last executing test programs:

2m55.519549554s ago: executing program 32 (id=231):
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f0000000c00), 0x1, 0xb77, &(0x7f0000000c40)="$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")
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0xfe, 0x7, 0x7ffc0001}]})
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x0, 0x0)
quotactl_fd$Q_GETINFO(r0, 0xffffffff80000500, 0x0, &(0x7f0000000280))

2m42.209159741s ago: executing program 33 (id=728):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="180200000000000400000000000000008500000030000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002a0000009500"], &(0x7f0000000080)='GPL\x00'}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0xe160, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
close(0xffffffffffffffff)

1m57.978936301s ago: executing program 34 (id=1969):
openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
r0 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000006a80), 0x101101, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='./cgroup.net/cgroup.procs\x00', &(0x7f0000000140), 0x21c804, &(0x7f0000000180)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}})

1m54.78648957s ago: executing program 35 (id=2069):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000140), 0xfc, 0x560, &(0x7f00000008c0)="$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")
r0 = open(&(0x7f0000000100)='./bus\x00', 0x400141042, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x580000a, 0x13, r0, 0x0)
pwritev2(r0, &(0x7f0000000000)=[{&(0x7f00000000c0)='\"', 0x1}, {&(0x7f0000001580)="bd", 0x1}], 0x2, 0x1002020, 0x1020884, 0x12)

1m48.146629787s ago: executing program 36 (id=2205):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x1, 0x4, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f00000000c0)=r2, 0x4)
sendmsg$inet(r1, &(0x7f0000000580)={0x0, 0x0, 0x0}, 0x0)

1m43.433795529s ago: executing program 37 (id=2365):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f00000000c0)=0x10)
fallocate(r0, 0x10, 0x6, 0x10001)

1m42.43090929s ago: executing program 38 (id=2391):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r1}, 0x10)
clock_gettime(0x0, &(0x7f0000000200))

1m21.110645826s ago: executing program 39 (id=2622):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000006000000050000000010"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf3308f7b986", 0x0, 0x3800, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1m6.462670971s ago: executing program 40 (id=3042):
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x1)
r0 = inotify_init1(0x0)
inotify_add_watch(r0, &(0x7f0000000040)='./file0\x00', 0x6)
fchownat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0)

40.77761031s ago: executing program 9 (id=4175):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000010140), 0x48c02, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000010440)={'rose0\x00', 0x112})
setreuid(0x0, 0xee01)
ioctl$TUNGETDEVNETNS(r0, 0x54e3, 0x0)

40.712202055s ago: executing program 9 (id=4178):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0xcb23c9c9931e99e9, 0x0, 0x0, {{@in=@multicast1, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x20, 0x0, 0x0, 0xee01}, {}, {}, 0x400000}}, 0xb8}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0xcb23c9c9931e99e9, 0x0, 0x0, {{@in=@multicast1, @in6=@private1, 0x0, 0xfffc, 0x0, 0x0, 0x2, 0x0, 0x10, 0x0, 0x0, 0xee01}, {0x5}, {}, 0x0, 0x6e6bb0}}, 0xb8}}, 0x0)

40.690544587s ago: executing program 9 (id=4180):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000440)={{0xfffe, 0x5, 0x2}, 'syz0\x00', 0x35})
ioctl$UI_DEV_CREATE(r0, 0x5501)
read(r0, 0x0, 0x0)

40.633431581s ago: executing program 9 (id=4184):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000080000085000000d0000000a50000009700000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r1 = dup2(r0, r0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x10)
setitimer(0x1, 0x0, 0x0)

40.585600845s ago: executing program 9 (id=4185):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001c2df6f270000000fad413ec50000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r1}, 0x10)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000a00)=ANY=[@ANYBLOB="1c00000026000106"], 0x1c}], 0x1}, 0x0)

40.585208315s ago: executing program 9 (id=4186):
ptrace(0x10, 0x1)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x6, 0x0, 0x0, 0x0, 0x8000000009917, 0x400000000000fffd}, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x0, 0x0, 0xffffffffffffffff}, 0x0)
sched_setattr(0x0, &(0x7f00000000c0)={0x38, 0x0, 0x0, 0x1}, 0x0)

39.344119946s ago: executing program 0 (id=4195):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@newlink={0x28, 0x10, 0x1, 0x70bd25, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x40938, 0x3}, [@IFLA_GROUP={0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x68010}, 0x10)
ioctl$SIOCSIFHWADDR(r0, 0x8923, &(0x7f0000000040)={'lo\x00', @broadcast})

39.116356844s ago: executing program 0 (id=4206):
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="1e0000000000000004", @ANYRESDEC, @ANYRES32=0x0, @ANYRES32, @ANYRESDEC], 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000001c0)='qgroup_update_reserve\x00', 0xffffffffffffffff, 0x0, 0xffffffffffffffff}, 0x18)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000026c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000780)={r0, 0x18000000000002a0, 0x204, 0x0, &(0x7f0000000040)="5aee41dea43e63a3f7fb7f110800", 0x0, 0xf000, 0x4000000, 0x0, 0x0, 0x0, 0x0}, 0x48)

39.087762166s ago: executing program 0 (id=4207):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x8)
r1 = socket$packet(0x11, 0x3, 0x300)
bind$packet(r1, &(0x7f0000000140)={0x11, 0x1b, 0x0, 0x1, 0xf9, 0x6, @remote}, 0x14)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000), 0x8)

39.087238427s ago: executing program 0 (id=4208):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000180)='./file0\x00', 0x20044e, &(0x7f00000001c0)={[{@minixdf}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1ff}}, {@stripe}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x40}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x6}}]}, 0x4, 0x460, &(0x7f00000004c0)="$eJzs3M1vFOUfAPDvTF+gP+DXivjCi1pFY+NLSwGVgwc1mnjAxEQPemzaQpBCDa2JEKLFGDwZY+LdePRf8KQXYzyZeNW7ISGGC6CXMbM7Q3eX3YUuu6x2P59k4HlmnunzfPvM031mnt0NYGBN5v8kEdsj4reIGK9m6wtMVv+7duX8/PUr5+eTyLK3/kwq5a5eOT9fFi3P21ZkptKI9NMk9japd+XsuZNzS0uLZ4r8zOqp92dWzp579sSpueOLxxdPHzxy5PCh2ReeP/hcV+LM23R1z0fL+3a//u6Xbxz9vC7+hji6ZLLdwSeyrMvV9deOmnQy3MeGsCFDEZF310hl/I/HUKx33ni89klfGwf0VJZl2bb6XWM16bUsy7ZmwCaVRH1+rV8NAe6y8oU+v/8tt8Y5wku9nYL01eWXqzdAedzXiq16ZDjSosxIw/1tN01GxDtrf32db9Gb5xAAAHW+z+c/zzSb/6Vxf025/xdrQxMRcU9E7IyIeyNiV0TcF1Ep+0BEPLjB+hsXSW6e/6SXOgrsNuXzvxeLta36+V85+4uJoSK3oxL/SHLsxNLigeJ3MhUjW/L8bJs6fnj11y9aHaud/+VbXn85FyzacWl4S/05C3Orc3cSc63LFyL2DDeLP7mxEpBExO6I2NNhHSee+nZfq2O3jr+NLqwzZd9EPFnt/7VoiL+UtF+fnNkaS4sHZsqr4mY//3LxzVb131H8XZD3//+aXv834p9IatdrVzZex8XfP2t5T9Pp9T+avF1Jjxb7PpxbXT0zGzGaHK02unb/wfVzy3xZPo9/an/z8b8z1n8TeyMiv4gfioiHI+KRou2PRsRjEbG/Tfw/vfL4e53H31t5/Asb6v/1xGg07mmeGDr543d1lU7cFP/19v1/uJKaKvbczt+/22lXZ1czAAAA/PekEbE9knT6RjpNp6er75ffFZEuLa+sPn1s+YPTC9XPCEzESFo+6RqveR46W9zWV/MXIqL61oLy+KHiufFXQ2OV/PT88tJCv4OHAbetxfjP/THU79YBPefzWjC4jH8YXMY/DC7jHwZXk/E/1o92AHdfs9f/j/vQDuDuaxj/lv1ggLj/h8HVcvy3/eafvzfXN9jCgPL6DwNpZSxu/SH5tonyJ3V4+qZNxMi/ohl3nsiSpp0bab8bJtHLRH//LgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHTLPwEAAP//NrfhWg==")
mount$incfs(&(0x7f0000000300)='./file0\x00', &(0x7f0000000400)='./file0\x00', &(0x7f0000000280), 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0)
r1 = openat$incfs(r0, &(0x7f0000000040)='.pending_reads\x00', 0x10b441, 0x0)
ioctl$INCFS_IOC_CREATE_FILE(r1, 0xc058671e, &(0x7f0000000440)={{'\x00', 0x3}, {0x100000001}, 0x82, 0x0, 0x0, 0x0, &(0x7f0000000140)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x0, 0x0, 0x0, 0x0, 0x19})

38.979342315s ago: executing program 0 (id=4209):
syz_mount_image$fuse(0x0, 0x0, 0x3000009, 0x0, 0x1, 0x0, 0x0)
r0 = socket$inet(0x2, 0x3, 0x6)
ioctl$sock_inet_SIOCSARP(r0, 0x8955, &(0x7f0000000000)={{0x2, 0x0, @dev}, {0x1, @local}, 0x4a, {0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x3e}}})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
ioctl$sock_inet_SIOCSARP(r0, 0x8953, &(0x7f0000000000)={{0x2, 0x4e22, @dev}, {0x0, @local}, 0x4a, {0x2, 0x0, @broadcast}, 'syz_tun\x00'})

38.968848586s ago: executing program 0 (id=4210):
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
mount$fuseblk(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x2010002, &(0x7f0000000300)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x8000}})

38.940117338s ago: executing program 41 (id=4210):
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
mount$fuseblk(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', &(0x7f0000000080), 0x2010002, &(0x7f0000000300)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x8000}})

33.48360139s ago: executing program 8 (id=4378):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000b80)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000600)='kfree\x00', r1}, 0x18)
r2 = dup(r0)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x4000000000000, 0x4, 0x0, 0x0)

33.48311005s ago: executing program 8 (id=4379):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000000000000000000000080000085000000d0000000a50000009700000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r1 = dup2(r0, r0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x10)
arch_prctl$ARCH_GET_XCOMP_PERM(0x1022, &(0x7f0000000200))

33.464107111s ago: executing program 8 (id=4380):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec8500000075000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'wg1\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000004c00)=@newtfilter={0x24, 0x11, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x74, r2, {0x0, 0x9}, {0xfff3}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x88d0}, 0x0)

32.904809787s ago: executing program 8 (id=4391):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./bus\x00', 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x4008, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
mount(0x0, &(0x7f0000000240)='./file0\x00', 0x0, 0x44000, 0x0)

32.884279139s ago: executing program 8 (id=4383):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000001000000080000000c"], 0x50)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000d40)=ANY=[@ANYBLOB="180000000000e3ff000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000e00000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r1}, 0x10)
getpgrp(0x0)

32.822555514s ago: executing program 8 (id=4389):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
syncfs(0xffffffffffffffff)

32.778901927s ago: executing program 42 (id=4389):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
syncfs(0xffffffffffffffff)

25.595571379s ago: executing program 43 (id=4186):
ptrace(0x10, 0x1)
sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x6, 0x0, 0x0, 0x0, 0x8000000009917, 0x400000000000fffd}, 0x0)
sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x0, 0x0, 0xffffffffffffffff}, 0x0)
sched_setattr(0x0, &(0x7f00000000c0)={0x38, 0x0, 0x0, 0x1}, 0x0)

24.125001428s ago: executing program 5 (id=4699):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='sys_enter\x00', r1}, 0x10)
get_robust_list(0x0, &(0x7f00000002c0)=0x0, &(0x7f0000000300))

24.104165119s ago: executing program 5 (id=4700):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
recvfrom(r1, 0x0, 0x0, 0x40010000, 0x0, 0x0)

23.257292758s ago: executing program 5 (id=4718):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x6, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18020000f9ffff030000000000000000850000002c00000095"], &(0x7f0000000040)='GPL\x00', 0x5, 0xbf, &(0x7f00000020c0)=""/191}, 0x80)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r2=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000000)={r1, r2}, 0x10)
syz_emit_ethernet(0x36, &(0x7f0000000580)=ANY=[], 0x0)

23.205712512s ago: executing program 5 (id=4720):
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='.\x00', 0x0, 0x83)
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000001c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB=' '], 0x40}}], 0x1, 0x40000)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40086602, &(0x7f0000000000))
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
renameat2(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)

23.149155797s ago: executing program 5 (id=4723):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_ERR_FILTER(r0, 0x65, 0x2, &(0x7f0000000040)=0x7, 0x4)
bind$can_raw(r0, &(0x7f00000000c0), 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
setsockopt$CAN_RAW_ERR_FILTER(r0, 0x65, 0x2, &(0x7f0000000100)=0x9, 0x4)

22.951444493s ago: executing program 5 (id=4732):
prlimit64(0x0, 0xe, 0x0, 0x0)
clock_getres(0x7ffffffff000, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x800700, &(0x7f0000000580)={[{@grpjquota}, {@stripe={'stripe', 0x3d, 0x3}}, {@norecovery}, {@noinit_itable}, {@init_itable_val={'init_itable', 0x3d, 0x1}}, {@minixdf}, {@usrjquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@errors_continue}, {@dioread_lock}, {@noblock_validity}, {@noquota}]}, 0x3, 0x465, &(0x7f0000000f00)="$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")
r0 = syz_open_procfs(0x0, &(0x7f0000000700)='mounts\x00')
read$FUSE(r0, &(0x7f0000000980)={0x2020}, 0x2020)

22.928559095s ago: executing program 44 (id=4732):
prlimit64(0x0, 0xe, 0x0, 0x0)
clock_getres(0x7ffffffff000, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x800700, &(0x7f0000000580)={[{@grpjquota}, {@stripe={'stripe', 0x3d, 0x3}}, {@norecovery}, {@noinit_itable}, {@init_itable_val={'init_itable', 0x3d, 0x1}}, {@minixdf}, {@usrjquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@errors_continue}, {@dioread_lock}, {@noblock_validity}, {@noquota}]}, 0x3, 0x465, &(0x7f0000000f00)="$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")
r0 = syz_open_procfs(0x0, &(0x7f0000000700)='mounts\x00')
read$FUSE(r0, &(0x7f0000000980)={0x2020}, 0x2020)

12.630855868s ago: executing program 4 (id=5097):
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
open(&(0x7f0000000040)='./file1\x00', 0x80, 0x24)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)

11.761560378s ago: executing program 4 (id=5101):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = openat$selinux_relabel(0xffffffffffffff9c, &(0x7f00000003c0), 0x2, 0x0)
write$selinux_access(r2, &(0x7f00000004c0)=ANY=[@ANYBLOB="73797374656d5f683a6f626a6563745f723a7570647077645f657865635f742073797374656d5f753a73797374656d5f723afaffffffffffffff3a73302030"], 0x56)

11.74127556s ago: executing program 4 (id=5103):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r0}, 0x18)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000300)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000000000000000008000000180001801400020073797a5f74756e000000000000000000180002801400038010"], 0x44}}, 0x0)

11.729606681s ago: executing program 4 (id=5106):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./file0\x00', 0x0, &(0x7f0000000500)={[{@noauto_da_alloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}, {@noauto_da_alloc}, {@norecovery}, {@discard}, {@lazytime}, {@journal_dev={'journal_dev', 0x3d, 0x1}}, {@usrquota}, {@noauto_da_alloc}, {@init_itable}, {@min_batch_time={'min_batch_time', 0x3d, 0x3}}, {@usrjquota}]}, 0xfe, 0x553, &(0x7f0000000980)="$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")
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000a00)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000001c0)='./bus\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0)

11.632687829s ago: executing program 4 (id=5107):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x208, 0xd9}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='kfree\x00', r1}, 0x18)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f0000000000)=@newtaction={0xa0, 0x30, 0x9, 0x0, 0x0, {}, [{0x8c, 0x1, [@m_bpf={0x88, 0x1, 0x0, 0x0, {{0x8}, {0x60, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x7}, @TCA_ACT_BPF_OPS={0x3c, 0x4, [{}, {}, {0x6}, {}, {0x0, 0x0, 0xfe}, {0xf792}, {0x3}]}, @TCA_ACT_BPF_PARMS={0x18}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa0}}, 0x0)

11.451398214s ago: executing program 4 (id=5112):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @empty}, 0xd}, 0x1c)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000100)=ANY=[@ANYBLOB="08000000000000005002"])

11.429282485s ago: executing program 45 (id=5112):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @empty}, 0xd}, 0x1c)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000100)=ANY=[@ANYBLOB="08000000000000005002"])

2.10690817s ago: executing program 2 (id=5441):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="0600000004000000fd0f000002"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f9ffffffb703000000080000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000cc0)='mmap_lock_acquire_returned\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x3, &(0x7f0000000880)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x487, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x48)

2.064537413s ago: executing program 2 (id=5443):
epoll_create(0x800)
socket(0x1, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000180)='fdinfo/4\x00')
read$FUSE(r0, &(0x7f0000000480)={0x2020}, 0x2020)

2.038811475s ago: executing program 2 (id=5444):
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000080)='signal_generate\x00', r0}, 0x10)
r1 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
ftruncate(r1, 0x8012007ffb)

2.003608228s ago: executing program 2 (id=5446):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$UI_DEV_SETUP(r0, 0x405c5503, &(0x7f0000000080)={{0x0, 0x4}, 'syz1\x00', 0x4b})
ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000100)={0x35, {0x9, 0x0, 0x2000000, 0x3, 0xfffffffd, 0xfffffffe}})
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3)
ioctl$UI_DEV_CREATE(r0, 0x5501)

2.003137718s ago: executing program 3 (id=5447):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001a80)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f00000002c0)='mm_page_alloc\x00', r1}, 0x10)
syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)

1.97732491s ago: executing program 2 (id=5449):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
syz_clone3(&(0x7f0000001880)={0x100200200, 0x0, 0x0, 0x0, {0x3c}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0xb}]})
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

