last executing test programs:

40.79139252s ago: executing program 0 (id=780):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f00000002c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg$inet(r2, &(0x7f0000000cc0)=[{{0x0, 0x0, &(0x7f0000000b40)=[{&(0x7f0000000700)="acc841985992b79554acfc02163bb0fb2bb293e68702bb40b6b870bde5700d368744361ae9fce3a4ff", 0x29}, {&(0x7f0000000d40)="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", 0x13c}, {&(0x7f0000000b80)="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", 0x118}, {&(0x7f0000001000)="bd2f6aa36cea0e4bccda24dc5bd69ad762e998d923018ec9f30d63c7059c3c786069915581888508ff589f82857ff546b23b88d6bd61f1efc982005bf6c9abc4fe2caf32ef3ff105b69346a4d09afd7b0b8bd5f8c25f0eab84d8ad1b6576552ee2acc2ef0a9b0f9964d5705db134", 0x6e}], 0x4}}], 0x1, 0xc0)
setsockopt$sock_int(r2, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendto$inet(r2, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

39.802379827s ago: executing program 0 (id=789):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
syz_emit_ethernet(0x3e, &(0x7f0000000700)={@local, @broadcast, @val, {@ipv6={0x86dd, @generic={0x0, 0x6, "ea8fff", 0x0, 0x0, 0x0, @remote, @private2={0xfc, 0x2, '\x00', 0x1}}}}}, 0x0)

39.649202279s ago: executing program 0 (id=791):
r0 = socket(0x10, 0x803, 0x0)
recvmmsg(r0, &(0x7f0000001200)=[{{0x0, 0x0, 0x0}, 0xd66}, {{0x0, 0x0, 0x0}, 0x7}, {{0x0, 0x0, &(0x7f0000000cc0)=[{&(0x7f0000000700)=""/163, 0xa3}, {&(0x7f00000007c0)=""/196, 0xc4}, {&(0x7f0000000980)=""/155, 0x9b}, {&(0x7f0000000a40)=""/253, 0xfd}, {&(0x7f00000008c0)=""/47, 0x2f}, {&(0x7f0000000b40)=""/131, 0x83}, {&(0x7f0000002040)=""/4096, 0x1000}, {&(0x7f0000000c00)=""/190, 0xbe}], 0x8}, 0xb}, {{0x0, 0x0, 0x0}, 0x2}], 0x4, 0x10002, 0x0)

39.388922403s ago: executing program 0 (id=794):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x800700, &(0x7f0000000ac0), 0x1, 0x45b, &(0x7f0000000c00)="$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")
chdir(&(0x7f0000000140)='./file0\x00')
link(0x0, 0x0)
gettid()
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, 0x0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f000000c3c0)={0x2020, 0x0, <r1=>0x0, <r2=>0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f00000001c0)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x0, 0x0, 0x401, 0x100, 0x400008, 0x0, 0x0, 0x2}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="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", 0x2000, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000fc0)={0x78, 0x0, 0x9, {0x0, 0x1, 0x0, {0x2, 0x0, 0x0, 0x0, 0x40, 0x3, 0x200, 0x2, 0x42, 0x0, 0x0, r2, r3, 0x9}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
chmod(&(0x7f0000000080)='./file0\x00', 0x1)

38.580093956s ago: executing program 0 (id=802):
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000680)='./file0\x00', 0x14c0e, &(0x7f0000000b40)=ANY=[@ANYRES8=0x0], 0xfd, 0x6b1, &(0x7f0000001f80)="$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")
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r2}, 0x10)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @link_local})
close(r3)

37.848677617s ago: executing program 0 (id=809):
close(0xffffffffffffffff)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4)
syz_emit_ethernet(0x66, &(0x7f0000001bc0)={@local, @random="424e1aa2e0d4", @void, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x5, 0x58, 0x66, 0x0, 0x4, 0x2f, 0x0, @multicast2, @multicast1}, {{0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x880b, 0x0, 0x2}, {0x1, 0x0, 0x1}, {0x1, 0x0, 0x0, 0x1}, {0x8, 0x88be, 0x4, {{0xa, 0x1, 0xe, 0x1, 0x0, 0x3, 0x0, 0x2}, 0x1, {0x69a9}}}, {0x8, 0x22eb, 0x2, {{0x8, 0x2, 0x3, 0x0, 0x0, 0x0, 0x4, 0xff}, 0x2, {0x7, 0x8, 0x1, 0x10, 0x1, 0x0, 0x1, 0x1}}}, {0x8, 0x6558, 0x4}}}}}}, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x4)
finit_module(r1, 0x0, 0x0)

37.6723914s ago: executing program 32 (id=809):
close(0xffffffffffffffff)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4)
syz_emit_ethernet(0x66, &(0x7f0000001bc0)={@local, @random="424e1aa2e0d4", @void, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x5, 0x58, 0x66, 0x0, 0x4, 0x2f, 0x0, @multicast2, @multicast1}, {{0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x0, 0x1, 0x880b, 0x0, 0x2}, {0x1, 0x0, 0x1}, {0x1, 0x0, 0x0, 0x1}, {0x8, 0x88be, 0x4, {{0xa, 0x1, 0xe, 0x1, 0x0, 0x3, 0x0, 0x2}, 0x1, {0x69a9}}}, {0x8, 0x22eb, 0x2, {{0x8, 0x2, 0x3, 0x0, 0x0, 0x0, 0x4, 0xff}, 0x2, {0x7, 0x8, 0x1, 0x10, 0x1, 0x0, 0x1, 0x1}}}, {0x8, 0x6558, 0x4}}}}}}, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x0, 0x4)
finit_module(r1, 0x0, 0x0)

10.425113904s ago: executing program 2 (id=1097):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x56, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, &(0x7f00000003c0)=[{0x0, 0x2}, {0x10000002, 0x0, 0x0, 0xc}], 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$kcm(0x2, 0x1, 0x84)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
close(r2)
recvmsg$unix(r1, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [<r3=>0xffffffffffffffff]}}], 0x18}, 0x0)
setsockopt$sock_attach_bpf(r0, 0x84, 0x64, &(0x7f0000000000)=r3, 0x10)
sendmsg$inet(r0, &(0x7f0000000140)={&(0x7f0000000280)={0x2, 0x10, @local}, 0x10, &(0x7f0000000080)=[{&(0x7f0000001940)='{', 0xffc0}], 0x1}, 0x80d1)

10.06511396s ago: executing program 2 (id=1102):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$netlink(0x10, 0x3, 0x0)
pipe2(&(0x7f0000000200), 0x0)
r0 = memfd_create(&(0x7f00000000c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x0)
write$binfmt_script(r0, &(0x7f00000003c0)={'#! ', './file0'}, 0xb)
execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000010, &(0x7f0000000200), 0x1, 0x513, &(0x7f00000010c0)="$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")

9.215966293s ago: executing program 2 (id=1106):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x1, 0x2a8, &(0x7f0000000500)="$eJzs3F9IU38Yx/FH50/9GTqJCAqqp7ypiIPbdaAjNKKBUS4sITjmWY2dtrEzVpNwCwJvuuimf9cVRAhCdBEEYhddhRLeddGdd15kV0lEJ+Y0N5tapk7y/brYHvZ8P4fv+bPD9h1s+vjda9GwY4TNlFTXV0l1u+RktkqapVoW5OTI9ZH3+85duHg6EAx2nFXtDHT7/KradGC09+bwobHUjvMvm17XyXjzpekZ/9T47vE909+7r0YcjTgai6fU1L54PGX22Zb233eihuoZ2zIdSyMxx0qW9MN2PJHIqBnrb2xIJC3HUTOW0aiV0VRcU8mMmlfMSEwNw9DGBsHKhtOPAst3Q89nXVdmUu9cty4nruvmX6zfxOmhwubOv+sWnf87lZ4SNlHRTb1exB5Kh9KhwnOhHwhLRGyxpFW88k3y14j7eMSdu1Tyjzf8I8HJo2/fqGqzDNrZ+Xw2HfKU5n3idT2FTEGh7jwV7PBpQWn+P2kozvvFK7vK5/1l87VyuKUob4hXJi9LXGyZGD34Zapr6MFCftCneqIruCT/v/QvHqZnnyt0fgAAAAAAAAAAWAtDfyq7fm/kB9weUNXGJf1CvtzvA0vX51vLrs/XyN6ayu47AAAAAADbhZMZiJq2bSX/ssh/lV+P7fx7xZNbvz94f+fKY1raPBPtH3KJrbBff1B87dkS0ygtZH71abXBnnV+pywWn9ZlO1Xz81t+zMnejy9W3U7tL8dnOWMbf1cCAAAAsBEWP/S3STb8Kp3tOXav0nMCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGC7WcNfjk08LNfSfLHzablWpfcRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgJT8CAAD//wva0Pw=")
r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x81000)
renameat2(r3, &(0x7f0000000140)='./file1\x00', r3, &(0x7f0000000240)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)

6.491151046s ago: executing program 1 (id=1131):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000008c0)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$netlink(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = openat$ppp(0xffffffffffffff9c, 0x0, 0x6b0200, 0x0)
ioctl$PPPIOCSPASS(r1, 0x40107447, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0b00000005000000010001000900000001"], 0x48)
pipe2(&(0x7f0000000200)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$FUSE_INIT(r2, &(0x7f0000000400)={0x6f, 0x0, 0x0, {0x7, 0x28, 0x80000001, 0x0, 0x0, 0x0, 0x2, 0x1}}, 0xfffffede)
fcntl$setpipe(r2, 0x407, 0x2000000)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000170002000000000000000018110010", @ANYRES16, @ANYRESDEC=r1], &(0x7f0000000700)='GPL\x00', 0xffffffef, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000240)='kmem_cache_free\x00', r3}, 0x18)
openat$dir(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0xa0500, 0x1)
r4 = memfd_create(&(0x7f00000000c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x0)
write$binfmt_script(r4, &(0x7f00000003c0)={'#! ', './file0'}, 0xb)
execveat(r4, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000010, &(0x7f0000000200), 0x1, 0x513, &(0x7f00000010c0)="$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")

6.149221082s ago: executing program 3 (id=1134):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000002f80)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001f500000000000000000000000a20000000000a05000000000000000000010000000900010073797a30000000002c000000030a01020000000000000000010000000900010073797a30000000000900030073797a310000000088000000060a010400000000000000000100000008000b400000000060000480280001800e000100636f6e6e6c696d69740000001400028008000140000006e508000240000000003400018008000100636d7000280002800800024000000001140003800400010009000100efbb17b799000000080001400000000e0900010073797a30"], 0xfc}}, 0x0)

6.053770063s ago: executing program 3 (id=1135):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newsa={0x138, 0x10, 0x1, 0xfffffffe, 0x100, {{@in6=@ipv4={'\x00', '\xff\xff', @multicast2}, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x71c, 0x4e23, 0x2, 0x0, 0x0, 0x0, 0xff}, {@in6=@mcast2, 0x4d6, 0x6c}, @in=@private=0xa010101, {0x0, 0x192, 0x9ba3, 0xffff, 0x251c, 0x3, 0xfffffffffffffffc}, {0xffffffffffffffff, 0x0, 0x1f, 0xfffffffffffffffe}, {0xfffffffa, 0xfffffffc}, 0x80, 0x3502, 0x2, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="d80100001c0001"], 0x1d8}}, 0x0)

5.597730321s ago: executing program 1 (id=1137):
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x0)
ioctl$SG_IO(r0, 0x2285, &(0x7f0000000440)={0x53, 0x0, 0x10e, 0x1, @scatter={0x0, 0x0, 0x0}, &(0x7f0000000180)="851666ce20db96ab0c7d83e114e7c41762249711e34f4ce12c6afeb7e6d77bd3b97644edd8e3a3b71fcd006b6237766e151f344afb2306455034ea7a31b1a48724e372a5a8a9ca040f5831f2eb11842a4b8ec9064fa439440f374355d9af754314ce445ac9bea7fac19c3ac58a131895c378ec497ffdf9a82032d9fa225397b92d2e2193de6fe2f6b6c0bd0f80de3dc72890b6900c5b86752639bf37ab325c16dc2f1c4d01b4c3b71ebbfd6fc9b316f76a07144538506a68ae00df22f2fa9cbb0c9fa73c1dcf3eb2eb4fe3534fcee01e9ca0c66f27b8e05e7545cbc3511b3d086f51d58f9acd52eab032468cc8075451bcd5c081a8db84ff509a2f874daf6b3ddff977834d87cc87824009de24bd", 0x0, 0x10, 0x0, 0x0, 0x0})
ioctl$BTRFS_IOC_SCRUB_CANCEL(0xffffffffffffffff, 0x941c, 0x0)

4.469138319s ago: executing program 5 (id=1142):
r0 = fsopen(&(0x7f0000001340)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
openat$cgroup_procs(r1, &(0x7f0000000180)='cgroup.procs\x00', 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x8, 0x20000000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

3.381536426s ago: executing program 5 (id=1144):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0xb, 0x0, 0x0)
syz_usb_disconnect(0xffffffffffffffff)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0xc9100120, 0x0, 0xfffffffffffffd25)

2.329161543s ago: executing program 1 (id=1145):
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000007fc0)}, 0x0)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x147c40, 0x0)
preadv2(r0, &(0x7f0000000080)=[{&(0x7f0000001200)=""/4096, 0xffe00}], 0x5, 0x0, 0x0, 0x1f)
r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/vlan/vlan0\x00')
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
socket$inet6_sctp(0xa, 0x1, 0x84)
ioctl$SIOCSIFMTU(r2, 0x8923, &(0x7f0000000040)={'vlan0\x00', 0x40})
sendfile(r2, r1, 0x0, 0x5)

2.279828383s ago: executing program 4 (id=1146):
syz_mount_image$iso9660(&(0x7f0000000940), &(0x7f0000000680)='./file0\x00', 0x14c0e, &(0x7f0000000b40)=ANY=[@ANYRES8=0x0], 0xfd, 0x6b1, &(0x7f0000001f80)="$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")
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r2}, 0x10)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @link_local})
close(r3)

2.161502306s ago: executing program 1 (id=1147):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={<r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'bridge_slave_1\x00', <r1=>0x0})
sendto$inet6(0xffffffffffffffff, &(0x7f0000000300)="419743", 0x3, 0x4040000, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="4400000010000d00"/20, @ANYRES32=r1, @ANYBLOB="00300000c048000024001280110001006272696467655f736c617665000000000c000580050027"], 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

2.001200188s ago: executing program 1 (id=1148):
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000180)='./file0\x00', 0x4080, &(0x7f0000000540)=ANY=[@ANYBLOB='lastblock=00000000000000000000,umask=00000000000000000000002,dmode=00000000000000000077777,novrs,shortad,shortad,undelete,iocharset=cp437,shortad,umask=00000000000000000000006,dmode=00000000000000000000002,nostrict,uid=', @ANYRESOCT=0x0, @ANYRESDEC], 0x2, 0xc36, &(0x7f0000002540)="$eJzs3U9sHNd9B/DfGy3FldxWTOwoThoXm7ZIZcVy9S+mYhXuqqbZBpBlIRRzC8AVSakLUyRBUo1spAXTSw89BCiKHnIi0BoFUjQwmiLokWldILn4UOTUE9HCRlD0wBYBcgoYzOxbcUmRNi2SEmV9Pjb13Z19b/a9eeMZWdCbFwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAxB+8cun0mfSwWwEAPEhXRr56+qz7PwA8Vq75/38AAAAAAAAAAAAAADjoUhTxZKSYvbKaxqr3HfXL7b7bd0aHhreudiRVNQ9V5cuf+pmz585/6YXBC9283J7+gPp77bPx2si1S42XZ27Nzk3Oz09ONEan2+MzE5M73sNu6292sjoAjVuv3564cWO+cfb5cxs+vjPwfv8TxwcuDj576plu2dGh4eGR9SL13vK1+25Ix3YzPA5HEacixXPf+2lqRUQRuz8W9Qc79psdqTpxsurE6NBw1ZGpdmt6ofzwavdAFBGNnkrN7jHaeiyi1vdA+7C9ZsRi2fyywSfL7o3MtuZa16cmG1dbcwvthfbM9NXUaW3Zn0YUcSFFLEXESv+9u+uLImqR4jvHVtP1iDjUPQ5frCYGb9+OYh/7uANlOxt9EUvFIzBmB1h/FPFqpPjZOydiPF9nqmvNFyJeLfMHEW+V+VJEKk+M8xHvbXEe8WiqRRF/WY7/xdU0UV0PuteVy19rfGX6xkxP2e515SPeH+65Ujyk+8ORTflgHPBrUz2KaFVX/NV0/7/ZAQAAAAAAAAAAAAAAAGCvHYkiPhMpXvmPP6nmFUc1L/3YxcE/HPjV3jnjT3/Ifsqyz0fEYrGzObmH88TAq+lqSg95LvHjrB5F/Gme//eth90YAAAAAAAAAAAAAAAAAACAx1oRP4kUL757Ii1F75ri7embjWut61OdVWG7a/9210xfW1tba6RONnOO5VzMuZRzOedKzihy/ZzNnGM5F3Mu5VzOuZIzDuX6OZs5x3Iu5lzKuZxzJWfUcv2czZxjORfLrK93dDlvX8kZB2TtXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAj5MiivhFpPj2N1ZTpIhoRoxFJ5f7H3brAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIBSfyri+5Gi8UfNu9tqEZGqfztOlL+cj+bhMj8ZzcEyX4rmpZytKmvNbz2E9rM7famIH0eK/vrbdwc8j39f593d0yDe+ub6u8/WOnmo++HA+/1PHD92cXD4N57e7nXaqgEnL7enb99pjA4ND4/0bK7lb/9kz7aB/L3F3nSdiJh/483XW1NTk3P3/6I8BXZR/RF6kWqPS08f1ovFvTgh9+5F1A5EMx5O33kMlPf/9yLF7777n90bfuf+X49f6by7e4ePn//Z+v3/xc072uH9v7a5Xr7/l/f0re7/T/ZsezH/bqSvFlFfuDXbdzyiPv/Gm6fat1o3J29OTp8/ffrLg4NfPne673BE/UZ7arLn1Z4cLgAAAAAAAAAAAAAAAIAHJxXx+5Gi9ePV1IiIO9V8rYGLg8+eeuZQHKrmW22Yt/3ayLVLjZdnbs3OTc7PT040Rqfb4zMTkzv9uno13Wt0aHhfOvOhjuxz+4/UX56ZfWOuffOPF7b8/Gj90vX5hbnW+NYfx5EoIpq9W05WDR4dGq4aPdVuTVdVr245mf6j60tF/FekGD/fSJ/P2/L8/80z/DfM/1/cvKN9mv//iZ5t5XemVMTPI8Xv/NXT8fmqnUfjnmOWy/1dpDh54XO5XBwuy3Xb0HmuQGdmYFn2/yLFP/1iY9nufMgn18ue2fGBfUSU438sUnz/L74bv5m3bXz+w9bjf3TzjvZp/J/q2XZ0w/MKdt118vifihQvPfl2/Fbe9kHP/+g+e+NELnz3+Rz7NP6f6tk2kL/3t/em6wAAAAAAAAAAAI+0vlTE30eKHw7X0gt5207+/t/E5h3t09//+nTPtom9Wa/oQ1/s+qACAAAAwAHRl4r4SaS4ufD23TnUG+d/98z//L31+Z9DadOn1Z/z/Vr13IC9/PO/XgP5e8d2320AAAAAAAAAAAAAAAAAAAA4UFIq4oW8nvpYNZ9/Ytv11JcjxSv/81wul46X5brrwA9Uv9avzEyfujQ1NTPeWmhdn5psjMy2xifLuk9FitW//VyuW1Trq3fXm++s8b6+FvtcpBj+h27Zzlrs3bXJn1ove6Ys+4lI8d//uLFsdx3rT62XPVuW/ZtI8fV/2brs8fWy58qy340UP/p6o1v2aFm2+3zUT6+XfX58ptiHUQEAAAAAAAAAAAAAAAAAAOBx05eK+PNI8b+3lu7O5c/r//f1vK289c2e9f43uVOt8z9Qrf+/3ev7Wf+/eq7A4nbfCgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAH08pingzUsxeWU3L/eX7jvrl9vTtO6NDw1tXO5Kqmoeq8uVP/czZc+e/9MLghW5+cP299pl4beTapcbLM7dm5ybn5ycnGqPT7fGZickd72G39Tc7WR2Axq3Xb0/cuDHfOPv8uQ0f3xl4v/+J4wMXB5899Uy37OjQ8PBIT5la331/+z3SNtsPRxF/HSme+95P0w/7I4rY/bH4kHNnvx2pOnGy6sTo0HDVkal2a3qh/PBq90AUEY2eSs3uMXoAY7ErzYjFsvllg0+W3RuZbc21rk9NNq625hbaC+2Z6aup09qyP40o4kKKWIqIlf57d9cXRbweKb5zbDX9a3/Eoe5x+OKVka+ePrt9O4p97OMOlO1s9EUsFY/AmB1g/VHEP0eKn71zIv6tP6IWnZ/4QsSrZf4g4q3ojHcqT4zzEe9tcR7xaKpFEf9fjv/F1fROf3k96F5XLn+t8ZXpGzM9ZbvXlUf+/vAgHfBrUz2K+FF1xV9N/+6/awAAAAAAAAAAAAAAAIADpIhfjxQvvnsiVfOD784pbk/fbFxrXZ/qTOvrzv3rzpleW1tba6RONnOO5VzMuZRzOedKzihy/ZzNMutra2P5/WLOpZzLOVdyxqFcP2cz51jOxZxLOZdzruSMWq6fs5lzLOdizqWcyzlXcsYBmbsHAAAAAAAAAAAAAAAAAAB8vBTVPym+/Y3VtNbfWV96LDq5bD3Qj71fBgAA//8dq/O8")
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
symlink(&(0x7f0000000280)='.\x02\x00', &(0x7f00000002c0)='.\x02\x00')

