last executing test programs:

21.259672655s ago: executing program 0:
syz_mount_image$f2fs(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x42, &(0x7f0000000340)=ANY=[@ANYBLOB="6673796e635f6d6f64653d706f7369782c6e6f696e6c696e655f646174612c646973636172642c696e6c696e655f64656e7472792c00005df247caf2d46ab0e94314df15dcaf3ff022856e3e36fa7213d2b836b63dc3bff128874754cbe423ec2ae61655ad2b7dbefe0b89ecd265c49b854e46022c00436155eddd17283ebae0ed899be5ad47aed109b6fe824970ed15dc5df45d6f3ac7598305934b34c1b8b869f317c136873764953464016245fe054ffecd83b2f73d1ffcbf78aa54a48275a3b30e029359e30f1035e59cbca8b7d4fafa6afe46f37b55be11ce3b59bc37a509a260b143c09ee5a6"], 0x1, 0x54f3, &(0x7f000000ab40)="$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")
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(0xffffffffffffffff, 0xf502, 0x0)
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r0, 0x0, 0x0)

19.44742402s ago: executing program 4:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x18b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_procfs$namespace(0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000300))
r3 = socket(0x840000000002, 0x3, 0xff)
connect$inet(r3, &(0x7f0000000280)={0x2, 0x0, @remote}, 0x10)
sendmmsg$inet(r3, &(0x7f0000005240)=[{{0x0, 0xfffffdef, 0x0, 0x0, 0x0, 0x0, 0x10}, 0xfffffdef}], 0x4000095, 0x401eb94)

18.386119309s ago: executing program 4:
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWFLOWTABLE={0x40, 0x16, 0xa, 0x203, 0x0, 0x0, {0x2}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x14, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}]}]}], {0x14}}, 0x68}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0104000000000000000001000000080002400000000209000100c2007a30000000001400000011"], 0x50}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'macvlan1\x00', <r3=>0x0})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000a00)=ANY=[@ANYBLOB="2000000011000100"/20, @ANYRES32=r3], 0x20}}, 0x0)

17.762186237s ago: executing program 4:
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x4000, &(0x7f0000000380)={[{@test_dummy_encryption}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@stripe={'stripe', 0x3d, 0x7}}, {@commit={'commit', 0x3d, 0x5}}, {@orlov}, {@barrier_val={'barrier', 0x3d, 0x5}}, {@max_batch_time}, {@data_err_abort}]}, 0xd, 0x5d8, &(0x7f0000000c00)="$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")
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x4800, 0x0, 0x0, 0x0, &(0x7f0000000000))
chdir(&(0x7f00000003c0)='./bus\x00')
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f0000000040)='./file0/file0\x00', 0x0, 0x91905a, 0x0)
r0 = fspick(0xffffffffffffff9c, &(0x7f0000002200)='./file0/file0\x00', 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', 0x0, 0x0, 0x0)

17.280856782s ago: executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.io_serviced_recursive\x00', 0x275a, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="18000000000000040000000000000000850000000e000000850000000e00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
close_range(r0, r1, 0x2)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)

17.124365312s ago: executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000007c0)={0x30, r1, 0x0, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x1c, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ID={0x5}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8}]}]}, 0x30}}, 0x0)

16.544352301s ago: executing program 4:
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x2c, r0, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_LINKINFO_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}]}, 0x2c}}, 0x0)

16.106336437s ago: executing program 4:
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000800)={'hsr0\x00'})
sendmsg$nl_route(r1, 0x0, 0x0)

16.047031858s ago: executing program 0:
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x4000, &(0x7f0000000380)={[{@test_dummy_encryption}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@stripe={'stripe', 0x3d, 0x7}}, {@commit={'commit', 0x3d, 0x5}}, {@orlov}, {@barrier_val={'barrier', 0x3d, 0x5}}, {@max_batch_time}, {@data_err_abort}]}, 0xd, 0x5d8, &(0x7f0000000c00)="$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")
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x4800, 0x0, 0x0, 0x0, &(0x7f0000000000))
chdir(&(0x7f00000003c0)='./bus\x00')
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f0000000040)='./file0/file0\x00', 0x0, 0x91905a, 0x0)
r0 = fspick(0xffffffffffffff9c, &(0x7f0000002200)='./file0/file0\x00', 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', 0x0, 0x0, 0x0)

15.364570869s ago: executing program 0:
r0 = socket$packet(0x11, 0x2, 0x300)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWFLOWTABLE={0x40, 0x16, 0xa, 0x203, 0x0, 0x0, {0x2}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x14, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}]}]}], {0x14}}, 0x68}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0104000000000000000001000000080002400000000209000100c2007a30000000001400000011"], 0x50}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'macvlan1\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000a00)=ANY=[@ANYBLOB="2000000011000100"/20, @ANYRES32=r2], 0x20}}, 0x0)

13.694905989s ago: executing program 2:
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
syz_emit_ethernet(0x47, &(0x7f00000002c0)={@multicast, @link_local, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "3f00e7", 0x11, 0x2c, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @mcast2, {[@routing={0x3a, 0x0, 0x0, 0x1}], {0x0, 0x0, 0x9, 0x0, @opaque="c1"}}}}}}, 0x0)

13.465381863s ago: executing program 2:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x12, r0, 0x0)
r1 = getpid()
r2 = syz_pidfd_open(r1, 0x0)
close_range(r2, 0xffffffffffffffff, 0x0)
ioctl$BTRFS_IOC_ADD_DEV(r2, 0x40095505, 0x0)

13.398384246s ago: executing program 2:
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x4000, &(0x7f0000000380)={[{@test_dummy_encryption}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@stripe={'stripe', 0x3d, 0x7}}, {@commit={'commit', 0x3d, 0x5}}, {@orlov}, {@barrier_val={'barrier', 0x3d, 0x5}}, {@max_batch_time}, {@data_err_abort}]}, 0xd, 0x5d8, &(0x7f0000000c00)="$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")
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x4800, 0x0, 0x0, 0x0, &(0x7f0000000000))
chdir(&(0x7f00000003c0)='./bus\x00')
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f0000000040)='./file0/file0\x00', 0x0, 0x91905a, 0x0)
r0 = fspick(0xffffffffffffff9c, &(0x7f0000002200)='./file0/file0\x00', 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', 0x0, 0x0, 0x0)

13.120074303s ago: executing program 0:
r0 = syz_open_procfs$namespace(0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x9, 0x2a8, &(0x7f0000000500)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
setrlimit(0xf, &(0x7f0000000280)={0x89c, 0x4})
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000840)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x80)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x11, 0x3, &(0x7f0000000000)=@framed, &(0x7f0000000340)='GPL\x00'}, 0x78)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f00000003c0), 0xffffffffffffffff)
read$FUSE(0xffffffffffffffff, &(0x7f0000002480)={0x2020, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}, 0x2020)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000d40)=[{{&(0x7f0000000880)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000300)=[{&(0x7f0000001480)="38cfa062425b2665a639bd71a9e2acd37cc7777873a5b116c65aa8435a0254996dece6de399c55c23e95a048553cea2c9c061bd5e2551e4e433fd794192fc467c76ec1f54e4d9c02af6412fc5ba007a11d1c238d2fb23b2e867f2b51810e41654cf214a6ec4f9b8f775348ef15131f4a3f59bbf59c0eefe9476f168dbfed22b1e35d1b9f66c51df3843bf7207386a37fc89ce9d4e8a0ffb8ec7a5ef27b67edc13b018707cf11cc52a23d24729a6b41e8291e1b31791a64d94bb6958a86c51f19305344c0fe2b99d95fce730fb833cbae8f3f70ffac29157b65797f67c4b063a5c07e95c556c9bb845539f8cf0352b2dbf6a76e1103c44b72cefeedd3e7add86dc16f0c80c20f81aa7a25d47ac1882d5065f5e5a1ca38132c09220423fc2d1fa58db8fb0e9ac7129dc7a84488e16a814435164446bbb435e472a9df109f3e8cd1b7feb2a29e0833e3deb6b59a6667dcdc3e0e2e6df5c3827efa190f736d7263f9eb4d8f726c4ee77116cb4f5d9119c1788c69fc3095013c233a6975626c21680e5ecd1a6be08d69ace2b0222773f627711cbb85f004e8ed7066767c3bd184787de7ccfdf47c64bd17891f1407f7c5ed475ac7b3b9d7a7d82fa1e20f9af0f3ed5907f6983b2aade55081f856e451384161977f169446445ca81dcac5a1295003a82b82365047876092be4f9b69b72ce18d62240f24f0619e105e90f5e33ec696393fbb44f82bf5026a15c41fda240e296cbdb2339319cb7c05ab8ec7fff9431a38d058a0b217a0e2c09a6a07c9de4298d0026e391e346e4817a346860099650f7c4b7b4f800cad492da6dc99474dc7cf511f9eb00521b3517534bb678c21f30e14acdf7071c81b2928b7b78bb8561a45e0c062c503181e65aeccbe0faa60e5b32f64724835ccebc37ab9dab2cb9f574d051579a2fdc1ffdbacecba443b57375deedfdeb1d33ea1eb9cd47972d7dbd825969a0a5a2ca7b8934396b4719615392a3a3a6f6ea00972365082ead224ae103d2cb2c2ec344919972cc0988615d274e924beb21e7c5a6438e0e315ea3827cdd0cb4515561ef147404c0d1d4216d1a5ee1d8fe92bdf35bcb4414d8202904e80aec0575bedbd1290cf4d20aa4ea69f442859bf017332bfb2a4dcd41e9d7f33c5f2aa7841574cdb2d1c483a19d1cb7a41e7584e983490e8f0f29e519b1589534b410624b98d5244581f182b94b081f4263591c02b1e7314a25dcb9a093628144e44730a91803ba9db47334abcda87e675bfd399bc7060ca2abb2c571146f015e22ae845a9b903ea02cf362498ea52092b280404c71b4006f4e3b963a154aaa333149bfd0e4ba697c01fe5b6e3ece04a3fd110e3297dc67a8f29a90fe61202afd7b1b6a4379f04a1459670baf84c3e45161e9bf9cd2ecdc1b3c679dde2c0f90bf9e506e043a3236548d59e576050bcbca04bb7984209d283ae5ec96b222439dbbfed49e442a302860eeb56245c1df3833bdab5b7ef96176bf8e05046778fa0dfe1a5c0d8d596ba771b5ac1a799bfc7d0366e1d2caf919fd43bbfda97d58289f85bcf497d5ebc24f28700512e477f544fea8581c168b2b94847c235dc4b6ed4901e92f243f3be383e91a8085962082f6c2f8715cbab4497dc8c9ce29d5185b8ca7f45c141d2dba5ce13425e72dd12e056255f7564952ac6b1342f7612bedf3819d87c48a3b4cd3cf3576a1775ca2d769eb148c07b6e8014c2c1e8d79c419c43fb90209273a92c95e4e03df6681e9173e863061629ec6d6cef64c04f4b6cc3ec96931c34149bcaefcc9d5fb234211e173068e8c5e49117e1c450e4aa18ca382c94e236e5c2f26eb18a17f1f57eddb83a7306f927b853e2ac75bc5f6e40f681cb03c1688d78a324e0310225a1e9cc8c6115c8066373f752f11faffc3ed692d1e794a002b33282ce82e61488cdf8d9ec532ee6795e33a93df1e0a6c84ed331d7cdd5feaadcdcae26c44a1794e3e02bf20e18b97752f3b7267eeae36e7c27f7e23cf55ed9005623f71fc4f8d5d7fb6f1c00fab1d794597663c396c1b193fa8867652c982b832ff2e76f1ed04c5b0ac23fd45f4f693d73c227e2df50230420abf342c5e3245352fba929ef0af4329377c982b8ba64b94ee409f7c09f0c9407ae0ea755124c4cc0e3ef586ebf9ae4e735becc17be9820fc30dcd0e4af56c25388ccc14b4404e5d43038afa1e3359a8e05aa836c65f21a0e3fb8e940b4c000db90df681124bc9d5f575783f10b2d19668d35c6e2225c615aa670e693f77c0284a9c5975bfbcfe6a7161ab739f44e549f274e8e87df579af53c55523144ddf4ef1c13c8121c305da1d6abc300ccfcedabf0245b09b0b461cc72c691bd2b68db5a6fcbd1efbd7950288a719d9945a41515e7beb273637c06b0e8c3cb5b84d36cad7ef9155ccafb55f2159a554b9712e0db79dcb74fb119edece1ab30b6e10629a77897d0f2f241ad3032fa667387597d6729db60714df8f0fe979385b68cec928419309301fe7ca58c298ad80a02fe7f71198e65ccb488b0e1eaa9a08c9d35ada2c76ed8a494063bd4c96ccf284ec7cc8d80ff6b7293057f545444fb7189bad2dc2a48a6138cf866c33bd59dc97daa281e6d04c7cb183be58accc347e8b15b78862979cb59fe5671fd25953d83f3a9b024a2c0f60043c1b478bff7de081d9e661ed753e270bdc41a8c64eedf6923395bd1a75686ce0c44e8b184832180603b3ce32cbc271c713d2c04f153f794e2cc51a7e7d1e19af521ed477a7b914c96847ba7e7ce53537516af897e6baae0e352cb4699d228fcd5292ffe30077bfc13e5e611b247b2b5fa8df69b12a6f5474ac5e6549987af8a6a44356457b0e549e20380744966d0be4b4d4f14f6b7587d8b63e801a1192b45d993d61cefed2099bc96f807d87fbafdf838b7a3c959c871d8f93f6fe29ccd270ed17afefcac4b204b53e87881c2c44e97e7587bfd7e340565bc4e49a5ad00607745464acd33953cd611b2d72d1459da1764fbc879243206829643ae45f6908af11e53a1d9f67aecdab5fc39f0640b3b052995e4b06f98c23db82c6bc95abf4863d8d359454d2e942a2315ecb11068ab8aaaa33f0807742cae79a1c919f39e4978d398d375d7e6ee10e450fb6d7f2cdc69dcc9036132b4859bea23a2f6765532ab100cecded09ceebdd742e85a61e5442c33ca06a9f30848f90191d7350d51626a5b596961a46320b0251f55206a766d04ba6dbfd6f44a2beef7196733fcd9333b52fe37d7c212dc51f81166fbb676f5412e85ecb74538b7ac9d7172e48fcf6c17e524994ef90faa7701a0b807b38fbf69bb02acf96220d37ac8ba1253e134124787e5ef0e8234c1f1f840677a39afffdd1dd170d4a53e983b5583cc6693e10e62c845e5721ab0d03b2f390a1d1d9b24902df31d0da91ec8b4a7437d385cd79f40847dea29ace0227c109457b36f6e4b40c99c0f2fe217ab3e534283f079db80e670346f034ff026882700cb43e54d9ca0e9d0bd69b25bd998c108f3bb637f6f9d1d5488fa403ad2240108faf6d9e613f6c59d70dabe3abf2819a9ea3ee02ff18814e44e89cb74688336e5bd935d2ac39f97604abc593846ec01cd072601046c8ef101e83b6741e1af699f0136864f4f4aeadb7ca281a2f62f1d3fab3823b24b1e702db6f332414c9d92ae24b99745c9f90d81364044415a6f5d56393fb63df9049e1f595ddeab02d7fa3c047823a08060979bdca66600c025dafae181a57f8992b339c15df43ffa2f345d5c4b2191d946196b0e3f3a8b89c97a9f1ba7ea45a9f50a2befc959c9691b9d1fc440fdaa6e8698007a685eb146deca5a3a05b4d0e59187136942c51fedbdf12a70984a53f2e4e139ae94355672bdcbd645c1d36f3fbbf48aa9b3e39f368f95faf957c79e8499330205f79302788a516cd255b52249ebca1fe3be085264e33e055afaa68cba9c2b54ec56fef823e22500feb131a7a296386ad522a348492a3dfd3a8652de6d4857f4631aefecddcbd20c96778bb8fa6057d6b94c3f7060ce7105990d1d67de7ee876d7a9fc7b3b4d2e69e4320bf9af255376e3dba464f1808fb376a3b52341b4725ef54ea80999faf16270005257dbd25ece729eb94352b93640f598f79bc0b8189ff00696aceb97a0a642eb1b8da8bf6ab3b9084ee4038b6a32a6cf36aaaf65f8b72552e92d4431d6af72a6740ff2f56c880efd9d20a33e1e32d474b4b3ad0362f7e70f805e5a4340bd91037958b5bb2ac7abc8440691a2f6d6f3635df8006caf119852d2ab53ddd31333552e66df09161d2cb1d8b57f881fa82041c301621288d94ec5d5b391b825c1f6d3d526722ad09b583c4625804ae2f043e4fece488c66f5d3887e7ce00a3230b89e06c27b8b9ce0efa355c111ded4cd026f5e9fafbffdc7b07787fe9979775b43793c0ff0f3623700a21e64ff7132ecfd425cce9946869e333c13ea51f34d96d978a821b232b65a995d9089b9039af398f64fa1a1c5adda71f441af736ff8e179184a42b930e5ce932348e2497d46c560d931e586b640a1f3fe49a85461e1a3715d0c2faf4d84511503feec043e6eda289646f56f8991482e75fe5d457d3800b47af33e46613d2455dc4e7b8d8fa09c09b294539fcf263806e654cecf0c42127ddda906ee0b989fdbf21c3bc7f1fc975330009ded780991858b621e934ae35aadd411a992ea26f11c13e5c27182e3965a4026c80b54637f2f8d92b9e24b2028b216543d8a3c1710a9b627b40c76042c88803d8b5baf8ea2d782a5ce4c624ba622b891a78a7adee085b8c9ebe1d87fd155ea06f7ab1c474f8dfe9a41472471319d2fe9ff64d1b15cc0d6845c148ff0881c2c56166a0a27197589496d558b0f306a24af4a01f99c6727b065a17ee47491ee967f29c1a2a7bc78909f833077e72af76bd3e10bda2d237c97623a28e314584727814ee321ac7aa0be0d97e7f5a1deda7aed21c7cd5804e6e7b950177cbe2d98ab15b3f65e012e2aeb8839132e36e388243f3d120982e04054cb5759393ee9e1b388586be6c3bdf1c51f606d9da06f3dc740f2935900188e23ab065db27cb7ce6288beadf5e20d019d724005b13f749ad399dc83351c0f477494245cd921138c0f0f54aa394eb0637b627b91df893781b6e71c9572ccbb53b03725576c0a6be8e5b9f4ba12542da65a6c5aa3079a75a52b1178227cb79f8cd3231a8c2914b4159bfe328bcbc784e43e53656747bfa92722efd2a207ea16bdcb4b5b4b2a5912a0c9c35e0affc04cdeaeaffe1af540b70b2ba66f1c24d9a75e96f49ef46263e46d53396c28917860609081b42d7679eed0f0493381997c46d73048c69b81e83ad52a1b8fe775a8caf827972cbf0f5e3745e3eecfe3db2d955273ced1b759f396bcba0ac6f353ab75de8afd1fb93addb046eee238a6f037d9c1efb1249fdc77c90684bdb07c24a12e8d8d80f08395b23032c2a0cf20ea1937ea4f18ffcfa64e48262e2738aba96e22f59c4363309eeb9ef13616fd6042d929a27fb6296c8e77dc688154d4949e035246b6cecb6f3ac6b840f98f4bdee00470418b1ddddc869df4b6ccf41ccd86fbe72d1f8d0666ad52c7cb69d8886ea3dc703b0bf35fdb6b73472964ae4b8130a9c299639a98bd96d17bca32704ed8e8e04605a89a91d69ac796a21123528c637467a5f9d83bc36593001356529e3ed9ed3936e5ed95441eff961b2706b33da8b3f1cf219d9d52abb2535e84741d8883dcd07a5dc9151134a04ccec50cb0728a98a525f1f7fe499e84ea028f9b15a0207727", 0x1000}, {&(0x7f0000000900)="2602cd9325d8c83dc65a536bd797cf87981a41bb5244f4a5847ed528881646dd976c42c34bdc4875962e2118442372892b2d0589d66d656c3a422d89af77c1f49c9d6f87cd527a8e81e32300caeec2e024c70dfeb5a4a874e72e95b79275f1bc2b7debf2951ac8b83c41c1ee060db3cc228f1cfa38c750a87751e995435cc143e9df87c1dfd6dabe82c2bc533feb9d86843f64a3f5fe108043bd4eebfd72d088f204c802b96184262b612c1686a172033d9870106dc1b38a45ce4403013bc9136565d71a", 0xc4}], 0x2, &(0x7f0000000a80)=[@rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, r0, r0, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {r1}}}, @cred={{0x1c, 0x1, 0x2, {r1}}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, r0, r2, 0xffffffffffffffff]}}], 0x88, 0x24000800}}, {{&(0x7f0000000bc0)=@abs={0x0, 0x0, 0x4e21}, 0x6e, &(0x7f0000000b40)=[{&(0x7f0000000800)="f48dda298a5b5cc10b82c90e3e8856", 0xf}, {0x0}], 0x2, &(0x7f0000000b80)=[@cred={{0x1c, 0x1, 0x2, {r4}}}, @rights={{0x14, 0x1, 0x1, [r2]}}], 0x38, 0x810}}], 0x2, 0x0)
r5 = open(&(0x7f0000000100)='./file0\x00', 0x60c2, 0x0)
r6 = open$dir(&(0x7f0000000200)='./file0\x00', 0x0, 0x0)
write(r5, &(0x7f0000000600)="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", 0x1e0)
sendfile(r5, r6, 0x0, 0xef85)