1.903701006s ago: executing program 3 (id=5450):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000400)=ANY=[], 0x8)
connect$inet6(r0, &(0x7f00000003c0)={0xa, 0x4e24, 0x3000001, @mcast2, 0x9}, 0x1c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000240)='bridge0\x00', 0x10)
write(r0, &(0x7f00000000c0)="8f2a0a65bd8c002b0304000e0580a7b6070d63e286a5cefe", 0x5ac)

1.892914707s ago: executing program 3 (id=5451):
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
mount$incfs(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00', &(0x7f0000000040), 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x40900, 0x0)
r1 = openat$incfs(r0, &(0x7f0000000080)='.log\x00', 0x0, 0x40)
preadv(r1, &(0x7f0000001840)=[{0x0}, {&(0x7f0000000700)=""/4096, 0x1000}], 0x2, 0x1, 0x801)

1.875408618s ago: executing program 3 (id=5452):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000005000000020000000010"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000010007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x10)
r2 = getpgrp(0xffffffffffffffff)
kcmp(r2, r2, 0x3, 0xffffffffffffffff, 0xffffffffffffffff)

1.868762569s ago: executing program 3 (id=5454):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0b00000005000000010001000900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000340)={r0, &(0x7f0000000080), &(0x7f0000001540)=""/155}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x10)
ustat(0x9, &(0x7f0000000000))

1.800163085s ago: executing program 3 (id=5455):
r0 = syz_usb_connect$cdc_ncm(0x2, 0x6e, &(0x7f0000000240)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5, 0x24, 0x0, 0x8000}, {0xd, 0x24, 0xf, 0x1, 0x1}, {0x6, 0x24, 0x1a, 0xff, 0x10}}, {{0x9, 0x5, 0x81, 0x3, 0x200}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x400, 0x0, 0x1, 0x1}}, {{0x9, 0x5, 0x3, 0x2, 0x200, 0x0, 0x21, 0xff}}}}}}}]}}, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f00000006c0)={0x44, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x20, 0x80, 0x1c, {0x10, 0x209, 0x4, 0x1000, 0x1, 0x10, 0x10, 0x10, 0x14, 0x2, 0x10, 0x10}}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)

1.127715909s ago: executing program 2 (id=5470):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581d7"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000080)={0x0, 0x22, 0xf, {[@global=@item_4={0x3, 0x1, 0x5, "d99970f9"}, @main=@item_4={0x3, 0x0, 0x8, "20ef512f"}, @local=@item_4={0x3, 0x2, 0x3, "2d8c6e9f"}]}}, 0x0}, 0x0)
r1 = syz_open_dev$hiddev(&(0x7f0000000540), 0x0, 0x0)
ioctl$HIDIOCGREPORT(r1, 0x400c4807, &(0x7f0000000040)={0x3, 0x100, 0x7})

916.508816ms ago: executing program 7 (id=5480):
r0 = open(&(0x7f00000001c0)='./file0\x00', 0x88ff, 0x88)
fcntl$setlease(r0, 0x400, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x8060, 0x1a0)
fcntl$setlease(r1, 0x400, 0x0)
fcntl$getflags(r1, 0x401)

904.363377ms ago: executing program 7 (id=5481):
sched_setscheduler(0x0, 0x2, 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x2, 0x0)
sendmmsg$inet6(r0, &(0x7f0000000c40)=[{{&(0x7f0000000040)={0xa, 0x4e20, 0xa, @mcast2, 0x4}, 0x1c, &(0x7f0000000080)=[{0x0}, {&(0x7f0000000180)='!', 0x1}], 0x2, &(0x7f00000012c0)=[@hopopts={{0x18, 0x29, 0x36, {0x3a}}}], 0x18}}], 0x1, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)

851.454181ms ago: executing program 7 (id=5482):
syz_clone(0x4400, &(0x7f0000000040)="0d69e93eb8154f6db7ea5adbbfba085abe0c11f736521f5b84afd3c1b60aba23412def2a785723d06ae51aee92403554d67d8e2dfff6033a34e1a5470812e56154fe49eb21", 0x45, 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="0b00000007000000010001004900000001"], 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f00000006c0))
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000180)={r0, &(0x7f00000006c0), &(0x7f00000003c0)=""/14, 0x2}, 0x20)

403.801848ms ago: executing program 1 (id=5490):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000004c0)={{{@in=@broadcast, @in=@remote, 0x0, 0x0, 0x4e20, 0x0, 0xa}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, {0xa}, 0x0, 0x0, 0x1}, {{@in6=@ipv4={'\x00', '\xff\xff', @broadcast}, 0x0, 0x32}, 0xa, @in=@rand_addr=0x400, 0x3506, 0x4}}, 0xe8)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0)
sendmmsg$inet6(r0, &(0x7f0000000a80)=[{{&(0x7f0000000000)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @empty}}, 0x1c, 0x0}}, {{&(0x7f0000000040)={0xa, 0x4e21, 0x0, @dev}, 0x1c, 0x0, 0x0, 0x0, 0x0, 0xe00}}], 0x2, 0x0)

403.134538ms ago: executing program 1 (id=5492):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
io_setup(0x1, &(0x7f0000000b80)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000001d00)=[&(0x7f0000000240)={0x0, 0x0, 0x0, 0x5, 0xfffc, r0, 0x0, 0x0, 0x0, 0x0, 0x4}])
recvmmsg(r0, &(0x7f0000000400)=[{{0x0, 0xf5ffffff, 0x0, 0x0, 0x0, 0x4000000}}], 0xf00, 0x4c42bb4f92, 0x0)
shutdown(r0, 0x0)

351.168482ms ago: executing program 6 (id=5494):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x4000, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], 0x6, 0x2ab, &(0x7f0000000a80)="$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")
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r0, 0x0, 0xf, &(0x7f0000000240)=0x2, 0x4)
bind$inet(r0, &(0x7f0000000440)={0x2, 0x0, @multicast2}, 0x10)

334.736603ms ago: executing program 6 (id=5495):
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000000000)=0x800, 0x4)
mmap(&(0x7f0000002000/0x4000)=nil, 0x4000, 0x6, 0x8012, r0, 0x0)
pipe2$9p(&(0x7f0000002480), 0x80000)
syz_clone3(&(0x7f0000000340)={0x42107480, &(0x7f00000000c0), 0x0, 0x0, {0x1c}, 0x0, 0x0, 0x0, 0x0}, 0x58)

314.389115ms ago: executing program 6 (id=5496):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x5, 0x3, 0x0, 0x1000, &(0x7f0000ffe000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x4)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f0000000200)=ANY=[@ANYBLOB="0100000000000000044d564b000000e601"])

300.733676ms ago: executing program 7 (id=5497):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x5e, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000580)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x36, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
clock_gettime(0x0, 0x0)

285.330007ms ago: executing program 7 (id=5498):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000100)={[{@grpid}, {@grpquota}]}, 0x4, 0x4eb, &(0x7f0000000540)="$eJzs3c9vVFsdAPDvnXZoKQMFZaFGBRFFQ5j+ABqCC2GjMYTESFy5gNoOTdMZpum0SCuLsnRvIokr/RPcuTBh5cKdO925wYUJKnkv9CVvMS/3zqUd2g7te7Qd6Hw+ye2955xhvufMcM6Ze2B6AuhZZyNiNSKORMS9iBjO85P8iButI33cq5ePp9ZePp5Kotm8878kK0/zou3PpI7lzzkYET/7ccQvk61xG8src5PVamUhT48s1uZHGssrl2YLec74xNjE6LXLV8f3rK1nan968aPZWz//y5+/8fzvq9//dVqt0m+OZ2Xt7dhLraYXo9SW1x8Rt/YjWJf0539/+PCkve1LEXEu6//D0Ze9mwDAYdZsDkdzuD0NABx26f1/KZJCOV8LKEWhUC631vBOx1ChWm8sXhyuLz2YjmwN62QUC/dnq5XRfK3wZBSTND2WXW+kxzelL0fEqYj47cDRLF2eqlenu/nBBwB62LFN8//HA635HwA45Aa7XQEA4MCZ/wGg95j/AaD3fI7537cDAeCQcP8PAL3H/A8AvWfH+f/JwdQDADgQP719Oz2aa/nvv55+uLz0g9LDS9OVxly5tjRVnqovzJdn6vWZaqU81Wzu9HzVen1+7Mp6srG8crdWX3qweHe2NjlTuVsp7nN7AICdnTrz7J9JRKxeP5od0baXg7kaDrdCtysAdE1ftysAdI3v80Dv2sU9vmUAOOS22aL3DR3/i9BTm7/Ch+rCV63/Q6+y/g+964ut//9wz+sBHDzr/9C7ms3Env8A0GOs8QPv9O//AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA0KNK2ZEUytle4Kvpz0K5HHE8Ik5GMbk/W62MRsSJiPjHQHEgTY91u9IAwDsq/CfJ9/+6MHy+tLn0SPLJQHaOiF/9/s7vHk0uLi6Mpfn/X89ffJrnjx/pRgMAgHY3tma15un83HYj/+rl46nXx0FW8cXN1uaiady1/GiV9Ed/dh6MYkQMfZTk6Zb080rfHsRffRIRX9lo/6O2CKVsDaS18+nm+Gns4/sQf+P13xy/8Eb8QlaWnovZa/HlPagL9JpnN1vjZN730i6W979CnM3O2/f/wWyEenevx7+1LeNfYX3869sSP8n6/Nn19Ntr8uLKX3+yJbM53Cp7EvG1/u3iJ+vxkw7j7/ldtvFfX//muU5lzT9EXIjt47fUsmF2ZLE2P9JYXrk0W5ucqcxUHoyPT4xNjF67fHV8JFujbv3823Yx/nv94olO8dP2D3WIP7hD+7+zy/b/8dN7v/jWW+J/79vbv/+n3xI/nRO/u8v4k0M3Om7fncaf7tD+nd7/i7uM//zfK9O7fCgAcAAayytzk9VqZWGHi/Sz5k6PcfFhXsRqxHtQDRfv1UW3RyZgv210+m7XBAAAAAAAAAAAAAAA6KSxvDI3EPv7daJutxEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDD67MAAAD//w/PzvM=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
fallocate(r0, 0x10, 0x6, 0x10001)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0xa718a3b3f1a8c6ec)
fallocate(r1, 0x20, 0x4000, 0x8000)

207.382784ms ago: executing program 1 (id=5499):
creat(&(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f00000002c0)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15)
write$P9_RLERRORu(r1, &(0x7f00000023c0)=ANY=[@ANYBLOB="5300000007000046009d40ed"], 0x53)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x2004000, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[], [], 0x6b}})

199.293014ms ago: executing program 6 (id=5500):
syz_read_part_table(0x60d, &(0x7f0000002200)="$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")
creat(&(0x7f0000000200)='./bus\x00', 0x10)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f00000004c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x0, 0x3)

189.577815ms ago: executing program 7 (id=5501):
sendmsg$key(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00008feff0)={0x0}}, 0x0)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000100)={0x4, 0x0, &(0x7f00008feff0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="020d0000100000002f3144e8edffffff03000600ff18000002004909000100000000000000001e0e080012000200010000d200000000000030006c540203009f7eae02000000adb20200000000f52c000000cdff00000001020014bb000001000000002300001300030005000020000002"], 0x80}}, 0x0)
r0 = socket$key(0xf, 0x3, 0x2)
syz_usb_control_io(0xffffffffffffffff, &(0x7f00000004c0)={0x2c, 0x0, &(0x7f0000000300)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0xf8f9}}, 0x0, 0x0, 0x0}, 0x0)
sendmmsg(r0, &(0x7f00000000c0), 0x2c8, 0x0)

115.367501ms ago: executing program 1 (id=5502):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x2, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='module_request\x00', r1}, 0x10)
socketpair(0x3, 0xa, 0x0, &(0x7f0000000040))

78.935894ms ago: executing program 1 (id=5503):
prctl$PR_SET_MM(0x23, 0x8, &(0x7f0000001000/0x4000)=nil)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x1000007, 0x2172, 0xffffffffffffffff, 0x0)
munmap(&(0x7f0000002000/0x2000)=nil, 0x2000)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='cmdline\x00')
preadv(r0, &(0x7f00000003c0)=[{&(0x7f0000001180)=""/4084, 0xff4}], 0x1, 0x304, 0x21000008)

66.411375ms ago: executing program 6 (id=5504):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001240)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000009007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000740)={r1, 0x0, 0x0}, 0x10)

52.669806ms ago: executing program 1 (id=5505):
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000000)='kfree\x00', r0}, 0x18)
request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x1}, &(0x7f0000001fee)='R\x10rust\xe3c*sgrVdn:Dd', 0x0)

0s ago: executing program 6 (id=5506):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000300)=@newqdisc={0x78, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r2, {0x0, 0xa}, {0xffff, 0xffff}, {0x1a, 0xffff}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x10001, 0x80, 0x5, 0x4, 0xffffff80}, 0x9, 0x1, 0x1, 0x4, 0x4, 0x5, 0x7, 0xf, 0x4, 0x6, {0x5, 0x80000001, 0x2, 0x0, 0xa0dd, 0x4}}}}]}, 0x78}}, 0x44080)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)=@newqdisc={0x38, 0x24, 0xd0f, 0x70bd29, 0x0, {0x60, 0x0, 0x0, r2, {}, {0xffe0, 0xa}, {0xf, 0x10}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x0, 0x0, 0x55}, 0x4000)

kernel console output (not intermixed with test programs):