1.949145309s ago: executing program 4 (id=1149):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f0000000440)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000640)=""/211, 0xd3}, 0x7}], 0x1, 0x0, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000480)=@mangle={'mangle\x00', 0x44, 0x6, 0x3a8, 0x2b0, 0x2b0, 0x2b0, 0x138, 0x98, 0x380, 0x380, 0x380, 0x380, 0x380, 0x6, 0x0, {[{{@ip={@broadcast, @multicast1=0xe0007600, 0x0, 0x0, 'geneve1\x00', 'ip6gre0\x00'}, 0x0, 0x70, 0x98}, @inet=@DSCP={0x28}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @local, 0x0, 0x0, 'batadv_slave_1\x00', 'veth1_virt_wifi\x00', {}, {}, 0x6}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @local}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'vlan1\x00', 'nr0\x00'}, 0x0, 0x70, 0x98}, @ECN={0x28}}, {{@ip={@loopback, @multicast2, 0x0, 0x0, 'syzkaller0\x00', 'veth1_to_team\x00'}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @empty}}}, {{@ip={@broadcast, @empty, 0x0, 0x0, 'lo\x00', 'batadv_slave_1\x00'}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @loopback}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x408)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4276ef66ba420266b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x43, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000980)=[@text32={0x20, 0x0}], 0x1, 0x51, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@arm64={0x7, 0xf, 0x9, '\x00', 0x5})
ioctl$KVM_NMI(r2, 0xae9a)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1.87797369s ago: executing program 4 (id=1150):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000040)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000940)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x8000000, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0xfff7}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x28, 0x2, {{0xfffffffe, 0x2, 0x40, 0x7, 0xe9, 0xcc36}, [@TCA_NETEM_CORRUPT={0xc, 0x4, {0x8, 0x1000}}]}}}]}, 0x58}}, 0x0)

1.87607087s ago: executing program 3 (id=1151):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f0000000080)="3e660f388101b825c400000f23c00f21f83501000d000f23f8b8010000000f01d9da7f0f0f239b66ba2100edb99b0000400f320f00d7f3ab0fc7bd0f000000", 0x3f}], 0x1, 0x11, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

1.745553942s ago: executing program 4 (id=1152):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = dup(r2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f00000000c0)=[@text64={0x40, 0x0}], 0x1, 0x54, 0x0, 0x0)
ioctl$KVM_SET_MSRS(r3, 0x4008ae89, &(0x7f0000000240)=ANY=[@ANYBLOB="01000000000000008a04"])

1.616973074s ago: executing program 3 (id=1153):
r0 = eventfd2(0xc, 0x800)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_IRQFD(r2, 0x4020ae76, &(0x7f00000000c0)={r0, 0x0, 0x3, r0})

1.612335904s ago: executing program 5 (id=1154):
r0 = fsopen(&(0x7f0000001340)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
openat$cgroup_procs(r1, &(0x7f0000000180)='cgroup.procs\x00', 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x8, 0x20000000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

1.600760104s ago: executing program 4 (id=1155):
r0 = open(0x0, 0x8060, 0x0)
fcntl$setlease(r0, 0x400, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_DISCONNECT(r1, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000200)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010025bd7000fcdbdf253000000008000300", @ANYRES32=r3], 0x24}, 0x1, 0x0, 0x0, 0x840}, 0x8000)

1.477005356s ago: executing program 3 (id=1156):
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000001c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000000)={&(0x7f00002b9000/0x400000)=nil, &(0x7f0000779000/0x1000)=nil, 0x400000, 0x3, 0x2})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
r1 = syz_open_procfs(0x0, &(0x7f0000000000)='smaps\x00')
read$FUSE(r1, &(0x7f0000010140)={0x2020}, 0x2036)

1.359783968s ago: executing program 4 (id=1157):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000300)={@in6={{0xa, 0x4e24, 0x200, @private2={0xfc, 0x2, '\x00', 0x1}, 0x4ac2d78a}}, 0x0, 0x0, 0x3f, 0x0, "ee8b0e650926a96ecc136e7fb980e989db9e8bf9b93129488f651a8de213eb94cd46e19d9c65a018444a131f4da58ae36556dd38ea6c029607462029add09240005c6776267517308a3d40aa1c788df6"}, 0xd8)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x4, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f00000001c0)=@ccm_128={{0x303}, "4eff51afaef09474", "d373bc171d564dcd0b86123859d7f466", "e8b29a2c", "662e229672253891"}, 0x28)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x2, 0x4)
ioctl$int_in(r0, 0x5421, 0x0)
writev(r0, &(0x7f0000000080)=[{&(0x7f00000002c0)="ec", 0xfdef}], 0x1)

863.439416ms ago: executing program 1 (id=1158):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/72, 0x328000, 0x1000}, 0x20)
setsockopt$XDP_UMEM_COMPLETION_RING(r1, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r1, 0x11b, 0x2, &(0x7f00000001c0)=0x100, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000180)={'batadv_slave_0\x00', <r3=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r1, 0x11b, 0x5, &(0x7f0000000140)=0x1, 0x4)
bind$xdp(r1, &(0x7f0000000100)={0x2c, 0x0, r3}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="200000001100010027bd7000ffdbdf2500000000", @ANYRES32=r3], 0x20}}, 0x0)

425.799603ms ago: executing program 5 (id=1159):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448d4, &(0x7f0000000040)={0x2, 0x4, '\x00', 0x0, 0x3})

364.699494ms ago: executing program 2 (id=1160):
gettid()
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$dir(0xffffffffffffff9c, &(0x7f0000001a00)='./file1\x00', 0xc0, 0x61)
socket(0x2, 0x2, 0x0)
r0 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x0)
ioctl$NBD_SET_SIZE_BLOCKS(0xffffffffffffffff, 0xab07, 0x200000a)
mount(&(0x7f0000000500)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000004a00)='./file1\x00', &(0x7f0000000040)='udf\x00', 0x8007, 0x0)
ioctl$NBD_CLEAR_SOCK(r0, 0xab04)

287.305845ms ago: executing program 5 (id=1161):
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], 0x0, 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$netlink(0x10, 0x3, 0x0)
pipe2(&(0x7f0000000200), 0x0)
r0 = memfd_create(&(0x7f00000000c0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf3:\x99\x1e\xac`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\xd2q#\xc6\xca\x97\x9d\xcb\x1e\x80\xd6\xd5%N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec', 0x0)
write$binfmt_script(r0, &(0x7f00000003c0)={'#! ', './file0'}, 0xb)
execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000010, &(0x7f0000000200), 0x1, 0x513, &(0x7f00000010c0)="$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")

236.448396ms ago: executing program 2 (id=1162):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000000)=0xb, 0x4)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r1, 0x10e, 0x1, &(0x7f0000000140)=0x1, 0x4)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000006c0)=ANY=[@ANYBLOB="88000000000101040000000000000000020000002c00018014000180080001007f00000108000200e00000020c000280050001000000000006000340000300002400028014000180080001000000000008000200ac1414bb0c000280050001000000000008000740000000001c000f80080001400000000008000340000000000800"], 0x88}}, 0x0)

104.993858ms ago: executing program 2 (id=1163):
syz_emit_vhci(&(0x7f00000001c0)=ANY=[@ANYBLOB="043e1a0d2704008b000000"], 0x1d)
socket(0x2, 0x80805, 0x0)

99.162929ms ago: executing program 5 (id=1164):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000600)={0x0, 0x0, @pic={0x9, 0xcc, 0x1, 0x4, 0x2, 0x1, 0x1, 0xff, 0x5, 0x0, 0xe, 0x9, 0xa, 0x2, 0xd, 0x5}})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0xaffb, 0x8, 0x1, 0x17e, 0x3, 0x0, 0xf1, 0x0, 0x8000000000000, 0x5, 0x6, 0x9, 0x9c8000000000, 0xecb, 0x0, 0xbd9], 0x1, 0x3c4210})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

0s ago: executing program 3 (id=1165):
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000003c0), 0x40, &(0x7f0000000840)=ANY=[@ANYBLOB="78226e6f65786163638173733d616e792c63616368653d66736361636865"])
chdir(&(0x7f0000000100)='./file0\x00')
r0 = creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
write$binfmt_misc(r0, &(0x7f00000004c0)='^6', 0x2)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x200, 0x0)

kernel console output (not intermixed with test programs):