13.056593855s ago: executing program 2:
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000800)=[{{0x0, 0x0, 0x0, 0x0, 0x0, 0x58}}], 0x1, 0x0)
r0 = syz_io_uring_setup(0x0, &(0x7f00000006c0)={0x0, 0x0, 0x200, 0x0, 0x40}, &(0x7f0000000140), &(0x7f0000000100)=<r1=>0x0)
r2 = syz_io_uring_setup(0x1864, &(0x7f0000000440), &(0x7f0000000040)=<r3=>0x0, &(0x7f0000000240))
connect$tipc(0xffffffffffffffff, &(0x7f0000000000)=@id, 0x10)
syz_io_uring_submit(r3, r1, &(0x7f0000000600)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd=r2, 0x0, 0x0})
io_uring_enter(r0, 0x184c, 0x0, 0x0, 0x0, 0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r0, 0x18, 0x20000000, r4)
syz_genetlink_get_family_id$devlink(&(0x7f0000000100), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000180)=ANY=[@ANYBLOB="000000004c0002002bbd7000ffdbdf25000000000000000000000100010000000000010002000000"], 0x31}}, 0x0)
open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nfc(&(0x7f00000002c0), r6)
keyctl$KEYCTL_PKEY_VERIFY(0x1c, 0x0, &(0x7f00000004c0)=ANY=[], 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r7 = socket(0x11, 0x3, 0x0)
sendmsg$kcm(r7, &(0x7f00000000c0)={&(0x7f00000001c0)=@caif=@dgm={0x25, 0x6}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000240)="4f0f16a7160b5be854783a3266ac9972d0077bd2", 0x14}], 0x1}, 0x0)

12.78562088s ago: executing program 0:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
ioctl$SIOCSIFMTU(r0, 0x8922, &(0x7f0000003a80)={'veth1_macvtap\x00', 0x7fff})

10.934335215s ago: executing program 2:
r0 = socket$packet(0x11, 0x2, 0x300)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)={{0x14}, [@NFT_MSG_NEWFLOWTABLE={0x40, 0x16, 0xa, 0x203, 0x0, 0x0, {0x2}, [@NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x14, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}]}]}], {0x14}}, 0x68}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0104000000000000000001000000080002400000000209000100c2007a30000000001400000011"], 0x50}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'macvlan1\x00', <r2=>0x0})
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000a00)=ANY=[@ANYBLOB="2000000011000100"/20, @ANYRES32=r2], 0x20}}, 0x0)

10.76228253s ago: executing program 2:
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x4000, &(0x7f0000000380)={[{@test_dummy_encryption}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@stripe={'stripe', 0x3d, 0x7}}, {@commit={'commit', 0x3d, 0x5}}, {@orlov}, {@barrier_val={'barrier', 0x3d, 0x5}}, {@max_batch_time}, {@data_err_abort}]}, 0xd, 0x5d8, &(0x7f0000000c00)="$eJzs3c9vFFUcAPDvbH/QUrSFGBUP0sQYSJSWFjDEeICrIQ3+iBcvVloQKdDQGi2aUBK8mBgvxph48iD+F0rkyklPHrx4MiREDUcT18x2pnTb2ZYubacyn0+y9M17O7w33X773r6+NxtAZQ2m/9Qi9kbEdBLRn8wvlnVGVji48Lx7f39yOn0kUa+/8WcSSZaXPz/JvvZlJ/dExM8/JbGnY2W9M3NXzo9PTU1ezo6HZy9MD8/MXTl47sL42cmzkxdHXxo9dvTI0WMjh9q6rqsFeSevv/9h/2djb3/3zT/JyPe/jSVxPF7Nnrj0OjbKYAw2vifJyqK+YxtdWUk6sp+TpS9x0llig1iX/PXrioinoj864v6L1x+fvlZq44BNVU8i6kBFJeIfKiofB+Tv7Ze/D66VMioBtsLdEwsTACvjv3NhbjB6GnMDO+8lsXRaJ4mI9mbmmu2KiNu3xq6fuTV2PTZpHg4oNn8tIp4uiv+kEf8D0RMDjfivNcV/Oi44lX1N819vs/7lU8XiH7bOQvz3rBr/0SL+31kS/++2Wf/g/eR7vU3x39vuJQEAAAAAAEBl3TwRES8W/f2/trj+JwrW//RFxPENqH9w2fHKv//X7mxANUCBuyciXilc/1vLV/8OdGSpxxrrAbqSM+emJg9FxOMRcSC6dqTHI6vUcfDzPV+3KhvM1v/lj7T+29lawKwddzp3NJ8zMT47/rDXDUTcvRbxTOH632Sx/08K+v/098H0A9ax5/kbp1qVrR3/wGapfxuxv7D/v3/XimT1+3MMN8YDw/moYKVnP/7ih1b1txv/bjEBDy/t/3euHv8DydL79cysv47Dc531VmXtjv+7kzcbt5zpzvI+Gp+dvTwS0Z2c7Ehzm/JH199meBTl8ZDHSxr/B55bff6vaPzfGxHzy/7v5K/mPcW5J//t+71Ve4z/oTxp/E+sq/9ff2L0xsCPrep/sP7/SKOvP5DlmP+DBV/lYdrdnF8Qjp1FRVvdXgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4FNQiYlcktaHFdK02NBTRFxFPxM7a1KWZ2RfOXPrg4kRa1vj8/1r+Sb/9C8dJ/vn/A0uOR5cdH46I3RHxZUdv43jo9KWpibIvHgAAAAAAAAAAAAAAAAAAALaJvhb7/1N/dJTdOmDTdZbdAKA0BfH/SxntALae/h+qS/xDdYl/qC7xD9Ul/qG6xD9Ul/iH6hL/AAAAAADwSNm97+avSUTMv9zbeKS6s7KuUlsGbLZa2Q0ASuMWP1Bdlv5AdXmPDyRrlPe0PGmtM1czffohTgYAAAAAAAAAAACAytm/1/5/qCr7/6G67P+H6sr3/+8ruR3A1vMeH4g1dvIX7v9f8ywAAAAAAAAAAAAAYCPNzF05Pz41NXlZ4q3t0YytTNTr9avpT8F2ac//PJEvhd8u7VmWyPf6PdhZ5f1OAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAmv0XAAD//xYSJMU=")
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x4800, 0x0, 0x0, 0x0, &(0x7f0000000000))
chdir(&(0x7f00000003c0)='./bus\x00')
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$bind(&(0x7f0000000300)='./file0\x00', 0x0, 0x0, 0x91905a, 0x0)
r0 = fspick(0xffffffffffffff9c, &(0x7f0000002200)='./file0/file0\x00', 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', 0x0, 0x0, 0x0)

2.701638502s ago: executing program 1:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000001840)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x88, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r4 = syz_open_procfs(0x0, &(0x7f0000000000)='smaps\x00')
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f00000001c0)='f2fs_gc_begin\x00'}, 0x10)
pidfd_getfd(r4, 0xffffffffffffffff, 0x0)
read$FUSE(r4, &(0x7f0000002640)={0x2020}, 0x2020)

2.658001699s ago: executing program 3:
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000)=0x1, 0x4)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x4e22, @local}, 0x10)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x0, @remote}, 0x10)
syz_emit_ethernet(0x36, &(0x7f0000000200)={@local, @empty, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x0, 0x0, 0x0, 0x6, 0x0, @remote, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x5}}}}}}, 0x0)