/204/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  164.432999][T10196] SELinux: failed to load policy
[  164.466373][ T7796] EXT4-fs (loop6): unmounting filesystem.
[  164.493459][T10208] loop2: detected capacity change from 0 to 512
[  164.508740][T10210] loop5: detected capacity change from 0 to 512
[  164.530362][T10214] loop6: detected capacity change from 0 to 128
[  164.560532][T10210] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  164.569501][T10210] ext4 filesystem being mounted at /379/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  164.637632][ T6230] EXT4-fs (loop5): unmounting filesystem.
[  164.650141][T10228] loop6: detected capacity change from 0 to 512
[  164.663623][T10228] EXT4-fs: Ignoring removed oldalloc option
[  164.675052][T10228] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  164.686155][T10228] EXT4-fs (loop6): 1 truncate cleaned up
[  164.695781][T10228] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  164.702249][  T313] kernel write not supported for file bpf-prog (pid: 313 comm: kworker/0:2)
[  164.723711][ T7796] EXT4-fs (loop6): unmounting filesystem.
[  164.847705][T10241] loop2: detected capacity change from 0 to 40427
[  164.859859][T10241] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  164.868996][T10241] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  164.893682][T10241] F2FS-fs (loop2): invalid crc value
[  164.917498][T10241] F2FS-fs (loop2): Found nat_bits in checkpoint
[  164.926973][T10254] loop6: detected capacity change from 0 to 128
[  164.946649][T10254] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  164.983906][T10241] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  164.990688][T10260] loop6: detected capacity change from 0 to 128
[  164.991047][T10241] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  165.037595][T10262] loop6: detected capacity change from 0 to 512
[  165.045857][T10262] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  165.057396][    T8] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  165.081594][    T8] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  165.085955][T10271] tap1: tun_chr_ioctl cmd 1074025677
[  165.095881][T10271] tap1: linktype set to 769
[  165.104948][T10262] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  165.118000][T10262] ext4 filesystem being mounted at /214/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  165.160526][T10275] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4073'.
[  165.161356][ T7796] EXT4-fs (loop6): unmounting filesystem.
[  165.249470][T10284] SELinux:  policydb magic number 0x0 does not match expected magic number 0xf97cff8c
[  165.270697][T10284] SELinux: failed to load policy
[  165.300568][T10292] input: syz1 as /devices/virtual/input/input30
[  165.447785][T10289] loop9: detected capacity change from 0 to 40427
[  165.470022][T10289] F2FS-fs (loop9): Insane cp_payload (553648128 >= 504)
[  165.476980][T10289] F2FS-fs (loop9): Can't find valid F2FS filesystem in 1th superblock
[  165.501966][T10289] F2FS-fs (loop9): fault_injection options not supported
[  165.512527][T10289] F2FS-fs (loop9): fault_type options not supported
[  165.521873][T10289] F2FS-fs (loop9): fault_type options not supported
[  165.530631][T10317] loop5: detected capacity change from 0 to 512
[  165.537551][T10289] F2FS-fs (loop9): invalid crc value
[  165.549066][ T1038] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  165.557233][T10317] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  165.572552][T10317] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e02c, mo2=0002]
[  165.581242][T10289] F2FS-fs (loop9): Found nat_bits in checkpoint
[  165.600337][T10317] EXT4-fs (loop5): orphan cleanup on readonly fs
[  165.606712][T10317] EXT4-fs error (device loop5): ext4_orphan_get:1426: comm syz.5.4090: bad orphan inode 267
[  165.617419][T10317] EXT4-fs (loop5): Remounting filesystem read-only
[  165.624190][T10317] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  165.640156][T10317] EXT4-fs warning (device loop5): dx_probe:893: inode #2: comm syz.5.4090: dx entry: limit 0 != root limit 125
[  165.652280][T10289] F2FS-fs (loop9): Try to recover 1th superblock, ret: 0
[  165.659359][T10289] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[  165.660237][T10317] EXT4-fs warning (device loop5): dx_probe:966: inode #2: comm syz.5.4090: Corrupt directory, running e2fsck is recommended
[  165.712886][ T6230] EXT4-fs (loop5): unmounting filesystem.
[  165.721252][T10289] F2FS-fs (loop9): switch discard_unit option is not allowed
[  165.738553][ T9826] bio_check_eod: 190 callbacks suppressed
[  165.738566][ T9826] syz-executor: attempt to access beyond end of device
[  165.738566][ T9826] loop9: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  165.758477][ T1038] usb 3-1: Using ep0 maxpacket: 16
[  165.764718][ T1038] usb 3-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  165.776683][ T1038] usb 3-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[  165.786858][ T1038] usb 3-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 28
[  165.800812][ T1038] usb 3-1: config 0 interface 0 has no altsetting 0
[  165.807716][ T1038] usb 3-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  165.817476][ T1038] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  165.826286][ T1038] usb 3-1: config 0 descriptor??
[  166.053158][T10354] loop6: detected capacity change from 0 to 256
[  166.066996][T10354] FAT-fs (loop6): Directory bread(block 1285) failed
[  166.081043][T10354] FAT-fs (loop6): Directory bread(block 1285) failed
[  166.101498][T10358] loop5: detected capacity change from 0 to 1024
[  166.113302][T10358] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  166.136960][T10364] loop6: detected capacity change from 0 to 128
[  166.168580][T10358] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  166.184521][T10358] ext4 filesystem being mounted at /402/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  166.217870][T10358] EXT4-fs error (device loop5): ext4_readdir:263: inode #2: block 16: comm syz.5.4106: path /402/file1: bad entry in directory: rec_len is smaller than minimal - offset=876, inode=0, rec_len=0, size=1024 fake=0
[  166.228190][T10379] device lo left promiscuous mode
[  166.239338][T10358] EXT4-fs (loop5): Remounting filesystem read-only
[  166.246636][ T1038] hid (null): report_id 0 is invalid
[  166.262735][ T6230] EXT4-fs (loop5): unmounting filesystem.
[  166.310516][   T28] kauditd_printk_skb: 8 callbacks suppressed
[  166.310529][   T28] audit: type=1400 audit(2000262770.908:8020): avc:  denied  { bind } for  pid=10387 comm="syz.5.4119" lport=32 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  166.342653][   T28] audit: type=1400 audit(2000262770.908:8021): avc:  denied  { node_bind } for  pid=10387 comm="syz.5.4119" saddr=fe88::6 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1
[  166.390851][T10396] kvm [10393]: vcpu0, guest rIP: 0xfff0 vmx_set_msr: BTF|LBR in IA32_DEBUGCTLMSR 0x7, nop
[  166.442207][T10407] loop5: detected capacity change from 0 to 512
[  166.464418][ T1038] usb 3-1: USB disconnect, device number 10
[  166.576873][T10429] syz.6.4138[10429] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  166.576931][T10429] syz.6.4138[10429] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  166.607288][T10435] loop6: detected capacity change from 0 to 512
[  166.632933][T10435] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  166.642031][T10435] ext4 filesystem being mounted at /238/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  166.661663][ T7796] EXT4-fs (loop6): unmounting filesystem.
[  166.674464][   T28] audit: type=1400 audit(2000262771.268:8022): avc:  denied  { mount } for  pid=10442 comm="syz.6.4143" name="/" dev="configfs" ino=12886 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  166.697943][   T28] audit: type=1400 audit(2000262771.268:8023): avc:  denied  { read } for  pid=10442 comm="syz.6.4143" name="/" dev="configfs" ino=12886 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  166.723899][   T28] audit: type=1400 audit(2000262771.268:8024): avc:  denied  { open } for  pid=10442 comm="syz.6.4143" path="/239/file0" dev="configfs" ino=12886 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  166.750249][   T28] audit: type=1400 audit(2000262771.268:8025): avc:  denied  { write } for  pid=10442 comm="syz.6.4143" name="/" dev="configfs" ino=12886 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  166.773183][   T28] audit: type=1400 audit(2000262771.288:8026): avc:  denied  { unmount } for  pid=7796 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1
[  166.827386][T10445] loop6: detected capacity change from 0 to 40427
[  166.836531][T10445] F2FS-fs (loop6): Invalid Fs Meta Ino: node(0) meta(0) root(83886083)
[  166.845188][T10445] F2FS-fs (loop6): Can't find valid F2FS filesystem in 2th superblock
[  166.853655][T10445] F2FS-fs (loop6): fault_injection options not supported
[  166.860752][T10445] F2FS-fs (loop6): heap/no_heap options were deprecated
[  166.867702][T10445] F2FS-fs (loop6): Image doesn't support compression
[  166.875018][T10445] F2FS-fs (loop6): invalid crc value
[  166.881995][T10445] F2FS-fs (loop6): Found nat_bits in checkpoint
[  166.902761][T10445] F2FS-fs (loop6): Try to recover 2th superblock, ret: 0
[  166.909829][T10445] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  166.938214][ T7796] syz-executor: attempt to access beyond end of device
[  166.938214][ T7796] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  167.037426][T10458] pim6reg0: tun_chr_ioctl cmd 1074025680
[  167.127815][T10471] loop2: detected capacity change from 0 to 256
[  167.136917][T10471] exfat: Deprecated parameter 'namecase'
[  167.142759][T10471] exfat: Deprecated parameter 'utf8'
[  167.150434][T10471] exFAT-fs (loop2): failed to load upcase table (idx : 0x0001ff53, chksum : 0xd72bb7d8, utbl_chksum : 0xe619d30d)
[  167.168185][   T28] audit: type=1400 audit(2000262771.768:8027): avc:  denied  { read } for  pid=10470 comm="syz.2.4155" path="/116/file0/file1" dev="loop2" ino=1048903 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  167.191840][   T28] audit: type=1400 audit(2000262771.768:8028): avc:  denied  { ioctl } for  pid=10470 comm="syz.2.4155" path="/116/file0/file1" dev="loop2" ino=1048903 ioctlcmd=0x587d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[  167.231590][   T28] audit: type=1400 audit(2000262771.818:8029): avc:  denied  { lock } for  pid=10472 comm="syz.2.4156" path="socket:[67089]" dev="sockfs" ino=67089 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=unix_stream_socket permissive=1
[  167.282450][T10486] netlink: 68 bytes leftover after parsing attributes in process `syz.9.4162'.
[  167.369033][  T313] usb 7-1: new high-speed USB device number 8 using dummy_hcd
[  167.439099][T10498] loop9: detected capacity change from 0 to 512
[  167.445615][T10498] EXT4-fs: Ignoring removed orlov option
[  167.451960][T10498] EXT4-fs (loop9): Test dummy encryption mode enabled
[  167.458832][T10498] EXT4-fs (loop9): can't mount with data_err=abort, fs mounted w/o journal
[  167.550052][  T313] usb 7-1: config 220 has an invalid interface number: 76 but max is 2
[  167.559699][  T313] usb 7-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  167.568609][  T313] usb 7-1: config 220 has an invalid descriptor of length 97, skipping remainder of the config
[  167.579041][  T313] usb 7-1: config 220 has no interface number 2
[  167.585319][  T313] usb 7-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  167.599021][  T313] usb 7-1: config 220 interface 0 has no altsetting 0
[  167.605932][  T313] usb 7-1: config 220 interface 76 has no altsetting 0
[  167.612876][  T313] usb 7-1: config 220 interface 1 has no altsetting 0
[  167.639060][  T313] usb 7-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  167.649472][  T313] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  167.658276][T10526] input: syz0 as /devices/virtual/input/input32
[  167.665407][  T313] usb 7-1: Product: syz
[  167.670067][  T313] usb 7-1: Manufacturer: syz
[  167.675177][  T313] usb 7-1: SerialNumber: syz
[  167.832861][T10539] loop2: detected capacity change from 0 to 40427
[  167.839905][T10539] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  167.847679][T10539] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  167.857978][T10539] F2FS-fs (loop2): Found nat_bits in checkpoint
[  167.885011][T10539] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  167.892128][T10539] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  167.905631][  T313] usb 7-1: selecting invalid altsetting 0
[  167.911452][  T313] usb 7-1: Found UVC 7.01 device syz (8086:0b07)
[  167.917799][  T313] usb 7-1: No valid video chain found.
[  167.936153][  T313] usb 7-1: USB disconnect, device number 8
[  167.946735][  T420] kworker/u4:4: attempt to access beyond end of device
[  167.946735][  T420] loop2: rw=1, sector=77824, nr_sectors = 136 limit=40427
[  168.347549][ T1960] device syz_tun left promiscuous mode
[  168.353135][ T1960] bridge0: port 3(syz_tun) entered disabled state
[  168.393218][  T420] tipc: Disabling bearer <udp:syz2>
[  168.398659][  T420] tipc: Left network mode
[  168.522827][T10568] bridge0: port 1(bridge_slave_0) entered blocking state
[  168.530134][T10568] bridge0: port 1(bridge_slave_0) entered disabled state
[  168.537471][T10568] device bridge_slave_0 entered promiscuous mode
[  168.545856][T10568] bridge0: port 2(bridge_slave_1) entered blocking state
[  168.552931][T10568] bridge0: port 2(bridge_slave_1) entered disabled state
[  168.560375][T10568] device bridge_slave_1 entered promiscuous mode
[  168.601081][T10568] bridge0: port 2(bridge_slave_1) entered blocking state
[  168.608133][T10568] bridge0: port 2(bridge_slave_1) entered forwarding state
[  168.615390][T10568] bridge0: port 1(bridge_slave_0) entered blocking state
[  168.622416][T10568] bridge0: port 1(bridge_slave_0) entered forwarding state
[  168.644171][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  168.652880][T10579] loop6: detected capacity change from 0 to 512
[  168.660595][    T8] bridge0: port 1(bridge_slave_0) entered disabled state
[  168.668000][    T8] bridge0: port 2(bridge_slave_1) entered disabled state
[  168.682893][T10579] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  168.685240][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  168.692157][T10579] ext4 filesystem being mounted at /248/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  168.700846][    T8] bridge0: port 1(bridge_slave_0) entered blocking state
[  168.717323][    T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[  168.724761][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  168.733457][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[  168.733760][ T7796] EXT4-fs (loop6): unmounting filesystem.
[  168.740510][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[  168.755287][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  168.776406][T10568] device veth0_vlan entered promiscuous mode
[  168.784043][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  168.792354][T10583] loop6: detected capacity change from 0 to 512
[  168.793112][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  168.807525][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  168.815419][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  168.818269][T10583] EXT4-fs error (device loop6): ext4_orphan_get:1400: inode #15: comm syz.6.4201: casefold flag without casefold feature
[  168.824534][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  168.835601][T10583] EXT4-fs error (device loop6): ext4_orphan_get:1405: comm syz.6.4201: couldn't read orphan inode 15 (err -117)
[  168.855082][T10583] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  168.881579][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  168.896942][T10568] device veth1_macvtap entered promiscuous mode
[  168.904866][ T7796] EXT4-fs (loop6): unmounting filesystem.
[  168.916268][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  168.938193][  T435] Bluetooth: hci0: Frame reassembly failed (-84)
[  168.945301][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  168.986973][T10593] bridge0: port 2(bridge_slave_1) entered disabled state
[  168.994072][T10593] bridge0: port 1(bridge_slave_0) entered disabled state
[  169.030353][  T420] device veth0_to_hsr left promiscuous mode
[  169.038659][  T420] bridge0: port 4(veth0_to_hsr) entered disabled state
[  169.049215][  T435] Bluetooth: hci1: Frame reassembly failed (-84)
[  169.055861][  T420] device bridge_slave_1 left promiscuous mode
[  169.062071][  T420] bridge0: port 2(bridge_slave_1) entered disabled state
[  169.069571][  T420] device bridge_slave_0 left promiscuous mode
[  169.075673][  T420] bridge0: port 1(bridge_slave_0) entered disabled state
[  169.083463][  T420] device veth1_macvtap left promiscuous mode
[  169.089532][  T420] device veth0_vlan left promiscuous mode
[  169.192521][T10593] ������: renamed from lo
[  169.236646][T10601] loop0: detected capacity change from 0 to 512
[  169.249066][T10601] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  169.260580][T10601] EXT4-fs (loop0): 1 truncate cleaned up
[  169.266219][T10601] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  169.277921][T10601] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.4208: bg 0: block 280: padding at end of block bitmap is not set
[  169.340510][T10568] EXT4-fs (loop0): unmounting filesystem.
[  169.447104][T10605] bridge0: port 1(bridge_slave_0) entered blocking state
[  169.454184][T10605] bridge0: port 1(bridge_slave_0) entered disabled state
[  169.461565][T10605] device bridge_slave_0 entered promiscuous mode
[  169.468324][T10605] bridge0: port 2(bridge_slave_1) entered blocking state
[  169.475352][T10605] bridge0: port 2(bridge_slave_1) entered disabled state
[  169.482620][T10605] device bridge_slave_1 entered promiscuous mode
[  169.522721][T10605] bridge0: port 2(bridge_slave_1) entered blocking state
[  169.529785][T10605] bridge0: port 2(bridge_slave_1) entered forwarding state
[  169.537013][T10605] bridge0: port 1(bridge_slave_0) entered blocking state
[  169.544035][T10605] bridge0: port 1(bridge_slave_0) entered forwarding state
[  169.560412][ T2966] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  169.567914][ T2966] bridge0: port 1(bridge_slave_0) entered disabled state
[  169.575472][ T2966] bridge0: port 2(bridge_slave_1) entered disabled state
[  169.586173][ T2966] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  169.594425][ T2966] bridge0: port 1(bridge_slave_0) entered blocking state
[  169.601457][ T2966] bridge0: port 1(bridge_slave_0) entered forwarding state
[  169.610037][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  169.618234][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[  169.625268][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[  169.645054][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  169.663593][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  169.680651][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  169.695798][T10605] device veth0_vlan entered promiscuous mode
[  169.706443][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  169.715037][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  169.723478][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  169.737501][T10605] device veth1_macvtap entered promiscuous mode
[  169.746133][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  169.761141][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  169.778800][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  169.943571][T10650] ������: renamed from lo
[  169.969850][  T420] device bridge_slave_1 left promiscuous mode
[  169.979044][  T420] bridge0: port 2(bridge_slave_1) entered disabled state
[  170.009164][  T420] device bridge_slave_0 left promiscuous mode
[  170.016666][  T420] bridge0: port 1(bridge_slave_0) entered disabled state
[  170.227387][T10669] loop5: detected capacity change from 0 to 4096
[  170.237842][T10669] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  170.263093][ T6230] EXT4-fs (loop5): unmounting filesystem.
[  170.390423][T10679] loop5: detected capacity change from 0 to 40427
[  170.397878][T10679] F2FS-fs (loop5): Invalid segment/section count (31 != 24 * 1)
[  170.405902][T10679] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  170.414187][T10679] F2FS-fs (loop5): heap/no_heap options were deprecated
[  170.421889][T10679] F2FS-fs (loop5): invalid crc value
[  170.427979][T10679] F2FS-fs (loop5): Found nat_bits in checkpoint