ext4_do_update_inode:5174: inode #16: comm syz.4.46: corrupted inode contents
[   75.496159][   T26] audit: type=1326 audit(1743681099.316:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4400 comm="syz.2.54" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb595174169 code=0x7ffc0000
[   75.511617][ T4373] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #16: comm syz.4.46: mark_inode_dirty error
[   75.584928][ T4341] XFS (loop0): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[   75.622176][ T4373] EXT4-fs error (device loop4): ext4_do_update_inode:5174: inode #16: comm syz.4.46: corrupted inode contents
[   75.683679][ T4373] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[   75.707822][ T4341] XFS (loop0): Starting recovery (logdev: internal)
[   75.729266][ T4373] EXT4-fs error (device loop4): ext4_do_update_inode:5174: inode #16: comm syz.4.46: corrupted inode contents
[   75.763033][ T4373] EXT4-fs error (device loop4): ext4_truncate:4272: inode #16: comm syz.4.46: mark_inode_dirty error
[   75.796769][ T4373] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[   75.912316][ T4373] EXT4-fs (loop4): 1 truncate cleaned up
[   75.928258][ T4373] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   75.999324][ T4373] ext4 filesystem being mounted at /11/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   76.010335][ T4341] XFS (loop0): Ending recovery (logdev: internal)
[   76.208403][ T4373] syz.4.46 (4373) used greatest stack depth: 19416 bytes left
[   76.220677][ T4418] netlink: 'syz.1.60': attribute type 3 has an invalid length.
[   76.248582][ T4167] XFS (loop0): Unmounting Filesystem
[   76.329125][ T4421] syz.3.62[4421] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   76.329224][ T4421] syz.3.62[4421] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   76.468578][ T4426] tipc: Started in network mode
[   76.511799][ T4426] tipc: Node identity 7f000001, cluster identity 4711
[   76.532451][ T4426] tipc: Enabled bearer <udp:syz2>, priority 10
[   76.548005][   T26] audit: type=1326 audit(1743681100.366:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4429 comm="syz.3.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77fb215169 code=0x7ffc0000
[   76.610553][   T26] audit: type=1326 audit(1743681100.396:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4429 comm="syz.3.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77fb215169 code=0x7ffc0000
[   77.289420][ T4450] netlink: 'syz.3.75': attribute type 3 has an invalid length.
[   77.517654][ T1110] tipc: Node number set to 2130706433
[   77.843104][ T4436] loop2: detected capacity change from 0 to 32768
[   78.061716][   T26] audit: type=1326 audit(1743681101.876:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4460 comm="syz.0.79" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce779a1169 code=0x7ffc0000
[   78.174502][ T4436] XFS (loop2): Mounting V5 Filesystem
[   78.281857][   T26] audit: type=1326 audit(1743681101.876:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4460 comm="syz.0.79" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce779a1169 code=0x7ffc0000
[   78.391680][ T4436] XFS (loop2): Ending clean mount
[   78.487453][ T4454] loop3: detected capacity change from 0 to 32768
[   78.547947][ T4171] XFS (loop2): Unmounting Filesystem
[   78.588302][ T4481] netlink: 'syz.1.86': attribute type 3 has an invalid length.
[   78.752873][ T4454] XFS (loop3): Mounting V5 Filesystem
[   78.964176][ T4454] XFS (loop3): Ending clean mount
[   78.972166][ T4497] process 'syz.1.88' launched '/dev/fd/-1' with NULL argv: empty string added
[   79.126557][ T4172] XFS (loop3): Unmounting Filesystem
[   80.011131][ T4512] loop3: detected capacity change from 0 to 512
[   80.202112][ T4518] overlayfs: failed to resolve './file1': -2
[   80.992872][ T4512] EXT4-fs error (device loop3): ext4_do_update_inode:5174: inode #3: comm syz.3.89: corrupted inode contents
[   81.212379][ T4512] EXT4-fs error (device loop3): ext4_dirty_inode:6010: inode #3: comm syz.3.89: mark_inode_dirty error
[   81.248794][ T4530] loop2: detected capacity change from 0 to 512
[   81.288763][ T4512] EXT4-fs error (device loop3): ext4_do_update_inode:5174: inode #3: comm syz.3.89: corrupted inode contents
[   81.313425][ T4534] netlink: 'syz.1.97': attribute type 3 has an invalid length.
[   81.335577][ T4512] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #3: comm syz.3.89: mark_inode_dirty error
[   81.385267][ T4512] Quota error (device loop3): write_blk: dquota write failed
[   81.416068][ T1107] cfg80211: failed to load regulatory.db
[   81.442654][ T4512] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[   81.471132][ T4530] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,quota,,errors=continue. Quota mode: writeback.
[   81.491922][ T4530] ext4 filesystem being mounted at /16/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   81.532055][ T4512] EXT4-fs error (device loop3): ext4_acquire_dquot:6197: comm syz.3.89: Failed to acquire dquot type 0
[   81.626847][ T4512] EXT4-fs error (device loop3): ext4_do_update_inode:5174: inode #16: comm syz.3.89: corrupted inode contents
[   81.639178][ T4530] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.96: bg 0: block 217: padding at end of block bitmap is not set
[   81.712252][ T4512] EXT4-fs error (device loop3): ext4_dirty_inode:6010: inode #16: comm syz.3.89: mark_inode_dirty error
[   81.727641][ T4512] EXT4-fs error (device loop3): ext4_do_update_inode:5174: inode #16: comm syz.3.89: corrupted inode contents
[   81.781894][ T4512] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #16: comm syz.3.89: mark_inode_dirty error
[   81.820874][ T4512] EXT4-fs error (device loop3): ext4_do_update_inode:5174: inode #16: comm syz.3.89: corrupted inode contents
[   81.839890][ T4512] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[   81.866079][ T4512] EXT4-fs error (device loop3): ext4_do_update_inode:5174: inode #16: comm syz.3.89: corrupted inode contents
[   81.912171][ T4512] EXT4-fs error (device loop3): ext4_truncate:4272: inode #16: comm syz.3.89: mark_inode_dirty error
[   81.949257][ T4512] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[   81.982907][ T4512] EXT4-fs (loop3): 1 truncate cleaned up
[   81.992126][ T4512] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   82.053637][ T4512] ext4 filesystem being mounted at /19/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   82.318732][ T4512] syz.3.89 (4512) used greatest stack depth: 19160 bytes left
[   82.386828][ T4532] loop0: detected capacity change from 0 to 32768
[   82.605610][ T4532] XFS (loop0): Mounting V5 Filesystem
[   82.861935][ T4532] XFS (loop0): Ending clean mount
[   82.993661][ T4167] XFS (loop0): Unmounting Filesystem
[   83.329389][ T4578] netlink: 'syz.1.108': attribute type 3 has an invalid length.
[   83.906588][ T4426] Set syz1 is full, maxelem 65536 reached
[   83.990017][ T4612] loop2: detected capacity change from 0 to 512
[   84.355157][ T4649] ISOFS: Unable to identify CD-ROM format.
[   84.490665][ T4612] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #3: comm syz.2.111: corrupted inode contents
[   84.530067][ T4612] EXT4-fs error (device loop2): ext4_dirty_inode:6010: inode #3: comm syz.2.111: mark_inode_dirty error
[   84.609896][ T4612] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #3: comm syz.2.111: corrupted inode contents
[   84.662245][ T4612] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #3: comm syz.2.111: mark_inode_dirty error
[   84.705591][ T4612] Quota error (device loop2): write_blk: dquota write failed
[   84.722257][ T4612] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[   84.741794][ T4612] EXT4-fs error (device loop2): ext4_acquire_dquot:6197: comm syz.2.111: Failed to acquire dquot type 0
[   84.798640][ T4612] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #16: comm syz.2.111: corrupted inode contents
[   84.838863][ T4658] netlink: 'syz.0.119': attribute type 3 has an invalid length.
[   84.842113][ T4612] EXT4-fs error (device loop2): ext4_dirty_inode:6010: inode #16: comm syz.2.111: mark_inode_dirty error
[   84.875534][ T4612] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #16: comm syz.2.111: corrupted inode contents
[   84.926237][ T4612] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #16: comm syz.2.111: mark_inode_dirty error
[   84.971465][ T4641] loop4: detected capacity change from 0 to 32768
[   84.980173][ T4662] loop0: detected capacity change from 0 to 512
[   84.991125][ T4612] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #16: comm syz.2.111: corrupted inode contents
[   85.010094][ T4612] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[   85.019786][ T4612] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #16: comm syz.2.111: corrupted inode contents
[   85.038662][ T4612] EXT4-fs error (device loop2): ext4_truncate:4272: inode #16: comm syz.2.111: mark_inode_dirty error
[   85.119446][ T4612] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[   85.146043][ T4612] EXT4-fs (loop2): 1 truncate cleaned up
[   85.160737][ T4612] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   85.193423][ T4662] EXT4-fs error (device loop0): ext4_orphan_get:1427: comm syz.0.121: bad orphan inode 1
[   85.228224][ T4641] XFS (loop4): Mounting V5 Filesystem
[   85.234181][ T4612] ext4 filesystem being mounted at /18/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   85.248188][ T4662] EXT4-fs (loop0): Remounting filesystem read-only
[   85.319004][ T4662] EXT4-fs (loop0): mounted filesystem without journal. Opts: bsdgroups,i_version,usrquota,min_batch_time=0x0000000000000005,data_err=abort,jqfmt=vfsv1,errors=remount-ro,delalloc,. Quota mode: writeback.
[   85.374807][ T4641] XFS (loop4): Ending clean mount
[   85.394028][ T4662] EXT4-fs error (device loop0): htree_dirblock_to_tree:1112: inode #2: block 13: comm syz.0.121: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=131074, rec_len=0, size=1024 fake=1
[   85.461048][ T4179] XFS (loop4): Unmounting Filesystem
[   85.464158][ T4662] EXT4-fs (loop0): Remounting filesystem read-only
[   85.590014][ T4686] ISOFS: Unable to identify CD-ROM format.
[   85.800017][ T4694] netlink: 'syz.2.131': attribute type 3 has an invalid length.
[   85.911452][ T4698] loop0: detected capacity change from 0 to 512
[   85.915706][ T4700] loop4: detected capacity change from 0 to 512
[   86.056446][ T4700] EXT4-fs (loop4): mounted filesystem without journal. Opts: bsdgroups,,errors=continue. Quota mode: writeback.
[   86.105965][ T4700] EXT4-fs (loop4): shut down requested (2)
[   86.132293][ T4698] EXT4-fs error (device loop0): ext4_do_update_inode:5174: inode #3: comm syz.0.132: corrupted inode contents
[   86.191046][ T4711] loop3: detected capacity change from 0 to 16
[   86.210085][ T4698] EXT4-fs error (device loop0): ext4_dirty_inode:6010: inode #3: comm syz.0.132: mark_inode_dirty error
[   86.271580][ T4711] erofs: (device loop3): mounted with root inode @ nid 36.
[   86.293863][ T4698] EXT4-fs error (device loop0): ext4_do_update_inode:5174: inode #3: comm syz.0.132: corrupted inode contents
[   86.353262][ T4698] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #3: comm syz.0.132: mark_inode_dirty error
[   86.369197][ T4698] Quota error (device loop0): write_blk: dquota write failed
[   86.371015][ T4711] deleting an unspecified loop device is not supported.
[   86.377620][ T4698] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[   86.403687][ T4698] EXT4-fs error (device loop0): ext4_acquire_dquot:6197: comm syz.0.132: Failed to acquire dquot type 0
[   86.428494][ T4698] EXT4-fs error (device loop0): ext4_do_update_inode:5174: inode #16: comm syz.0.132: corrupted inode contents
[   86.550484][ T4698] EXT4-fs error (device loop0): ext4_dirty_inode:6010: inode #16: comm syz.0.132: mark_inode_dirty error
[   87.071952][ T4698] EXT4-fs error (device loop0): ext4_do_update_inode:5174: inode #16: comm syz.0.132: corrupted inode contents
[   87.163098][ T4698] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #16: comm syz.0.132: mark_inode_dirty error
[   87.212273][ T4698] EXT4-fs error (device loop0): ext4_do_update_inode:5174: inode #16: comm syz.0.132: corrupted inode contents
[   87.287406][ T4698] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[   87.314020][ T4698] EXT4-fs error (device loop0): ext4_do_update_inode:5174: inode #16: comm syz.0.132: corrupted inode contents
[   87.351802][ T4698] EXT4-fs error (device loop0): ext4_truncate:4272: inode #16: comm syz.0.132: mark_inode_dirty error
[   87.379472][ T4698] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[   87.414001][ T4698] EXT4-fs (loop0): 1 truncate cleaned up
[   87.419834][ T4698] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   87.422000][ T4724] 9pnet: p9_fd_create_tcp (4724): problem connecting socket to 127.0.0.1
[   87.460346][ T4698] ext4 filesystem being mounted at /17/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   87.601871][ T4279] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   87.851737][ T4279] usb 3-1: Using ep0 maxpacket: 32
[   87.860801][ T4719] loop4: detected capacity change from 0 to 32768
[   87.923043][ T4739] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   87.976299][ T4719] XFS (loop4): Mounting V5 Filesystem
[   87.992218][ T4279] usb 3-1: config 0 has an invalid interface number: 67 but max is 0
[   88.000974][ T4279] usb 3-1: config 0 has no interface number 0
[   88.030928][ T4719] XFS (loop4): Ending clean mount
[   88.073176][ T4179] XFS (loop4): Unmounting Filesystem
[   88.185055][ T4279] usb 3-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[   88.194737][ T4279] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   88.202904][ T4279] usb 3-1: Product: syz
[   88.207373][ T4279] usb 3-1: Manufacturer: syz
[   88.212119][ T4279] usb 3-1: SerialNumber: syz
[   88.227937][ T4279] usb 3-1: config 0 descriptor??
[   88.254314][ T4751] netdevsim netdevsim3 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[   88.283666][ T4751] netdevsim netdevsim3 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[   88.313879][ T4751] netdevsim netdevsim3 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[   88.326587][ T4279] smsc95xx v2.0.0
[   88.339815][ T4751] netdevsim netdevsim3 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[   88.350879][ T4751] device geneve2 entered promiscuous mode
[   88.499149][ T4759] loop3: detected capacity change from 0 to 1024
[   88.742070][ T4279] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32
[   88.768444][ T4279] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[   88.820775][ T4769] loop3: detected capacity change from 0 to 512
[   88.907482][ T4771] loop0: detected capacity change from 0 to 2048
[   88.936583][ T4769] EXT4-fs (loop3): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,quota,,errors=continue. Quota mode: writeback.
[   88.957473][ T4769] ext4 filesystem being mounted at /34/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   89.027266][ T4769] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.157: bg 0: block 217: padding at end of block bitmap is not set
[   89.057095][ T4771]  loop0: p1 < > p3
[   89.154218][ T4771] loop0: p3 size 134217728 extends beyond EOD, truncated
[   89.285451][ T4791] netlink: 452 bytes leftover after parsing attributes in process `syz.4.159'.
[   89.299559][ T4279] smsc95xx 3-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[   89.549501][ T4279] smsc95xx: probe of 3-1:0.67 failed with error -71
[   89.864718][ T4279] usb 3-1: USB disconnect, device number 2
[   90.450694][ T4819] loop3: detected capacity change from 0 to 512
[   90.497346][ T4819] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[   90.510142][ T4159] udevd[4159]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory
[   90.510340][ T4265] udevd[4265]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[   90.578047][ T4819] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2816: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   90.596727][ T4819] EXT4-fs (loop3): 1 truncate cleaned up
[   90.602814][ T4819] EXT4-fs (loop3): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,. Quota mode: writeback.
[   90.620989][ T4793] loop0: detected capacity change from 0 to 1024
[   90.808383][ T4771] kvm: emulating exchange as write
[   90.841138][ T4837] loop2: detected capacity change from 0 to 512
[   90.991552][ T4837] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #3: comm syz.2.168: corrupted inode contents
[   91.048660][ T4265] udevd[4265]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory
[   91.080528][ T4161] udevd[4161]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[   91.100398][ T4837] EXT4-fs error (device loop2): ext4_dirty_inode:6010: inode #3: comm syz.2.168: mark_inode_dirty error
[   91.144018][ T4837] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #3: comm syz.2.168: corrupted inode contents
[   91.190245][ T4837] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #3: comm syz.2.168: mark_inode_dirty error
[   91.224827][ T4837] Quota error (device loop2): write_blk: dquota write failed
[   91.243448][ T4837] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[   91.257162][ T4837] EXT4-fs error (device loop2): ext4_acquire_dquot:6197: comm syz.2.168: Failed to acquire dquot type 0
[   91.277354][ T4837] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #16: comm syz.2.168: corrupted inode contents
[   91.291563][ T4837] EXT4-fs error (device loop2): ext4_dirty_inode:6010: inode #16: comm syz.2.168: mark_inode_dirty error
[   91.296134][ T4849] loop0: detected capacity change from 0 to 1024
[   91.312937][ T4837] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #16: comm syz.2.168: corrupted inode contents
[   91.325922][ T4837] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #16: comm syz.2.168: mark_inode_dirty error
[   91.337940][ T4837] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #16: comm syz.2.168: corrupted inode contents
[   91.352046][ T4837] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[   91.361849][ T4837] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #16: comm syz.2.168: corrupted inode contents
[   91.374418][ T4837] EXT4-fs error (device loop2): ext4_truncate:4272: inode #16: comm syz.2.168: mark_inode_dirty error
[   91.396666][ T4837] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[   91.417980][ T4837] EXT4-fs (loop2): 1 truncate cleaned up
[   91.424582][ T4837] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   91.436448][ T4837] ext4 filesystem being mounted at /27/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   91.662873][ T4856] loop0: detected capacity change from 0 to 256
[   91.712958][ T4856] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[   92.752049][ T4901] loop0: detected capacity change from 0 to 1024
[   93.228719][ T4901] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[   93.259172][ T4901] JBD2: no valid journal superblock found
[   93.265075][ T4901] EXT4-fs (loop0): error loading journal
[   93.467449][ T4903] netlink: 'syz.2.186': attribute type 3 has an invalid length.
[   93.486785][ T4906] loop3: detected capacity change from 0 to 1024
[   93.596402][ T4906] JBD2: no valid journal superblock found
[   93.608309][ T4906] EXT4-fs (loop3): error loading journal
[   93.855465][ T4916] loop4: detected capacity change from 0 to 164
[   93.995398][ T4916] ISOFS: unable to read i-node block
[   94.000999][ T4916] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[   94.390123][ T4239] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   94.438668][ T4947] netlink: 8 bytes leftover after parsing attributes in process `syz.1.201'.
[   94.553370][ T4947] bridge0: port 2(bridge_slave_1) entered disabled state
[   94.562613][ T4947] bridge0: port 1(bridge_slave_0) entered disabled state
[   95.389931][ T4957] device geneve2 entered promiscuous mode
[   95.469554][ T4961] loop3: detected capacity change from 0 to 164
[   95.582072][ T4239] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 252, changing to 11
[   95.608186][ T4239] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 64
[   95.832183][ T4239] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[   95.843878][ T4239] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   95.858632][ T4239] usb 1-1: Product: syz
[   95.862256][ T4983] loop4: detected capacity change from 0 to 2048
[   95.863495][ T4239] usb 1-1: Manufacturer: syz
[   95.878211][ T4239] usb 1-1: SerialNumber: syz
[   95.905233][ T4983]  loop4: p1 < > p3
[   95.912876][ T4983] loop4: p3 size 134217728 extends beyond EOD, truncated
[   96.076658][ T4844] udevd[4844]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[   96.095522][ T4265] udevd[4265]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[   96.130988][ T4930] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[   96.259919][ T4988] loop4: detected capacity change from 0 to 1024