2.301676726s ago: executing program 3:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000040)={0x26, 'skcipher\x00', 0x0, 0x0, 'adiantum(xts-twofish-avx,camellia-asm,cbcmac(aes))\x00'}, 0x58)
r1 = socket$nl_crypto(0x10, 0x3, 0x15)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'ip6_vti0\x00', <r2=>0x0})
syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
sendto$packet(0xffffffffffffffff, &(0x7f0000000180)="1103068000ff020002004788aa96a13bb100001100007fca1a00", 0x1a, 0x0, &(0x7f0000000140)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @local}, 0x14)
sendmsg$nl_crypto(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="f0000000120003"], 0xf0}}, 0x0)

2.108344093s ago: executing program 3:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f00000002c0)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_SET_SEC_PARAMS(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000440)={0x34, r1, 0x0, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}, @NL802154_ATTR_SEC_OUT_KEY_ID={0x18, 0x2b, 0x0, 0x1, [@NL802154_KEY_ID_ATTR_IMPLICIT={0xc, 0x3, 0x0, 0x1, [@NL802154_DEV_ADDR_ATTR_PAN_ID={0x6}]}, @NL802154_KEY_ID_ATTR_MODE={0x8}]}]}, 0x34}}, 0x0)

1.981540684s ago: executing program 3:
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00'})
sendmsg$nl_route_sched(r0, 0x0, 0x0)

1.861676234s ago: executing program 3:
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0))
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
brk(0x55555ede6001)

841.251213ms ago: executing program 3:
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
syz_mount_image$bcachefs(&(0x7f0000005d80), &(0x7f0000005dc0)='./bus\x00', 0x400, &(0x7f0000005e00)=ANY=[], 0x41, 0x5e23, &(0x7f000000bc40)="$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")
creat(0x0, 0x0)
r0 = open(&(0x7f0000000400)='./bus\x00', 0x16543e, 0x0)
dup3(r0, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06055c8, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fdinfo/4\x00')
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_SET(r2, &(0x7f0000000540)={0x0, 0x0, 0x0}, 0x0)
sendmsg$TIPC_NL_NET_SET(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000740)=ANY=[@ANYBLOB="bc000000", @ANYRES16=r3, @ANYBLOB="010025bd7000000000000f0000002c000980080001000000000008000100ffffffff0800020000000000080002000080000008000100000000000c00038008000100030000002400038008000100090000000800020000000000080002000400000008000100000000004c000780080001000700000008000100ff0f00000800010002000000080001000000000008000200ff0100000c00040000000000000000000c000300015bffffffffffff080001003f"], 0xbc}}, 0x0)

791.855648ms ago: executing program 1:
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000003c0)={0x26, 'hash\x00', 0x0, 0x0, 'vmac64(aes-generic)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
r1 = accept4$alg(r0, 0x0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000001900)="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", 0x302}, {&(0x7f0000000140)="3910e8e0ddb701502f04a48cb416", 0xe}], 0x2, 0x0, 0x0, 0x40000}, 0x0)

706.620305ms ago: executing program 1:
r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
getpid()
process_vm_readv(0x0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
read$FUSE(r0, &(0x7f0000001d00)={0x2020}, 0xfffffed8)

164.526979ms ago: executing program 1:
syz_emit_ethernet(0x0, 0x0, 0x0)

119.013095ms ago: executing program 1:
r0 = eventfd2(0x0, 0x0)
close(0xffffffffffffffff)
syz_open_procfs$namespace(0x0, &(0x7f0000000180)='ns/cgroup\x00')
setns(r0, 0x0)

0s ago: executing program 1:
syz_mount_image$ext4(&(0x7f0000000700)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x88e, &(0x7f0000000780)={[{@noload}, {@mblk_io_submit}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@auto_da_alloc}, {@debug}, {@quota}]}, 0x3, 0x434, &(0x7f00000002c0)="$eJzs289rHFUcAPDv7CataVMTS/3RtGq0isEfSZPW2oMXRcGDgqCHeoxJWmK3jTQRbAkaRepRCt7Fo+Bf4Ekvop4Er3qXQpFcWj2tzO5MsrvZTbPpJlvdzwcmeW/mLe99d+btvjdvJ4CeNZr+SSIGI+L3iBiqZusLjFb/3Vpdnvl7dXkmiXL5rb+SSrmbq8szedH8dfvzTF9E4bMkjjSpd/HylfPTpdLcpSw/sXTh/YnFy1eem78wfW7u3NzFqdOnT56YfOHU1PMdiTON6+bIRwtHD7/2zrU3Zs5ce/fnb5M8/oY4OmR0s4NPlssdrq67DtSkk74uNoS2FKvdNPor/X8oirF+8obi1U+72jhgR5XL5fIDrQ+vlIH/sSS63QKgO/Iv+nT+m2+7NPS4K9x4qToBSuO+lW3VI31RyMr0N8xvO2k0Is6s/PNVusXO3IcAAKjzfTr+ebbZ+K8QtfeF7s3WUIYj4r6IOBgRpyLiUETcH1Ep+2BEPNRm/Y2LJBvHP4Xr2wpsi9Lx34vZ2lb9+C8f/cVwMcsdqMTfn5ydL80dz96Tsejfm+YnN6njh1d++6LVsdrxX7ql9edjwawd1/v21r9mdnpp+k5irnXjk4iRvmbxJ2srAUlEHI6IkW3WMf/0N0dbHbt9/JvowDpT+euIp6rnfyUa4s8lm69PTtwTpbnjE/lVsdEvv159s1X9dxR/B6Tnf1/T638t/uGkdr12sf06rv7xecs5zXav/z3J23X7PpxeWro0GbEneb3a6Nr9Uw3lptbLp/GPHWve/w/G+jtxJCLSi/jhiHgkIh7N2v5YRDweEcc2if+nl594r27H2GAb8e+sNP7Zts7/emJPNO5pniie//G7ukqHo4340/N/spIay/Zs5fNvK+3a3tUMAAAA/z2FiBiMpDC+li4Uxserv+E/FPsKpYXFpWfOLnxwcbb6jMBw9BfyO11DNfdDJ7NpfZ6fasifyO4bf1kcqOTHZxZKs90OHnrc/hb9P/VnsdutA3ac57Wgd+n/0Lv0f+hd+j/0rib9f6Ab7QB2X7Pv/4+70A5g9zX0f8t+0EPM/6F36f/Qu/R/6EmLA3H7h+QlJDYkonBXNENihxLd/mQCAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADojH8DAAD//ygv5wk=")
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086607, &(0x7f00000001c0))

kernel console output (not intermixed with test programs):