[  170.449671][T10679] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  170.456702][T10679] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  170.485692][ T6230] syz-executor: attempt to access beyond end of device
[  170.485692][ T6230] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  170.619020][ T1038] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  170.799034][ T1038] usb 9-1: Using ep0 maxpacket: 32
[  170.806489][ T1038] usb 9-1: New USB device found, idVendor=050d, idProduct=0121, bcdDevice= 6.59
[  170.815587][ T1038] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  170.823694][ T1038] usb 9-1: Product: syz
[  170.827864][ T1038] usb 9-1: Manufacturer: syz
[  170.832482][ T1038] usb 9-1: SerialNumber: syz
[  170.840563][ T1038] usb 9-1: config 0 descriptor??
[  170.880177][T10700] device veth1_to_bond entered promiscuous mode
[  170.886697][T10699] device veth1_to_bond left promiscuous mode
[  171.009028][ T1130] Bluetooth: hci0: command 0x1003 tx timeout
[  171.010440][ T7949] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  171.051682][   T19] usb 9-1: USB disconnect, device number 2
[  171.089014][ T7949] Bluetooth: hci1: command 0x1003 tx timeout
[  171.089009][   T45] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  171.093663][T10715] SELinux: failed to load policy
[  171.363004][T10742] loop2: detected capacity change from 0 to 40427
[  171.372234][T10742] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  171.380014][T10742] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  171.388848][T10742] F2FS-fs (loop2): invalid crc value
[  171.395188][T10742] F2FS-fs (loop2): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 39874397669)
[  171.406811][T10742] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  171.426017][T10742] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  171.433108][T10742] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  171.575965][T10751] device veth1_macvtap left promiscuous mode
[  171.582163][T10751] device macsec0 entered promiscuous mode
[  171.590181][T10751] device veth1_macvtap entered promiscuous mode
[  171.596544][T10751] device macsec0 left promiscuous mode
[  171.603262][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  171.644312][T10758] loop8: detected capacity change from 0 to 1024
[  171.670510][T10758] ext4 filesystem being mounted at /12/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  171.689965][T10758] EXT4-fs error (device loop8): ext4_map_blocks:745: inode #15: block 3: comm syz.8.4272: lblock 3 mapped to illegal pblock 3 (length 3)
[  171.704288][T10758] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  171.717136][T10758] EXT4-fs (loop8): This should not happen!! Data will be lost
[  171.717136][T10758] 
[  171.730400][T10758] EXT4-fs error (device loop8): ext4_map_blocks:745: inode #15: block 8: comm syz.8.4272: lblock 8 mapped to illegal pblock 8 (length 8)
[  171.744711][T10758] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  171.768989][T10758] EXT4-fs (loop8): This should not happen!! Data will be lost
[  171.768989][T10758] 
[  171.812154][  T435] EXT4-fs error (device loop8): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  171.829248][  T435] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 36 with max blocks 32 with error 28
[  171.841785][  T435] EXT4-fs (loop8): This should not happen!! Data will be lost
[  171.841785][  T435] 
[  171.851963][  T435] EXT4-fs (loop8): Total free blocks count 0
[  171.858256][  T435] EXT4-fs (loop8): Free/Dirty block details
[  171.864368][  T435] EXT4-fs (loop8): free_blocks=4293918720
[  171.871586][  T435] EXT4-fs (loop8): dirty_blocks=48
[  171.903127][T10778] netlink: 140 bytes leftover after parsing attributes in process `syz.5.4279'.
[  171.978780][  T334] Bluetooth: hci1: Frame reassembly failed (-84)
[  172.067947][   T28] kauditd_printk_skb: 18 callbacks suppressed
[  172.067961][   T28] audit: type=1400 audit(2000262776.658:8048): avc:  denied  { create } for  pid=10810 comm="syz.5.4295" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  172.089434][T10813] loop5: detected capacity change from 0 to 512
[  172.093822][   T28] audit: type=1400 audit(2000262776.658:8049): avc:  denied  { getopt } for  pid=10810 comm="syz.5.4295" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1
[  172.123240][T10813] EXT4-fs error (device loop5): ext4_orphan_get:1400: inode #15: comm syz.5.4296: iget: bad i_size value: 38620345925642
[  172.136587][T10813] EXT4-fs error (device loop5): ext4_orphan_get:1405: comm syz.5.4296: couldn't read orphan inode 15 (err -117)
[  172.139708][   T28] audit: type=1400 audit(2000262776.738:8050): avc:  denied  { search } for  pid=10817 comm="syz.2.4298" name="/" dev="configfs" ino=12886 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1
[  172.160508][T10813] EXT4-fs error (device loop5): ext4_validate_block_bitmap:429: comm syz.5.4296: bg 0: block 5: invalid block bitmap
[  172.235510][T10827] loop5: detected capacity change from 0 to 512
[  172.237752][T10828] loop2: detected capacity change from 0 to 1024
[  172.248502][T10828] EXT4-fs: Ignoring removed nobh option
[  172.254693][T10827] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  172.271712][T10827] ext4 filesystem being mounted at /456/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  172.302813][T10834] loop5: detected capacity change from 0 to 1024
[  172.378641][T10844] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  172.387389][T10844] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  172.405162][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[  172.418128][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  172.436835][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[  172.456583][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  172.465993][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  172.476138][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  172.484590][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  172.493286][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  172.881371][T10867] loop2: detected capacity change from 0 to 1024
[  172.888062][T10867] EXT4-fs: Ignoring removed bh option
[  172.893914][T10867] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  172.905332][T10867] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  172.916957][T10867] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (31873!=20869)
[  172.919113][   T28] audit: type=1326 audit(2000262777.518:8051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10862 comm="syz.5.4316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e45b8ebe9 code=0x7fc00000
[  172.950281][T10867] EXT4-fs (loop2): filesystem has both journal inode and journal device!
[  172.953091][   T28] audit: type=1326 audit(2000262777.518:8052): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10862 comm="syz.5.4316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0e45b8ebe9 code=0x7fc00000
[  172.982738][   T28] audit: type=1326 audit(2000262777.518:8053): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10862 comm="syz.5.4316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e45b8ebe9 code=0x7fc00000
[  173.006460][   T28] audit: type=1326 audit(2000262777.518:8054): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10862 comm="syz.5.4316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e45b8ebe9 code=0x7fc00000
[  173.030020][   T28] audit: type=1326 audit(2000262777.518:8055): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10862 comm="syz.5.4316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e45b8ebe9 code=0x7fc00000
[  173.053854][   T28] audit: type=1326 audit(2000262777.518:8056): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10862 comm="syz.5.4316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e45b8ebe9 code=0x7fc00000
[  173.077480][   T28] audit: type=1326 audit(2000262777.518:8057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10862 comm="syz.5.4316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0e45b8ebe9 code=0x7fc00000
[  173.249004][   T45] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  173.249008][ T7949] Bluetooth: hci0: command 0x1003 tx timeout
[  173.255024][T10878] syz.2.4322[10878] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  173.275502][T10878] syz.2.4322[10878] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  173.509964][T10901] loop6: detected capacity change from 0 to 2048
[  173.533377][T10873] loop5: detected capacity change from 0 to 131072
[  173.543039][T10873] F2FS-fs (loop5): Invalid log sectorsize (67108873)
[  173.549887][T10873] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  173.558594][T10873] F2FS-fs (loop5): invalid crc value
[  173.565815][T10901] ext4 filesystem being mounted at /269/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  173.573311][T10873] F2FS-fs (loop5): Found nat_bits in checkpoint
[  173.601454][T10908] tipc: Started in network mode
[  173.606320][T10908] tipc: Node identity , cluster identity 4711
[  173.612747][T10908] tipc: Failed to obtain node identity
[  173.618205][T10908] tipc: Enabling of bearer <eth:ip6gre0> rejected, failed to enable media
[  173.623713][T10873] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  173.633823][T10873] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e4
[  173.677650][T10873] F2FS-fs (loop5): f2fs_remove_inode_page: inconsistent i_blocks, ino:7, iblocks:10232
[  173.709264][T10916] loop6: detected capacity change from 0 to 128
[  173.750626][T10918] binder: 10917:10918 ioctl 400c620e 200000000000 returned -22
[  173.829842][T10923] loop5: detected capacity change from 0 to 256
[  174.059063][ T1129] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  174.059607][ T1130] Bluetooth: hci1: command 0x1003 tx timeout
[  174.098397][T10945] 9pnet: p9_errstr2errno: server reported unknown error �@
[  174.330204][T10957] netlink: 92 bytes leftover after parsing attributes in process `syz.2.4356'.
[  174.360438][T10963] binder: 10962:10963 unknown command 137
[  174.366216][T10963] binder: 10962:10963 ioctl c0306201 2000000003c0 returned -22
[  174.864621][T11012] netlink: 4 bytes leftover after parsing attributes in process `syz.8.4380'.
[  175.419114][T11015] bridge0: port 1(bridge_slave_0) entered disabled state
[  175.470179][  T435] Bluetooth: hci0: Frame reassembly failed (-84)
[  175.477391][T11024] Bluetooth: hci0: received HCILL_GO_TO_SLEEP_ACK in state 2
[  175.505996][T11030] loop2: detected capacity change from 0 to 512
[  175.530571][T11030] ext4 filesystem being mounted at /187/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  175.636646][T11039] bridge0: port 1(bridge_slave_0) entered blocking state
[  175.643881][T11039] bridge0: port 1(bridge_slave_0) entered disabled state
[  175.651372][T11039] device bridge_slave_0 entered promiscuous mode
[  175.658063][T11039] bridge0: port 2(bridge_slave_1) entered blocking state
[  175.665426][T11039] bridge0: port 2(bridge_slave_1) entered disabled state
[  175.672716][T11039] device bridge_slave_1 entered promiscuous mode
[  175.717997][T11039] bridge0: port 2(bridge_slave_1) entered blocking state
[  175.725063][T11039] bridge0: port 2(bridge_slave_1) entered forwarding state
[  175.732334][T11039] bridge0: port 1(bridge_slave_0) entered blocking state
[  175.739348][T11039] bridge0: port 1(bridge_slave_0) entered forwarding state
[  175.757999][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  175.765689][  T420] bridge0: port 1(bridge_slave_0) entered disabled state
[  175.773203][  T420] bridge0: port 2(bridge_slave_1) entered disabled state
[  175.784743][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  175.793384][  T420] bridge0: port 1(bridge_slave_0) entered blocking state
[  175.800422][  T420] bridge0: port 1(bridge_slave_0) entered forwarding state
[  175.808077][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  175.816590][  T420] bridge0: port 2(bridge_slave_1) entered blocking state
[  175.823642][  T420] bridge0: port 2(bridge_slave_1) entered forwarding state
[  175.841497][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  175.849739][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  175.867732][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  175.879596][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  175.887805][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  175.896597][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  175.904999][T11039] device veth0_vlan entered promiscuous mode
[  175.927021][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  175.942802][T11039] device veth1_macvtap entered promiscuous mode
[  175.957162][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  175.974557][  T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  176.017208][T11061] loop2: detected capacity change from 0 to 2048
[  176.036593][T11059] loop4: detected capacity change from 0 to 8192
[  176.058732][T11061] ext4 filesystem being mounted at /194/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  176.072338][T11065] netlink: 24 bytes leftover after parsing attributes in process `syz.4.4400'.
[  176.130400][  T435] device bridge_slave_1 left promiscuous mode
[  176.136534][  T435] bridge0: port 2(bridge_slave_1) entered disabled state
[  176.144450][  T435] device bridge_slave_0 left promiscuous mode
[  176.150776][  T435] bridge0: port 1(bridge_slave_0) entered disabled state
[  176.167758][  T435] device veth1_macvtap left promiscuous mode
[  176.175771][  T435] device veth0_vlan left promiscuous mode
[  176.217611][T11083] loop2: detected capacity change from 0 to 256
[  176.235079][T11083] FAT-fs (loop2): Directory bread(block 64) failed
[  176.241651][T11083] FAT-fs (loop2): Directory bread(block 65) failed
[  176.248148][T11083] FAT-fs (loop2): Directory bread(block 66) failed
[  176.254963][T11083] FAT-fs (loop2): Directory bread(block 67) failed
[  176.261582][T11083] FAT-fs (loop2): Directory bread(block 68) failed
[  176.268161][T11083] FAT-fs (loop2): Directory bread(block 69) failed
[  176.274988][T11083] FAT-fs (loop2): Directory bread(block 70) failed
[  176.281696][T11083] FAT-fs (loop2): Directory bread(block 71) failed
[  176.288589][T11083] FAT-fs (loop2): Directory bread(block 72) failed
[  176.295546][T11083] FAT-fs (loop2): Directory bread(block 73) failed
[  176.324137][T11083] syz.2.4409: attempt to access beyond end of device
[  176.324137][T11083] loop2: rw=2049, sector=1256, nr_sectors = 4 limit=256
[  176.344584][    T8] kworker/u4:0: attempt to access beyond end of device
[  176.344584][    T8] loop2: rw=1, sector=1224, nr_sectors = 4 limit=256
[  176.380471][T11094] loop2: detected capacity change from 0 to 512
[  176.420850][  T342] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  176.571431][T11104] loop2: detected capacity change from 0 to 1024
[  176.579434][T11104] EXT4-fs: Ignoring removed nomblk_io_submit option
[  176.823097][T11124] loop2: detected capacity change from 0 to 512
[  176.830016][T11124] EXT4-fs (loop2): Test dummy encryption mode enabled
[  176.837153][T11124] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended
[  176.846771][T11124] EXT4-fs (loop2): Errors on filesystem, clearing orphan list.
[  176.860639][T11124] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 212 vs 220 free clusters
[  176.963848][T11135] loop2: detected capacity change from 0 to 512
[  176.973089][T11135] EXT4-fs: Ignoring removed oldalloc option
[  176.980106][T11135] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  176.990851][T11135] EXT4-fs (loop2): 1 truncate cleaned up
[  177.000651][T11135] EXT4-fs (loop2): shut down requested (2)
[  177.134003][   T28] kauditd_printk_skb: 87 callbacks suppressed
[  177.134018][   T28] audit: type=1400 audit(2000262781.728:8145): avc:  denied  { setopt } for  pid=11147 comm="syz.5.4437" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  177.156791][T11150] loop5: detected capacity change from 0 to 128
[  177.173440][T11150] EXT4-fs: Ignoring removed nomblk_io_submit option
[  177.181333][T11150] EXT4-fs: Ignoring removed nomblk_io_submit option
[  177.193233][T11150] EXT4-fs (loop5): Test dummy encryption mode enabled
[  177.215280][T11150] ext4 filesystem being mounted at /479/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  177.246395][   T28] audit: type=1400 audit(2000262781.838:8146): avc:  denied  { mounton } for  pid=11149 comm="syz.5.4438" path="/479/mnt/file0" dev="loop5" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  177.440338][   T28] audit: type=1401 audit(2000262782.038:8147): op=setxattr invalid_context=""
[  177.490509][ T7949] Bluetooth: hci0: command 0x1003 tx timeout
[  177.496563][ T1129] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  177.531074][T11195] netlink: 'syz.5.4459': attribute type 11 has an invalid length.
[  177.540982][T11195] netlink: 36 bytes leftover after parsing attributes in process `syz.5.4459'.
[  177.635089][   T28] audit: type=1400 audit(2000262782.228:8148): avc:  denied  { read } for  pid=11212 comm="syz.6.4467" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  177.666006][   T28] audit: type=1400 audit(2000262782.258:8149): avc:  denied  { getopt } for  pid=11215 comm="syz.5.4469" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  177.712312][   T28] audit: type=1400 audit(2000262782.308:8150): avc:  denied  { watch watch_reads } for  pid=11221 comm="syz.5.4472" path="/493" dev="tmpfs" ino=2580 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[  177.760410][   T28] audit: type=1326 audit(2000262782.338:8151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11209 comm="syz.4.4465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e6078ebe9 code=0x7fc00000
[  177.789374][   T28] audit: type=1326 audit(2000262782.338:8152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11209 comm="syz.4.4465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f6e6078ebe9 code=0x7fc00000
[  177.814742][   T28] audit: type=1326 audit(2000262782.338:8153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11209 comm="syz.4.4465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e6078ebe9 code=0x7fc00000
[  177.838712][   T28] audit: type=1326 audit(2000262782.338:8154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11209 comm="syz.4.4465" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e6078ebe9 code=0x7fc00000
[  177.915220][T11244] netlink: 140 bytes leftover after parsing attributes in process `syz.2.4482'.
[  177.961763][T11248] loop4: detected capacity change from 0 to 2048
[  177.968567][T11248] EXT4-fs: Ignoring removed bh option
[  177.986667][T11248] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  178.001663][T11248] EXT4-fs (loop4): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 17 with error 28
[  178.014190][T11248] EXT4-fs (loop4): This should not happen!! Data will be lost
[  178.014190][T11248] 
[  178.024664][T11248] EXT4-fs (loop4): Total free blocks count 0
[  178.030741][T11248] EXT4-fs (loop4): Free/Dirty block details
[  178.036698][T11248] EXT4-fs (loop4): free_blocks=2415919104
[  178.042492][T11248] EXT4-fs (loop4): dirty_blocks=32
[  178.047695][T11248] EXT4-fs (loop4): Block reservation details
[  178.057023][T11248] EXT4-fs (loop4): i_reserved_data_blocks=2
[  178.100106][T11268] loop5: detected capacity change from 0 to 512
[  178.106843][T11268] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  178.140985][T11274] tmpfs: Unknown parameter 'q'
[  178.163774][T11277] loop5: detected capacity change from 0 to 128
[  178.176289][  T435] FAT-fs (loop5): error, invalid FAT chain (i_pos 548, last_block 8)
[  178.184522][  T435] FAT-fs (loop5): Filesystem has been set read-only
[  178.191911][  T435] FAT-fs (loop5): error, corrupted file size (i_pos 548, 522)
[  178.192989][T11280] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  178.207509][  T420] FAT-fs (loop5): error, corrupted file size (i_pos 548, 522)
[  178.212967][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[  178.215408][  T420] FAT-fs (loop5): Filesystem has been set read-only
[  178.223594][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  178.240229][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[  178.248538][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  178.262751][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  178.271023][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  178.280306][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  178.288843][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  178.521343][T11311] bridge0: port 2(bridge_slave_1) entered blocking state