[   96.334951][ T4988] EXT4-fs (loop4): Ignoring removed nomblk_io_submit option
[   96.351996][ T4988] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   96.379337][ T4988] EXT4-fs (loop4): mounted filesystem without journal. Opts: abort,barrier,sysvgroups,discard,dioread_nolock,stripe=0x0000000000000004,dioread_nolock,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none.
[   96.571810][ T4995] device geneve2 entered promiscuous mode
[   96.718279][ T5005] loop3: detected capacity change from 0 to 128
[   96.783271][ T5005] EXT4-fs (loop3): Test dummy encryption mode enabled
[   96.795404][ T5005] EXT4-fs (loop3): Test dummy encryption mode enabled
[   96.807373][ T5005] EXT4-fs (loop3): mounted filesystem without journal. Opts: test_dummy_encryption=v1,test_dummy_encryption=v1,,errors=continue. Quota mode: none.
[   96.823013][ T5005] ext4 filesystem being mounted at /46/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   97.064773][ T4239] cdc_ncm 1-1:1.0: bind() failure
[   97.080615][ T4239] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found
[   97.090560][ T5005] fscrypt: AES-256-XTS using implementation "xts-aes-aesni"
[   97.090793][ T4239] cdc_ncm 1-1:1.1: bind() failure
[   97.153392][ T4239] usb 1-1: USB disconnect, device number 2
[   97.235915][ T5037] loop4: detected capacity change from 0 to 512
[   97.275073][ T5039] loop3: detected capacity change from 0 to 256
[   97.334275][ T5039] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   97.360768][ T5039] exFAT-fs (loop3): Medium has reported failures. Some data may be lost.
[   97.392185][ T5039] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[   97.482418][ T5037] EXT4-fs error (device loop4): ext4_do_update_inode:5174: inode #3: comm syz.4.227: corrupted inode contents
[   97.526177][ T5037] EXT4-fs error (device loop4): ext4_dirty_inode:6010: inode #3: comm syz.4.227: mark_inode_dirty error
[   97.551590][ T5037] EXT4-fs error (device loop4): ext4_do_update_inode:5174: inode #3: comm syz.4.227: corrupted inode contents
[   97.583570][ T5037] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #3: comm syz.4.227: mark_inode_dirty error
[   97.610351][ T5037] Quota error (device loop4): write_blk: dquota write failed
[   97.620547][ T5048] device geneve3 entered promiscuous mode
[   97.630741][ T5037] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[   97.643843][ T5037] EXT4-fs error (device loop4): ext4_acquire_dquot:6197: comm syz.4.227: Failed to acquire dquot type 0
[   97.660772][ T5037] EXT4-fs error (device loop4): ext4_do_update_inode:5174: inode #16: comm syz.4.227: corrupted inode contents
[   97.680134][ T5037] EXT4-fs error (device loop4): ext4_dirty_inode:6010: inode #16: comm syz.4.227: mark_inode_dirty error
[   97.692567][ T5037] EXT4-fs error (device loop4): ext4_do_update_inode:5174: inode #16: comm syz.4.227: corrupted inode contents
[   97.705766][ T5037] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #16: comm syz.4.227: mark_inode_dirty error
[   97.725278][ T5037] EXT4-fs error (device loop4): ext4_do_update_inode:5174: inode #16: comm syz.4.227: corrupted inode contents
[   97.780663][ T5037] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[   97.800408][ T5037] EXT4-fs error (device loop4): ext4_do_update_inode:5174: inode #16: comm syz.4.227: corrupted inode contents
[   97.824617][ T5037] EXT4-fs error (device loop4): ext4_truncate:4272: inode #16: comm syz.4.227: mark_inode_dirty error
[   97.836686][ T5037] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[   97.848639][ T5037] EXT4-fs (loop4): 1 truncate cleaned up
[   97.870529][ T5037] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   97.897768][ T5037] ext4 filesystem being mounted at /42/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   97.915353][ T5059] input: syz0 as /devices/virtual/input/input5
[   98.160408][ T5037] syz.4.227 (5037) used greatest stack depth: 18680 bytes left
[   99.207947][ T5075] loop0: detected capacity change from 0 to 512
[   99.257007][ T5083] fuse: Bad value for 'group_id'
[   99.315669][ T5075] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,quota,,errors=continue. Quota mode: writeback.
[   99.386918][ T5075] ext4 filesystem being mounted at /31/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   99.486157][ T5095] fuse: Unknown parameter 'rootmod0000000000040000'
[   99.554552][ T5100] loop3: detected capacity change from 0 to 1024
[   99.750626][ T5100] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[   99.768509][ T5100] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:3876: comm syz.3.248: Allocating blocks 385-513 which overlap fs metadata
[   99.792488][ T5098] EXT4-fs (loop3): pa ffff888074e51380: logic 16, phys. 129, len 24
[   99.800835][ T5098] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:4893: group 0, free 0, pa_free 8
[  100.228900][ T5114] loop3: detected capacity change from 0 to 8192
[  100.260769][ T5122] fuse: Bad value for 'group_id'
[  100.639899][ T5130] netdevsim netdevsim2 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  100.670135][ T5130] netdevsim netdevsim2 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  100.699701][ T5130] netdevsim netdevsim2 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  100.721005][ T5130] netdevsim netdevsim2 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  100.735450][ T5130] device geneve3 entered promiscuous mode
[  100.878222][ T5144] loop2: detected capacity change from 0 to 1024
[  100.994696][ T5151] device wg1 entered promiscuous mode
[  101.048882][ T5144] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  101.051193][ T5156] netlink: 12 bytes leftover after parsing attributes in process `syz.0.267'.
[  101.090901][ T5156] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  101.100496][ T5156] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  101.109311][ T5156] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  101.117167][ T5144] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3876: comm syz.2.263: Allocating blocks 385-513 which overlap fs metadata
[  101.118161][ T5156] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  101.161186][ T5156] netdevsim netdevsim0 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  101.170542][ T5156] netdevsim netdevsim0 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  101.180248][ T5156] netdevsim netdevsim0 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  101.189232][ T5156] netdevsim netdevsim0 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  101.210356][ T5142] EXT4-fs (loop2): pa ffff888074e511c0: logic 16, phys. 129, len 24
[  101.218731][ T5142] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:4893: group 0, free 0, pa_free 8
[  101.310665][ T5164] fuse: Unknown parameter 'rootmod0000000000040000'
[  101.551669][ T5170] loop2: detected capacity change from 0 to 512
[  101.633909][ T5170] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,quota,,errors=continue. Quota mode: writeback.
[  101.701942][ T5170] ext4 filesystem being mounted at /42/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  101.770514][ T5179] loop0: detected capacity change from 0 to 8
[  102.028323][ T5185] loop0: detected capacity change from 0 to 1024
[  102.164313][ T5185] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (62867!=35945)
[  102.217315][ T5185] EXT4-fs (loop0): group descriptors corrupted!
[  102.809406][ T5207] loop2: detected capacity change from 0 to 512
[  102.827666][ T5204] loop4: detected capacity change from 0 to 1024
[  102.954412][ T5207] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,quota,,errors=continue. Quota mode: writeback.
[  102.989501][ T5216] loop0: detected capacity change from 0 to 1024
[  103.031895][ T5207] ext4 filesystem being mounted at /48/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  103.105608][ T5220] Zero length message leads to an empty skb
[  103.192968][ T5223] loop3: detected capacity change from 0 to 256
[  103.220375][ T5225] loop4: detected capacity change from 0 to 512
[  103.279061][ T5225] EXT4-fs error (device loop4): ext4_do_update_inode:5174: inode #3: comm syz.4.290: corrupted inode contents
[  103.298334][ T5225] EXT4-fs error (device loop4): ext4_dirty_inode:6010: inode #3: comm syz.4.290: mark_inode_dirty error
[  103.316565][ T5225] EXT4-fs error (device loop4): ext4_do_update_inode:5174: inode #3: comm syz.4.290: corrupted inode contents
[  103.354201][ T5225] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #3: comm syz.4.290: mark_inode_dirty error
[  103.378264][ T5225] Quota error (device loop4): write_blk: dquota write failed
[  103.387324][ T5225] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  103.397938][ T5225] EXT4-fs error (device loop4): ext4_acquire_dquot:6197: comm syz.4.290: Failed to acquire dquot type 0
[  103.415281][ T5232] loop2: detected capacity change from 0 to 256
[  103.430991][ T5225] EXT4-fs error (device loop4): ext4_do_update_inode:5174: inode #16: comm syz.4.290: corrupted inode contents
[  103.436059][ T5223] netlink: 40 bytes leftover after parsing attributes in process `syz.3.291'.
[  103.455281][ T5223] netlink: 40 bytes leftover after parsing attributes in process `syz.3.291'.
[  103.464551][ T5225] EXT4-fs error (device loop4): ext4_dirty_inode:6010: inode #16: comm syz.4.290: mark_inode_dirty error
[  103.482442][ T4279] usb 1-1: new full-speed USB device number 3 using dummy_hcd
[  103.490880][ T5225] EXT4-fs error (device loop4): ext4_do_update_inode:5174: inode #16: comm syz.4.290: corrupted inode contents
[  103.505301][ T5225] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #16: comm syz.4.290: mark_inode_dirty error
[  103.536869][ T5225] EXT4-fs error (device loop4): ext4_do_update_inode:5174: inode #16: comm syz.4.290: corrupted inode contents
[  103.549427][ T5225] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  103.554481][ T5232] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x89cb6648, utbl_chksum : 0xe619d30d)
[  103.570873][ T5225] EXT4-fs error (device loop4): ext4_do_update_inode:5174: inode #16: comm syz.4.290: corrupted inode contents
[  103.586388][ T5225] EXT4-fs error (device loop4): ext4_truncate:4272: inode #16: comm syz.4.290: mark_inode_dirty error
[  103.601712][ T5225] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  103.612992][ T5225] EXT4-fs (loop4): 1 truncate cleaned up
[  103.628906][ T5225] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  103.649236][ T5225] ext4 filesystem being mounted at /52/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  103.695772][   T26] audit: type=1800 audit(1743681127.516:26): pid=5225 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.290" name="file2" dev="loop4" ino=16 res=0 errno=0
[  103.912015][ T4279] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  103.945790][ T4279] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 1024, setting to 64
[  104.011807][ T4279] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 512, setting to 64
[  104.222344][ T4279] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  104.260754][ T4279] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  104.669967][ T4279] usb 1-1: Product: syz
[  104.674604][ T4279] usb 1-1: Manufacturer: syz
[  104.679218][ T4279] usb 1-1: SerialNumber: syz
[  104.728065][ T5255] loop3: detected capacity change from 0 to 512
[  104.799912][ T5255] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  104.830908][ T5255] EXT4-fs (loop3): 1 truncate cleaned up
[  104.866004][ T5255] EXT4-fs (loop3): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,. Quota mode: writeback.
[  104.899959][ T5265] loop2: detected capacity change from 0 to 1024
[  104.921604][ T5255] EXT4-fs error (device loop3): mb_free_blocks:1865: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt.
[  104.930377][ T5216] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  104.949733][ T5255] EXT4-fs (loop3): Remounting filesystem read-only
[  104.961456][ T5216] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  105.061601][ T5268] loop4: detected capacity change from 0 to 512
[  105.069676][ T4355] hfsplus: b-tree write err: -5, ino 4
[  105.169249][ T5272] fuse: Bad value for 'fd'
[  105.207135][ T5274] loop2: detected capacity change from 0 to 2048
[  105.212368][ T5268] EXT4-fs error (device loop4): ext4_do_update_inode:5174: inode #3: comm syz.4.307: corrupted inode contents
[  105.262281][ T5268] EXT4-fs error (device loop4): ext4_dirty_inode:6010: inode #3: comm syz.4.307: mark_inode_dirty error
[  105.308163][ T5274] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  105.318623][ T5268] EXT4-fs error (device loop4): ext4_do_update_inode:5174: inode #3: comm syz.4.307: corrupted inode contents
[  105.400035][ T5268] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #3: comm syz.4.307: mark_inode_dirty error
[  105.421410][ T5268] Quota error (device loop4): write_blk: dquota write failed
[  105.430134][ T5268] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  105.449678][ T5268] EXT4-fs error (device loop4): ext4_acquire_dquot:6197: comm syz.4.307: Failed to acquire dquot type 0
[  105.463270][ T5268] EXT4-fs error (device loop4): ext4_do_update_inode:5174: inode #16: comm syz.4.307: corrupted inode contents
[  105.486599][ T5268] EXT4-fs error (device loop4): ext4_dirty_inode:6010: inode #16: comm syz.4.307: mark_inode_dirty error
[  105.511453][ T5268] EXT4-fs error (device loop4): ext4_do_update_inode:5174: inode #16: comm syz.4.307: corrupted inode contents
[  105.532708][ T5268] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #16: comm syz.4.307: mark_inode_dirty error
[  105.547655][ T5268] EXT4-fs error (device loop4): ext4_do_update_inode:5174: inode #16: comm syz.4.307: corrupted inode contents
[  105.560084][ T5268] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  105.569203][ T5268] EXT4-fs error (device loop4): ext4_do_update_inode:5174: inode #16: comm syz.4.307: corrupted inode contents
[  105.581498][ T5268] EXT4-fs error (device loop4): ext4_truncate:4272: inode #16: comm syz.4.307: mark_inode_dirty error
[  105.593033][ T5268] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  105.689456][ T5216] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  105.860949][ T5268] EXT4-fs (loop4): 1 truncate cleaned up
[  105.918276][ T5268] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  105.981340][ T5216] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  106.055040][ T5268] ext4 filesystem being mounted at /57/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  106.224311][ T5283] netlink: 8 bytes leftover after parsing attributes in process `syz.3.312'.
[  106.286591][ T4279] cdc_ncm 1-1:1.0: MAC-Address: 42:42:42:42:42:42
[  106.302210][ T4279] cdc_ncm 1-1:1.0: dwNtbInMaxSize=16 is too small. Using 2048
[  106.326941][ T5286] loop3: detected capacity change from 0 to 512
[  106.349703][ T4279] cdc_ncm 1-1:1.0: setting rx_max = 2048
[  106.380685][ T5286] EXT4-fs (loop3): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,quota,,errors=continue. Quota mode: writeback.
[  106.400709][ T5286] ext4 filesystem being mounted at /62/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  106.529284][ T4279] cdc_ncm 1-1:1.0 eth1: register 'cdc_ncm' at usb-dummy_hcd.0-1, CDC NCM, 42:42:42:42:42:42
[  106.779881][   T23] usb 1-1: USB disconnect, device number 3
[  106.798842][   T23] cdc_ncm 1-1:1.0 eth1: unregister 'cdc_ncm' usb-dummy_hcd.0-1, CDC NCM
[  106.818688][ T5300] uffd: Set unprivileged_userfaultfd sysctl knob to 1 if kernel faults must be handled without obtaining CAP_SYS_PTRACE capability
[  106.862318][ T5303] loop2: detected capacity change from 0 to 164
[  107.412459][ T5333] netlink: 'syz.1.331': attribute type 3 has an invalid length.
[  107.495993][ T5334] loop2: detected capacity change from 0 to 512
[  108.658197][   T13] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  108.770224][ T5334] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #3: comm syz.2.326: corrupted inode contents
[  108.845227][ T5334] EXT4-fs error (device loop2): ext4_dirty_inode:6010: inode #3: comm syz.2.326: mark_inode_dirty error
[  108.928859][ T5334] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #3: comm syz.2.326: corrupted inode contents
[  108.998129][ T5334] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #3: comm syz.2.326: mark_inode_dirty error
[  109.009701][   T13] usb 1-1: Using ep0 maxpacket: 8
[  109.062351][ T5334] Quota error (device loop2): write_blk: dquota write failed
[  109.070398][ T5334] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  109.087453][ T5378] netlink: 'syz.4.344': attribute type 3 has an invalid length.
[  109.098521][ T5334] EXT4-fs error (device loop2): ext4_acquire_dquot:6197: comm syz.2.326: Failed to acquire dquot type 0
[  109.118519][ T5334] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #16: comm syz.2.326: corrupted inode contents
[  109.133644][ T5334] EXT4-fs error (device loop2): ext4_dirty_inode:6010: inode #16: comm syz.2.326: mark_inode_dirty error
[  109.145635][   T13] usb 1-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  109.166277][   T13] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  109.174951][ T5334] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #16: comm syz.2.326: corrupted inode contents
[  109.202550][   T13] usb 1-1: config 0 descriptor??
[  109.208163][ T5334] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #16: comm syz.2.326: mark_inode_dirty error
[  109.258079][ T5334] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #16: comm syz.2.326: corrupted inode contents
[  109.284974][ T5334] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  109.301023][ T5334] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #16: comm syz.2.326: corrupted inode contents
[  109.354672][ T5334] EXT4-fs error (device loop2): ext4_truncate:4272: inode #16: comm syz.2.326: mark_inode_dirty error
[  109.417696][ T5334] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  109.438169][ T5334] EXT4-fs (loop2): 1 truncate cleaned up
[  109.444102][ T5334] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  109.457192][ T5334] ext4 filesystem being mounted at /58/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  109.491855][   T13] asix 1-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random
[  109.571953][ T4239] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  109.698499][ T5402] loop2: detected capacity change from 0 to 512
[  109.708598][   T13] asix 1-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -32
[  109.734610][   T13] asix 1-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffe0
[  109.751593][   T13] asix: probe of 1-1:0.0 failed with error -32
[  109.779247][ T5402] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  109.790700][ T5402] ext4 filesystem being mounted at /59/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  109.834377][ T5402] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  109.849870][   T26] audit: type=1804 audit(1743681133.656:27): pid=5402 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.349" name="/newroot/59/file0/file1" dev="loop2" ino=15 res=1 errno=0
[  109.871148][ T4239] usb 4-1: Using ep0 maxpacket: 32
[  110.021995][ T4239] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 254, using maximum allowed: 30
[  110.088762][ T5411] loop2: detected capacity change from 0 to 512
[  110.143053][ T4239] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  110.158457][ T4239] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  110.169374][ T4239] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 254
[  110.192082][ T5411] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #3: comm syz.2.352: corrupted inode contents
[  110.209714][ T4239] usb 4-1: New USB device found, idVendor=046d, idProduct=0a87, bcdDevice= 0.00
[  110.220219][ T5411] EXT4-fs error (device loop2): ext4_dirty_inode:6010: inode #3: comm syz.2.352: mark_inode_dirty error
[  110.237568][ T4239] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  110.250097][ T4239] usb 4-1: config 0 descriptor??
[  110.268404][ T5411] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #3: comm syz.2.352: corrupted inode contents
[  110.310270][ T5411] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #3: comm syz.2.352: mark_inode_dirty error
[  110.363543][ T5411] Quota error (device loop2): write_blk: dquota write failed
[  110.379525][ T5411] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  110.390195][ T5411] EXT4-fs error (device loop2): ext4_acquire_dquot:6197: comm syz.2.352: Failed to acquire dquot type 0
[  110.418083][ T5411] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #16: comm syz.2.352: corrupted inode contents
[  110.468415][ T5411] EXT4-fs error (device loop2): ext4_dirty_inode:6010: inode #16: comm syz.2.352: mark_inode_dirty error
[  110.542401][ T5411] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #16: comm syz.2.352: corrupted inode contents
[  110.618481][ T5411] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #16: comm syz.2.352: mark_inode_dirty error