found
[   67.921126][   T62] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.993279][  T136] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   68.007247][  T136] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   68.037455][ T5197] loop0: detected capacity change from 0 to 32768
[   68.074455][ T5197] bcachefs (/dev/loop0): error reading default superblock: checksum error, type crc32c_nonzero: got f6a5b872 should be 29d2fb78
[   68.092055][  T136] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   68.103385][  T136] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   68.139658][ T5163] hub 3-1:4.0: config failed, can't read hub descriptor (err -22)
[   68.174304][   T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   68.228514][   T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   68.287857][   T62] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   68.290083][ T5193] loop2: detected capacity change from 0 to 1024
[   68.322187][   T62] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   68.358751][ T5193] hfsplus: creator requires a 4 character value
[   68.404663][ T5193] hfsplus: unable to parse mount options
[   68.435186][  T136] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   68.457446][  T136] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   68.475509][ T5193] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   68.518508][ T5207] loop4: detected capacity change from 0 to 256
[   68.521654][ T5197] bcachefs (loop0): mounting version 1.7: mi_btree_bitmap opts=compression=lz4,nojournal_transaction_names
[   68.578138][ T5197] bcachefs (loop0): recovering from clean shutdown, journal seq 7
[   68.654198][ T5197] bcachefs (loop0): Doing compatible version upgrade from 1.7: mi_btree_bitmap to 1.9: disk_accounting_v2
[   68.654198][ T5197]   running recovery passes: check_allocations
[   68.695310][ T5161] usb 3-1: USB disconnect, device number 2
[   68.767717][ T5207] FAT-fs (loop4): Directory bread(block 64) failed
[   68.782810][ T5197] bcachefs (loop0): accounting_read... done
[   68.790765][ T5197] bcachefs (loop0): alloc_read... done
[   68.802843][ T5207] FAT-fs (loop4): Directory bread(block 65) failed
[   68.809975][ T5207] FAT-fs (loop4): Directory bread(block 66) failed
[   68.818605][ T5197] bcachefs (loop0): stripes_read... done
[   68.830485][ T5207] FAT-fs (loop4): Directory bread(block 67) failed
[   68.838543][ T5197] bcachefs (loop0): snapshots_read... done
[   68.850989][ T5207] FAT-fs (loop4): Directory bread(block 68) failed
[   68.859602][ T5197] bcachefs (loop0): check_allocations...
[   68.883675][ T5197] btree ptr not marked in member info btree allocated bitmap
[   68.883712][ T5197]   u64s 11 type btree_ptr_v2 SPOS_MAX len 0 ver 0: seq 19bc58a6c09b6540 written 24 min_key POS_MIN durability: 1 ptr: 0:38:0 gen 0, shutting down
[   68.894497][ T5207] FAT-fs (loop4): Directory bread(block 69) failed
[   68.894641][ T5207] FAT-fs (loop4): Directory bread(block 70) failed
[   68.894671][ T5207] FAT-fs (loop4): Directory bread(block 71) failed
[   68.894756][ T5207] FAT-fs (loop4): Directory bread(block 72) failed
[   68.894783][ T5207] FAT-fs (loop4): Directory bread(block 73) failed
[   68.903888][ T5212] loop1: detected capacity change from 0 to 2048
[   68.998591][ T5212] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[   69.052462][   T29] audit: type=1804 audit(1717489951.387:2): pid=5212 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir98307604/syzkaller.TkQvdJ/0/file1/bus" dev="loop1" ino=1368 res=1 errno=0
[   69.056419][ T5212] UDF-fs: warning (device loop1): udf_truncate_tail_extent: Too long extent after EOF in inode 1368: i_size: 2368 lbcount: 3584 extent 57+3584
[   69.064473][ T5197] bcachefs (loop0): inconsistency detected - emergency read only at journal seq 7
[   69.082945][ T5212] UDF-fs: error (device loop1): udf_truncate_tail_extent: Extent after EOF in inode 1368
[   69.128061][ T5197] bcachefs (loop0): bch2_gc_mark_key(): error fsck_errors_not_fixed
[   69.215938][ T5197] bcachefs (loop0): bch2_gc_btrees(): error fsck_errors_not_fixed
[   69.229545][ T5197] bucket 0:16 gen 0 has wrong data_type: got free, should be sb, shutting down
[   69.243577][ T5197] bcachefs (loop0): bch2_gc_alloc_done(): error fsck_errors_not_fixed
[   69.255420][ T5214] loop2: detected capacity change from 0 to 64
[   69.278090][   T53] Bluetooth: hci2: command tx timeout
[   69.284136][   T53] Bluetooth: hci1: command tx timeout
[   69.289595][   T53] Bluetooth: hci0: command tx timeout
[   69.333840][   T53] Bluetooth: hci3: command tx timeout
[   69.339298][ T5112] Bluetooth: hci4: command tx timeout
[   69.363771][ T5197] bcachefs (loop0): bch2_check_allocations(): error fsck_errors_not_fixed
[   69.372522][ T5197] bcachefs (loop0): bch2_fs_recovery(): error fsck_errors_not_fixed
[   69.387248][ T5197] bcachefs (loop0): bch2_fs_start(): error starting filesystem fsck_errors_not_fixed
[   69.446058][ T5197] bcachefs (loop0): shutting down
[   69.564633][ T5219] loop1: detected capacity change from 0 to 24
[   69.571442][ T5197] bcachefs (loop0): shutdown complete
[   69.639546][ T5219] MTD: Attempt to mount non-MTD device "/dev/loop1"
[   69.716512][ T5219] romfs: Mounting image 'rom 637cf1fa' through the block layer
[   70.145443][ T5209] loop3: detected capacity change from 0 to 40427
[   70.189335][ T5209] =======================================================
[   70.189335][ T5209] WARNING: The mand mount option has been deprecated and
[   70.189335][ T5209]          and is ignored by this kernel. Remove the mand
[   70.189335][ T5209]          option from the mount to silence this warning.
[   70.189335][ T5209] =======================================================
[   70.246124][ T5209] F2FS-fs (loop3): Invalid SB checksum offset: 0
[   70.273823][ T5209] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[   70.301042][ T5209] F2FS-fs (loop3): heap/no_heap options were deprecated
[   70.325945][ T5209] F2FS-fs (loop3): user quota file already specified
[   70.625403][ T5197] syz-executor.0 (5197) used greatest stack depth: 17552 bytes left
[   70.766277][ T5216] loop4: detected capacity change from 0 to 32768
[   70.895935][ T5233] loop2: detected capacity change from 0 to 512
[   70.925375][ T5216] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   70.940809][ T5233] EXT4-fs (loop2): bad block size 8192
[   71.206064][ T5216] XFS (loop4): Ending clean mount
[   71.299693][ T5216] XFS (loop4): Quotacheck needed: Please wait.
[   71.703310][ T5216] XFS (loop4): Quotacheck: Done.
[   71.734475][ T5253] loop3: detected capacity change from 0 to 256
[   71.881829][ T5253] FAT-fs (loop3): Directory bread(block 64) failed
[   71.930029][ T1247] ieee802154 phy0 wpan0: encryption failed: -22
[   71.942970][ T1247] ieee802154 phy1 wpan1: encryption failed: -22
[   71.951782][ T5253] FAT-fs (loop3): Directory bread(block 65) failed
[   72.009994][ T5253] FAT-fs (loop3): Directory bread(block 66) failed
[   72.058768][ T5261] loop2: detected capacity change from 0 to 2048
[   72.074547][ T5253] FAT-fs (loop3): Directory bread(block 67) failed
[   72.081272][ T5253] FAT-fs (loop3): Directory bread(block 68) failed
[   72.101358][ T5253] FAT-fs (loop3): Directory bread(block 69) failed
[   72.123142][ T5253] FAT-fs (loop3): Directory bread(block 70) failed
[   72.131981][ T5253] FAT-fs (loop3): Directory bread(block 71) failed
[   72.140717][ T5261]  loop2: p1 < > p4
[   72.149179][ T5261] loop2: p4 size 8388608 extends beyond EOD, truncated
[   72.169672][ T5253] FAT-fs (loop3): Directory bread(block 72) failed
[   72.178297][ T5253] FAT-fs (loop3): Directory bread(block 73) failed
[   72.189771][ T5108] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   73.262512][ T5290] Êü: entered promiscuous mode
[   73.370460][ T5292] loop0: detected capacity change from 0 to 2048
[   73.435593][ T5292]  loop0: p1 < > p4
[   73.446556][ T5292] loop0: p4 size 8388608 extends beyond EOD, truncated
[   73.921896][ T5273] loop4: detected capacity change from 0 to 40427
[   73.941529][ T5273] F2FS-fs (loop4): Invalid SB checksum offset: 0
[   73.960744][ T5273] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[   73.996012][ T5273] F2FS-fs (loop4): heap/no_heap options were deprecated
[   74.019978][ T5273] F2FS-fs (loop4): user quota file already specified
[   74.133234][ T5112] Bluetooth: hci4: command 0x0405 tx timeout
[   74.249395][ T5285] loop3: detected capacity change from 0 to 32768
[   74.299735][ T5285] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   74.721677][ T5285] XFS (loop3): Ending clean mount
[   74.768466][ T5285] XFS (loop3): Quotacheck needed: Please wait.
[   74.841315][ T5285] XFS (loop3): Quotacheck: Done.
[   75.160937][ T5114] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   75.244615][ T5351] loop2: detected capacity change from 0 to 1024
[   75.281373][ T5351] syz-executor.2: attempt to access beyond end of device
[   75.281373][ T5351] loop2: rw=0, sector=5778, nr_sectors = 2 limit=1024
[   75.870982][ T5364] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[   76.130588][ T5373] syz-executor.4 uses obsolete (PF_INET,SOCK_PACKET)
[   76.630933][ T5389] loop3: detected capacity change from 0 to 1024
[   76.666114][ T5389] syz-executor.3: attempt to access beyond end of device
[   76.666114][ T5389] loop3: rw=0, sector=5778, nr_sectors = 2 limit=1024
[   76.839425][ T5393] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[   76.846395][ T5393] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[   76.853147][ T5393] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[   76.859625][ T5393] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[   76.866187][ T5393] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[   76.872666][ T5393] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[   76.879893][ T5393] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[   76.886395][ T5393] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[   76.893034][ T5393] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[   77.415817][ T5365] loop1: detected capacity change from 0 to 40427
[   77.451787][ T5365] F2FS-fs (loop1): Invalid SB checksum offset: 0
[   77.482871][ T5365] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[   77.511894][ T5365] F2FS-fs (loop1): heap/no_heap options were deprecated
[   77.545399][ T5365] F2FS-fs (loop1): user quota file already specified
[   77.647245][ T5408] hsr_slave_0: left promiscuous mode
[   77.658131][ T5112] Bluetooth: hci4: command 0x0405 tx timeout
[   77.712985][ T5411] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   77.759264][ T5408] hsr_slave_1: left promiscuous mode
[   77.813735][ T5411] Cannot find set identified by id 0 to match
[   78.051842][   T29] audit: type=1804 audit(1717489960.387:3): pid=5416 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2611011247/syzkaller.nk47dC/16/.log" dev="sda1" ino=1954 res=1 errno=0
[   78.094157][ T5416] warning: checkpointing journal with EXT4_IOC_CHECKPOINT_FLAG_ZEROOUT can be slow
[   78.172943][ T5421] warning: checkpointing journal with EXT4_IOC_CHECKPOINT_FLAG_ZEROOUT can be slow
[   78.235895][ T5422] loop0: detected capacity change from 0 to 1024
[   78.263871][ T5395] loop4: detected capacity change from 0 to 32768
[   78.375688][ T5395] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (5395)
[   78.412814][ T5422] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[   78.476745][ T5422] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=f04cc01c, mo2=0002]
[   78.531008][ T5422] System zones: 0-1, 3-36
[   78.670660][ T5431] loop3: detected capacity change from 0 to 1024
[   78.729759][ T5422] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   78.751000][ T5435] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'.
[   78.824907][ T5431] syz-executor.3: attempt to access beyond end of device
[   78.824907][ T5431] loop3: rw=0, sector=5778, nr_sectors = 2 limit=1024
[   78.963334][ T5436] loop2: detected capacity change from 0 to 512
[   79.012175][ T5395] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   79.026112][ T5436] EXT4-fs: Ignoring removed orlov option
[   79.044290][ T5436] EXT4-fs: Mount option(s) incompatible with ext2
[   79.057601][ T5395] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[   79.096203][ T5395] BTRFS info (device loop4): using free-space-tree
[   79.167739][   T29] audit: type=1804 audit(1717489961.507:4): pid=5416 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2611011247/syzkaller.nk47dC/16/file0/bus" dev="loop0" ino=18 res=1 errno=0
[   79.310893][ T5116] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.344993][ T5454] vlan2: entered promiscuous mode
[   79.350094][ T5454] bond0: entered promiscuous mode
[   79.360103][ T5454] bond_slave_0: entered promiscuous mode
[   79.376289][ T5454] bond_slave_1: entered promiscuous mode
[   79.382902][ T5454] vlan2: entered allmulticast mode
[   79.388161][ T5454] bond0: entered allmulticast mode
[   79.393532][ T5454] bond_slave_0: entered allmulticast mode
[   79.399349][ T5454] bond_slave_1: entered allmulticast mode
[   79.429754][ T5456] hsr_slave_0: left promiscuous mode
[   79.446552][ T5395] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[   79.459786][ T5456] hsr_slave_1: left promiscuous mode
[   79.476783][ T5395] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[   79.601672][ T5108] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   79.732970][ T5112] Bluetooth: hci4: command 0x0405 tx timeout
[   79.791901][ T5473] netlink: 'syz-executor.3': attribute type 4 has an invalid length.
[   79.903381][ T5475] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.0'.
[   80.452130][ T5487] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.465816][ T5493] loop1: detected capacity change from 0 to 1024
[   80.541475][ T5493] syz-executor.1: attempt to access beyond end of device
[   80.541475][ T5493] loop1: rw=0, sector=5778, nr_sectors = 2 limit=1024
[   80.610028][ T5496] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[   80.720174][ T5487] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   80.883155][ T5487] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.052333][ T5487] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   81.279365][ T5487] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   81.339787][ T5487] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   81.385666][ T5487] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   81.449390][ T5487] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   81.480711][ T5489] loop3: detected capacity change from 0 to 32768
[   81.529548][ T5489] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (5489)
[   81.561259][ T5489] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   81.597302][ T5489] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[   81.644394][ T5489] BTRFS info (device loop3): using free-space-tree
[   81.815239][ T5112] Bluetooth: hci4: command 0x0405 tx timeout
[   81.861309][ T5535] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.0'.
[   81.926203][ T5489] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[   81.962671][ T5489] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[   82.139004][   T58] cfg80211: failed to load regulatory.db
[   82.155797][ T5114] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   82.496706][ T5545] netlink: 40 bytes leftover after parsing attributes in process `syz-executor.1'.
[   82.728182][ T5555] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.3'.
[   82.889705][ T5561] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[   82.947337][ T5557] loop1: detected capacity change from 0 to 256
[   83.304354][ T5569] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.0'.
[   83.387377][ T5571] loop2: detected capacity change from 0 to 1024
[   83.469266][ T5557] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0xff6f124c, utbl_chksum : 0xe619d30d)
[   83.524729][   T11] hfsplus: b-tree write err: -5, ino 4
[   83.852114][ T5582] mac80211_hwsim hwsim7 wlan0: entered promiscuous mode
[   83.884719][ T5582] macvlan3: entered promiscuous mode
[   83.891081][ T5588] net_ratelimit: 52 callbacks suppressed
[   83.891099][ T5588] TCP segment has incorrect auth options set for [fe80::bb].0->[fe80::aa].20002 [S.]
[   83.919946][ T5582] mac80211_hwsim hwsim7 wlan0: left promiscuous mode
[   84.160442][ T5594] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[   84.353153][ T5596] loop3: detected capacity change from 0 to 1024
[   84.361973][ T5567] loop4: detected capacity change from 0 to 32768
[   84.388373][ T5567] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (5567)
[   84.446246][  T136] hfsplus: b-tree write err: -5, ino 4
[   84.516036][ T5567] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   84.579513][ T5599] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'.
[   84.587393][ T5567] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[   84.614715][ T5601] syz-executor.3 (pid 5601) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[   84.660616][ T5567] BTRFS info (device loop4): using free-space-tree
[   85.046540][ T5567] overlayfs: missing 'lowerdir'
[   85.259783][ T5108] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   85.462348][ T5601] fscrypt (sda1, inode 1969): Missing crypto API support for AES-128-CBC-CTS (API name: "cts(cbc(aes))")
[   85.536001][ T5643] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'.
[   85.544132][ T5601] fscrypt (sda1, inode 1969): Missing crypto API support for AES-128-CBC-CTS (API name: "cts(cbc(aes))")