[  178.528405][T11311] bridge0: port 2(bridge_slave_1) entered forwarding state
[  178.535729][T11311] bridge0: port 1(bridge_slave_0) entered blocking state
[  178.542771][T11311] bridge0: port 1(bridge_slave_0) entered forwarding state
[  178.550833][T11311] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  178.567174][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[  178.588119][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  178.597533][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[  178.607827][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  178.616328][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  178.624925][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  178.633257][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  178.641612][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  178.678485][T11323] loop5: detected capacity change from 0 to 512
[  178.698050][T11323] EXT4-fs error (device loop5): ext4_orphan_get:1400: inode #15: comm syz.5.4518: casefold flag without casefold feature
[  178.715526][T11323] EXT4-fs error (device loop5): ext4_orphan_get:1405: comm syz.5.4518: couldn't read orphan inode 15 (err -117)
[  178.749269][T11335] netlink: 'syz.5.4523': attribute type 1 has an invalid length.
[  178.757012][T11335] netlink: 'syz.5.4523': attribute type 2 has an invalid length.
[  178.765409][T11335] netlink: 'syz.5.4523': attribute type 1 has an invalid length.
[  178.773171][T11335] netlink: 'syz.5.4523': attribute type 2 has an invalid length.
[  178.874938][T11350] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  178.928248][T11352] loop5: detected capacity change from 0 to 8192
[  178.969018][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  179.128036][T11375] loop2: detected capacity change from 0 to 512
[  179.149760][T11375] [EXT4 FS bs=4096, gc=1, bpg=95, ipg=32, mo=e040e01c, mo2=0000]
[  179.157572][T11375] System zones: 0-2, 18-18, 34-34
[  179.163572][T11375] EXT4-fs error (device loop2): ext4_do_update_inode:5256: inode #3: comm syz.2.4542: corrupted inode contents
[  179.175429][T11375] EXT4-fs error (device loop2): ext4_dirty_inode:6121: inode #3: comm syz.2.4542: mark_inode_dirty error
[  179.187083][T11375] EXT4-fs error (device loop2): ext4_do_update_inode:5256: inode #3: comm syz.2.4542: corrupted inode contents
[  179.199095][T11375] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #3: comm syz.2.4542: mark_inode_dirty error
[  179.210450][T11375] EXT4-fs error (device loop2): ext4_acquire_dquot:6801: comm syz.2.4542: Failed to acquire dquot type 0
[  179.222376][T11375] EXT4-fs (loop2): 1 orphan inode deleted
[  179.228175][T11375] ext4 filesystem being mounted at /242/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  179.245099][  T435] EXT4-fs error (device loop2): ext4_release_dquot:6837: comm kworker/u4:5: Failed to release dquot type 1
[  179.330633][T11382] incfs: Backing dir is not set, filesystem can't be mounted.
[  179.338124][T11382] incfs: mount failed -2
[  179.546149][T11392] loop2: detected capacity change from 0 to 128
[  179.751213][T11411] kvm: MWAIT instruction emulated as NOP!
[  179.997878][T11431] loop5: detected capacity change from 0 to 256
[  180.049492][  T342] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  180.080637][T11436] loop5: detected capacity change from 0 to 1024
[  180.091155][T11436] ext4 filesystem being mounted at /535/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  180.105074][T11435] EXT4-fs error (device loop5): ext4_free_blocks:6210: comm syz.5.4568: Freeing blocks not in datazone - block = 0, count = 16
[  180.118802][T11435] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  180.159000][   T24] usb 7-1: new full-speed USB device number 9 using dummy_hcd
[  180.268889][T11452] loop5: detected capacity change from 0 to 2048
[  180.340015][   T24] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  180.350486][   T24] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[  180.366212][   T24] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  180.375407][   T24] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  180.383412][   T24] usb 7-1: Product: syz
[  180.387587][   T24] usb 7-1: Manufacturer: syz
[  180.392171][   T24] usb 7-1: SerialNumber: syz
[  180.541410][T11465] loop2: detected capacity change from 0 to 8192
[  180.600414][   T24] usb 7-1: 0:2 : does not exist
[  180.606960][   T24] usb 7-1: 5:0: failed to get current value for ch 0 (-22)
[  180.619462][   T24] usb 7-1: USB disconnect, device number 9
[  180.627476][  T342] udevd[342]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[  181.110991][T11474] device sit0 left promiscuous mode
[  181.117428][T11474] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  181.124800][T11474] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  181.262220][T11492] SELinux:  Context system_u:object_r:man_t:s0 is not valid (left unmapped).
[  181.766562][T11552] loop5: detected capacity change from 0 to 40427
[  181.782078][T11552] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  181.790808][T11552] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  181.799794][T11552] F2FS-fs (loop5): invalid crc value
[  181.806278][T11552] F2FS-fs (loop5): Found nat_bits in checkpoint
[  181.848559][T11552] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  181.861391][T11552] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  181.870149][T11574] loop4: detected capacity change from 0 to 512
[  181.888541][T11574] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  181.905000][T11574] EXT4-fs error (device loop4): ext4_validate_block_bitmap:429: comm syz.4.4630: bg 0: block 104: invalid block bitmap
[  181.917700][T11574] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  181.927844][T11574] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.4630: invalid indirect mapped block 1 (level 1)
[  181.941588][T11574] EXT4-fs (loop4): 1 truncate cleaned up
[  182.095757][T11586] loop5: detected capacity change from 0 to 256
[  182.112145][T11586] syz.5.4635: attempt to access beyond end of device
[  182.112145][T11586] loop5: rw=2049, sector=256, nr_sectors = 4 limit=256
[  182.166504][   T28] kauditd_printk_skb: 55 callbacks suppressed
[  182.166520][   T28] audit: type=1400 audit(2000000004.239:8207): avc:  denied  { mount } for  pid=11593 comm="syz.5.4639" name="/" dev="ramfs" ino=73122 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1
[  182.215471][   T28] audit: type=1400 audit(2000000004.289:8208): avc:  denied  { map } for  pid=11599 comm="syz.5.4641" path="/dev/binderfs/binder0" dev="binder" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1
[  182.296592][  T435] Bluetooth: hci0: Frame reassembly failed (-84)
[  182.359149][   T28] audit: type=1400 audit(2000000004.439:8209): avc:  denied  { create } for  pid=11615 comm="syz.5.4649" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1
[  182.560585][   T28] audit: type=1400 audit(2000000004.639:8210): avc:  denied  { nosuid_transition } for  pid=11637 comm="syz.5.4657" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=process2 permissive=1
[  182.582435][   T28] audit: type=1400 audit(2000000004.639:8211): avc:  denied  { transition } for  pid=11637 comm="syz.5.4657" path=2F6D656D66643A5B0BDB58AE5B1AA9FDFAADD16D64C8854858A9250C1A65E0202864656C6574656429 dev="tmpfs" ino=1388 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=process permissive=1
[  182.612920][   T28] audit: type=1400 audit(2000000004.639:8212): avc:  denied  { entrypoint } for  pid=11637 comm="syz.5.4657" path=2F6D656D66643A5B0BDB58AE5B1AA9FDFAADD16D64C8854858A9250C1A65E0202864656C6574656429 dev="tmpfs" ino=1388 scontext=system_u:object_r:hugetlbfs_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1
[  182.643091][   T28] audit: type=1400 audit(2000000004.639:8213): avc:  denied  { share } for  pid=11637 comm="syz.5.4657" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=process permissive=1
[  182.663277][   T28] audit: type=1400 audit(2000000004.639:8214): avc:  denied  { noatsecure } for  pid=11637 comm="syz.5.4657" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:hugetlbfs_t tclass=process permissive=1
[  182.683736][T11643] loop5: detected capacity change from 0 to 2048
[  182.714349][T11643] ext4 filesystem being mounted at /585/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  182.755572][T11650] loop6: detected capacity change from 0 to 512
[  182.807496][T11650] [EXT4 FS bs=4096, gc=1, bpg=95, ipg=32, mo=e040e01c, mo2=0000]
[  182.835683][T11650] System zones: 0-2, 18-18, 34-34
[  182.863276][T11650] EXT4-fs error (device loop6): ext4_do_update_inode:5256: inode #3: comm syz.6.4662: corrupted inode contents
[  182.884235][T11650] EXT4-fs error (device loop6): ext4_dirty_inode:6121: inode #3: comm syz.6.4662: mark_inode_dirty error
[  182.898062][T11650] EXT4-fs error (device loop6): ext4_do_update_inode:5256: inode #3: comm syz.6.4662: corrupted inode contents
[  182.911723][T11650] EXT4-fs error (device loop6): __ext4_ext_dirty:202: inode #3: comm syz.6.4662: mark_inode_dirty error
[  182.926570][T11650] Quota error (device loop6): write_blk: dquota write failed
[  182.934279][T11650] Quota error (device loop6): qtree_write_dquot: Error -117 occurred while creating quota
[  182.944547][T11650] EXT4-fs error (device loop6): ext4_acquire_dquot:6801: comm syz.6.4662: Failed to acquire dquot type 0
[  182.944923][T11657] bridge0: port 1(bridge_slave_0) entered blocking state
[  182.963195][T11657] bridge0: port 1(bridge_slave_0) entered disabled state
[  182.964410][T11650] EXT4-fs (loop6): 1 orphan inode deleted
[  182.970753][T11657] device bridge_slave_0 entered promiscuous mode
[  182.979304][    T8] EXT4-fs error (device loop6): ext4_release_dquot:6837: comm kworker/u4:0: Failed to release dquot type 1
[  182.983039][T11657] bridge0: port 2(bridge_slave_1) entered blocking state
[  182.994749][T11650] ext4 filesystem being mounted at /311/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  183.000879][T11657] bridge0: port 2(bridge_slave_1) entered disabled state
[  183.023247][T11657] device bridge_slave_1 entered promiscuous mode
[  183.138716][T11657] bridge0: port 2(bridge_slave_1) entered blocking state
[  183.145785][T11657] bridge0: port 2(bridge_slave_1) entered forwarding state
[  183.153078][T11657] bridge0: port 1(bridge_slave_0) entered blocking state
[  183.160132][T11657] bridge0: port 1(bridge_slave_0) entered forwarding state
[  183.202498][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  183.210571][  T435] bridge0: port 1(bridge_slave_0) entered disabled state
[  183.217873][  T435] bridge0: port 2(bridge_slave_1) entered disabled state
[  183.239985][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  183.248238][T11674] loop4: detected capacity change from 0 to 40427
[  183.248259][  T435] bridge0: port 1(bridge_slave_0) entered blocking state
[  183.259642][T11674] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  183.261703][  T435] bridge0: port 1(bridge_slave_0) entered forwarding state
[  183.269711][T11674] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  183.276915][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  183.293267][  T435] bridge0: port 2(bridge_slave_1) entered blocking state
[  183.300317][  T435] bridge0: port 2(bridge_slave_1) entered forwarding state
[  183.307398][T11674] F2FS-fs (loop4): invalid crc value
[  183.331073][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  183.340145][T11674] F2FS-fs (loop4): Found nat_bits in checkpoint
[  183.346706][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  183.372766][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  183.381475][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  183.394453][T11657] device veth0_vlan entered promiscuous mode
[  183.401268][T11674] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  183.408524][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  183.416443][T11674] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  183.424333][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  183.432780][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  183.440914][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  183.471154][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  183.476624][T11674] syz.4.4670: attempt to access beyond end of device
[  183.476624][T11674] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  183.485685][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  183.505829][T11657] device veth1_macvtap entered promiscuous mode
[  183.518257][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  183.526003][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  183.544354][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  183.569084][  T420] device bridge_slave_1 left promiscuous mode
[  183.578084][T11705] loop6: detected capacity change from 0 to 256
[  183.584590][  T420] bridge0: port 2(bridge_slave_1) entered disabled state
[  183.600928][T11705] exFAT-fs (loop6): failed to load upcase table (idx : 0x00011e5d, chksum : 0x63a11b78, utbl_chksum : 0xe619d30d)
[  183.613141][  T420] device bridge_slave_0 left promiscuous mode
[  183.619739][  T420] bridge0: port 1(bridge_slave_0) entered disabled state
[  183.751687][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  183.763265][T11715] loop4: detected capacity change from 0 to 8192
[  183.781218][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  183.806568][T11721] loop5: detected capacity change from 0 to 128
[  183.816223][T11723] loop7: detected capacity change from 0 to 128
[  183.843489][T11723] EXT4-fs: Ignoring removed nomblk_io_submit option
[  183.857813][T11723] EXT4-fs: Ignoring removed nomblk_io_submit option
[  183.865169][T11723] EXT4-fs (loop7): Test dummy encryption mode enabled
[  183.880804][T11723] ext4 filesystem being mounted at /0/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  184.116210][T11743] loop5: detected capacity change from 0 to 256
[  184.127069][T11743] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  184.144630][T11743] exFAT-fs (loop5): hint_cluster is invalid (17)
[  184.260566][T11753] loop6: detected capacity change from 0 to 128
[  184.268745][T11753] ext4 filesystem being mounted at /325/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  184.369107][ T7949] Bluetooth: hci0: command 0x1003 tx timeout
[  184.375142][ T1129] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  184.415083][T11762] loop7: detected capacity change from 0 to 512
[  184.422057][T11762] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  184.443641][T11762] EXT4-fs (loop7): 1 truncate cleaned up
[  184.682621][T11780] loop7: detected capacity change from 0 to 40427
[  184.689658][T11780] F2FS-fs (loop7): Invalid log_blocksize (268), supports only 12
[  184.689682][T11780] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[  184.692183][T11780] F2FS-fs (loop7): invalid crc value
[  184.713610][T11780] F2FS-fs (loop7): Found nat_bits in checkpoint
[  184.744250][T11780] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0
[  184.744274][T11780] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  184.768773][T11780] syz.7.4712: attempt to access beyond end of device
[  184.768773][T11780] loop7: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  184.883587][T11789] device wireguard0 entered promiscuous mode
[  184.986439][T11795] loop2: detected capacity change from 0 to 1024
[  185.026208][T11795] ext4 filesystem being mounted at /274/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  185.031874][T11795] EXT4-fs error (device loop2): ext4_map_blocks:745: inode #15: block 3: comm syz.2.4716: lblock 3 mapped to illegal pblock 3 (length 13)
[  185.059205][T11795] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 13 with error 117
[  185.059237][T11795] EXT4-fs (loop2): This should not happen!! Data will be lost
[  185.059237][T11795] 
[  185.188212][T11811] tmpfs: Unknown parameter 'gr'
[  185.207124][ T9868] device syz_tun left promiscuous mode
[  185.207141][ T9868] bridge0: port 3(syz_tun) entered disabled state
[  185.401537][T11831] input: syz1 as /devices/virtual/input/input33
[  185.623925][T11842] bridge0: port 1(bridge_slave_0) entered blocking state
[  185.631473][T11842] bridge0: port 1(bridge_slave_0) entered disabled state
[  185.639811][T11858] loop6: detected capacity change from 0 to 512
[  185.641232][T11842] device bridge_slave_0 entered promiscuous mode
[  185.664581][T11842] bridge0: port 2(bridge_slave_1) entered blocking state
[  185.671964][T11842] bridge0: port 2(bridge_slave_1) entered disabled state
[  185.691250][T11842] device bridge_slave_1 entered promiscuous mode
[  185.698034][T11864] loop4: detected capacity change from 0 to 512
[  185.742870][T11864] [EXT4 FS bs=4096, gc=1, bpg=95, ipg=32, mo=e040e01c, mo2=0000]
[  185.763011][T11864] System zones: 0-2, 18-18, 34-34
[  185.779923][T11864] EXT4-fs error (device loop4): ext4_do_update_inode:5256: inode #3: comm syz.4.4747: corrupted inode contents
[  185.792203][T11864] EXT4-fs error (device loop4): ext4_dirty_inode:6121: inode #3: comm syz.4.4747: mark_inode_dirty error
[  185.804635][T11864] EXT4-fs error (device loop4): ext4_do_update_inode:5256: inode #3: comm syz.4.4747: corrupted inode contents
[  185.816746][T11873] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  185.816949][T11864] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #3: comm syz.4.4747: mark_inode_dirty error
[  185.835636][T11864] EXT4-fs error (device loop4): ext4_acquire_dquot:6801: comm syz.4.4747: Failed to acquire dquot type 0
[  185.847765][T11864] EXT4-fs (loop4): 1 orphan inode deleted
[  185.853584][T11864] EXT4-fs mount: 48 callbacks suppressed
[  185.853596][T11864] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  185.868264][  T334] EXT4-fs error (device loop4): ext4_release_dquot:6837: comm kworker/u4:3: Failed to release dquot type 1
[  185.886813][T11864] ext4 filesystem being mounted at /61/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  185.888495][T11875] netlink: 50 bytes leftover after parsing attributes in process `syz.2.4751'.
[  185.964762][T11039] EXT4-fs (loop4): unmounting filesystem.
[  185.991548][T11884] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only
[  186.001282][T11884] overlayfs: fs on './file0' does not support file handles, falling back to xino=off.
[  186.033886][T11891] loop6: detected capacity change from 0 to 512
[  186.034411][T11842] bridge0: port 2(bridge_slave_1) entered blocking state
[  186.047198][T11842] bridge0: port 2(bridge_slave_1) entered forwarding state
[  186.054481][T11842] bridge0: port 1(bridge_slave_0) entered blocking state
[  186.061526][T11842] bridge0: port 1(bridge_slave_0) entered forwarding state
[  186.073181][T11891] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  186.089629][ T2966] device bridge_slave_1 left promiscuous mode
[  186.091601][T11891] EXT4-fs (loop6): 1 truncate cleaned up
[  186.095784][ T2966] bridge0: port 2(bridge_slave_1) entered disabled state
[  186.110057][T11891] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  186.118679][ T2966] device bridge_slave_0 left promiscuous mode
[  186.131511][ T2966] bridge0: port 1(bridge_slave_0) entered disabled state
[  186.148132][ T7796] EXT4-fs (loop6): unmounting filesystem.
[  186.270187][T11914] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  186.302131][T11918] loop7: detected capacity change from 0 to 512
[  186.311975][  T435] bridge0: port 1(bridge_slave_0) entered disabled state
[  186.320434][  T435] bridge0: port 2(bridge_slave_1) entered disabled state
[  186.347888][T11918] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  186.366758][T11918] EXT4-fs (loop7): 1 truncate cleaned up
[  186.372522][T11918] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  186.384156][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  186.392612][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  186.415011][T11657] EXT4-fs (loop7): unmounting filesystem.
[  186.415574][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  186.436988][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  186.446743][  T420] bridge0: port 1(bridge_slave_0) entered blocking state
[  186.453818][  T420] bridge0: port 1(bridge_slave_0) entered forwarding state
[  186.462043][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  186.471244][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  186.479811][  T420] bridge0: port 2(bridge_slave_1) entered blocking state
[  186.486862][  T420] bridge0: port 2(bridge_slave_1) entered forwarding state