[  110.724706][ T5411] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #16: comm syz.2.352: corrupted inode contents
[  110.804674][ T5411] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  110.858173][ T5411] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #16: comm syz.2.352: corrupted inode contents
[  110.945380][ T4239] hid-generic 0003:046D:0A87.0001: item fetching failed at offset 0/2
[  111.005866][ T5411] EXT4-fs error (device loop2): ext4_truncate:4272: inode #16: comm syz.2.352: mark_inode_dirty error
[  111.017965][ T4239] hid-generic: probe of 0003:046D:0A87.0001 failed with error -22
[  111.033970][ T5411] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  111.082389][ T5411] EXT4-fs (loop2): 1 truncate cleaned up
[  111.089088][ T5411] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  111.131035][ T4239] usb 4-1: USB disconnect, device number 2
[  111.132880][ T5411] ext4 filesystem being mounted at /61/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  111.162758][ T4206] usb 1-1: USB disconnect, device number 4
[  111.222696][   T26] audit: type=1800 audit(1743681135.046:28): pid=5411 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.352" name="file2" dev="loop2" ino=16 res=0 errno=0
[  111.294756][ T5431] loop0: detected capacity change from 0 to 512
[  111.306309][ T5431] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  111.377880][ T5431] EXT4-fs (loop0): 1 truncate cleaned up
[  111.398442][ T5431] EXT4-fs (loop0): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,. Quota mode: writeback.
[  111.487729][ T5431] EXT4-fs error (device loop0): mb_free_blocks:1865: group 0, inode 15: block 33:freeing already freed block (bit 32); block bitmap corrupt.
[  111.521808][ T5431] EXT4-fs (loop0): Remounting filesystem read-only
[  111.529705][ T5439] loop2: detected capacity change from 0 to 512
[  111.658638][ T5439] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #3: comm syz.2.359: corrupted inode contents
[  111.689903][ T5453] loop0: detected capacity change from 0 to 164
[  111.710185][ T5439] EXT4-fs error (device loop2): ext4_dirty_inode:6010: inode #3: comm syz.2.359: mark_inode_dirty error
[  111.726689][ T5439] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #3: comm syz.2.359: corrupted inode contents
[  111.745768][ T5439] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #3: comm syz.2.359: mark_inode_dirty error
[  111.816646][ T5439] Quota error (device loop2): write_blk: dquota write failed
[  111.884635][ T5439] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  111.896560][ T5439] EXT4-fs error (device loop2): ext4_acquire_dquot:6197: comm syz.2.359: Failed to acquire dquot type 0
[  111.931835][ T5439] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #16: comm syz.2.359: corrupted inode contents
[  111.953955][ T5439] EXT4-fs error (device loop2): ext4_dirty_inode:6010: inode #16: comm syz.2.359: mark_inode_dirty error
[  111.977972][ T5466] loop3: detected capacity change from 0 to 1024
[  111.986153][ T5439] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #16: comm syz.2.359: corrupted inode contents
[  112.010195][ T5439] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #16: comm syz.2.359: mark_inode_dirty error
[  112.047795][ T5439] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #16: comm syz.2.359: corrupted inode contents
[  112.093677][   T26] audit: type=1326 audit(1743681135.916:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5467 comm="syz.1.375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43a287e169 code=0x7ffc0000
[  112.103416][ T5473] futex_wake_op: syz.1.375 tries to shift op by -1; fix this program
[  112.126635][ T5466] hfsplus: invalid extended attribute record
[  112.138410][ T5439] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  112.153102][ T5439] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #16: comm syz.2.359: corrupted inode contents
[  112.168083][   T26] audit: type=1326 audit(1743681135.916:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5467 comm="syz.1.375" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f43a287e169 code=0x7ffc0000
[  112.209814][ T5439] EXT4-fs error (device loop2): ext4_truncate:4272: inode #16: comm syz.2.359: mark_inode_dirty error
[  112.238969][ T5439] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  112.266586][ T5439] EXT4-fs (loop2): 1 truncate cleaned up
[  112.285249][ T5439] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  112.308858][ T5439] ext4 filesystem being mounted at /62/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  112.430960][ T5488] loop3: detected capacity change from 0 to 256
[  112.542833][ T5488] loop3: detected capacity change from 0 to 512
[  112.594690][ T5496] netlink: 'syz.4.383': attribute type 3 has an invalid length.
[  113.457503][ T5529] netlink: 'syz.3.396': attribute type 3 has an invalid length.
[  113.639875][ T5538] futex_wake_op: syz.0.398 tries to shift op by -1; fix this program
[  113.868173][ T5553] usb usb1: usbfs: process 5553 (syz.2.404) did not claim interface 0 before use
[  113.958530][ T5558] fuse: Bad value for 'fd'
[  114.085574][ T5564] netlink: 'syz.1.409': attribute type 3 has an invalid length.
[  114.136667][ T5566] loop2: detected capacity change from 0 to 512
[  114.433210][ T5566] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #3: comm syz.2.411: corrupted inode contents
[  114.466934][ T5566] EXT4-fs error (device loop2): ext4_dirty_inode:6010: inode #3: comm syz.2.411: mark_inode_dirty error
[  114.509752][ T5566] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #3: comm syz.2.411: corrupted inode contents
[  114.539592][ T5566] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #3: comm syz.2.411: mark_inode_dirty error
[  114.606671][ T5566] __quota_error: 26 callbacks suppressed
[  114.606688][ T5566] Quota error (device loop2): write_blk: dquota write failed
[  114.661544][ T5566] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  114.692810][ T5587] fuse: Bad value for 'fd'
[  114.699527][ T5586] loop0: detected capacity change from 0 to 512
[  114.718352][ T5566] EXT4-fs error (device loop2): ext4_acquire_dquot:6197: comm syz.2.411: Failed to acquire dquot type 0
[  114.768470][ T5566] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #16: comm syz.2.411: corrupted inode contents
[  114.791404][ T5586] EXT4-fs (loop0): inline encryption not supported
[  114.811893][ T5586] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  114.812021][ T5566] EXT4-fs error (device loop2): ext4_dirty_inode:6010: inode #16: comm syz.2.411: mark_inode_dirty error
[  114.872145][ T5566] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #16: comm syz.2.411: corrupted inode contents
[  114.898793][ T5586] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 18 vs 41 free clusters
[  114.907624][ T5597] fuse: Unknown parameter 'group_i00000000000000000000'
[  114.925693][ T5566] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #16: comm syz.2.411: mark_inode_dirty error
[  114.961348][   T26] audit: type=1326 audit(1743681138.776:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5598 comm="syz.4.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fb43fb169 code=0x7ffc0000
[  114.985736][ T5599] futex_wake_op: syz.4.424 tries to shift op by -1; fix this program
[  114.998072][   T26] audit: type=1326 audit(1743681138.816:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5598 comm="syz.4.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f8fb43fb169 code=0x7ffc0000
[  115.020891][   T26] audit: type=1326 audit(1743681138.816:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5598 comm="syz.4.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fb43fb169 code=0x7ffc0000
[  115.051869][   T26] audit: type=1326 audit(1743681138.816:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5598 comm="syz.4.424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7f8fb43fb169 code=0x7ffc0000
[  115.074710][ T5566] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #16: comm syz.2.411: corrupted inode contents
[  115.087496][ T5586] Quota error (device loop0): write_blk: dquota write failed
[  115.096931][ T5586] Quota error (device loop0): find_free_dqentry: Can't write quota data block 5
[  115.103858][ T5601] netlink: 'syz.3.423': attribute type 3 has an invalid length.
[  115.107966][ T5586] Quota error (device loop0): write_blk: dquota write failed
[  115.119316][ T5566] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  115.125145][ T5586] Quota error (device loop0): qtree_write_dquot: Error -28 occurred while creating quota
[  115.140445][ T5586] EXT4-fs error (device loop0): ext4_acquire_dquot:6197: comm syz.0.417: Failed to acquire dquot type 1
[  115.152737][ T5586] EXT4-fs (loop0): 1 truncate cleaned up
[  115.158401][ T5586] EXT4-fs (loop0): mounted filesystem without journal. Opts: usrjquota=,noblock_validity,max_dir_size_kb=0x000000000181fffc,inlinecrypt,journal_ioprio=0x0000000000000007,discard,nobarrier,dioread_nolock,resgid=0x000000000000ee002,errors=continue. Quota mode: writeback.
[  115.203975][ T5566] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #16: comm syz.2.411: corrupted inode contents
[  115.237159][ T5566] EXT4-fs error (device loop2): ext4_truncate:4272: inode #16: comm syz.2.411: mark_inode_dirty error
[  115.272597][ T5566] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  115.301929][ T5586] 9pnet: p9_errstr2errno: server reported unknown error 184467440737
[  115.320167][ T5566] EXT4-fs (loop2): 1 truncate cleaned up
[  115.335871][ T5611] fuse: Bad value for 'fd'
[  115.340862][ T5566] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  115.381103][ T5566] ext4 filesystem being mounted at /70/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  115.503225][ T5613] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  115.570510][ T5621] fuse: Unknown parameter 'group_i00000000000000000000'
[  115.585849][ T5613] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  115.675400][ T5623] loop0: detected capacity change from 0 to 512
[  115.757932][ T5625] loop2: detected capacity change from 0 to 2048
[  115.833196][ T5630] futex_wake_op: syz.1.436 tries to shift op by -1; fix this program
[  115.898504][ T5625] UDF-fs: error (device loop2): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  115.929620][ T5625] UDF-fs: error (device loop2): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[  115.999863][ T5625] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 160: 0x0b != 0xd4
[  116.020601][ T5625] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  116.053979][ T5623] EXT4-fs error (device loop0): ext4_do_update_inode:5174: inode #3: comm syz.0.431: corrupted inode contents
[  116.079183][ T5623] EXT4-fs error (device loop0): ext4_dirty_inode:6010: inode #3: comm syz.0.431: mark_inode_dirty error
[  116.111502][ T5623] EXT4-fs error (device loop0): ext4_do_update_inode:5174: inode #3: comm syz.0.431: corrupted inode contents
[  116.125305][ T5623] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #3: comm syz.0.431: mark_inode_dirty error
[  116.128820][ T5642] xt_hashlimit: overflow, try lower: 3/0
[  116.148283][ T5623] EXT4-fs error (device loop0): ext4_acquire_dquot:6197: comm syz.0.431: Failed to acquire dquot type 0
[  116.160916][ T5623] EXT4-fs error (device loop0): ext4_do_update_inode:5174: inode #16: comm syz.0.431: corrupted inode contents
[  116.181769][ T5623] EXT4-fs error (device loop0): ext4_dirty_inode:6010: inode #16: comm syz.0.431: mark_inode_dirty error
[  116.195005][ T5623] EXT4-fs error (device loop0): ext4_do_update_inode:5174: inode #16: comm syz.0.431: corrupted inode contents
[  116.222512][ T5623] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #16: comm syz.0.431: mark_inode_dirty error
[  116.238779][ T5644] loop2: detected capacity change from 0 to 164
[  116.244294][ T5623] EXT4-fs error (device loop0): ext4_do_update_inode:5174: inode #16: comm syz.0.431: corrupted inode contents
[  116.279197][ T5623] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[  116.299573][ T5623] EXT4-fs error (device loop0): ext4_do_update_inode:5174: inode #16: comm syz.0.431: corrupted inode contents
[  116.317371][ T5646] loop3: detected capacity change from 0 to 512
[  116.326235][ T5623] EXT4-fs error (device loop0): ext4_truncate:4272: inode #16: comm syz.0.431: mark_inode_dirty error
[  116.349416][ T5623] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[  116.361839][ T5623] EXT4-fs (loop0): 1 truncate cleaned up
[  116.367603][ T5623] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  116.367666][ T5644] R
[  116.381258][ T5623] ext4 filesystem being mounted at /55/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  116.399554][ T5644] RIP_1991A
[  116.404977][ T5646] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  116.450576][ T5644] rock: directory entry would overflow storage
[  116.465262][ T5644] rock: sig=0x4f50, size=4, remaining=3
[  116.647533][ T5650] fuse: Unknown parameter 'group_id00000000000000000000'
[  116.757652][ T5655] loop2: detected capacity change from 0 to 512
[  116.820379][ T5659] futex_wake_op: syz.1.448 tries to shift op by -1; fix this program
[  116.911527][ T5655] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #3: comm syz.2.444: corrupted inode contents
[  116.946421][ T5655] EXT4-fs error (device loop2): ext4_dirty_inode:6010: inode #3: comm syz.2.444: mark_inode_dirty error
[  116.965538][ T5655] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #3: comm syz.2.444: corrupted inode contents
[  116.977879][ T5655] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #3: comm syz.2.444: mark_inode_dirty error
[  116.991230][ T5655] EXT4-fs error (device loop2): ext4_acquire_dquot:6197: comm syz.2.444: Failed to acquire dquot type 0
[  117.003890][ T5655] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #16: comm syz.2.444: corrupted inode contents
[  117.044049][ T5655] EXT4-fs error (device loop2): ext4_dirty_inode:6010: inode #16: comm syz.2.444: mark_inode_dirty error
[  117.056329][ T5655] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #16: comm syz.2.444: corrupted inode contents
[  117.069268][ T5655] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #16: comm syz.2.444: mark_inode_dirty error
[  117.081186][ T5655] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #16: comm syz.2.444: corrupted inode contents
[  117.164721][ T5655] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  117.184569][ T5655] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #16: comm syz.2.444: corrupted inode contents
[  117.220612][ T5655] EXT4-fs error (device loop2): ext4_truncate:4272: inode #16: comm syz.2.444: mark_inode_dirty error
[  117.247943][ T5655] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  117.299011][ T5655] EXT4-fs (loop2): 1 truncate cleaned up
[  117.321746][ T5655] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  117.401977][ T5655] ext4 filesystem being mounted at /73/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  117.625307][ T5690] fuse: Unknown parameter 'group_id00000000000000000000'
[  117.634376][ T5688] loop0: detected capacity change from 0 to 512
[  117.858724][ T5688] EXT4-fs error (device loop0): ext4_do_update_inode:5174: inode #3: comm syz.0.457: corrupted inode contents
[  117.884529][ T5688] EXT4-fs error (device loop0): ext4_dirty_inode:6010: inode #3: comm syz.0.457: mark_inode_dirty error
[  117.900824][ T5688] EXT4-fs error (device loop0): ext4_do_update_inode:5174: inode #3: comm syz.0.457: corrupted inode contents
[  117.965169][ T5688] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #3: comm syz.0.457: mark_inode_dirty error
[  117.982651][ T5688] EXT4-fs error (device loop0): ext4_acquire_dquot:6197: comm syz.0.457: Failed to acquire dquot type 0
[  118.031468][ T5688] EXT4-fs error (device loop0): ext4_do_update_inode:5174: inode #16: comm syz.0.457: corrupted inode contents
[  118.109901][ T5688] EXT4-fs error (device loop0): ext4_dirty_inode:6010: inode #16: comm syz.0.457: mark_inode_dirty error
[  118.161769][ T5688] EXT4-fs error (device loop0): ext4_do_update_inode:5174: inode #16: comm syz.0.457: corrupted inode contents
[  118.189828][ T5688] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #16: comm syz.0.457: mark_inode_dirty error
[  118.228074][ T5688] EXT4-fs error (device loop0): ext4_do_update_inode:5174: inode #16: comm syz.0.457: corrupted inode contents
[  118.261145][ T5688] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[  118.287806][ T5688] EXT4-fs error (device loop0): ext4_do_update_inode:5174: inode #16: comm syz.0.457: corrupted inode contents
[  118.320691][ T5688] EXT4-fs error (device loop0): ext4_truncate:4272: inode #16: comm syz.0.457: mark_inode_dirty error
[  118.358464][ T5688] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[  118.399374][ T5688] EXT4-fs (loop0): 1 truncate cleaned up
[  118.416981][ T5688] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  118.448553][ T5688] ext4 filesystem being mounted at /58/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  118.765849][ T5706] IPv6: sit1: Disabled Multicast RS
[  119.609434][ T5692] loop3: detected capacity change from 0 to 32768
[  119.896097][ T5692] XFS (loop3): Mounting V5 Filesystem
[  120.053978][ T5692] XFS (loop3): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[  120.116852][ T5692] XFS (loop3): Starting recovery (logdev: internal)
[  120.158264][ T5692] XFS (loop3): Ending recovery (logdev: internal)
[  120.308150][ T4172] XFS (loop3): Unmounting Filesystem
[  120.798272][ T5739] loop0: detected capacity change from 0 to 2048
[  120.900898][ T5739] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  120.919970][ T5741] fuse: Unknown parameter 'group_id00000000000000000000'
[  123.521525][ T5768] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  123.563942][ T5771] loop0: detected capacity change from 0 to 256
[  123.828254][ T5781] loop3: detected capacity change from 0 to 512
[  123.876392][ T5771] loop0: detected capacity change from 0 to 512
[  123.937509][ T5781] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2219: inode #15: comm syz.3.488: corrupted in-inode xattr
[  123.970496][ T5781] EXT4-fs error (device loop3): ext4_orphan_get:1406: comm syz.3.488: couldn't read orphan inode 15 (err -117)
[  123.991270][ T5781] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  124.231324][ T5785] loop3: detected capacity change from 0 to 2048
[  124.264239][ T5785] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  125.507211][ T5803] loop3: detected capacity change from 0 to 1024
[  125.610988][ T5807] netdevsim netdevsim1 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  125.639135][ T5803] EXT4-fs (loop3): mounted filesystem without journal. Opts: nodiscard,nombcache,,errors=continue. Quota mode: none.
[  125.668136][ T5803] ext4 filesystem being mounted at /102/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  125.685827][ T5807] netdevsim netdevsim1 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  125.715274][ T5807] netdevsim netdevsim1 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  125.757868][ T5799] loop0: detected capacity change from 0 to 32768
[  125.764623][ T5807] netdevsim netdevsim1 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  125.774999][ T5807] device geneve2 entered promiscuous mode
[  125.822178][ T4239] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  126.030244][ T5799] XFS (loop0): Mounting V5 Filesystem
[  126.154445][ T5799] XFS (loop0): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[  126.193847][ T5833] loop2: detected capacity change from 0 to 1024
[  126.278781][ T5799] XFS (loop0): Starting recovery (logdev: internal)
[  126.310284][ T5799] XFS (loop0): Ending recovery (logdev: internal)
[  126.655722][ T5838] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  126.665578][ T5838] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  126.673183][ T5838] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  127.138863][ T4167] XFS (loop0): Unmounting Filesystem
[  127.602845][ T5843] netlink: 'syz.3.507': attribute type 3 has an invalid length.
[  128.698782][ T5880] netlink: 'syz.1.521': attribute type 3 has an invalid length.
[  128.864311][ T5888] netlink: 24 bytes leftover after parsing attributes in process `syz.1.526'.
[  129.141238][   T26] kauditd_printk_skb: 43 callbacks suppressed
[  129.141254][   T26] audit: type=1326 audit(1743681152.956:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5892 comm="syz.0.528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce779a1169 code=0x7ffc0000
[  129.142089][ T5893] futex_wake_op: syz.0.528 tries to shift op by -1; fix this program
[  129.149790][   T26] audit: type=1326 audit(1743681152.956:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5892 comm="syz.0.528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce779a1169 code=0x7ffc0000