[   85.628098][ T5643] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[   85.700760][ T5643] nbd: socks must be embedded in a SOCK_ITEM attr
[   85.806825][ T5655] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.0'.
[   85.868385][ T5653] loop1: detected capacity change from 0 to 1024
[   86.060599][ T5666] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.0'.
[   86.100377][   T62] hfsplus: b-tree write err: -5, ino 4
[   87.676780][ T5691] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'.
[   87.847730][ T5663] loop4: detected capacity change from 0 to 32768
[   87.855165][ T5696] loop1: detected capacity change from 0 to 1024
[   87.878707][ T5669] loop3: detected capacity change from 0 to 32768
[   87.896300][ T5669] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (5669)
[   87.916283][ T5669] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   87.927060][ T5669] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[   87.940011][ T5669] BTRFS info (device loop3): using free-space-tree
[   87.950340][ T5663] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   88.070016][ T5663] XFS (loop4): Ending clean mount
[   88.089922][ T5663] XFS (loop4): Quotacheck needed: Please wait.
[   88.125005][   T11] hfsplus: b-tree write err: -5, ino 4
[   88.139422][ T5669] overlayfs: missing 'lowerdir'
[   88.159665][ T5663] XFS (loop4): Quotacheck: Done.
[   88.263234][ T5114] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   88.439225][ T5735] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'.
[   88.460025][ T5108] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[   89.334489][ T5757] loop3: detected capacity change from 0 to 1024
[   89.540860][ T5764] IPv6: sit1: Disabled Multicast RS
[   89.604008][ T5761] Driver unsupported XDP return value 0 on prog  (id 32) dev N/A, expect packet loss!
[   89.798677][  T136] hfsplus: b-tree write err: -5, ino 4
[   89.815332][ T5768] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'.
[   90.317117][ T5786] loop2: detected capacity change from 0 to 256
[   90.426290][ T5786] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x4f8593fa, utbl_chksum : 0xe619d30d)
[   90.768015][ T5787] netlink: 'syz-executor.4': attribute type 2 has an invalid length.
[   91.235085][ T5806] syz-executor.4[5806] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   91.237805][ T5806] syz-executor.4[5806] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   91.267895][ T5807] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.3'.
[   91.300470][ T5760] loop0: detected capacity change from 0 to 32768
[   91.341761][ T5760] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (5760)
[   91.360868][ T5812] syz-executor.4[5812] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   91.361018][ T5812] syz-executor.4[5812] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   91.386077][ T5760] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   91.399368][ T5815] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.1'.
[   91.434285][ T5760] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[   91.469289][ T5760] BTRFS info (device loop0): using free-space-tree
[   92.025724][ T5760] overlayfs: missing 'lowerdir'
[   92.566899][ T5116] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   92.727440][ T5853] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.4'.
[   92.777172][ T5853] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.4'.
[   92.923639][ T5863] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[   94.270672][ T5897] TCP: request_sock_TCP: Possible SYN flooding on port [::]:20002. Sending cookies.
[   94.441057][ T5872] loop4: detected capacity change from 0 to 32768
[   94.452755][ T5872] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (5872)
[   94.481466][ T5872] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   94.496122][ T5872] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[   94.510465][ T5872] BTRFS info (device loop4): using free-space-tree
[   94.607756][ T5872] overlayfs: missing 'workdir'
[   94.645811][ T5108] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   95.187334][ T5929] loop0: detected capacity change from 0 to 2048
[   95.219009][ T5929] ext4: Bad value for 'auto_da_alloc'
[   96.343641][   T29] audit: type=1800 audit(1717489978.677:5): pid=5952 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="memory.events" dev="sda1" ino=1948 res=0 errno=0
[   96.368615][   T29] audit: type=1804 audit(1717489978.677:6): pid=5952 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir2611011247/syzkaller.nk47dC/54/memory.events" dev="sda1" ino=1948 res=1 errno=0
[   96.409386][   T29] audit: type=1804 audit(1717489978.677:7): pid=5952 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir2611011247/syzkaller.nk47dC/54/memory.events" dev="sda1" ino=1948 res=1 errno=0
[   96.491961][   T29] audit: type=1804 audit(1717489978.677:8): pid=5952 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir2611011247/syzkaller.nk47dC/54/memory.events" dev="sda1" ino=1948 res=1 errno=0
[   96.575025][   T29] audit: type=1804 audit(1717489978.737:9): pid=5954 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir2611011247/syzkaller.nk47dC/54/memory.events" dev="sda1" ino=1948 res=1 errno=0
[   96.675010][   T29] audit: type=1804 audit(1717489978.737:10): pid=5954 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/root/syzkaller-testdir2611011247/syzkaller.nk47dC/54/memory.events" dev="sda1" ino=1948 res=1 errno=0
[   97.202024][ T5942] loop3: detected capacity change from 0 to 32768
[   97.219046][ T5942] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (5942)
[   97.277400][ T5942] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   97.309981][ T5942] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[   97.321101][ T5981] loop0: detected capacity change from 0 to 2048
[   97.328326][ T5942] BTRFS info (device loop3): using free-space-tree
[   97.366138][ T5981] ext4: Bad value for 'auto_da_alloc'
[   97.387181][ T5948] loop1: detected capacity change from 0 to 32768
[   97.422805][ T5948] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (5948)
[   97.472894][ T5948] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   97.528072][ T5948] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[   97.553566][ T5942] overlayfs: missing 'workdir'
[   97.554795][ T5948] BTRFS info (device loop1): using free-space-tree
[   97.640614][ T5114] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   97.817441][ T5788] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   97.862914][ T5112] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   97.874205][ T5112] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   97.883194][ T5112] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   97.907238][ T5112] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   97.933367][ T5112] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   97.941949][ T5112] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   98.001547][ T5973] loop4: detected capacity change from 0 to 40427
[   98.073962][ T5788] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.096853][ T6021] TCP: Unexpected MD5 Hash found for [fe80::bb].0->[ff02::1].20002 [FS]
[   98.127528][ T5973] F2FS-fs (loop4): Found nat_bits in checkpoint
[   98.159011][ T6026] loop3: detected capacity change from 0 to 128
[   98.286249][ T5788] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.500737][ T5973] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[   98.507607][ T5788] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.521106][ T5973] F2FS-fs (loop4): Inconsistent error blkaddr:5633, sit bitmap:0
[   98.529276][ T5973] CPU: 0 PID: 5973 Comm: syz-executor.4 Tainted: G        W          6.10.0-rc2-next-20240604-syzkaller #0
[   98.540685][ T5973] Tainted: [W]=WARN
[   98.544514][ T5973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[   98.554606][ T5973] Call Trace:
[   98.557905][ T5973]  <TASK>
[   98.560861][ T5973]  dump_stack_lvl+0x241/0x360
[   98.565602][ T5973]  ? __pfx_dump_stack_lvl+0x10/0x10
[   98.570829][ T5973]  ? __pfx_f2fs_get_dnode_of_data+0x10/0x10
[   98.576775][ T5973]  ? __pfx_f2fs_lookup_read_extent_cache_block+0x10/0x10
[   98.583832][ T5973]  __f2fs_is_valid_blkaddr+0xd4d/0x1460
[   98.589403][ T5973]  f2fs_get_read_data_page+0x410/0x750
[   98.594972][ T5973]  ? __pfx_f2fs_get_read_data_page+0x10/0x10
[   98.600953][ T5973]  ? __filemap_get_folio+0x926/0xbb0
[   98.606255][ T5973]  f2fs_find_data_page+0x92/0x370
[   98.611283][ T5973]  f2fs_readdir+0x5d1/0xbf0
[   98.615788][ T5973]  ? __pfx___might_resched+0x10/0x10
[   98.621080][ T5973]  ? __pfx_f2fs_readdir+0x10/0x10
[   98.626108][ T5973]  ? trace_contention_end+0x3c/0x120
[   98.631391][ T5973]  ? __mutex_lock+0x2ef/0xd70
[   98.636073][ T5973]  ? iterate_dir+0x55b/0x820
[   98.640665][ T5973]  ? __pfx_lock_release+0x10/0x10
[   98.645691][ T5973]  ? __fdget_pos+0x24e/0x310
[   98.650275][ T5973]  ? common_file_perm+0x1a6/0x210
[   98.655387][ T5973]  ? bpf_lsm_file_permission+0x9/0x10
[   98.660763][ T5973]  iterate_dir+0x65e/0x820
[   98.665187][ T5973]  __se_sys_getdents+0x1ef/0x4d0
[   98.670128][ T5973]  ? __pfx___se_sys_getdents+0x10/0x10
[   98.675589][ T5973]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[   98.681568][ T5973]  ? __pfx_filldir+0x10/0x10
[   98.686177][ T5973]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   98.695120][ T5973]  ? do_syscall_64+0x100/0x230
[   98.699889][ T5973]  ? do_syscall_64+0xb6/0x230
[   98.704655][ T5973]  do_syscall_64+0xf3/0x230
[   98.709156][ T5973]  ? clear_bhb_loop+0x35/0x90
[   98.713830][ T5973]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.719738][ T5973] RIP: 0033:0x7fc303a7cf69
[   98.724239][ T5973] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   98.744717][ T5973] RSP: 002b:00007fc3048210c8 EFLAGS: 00000246 ORIG_RAX: 000000000000004e
[   98.753136][ T5973] RAX: ffffffffffffffda RBX: 00007fc303bb3fa0 RCX: 00007fc303a7cf69
[   98.761111][ T5973] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[   98.769083][ T5973] RBP: 00007fc303ada706 R08: 0000000000000000 R09: 0000000000000000
[   98.777053][ T5973] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   98.785034][ T5973] R13: 000000000000000b R14: 00007fc303bb3fa0 R15: 00007ffef27c01e8
[   98.793037][ T5973]  </TASK>
[   98.845158][ T6034] loop3: detected capacity change from 0 to 2048
[   98.929016][ T6034] Alternate GPT is invalid, using primary GPT.
[   98.943662][ T6034]  loop3: p1 p2 p3
[   99.043173][ T5788] bridge_slave_1: left allmulticast mode
[   99.049097][ T5788] bridge_slave_1: left promiscuous mode
[   99.074138][ T5788] bridge0: port 2(bridge_slave_1) entered disabled state
[   99.092144][ T5788] bridge_slave_0: left allmulticast mode
[   99.153665][ T5788] bridge_slave_0: left promiscuous mode
[   99.160762][ T5788] bridge0: port 1(bridge_slave_0) entered disabled state
[   99.177963][ T5158] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[   99.408624][ T5158] usb 4-1: Using ep0 maxpacket: 32
[   99.439861][ T5788] bond0: left allmulticast mode
[   99.450562][ T5788] bond_slave_0: left allmulticast mode
[   99.458770][ T5158] usb 4-1: config 0 has an invalid interface number: 155 but max is 0
[   99.463760][ T5788] bond_slave_1: left allmulticast mode
[   99.483219][ T5788] bond0: left promiscuous mode
[   99.487558][ T5158] usb 4-1: config 0 has no interface number 0
[   99.488018][ T5788] bond_slave_0: left promiscuous mode
[   99.494247][ T5158] usb 4-1: config 0 interface 155 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[   99.514080][ T5788] bond_slave_1: left promiscuous mode
[   99.550711][ T5158] usb 4-1: config 0 interface 155 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[   99.578441][ T6044] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
[   99.581058][ T5158] usb 4-1: New USB device found, idVendor=05d1, idProduct=1002, bcdDevice=c5.61
[   99.622782][ T5158] usb 4-1: New USB device strings: Mfr=225, Product=1, SerialNumber=3
[   99.643349][ T5158] usb 4-1: Product: syz
[   99.658133][ T5158] usb 4-1: Manufacturer: syz
[   99.670833][ T5158] usb 4-1: SerialNumber: syz
[   99.717776][ T5158] usb 4-1: config 0 descriptor??
[   99.724418][ T5107] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   99.762026][ T5158] ftdi_sio 4-1:0.155: FTDI USB Serial Device converter detected
[   99.810781][ T5158] ftdi_sio ttyUSB0: unknown device type: 0xc561
[  100.030739][ T5162] usb 4-1: USB disconnect, device number 2
[  100.048742][ T5162] ftdi_sio 4-1:0.155: device disconnected
[  100.059731][ T5112] Bluetooth: hci4: command tx timeout
[  100.089480][ T5788] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  100.111113][ T5788] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  100.135170][ T5788] bond0 (unregistering): Released all slaves
[  100.185424][ T6015] chnl_net:caif_netlink_parms(): no params data found
[  100.330831][ T6063] loop4: detected capacity change from 0 to 2048
[  100.333295][ T6061] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.1'.
[  100.339298][ T6063] ext4: Bad value for 'auto_da_alloc'
[  100.539205][ T6015] bridge0: port 1(bridge_slave_0) entered blocking state
[  100.560607][ T6071] loop0: detected capacity change from 0 to 128
[  100.576088][ T6015] bridge0: port 1(bridge_slave_0) entered disabled state
[  100.612151][ T6015] bridge_slave_0: entered allmulticast mode
[  100.620077][ T6015] bridge_slave_0: entered promiscuous mode
[  100.644708][ T6015] bridge0: port 2(bridge_slave_1) entered blocking state
[  100.665878][ T6015] bridge0: port 2(bridge_slave_1) entered disabled state
[  100.696062][ T6015] bridge_slave_1: entered allmulticast mode
[  100.706438][ T6015] bridge_slave_1: entered promiscuous mode
[  100.905173][ T6015] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  100.939963][ T6015] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  100.992223][ T5788] hsr_slave_0: left promiscuous mode
[  101.008670][ T5788] hsr_slave_1: left promiscuous mode
[  101.030293][ T5788] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  101.055746][ T5788] batman_adv: batadv0: Removing interface: batadv_slave_0
[  101.084279][ T5788] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  101.106926][ T5788] batman_adv: batadv0: Removing interface: batadv_slave_1
[  101.188790][ T5788] veth1_macvtap: left promiscuous mode
[  101.217607][ T5788] veth0_macvtap: left promiscuous mode
[  101.237444][ T5788] veth1_vlan: left promiscuous mode
[  101.255647][ T5788] veth0_vlan: left promiscuous mode
[  101.295479][ T6094] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[  101.614917][ T6082] loop0: detected capacity change from 0 to 32768
[  101.628925][ T6082] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (6082)
[  101.653903][ T6082] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  101.666605][ T6082] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  101.679821][ T6082] BTRFS info (device loop0): using free-space-tree
[  101.816659][ T6107] loop1: detected capacity change from 0 to 2048
[  101.876539][ T6107] Alternate GPT is invalid, using primary GPT.
[  101.888457][ T6107]  loop1: p1 p2 p3
[  102.118751][ T5788] team0 (unregistering): Port device team_slave_1 removed
[  102.126474][   T29] audit: type=1804 audit(1717489984.457:11): pid=6115 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2611011247/syzkaller.nk47dC/65/file1/bus" dev="loop0" ino=263 res=1 errno=0
[  102.170238][ T5112] Bluetooth: hci4: command tx timeout
[  102.222119][ T5788] team0 (unregistering): Port device team_slave_0 removed
[  102.234062][ T5158] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  102.426304][ T5158] usb 2-1: Using ep0 maxpacket: 32
[  102.437275][ T5158] usb 2-1: config 0 has an invalid interface number: 155 but max is 0
[  102.453049][ T5158] usb 2-1: config 0 has no interface number 0
[  102.464947][ T5158] usb 2-1: config 0 interface 155 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  102.487147][ T5158] usb 2-1: config 0 interface 155 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  102.503553][ T5158] usb 2-1: New USB device found, idVendor=05d1, idProduct=1002, bcdDevice=c5.61
[  102.513067][ T5158] usb 2-1: New USB device strings: Mfr=225, Product=1, SerialNumber=3
[  102.521659][ T5158] usb 2-1: Product: syz
[  102.526238][ T5158] usb 2-1: Manufacturer: syz
[  102.531093][ T5158] usb 2-1: SerialNumber: syz
[  102.542368][ T5158] usb 2-1: config 0 descriptor??
[  102.561622][ T5158] ftdi_sio 2-1:0.155: FTDI USB Serial Device converter detected
[  102.574058][ T5158] ftdi_sio ttyUSB0: unknown device type: 0xc561
[  102.597604][ T5116] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  102.828559][ T5158] usb 2-1: USB disconnect, device number 2
[  102.851289][ T5158] ftdi_sio 2-1:0.155: device disconnected
[  102.982497][ T6121] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.0'.
[  103.047225][ T6015] team0: Port device team_slave_0 added
[  103.090287][ T6015] team0: Port device team_slave_1 added
[  103.180687][ T6129] loop4: detected capacity change from 0 to 128
[  103.209063][ T6015] batman_adv: batadv0: Adding interface: batadv_slave_0
[  103.231014][ T6015] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  103.282605][ T6015] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  103.312742][ T6015] batman_adv: batadv0: Adding interface: batadv_slave_1