[  186.504441][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  186.522320][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  186.530995][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  186.544026][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  186.564783][T11936] netlink: 516 bytes leftover after parsing attributes in process `syz.6.4776'.
[  186.579761][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  186.593722][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  186.618226][T11842] device veth0_vlan entered promiscuous mode
[  186.629156][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  186.637270][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  186.652626][T11842] device veth1_macvtap entered promiscuous mode
[  186.659511][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  186.672044][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  186.679728][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  186.687921][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  186.696388][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  186.728570][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  186.739126][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  186.749096][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  186.776787][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  186.880048][T11942] loop6: detected capacity change from 0 to 40427
[  186.892872][T11942] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  186.908853][T11942] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  186.934031][T11942] F2FS-fs (loop6): invalid crc value
[  186.940611][T11942] F2FS-fs (loop6): Found nat_bits in checkpoint
[  186.976462][T11950] loop1: detected capacity change from 0 to 40427
[  186.991011][T11942] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  186.992825][T11950] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  186.998398][T11942] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  187.006376][T11950] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  187.044338][T11950] F2FS-fs (loop1): invalid crc value
[  187.051096][T11950] F2FS-fs (loop1): Found nat_bits in checkpoint
[  187.071439][T11942] syz.6.4779: attempt to access beyond end of device
[  187.071439][T11942] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  187.087428][T11950] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  187.094774][T11950] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  187.132204][ T7796] syz-executor: attempt to access beyond end of device
[  187.132204][ T7796] loop6: rw=2051, sector=45096, nr_sectors = 8 limit=40427
[  187.149309][ T7796] F2FS-fs (loop6): Issue discard(5637, 5637, 1) failed, ret: -5
[  187.163249][T11950] syz.1.4780: attempt to access beyond end of device
[  187.163249][T11950] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  187.327129][T11983] syz.6.4784[11983] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  187.327198][T11983] syz.6.4784[11983] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  187.387188][T11991] loop7: detected capacity change from 0 to 7
[  187.406404][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  187.415567][    C0] buffer_io_error: 15 callbacks suppressed
[  187.415582][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  187.431362][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  187.440562][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  187.448428][T11991]  loop7: unable to read partition table
[  187.448495][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  187.458147][T11991] loop_reread_partitions: partition scan of loop7 (���������C�j̖�P=ý?�}X���	���%��`��ր���{��֐�ȵ4FLQk݊) failed (rc=-5)
[  187.463188][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  187.466255][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  187.493632][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  187.502425][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  187.511576][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  187.519940][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  187.529080][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  187.537079][    C0] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  187.546207][    C0] Buffer I/O error on dev loop7, logical block 0, async page read
[  187.554040][T11999]  loop7: unable to read partition table
[  187.554146][    C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  187.568790][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[  187.577875][    C1] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  187.578828][T12004] netlink: 64 bytes leftover after parsing attributes in process `syz.6.4801'.
[  187.587020][    C1] Buffer I/O error on dev loop7, logical block 0, async page read
[  187.621175][T12006] device wireguard0 entered promiscuous mode
[  187.706251][   T28] kauditd_printk_skb: 14 callbacks suppressed
[  187.706267][   T28] audit: type=1326 audit(2000000009.779:8225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12012 comm="syz.2.4805" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44a6d8ebe9 code=0x7ffc0000
[  187.742939][   T28] audit: type=1326 audit(2000000009.809:8226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12012 comm="syz.2.4805" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f44a6d2add9 code=0x7ffc0000
[  187.776546][   T28] audit: type=1326 audit(2000000009.809:8227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12012 comm="syz.2.4805" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44a6d8ebe9 code=0x7ffc0000
[  187.811756][T12017] loop6: detected capacity change from 0 to 128
[  187.823517][   T28] audit: type=1326 audit(2000000009.809:8228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12012 comm="syz.2.4805" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f44a6d2add9 code=0x7ffc0000
[  187.853429][T12017] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  187.869246][T12017] ext4 filesystem being mounted at /351/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  187.876363][T12020] loop1: detected capacity change from 0 to 512
[  187.885487][   T28] audit: type=1326 audit(2000000009.809:8229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12012 comm="syz.2.4805" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44a6d8ebe9 code=0x7ffc0000
[  187.909871][   T28] audit: type=1326 audit(2000000009.809:8230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12012 comm="syz.2.4805" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44a6d8ebe9 code=0x7ffc0000
[  187.910217][ T7796] EXT4-fs (loop6): unmounting filesystem.
[  187.933360][   T28] audit: type=1326 audit(2000000009.809:8231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12012 comm="syz.2.4805" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f44a6d2add9 code=0x7ffc0000
[  187.966488][   T28] audit: type=1326 audit(2000000009.809:8232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12012 comm="syz.2.4805" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f44a6d8ebe9 code=0x7ffc0000
[  187.997049][   T28] audit: type=1326 audit(2000000009.809:8233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12012 comm="syz.2.4805" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f44a6d2add9 code=0x7ffc0000
[  188.025828][T12020] [EXT4 FS bs=4096, gc=1, bpg=95, ipg=32, mo=e040e01c, mo2=0000]
[  188.025869][   T28] audit: type=1326 audit(2000000009.809:8234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12012 comm="syz.2.4805" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f44a6d2add9 code=0x7ffc0000
[  188.049504][T12020] System zones: 0-2, 18-18, 34-34
[  188.083218][T12020] EXT4-fs error (device loop1): ext4_do_update_inode:5256: inode #3: comm syz.1.4808: corrupted inode contents
[  188.109621][T12020] EXT4-fs error (device loop1): ext4_dirty_inode:6121: inode #3: comm syz.1.4808: mark_inode_dirty error
[  188.121245][T12020] EXT4-fs error (device loop1): ext4_do_update_inode:5256: inode #3: comm syz.1.4808: corrupted inode contents
[  188.133606][T12020] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #3: comm syz.1.4808: mark_inode_dirty error
[  188.163560][T12020] EXT4-fs error (device loop1): ext4_acquire_dquot:6801: comm syz.1.4808: Failed to acquire dquot type 0
[  188.177706][T12020] EXT4-fs (loop1): 1 orphan inode deleted
[  188.186158][T12020] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  188.195226][    T8] EXT4-fs error (device loop1): ext4_release_dquot:6837: comm kworker/u4:0: Failed to release dquot type 1
[  188.195601][T12020] ext4 filesystem being mounted at /9/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  188.211188][T12026] netlink: 'syz.2.4820': attribute type 280 has an invalid length.
[  188.268036][T11842] EXT4-fs (loop1): unmounting filesystem.
[  188.339670][T12044] loop2: detected capacity change from 0 to 128
[  188.460018][T12058] loop6: detected capacity change from 0 to 2048
[  188.480128][T12058] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  188.497522][ T7796] EXT4-fs (loop6): unmounting filesystem.
[  189.089224][T12075] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  189.196294][T12091] loop6: detected capacity change from 0 to 128
[  189.204810][  T342] udevd[342]: incorrect ext4 checksum on /dev/loop6
[  189.220942][T12091] EXT4-fs (loop6): VFS: Found ext4 filesystem with unknown checksum algorithm.
[  189.239676][  T342] udevd[342]: incorrect ext4 checksum on /dev/loop6
[  189.401839][T12120] incfs: Options parsing error. -22
[  189.407094][T12120] incfs: mount failed -22
[  189.483236][T12140] 9pnet: p9_errstr2errno: server reported unknown error �@c�F	S+��
[  189.525727][T12148] x_tables: ip6_tables: CT target: only valid in raw table, not ethtool
[  189.566081][T12154] netlink: 'syz.1.4867': attribute type 1 has an invalid length.
[  189.575027][T12154] netlink: 76 bytes leftover after parsing attributes in process `syz.1.4867'.
[  189.601078][T12156] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4868'.
[  189.610160][T12156] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4868'.
[  189.669036][   T60] usb 7-1: new high-speed USB device number 10 using dummy_hcd
[  189.763350][T12144] loop4: detected capacity change from 0 to 40427
[  189.789803][T12144] F2FS-fs (loop4): invalid crc value
[  189.795972][T12144] F2FS-fs (loop4): Found nat_bits in checkpoint
[  189.829785][T12171] loop2: detected capacity change from 0 to 1024
[  189.833854][T12144] F2FS-fs (loop4): Start checkpoint disabled!
[  189.842824][T12144] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  189.878102][T12171] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  189.893322][T12171] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e800e028, mo2=0000]
[  189.902090][T12171] System zones: 0-1, 3-12
[  189.906936][T12171] EXT4-fs (loop2): orphan cleanup on readonly fs
[  189.915695][T12171] EXT4-fs error (device loop2): ext4_free_blocks:6210: comm syz.2.4874: Freeing blocks not in datazone - block = 0, count = 4096
[  189.929382][T12171] EXT4-fs (loop2): Remounting filesystem read-only
[  189.931984][  T420] kworker/u4:4: attempt to access beyond end of device
[  189.931984][  T420] loop4: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  189.935937][T12171] EXT4-fs (loop2): 1 orphan inode deleted
[  189.955564][T12171] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  190.031965][ T8618] EXT4-fs (loop2): unmounting filesystem.
[  190.088097][T12187] loop2: detected capacity change from 0 to 512
[  190.124857][T12187] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  190.143351][T12187] ext4 filesystem being mounted at /320/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  190.183664][ T8618] EXT4-fs (loop2): unmounting filesystem.
[  190.450192][T12222] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  190.459664][T12222] FAT-fs (loop9): unable to read boot sector
[  190.519879][T12231] loop4: detected capacity change from 0 to 128
[  190.809478][T12268] device wireguard0 entered promiscuous mode
[  190.818960][T12271] device bridge0 entered promiscuous mode
[  190.825193][T12271] bridge0: port 3(macsec1) entered blocking state
[  190.831755][T12271] bridge0: port 3(macsec1) entered disabled state
[  190.838629][T12271] device bridge0 left promiscuous mode
[  190.979083][   T60] usb 7-1: new high-speed USB device number 11 using dummy_hcd
[  191.041838][T12300] loop4: detected capacity change from 0 to 512
[  191.067654][T12300] EXT4-fs (loop4): orphan cleanup on readonly fs
[  191.080319][T12300] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.4931: bg 0: block 248: padding at end of block bitmap is not set
[  191.099055][T12300] EXT4-fs error (device loop4): ext4_acquire_dquot:6801: comm syz.4.4931: Failed to acquire dquot type 1
[  191.119842][T12300] EXT4-fs (loop4): 1 truncate cleaned up
[  191.127146][T12305] device wireguard0 entered promiscuous mode
[  191.144358][T12300] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  191.163109][T12300] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended
[  191.180840][T12300] EXT4-fs warning (device loop4): read_mmp_block:115: Error -117 while reading MMP block 0
[  191.190988][   T60] usb 7-1: Using ep0 maxpacket: 32
[  191.203058][   T60] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 128, changing to 11
[  191.216305][   T60] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[  191.226191][   T60] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[  191.229763][T11039] EXT4-fs (loop4): unmounting filesystem.
[  191.241923][T12315] input: syz0 as /devices/virtual/input/input35
[  191.248587][   T60] usb 7-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68
[  191.263355][   T60] usb 7-1: New USB device strings: Mfr=17, Product=2, SerialNumber=3
[  191.281388][   T60] usb 7-1: Product: syz
[  191.286163][   T60] usb 7-1: Manufacturer: syz
[  191.291752][   T60] usb 7-1: SerialNumber: syz
[  191.310035][   T60] usb 7-1: config 0 descriptor??
[  191.312992][  T420] Bluetooth: hci0: Frame reassembly failed (-84)
[  191.350357][T12329] loop2: detected capacity change from 0 to 256
[  191.356968][T12329] FAT-fs (loop2): Unrecognized mount option "��������" or missing value
[  191.383972][T12333] loop1: detected capacity change from 0 to 512
[  191.409517][T12333] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.4947: casefold flag without casefold feature
[  191.422258][T12341] device ip6_vti0 entered promiscuous mode
[  191.432173][T12333] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.4947: couldn't read orphan inode 15 (err -117)
[  191.447200][T12333] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  191.474592][T11842] EXT4-fs (loop1): unmounting filesystem.
[  191.534584][   T60] usb 7-1: USB disconnect, device number 11
[  191.585595][   T24] hid-generic 0000:0004:0000.0016: unknown main item tag 0x0
[  191.593363][   T24] hid-generic 0000:0004:0000.0016: unknown main item tag 0x0
[  191.609083][   T24] hid-generic 0000:0004:0000.0016: unknown main item tag 0x0
[  191.618558][   T24] hid-generic 0000:0004:0000.0016: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  191.672170][T12362] fido_id[12362]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  192.173822][T12414] hub 6-0:1.0: USB hub found
[  192.178470][T12414] hub 6-0:1.0: 1 port detected
[  192.202448][T12418] syzkaller1: tun_chr_ioctl cmd 1074025677
[  192.208326][T12418] syzkaller1: linktype set to 773
[  192.329884][T12428] SELinux:  Context system_u:object_r:systemd_logind_var_run_t:s0 is not valid (left unmapped).
[  192.808814][T12455] loop2: detected capacity change from 0 to 512
[  192.821648][T12455] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  192.830698][T12455] ext4 filesystem being mounted at /333/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  192.851074][ T8618] EXT4-fs (loop2): unmounting filesystem.
[  192.917739][   T28] kauditd_printk_skb: 536 callbacks suppressed
[  192.917755][   T28] audit: type=1400 audit(2000000014.989:8766): avc:  denied  { shutdown } for  pid=12468 comm="syz.6.5005" laddr=127.0.0.1 lport=255 faddr=224.0.0.1 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1
[  193.329030][ T7949] Bluetooth: hci0: command 0x1003 tx timeout
[  193.329124][ T1129] Bluetooth: hci0: Opcode 0x1003 failed: -110
[  193.448015][T12498] device wireguard0 entered promiscuous mode
[  193.580298][T12514] loop1: detected capacity change from 0 to 2048
[  193.631641][T12514] Alternate GPT is invalid, using primary GPT.
[  193.637870][T12514]  loop1: p1 p2 p3
[  193.660514][T12518] loop2: detected capacity change from 0 to 256
[  193.694706][T12518] FAT-fs (loop2): Directory bread(block 64) failed
[  193.702766][T12518] FAT-fs (loop2): Directory bread(block 65) failed
[  193.716559][  T103] udevd[103]: worker [342] terminated by signal 33 (Unknown signal 33)
[  193.718089][T12518] FAT-fs (loop2): Directory bread(block 66) failed
[  193.725206][  T103] udevd[103]: worker [342] failed while handling '/devices/virtual/block/loop1'
[  193.733174][T12518] FAT-fs (loop2): Directory bread(block 67) failed
[  193.747863][T12518] FAT-fs (loop2): Directory bread(block 68) failed
[  193.754469][T12518] FAT-fs (loop2): Directory bread(block 69) failed
[  193.761203][T12518] FAT-fs (loop2): Directory bread(block 70) failed
[  193.767759][T12518] FAT-fs (loop2): Directory bread(block 71) failed
[  193.769363][   T60] usb 7-1: new high-speed USB device number 12 using dummy_hcd
[  193.774458][T12518] FAT-fs (loop2): Directory bread(block 72) failed
[  193.788600][T12518] FAT-fs (loop2): Directory bread(block 73) failed
[  193.799775][  T868] udevd[868]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  193.815785][  T341] udevd[341]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[  193.826842][  T336] udevd[336]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory
[  193.928077][T12536] loop2: detected capacity change from 0 to 512
[  193.942651][T12536] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  193.959807][T12536] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  193.969760][   T60] usb 7-1: Using ep0 maxpacket: 32
[  193.979833][T12536] EXT4-fs error (device loop2): ext4_xattr_block_get:546: inode #15: comm syz.2.5033: corrupted xattr block 19
[  193.982938][   T60] usb 7-1: unable to get BOS descriptor or descriptor too short
[  194.001734][T12536] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[  194.010950][T12536] EXT4-fs error (device loop2): ext4_xattr_block_get:546: inode #15: comm syz.2.5033: corrupted xattr block 19
[  194.022948][   T60] usb 7-1: config 1 interface 0 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 16
[  194.033300][T12536] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop2 ino=15
[  194.042279][   T60] usb 7-1: config 1 interface 0 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 64
[  194.052180][T12536] EXT4-fs error (device loop2): ext4_xattr_block_get:546: inode #15: comm syz.2.5033: corrupted xattr block 19
[  194.063951][   T60] usb 7-1: config 1 interface 0 altsetting 1 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  194.076840][   T60] usb 7-1: config 1 interface 0 has no altsetting 0
[  194.089630][ T8618] EXT4-fs (loop2): unmounting filesystem.
[  194.090150][   T60] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  194.104634][   T60] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  194.112640][   T60] usb 7-1: Product: syz
[  194.116857][   T60] usb 7-1: Manufacturer: syz
[  194.121566][   T60] usb 7-1: SerialNumber: syz
[  194.140850][T12504] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22
[  194.148383][T12504] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22
[  194.184097][T12551] netlink: 96 bytes leftover after parsing attributes in process `syz.2.5041'.
[  194.212076][T12555] syz.1.5042[12555] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  194.212146][T12555] syz.1.5042[12555] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  194.246671][T12559] loop2: detected capacity change from 0 to 128
[  194.285836][T12559] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  194.355298][ T8618] EXT4-fs (loop2): unmounting filesystem.
[  194.371847][   T60] cdc_ether: probe of 7-1:1.0 failed with error -71
[  194.372623][T12569] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5049'.
[  194.385565][   T60] usb 7-1: USB disconnect, device number 12
[  194.555400][   T28] audit: type=1326 audit(194.540:8767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12593 comm="syz.2.5060" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f44a6d8ebe9 code=0x0
[  195.034886][T12603] loop6: detected capacity change from 0 to 40427
[  195.051576][T12603] F2FS-fs (loop6): Invalid SB checksum offset: 0