[  129.332628][   T26] audit: type=1326 audit(1743681153.036:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5892 comm="syz.0.528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fce779a1169 code=0x7ffc0000
[  129.366136][   T26] audit: type=1326 audit(1743681153.036:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5892 comm="syz.0.528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce779a1169 code=0x7ffc0000
[  129.440429][   T26] audit: type=1326 audit(1743681153.036:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5892 comm="syz.0.528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce779a1169 code=0x7ffc0000
[  129.517591][   T26] audit: type=1326 audit(1743681153.036:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5892 comm="syz.0.528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fce779a1169 code=0x7ffc0000
[  129.555659][   T26] audit: type=1326 audit(1743681153.036:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5892 comm="syz.0.528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce779a1169 code=0x7ffc0000
[  129.643339][   T26] audit: type=1326 audit(1743681153.036:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5892 comm="syz.0.528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce779a1169 code=0x7ffc0000
[  129.665850][   T26] audit: type=1326 audit(1743681153.036:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5892 comm="syz.0.528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fce779a1169 code=0x7ffc0000
[  129.696874][   T26] audit: type=1326 audit(1743681153.036:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5892 comm="syz.0.528" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fce779a1169 code=0x7ffc0000
[  130.711912][ T5915] netlink: 24 bytes leftover after parsing attributes in process `syz.0.537'.
[  131.062906][ T5930] loop2: detected capacity change from 0 to 2048
[  131.139260][ T5930] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  131.483718][ T5949] netlink: 24 bytes leftover after parsing attributes in process `syz.1.552'.
[  131.723630][ T5959] loop0: detected capacity change from 0 to 512
[  131.905539][ T5959] EXT4-fs error (device loop0): ext4_do_update_inode:5174: inode #3: comm syz.0.556: corrupted inode contents
[  131.979254][ T5959] EXT4-fs error (device loop0): ext4_dirty_inode:6010: inode #3: comm syz.0.556: mark_inode_dirty error
[  132.040406][ T5959] EXT4-fs error (device loop0): ext4_do_update_inode:5174: inode #3: comm syz.0.556: corrupted inode contents
[  132.101760][ T5959] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #3: comm syz.0.556: mark_inode_dirty error
[  132.134349][ T5959] EXT4-fs error (device loop0): ext4_acquire_dquot:6197: comm syz.0.556: Failed to acquire dquot type 0
[  132.186940][ T5959] EXT4-fs error (device loop0): ext4_do_update_inode:5174: inode #16: comm syz.0.556: corrupted inode contents
[  132.212115][ T5959] EXT4-fs error (device loop0): ext4_dirty_inode:6010: inode #16: comm syz.0.556: mark_inode_dirty error
[  132.242191][ T5959] EXT4-fs error (device loop0): ext4_do_update_inode:5174: inode #16: comm syz.0.556: corrupted inode contents
[  132.272206][ T5959] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #16: comm syz.0.556: mark_inode_dirty error
[  132.309016][ T5959] EXT4-fs error (device loop0): ext4_do_update_inode:5174: inode #16: comm syz.0.556: corrupted inode contents
[  132.342309][ T5959] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[  132.371748][ T5959] EXT4-fs error (device loop0): ext4_do_update_inode:5174: inode #16: comm syz.0.556: corrupted inode contents
[  132.407280][ T5959] EXT4-fs error (device loop0): ext4_truncate:4272: inode #16: comm syz.0.556: mark_inode_dirty error
[  132.429729][ T5959] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[  132.460981][ T5959] EXT4-fs (loop0): 1 truncate cleaned up
[  132.479968][ T5959] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  132.516977][ T5959] ext4 filesystem being mounted at /76/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  132.626067][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[  132.633179][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[  133.151708][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #202!!!
[  133.161684][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #202!!!
[  133.170645][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #202!!!
[  133.179649][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #282!!!
[  133.188598][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #282!!!
[  133.197579][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #382!!!
[  133.206541][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #382!!!
[  133.215518][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #382!!!
[  133.224460][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #382!!!
[  133.233437][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #382!!!
[  133.486467][ T5999] netlink: 8 bytes leftover after parsing attributes in process `syz.0.567'.
[  133.510027][ T5999] device bridge1 entered promiscuous mode
[  134.956492][ T5993] loop2: detected capacity change from 0 to 32768
[  135.076467][ T5993] XFS (loop2): Mounting V5 Filesystem
[  135.205101][ T5993] XFS (loop2): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[  135.320991][ T5993] XFS (loop2): Starting recovery (logdev: internal)
[  135.410664][ T5993] XFS (loop2): Ending recovery (logdev: internal)
[  135.502726][ T4171] XFS (loop2): Unmounting Filesystem
[  136.007293][ T6077] loop2: detected capacity change from 0 to 512
[  136.135075][ T6077] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #3: comm syz.2.588: corrupted inode contents
[  136.201272][ T6077] EXT4-fs error (device loop2): ext4_dirty_inode:6010: inode #3: comm syz.2.588: mark_inode_dirty error
[  136.234848][ T6077] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #3: comm syz.2.588: corrupted inode contents
[  136.330615][ T6083] loop0: detected capacity change from 0 to 512
[  136.340382][ T6077] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #3: comm syz.2.588: mark_inode_dirty error
[  136.450752][ T6083] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  136.824817][ T6083] EXT4-fs (loop0): 1 truncate cleaned up
[  136.830788][ T6083] EXT4-fs (loop0): mounted filesystem without journal. Opts: init_itable=0x0000000000000000,jqfmt=vfsold,debug_want_extra_isize=0x000000000000006a,user_xattr,errors=remount-ro,quota,. Quota mode: writeback.
[  136.841879][ T6077] __quota_error: 3 callbacks suppressed
[  136.841899][ T6077] Quota error (device loop2): write_blk: dquota write failed
[  136.899690][ T6077] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  136.910077][ T6077] EXT4-fs error (device loop2): ext4_acquire_dquot:6197: comm syz.2.588: Failed to acquire dquot type 0
[  136.928159][ T6077] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #16: comm syz.2.588: corrupted inode contents
[  136.949292][ T6077] EXT4-fs error (device loop2): ext4_dirty_inode:6010: inode #16: comm syz.2.588: mark_inode_dirty error
[  136.962157][ T6077] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #16: comm syz.2.588: corrupted inode contents
[  137.019152][ T6077] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #16: comm syz.2.588: mark_inode_dirty error
[  137.068574][ T6077] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #16: comm syz.2.588: corrupted inode contents
[  137.107656][ T6077] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  137.133398][ T6077] EXT4-fs error (device loop2): ext4_do_update_inode:5174: inode #16: comm syz.2.588: corrupted inode contents
[  137.170700][ T6077] EXT4-fs error (device loop2): ext4_truncate:4272: inode #16: comm syz.2.588: mark_inode_dirty error
[  137.190949][ T6095] netlink: 8 bytes leftover after parsing attributes in process `syz.0.603'.
[  137.200437][ T6077] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  137.215125][ T6077] EXT4-fs (loop2): 1 truncate cleaned up
[  137.220784][ T6077] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  137.236286][ T6077] ext4 filesystem being mounted at /87/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  137.258082][ T6095] bridge0: port 2(bridge_slave_1) entered disabled state
[  137.265424][ T6095] bridge0: port 1(bridge_slave_0) entered disabled state
[  137.915323][ T6089] loop3: detected capacity change from 0 to 32768
[  138.116816][ T6119] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  138.848253][ T6089] XFS (loop3): Mounting V5 Filesystem
[  138.979134][ T6089] XFS (loop3): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[  139.093371][ T6089] XFS (loop3): Starting recovery (logdev: internal)
[  139.122958][ T6138] netlink: 452 bytes leftover after parsing attributes in process `syz.2.615'.
[  139.137815][ T6089] XFS (loop3): Ending recovery (logdev: internal)
[  139.181831][ T6139] loop0: detected capacity change from 0 to 512
[  139.238240][ T4172] XFS (loop3): Unmounting Filesystem
[  139.306044][ T6139] EXT4-fs error (device loop0): ext4_do_update_inode:5174: inode #3: comm syz.0.617: corrupted inode contents
[  139.306709][ T6139] EXT4-fs error (device loop0): ext4_dirty_inode:6010: inode #3: comm syz.0.617: mark_inode_dirty error
[  139.307857][ T6139] EXT4-fs error (device loop0): ext4_do_update_inode:5174: inode #3: comm syz.0.617: corrupted inode contents
[  139.308207][ T6139] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #3: comm syz.0.617: mark_inode_dirty error
[  139.309265][ T6139] Quota error (device loop0): write_blk: dquota write failed
[  139.309354][ T6139] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  139.309394][ T6139] EXT4-fs error (device loop0): ext4_acquire_dquot:6197: comm syz.0.617: Failed to acquire dquot type 0
[  139.310641][ T6139] EXT4-fs error (device loop0): ext4_do_update_inode:5174: inode #16: comm syz.0.617: corrupted inode contents
[  139.311002][ T6139] EXT4-fs error (device loop0): ext4_dirty_inode:6010: inode #16: comm syz.0.617: mark_inode_dirty error
[  139.311366][ T6139] EXT4-fs error (device loop0): ext4_do_update_inode:5174: inode #16: comm syz.0.617: corrupted inode contents
[  139.312410][ T6139] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #16: comm syz.0.617: mark_inode_dirty error
[  139.314505][ T6139] EXT4-fs error (device loop0): ext4_do_update_inode:5174: inode #16: comm syz.0.617: corrupted inode contents
[  139.322259][ T6139] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[  139.322611][ T6139] EXT4-fs error (device loop0): ext4_do_update_inode:5174: inode #16: comm syz.0.617: corrupted inode contents
[  139.322911][ T6139] EXT4-fs error (device loop0): ext4_truncate:4272: inode #16: comm syz.0.617: mark_inode_dirty error
[  139.323216][ T6139] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[  139.324044][ T6139] EXT4-fs (loop0): 1 truncate cleaned up
[  139.324066][ T6139] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  139.324184][ T6139] ext4 filesystem being mounted at /92/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  139.689737][ T6155] blk_update_request: I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 0
[  139.689935][ T6155] SQUASHFS error: Failed to read block 0x0: -5
[  140.200164][ T6176] netlink: 452 bytes leftover after parsing attributes in process `syz.0.629'.
[  140.315291][ T6184] loop0: detected capacity change from 0 to 164
[  140.362282][ T6185] loop2: detected capacity change from 0 to 512
[  140.439622][ T6191] binder: 6190:6191 ioctl 4018620d 0 returned -22
[  140.451450][ T6191] binder: 6190:6191 ioctl c0306201 200000001d40 returned -14
[  140.459656][ T6184] ISOFS: unable to read i-node block
[  140.491872][ T6184] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  140.506681][ T6185] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  140.540981][ T6185] ext4 filesystem being mounted at /94/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  141.780164][ T6214] netlink: 452 bytes leftover after parsing attributes in process `syz.1.647'.
[  141.795103][ T6213] loop0: detected capacity change from 0 to 128
[  142.049353][ T6226] loop2: detected capacity change from 0 to 128
[  142.469264][ T6226] EXT4-fs (loop2): Test dummy encryption mode enabled
[  142.517687][ T6226] EXT4-fs (loop2): Test dummy encryption mode enabled
[  142.579560][ T6226] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption=v1,test_dummy_encryption=v1,,errors=continue. Quota mode: none.
[  142.667316][ T6226] ext4 filesystem being mounted at /96/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  143.762908][ T6279] loop2: detected capacity change from 0 to 512
[  143.852938][ T6279] EXT4-fs error (device loop2): ext4_ext_check_inode:501: inode #4: comm syz.2.672: pblk 26 bad header/extent: invalid extent entries - magic f30a, entries 3, max 4(4), depth 0(0)
[  143.955590][ T6279] EXT4-fs error (device loop2): ext4_quota_enable:6391: comm syz.2.672: Bad quota inode: 4, type: 1
[  144.022107][ T6279] EXT4-fs warning (device loop2): ext4_enable_quotas:6432: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  144.085382][ T6279] EXT4-fs (loop2): mount failed
[  144.846639][ T6274] loop0: detected capacity change from 0 to 32768
[  145.541536][ T6305] IPv6: NLM_F_REPLACE set, but no existing node found!
[  145.737332][ T6274] XFS (loop0): Mounting V5 Filesystem
[  145.879937][ T6274] XFS (loop0): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[  145.944338][ T6322] loop3: detected capacity change from 0 to 128
[  146.359648][ T6274] XFS (loop0): Starting recovery (logdev: internal)
[  147.640847][ T6274] XFS (loop0): Ending recovery (logdev: internal)
[  147.731842][   T21] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  147.770000][ T4167] XFS (loop0): Unmounting Filesystem
[  147.983808][   T21] usb 4-1: Using ep0 maxpacket: 32
[  148.102022][   T21] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  148.149538][   T21] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  148.171765][   T21] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  148.200102][   T21] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  148.284123][   T21] hub 4-1:4.0: USB hub found
[  148.493249][   T21] hub 4-1:4.0: 2 ports detected
[  148.898623][ T6354] loop2: detected capacity change from 0 to 1764
[  148.921878][   T21] hub 4-1:4.0: set hub depth failed
[  148.972129][   T21] usb 4-1: USB disconnect, device number 3
[  150.010866][ T6370] netlink: 8 bytes leftover after parsing attributes in process `syz.1.698'.
[  150.032278][ T6370] device bridge1 entered promiscuous mode
[  150.868818][ T6374] loop0: detected capacity change from 0 to 2048
[  150.902038][ T6366] loop2: detected capacity change from 0 to 32768
[  150.985391][ T6374] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  151.222358][ T6366] XFS (loop2): Mounting V5 Filesystem
[  151.336396][ T6366] XFS (loop2): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[  151.480908][ T6366] XFS (loop2): Starting recovery (logdev: internal)
[  151.507229][ T6366] XFS (loop2): Ending recovery (logdev: internal)
[  151.622250][ T4171] XFS (loop2): Unmounting Filesystem
[  152.359077][ T6418] netlink: 20 bytes leftover after parsing attributes in process `syz.1.715'.
[  152.472132][ T6420] fuse: Bad value for 'rootmode'
[  153.259362][   T26] audit: type=1326 audit(1743681177.076:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6444 comm="syz.3.723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77fb215169 code=0x7ffc0000
[  153.263440][ T6445] futex_wake_op: syz.3.723 tries to shift op by -1; fix this program
[  153.421697][   T26] audit: type=1326 audit(1743681177.076:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6444 comm="syz.3.723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77fb215169 code=0x7ffc0000
[  153.494686][   T26] audit: type=1326 audit(1743681177.076:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6444 comm="syz.3.723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f77fb215169 code=0x7ffc0000
[  153.526979][   T26] audit: type=1326 audit(1743681177.076:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6444 comm="syz.3.723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77fb215169 code=0x7ffc0000
[  153.611831][   T26] audit: type=1326 audit(1743681177.076:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6444 comm="syz.3.723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77fb215169 code=0x7ffc0000
[  153.674691][   T26] audit: type=1326 audit(1743681177.076:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6444 comm="syz.3.723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7f77fb215169 code=0x7ffc0000
[  153.756914][   T26] audit: type=1326 audit(1743681177.076:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6444 comm="syz.3.723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77fb215169 code=0x7ffc0000
[  153.835461][   T26] audit: type=1326 audit(1743681177.076:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6444 comm="syz.3.723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77fb215169 code=0x7ffc0000
[  153.858034][ T6455] netlink: 24 bytes leftover after parsing attributes in process `syz.4.727'.
[  153.921821][   T26] audit: type=1326 audit(1743681177.076:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6444 comm="syz.3.723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77fb215169 code=0x7ffc0000
[  153.991724][   T26] audit: type=1326 audit(1743681177.186:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6444 comm="syz.3.723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77fb215169 code=0x7ffc0000
[  154.060330][ T6457] netlink: 12 bytes leftover after parsing attributes in process `syz.3.728'.
[  154.115212][ T6459] netlink: 20 bytes leftover after parsing attributes in process `syz.4.729'.
[  154.456057][ T6464] fuse: Bad value for 'rootmode'
[  154.776976][ T6472] futex_wake_op: syz.2.735 tries to shift op by -1; fix this program
[  154.921532][ T6485] netlink: 20 bytes leftover after parsing attributes in process `syz.2.740'.
[  155.210140][ T6493] fuse: Bad value for 'rootmode'
[  155.777547][ T6510] futex_wake_op: syz.0.750 tries to shift op by -1; fix this program
[  155.781815][ T4279] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  156.168442][ T6521] netlink: 20 bytes leftover after parsing attributes in process `syz.1.755'.
[  156.192805][ T4279] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 86, changing to 10
[  156.234755][ T4279] usb 3-1: New USB device found, idVendor=056a, idProduct=0333, bcdDevice= 0.00
[  157.059616][ T4279] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  157.076613][ T4279] usb 3-1: config 0 descriptor??
[  157.330303][ T6539] loop0: detected capacity change from 0 to 2048
[  157.481754][ T6539] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  157.532569][ T6543] futex_wake_op: syz.1.763 tries to shift op by -1; fix this program
[  157.581511][ T4279] wacom 0003:056A:0333.0002: hidraw0: USB HID v0.00 Device [HID 056a:0333] on usb-dummy_hcd.2-1/input0
[  157.766031][ T4279] usb 3-1: USB disconnect, device number 3
[  158.090815][ T6553] netlink: 24 bytes leftover after parsing attributes in process `syz.0.764'.
[  158.193195][ T6556] netlink: 20 bytes leftover after parsing attributes in process `syz.4.768'.
[  158.313588][ T6562] loop0: detected capacity change from 0 to 164
[  158.601063][ T6571] netlink: 'syz.4.775': attribute type 4 has an invalid length.
[  158.682125][ T6571] netlink: 4 bytes leftover after parsing attributes in process `syz.4.775'.
[  158.983696][ T6576] 9pnet: Insufficient options for proto=fd
[  159.140359][ T6584] netlink: 20 bytes leftover after parsing attributes in process `syz.1.781'.
[  159.814197][ T6598] loop2: detected capacity change from 0 to 164
[  160.111422][ T6601] loop3: detected capacity change from 0 to 2048
[  160.387422][ T6601] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  160.467032][ T6613] netlink: 12 bytes leftover after parsing attributes in process `syz.4.793'.
[  160.537523][ T6615] loop0: detected capacity change from 0 to 512
[  160.771496][ T6615] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: comm syz.0.794: inode #1: comm syz.0.794: iget: illegal inode #
[  160.858297][ T6626] loop3: detected capacity change from 0 to 512
[  160.859990][ T6615] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.794: error while reading EA inode 1 err=-117
[  160.894995][ T6624] loop2: detected capacity change from 0 to 1024
[  160.949129][ T6626] EXT4-fs error (device loop3): ext4_do_update_inode:5174: inode #3: comm syz.3.798: corrupted inode contents
[  160.962376][ T6615] EXT4-fs (loop0): 1 orphan inode deleted
[  161.007120][ T6615] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  161.026708][ T6626] EXT4-fs error (device loop3): ext4_dirty_inode:6010: inode #3: comm syz.3.798: mark_inode_dirty error
[  161.138475][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.154633][ T6626] EXT4-fs error (device loop3): ext4_do_update_inode:5174: inode #3: comm syz.3.798: corrupted inode contents