[  103.320880][ T6015] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  103.357583][ T6015] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  103.487108][ T6015] hsr_slave_0: entered promiscuous mode
[  103.531835][ T6015] hsr_slave_1: entered promiscuous mode
[  103.806138][ T6158] loop0: detected capacity change from 0 to 512
[  103.838434][ T6158] EXT4-fs (loop0): bad block size 8192
[  103.924633][ T6161] loop1: detected capacity change from 0 to 1024
[  104.212764][ T5112] Bluetooth: hci4: command tx timeout
[  104.781889][ T6161] EXT4-fs: Ignoring removed orlov option
[  104.806943][ T6161] EXT4-fs (loop1): Test dummy encryption mode enabled
[  104.858282][ T6161] EXT4-fs (loop1): stripe (7) is not aligned with cluster size (16), stripe is disabled
[  104.954880][ T6177] loop0: detected capacity change from 0 to 128
[  104.962665][ T6161] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.176967][ T6155] loop4: detected capacity change from 0 to 32768
[  105.190331][ T6161] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-aesni"
[  105.215443][ T6155] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (6155)
[  105.260237][ T6015] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  105.264752][ T6161] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  105.297156][ T6015] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  105.309619][ T6155] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  105.324694][ T6015] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  105.339405][ T6155] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[  105.358467][ T6015] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  105.380943][ T6155] BTRFS info (device loop4): using free-space-tree
[  105.390156][ T5107] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2234: inode #15: comm syz-executor.1: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  105.432252][ T5107] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2234: inode #15: comm syz-executor.1: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  105.615660][ T6015] 8021q: adding VLAN 0 to HW filter on device bond0
[  105.725751][ T6015] 8021q: adding VLAN 0 to HW filter on device team0
[  105.763372][ T5162] bridge0: port 1(bridge_slave_0) entered blocking state
[  105.770589][ T5162] bridge0: port 1(bridge_slave_0) entered forwarding state
[  105.801445][ T5162] bridge0: port 2(bridge_slave_1) entered blocking state
[  105.808681][ T5162] bridge0: port 2(bridge_slave_1) entered forwarding state
[  105.882345][ T6015] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  105.916893][ T5107] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  106.052192][ T2472] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  106.176283][ T2472] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  106.189406][   T29] audit: type=1804 audit(1717489988.527:12): pid=6219 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir3104171085/syzkaller.i10Qok/37/file1/bus" dev="loop4" ino=263 res=1 errno=0
[  106.293829][ T5112] Bluetooth: hci4: command tx timeout
[  106.340268][ T2472] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  106.439679][ T6015] 8021q: adding VLAN 0 to HW filter on device batadv0
[  106.509567][ T2472] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  106.647177][ T6015] veth0_vlan: entered promiscuous mode
[  106.691996][ T6015] veth1_vlan: entered promiscuous mode
[  106.771799][ T6232] loop3: detected capacity change from 0 to 1024
[  106.799300][   T53] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  106.809008][ T6015] veth0_macvtap: entered promiscuous mode
[  106.810589][   T53] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  106.824958][ T6232] EXT4-fs: Ignoring removed orlov option
[  106.834404][ T6232] EXT4-fs (loop3): Test dummy encryption mode enabled
[  106.843066][   T53] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  106.847523][ T6232] EXT4-fs (loop3): stripe (7) is not aligned with cluster size (16), stripe is disabled
[  106.858328][ T6015] veth1_macvtap: entered promiscuous mode
[  106.870070][   T53] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  106.885079][   T53] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  106.892506][   T53] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  106.936037][ T6236] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
[  106.949342][ T6232] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  106.993079][ T6015] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  107.028117][ T6015] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  107.060535][ T6015] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  107.084695][ T6015] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  107.105410][ T6015] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  107.129870][ T6015] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  107.154909][ T6015] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  107.192734][ T6015] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  107.214559][ T6015] batman_adv: batadv0: Interface activated: batadv_slave_0
[  107.217497][ T6232] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  107.239644][ T2472] bridge_slave_1: left allmulticast mode
[  107.253035][ T2472] bridge_slave_1: left promiscuous mode
[  107.279955][ T2472] bridge0: port 2(bridge_slave_1) entered disabled state
[  107.316087][ T2472] bridge_slave_0: left allmulticast mode
[  107.321782][ T2472] bridge_slave_0: left promiscuous mode
[  107.341904][ T2472] bridge0: port 1(bridge_slave_0) entered disabled state
[  107.367296][ T5114] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2234: inode #15: comm syz-executor.3: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  107.369039][ T5108] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  107.413518][ T5114] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2234: inode #15: comm syz-executor.3: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  107.968421][ T2472] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  107.989205][ T2472] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  108.000137][ T2472] bond0 (unregistering): Released all slaves
[  108.110809][ T6249] syzkaller0: entered promiscuous mode
[  108.116480][ T6249] syzkaller0: entered allmulticast mode
[  108.156971][ T2472] Êü: left promiscuous mode
[  108.309333][ T5114] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.791881][ T5112] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  108.801876][ T5112] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  108.811275][ T5112] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  108.819594][ T5112] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  108.829437][ T5112] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  108.841659][ T5112] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  108.933081][   T53] Bluetooth: hci0: command tx timeout
[  109.609810][ T6015] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  109.620556][ T6015] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  109.630760][ T6015] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  109.641232][ T6015] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  109.652482][ T6015] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  109.663262][ T6015] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  109.673153][ T6015] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  109.683609][ T6015] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  109.695182][ T6015] batman_adv: batadv0: Interface activated: batadv_slave_1
[  109.711090][ T6015] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  109.719994][ T6015] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  109.728820][ T6015] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  109.738173][ T6015] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  110.093989][ T2472] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  110.101456][ T2472] batman_adv: batadv0: Removing interface: batadv_slave_0
[  110.115367][ T2472] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  110.126945][ T2472] batman_adv: batadv0: Removing interface: batadv_slave_1
[  110.172453][ T2472] veth1_macvtap: left promiscuous mode
[  110.178459][ T2472] veth0_macvtap: left promiscuous mode
[  110.186794][ T2472] veth1_vlan: left promiscuous mode
[  110.192154][ T2472] veth0_vlan: left promiscuous mode
[  110.297073][ T6280] loop4: detected capacity change from 0 to 1024
[  110.386143][ T6280] syz-executor.4: attempt to access beyond end of device
[  110.386143][ T6280] loop4: rw=0, sector=5778, nr_sectors = 2 limit=1024
[  110.933202][   T53] Bluetooth: hci3: command tx timeout
[  110.993607][ T2472] team0 (unregistering): Port device team_slave_1 removed
[  111.013329][   T53] Bluetooth: hci0: command tx timeout
[  111.031082][ T6287] loop4: detected capacity change from 0 to 1024
[  111.039664][ T6287] EXT4-fs: Ignoring removed orlov option
[  111.046439][ T6287] EXT4-fs (loop4): Test dummy encryption mode enabled
[  111.053703][ T6287] EXT4-fs (loop4): stripe (7) is not aligned with cluster size (16), stripe is disabled
[  111.069121][ T2472] team0 (unregistering): Port device team_slave_0 removed
[  111.070791][ T6287] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.134273][ T6287] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  111.184934][ T5108] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2234: inode #15: comm syz-executor.4: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  111.208932][ T5108] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2234: inode #15: comm syz-executor.4: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  111.628041][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.654525][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  111.694335][ T6293] loop0: detected capacity change from 0 to 512
[  111.706354][ T6293] EXT4-fs (loop0): bad block size 8192
[  111.740270][ T5108] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  111.778999][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.816631][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  112.202418][ T6268] chnl_net:caif_netlink_parms(): no params data found
[  112.412309][ T6233] chnl_net:caif_netlink_parms(): no params data found
[  113.022822][   T53] Bluetooth: hci3: command tx timeout
[  113.092675][   T53] Bluetooth: hci0: command tx timeout
[  113.119433][ T6317] loop0: detected capacity change from 0 to 1024
[  113.152517][ T6317] EXT4-fs: Ignoring removed orlov option
[  113.178811][ T6268] bridge0: port 1(bridge_slave_0) entered blocking state
[  113.194056][ T6317] EXT4-fs (loop0): Test dummy encryption mode enabled
[  113.202171][ T6268] bridge0: port 1(bridge_slave_0) entered disabled state
[  113.213953][ T6317] EXT4-fs (loop0): stripe (7) is not aligned with cluster size (16), stripe is disabled
[  113.248099][ T6268] bridge_slave_0: entered allmulticast mode
[  113.270817][ T6268] bridge_slave_0: entered promiscuous mode
[  113.283584][ T6268] bridge0: port 2(bridge_slave_1) entered blocking state
[  113.290751][ T6268] bridge0: port 2(bridge_slave_1) entered disabled state
[  113.291324][ T6317] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  113.298040][ T6268] bridge_slave_1: entered allmulticast mode
[  113.317693][ T6268] bridge_slave_1: entered promiscuous mode
[  113.348753][ T6233] bridge0: port 1(bridge_slave_0) entered blocking state
[  113.356254][ T6233] bridge0: port 1(bridge_slave_0) entered disabled state
[  113.364110][ T6233] bridge_slave_0: entered allmulticast mode
[  113.372163][ T6233] bridge_slave_0: entered promiscuous mode
[  113.468446][ T5116] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.478425][ T5112] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  113.544180][ T6233] bridge0: port 2(bridge_slave_1) entered blocking state
[  113.552311][ T6233] bridge0: port 2(bridge_slave_1) entered disabled state
[  113.567123][ T6233] bridge_slave_1: entered allmulticast mode
[  113.579320][ T5112] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  113.592870][ T5112] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  113.602705][ T6233] bridge_slave_1: entered promiscuous mode
[  113.607412][ T5112] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  113.617080][ T5112] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  113.638057][ T5112] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  113.948932][ T2472] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.234858][ T6268] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  114.338963][ T6233] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  114.396528][ T6233] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  114.430446][ T2472] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.447450][ T6268] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  114.508306][ T6233] team0: Port device team_slave_0 added
[  114.522472][ T6233] team0: Port device team_slave_1 added
[  114.590475][ T2472] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.707025][ T6268] team0: Port device team_slave_0 added
[  114.720062][ T6268] team0: Port device team_slave_1 added
[  114.738325][ T2472] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.754585][ T6233] batman_adv: batadv0: Adding interface: batadv_slave_0
[  114.762498][ T6233] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  114.792698][ T6233] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  114.847551][ T6233] batman_adv: batadv0: Adding interface: batadv_slave_1
[  114.854675][ T6233] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  114.881607][ T6233] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  114.980929][ T6268] batman_adv: batadv0: Adding interface: batadv_slave_0
[  115.002885][ T6268] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  115.031725][ T6268] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  115.072062][   T29] audit: type=1804 audit(1717489997.407:13): pid=6357 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2611011247/syzkaller.nk47dC/95/file0" dev="sda1" ino=1949 res=1 errno=0
[  115.092854][ T5112] Bluetooth: hci3: command tx timeout
[  115.178254][ T5112] Bluetooth: hci0: command tx timeout
[  115.335629][ T6268] batman_adv: batadv0: Adding interface: batadv_slave_1
[  115.382433][ T6268] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  115.454161][ T6363] loop2: detected capacity change from 0 to 1024
[  115.468808][ T6363] EXT4-fs: Ignoring removed orlov option
[  115.489464][ T6268] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  115.524933][ T6363] EXT4-fs (loop2): Test dummy encryption mode enabled
[  115.541355][ T6363] EXT4-fs (loop2): stripe (7) is not aligned with cluster size (16), stripe is disabled
[  115.561672][ T6233] hsr_slave_0: entered promiscuous mode
[  115.566493][ T6363] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  115.581523][ T6233] hsr_slave_1: entered promiscuous mode
[  115.598382][ T6233] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  115.607530][ T6233] Cannot create hsr debugfs directory
[  115.677962][ T6015] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.733922][ T5112] Bluetooth: hci1: command tx timeout
[  115.779834][ T6268] hsr_slave_0: entered promiscuous mode
[  115.794527][ T6268] hsr_slave_1: entered promiscuous mode
[  115.807378][ T6268] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  115.826877][ T6268] Cannot create hsr debugfs directory
[  116.314369][ T2472] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  116.438094][ T2472] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  116.563627][ T2472] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  116.673944][   T29] audit: type=1804 audit(1717489999.017:14): pid=6394 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2611011247/syzkaller.nk47dC/103/file0" dev="sda1" ino=1949 res=1 errno=0
[  116.676212][ T2472] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  116.770010][ T6327] chnl_net:caif_netlink_parms(): no params data found
[  117.062163][ T2472] bridge_slave_1: left allmulticast mode
[  117.069889][ T2472] bridge_slave_1: left promiscuous mode
[  117.082983][ T2472] bridge0: port 2(bridge_slave_1) entered disabled state
[  117.102428][ T2472] bridge_slave_0: left allmulticast mode
[  117.112368][ T2472] bridge_slave_0: left promiscuous mode
[  117.125872][ T2472] bridge0: port 1(bridge_slave_0) entered disabled state
[  117.146182][ T6400] loop0: detected capacity change from 0 to 1024
[  117.156409][ T2472] bridge_slave_1: left allmulticast mode
[  117.162097][ T2472] bridge_slave_1: left promiscuous mode
[  117.162343][ T6400] EXT4-fs: Ignoring removed orlov option
[  117.168616][ T2472] bridge0: port 2(bridge_slave_1) entered disabled state
[  117.174410][ T6400] EXT4-fs (loop0): Test dummy encryption mode enabled
[  117.183309][ T5112] Bluetooth: hci3: command tx timeout
[  117.198158][ T6400] EXT4-fs (loop0): stripe (7) is not aligned with cluster size (16), stripe is disabled
[  117.210398][ T2472] bridge_slave_0: left allmulticast mode
[  117.216316][ T2472] bridge_slave_0: left promiscuous mode
[  117.224761][ T2472] bridge0: port 1(bridge_slave_0) entered disabled state
[  117.238461][ T6400] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  117.360674][ T5116] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.812927][ T5112] Bluetooth: hci1: command tx timeout
[  117.881161][ T2472] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  117.892286][ T2472] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  117.905478][ T2472] bond0 (unregistering): Released all slaves
