[  255.089689][ T9352]  evict+0x2a3/0x630
[  255.093684][ T9352]  iput+0x63b/0x7e0
[  255.097658][ T9352]  vfs_rmdir+0x359/0x470
[  255.101827][ T9352]  do_rmdir+0x3ab/0x630
[  255.105839][ T9352]  ? d_delete_notify+0x160/0x160
[  255.110596][ T9352]  __x64_sys_unlinkat+0xdf/0xf0
[  255.115409][ T9352]  do_syscall_64+0x3d/0xb0
[  255.119651][ T9352]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  255.125345][ T9352] RIP: 0033:0x7fab7b535887
[  255.129916][ T9352] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 07 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  255.149988][ T9352] RSP: 002b:00007fffd754aef8 EFLAGS: 00000207 ORIG_RAX: 0000000000000107
[  255.158329][ T9352] RAX: ffffffffffffffda RBX: 0000000000000065 RCX: 00007fab7b535887
[  255.166322][ T9352] RDX: 0000000000000200 RSI: 00007fffd754c0a0 RDI: 00000000ffffff9c
[  255.174143][ T9352] RBP: 00007fab7b5926c6 R08: 0000000000000000 R09: 0000000000000000
[  255.181943][ T9352] R10: 0000000000000100 R11: 0000000000000207 R12: 00007fffd754c0a0
[  255.189753][ T9352] R13: 00007fab7b5926c6 R14: 000000000003e2f2 R15: 0000000000000007
[  255.197663][ T9352]  </TASK>
[  255.200537][ T9352] 
[  255.202692][ T9352] The buggy address belongs to the page:
[  255.208176][ T9352] page:ffffea0004e07400 refcount:0 mapcount:0 mapping:0000000000000000 index:0x1 pfn:0x1381d0
[  255.218229][ T9352] flags: 0x4000000000000000(zone=1)
[  255.223356][ T9352] raw: 4000000000000000 ffffea0004de2c08 ffffea0004e07748 0000000000000000
[  255.231775][ T9352] raw: 0000000000000001 0000000000000000 00000000ffffffff 0000000000000000
[  255.240275][ T9352] page dumped because: kasan: bad access detected
[  255.246532][ T9352] page_owner tracks the page as freed
[  255.251733][ T9352] page last allocated via order 0, migratetype Movable, gfp_mask 0x100cca(GFP_HIGHUSER_MOVABLE), pid 9644, ts 251943567616, free_ts 253138672772
[  255.266323][ T9352]  post_alloc_hook+0x1a3/0x1b0
[  255.270913][ T9352]  prep_new_page+0x1b/0x110
[  255.275262][ T9352]  get_page_from_freelist+0x3550/0x35d0
[  255.280633][ T9352]  __alloc_pages+0x27e/0x8f0
[  255.285070][ T9352]  shmem_alloc_and_acct_page+0x4bd/0xa80
[  255.290530][ T9352]  shmem_getpage_gfp+0x1388/0x23c0
[  255.295474][ T9352]  shmem_write_begin+0xca/0x1b0
[  255.300161][ T9352]  generic_perform_write+0x2bc/0x5a0
[  255.305292][ T9352]  __generic_file_write_iter+0x25b/0x4b0
[  255.311024][ T9352]  generic_file_write_iter+0xaf/0x1c0
[  255.316313][ T9352]  vfs_write+0xd5d/0x1110
[  255.320481][ T9352]  ksys_write+0x199/0x2c0
[  255.324649][ T9352]  __x64_sys_write+0x7b/0x90
[  255.329072][ T9352]  do_syscall_64+0x3d/0xb0
[  255.333328][ T9352]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[  255.339054][ T9352] page last free stack trace:
[  255.343568][ T9352]  free_unref_page_prepare+0x7c8/0x7d0
[  255.349035][ T9352]  free_unref_page_list+0x14b/0xa60
[  255.354070][ T9352]  release_pages+0x1310/0x1370
[  255.358756][ T9352]  __pagevec_release+0x84/0x100
[  255.363444][ T9352]  shmem_undo_range+0x604/0x1560
[  255.368389][ T9352]  shmem_evict_inode+0x215/0x9d0
[  255.373162][ T9352]  evict+0x2a3/0x630
[  255.376992][ T9352]  iput+0x63b/0x7e0
[  255.380636][ T9352]  dentry_unlink_inode+0x34f/0x440
[  255.385695][ T9352]  __dentry_kill+0x447/0x660
[  255.390117][ T9352]  dentry_kill+0xc0/0x2a0
[  255.394538][ T9352]  dput+0x45/0x80
[  255.398003][ T9352]  __fput+0x662/0x910
[  255.401822][ T9352]  ____fput+0x15/0x20
[  255.405641][ T9352]  task_work_run+0x129/0x190
[  255.410069][ T9352]  exit_to_user_mode_loop+0xc4/0xe0
[  255.415107][ T9352] 
[  255.417274][ T9352] Memory state around the buggy address:
[  255.422754][ T9352]  ffff8881381cff00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  255.430840][ T9352]  ffff8881381cff80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  255.438799][ T9352] >ffff8881381d0000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  255.446695][ T9352]                    ^
[  255.450610][ T9352]  ffff8881381d0080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  255.458507][ T9352]  ffff8881381d0100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
2024/06/21 16:26:24 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF
[  255.466400][ T9352] ==================================================================
[  255.474296][ T9352] Disabling lock debugging due to kernel taint