[  161.158792][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.174806][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.195029][ T6626] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #3: comm syz.3.798: mark_inode_dirty error
[  161.216703][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.231139][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.239508][ T4167] EXT4-fs error (device loop0): htree_dirblock_to_tree:1112: inode #2: block 13: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=76, inode=0, rec_len=0, size=1024 fake=0
[  161.249985][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.262455][ T6626] __quota_error: 44 callbacks suppressed
[  161.262474][ T6626] Quota error (device loop3): write_blk: dquota write failed
[  161.280969][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.284292][ T6626] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  161.290837][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.299500][ T6626] EXT4-fs error (device loop3): ext4_acquire_dquot:6197: comm syz.3.798: Failed to acquire dquot type 0
[  161.312677][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.318597][ T4167] EXT4-fs error (device loop0): ext4_lookup:1862: inode #2: comm syz-executor: deleted inode referenced: 15
[  161.329250][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.343167][ T6626] EXT4-fs error (device loop3): ext4_do_update_inode:5174: inode #16: comm syz.3.798: corrupted inode contents
[  161.351972][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.356427][ T4167] EXT4-fs error (device loop0): ext4_lookup:1862: inode #2: comm syz-executor: deleted inode referenced: 15
[  161.369049][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.375822][ T6626] EXT4-fs error (device loop3): ext4_dirty_inode:6010: inode #16: comm syz.3.798: mark_inode_dirty error
[  161.394048][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.401365][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.407885][ T6626] EXT4-fs error (device loop3): ext4_do_update_inode:5174: inode #16: comm syz.3.798: corrupted inode contents
[  161.416019][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.425620][ T6626] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #16: comm syz.3.798: mark_inode_dirty error
[  161.431384][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.445698][ T6626] EXT4-fs error (device loop3): ext4_do_update_inode:5174: inode #16: comm syz.3.798: corrupted inode contents
[  161.450575][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.477863][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.483792][ T6626] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[  161.485453][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.501451][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.507715][ T6626] EXT4-fs error (device loop3): ext4_do_update_inode:5174: inode #16: comm syz.3.798: corrupted inode contents
[  161.510712][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.528314][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.540507][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.548016][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.556848][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.564467][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.565621][ T6626] EXT4-fs error (device loop3): ext4_truncate:4272: inode #16: comm syz.3.798: mark_inode_dirty error
[  161.583817][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.591334][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.599031][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.606568][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.615903][ T6626] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[  161.617506][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.632422][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.639110][ T6626] EXT4-fs (loop3): 1 truncate cleaned up
[  161.639908][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.671974][ T6626] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  161.684731][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.692885][ T6626] ext4 filesystem being mounted at /140/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  161.704050][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.711357][ T6624] hfsplus: request for non-existent node 16777216 in B*Tree
[  161.741904][   T26] audit: type=1800 audit(1743681185.566:163): pid=6624 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.797" name="file1" dev="loop2" ino=20 res=0 errno=0
[  161.970033][ T6646] loop2: detected capacity change from 0 to 2048
[  162.032193][ T6646] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  162.237774][ T6656] loop3: detected capacity change from 0 to 512
[  162.297176][ T6656] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  162.321778][ T6656] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[  162.377627][ T6656] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended
[  162.451400][ T6656] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  162.526449][ T6656] System zones: 0-2, 18-18, 34-35
[  162.543177][ T6656] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  162.828954][ T6658] chnl_net:caif_netlink_parms(): no params data found
[  162.947450][ T6674] loop2: detected capacity change from 0 to 164
[  163.213466][ T6658] bridge0: port 1(bridge_slave_0) entered blocking state
[  163.231843][ T6658] bridge0: port 1(bridge_slave_0) entered disabled state
[  163.266293][ T6658] device bridge_slave_0 entered promiscuous mode
[  163.297713][ T6658] bridge0: port 2(bridge_slave_1) entered blocking state
[  163.318254][ T6658] bridge0: port 2(bridge_slave_1) entered disabled state
[  163.327675][ T6658] device bridge_slave_1 entered promiscuous mode
[  163.458196][ T6696] loop2: detected capacity change from 0 to 2048
[  163.470751][ T6658] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  163.640754][ T6696] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  163.760421][ T6702] loop3: detected capacity change from 0 to 512
[  163.767743][ T6658] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  164.560648][ T4306] Bluetooth: hci0: command 0x0409 tx timeout
[  164.740457][ T6702] EXT4-fs error (device loop3): ext4_do_update_inode:5174: inode #3: comm syz.3.831: corrupted inode contents
[  164.761074][ T6702] EXT4-fs error (device loop3): ext4_dirty_inode:6010: inode #3: comm syz.3.831: mark_inode_dirty error
[  164.787060][ T6702] EXT4-fs error (device loop3): ext4_do_update_inode:5174: inode #3: comm syz.3.831: corrupted inode contents
[  164.807460][ T6702] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #3: comm syz.3.831: mark_inode_dirty error
[  164.835807][ T6658] team0: Port device team_slave_0 added
[  164.845310][ T6702] Quota error (device loop3): write_blk: dquota write failed
[  164.875835][ T6658] team0: Port device team_slave_1 added
[  164.884288][ T6702] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  164.942727][ T6702] EXT4-fs error (device loop3): ext4_acquire_dquot:6197: comm syz.3.831: Failed to acquire dquot type 0
[  165.012928][ T6702] EXT4-fs error (device loop3): ext4_do_update_inode:5174: inode #16: comm syz.3.831: corrupted inode contents
[  165.066258][ T6658] batman_adv: batadv0: Adding interface: batadv_slave_0
[  165.082489][ T6702] EXT4-fs error (device loop3): ext4_dirty_inode:6010: inode #16: comm syz.3.831: mark_inode_dirty error
[  165.094288][ T6658] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  165.151022][ T6658] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  165.192851][ T6658] batman_adv: batadv0: Adding interface: batadv_slave_1
[  165.199993][ T6658] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  165.231894][ T6702] EXT4-fs error (device loop3): ext4_do_update_inode:5174: inode #16: comm syz.3.831: corrupted inode contents
[  165.312309][ T6658] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  165.329812][ T6702] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #16: comm syz.3.831: mark_inode_dirty error
[  165.358313][ T6702] EXT4-fs error (device loop3): ext4_do_update_inode:5174: inode #16: comm syz.3.831: corrupted inode contents
[  165.423885][ T6702] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[  165.698519][ T6702] EXT4-fs error (device loop3): ext4_do_update_inode:5174: inode #16: comm syz.3.831: corrupted inode contents
[  166.194734][ T6702] EXT4-fs error (device loop3): ext4_truncate:4272: inode #16: comm syz.3.831: mark_inode_dirty error
[  166.215403][ T6658] device hsr_slave_0 entered promiscuous mode
[  166.253323][ T6702] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[  166.268234][ T6658] device hsr_slave_1 entered promiscuous mode
[  166.309976][ T6702] EXT4-fs (loop3): 1 truncate cleaned up
[  166.311774][ T6658] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  166.322599][ T6702] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  166.344632][ T6702] ext4 filesystem being mounted at /147/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  166.365043][ T6658] Cannot create hsr debugfs directory
[  166.612081][ T4279] Bluetooth: hci0: command 0x041b tx timeout
[  166.719309][ T6718] loop2: detected capacity change from 0 to 32768
[  166.736316][ T6658] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  166.757821][ T6658] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  166.777615][ T6658] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  166.798433][ T6658] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  166.856971][ T6718] XFS (loop2): Mounting V5 Filesystem
[  166.914077][ T6718] XFS (loop2): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[  166.983334][ T6718] XFS (loop2): Starting recovery (logdev: internal)
[  167.014094][ T6658] 8021q: adding VLAN 0 to HW filter on device bond0
[  167.017949][ T6718] XFS (loop2): Ending recovery (logdev: internal)
[  167.067737][ T4523] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  167.081037][ T4523] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  167.088791][ T4171] XFS (loop2): Unmounting Filesystem
[  167.107208][ T6658] 8021q: adding VLAN 0 to HW filter on device team0
[  167.133589][ T4631] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  167.148131][ T4631] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  167.157952][ T4631] bridge0: port 1(bridge_slave_0) entered blocking state
[  167.165123][ T4631] bridge0: port 1(bridge_slave_0) entered forwarding state
[  167.251299][ T4631] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  167.314717][ T4631] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  167.368170][ T4631] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  168.770103][   T13] Bluetooth: hci0: command 0x040f tx timeout
[  168.797091][ T4631] bridge0: port 2(bridge_slave_1) entered blocking state
[  168.804232][ T4631] bridge0: port 2(bridge_slave_1) entered forwarding state
[  168.874982][ T4631] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  169.031145][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  169.088149][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  169.149623][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  169.169045][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  169.205917][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  169.402387][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  169.410559][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  169.424140][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  169.433194][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  169.442844][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  169.455351][ T6780] netlink: 452 bytes leftover after parsing attributes in process `syz.1.854'.
[  169.470160][ T6779] netlink: 12 bytes leftover after parsing attributes in process `syz.3.855'.
[  169.525694][ T4355] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  169.545487][ T6786] loop2: detected capacity change from 0 to 512
[  169.560266][ T6658] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  169.604921][ T4355] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  169.626083][ T6786] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  169.642137][ T6786] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  169.686469][ T6786] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended
[  169.700821][ T6786] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  169.717080][ T6786] System zones: 0-2, 18-18, 34-35
[  169.726945][ T4355] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  169.751388][ T6786] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  169.860370][ T4355] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  170.673114][ T6658] 8021q: adding VLAN 0 to HW filter on device batadv0
[  170.720437][ T4240] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  170.733423][ T4240] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  170.741059][ T6817] netlink: 12 bytes leftover after parsing attributes in process `syz.4.866'.
[  170.851802][   T13] Bluetooth: hci0: command 0x0419 tx timeout
[  171.103085][ T6833] netlink: 452 bytes leftover after parsing attributes in process `syz.3.870'.
[  171.329043][ T4240] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  171.351334][ T4240] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  171.435570][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  171.447447][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  171.469253][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  171.489479][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  171.504832][ T6658] device veth0_vlan entered promiscuous mode
[  171.524887][ T6658] device veth1_vlan entered promiscuous mode
[  171.563030][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  171.574598][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  171.585635][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  171.596038][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  171.649272][ T6658] device veth0_macvtap entered promiscuous mode
[  171.772918][ T6658] device veth1_macvtap entered promiscuous mode
[  171.828800][ T6658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  171.857872][ T6658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.874705][ T6879] netlink: 144 bytes leftover after parsing attributes in process `syz.3.884'.
[  171.908325][ T6658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  171.953721][ T6658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.016007][ T6658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  172.027834][ T6658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.048548][ T6658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  172.078795][ T6658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.097079][ T6658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  172.115412][ T6658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.130263][ T6658] batman_adv: batadv0: Interface activated: batadv_slave_0
[  172.142639][ T6658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  172.153742][ T6658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.165823][ T6658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  172.190216][ T6658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.209679][ T6658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  172.238814][ T6658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.249500][ T6658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  172.260507][ T6658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.270954][ T6658] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  172.282063][ T6658] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.294016][ T6658] batman_adv: batadv0: Interface activated: batadv_slave_1
[  172.397492][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  172.431473][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  172.441386][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  172.450739][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  172.460327][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  172.482516][ T6897] netlink: 452 bytes leftover after parsing attributes in process `syz.4.893'.
[  172.482990][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  172.510236][ T6658] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  172.527829][ T6658] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  172.537552][ T6658] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  172.553826][ T6658] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  172.917518][ T4631] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  172.936174][ T4631] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  173.014585][ T4523] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  173.041882][ T4523] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  173.049968][ T4523] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  173.139707][ T4523] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  173.282434][ T4355] device hsr_slave_0 left promiscuous mode
[  173.307084][ T4355] device hsr_slave_1 left promiscuous mode
[  173.343845][ T4355] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  173.357220][ T4355] batman_adv: batadv0: Removing interface: batadv_slave_0
[  173.382710][ T4355] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  173.405248][ T4355] batman_adv: batadv0: Removing interface: batadv_slave_1
[  173.463942][ T4355] device bridge_slave_1 left promiscuous mode
[  173.486462][ T4355] bridge0: port 2(bridge_slave_1) entered disabled state
[  173.548148][ T4355] device bridge_slave_0 left promiscuous mode
[  173.557648][ T4355] bridge0: port 1(bridge_slave_0) entered disabled state
[  173.640693][ T4355] device veth1_macvtap left promiscuous mode
[  173.651546][ T4355] device veth0_macvtap left promiscuous mode
[  173.667136][ T4355] device veth1_vlan left promiscuous mode
[  173.676441][ T4355] device veth0_vlan left promiscuous mode
[  173.926540][ T6960] netlink: 452 bytes leftover after parsing attributes in process `syz.3.915'.
[  174.041755][ T4355] team0 (unregistering): Port device team_slave_1 removed
[  174.061132][ T4355] team0 (unregistering): Port device team_slave_0 removed
[  174.077675][ T4355] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  174.096385][ T4355] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  174.179012][ T4355] bond0 (unregistering): Released all slaves
[  175.094987][ T7016] netlink: 20 bytes leftover after parsing attributes in process `syz.3.931'.
[  175.411451][ T7023] netlink: 452 bytes leftover after parsing attributes in process `syz.5.933'.
[  175.961247][ T7043] fuse: Unknown parameter '00000000000000000000004'
[  175.985963][   T26] audit: type=1326 audit(1743681199.796:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7039 comm="syz.4.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fb43fb169 code=0x7ffc0000
[  176.010579][ T7041] futex_wake_op: syz.4.939 tries to shift op by -1; fix this program
[  176.173630][   T26] audit: type=1326 audit(1743681199.836:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7039 comm="syz.4.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fb43fb169 code=0x7ffc0000
[  176.275319][ T7062] loop2: detected capacity change from 0 to 164
[  176.282019][   T26] audit: type=1326 audit(1743681199.836:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7039 comm="syz.4.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f8fb43fb169 code=0x7ffc0000
[  176.391260][   T26] audit: type=1326 audit(1743681199.836:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7039 comm="syz.4.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fb43fb169 code=0x7ffc0000
[  176.475123][   T26] audit: type=1326 audit(1743681199.836:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7039 comm="syz.4.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fb43fb169 code=0x7ffc0000
[  176.518053][ T7074] netlink: 20 bytes leftover after parsing attributes in process `syz.4.950'.
[  176.557548][   T26] audit: type=1326 audit(1743681199.836:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7039 comm="syz.4.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7f8fb43fb169 code=0x7ffc0000
[  176.631369][   T26] audit: type=1326 audit(1743681199.836:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7039 comm="syz.4.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fb43fb169 code=0x7ffc0000
[  176.713872][   T26] audit: type=1326 audit(1743681199.836:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7039 comm="syz.4.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fb43fb169 code=0x7ffc0000
[  176.775259][   T26] audit: type=1326 audit(1743681199.836:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7039 comm="syz.4.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fb43fb169 code=0x7ffc0000
[  176.818272][ T7080] fuse: Unknown parameter '00000000000000000000004'