[  117.995534][ T2472] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  118.006486][ T2472] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  118.018056][ T2472] bond0 (unregistering): Released all slaves
[  118.029075][ T6327] bridge0: port 1(bridge_slave_0) entered blocking state
[  118.036953][ T6327] bridge0: port 1(bridge_slave_0) entered disabled state
[  118.046266][ T6327] bridge_slave_0: entered allmulticast mode
[  118.053835][ T6327] bridge_slave_0: entered promiscuous mode
[  118.082196][ T6327] bridge0: port 2(bridge_slave_1) entered blocking state
[  118.091591][ T6327] bridge0: port 2(bridge_slave_1) entered disabled state
[  118.100907][ T6327] bridge_slave_1: entered allmulticast mode
[  118.108465][ T6327] bridge_slave_1: entered promiscuous mode
[  118.180454][ T6327] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  118.225844][ T6327] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  118.318283][ T6327] team0: Port device team_slave_0 added
[  118.369925][ T6327] team0: Port device team_slave_1 added
[  118.376282][ T6233] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  118.387508][ T6233] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  118.509363][ T6233] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  118.538355][ T6233] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  119.011311][ T6327] batman_adv: batadv0: Adding interface: batadv_slave_0
[  119.135038][ T6327] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  119.206958][ T6327] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  119.315725][ T6327] batman_adv: batadv0: Adding interface: batadv_slave_1
[  119.323747][ T6327] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  119.350241][ T6327] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  119.412718][   T29] audit: type=1326 audit(1717490001.737:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6419 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1f0a7cf69 code=0x7ffc0000
[  119.449578][   T29] audit: type=1326 audit(1717490001.747:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6419 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1f0a7cf69 code=0x7ffc0000
[  119.476792][   T29] audit: type=1326 audit(1717490001.757:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6419 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=256 compat=0 ip=0x7fb1f0a7cf69 code=0x7ffc0000
[  119.513691][   T29] audit: type=1326 audit(1717490001.757:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6419 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1f0a7cf69 code=0x7ffc0000
[  119.548804][   T29] audit: type=1326 audit(1717490001.757:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6419 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1f0a7cf69 code=0x7ffc0000
[  119.591807][ T6422] loop2: detected capacity change from 0 to 2048
[  119.633933][ T6327] hsr_slave_0: entered promiscuous mode
[  119.640418][ T6327] hsr_slave_1: entered promiscuous mode
[  119.650892][ T6327] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  119.655533][ T6422] Alternate GPT is invalid, using primary GPT.
[  119.668448][ T6327] Cannot create hsr debugfs directory
[  119.673309][ T6422]  loop2: p1 p2 p3
[  119.848773][ T2472] hsr_slave_0: left promiscuous mode
[  119.856754][ T2472] hsr_slave_1: left promiscuous mode
[  119.870341][ T2472] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  119.878698][ T2472] batman_adv: batadv0: Removing interface: batadv_slave_0
[  119.888549][ T2472] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  119.893469][ T5112] Bluetooth: hci1: command tx timeout
[  119.896909][ T2472] batman_adv: batadv0: Removing interface: batadv_slave_1
[  119.920248][ T2472] hsr_slave_0: left promiscuous mode
[  119.933468][ T2472] hsr_slave_1: left promiscuous mode
[  119.939709][ T2472] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  119.947397][ T2472] batman_adv: batadv0: Removing interface: batadv_slave_0
[  119.957778][ T2472] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  119.958483][   T29] audit: type=1804 audit(1717490002.297:20): pid=6426 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2611011247/syzkaller.nk47dC/111/file0" dev="sda1" ino=1952 res=1 errno=0
[  119.965554][ T2472] batman_adv: batadv0: Removing interface: batadv_slave_1
[  119.999518][ T5159] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  120.147220][ T2472] veth1_macvtap: left promiscuous mode
[  120.160087][ T2472] veth0_macvtap: left promiscuous mode
[  120.166103][ T2472] veth1_vlan: left promiscuous mode
[  120.178297][ T2472] veth0_vlan: left promiscuous mode
[  120.187659][ T2472] veth1_macvtap: left promiscuous mode
[  120.196307][ T2472] veth0_macvtap: left promiscuous mode
[  120.201898][ T2472] veth1_vlan: left promiscuous mode
[  120.207451][ T2472] veth0_vlan: left promiscuous mode
[  120.402683][ T5159] usb 3-1: Using ep0 maxpacket: 32
[  120.409784][ T5159] usb 3-1: config 0 has an invalid interface number: 155 but max is 0
[  120.422578][ T5159] usb 3-1: config 0 has no interface number 0
[  120.428728][ T5159] usb 3-1: config 0 interface 155 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  120.445357][ T6429] loop0: detected capacity change from 0 to 1024
[  120.451809][ T5159] usb 3-1: config 0 interface 155 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  120.464965][ T6429] EXT4-fs: Ignoring removed orlov option
[  120.473959][ T6429] EXT4-fs (loop0): Test dummy encryption mode enabled
[  120.482205][ T6429] EXT4-fs (loop0): stripe (7) is not aligned with cluster size (16), stripe is disabled
[  120.482710][ T5159] usb 3-1: New USB device found, idVendor=05d1, idProduct=1002, bcdDevice=c5.61
[  120.510769][ T5159] usb 3-1: New USB device strings: Mfr=225, Product=1, SerialNumber=3
[  120.521329][ T5159] usb 3-1: Product: syz
[  120.525989][ T5159] usb 3-1: Manufacturer: syz
[  120.530703][ T5159] usb 3-1: SerialNumber: syz
[  120.535800][ T6429] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  120.551195][ T5159] usb 3-1: config 0 descriptor??
[  120.559638][ T5159] ftdi_sio 3-1:0.155: FTDI USB Serial Device converter detected
[  120.568333][ T5159] ftdi_sio ttyUSB0: unknown device type: 0xc561
[  120.662452][ T5116] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  120.779043][ T5159] usb 3-1: USB disconnect, device number 3
[  120.794373][ T5159] ftdi_sio 3-1:0.155: device disconnected
[  121.018091][ T2472] team0 (unregistering): Port device team_slave_1 removed
[  121.055348][ T2472] team0 (unregistering): Port device team_slave_0 removed
[  122.050000][ T5112] Bluetooth: hci1: command tx timeout
[  122.659890][ T2472] team0 (unregistering): Port device team_slave_1 removed
[  122.666469][   T29] audit: type=1326 audit(1717490005.007:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6452 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8db3e7cf69 code=0x7ffc0000
[  122.691585][   T29] audit: type=1326 audit(1717490005.007:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6452 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=256 compat=0 ip=0x7f8db3e7cf69 code=0x7ffc0000
[  122.715963][   T29] audit: type=1326 audit(1717490005.007:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6452 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8db3e7cf69 code=0x7ffc0000
[  122.738989][   T29] audit: type=1326 audit(1717490005.007:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6452 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8db3e7cf69 code=0x7ffc0000
[  122.779186][ T2472] team0 (unregistering): Port device team_slave_0 removed
[  123.005868][ T6461] loop0: detected capacity change from 0 to 1024
[  123.013845][ T6461] EXT4-fs: Ignoring removed orlov option
[  123.023632][ T6461] EXT4-fs (loop0): Test dummy encryption mode enabled
[  123.036476][ T6461] EXT4-fs (loop0): stripe (7) is not aligned with cluster size (16), stripe is disabled
[  123.072207][ T6461] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  123.192938][ T5116] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  123.435195][ T6268] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  123.459507][ T6466] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
[  123.527746][ T6268] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  123.548949][ T6268] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  123.610806][ T6233] 8021q: adding VLAN 0 to HW filter on device bond0
[  123.640829][ T6268] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  123.759070][   T29] audit: type=1326 audit(1717490006.097:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6480 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1f0a7cf69 code=0x7ffc0000
[  123.827578][   T29] audit: type=1326 audit(1717490006.097:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6480 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=256 compat=0 ip=0x7fb1f0a7cf69 code=0x7ffc0000
[  123.892990][   T29] audit: type=1326 audit(1717490006.097:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6480 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1f0a7cf69 code=0x7ffc0000
[  123.921129][ T6233] 8021q: adding VLAN 0 to HW filter on device team0
[  123.933091][   T29] audit: type=1800 audit(1717490006.157:28): pid=6482 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1942 res=0 errno=0
[  124.014445][  T784] bridge0: port 1(bridge_slave_0) entered blocking state
[  124.021591][  T784] bridge0: port 1(bridge_slave_0) entered forwarding state
[  124.086138][  T784] bridge0: port 2(bridge_slave_1) entered blocking state
[  124.093386][  T784] bridge0: port 2(bridge_slave_1) entered forwarding state
[  124.144293][ T6492] loop2: detected capacity change from 0 to 1024
[  124.154072][ T6492] EXT4-fs: Ignoring removed orlov option
[  124.170713][ T6492] EXT4-fs (loop2): Test dummy encryption mode enabled
[  124.189340][ T6492] EXT4-fs (loop2): stripe (7) is not aligned with cluster size (16), stripe is disabled
[  124.240852][ T6492] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  124.376732][ T6268] 8021q: adding VLAN 0 to HW filter on device bond0
[  124.454312][ T6015] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.498293][ T6268] 8021q: adding VLAN 0 to HW filter on device team0
[  124.554508][ T5159] bridge0: port 1(bridge_slave_0) entered blocking state
[  124.561723][ T5159] bridge0: port 1(bridge_slave_0) entered forwarding state
[  124.621901][ T6233] 8021q: adding VLAN 0 to HW filter on device batadv0
[  124.652246][  T784] bridge0: port 2(bridge_slave_1) entered blocking state
[  124.658124][ T6500] loop2: detected capacity change from 0 to 512
[  124.659550][  T784] bridge0: port 2(bridge_slave_1) entered forwarding state
[  124.680773][ T6500] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2856: Unable to expand inode 17. Delete some EAs or run e2fsck.
[  124.701626][ T6500] EXT4-fs (loop2): 1 truncate cleaned up
[  124.708999][ T6500] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  124.711606][ T6327] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  124.741927][ T6327] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  124.743437][ T6500] EXT4-fs error (device loop2): ext4_find_dest_de:2111: inode #2: block 13: comm syz-executor.2: bad entry in directory: rec_len % 4 != 0 - offset=92, inode=0, rec_len=127, size=1024 fake=0
[  124.832398][ T6327] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  124.860066][ T6327] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  125.040789][ T6233] veth0_vlan: entered promiscuous mode
[  125.114626][ T6233] veth1_vlan: entered promiscuous mode
[  125.275411][ T6233] veth0_macvtap: entered promiscuous mode
[  125.320709][ T6233] veth1_macvtap: entered promiscuous mode
[  125.366574][ T6327] 8021q: adding VLAN 0 to HW filter on device bond0
[  125.432931][ T6233] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  125.449424][ T6233] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  125.459806][ T6233] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  125.477955][ T6233] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  125.490108][ T6233] batman_adv: batadv0: Interface activated: batadv_slave_0
[  125.537521][ T6327] 8021q: adding VLAN 0 to HW filter on device team0
[  125.585259][   T25] bridge0: port 1(bridge_slave_0) entered blocking state
[  125.592454][   T25] bridge0: port 1(bridge_slave_0) entered forwarding state
[  125.621941][   T25] bridge0: port 2(bridge_slave_1) entered blocking state
[  125.629157][   T25] bridge0: port 2(bridge_slave_1) entered forwarding state
[  125.648627][ T6520] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  125.668048][ T6233] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  125.688840][ T6233] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  125.716551][ T6233] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  125.727326][ T6521] loop0: detected capacity change from 0 to 128
[  125.738576][ T6233] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  125.754921][ T6015] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  125.765842][ T6233] batman_adv: batadv0: Interface activated: batadv_slave_1
[  125.799827][ T6233] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  125.810758][ T6233] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  125.826911][ T6233] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  125.835781][ T6233] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  125.922732][   T29] audit: type=1326 audit(1717490008.257:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6523 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1f0a7cf69 code=0x7ffc0000
[  125.970948][ T6268] 8021q: adding VLAN 0 to HW filter on device batadv0
[  125.998186][   T29] audit: type=1326 audit(1717490008.257:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6523 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=256 compat=0 ip=0x7fb1f0a7cf69 code=0x7ffc0000
[  126.042421][ T2472] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  126.056823][ T2472] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  126.137694][ T2472] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  126.157019][ T2472] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  126.182426][ T6268] veth0_vlan: entered promiscuous mode
[  126.244883][ T6268] veth1_vlan: entered promiscuous mode
[  126.301855][ T6268] veth0_macvtap: entered promiscuous mode
[  126.335377][ T6268] veth1_macvtap: entered promiscuous mode
[  126.376084][ T6268] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  126.404011][ T6268] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.415777][ T6268] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  126.427915][ T6268] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.449680][ T6268] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  126.470341][ T6268] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.489513][ T6268] batman_adv: batadv0: Interface activated: batadv_slave_0
[  126.544679][ T6327] 8021q: adding VLAN 0 to HW filter on device batadv0
[  126.550752][ T6540] loop1: detected capacity change from 0 to 1024
[  126.558366][ T6268] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  126.576708][ T6268] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.579035][ T6540] EXT4-fs: Ignoring removed orlov option
[  126.586791][ T6268] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  126.606419][ T6540] EXT4-fs (loop1): Test dummy encryption mode enabled
[  126.609904][ T6268] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.626888][ T6540] EXT4-fs (loop1): stripe (7) is not aligned with cluster size (16), stripe is disabled
[  126.635847][ T6268] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  126.652888][ T6268] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  126.665656][ T6268] batman_adv: batadv0: Interface activated: batadv_slave_1
[  126.669498][ T6540] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  126.724616][ T6268] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  126.736571][ T6268] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  126.757575][ T6268] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  126.767006][ T6268] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  126.904475][ T6233] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.960658][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  126.970394][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  127.047606][   T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.076676][   T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  127.114606][ T6552] loop1: detected capacity change from 0 to 2048
[  127.148840][ T6327] veth0_vlan: entered promiscuous mode
[  127.169393][ T6552] Alternate GPT is invalid, using primary GPT.
[  127.176278][ T6552]  loop1: p1 p2 p3
[  127.220487][ T6327] veth1_vlan: entered promiscuous mode
[  127.291669][ T6327] veth0_macvtap: entered promiscuous mode
[  127.328025][ T6327] veth1_macvtap: entered promiscuous mode
[  127.387309][ T6327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  127.430887][ T6327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  127.450343][ T6327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  127.469791][ T6327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  127.491616][ T6327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  127.502940][ T5161] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  127.522685][ T6327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  127.542728][ T6327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  127.555028][ T6572] loop2: detected capacity change from 0 to 1024