[  195.063203][T12603] F2FS-fs (loop6): Can't find valid F2FS filesystem in 2th superblock
[  195.079099][T12603] F2FS-fs (loop6): invalid crc value
[  195.086805][T12603] F2FS-fs (loop6): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  195.152282][T12603] F2FS-fs (loop6): Try to recover 2th superblock, ret: 0
[  195.161473][T12603] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  195.196430][   T28] audit: type=1400 audit(195.180:8768): avc:  denied  { execute } for  pid=12602 comm="syz.6.5063" path="/386/file1/bus" dev="loop6" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[  195.226070][   T28] audit: type=1400 audit(195.210:8769): avc:  denied  { unmount } for  pid=12628 comm="syz.7.5073" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:devpts_t tclass=filesystem permissive=1
[  195.282414][ T7796] syz-executor: attempt to access beyond end of device
[  195.282414][ T7796] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  195.408604][   T28] audit: type=1400 audit(195.390:8770): avc:  denied  { remount } for  pid=12640 comm="syz.6.5078" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  195.456615][T12651] loop6: detected capacity change from 0 to 512
[  195.459754][T12649] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5082'.
[  195.474093][T12649] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5082'.
[  195.483483][T12649] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5082'.
[  195.483955][   T28] audit: type=1400 audit(195.480:8771): avc:  denied  { nlmsg_read } for  pid=12652 comm="syz.2.5084" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  195.512917][T12653] netlink: 104 bytes leftover after parsing attributes in process `syz.2.5084'.
[  195.517543][T12651] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  195.589346][ T7796] EXT4-fs (loop6): unmounting filesystem.
[  195.620137][T12675] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5094'.
[  195.978988][   T19] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  196.003990][T12689] netlink: 104 bytes leftover after parsing attributes in process `syz.1.5099'.
[  196.160006][   T19] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  196.170183][   T19] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  196.179736][   T19] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  196.188760][   T19] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  196.196756][   T19] usb 3-1: SerialNumber: syz
[  196.404220][   T19] usb 3-1: 0:2 : does not exist
[  196.410530][   T19] usb 3-1: USB disconnect, device number 11
[  196.595664][T12702] loop1: detected capacity change from 0 to 512
[  196.600517][T12705] loop4: detected capacity change from 0 to 1024
[  196.608446][T12702] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  196.620079][  T868] udevd[868]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[  196.635663][T12705] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  196.641557][T12702] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  196.661071][T12703] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  196.673954][T12702] EXT4-fs error (device loop1): ext4_xattr_block_get:546: inode #15: comm syz.1.5105: corrupted xattr block 19
[  196.683359][T11039] EXT4-fs error (device loop4): ext4_readdir:263: inode #11: block 32: comm syz-executor: path /116/file0/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=792, inode=0, rec_len=0, size=1024 fake=0
[  196.686738][T12702] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop1 ino=15
[  196.708632][T11039] VFS: Lookup of '.' in ext4 loop4 would have caused loop
[  196.719329][T12702] EXT4-fs error (device loop1): ext4_xattr_block_get:546: inode #15: comm syz.1.5105: corrupted xattr block 19
[  196.724458][T11039] VFS: Lookup of '.' in ext4 loop4 would have caused loop
[  196.736276][T12702] SELinux: inode_doinit_use_xattr:  getxattr returned 117 for dev=loop1 ino=15
[  196.752267][T12702] EXT4-fs error (device loop1): ext4_xattr_block_get:546: inode #15: comm syz.1.5105: corrupted xattr block 19
[  196.792202][T11842] EXT4-fs (loop1): unmounting filesystem.
[  196.851589][T11039] EXT4-fs (loop4): unmounting filesystem.
[  196.995314][T12722] bridge0: port 1(bridge_slave_0) entered blocking state
[  197.002443][T12722] bridge0: port 1(bridge_slave_0) entered disabled state
[  197.010522][T12722] device bridge_slave_0 entered promiscuous mode
[  197.017522][T12722] bridge0: port 2(bridge_slave_1) entered blocking state
[  197.026996][T12722] bridge0: port 2(bridge_slave_1) entered disabled state
[  197.034398][T12722] device bridge_slave_1 entered promiscuous mode
[  197.083310][T12731] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  197.130969][T12722] bridge0: port 2(bridge_slave_1) entered blocking state
[  197.138057][T12722] bridge0: port 2(bridge_slave_1) entered forwarding state
[  197.145341][T12722] bridge0: port 1(bridge_slave_0) entered blocking state
[  197.152373][T12722] bridge0: port 1(bridge_slave_0) entered forwarding state
[  197.182947][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  197.191922][  T420] bridge0: port 1(bridge_slave_0) entered disabled state
[  197.199302][  T420] bridge0: port 2(bridge_slave_1) entered disabled state
[  197.208663][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  197.217340][  T420] bridge0: port 1(bridge_slave_0) entered blocking state
[  197.224391][  T420] bridge0: port 1(bridge_slave_0) entered forwarding state
[  197.239751][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  197.248226][  T420] bridge0: port 2(bridge_slave_1) entered blocking state
[  197.255273][  T420] bridge0: port 2(bridge_slave_1) entered forwarding state
[  197.277612][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  197.286085][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  197.298874][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  197.307166][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  197.325103][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  197.334310][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  197.344988][T12722] device veth0_vlan entered promiscuous mode
[  197.351438][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  197.359922][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  197.369441][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  197.376862][  T420] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  197.397403][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  197.405720][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  197.415462][T12722] device veth1_macvtap entered promiscuous mode
[  197.428190][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  197.436357][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  197.444838][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  197.459056][ T1038] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  197.467786][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  197.476592][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  197.508019][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  197.608393][T12772] loop6: detected capacity change from 0 to 512
[  197.616077][  T435] device bridge_slave_1 left promiscuous mode
[  197.622534][  T435] bridge0: port 2(bridge_slave_1) entered disabled state
[  197.630152][T12772] EXT4-fs: Ignoring removed i_version option
[  197.630777][  T435] device bridge_slave_0 left promiscuous mode
[  197.636492][T12772] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  197.642688][  T435] bridge0: port 1(bridge_slave_0) entered disabled state
[  197.659882][ T1038] usb 3-1: Using ep0 maxpacket: 32
[  197.661769][T12772] EXT4-fs (loop6): 1 truncate cleaned up
[  197.670788][  T435] device veth0_vlan left promiscuous mode
[  197.671984][ T1038] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 128, changing to 11
[  197.676707][T12772] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  197.692370][ T1038] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[  197.710534][ T1038] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[  197.731081][ T1038] usb 3-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68
[  197.743953][ T1038] usb 3-1: New USB device strings: Mfr=17, Product=2, SerialNumber=3
[  197.752118][ T1038] usb 3-1: Product: syz
[  197.756294][ T1038] usb 3-1: Manufacturer: syz
[  197.760919][ T1038] usb 3-1: SerialNumber: syz
[  197.766106][ T1038] usb 3-1: config 0 descriptor??
[  197.808036][T12781] loop3: detected capacity change from 0 to 2048
[  197.823271][ T7796] EXT4-fs (loop6): unmounting filesystem.
[  197.857879][T12781] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  197.933290][T12781] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.5137: bg 0: block 234: padding at end of block bitmap is not set
[  197.952008][T12781] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  197.964671][T12781] EXT4-fs (loop3): This should not happen!! Data will be lost
[  197.964671][T12781] 
[  197.974969][T12781] EXT4-fs (loop3): Total free blocks count 0
[  197.981166][T12781] EXT4-fs (loop3): Free/Dirty block details
[  197.987129][T12781] EXT4-fs (loop3): free_blocks=0
[  197.992803][T12781] EXT4-fs (loop3): dirty_blocks=2528
[  197.998275][T12781] EXT4-fs (loop3): Block reservation details
[  198.004807][T12781] EXT4-fs (loop3): i_reserved_data_blocks=158
[  198.015423][ T1038] usb 3-1: USB disconnect, device number 12
[  198.070117][  T420] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 462 with error 28
[  198.138702][T12812] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  198.147992][T12812] FAT-fs (loop3): unable to read boot sector
[  198.327947][T12822] loop3: detected capacity change from 0 to 40427
[  198.344938][T12822] F2FS-fs (loop3): invalid crc value
[  198.362201][T12822] F2FS-fs (loop3): Found nat_bits in checkpoint
[  198.389785][T12822] F2FS-fs (loop3): Start checkpoint disabled!
[  198.396433][T12822] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  198.437097][  T420] kworker/u4:4: attempt to access beyond end of device
[  198.437097][  T420] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  198.600133][T12845] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5163'.
[  198.609407][T12845] netlink: 28 bytes leftover after parsing attributes in process `syz.2.5163'.
[  199.238331][T12887] loop6: detected capacity change from 0 to 128
[  199.246544][T12887] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  199.287122][ T7796] EXT4-fs (loop6): unmounting filesystem.
[  199.319017][ T2840] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  199.465814][T12917] loop3: detected capacity change from 0 to 8
[  199.477828][    T8] loop: Write error at byte offset 0, length 4096.
[  199.484620][    C0] I/O error, dev loop3, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 2
[  199.494032][    C0] Buffer I/O error on dev loop3, logical block 0, lost async page write
[  199.499013][ T2840] usb 2-1: Using ep0 maxpacket: 32
[  199.507723][T12921] loop2: detected capacity change from 0 to 512
[  199.515578][T12921] EXT4-fs (loop2): Test dummy encryption mode enabled
[  199.522913][ T2840] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 128, changing to 11
[  199.534809][T12921] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  199.538998][   T28] audit: type=1400 audit(199.530:8772): avc:  denied  { read } for  pid=12908 comm="syz.6.5190" path="socket:[80667]" dev="sockfs" ino=80667 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1
[  199.545094][ T2840] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[  199.577877][ T2840] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[  199.582031][T12921] EXT4-fs error (device loop2): ext4_orphan_get:1426: comm syz.2.5196: bad orphan inode 131083
[  199.604317][T12921] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  199.615256][ T2840] usb 2-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68
[  199.626489][ T2840] usb 2-1: New USB device strings: Mfr=17, Product=2, SerialNumber=3
[  199.635072][ T2840] usb 2-1: Product: syz
[  199.639307][ T2840] usb 2-1: Manufacturer: syz
[  199.643941][ T2840] usb 2-1: SerialNumber: syz
[  199.652580][ T2840] usb 2-1: config 0 descriptor??
[  199.658785][ T8618] EXT4-fs (loop2): unmounting filesystem.
[  199.665433][T12928] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12928 comm=syz.3.5197
[  199.756573][T12946] netlink: 84 bytes leftover after parsing attributes in process `syz.2.5206'.
[  199.829643][T12949] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=8192 sclass=netlink_route_socket pid=12949 comm=syz.2.5207
[  199.842508][T12949] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5207'.
[  199.906530][   T60] usb 2-1: USB disconnect, device number 4
[  199.971966][T12961] device bridge0 entered promiscuous mode
[  199.977700][T12961] device macsec1 entered promiscuous mode
[  199.983889][T12961] bridge0: port 3(macsec1) entered blocking state
[  199.990311][T12961] bridge0: port 3(macsec1) entered disabled state
[  199.997342][T12961] device bridge0 left promiscuous mode
[  200.260091][   T28] audit: type=1326 audit(200.260:8773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12908 comm="syz.6.5190" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef0a98ebe9 code=0x7fc00000
[  200.346601][T12970] loop6: detected capacity change from 0 to 8192
[  200.389392][T12970]  loop6: p1 p2 p3 p4
[  200.394731][T12970] loop6: p3 start 331777 is beyond EOD, truncated
[  200.401228][T12970] loop6: p4 size 262144 extends beyond EOD, truncated
[  200.467260][  T336] udevd[336]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory
[  200.469051][  T341] udevd[341]: inotify_add_watch(7, /dev/loop6p4, 10) failed: No such file or directory
[  200.488493][  T868] udevd[868]: inotify_add_watch(7, /dev/loop6p1, 10) failed: No such file or directory
[  200.563827][T12987] loop1: detected capacity change from 0 to 128
[  200.569347][T12987] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  200.618349][T11842] EXT4-fs (loop1): unmounting filesystem.
[  200.807798][T12994] loop3: detected capacity change from 0 to 40427
[  200.814595][T12994] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  200.814620][T12994] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  200.831293][T12994] F2FS-fs (loop3): invalid crc value
[  200.832553][T12994] F2FS-fs (loop3): Found nat_bits in checkpoint
[  200.870212][T12994] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  200.870237][T12994] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  201.326136][T13029] netlink: 'syz.6.5243': attribute type 1 has an invalid length.
[  201.333989][T13029] netlink: 'syz.6.5243': attribute type 2 has an invalid length.
[  201.334109][    T6] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  201.343582][T13029] netlink: 'syz.6.5243': attribute type 1 has an invalid length.
[  201.356994][T13029] netlink: 'syz.6.5243': attribute type 2 has an invalid length.
[  201.388014][   T28] audit: type=1326 audit(201.370:8774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13032 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef0a98ebe9 code=0x7ffc0000
[  201.399003][   T60] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  201.410803][   T28] audit: type=1326 audit(201.370:8775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13032 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fef0a98ebe9 code=0x7ffc0000
[  201.440519][   T28] audit: type=1326 audit(201.430:8776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13032 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef0a98ebe9 code=0x7ffc0000
[  201.462884][   T28] audit: type=1326 audit(201.430:8777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13032 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef0a98ebe9 code=0x7ffc0000
[  201.490877][   T28] audit: type=1326 audit(201.440:8778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13032 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7fef0a98ebe9 code=0x7ffc0000
[  201.513324][   T28] audit: type=1326 audit(201.440:8779): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13032 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef0a98ebe9 code=0x7ffc0000
[  201.535718][   T28] audit: type=1326 audit(201.440:8780): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13032 comm="gtp" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef0a98ebe9 code=0x7ffc0000
[  201.558999][    T6] usb 4-1: Using ep0 maxpacket: 32
[  201.565452][    T6] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 128, changing to 11
[  201.577004][    T6] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[  201.586946][    T6] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[  201.597947][    T6] usb 4-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68
[  201.606998][    T6] usb 4-1: New USB device strings: Mfr=17, Product=2, SerialNumber=3
[  201.615169][    T6] usb 4-1: Product: syz
[  201.619391][    T6] usb 4-1: Manufacturer: syz
[  201.623953][    T6] usb 4-1: SerialNumber: syz
[  201.628984][   T60] usb 2-1: Using ep0 maxpacket: 16
[  201.634734][    T6] usb 4-1: config 0 descriptor??
[  201.639986][   T60] usb 2-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  201.648692][   T60] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  201.658960][   T60] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  201.671974][   T60] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  201.681186][   T60] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  201.689442][   T60] usb 2-1: Product: syz
[  201.693623][   T60] usb 2-1: Manufacturer: syz
[  201.698188][   T60] usb 2-1: SerialNumber: syz
[  201.851997][ T1038] usb 4-1: USB disconnect, device number 11
[  201.990103][T13051] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  202.105012][   T60] usb 2-1: 0:2 : does not exist
[  202.334966][T13063] xt_bpf: check failed: parse error
[  202.429551][T13071] netlink: 96 bytes leftover after parsing attributes in process `syz.3.5262'.
[  202.482385][T13065] loop2: detected capacity change from 0 to 40427
[  202.489938][T13065] F2FS-fs (loop2): Invalid log sectorsize (512)
[  202.490815][   T28] audit: type=1400 audit(202.480:8781): avc:  denied  { ioctl } for  pid=13074 comm="syz.3.5264" path="socket:[81150]" dev="sockfs" ino=81150 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1
[  202.496205][T13065] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  202.529957][T13065] F2FS-fs (loop2): fault_injection options not supported
[  202.537020][T13065] F2FS-fs (loop2): Image doesn't support compression
[  202.543749][T13065] F2FS-fs (loop2): Image doesn't support compression
[  202.553219][T13065] F2FS-fs (loop2): invalid crc value
[  202.559535][T13065] F2FS-fs (loop2): Found nat_bits in checkpoint
[  202.590776][T13065] F2FS-fs (loop2): Try to recover 1th superblock, ret: -30
[  202.598069][T13065] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  202.623296][   T60] usb 2-1: USB disconnect, device number 5
[  202.655875][T13080] kvm [13079]: vcpu2, guest rIP: 0x9134 ignored wrmsr: 0x11e data 0x0
[  202.666506][T13080] kvm [13079]: vcpu2, guest rIP: 0x9134 disabled perfctr wrmsr: 0x187 data 0x913600000000
[  202.742088][T13090] xt_bpf: check failed: parse error
[  202.843180][  T868] udevd[868]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory
[  202.953443][T13122] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5285'.
[  202.967782][T13122] netlink: 16 bytes leftover after parsing attributes in process `syz.6.5285'.
[  202.989327][T13124] device bridge0 entered promiscuous mode
[  203.001708][T13124] device macsec0 entered promiscuous mode
[  203.007936][T13124] bridge0: port 3(macsec0) entered blocking state
[  203.015190][T13124] bridge0: port 3(macsec0) entered disabled state
[  203.022523][T13124] device bridge0 left promiscuous mode
[  203.055072][T13132] loop1: detected capacity change from 0 to 256
[  203.094821][T13132] FAT-fs (loop1): Directory bread(block 64) failed
[  203.101651][T13132] FAT-fs (loop1): Directory bread(block 65) failed
[  203.108248][T13132] FAT-fs (loop1): Directory bread(block 66) failed
[  203.115998][T13132] FAT-fs (loop1): Directory bread(block 67) failed
[  203.122824][T13132] FAT-fs (loop1): Directory bread(block 68) failed
[  203.140143][T13132] FAT-fs (loop1): Directory bread(block 69) failed
[  203.155965][T13132] FAT-fs (loop1): Directory bread(block 70) failed
[  203.165742][T13132] FAT-fs (loop1): Directory bread(block 71) failed
[  203.193765][T13132] FAT-fs (loop1): Directory bread(block 72) failed
[  203.201027][T13132] FAT-fs (loop1): Directory bread(block 73) failed