[  176.916116][   T26] audit: type=1326 audit(1743681199.876:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7039 comm="syz.4.939" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8fb43fb169 code=0x7ffc0000
[  176.945619][ T7086] netlink: 452 bytes leftover after parsing attributes in process `syz.5.953'.
[  177.117409][ T7090] futex_wake_op: syz.1.957 tries to shift op by -1; fix this program
[  177.360811][ T7104] netlink: 12 bytes leftover after parsing attributes in process `syz.1.961'.
[  177.583556][ T7115] fuse: Unknown parameter '00000000000000000000004'
[  177.778321][ T7126] futex_wake_op: syz.4.971 tries to shift op by -1; fix this program
[  178.130326][ T7154] netlink: 12 bytes leftover after parsing attributes in process `syz.2.979'.
[  178.271219][ T7161] netlink: 452 bytes leftover after parsing attributes in process `syz.5.978'.
[  178.651559][ T7167] fuse: Unknown parameter 'fd00000000000000000000004'
[  179.148972][ T7192] futex_wake_op: syz.5.991 tries to shift op by -1; fix this program
[  179.500183][ T7213] fuse: Unknown parameter 'fd00000000000000000000004'
[  179.855244][ T7223] netlink: 452 bytes leftover after parsing attributes in process `syz.4.1000'.
[  180.154048][ T7239] netlink: 'syz.5.1005': attribute type 3 has an invalid length.
[  180.166058][ T7234] futex_wake_op: syz.1.1004 tries to shift op by -1; fix this program
[  180.383762][ T7258] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1011'.
[  180.649314][ T7264] netlink: 452 bytes leftover after parsing attributes in process `syz.4.1013'.
[  181.432243][ T7297] tmpfs: Unknown parameter 'usrquota'
[  181.542399][ T7301] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  182.418372][ T7328] 9pnet_virtio: no channels available for device syz
[  182.944572][ T7357] MPTCP: kernel_bind error, err=-99
[  183.494717][  T146] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci4/hci4:201'
[  183.511244][  T146] CPU: 0 PID: 146 Comm: kworker/u5:0 Not tainted 5.15.179-syzkaller #0
[  183.519518][  T146] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  183.529576][  T146] Workqueue: hci4 hci_rx_work
[  183.534285][  T146] Call Trace:
[  183.537565][  T146]  <TASK>
[  183.540519][  T146]  dump_stack_lvl+0x1e3/0x2d0
[  183.545213][  T146]  ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[  183.550858][  T146]  ? panic+0x860/0x860
[  183.554940][  T146]  ? sysfs_create_dir_ns+0x282/0x390
[  183.560278][  T146]  sysfs_create_dir_ns+0x2c6/0x390
[  183.565407][  T146]  ? sysfs_warn_dup+0xa0/0xa0
[  183.570131][  T146]  ? do_raw_spin_unlock+0x137/0x8b0
[  183.575354][  T146]  kobject_add_internal+0x6e0/0xe00
[  183.580573][  T146]  kobject_add+0x14e/0x210
[  183.585002][  T146]  ? device_add+0x3c2/0xfd0
[  183.589517][  T146]  ? kobject_init+0x1d0/0x1d0
[  183.594205][  T146]  ? __raw_spin_lock_init+0x41/0x100
[  183.599493][  T146]  ? get_device_parent+0x128/0x400
[  183.604614][  T146]  device_add+0x476/0xfd0
[  183.608969][  T146]  hci_conn_add_sysfs+0xe4/0x1f0
[  183.613918][  T146]  le_conn_complete_evt+0xc15/0x1500
[  183.619230][  T146]  ? cs_le_create_conn+0x5f0/0x5f0
[  183.624370][  T146]  hci_le_meta_evt+0x28c/0x3f50
[  183.629236][  T146]  ? __lock_acquire+0x1ff0/0x1ff0
[  183.634273][  T146]  ? __mutex_lock_common+0x444/0x25a0
[  183.639673][  T146]  ? hci_remote_host_features_evt+0x280/0x280
[  183.645762][  T146]  ? __mutex_unlock_slowpath+0x218/0x750
[  183.651397][  T146]  ? hci_event_packet+0x3b4/0x1550
[  183.656524][  T146]  ? mutex_unlock+0x10/0x10
[  183.661048][  T146]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  183.667051][  T146]  ? print_irqtrace_events+0x210/0x210
[  183.672536][  T146]  hci_event_packet+0xc41/0x1550
[  183.677552][  T146]  ? rcu_lock_release+0x20/0x20
[  183.682420][  T146]  ? hci_send_to_monitor+0x99/0x4d0
[  183.687626][  T146]  hci_rx_work+0x237/0xa10
[  183.692062][  T146]  process_one_work+0x8a1/0x10c0
[  183.697036][  T146]  ? worker_detach_from_pool+0x260/0x260
[  183.702687][  T146]  ? _raw_spin_lock_irqsave+0x120/0x120
[  183.708244][  T146]  ? kthread_data+0x4e/0xc0
[  183.712775][  T146]  ? wq_worker_running+0x97/0x170
[  183.717927][  T146]  worker_thread+0xaca/0x1280
[  183.722646][  T146]  kthread+0x3f6/0x4f0
[  183.726730][  T146]  ? rcu_lock_release+0x20/0x20
[  183.731634][  T146]  ? kthread_blkcg+0xd0/0xd0
[  183.736240][  T146]  ret_from_fork+0x1f/0x30
[  183.740687][  T146]  </TASK>
[  183.758857][  T146] kobject_add_internal failed for hci4:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  183.773082][  T146] Bluetooth: hci4: failed to register connection device
[  184.847691][ T7395] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1052'.
[  185.460267][ T7422] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1064'.
[  185.830710][ T7432] fuse: Unknown parameter 'user_id00000000000000000000'
[  186.531984][    T7] Bluetooth: hci1: command 0x0406 tx timeout
[  186.548811][    T7] Bluetooth: hci3: command 0x0406 tx timeout
[  186.566909][    T7] Bluetooth: hci4: command 0x0406 tx timeout
[  186.588850][    T7] Bluetooth: hci2: command 0x0406 tx timeout
[  187.061555][ T7450] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1076'.
[  187.237162][ T7459] fuse: Unknown parameter 'user_id00000000000000000000'
[  187.383397][ T7465] futex_wake_op: syz.1.1082 tries to shift op by -1; fix this program
[  187.384903][   T26] kauditd_printk_skb: 69 callbacks suppressed
[  187.384919][   T26] audit: type=1326 audit(4246654087.030:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7462 comm="syz.1.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43a287e169 code=0x7ffc0000
[  187.481346][   T26] audit: type=1326 audit(4246654087.040:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7462 comm="syz.1.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43a287e169 code=0x7ffc0000
[  187.538846][   T26] audit: type=1326 audit(4246654087.040:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7462 comm="syz.1.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f43a287e169 code=0x7ffc0000
[  188.534595][   T26] audit: type=1326 audit(4246654087.040:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7462 comm="syz.1.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43a287e169 code=0x7ffc0000
[  188.733718][   T26] audit: type=1326 audit(4246654087.040:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7462 comm="syz.1.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43a287e169 code=0x7ffc0000
[  188.928549][   T26] audit: type=1326 audit(4246654087.040:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7462 comm="syz.1.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7f43a287e169 code=0x7ffc0000
[  189.129479][   T26] audit: type=1326 audit(4246654087.040:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7462 comm="syz.1.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43a287e169 code=0x7ffc0000
[  189.221833][ T7502] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1093'.
[  189.266874][   T26] audit: type=1326 audit(4246654087.040:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7462 comm="syz.1.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43a287e169 code=0x7ffc0000
[  189.289448][   T26] audit: type=1326 audit(4246654087.040:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7462 comm="syz.1.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43a287e169 code=0x7ffc0000
[  189.312829][   T26] audit: type=1326 audit(4246654087.080:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7462 comm="syz.1.1082" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43a287e169 code=0x7ffc0000
[  189.434268][ T7512] futex_wake_op: syz.4.1096 tries to shift op by -1; fix this program
[  190.392623][ T7536] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1103'.
[  191.050718][ T7559] netlink: 452 bytes leftover after parsing attributes in process `syz.1.1105'.
[  191.595033][ T7569] futex_wake_op: syz.3.1111 tries to shift op by -1; fix this program
[  191.688338][ T7572] tmpfs: Unknown parameter 'usrquota'
[  191.799771][ T7575] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1113'.
[  192.635579][ T7428] Set syz1 is full, maxelem 65536 reached
[  192.726081][ T7595] overlayfs: failed to clone upperpath
[  192.877444][   T26] kauditd_printk_skb: 27 callbacks suppressed
[  192.877460][   T26] audit: type=1326 audit(4246654092.530:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7598 comm="syz.3.1123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77fb215169 code=0x7ffc0000
[  192.879126][ T7600] futex_wake_op: syz.3.1123 tries to shift op by -1; fix this program
[  192.901712][   T26] audit: type=1326 audit(4246654092.530:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7598 comm="syz.3.1123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77fb215169 code=0x7ffc0000
[  192.931158][ T7604] overlayfs: failed to clone upperpath
[  193.051664][   T26] audit: type=1326 audit(4246654092.530:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7598 comm="syz.3.1123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f77fb215169 code=0x7ffc0000
[  193.073935][ T7608] overlayfs: failed to clone upperpath
[  193.087902][ T7610] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1126'.
[  193.120525][ T7612] netlink: 328 bytes leftover after parsing attributes in process `syz.3.1127'.
[  193.127350][   T26] audit: type=1326 audit(4246654092.530:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7598 comm="syz.3.1123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77fb215169 code=0x7ffc0000
[  193.249049][   T26] audit: type=1326 audit(4246654092.530:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7598 comm="syz.3.1123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77fb215169 code=0x7ffc0000
[  193.275621][ T7618] overlayfs: failed to clone upperpath
[  193.344404][   T26] audit: type=1326 audit(4246654092.530:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7598 comm="syz.3.1123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7f77fb215169 code=0x7ffc0000
[  193.441680][   T26] audit: type=1326 audit(4246654092.530:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7598 comm="syz.3.1123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77fb215169 code=0x7ffc0000
[  193.533607][   T26] audit: type=1326 audit(4246654092.530:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7598 comm="syz.3.1123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77fb215169 code=0x7ffc0000
[  193.626158][   T26] audit: type=1326 audit(4246654092.530:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7598 comm="syz.3.1123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77fb215169 code=0x7ffc0000
[  193.755214][   T26] audit: type=1326 audit(4246654092.630:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7598 comm="syz.3.1123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f77fb215169 code=0x7ffc0000
[  194.057625][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[  194.063975][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[  194.211856][ T7652] netlink: 452 bytes leftover after parsing attributes in process `syz.3.1135'.
[  194.894441][ T7668] 9p filesystem being mounted at /45/file0 supports timestamps until 2106-02-07 (0xffffffff)
[  198.339426][ T7744] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1155'.
[  199.635431][ T7757] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  199.823462][  T146] ==================================================================
[  199.832036][  T146] BUG: KASAN: slab-out-of-bounds in hci_le_meta_evt+0x11f1/0x3f50
[  199.839875][  T146] Read of size 1 at addr ffff88801e909204 by task kworker/u5:0/146
[  199.847779][  T146] 
[  199.850125][  T146] CPU: 0 PID: 146 Comm: kworker/u5:0 Not tainted 5.15.179-syzkaller #0
[  199.858381][  T146] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  199.868459][  T146] Workqueue: hci1 hci_rx_work
[  199.873159][  T146] Call Trace:
[  199.876447][  T146]  <TASK>
[  199.879390][  T146]  dump_stack_lvl+0x1e3/0x2d0
[  199.884104][  T146]  ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[  199.889752][  T146]  ? _printk+0xd1/0x120
[  199.893927][  T146]  ? __wake_up_klogd+0xcc/0x100
[  199.898802][  T146]  ? panic+0x860/0x860
[  199.902886][  T146]  ? _raw_spin_lock_irqsave+0xdd/0x120
[  199.908372][  T146]  print_address_description+0x63/0x3b0
[  199.913934][  T146]  ? hci_le_meta_evt+0x11f1/0x3f50
[  199.919071][  T146]  kasan_report+0x16b/0x1c0
[  199.923601][  T146]  ? hci_le_meta_evt+0x11f1/0x3f50
[  199.928748][  T146]  hci_le_meta_evt+0x11f1/0x3f50
[  199.933709][  T146]  ? __lock_acquire+0x1ff0/0x1ff0
[  199.938773][  T146]  ? hci_remote_host_features_evt+0x280/0x280
[  199.944858][  T146]  ? __mutex_unlock_slowpath+0x218/0x750
[  199.950517][  T146]  ? hci_event_packet+0x3b4/0x1550
[  199.955659][  T146]  ? mutex_unlock+0x10/0x10
[  199.960359][  T146]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  199.966364][  T146]  ? print_irqtrace_events+0x210/0x210
[  199.970414][ T7792] 9pnet_virtio: no channels available for device syz
[  199.971842][  T146]  hci_event_packet+0xc41/0x1550
[  199.983486][  T146]  ? rcu_lock_release+0x20/0x20
[  199.988351][  T146]  ? hci_send_to_monitor+0x99/0x4d0
[  199.993563][  T146]  hci_rx_work+0x237/0xa10
[  199.998098][  T146]  process_one_work+0x8a1/0x10c0
[  200.003045][  T146]  ? worker_detach_from_pool+0x260/0x260
[  200.008674][  T146]  ? _raw_spin_lock_irqsave+0x120/0x120
[  200.014210][  T146]  ? kthread_data+0x4e/0xc0
[  200.018709][  T146]  ? wq_worker_running+0x97/0x170
[  200.023737][  T146]  worker_thread+0xaca/0x1280
[  200.028440][  T146]  kthread+0x3f6/0x4f0
[  200.032526][  T146]  ? rcu_lock_release+0x20/0x20
[  200.037387][  T146]  ? kthread_blkcg+0xd0/0xd0
[  200.041992][  T146]  ret_from_fork+0x1f/0x30
[  200.046418][  T146]  </TASK>
[  200.049425][  T146] 
[  200.051743][  T146] Allocated by task 7790:
[  200.056058][  T146]  ____kasan_kmalloc+0xba/0xf0
[  200.060811][  T146]  __kmalloc_node_track_caller+0x195/0x390
[  200.066706][  T146]  __alloc_skb+0x12c/0x590
[  200.071117][  T146]  vhci_write+0xbc/0x430
[  200.075353][  T146]  vfs_write+0xacd/0xe50
[  200.079606][  T146]  ksys_write+0x1a2/0x2c0
[  200.083921][  T146]  do_syscall_64+0x3b/0xb0
[  200.088326][  T146]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  200.094211][  T146] 
[  200.096524][  T146] Last potentially related work creation:
[  200.102224][  T146]  kasan_save_stack+0x36/0x60
[  200.106892][  T146]  kasan_record_aux_stack+0xba/0x100
[  200.112189][  T146]  call_rcu+0x1c4/0xa70
[  200.116339][  T146]  ip6_route_add+0xdb/0x120
[  200.120838][  T146]  addrconf_add_dev+0x35b/0x520
[  200.125678][  T146]  inet6_addr_add+0x1ad/0x9a0
[  200.130348][  T146]  inet6_rtm_newaddr+0x89d/0x2520
[  200.135361][  T146]  rtnetlink_rcv_msg+0x99d/0xef0
[  200.140293][  T146]  netlink_rcv_skb+0x1cf/0x410
[  200.145050][  T146]  netlink_unicast+0x7c0/0x990
[  200.149808][  T146]  netlink_sendmsg+0xa30/0xd60
[  200.154566][  T146]  ____sys_sendmsg+0x59e/0x8f0
[  200.159323][  T146]  ___sys_sendmsg+0x252/0x2e0
[  200.163992][  T146]  __se_sys_sendmsg+0x19a/0x260
[  200.168837][  T146]  do_syscall_64+0x3b/0xb0
[  200.173246][  T146]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  200.179131][  T146] 
[  200.181445][  T146] Second to last potentially related work creation:
[  200.188013][  T146]  kasan_save_stack+0x36/0x60
[  200.192677][  T146]  kasan_record_aux_stack+0xba/0x100
[  200.197953][  T146]  call_rcu+0x1c4/0xa70
[  200.202099][  T146]  ip6_route_info_create+0xa2c/0x12c0
[  200.207499][  T146]  ip6_route_add+0x22/0x120
[  200.211999][  T146]  addrconf_add_dev+0x35b/0x520
[  200.216837][  T146]  inet6_addr_add+0x1ad/0x9a0
[  200.221503][  T146]  inet6_rtm_newaddr+0x89d/0x2520
[  200.226519][  T146]  rtnetlink_rcv_msg+0x99d/0xef0
[  200.231450][  T146]  netlink_rcv_skb+0x1cf/0x410
[  200.236206][  T146]  netlink_unicast+0x7c0/0x990
[  200.240967][  T146]  netlink_sendmsg+0xa30/0xd60
[  200.245727][  T146]  __sys_sendto+0x564/0x720
[  200.250222][  T146]  __x64_sys_sendto+0xda/0xf0
[  200.254895][  T146]  do_syscall_64+0x3b/0xb0
[  200.259305][  T146]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  200.265192][  T146] 
[  200.267506][  T146] The buggy address belongs to the object at ffff88801e909000
[  200.267506][  T146]  which belongs to the cache kmalloc-512 of size 512
[  200.281548][  T146] The buggy address is located 4 bytes to the right of
[  200.281548][  T146]  512-byte region [ffff88801e909000, ffff88801e909200)
[  200.295167][  T146] The buggy address belongs to the page:
[  200.300793][  T146] page:ffffea00007a4200 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1e908
[  200.311028][  T146] head:ffffea00007a4200 order:2 compound_mapcount:0 compound_pincount:0
[  200.319342][  T146] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[  200.327326][  T146] raw: 00fff00000010200 ffffea0001810000 0000000300000003 ffff888017441c80
[  200.335902][  T146] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[  200.344469][  T146] page dumped because: kasan: bad access detected
[  200.350872][  T146] page_owner tracks the page as allocated
[  200.356582][  T146] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 308, ts 7114056459, free_ts 0
[  200.374632][  T146]  get_page_from_freelist+0x3b78/0x3d40
[  200.380184][  T146]  __alloc_pages+0x272/0x700
[  200.384765][  T146]  new_slab+0xbb/0x4b0
[  200.388823][  T146]  ___slab_alloc+0x6f6/0xe10
[  200.393400][  T146]  kmem_cache_alloc_trace+0x1a0/0x290
[  200.398850][  T146]  alloc_bprm+0x57/0x700
[  200.403086][  T146]  kernel_execve+0x49/0x9b0
[  200.407577][  T146]  call_usermodehelper_exec_async+0x22f/0x370
[  200.413632][  T146]  ret_from_fork+0x1f/0x30
[  200.418041][  T146] page_owner free stack trace missing
[  200.423391][  T146] 
[  200.425699][  T146] Memory state around the buggy address:
[  200.431321][  T146]  ffff88801e909100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  200.439384][  T146]  ffff88801e909180: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  200.447521][  T146] >ffff88801e909200: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  200.455578][  T146]                    ^
[  200.459631][  T146]  ffff88801e909280: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  200.467678][  T146]  ffff88801e909300: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  200.475722][  T146] ==================================================================
[  200.483760][  T146] Disabling lock debugging due to kernel taint
[  200.495649][  T146] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  200.502980][  T146] CPU: 0 PID: 146 Comm: kworker/u5:0 Tainted: G    B             5.15.179-syzkaller #0
[  200.512612][  T146] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[  200.522670][  T146] Workqueue: hci1 hci_rx_work
[  200.527371][  T146] Call Trace:
[  200.530656][  T146]  <TASK>
[  200.533597][  T146]  dump_stack_lvl+0x1e3/0x2d0
[  200.538302][  T146]  ? io_uring_drop_tctx_refs+0x1a0/0x1a0
[  200.543949][  T146]  ? panic+0x860/0x860
[  200.548030][  T146]  ? rcu_is_watching+0x11/0xa0
[  200.552813][  T146]  ? preempt_schedule_common+0xa6/0xd0
[  200.558303][  T146]  panic+0x318/0x860
[  200.562219][  T146]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  200.568396][  T146]  ? check_panic_on_warn+0x1d/0xa0
[  200.573527][  T146]  ? fb_is_primary_device+0xd0/0xd0
[  200.578765][  T146]  ? _raw_spin_unlock_irqrestore+0x128/0x130
[  200.584766][  T146]  ? _raw_spin_unlock+0x40/0x40
[  200.589671][  T146]  check_panic_on_warn+0x7e/0xa0
[  200.594623][  T146]  ? hci_le_meta_evt+0x11f1/0x3f50
[  200.599761][  T146]  end_report+0x6d/0xf0
[  200.603927][  T146]  kasan_report+0x18e/0x1c0
[  200.608439][  T146]  ? hci_le_meta_evt+0x11f1/0x3f50
[  200.613570][  T146]  hci_le_meta_evt+0x11f1/0x3f50
[  200.618526][  T146]  ? __lock_acquire+0x1ff0/0x1ff0
[  200.623585][  T146]  ? hci_remote_host_features_evt+0x280/0x280
[  200.629672][  T146]  ? __mutex_unlock_slowpath+0x218/0x750
[  200.635317][  T146]  ? hci_event_packet+0x3b4/0x1550
[  200.640447][  T146]  ? mutex_unlock+0x10/0x10
[  200.644977][  T146]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  200.650976][  T146]  ? print_irqtrace_events+0x210/0x210
[  200.656452][  T146]  hci_event_packet+0xc41/0x1550
[  200.661410][  T146]  ? rcu_lock_release+0x20/0x20
[  200.666283][  T146]  ? hci_send_to_monitor+0x99/0x4d0
[  200.671487][  T146]  hci_rx_work+0x237/0xa10
[  200.675894][  T146]  process_one_work+0x8a1/0x10c0
[  200.680822][  T146]  ? worker_detach_from_pool+0x260/0x260
[  200.686447][  T146]  ? _raw_spin_lock_irqsave+0x120/0x120
[  200.691999][  T146]  ? kthread_data+0x4e/0xc0
[  200.696505][  T146]  ? wq_worker_running+0x97/0x170
[  200.701522][  T146]  worker_thread+0xaca/0x1280
[  200.706198][  T146]  kthread+0x3f6/0x4f0
[  200.710250][  T146]  ? rcu_lock_release+0x20/0x20
[  200.715106][  T146]  ? kthread_blkcg+0xd0/0xd0
[  200.719785][  T146]  ret_from_fork+0x1f/0x30
[  200.724196][  T146]  </TASK>
[  200.727519][  T146] Kernel Offset: disabled
[  200.731841][  T146] Rebooting in 86400 seconds..