[  203.263375][T13132] syz.1.5289: attempt to access beyond end of device
[  203.263375][T13132] loop1: rw=0, sector=1768, nr_sectors = 4 limit=256
[  203.317468][T13163] device bridge0 entered promiscuous mode
[  203.324543][T13163] device macsec1 entered promiscuous mode
[  203.333410][T13163] bridge0: port 3(macsec1) entered blocking state
[  203.340370][T13163] bridge0: port 3(macsec1) entered disabled state
[  203.359972][T13163] device bridge0 left promiscuous mode
[  203.428465][T13176] x_tables: duplicate underflow at hook 4
[  203.501942][T13189] loop7: detected capacity change from 0 to 128
[  203.512318][T13189] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  203.552350][T11657] EXT4-fs (loop7): unmounting filesystem.
[  203.587431][T13199] loop6: detected capacity change from 0 to 256
[  203.596470][T13201] input: syz1 as /devices/virtual/input/input37
[  203.679276][T13206] sch_fq: defrate 4294967295 ignored.
[  203.766816][T13212] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  203.778172][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[  203.786385][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  203.794841][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[  203.803287][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  203.811541][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  203.819737][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  203.827880][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  203.835946][  T435] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  203.889019][   T19] usb 7-1: new high-speed USB device number 13 using dummy_hcd
[  204.058899][T13229] loop7: detected capacity change from 0 to 128
[  204.065643][T13229] FAT-fs (loop7): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  204.077987][T13229] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  204.088985][   T19] usb 7-1: Using ep0 maxpacket: 32
[  204.095241][   T19] usb 7-1: config index 0 descriptor too short (expected 29220, got 36)
[  204.104972][   T19] usb 7-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  204.113638][   T19] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 81
[  204.113988][ T2966] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  204.122668][   T19] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid maxpacket 2763, setting to 1024
[  204.142773][   T19] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 1024
[  204.152814][   T19] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  204.168979][   T19] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  204.189599][   T19] usb 7-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  204.241964][   T19] usb 7-1: New USB device found, idVendor=03f0, idProduct=0004, bcdDevice= 0.40
[  204.268595][   T19] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  204.291166][   T19] usb 7-1: config 0 descriptor??
[  204.304757][T13199] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[  204.328677][   T19] usblp0: Disabling reads from problematic bidirectional printer
[  204.385327][T13265] device sit0 entered promiscuous mode
[  204.397731][T13265] netlink: 'syz.1.5352': attribute type 1 has an invalid length.
[  204.409954][T13265] netlink: 9 bytes leftover after parsing attributes in process `syz.1.5352'.
[  204.442445][T13272] syz.3.5356[13272] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  204.442518][T13272] syz.3.5356[13272] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  204.543129][   T19] usblp 7-1:0.0: usblp0: USB Unidirectional printer dev 13 if 0 alt 0 proto 3 vid 0x03F0 pid 0x0004
[  204.568551][   T19] usb 7-1: USB disconnect, device number 13
[  204.575896][   T28] kauditd_printk_skb: 2 callbacks suppressed
[  204.575909][   T28] audit: type=1400 audit(204.560:8784): avc:  denied  { write } for  pid=13287 comm="syz.1.5364" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  204.601783][   T19] usblp0: removed
[  204.623326][   T28] audit: type=1400 audit(204.600:8785): avc:  denied  { read write } for  pid=12722 comm="syz-executor" name="loop3" dev="devtmpfs" ino=121 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  204.681840][   T28] audit: type=1400 audit(204.600:8786): avc:  denied  { open } for  pid=12722 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=121 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  204.709626][   T28] audit: type=1400 audit(204.600:8787): avc:  denied  { ioctl } for  pid=12722 comm="syz-executor" path="/dev/loop3" dev="devtmpfs" ino=121 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  204.736904][T13305] netlink: 96 bytes leftover after parsing attributes in process `syz.3.5372'.
[  204.754188][   T28] audit: type=1400 audit(204.630:8788): avc:  denied  { bpf } for  pid=13299 comm="syz.1.5369" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  204.776202][   T28] audit: type=1400 audit(204.640:8789): avc:  denied  { prog_load } for  pid=13299 comm="syz.1.5369" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  204.797635][   T28] audit: type=1400 audit(204.640:8790): avc:  denied  { perfmon } for  pid=13299 comm="syz.1.5369" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  204.832522][T13313] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  204.845842][   T28] audit: type=1400 audit(204.650:8791): avc:  denied  { map_create } for  pid=13298 comm="syz.2.5370" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  204.845866][   T28] audit: type=1400 audit(204.650:8792): avc:  denied  { map_read map_write } for  pid=13298 comm="syz.2.5370" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  204.845883][   T28] audit: type=1400 audit(204.650:8793): avc:  denied  { prog_run } for  pid=13299 comm="syz.1.5369" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  204.846780][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready
[  204.847032][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  204.847274][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready
[  204.847477][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  204.847698][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  204.847917][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  204.946676][T13317] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  205.092142][T13326] loop3: detected capacity change from 0 to 512
[  205.102991][T13326] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  205.130381][T13326] EXT4-fs error (device loop3): ext4_validate_block_bitmap:429: comm syz.3.5381: bg 0: block 5: invalid block bitmap
[  205.144178][T13326] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  205.153290][T13332] device sit0 entered promiscuous mode
[  205.156093][T13326] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.5381: invalid indirect mapped block 3 (level 2)
[  205.180463][T13326] EXT4-fs (loop3): 2 truncates cleaned up
[  205.189516][T13326] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  205.191182][T13332] netlink: 'syz.6.5383': attribute type 1 has an invalid length.
[  205.206471][T13332] netlink: 9 bytes leftover after parsing attributes in process `syz.6.5383'.
[  205.244445][T12722] EXT4-fs (loop3): unmounting filesystem.
[  205.436682][T13363] loop3: detected capacity change from 0 to 1024
[  205.443487][T13363] EXT4-fs: Ignoring removed bh option
[  205.462581][T13363] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  205.498077][T12722] EXT4-fs (loop3): unmounting filesystem.
[  205.527416][T13371] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5400'.
[  205.722834][T13403] loop2: detected capacity change from 0 to 512
[  205.732080][T13403] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  205.742798][T13403] EXT4-fs (loop2): orphan cleanup on readonly fs
[  205.749360][T13403] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:511: comm syz.2.5415: Block bitmap for bg 0 marked uninitialized
[  205.762901][T13403] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6170: Corrupt filesystem
[  205.771969][T13403] EXT4-fs (loop2): 1 orphan inode deleted
[  205.777725][T13403] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  205.787966][T13403] EXT4-fs (loop2): re-mounted. Quota mode: none.
[  205.797621][ T8618] EXT4-fs (loop2): unmounting filesystem.
[  205.811585][T13407] device sit0 entered promiscuous mode
[  205.822655][T13407] netlink: 'syz.2.5416': attribute type 1 has an invalid length.
[  205.846543][T13407] netlink: 9 bytes leftover after parsing attributes in process `syz.2.5416'.
[  205.871078][T13409] xt_bpf: check failed: parse error
[  206.084616][T13446] loop2: detected capacity change from 0 to 512
[  206.113845][T13446] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.5434: casefold flag without casefold feature
[  206.131088][T13446] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.5434: couldn't read orphan inode 15 (err -117)
[  206.144492][T13446] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  206.162345][ T8618] EXT4-fs (loop2): unmounting filesystem.
[  206.257258][T13465] Invalid ELF header len 16
[  206.304703][T13473] input: syz1 as /devices/virtual/input/input38
[  206.342268][T13477] device bridge0 entered promiscuous mode
[  206.348096][T13477] device macsec1 entered promiscuous mode
[  206.355612][T13477] bridge0: port 3(macsec1) entered blocking state
[  206.362117][T13477] bridge0: port 3(macsec1) entered disabled state
[  206.369326][T13477] device bridge0 left promiscuous mode
[  206.616806][T13502] netlink: 'syz.6.5459': attribute type 6 has an invalid length.
[  206.748996][   T60] usb 4-1: new full-speed USB device number 12 using dummy_hcd
[  206.862885][T13510] loop1: detected capacity change from 0 to 512
[  206.880822][T13510] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  206.900560][T11842] EXT4-fs (loop1): unmounting filesystem.
[  206.913799][T13514] xt_hashlimit: size too large, truncated to 1048576
[  206.940079][   T60] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  206.951463][   T60] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 512, setting to 64
[  206.962378][   T60] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 1024, setting to 64
[  206.976705][   T60] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64
[  206.989043][   T60] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  206.998196][   T60] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  207.006269][   T60] usb 4-1: Product: syz
[  207.010558][   T60] usb 4-1: Manufacturer: syz
[  207.015197][   T60] usb 4-1: SerialNumber: syz
[  207.021474][T13494] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  207.230086][T13494] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  207.237261][T13494] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  207.468984][  T313] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  207.514797][T13557] loop6: detected capacity change from 0 to 1024
[  207.535622][T13557] EXT4-fs: Ignoring removed bh option
[  207.540922][T13545] loop1: detected capacity change from 0 to 40427
[  207.558512][T13545] F2FS-fs (loop1): invalid crc value
[  207.565218][T13545] F2FS-fs (loop1): Found nat_bits in checkpoint
[  207.572560][T13557] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  207.625009][ T7796] EXT4-fs (loop6): unmounting filesystem.
[  207.633265][T13545] F2FS-fs (loop1): Start checkpoint disabled!
[  207.649566][T13545] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  207.657815][T13563] loop6: detected capacity change from 0 to 256
[  207.660016][  T313] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  207.664921][T13563] exFAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  207.685740][T13563] exFAT-fs (loop6): Medium has reported failures. Some data may be lost.
[  207.708980][  T313] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  207.709131][T13563] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  207.728870][  T313] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  207.749087][  T313] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  207.768263][  T313] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  207.777228][  T313] usb 3-1: config 0 descriptor??
[  207.953233][T13591] loop6: detected capacity change from 0 to 256
[  208.047223][   T60] cdc_ncm 4-1:1.0: bind() failure
[  208.049301][T13601] loop7: detected capacity change from 0 to 512
[  208.054480][   T60] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found
[  208.077829][T13601] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  208.085538][   T60] cdc_ncm 4-1:1.1: bind() failure
[  208.110254][   T60] usb 4-1: USB disconnect, device number 12
[  208.127140][T11657] EXT4-fs (loop7): unmounting filesystem.
[  208.129357][T13607] loop6: detected capacity change from 0 to 2048
[  208.138014][T13605] 9pnet: p9_errstr2errno: server reported unknown error �@�
[  208.187116][  T313] plantronics 0003:047F:FFFF.0017: No inputs registered, leaving
[  208.195351][T13607]  loop6: p1 < > p4
[  208.200908][T13607] loop6: p4 size 8388608 extends beyond EOD, truncated
[  208.211125][  T313] plantronics 0003:047F:FFFF.0017: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  208.271719][  T336] udevd[336]: inotify_add_watch(7, /dev/loop6p1, 10) failed: No such file or directory
[  208.282593][  T341] udevd[341]: inotify_add_watch(7, /dev/loop6p4, 10) failed: No such file or directory
[  208.296966][T13618] syz.1.5505[13618] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  208.297035][T13618] syz.1.5505[13618] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  208.301978][  T341] udevd[341]: inotify_add_watch(7, /dev/loop6p4, 10) failed: No such file or directory
[  208.321543][T13620] general protection fault, probably for non-canonical address 0xdffffc0000000004: 0000 [#1] PREEMPT SMP KASAN
[  208.332420][  T336] udevd[336]: inotify_add_watch(7, /dev/loop6p1, 10) failed: No such file or directory
[  208.341078][T13620] KASAN: null-ptr-deref in range [0x0000000000000020-0x0000000000000027]
[  208.341095][T13620] CPU: 1 PID: 13620 Comm: syz.6.5506 Not tainted 6.1.145-syzkaller-00001-g39fefc4d6aea #0
[  208.341116][T13620] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  208.341127][T13620] RIP: 0010:qdisc_tree_reduce_backlog+0x181/0x360
[  208.341170][T13620] Code: e8 74 98 b7 fd 4d 89 ef 83 7d d0 00 74 0a e8 16 35 73 fd e9 a2 00 00 00 4d 8b 36 49 8d 46 20 48 89 c1 48 c1 e9 03 48 89 4d b8 <80> 3c 19 00 48 89 45 d0 74 0d 48 8b 7d d0 e8 3c 98 b7 fd 48 8b 45
[  208.405005][T13620] RSP: 0018:ffffc90000d36e28 EFLAGS: 00010202
[  208.411056][T13620] RAX: 0000000000000020 RBX: dffffc0000000000 RCX: 0000000000000004
[  208.419008][T13620] RDX: ffff88810faca880 RSI: 0000000000000000 RDI: 0000000000000000
[  208.426955][T13620] RBP: ffffc90000d36e70 R08: ffff88810faca880 R09: 0000000000000002
[  208.434905][T13620] R10: 00000000ffffffff R11: 0000000000000002 R12: 00000000000affe0
[  208.442859][T13620] R13: ffff888112ab4000 R14: 0000000000000000 R15: ffff888112ab4000
[  208.450817][T13620] FS:  00007fef0b7ab6c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  208.459730][T13620] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  208.466297][T13620] CR2: 0000001b33c22ff8 CR3: 000000012b9f7000 CR4: 00000000003506a0
[  208.474255][T13620] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  208.482211][T13620] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  208.490168][T13620] Call Trace:
[  208.493428][T13620]  <TASK>
[  208.496341][T13620]  fq_codel_change+0xafd/0x1010
[  208.501182][T13620]  ? __cfi_fq_codel_change+0x10/0x10
[  208.506461][T13620]  ? netlink_sendmsg+0x8aa/0xbc0
[  208.511398][T13620]  fq_codel_init+0x384/0xa90
[  208.515975][T13620]  ? __cfi_fq_codel_init+0x10/0x10
[  208.521076][T13620]  qdisc_create+0x7f3/0x1040
[  208.525663][T13620]  ? qdisc_notify+0x360/0x360
[  208.530321][T13620]  ? qdisc_lookup+0x100/0x4e0
[  208.534978][T13620]  tc_modify_qdisc+0x8ea/0x1900
[  208.539812][T13620]  ? __cfi_tc_modify_qdisc+0x10/0x10
[  208.545085][T13620]  ? __kasan_check_write+0x14/0x20
[  208.550179][T13620]  ? mutex_lock+0x8d/0x1a0
[  208.554581][T13620]  ? __cfi_mutex_lock+0x10/0x10
[  208.559411][T13620]  ? ns_capable+0x8c/0xf0
[  208.563721][T13620]  ? netlink_net_capable+0x125/0x160
[  208.568989][T13620]  ? __cfi_tc_modify_qdisc+0x10/0x10
[  208.574260][T13620]  rtnetlink_rcv_msg+0x9f4/0xcf0
[  208.579182][T13620]  ? __cfi_rtnetlink_rcv_msg+0x10/0x10
[  208.584627][T13620]  ? kernel_text_address+0xa0/0xd0
[  208.589721][T13620]  ? __kernel_text_address+0xd/0x30
[  208.594902][T13620]  ? unwind_get_return_address+0x4d/0x90
[  208.600516][T13620]  ? memcpy+0x56/0x70
[  208.604486][T13620]  ? avc_has_perm_noaudit+0x2f4/0x460
[  208.609841][T13620]  ? __cfi_avc_has_perm_noaudit+0x10/0x10
[  208.615549][T13620]  ? slab_post_alloc_hook+0x4f/0x2d0
[  208.620814][T13620]  ? kmem_cache_alloc_node+0x181/0x340
[  208.626257][T13620]  ? __alloc_skb+0xea/0x4b0
[  208.630742][T13620]  ? avc_has_perm+0x158/0x240
[  208.635399][T13620]  ? __alloc_skb+0x236/0x4b0
[  208.639972][T13620]  ? netlink_sendmsg+0x626/0xbc0
[  208.644886][T13620]  ? __cfi_avc_has_perm+0x10/0x10
[  208.649890][T13620]  ? selinux_nlmsg_lookup+0x400/0x4c0
[  208.655252][T13620]  netlink_rcv_skb+0x1f2/0x440
[  208.659997][T13620]  ? __cfi_rtnetlink_rcv_msg+0x10/0x10
[  208.665435][T13620]  ? __cfi_netlink_rcv_skb+0x10/0x10
[  208.670705][T13620]  ? __netlink_lookup+0x387/0x3b0
[  208.675707][T13620]  rtnetlink_rcv+0x1c/0x20
[  208.680102][T13620]  netlink_unicast+0x8b1/0xa30
[  208.684850][T13620]  netlink_sendmsg+0x8aa/0xbc0
[  208.689592][T13620]  ? __cfi_netlink_sendmsg+0x10/0x10
[  208.694855][T13620]  ? security_socket_sendmsg+0x93/0xb0
[  208.700305][T13620]  ? __cfi_netlink_sendmsg+0x10/0x10
[  208.705566][T13620]  ____sys_sendmsg+0x5a9/0x990
[  208.710311][T13620]  ? __sys_sendmsg_sock+0x40/0x40
[  208.715319][T13620]  ? import_iovec+0x7c/0xb0
[  208.719805][T13620]  ___sys_sendmsg+0x21c/0x290
[  208.724460][T13620]  ? __sys_sendmsg+0x270/0x270
[  208.729211][T13620]  ? __fdget+0x19c/0x220
[  208.733437][T13620]  __x64_sys_sendmsg+0x1f0/0x2c0
[  208.738354][T13620]  ? __cfi___x64_sys_sendmsg+0x10/0x10
[  208.743794][T13620]  ? __kasan_check_write+0x14/0x20
[  208.748888][T13620]  ? fpregs_restore_userregs+0x128/0x260
[  208.754500][T13620]  ? switch_fpu_return+0xe/0x10
[  208.759331][T13620]  x64_sys_call+0x171/0x9a0
[  208.763815][T13620]  do_syscall_64+0x4c/0xa0
[  208.768207][T13620]  ? clear_bhb_loop+0x30/0x80
[  208.772863][T13620]  ? clear_bhb_loop+0x30/0x80
[  208.777522][T13620]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  208.783392][T13620] RIP: 0033:0x7fef0a98ebe9
[  208.787794][T13620] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  208.807377][T13620] RSP: 002b:00007fef0b7ab038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  208.815768][T13620] RAX: ffffffffffffffda RBX: 00007fef0abb5fa0 RCX: 00007fef0a98ebe9
[  208.823717][T13620] RDX: 0000000000004000 RSI: 0000200000000280 RDI: 0000000000000003
[  208.831666][T13620] RBP: 00007fef0aa11e19 R08: 0000000000000000 R09: 0000000000000000
[  208.839619][T13620] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  208.847565][T13620] R13: 00007fef0abb6038 R14: 00007fef0abb5fa0 R15: 00007ffc007a1088
[  208.855520][T13620]  </TASK>
[  208.858522][T13620] Modules linked in:
[  208.862466][T13620] ---[ end trace 0000000000000000 ]---
[  208.867905][T13620] RIP: 0010:qdisc_tree_reduce_backlog+0x181/0x360
[  208.874319][T13620] Code: e8 74 98 b7 fd 4d 89 ef 83 7d d0 00 74 0a e8 16 35 73 fd e9 a2 00 00 00 4d 8b 36 49 8d 46 20 48 89 c1 48 c1 e9 03 48 89 4d b8 <80> 3c 19 00 48 89 45 d0 74 0d 48 8b 7d d0 e8 3c 98 b7 fd 48 8b 45
[  208.893932][T13620] RSP: 0018:ffffc90000d36e28 EFLAGS: 00010202
[  208.899984][T13620] RAX: 0000000000000020 RBX: dffffc0000000000 RCX: 0000000000000004
[  208.907928][T13620] RDX: ffff88810faca880 RSI: 0000000000000000 RDI: 0000000000000000
[  208.915883][T13620] RBP: ffffc90000d36e70 R08: ffff88810faca880 R09: 0000000000000002
[  208.923840][T13620] R10: 00000000ffffffff R11: 0000000000000002 R12: 00000000000affe0
[  208.931807][T13620] R13: ffff888112ab4000 R14: 0000000000000000 R15: ffff888112ab4000
[  208.939759][T13620] FS:  00007fef0b7ab6c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[  208.948661][T13620] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  208.955230][T13620] CR2: 0000001b33c22ff8 CR3: 000000012b9f7000 CR4: 00000000003506a0
[  208.963192][T13620] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  208.971149][T13620] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  208.979109][T13620] Kernel panic - not syncing: Fatal exception in interrupt
[  208.986485][T13620] Kernel Offset: disabled
[  208.990785][T13620] Rebooting in 86400 seconds..