[  127.567252][ T6572] EXT4-fs: Ignoring removed orlov option
[  127.587423][ T6572] EXT4-fs (loop2): Test dummy encryption mode enabled
[  127.599750][ T6572] EXT4-fs (loop2): stripe (7) is not aligned with cluster size (16), stripe is disabled
[  127.635662][ T6327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  127.654956][ T6327] batman_adv: batadv0: Interface activated: batadv_slave_0
[  127.692425][ T6327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  127.708787][ T6572] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  127.745635][ T6327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  127.757026][ T5161] usb 2-1: Using ep0 maxpacket: 32
[  127.762723][ T6327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  127.768263][ T5161] usb 2-1: config 0 has an invalid interface number: 155 but max is 0
[  127.782005][ T5161] usb 2-1: config 0 has no interface number 0
[  127.782278][ T6327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  127.789310][ T5161] usb 2-1: config 0 interface 155 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  127.802148][ T6327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  127.813150][ T5161] usb 2-1: config 0 interface 155 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  127.820370][ T6327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  127.847489][ T6327] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  128.167582][ T6327] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  128.418961][ T6327] batman_adv: batadv0: Interface activated: batadv_slave_1
[  128.560131][ T6015] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.582704][ T5161] usb 2-1: New USB device found, idVendor=05d1, idProduct=1002, bcdDevice=c5.61
[  128.593552][ T5161] usb 2-1: New USB device strings: Mfr=225, Product=1, SerialNumber=3
[  128.601773][   T29] kauditd_printk_skb: 7 callbacks suppressed
[  128.601789][   T29] audit: type=1804 audit(1717490010.937:38): pid=6584 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/root/syzkaller-testdir2611011247/syzkaller.nk47dC/133/file0" dev="sda1" ino=1949 res=1 errno=0
[  128.611250][ T6327] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  128.634985][ T5161] usb 2-1: Product: syz
[  128.656149][ T6327] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  128.669861][ T6327] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  128.680171][ T6327] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  128.833715][ T5161] usb 2-1: Manufacturer: syz
[  128.843133][ T5161] usb 2-1: SerialNumber: syz
[  128.855150][ T5161] usb 2-1: config 0 descriptor??
[  128.870486][ T5161] ftdi_sio 2-1:0.155: FTDI USB Serial Device converter detected
[  128.907001][ T5161] ftdi_sio ttyUSB0: unknown device type: 0xc561
[  129.012644][ T6593] loop2: detected capacity change from 0 to 512
[  129.021382][ T6593] EXT4-fs: Ignoring removed bh option
[  129.059838][ T6593] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  129.091866][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  129.114652][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  129.136486][ T6593] EXT4-fs (loop2): 1 truncate cleaned up
[  129.147431][   T29] audit: type=1326 audit(1717490011.487:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6597 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8db3e7cf69 code=0x7ffc0000
[  129.176290][ T6593] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  129.210465][   T29] audit: type=1326 audit(1717490011.487:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6597 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8db3e7cf69 code=0x7ffc0000
[  129.233899][   T29] audit: type=1326 audit(1717490011.487:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6597 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=256 compat=0 ip=0x7f8db3e7cf69 code=0x7ffc0000
[  129.257477][   T29] audit: type=1326 audit(1717490011.487:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6597 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8db3e7cf69 code=0x7ffc0000
[  129.269489][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  129.284269][ T5158] usb 2-1: USB disconnect, device number 3
[  129.300322][ T5158] ftdi_sio 2-1:0.155: device disconnected
[  129.313391][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  129.394550][ T6593] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.2'.
[  129.511493][ T6613] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'.
[  129.531914][ T6614] loop0: detected capacity change from 0 to 256
[  129.562376][ T6614] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d)
[  129.565029][ T6015] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.794118][   T29] audit: type=1804 audit(1717490012.127:43): pid=6621 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir3443445641/syzkaller.GdXLUo/2/file0" dev="sda1" ino=1968 res=1 errno=0
[  129.852492][ T6622] loop2: detected capacity change from 0 to 1024
[  130.575380][ T6622] EXT4-fs: Ignoring removed orlov option
[  130.684672][ T6622] EXT4-fs (loop2): Test dummy encryption mode enabled
[  130.728759][ T6622] EXT4-fs (loop2): stripe (7) is not aligned with cluster size (16), stripe is disabled
[  130.798525][ T6622] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.302746][ T6015] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.384616][ T6667] loop0: detected capacity change from 0 to 512
[  132.391951][ T6666] loop1: detected capacity change from 0 to 2048
[  132.392162][ T6667] ext4: Unknown parameter 'noacl'
[  132.445869][ T6666] Alternate GPT is invalid, using primary GPT.
[  132.463432][ T6666]  loop1: p1 p2 p3
[  132.617681][ T6671] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.4'.
[  132.785661][ T5159] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  132.998113][ T5159] usb 2-1: Using ep0 maxpacket: 32
[  133.053222][ T5159] usb 2-1: config 0 has an invalid interface number: 155 but max is 0
[  133.061444][ T5159] usb 2-1: config 0 has no interface number 0
[  133.080588][ T5159] usb 2-1: config 0 interface 155 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  133.098851][ T5159] usb 2-1: config 0 interface 155 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[  133.122431][ T5159] usb 2-1: New USB device found, idVendor=05d1, idProduct=1002, bcdDevice=c5.61
[  133.140320][ T5159] usb 2-1: New USB device strings: Mfr=225, Product=1, SerialNumber=3
[  133.150726][ T5159] usb 2-1: Product: syz
[  133.163895][ T5159] usb 2-1: Manufacturer: syz
[  133.168544][ T5159] usb 2-1: SerialNumber: syz
[  133.194742][ T5159] usb 2-1: config 0 descriptor??
[  133.204103][ T5159] ftdi_sio 2-1:0.155: FTDI USB Serial Device converter detected
[  133.221985][ T5159] ftdi_sio ttyUSB0: unknown device type: 0xc561
[  133.268783][ T6659] loop2: detected capacity change from 0 to 40427
[  133.339217][ T1247] ieee802154 phy0 wpan0: encryption failed: -22
[  133.345709][ T1247] ieee802154 phy1 wpan1: encryption failed: -22
[  133.423763][ T5161] usb 2-1: USB disconnect, device number 4
[  133.431145][ T5161] ftdi_sio 2-1:0.155: device disconnected
[  134.021505][ T6700] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'.
[  135.110895][ T6734] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.1'.
[  135.204638][ T6730] syzkaller0: entered promiscuous mode
[  135.222634][ T6730] syzkaller0: entered allmulticast mode
[  135.748072][ T6727] loop3: detected capacity change from 0 to 40427
[  137.314425][ T6768] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.0'.
[  137.864875][ T6790] loop4: detected capacity change from 0 to 512
[  139.255986][ T6776] loop0: detected capacity change from 0 to 40427
[  139.265666][ T6820] loop3: detected capacity change from 0 to 128
[  139.318613][ T6776] F2FS-fs (loop0): Found nat_bits in checkpoint
[  140.349358][ T6776] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  140.448002][ T6776] F2FS-fs (loop0): Inconsistent error blkaddr:5633, sit bitmap:0
[  140.492797][ T6776] CPU: 0 PID: 6776 Comm: syz-executor.0 Tainted: G        W          6.10.0-rc2-next-20240604-syzkaller #0
[  140.504248][ T6776] Tainted: [W]=WARN
[  140.508081][ T6776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  140.518348][ T6776] Call Trace:
[  140.521662][ T6776]  <TASK>
[  140.524721][ T6776]  dump_stack_lvl+0x241/0x360
[  140.529488][ T6776]  ? __pfx_dump_stack_lvl+0x10/0x10
[  140.534733][ T6776]  ? __pfx_f2fs_get_dnode_of_data+0x10/0x10
[  140.540679][ T6776]  ? validate_chain+0x11e/0x5920
[  140.545696][ T6776]  __f2fs_is_valid_blkaddr+0xd4d/0x1460
[  140.551287][ T6776]  f2fs_map_blocks+0xf29/0x4970
[  140.556239][ T6776]  ? xas_load+0x59b/0x5c0
[  140.560612][ T6776]  ? __pfx_f2fs_map_blocks+0x10/0x10
[  140.565951][ T6776]  ? xa_load+0x2dd/0x350
[  140.570245][ T6776]  ? __pfx_xa_load+0x10/0x10
[  140.574890][ T6776]  ? __pfx_cgroup_rstat_updated+0x10/0x10
[  140.580650][ T6776]  ? folio_index+0xab/0x350
[  140.585200][ T6776]  f2fs_mpage_readpages+0xcff/0x21b0
[  140.590560][ T6776]  ? __pfx_f2fs_mpage_readpages+0x10/0x10
[  140.596366][ T6776]  ? f2fs_readahead+0x184/0x340
[  140.601227][ T6776]  read_pages+0x17e/0x840
[  140.605577][ T6776]  ? __pfx_lru_add_fn+0x10/0x10
[  140.610462][ T6776]  ? __pfx_read_pages+0x10/0x10
[  140.615320][ T6776]  ? filemap_add_folio+0x26d/0x650
[  140.620498][ T6776]  ? __pfx_filemap_add_folio+0x10/0x10
[  140.625965][ T6776]  ? page_cache_ra_order+0x2e0/0xcb0
[  140.631269][ T6776]  page_cache_ra_unbounded+0x6ce/0x7f0
[  140.636744][ T6776]  f2fs_readdir+0x5bc/0xbf0
[  140.641245][ T6776]  ? __pfx___might_resched+0x10/0x10
[  140.646547][ T6776]  ? __pfx_f2fs_readdir+0x10/0x10
[  140.651570][ T6776]  ? trace_contention_end+0x3c/0x120
[  140.656862][ T6776]  ? iterate_dir+0x55b/0x820
[  140.661466][ T6776]  ? __pfx_lock_release+0x10/0x10
[  140.666509][ T6776]  ? __fdget_pos+0x24e/0x310
[  140.671103][ T6776]  ? common_file_perm+0x1a6/0x210
[  140.676150][ T6776]  ? bpf_lsm_file_permission+0x9/0x10
[  140.681557][ T6776]  iterate_dir+0x65e/0x820
[  140.686001][ T6776]  __se_sys_getdents+0x1ef/0x4d0
[  140.690964][ T6776]  ? __pfx___se_sys_getdents+0x10/0x10
[  140.696543][ T6776]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  140.702556][ T6776]  ? __pfx_filldir+0x10/0x10
[  140.707438][ T6776]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  140.713775][ T6776]  ? do_syscall_64+0x100/0x230
[  140.718582][ T6776]  ? do_syscall_64+0xb6/0x230
[  140.723274][ T6776]  do_syscall_64+0xf3/0x230
[  140.727777][ T6776]  ? clear_bhb_loop+0x35/0x90
[  140.732448][ T6776]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  140.738348][ T6776] RIP: 0033:0x7f8db3e7cf69
[  140.742784][ T6776] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  140.762389][ T6776] RSP: 002b:00007f8db4b2e0c8 EFLAGS: 00000246 ORIG_RAX: 000000000000004e
[  140.770817][ T6776] RAX: ffffffffffffffda RBX: 00007f8db3fb3fa0 RCX: 00007f8db3e7cf69
[  140.778795][ T6776] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[  140.786761][ T6776] RBP: 00007f8db3eda706 R08: 0000000000000000 R09: 0000000000000000
[  140.794763][ T6776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  140.802844][ T6776] R13: 000000000000000b R14: 00007f8db3fb3fa0 R15: 00007fffafe9ea48
[  140.811021][ T6776]  </TASK>
[  140.933723][ T6776] F2FS-fs (loop0): Inconsistent error blkaddr:5633, sit bitmap:0
[  140.946408][ T6776] CPU: 1 PID: 6776 Comm: syz-executor.0 Tainted: G        W          6.10.0-rc2-next-20240604-syzkaller #0
[  140.957836][ T6776] Tainted: [W]=WARN
[  140.961681][ T6776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  140.971752][ T6776] Call Trace:
[  140.975041][ T6776]  <TASK>
[  140.977995][ T6776]  dump_stack_lvl+0x241/0x360
[  140.982699][ T6776]  ? __pfx_dump_stack_lvl+0x10/0x10
[  140.987916][ T6776]  ? __pfx_f2fs_get_dnode_of_data+0x10/0x10
[  140.993840][ T6776]  ? __pfx_f2fs_lookup_read_extent_cache_block+0x10/0x10
[  141.000888][ T6776]  __f2fs_is_valid_blkaddr+0xd4d/0x1460
[  141.002491][ T6857] loop4: detected capacity change from 0 to 1024
[  141.006440][ T6776]  f2fs_get_read_data_page+0x410/0x750
[  141.018236][ T6776]  ? __pfx_f2fs_get_read_data_page+0x10/0x10
[  141.024240][ T6776]  ? __filemap_get_folio+0x71e/0xbb0
[  141.029538][ T6776]  ? page_cache_ra_unbounded+0x6d8/0x7f0
[  141.035192][ T6776]  f2fs_find_data_page+0x92/0x370
[  141.040247][ T6776]  f2fs_readdir+0x5d1/0xbf0
[  141.044770][ T6776]  ? __pfx___might_resched+0x10/0x10
[  141.050078][ T6776]  ? __pfx_f2fs_readdir+0x10/0x10
[  141.055111][ T6776]  ? trace_contention_end+0x3c/0x120
[  141.060484][ T6776]  ? iterate_dir+0x55b/0x820
[  141.065073][ T6776]  ? __pfx_lock_release+0x10/0x10
[  141.070103][ T6776]  ? __fdget_pos+0x24e/0x310
[  141.074693][ T6776]  ? common_file_perm+0x1a6/0x210
[  141.079738][ T6776]  ? bpf_lsm_file_permission+0x9/0x10
[  141.085202][ T6776]  iterate_dir+0x65e/0x820
[  141.089623][ T6776]  __se_sys_getdents+0x1ef/0x4d0
[  141.094582][ T6776]  ? __pfx___se_sys_getdents+0x10/0x10
[  141.100038][ T6776]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  141.106010][ T6776]  ? __pfx_filldir+0x10/0x10
[  141.110600][ T6776]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  141.116925][ T6776]  ? do_syscall_64+0x100/0x230
[  141.121688][ T6776]  ? do_syscall_64+0xb6/0x230
[  141.126363][ T6776]  do_syscall_64+0xf3/0x230
[  141.130863][ T6776]  ? clear_bhb_loop+0x35/0x90
[  141.135535][ T6776]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  141.141513][ T6776] RIP: 0033:0x7f8db3e7cf69
[  141.145931][ T6776] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  141.165541][ T6776] RSP: 002b:00007f8db4b2e0c8 EFLAGS: 00000246 ORIG_RAX: 000000000000004e
[  141.173970][ T6776] RAX: ffffffffffffffda RBX: 00007f8db3fb3fa0 RCX: 00007f8db3e7cf69
[  141.181942][ T6776] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005
[  141.189917][ T6776] RBP: 00007f8db3eda706 R08: 0000000000000000 R09: 0000000000000000
[  141.197885][ T6776] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  141.205851][ T6776] R13: 000000000000000b R14: 00007f8db3fb3fa0 R15: 00007fffafe9ea48
[  141.213828][ T6776]  </TASK>
[  141.263155][ T6857] EXT4-fs: Ignoring removed orlov option
[  141.284354][ T6859] loop1: detected capacity change from 0 to 2048
[  141.299800][ T6859] ext4: Bad value for 'auto_da_alloc'
[  141.301148][ T6857] EXT4-fs (loop4): Test dummy encryption mode enabled
[  141.322694][ T6857] EXT4-fs (loop4): stripe (7) is not aligned with cluster size (16), stripe is disabled
[  141.369828][ T6857] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  141.371667][ T5116] syz-executor.0: attempt to access beyond end of device
[  141.371667][ T5116] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  141.427729][ T5116] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  141.512390][ T6327] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2234: inode #15: comm syz-executor.4: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  141.532760][   T29] audit: type=1326 audit(1717490023.867:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6864 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1f0a7cf69 code=0x7ffc0000
[  141.552598][ T6327] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2234: inode #15: comm syz-executor.4: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  141.609107][   T29] audit: type=1326 audit(1717490023.867:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6864 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1f0a7cf69 code=0x7ffc0000
[  141.675409][   T29] audit: type=1326 audit(1717490023.867:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6864 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb1f0a7cf69 code=0x7ffc0000
[  141.723923][   T29] audit: type=1326 audit(1717490023.867:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6864 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1f0a7cf69 code=0x7ffc0000
[  141.762231][   T29] audit: type=1326 audit(1717490023.867:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6864 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1f0a7cf69 code=0x7ffc0000
[  141.817484][   T29] audit: type=1326 audit(1717490023.867:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6864 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb1f0a7cf69 code=0x7ffc0000
[  141.851261][   T29] audit: type=1326 audit(1717490023.877:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6864 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1f0a7cf69 code=0x7ffc0000
[  141.882594][   T29] audit: type=1326 audit(1717490023.877:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6864 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb1f0a7a6e7 code=0x7ffc0000
[  141.911231][   T29] audit: type=1326 audit(1717490023.877:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6864 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fb1f0a403c9 code=0x7ffc0000
[  141.936953][   T29] audit: type=1326 audit(1717490023.877:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6864 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fb1f0a7a6e7 code=0x7ffc0000
[  142.022367][ T6327] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.142317][  T136] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.383104][  T136] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.588217][  T136] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.724462][  T136] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.778230][ T6901] loop0: detected capacity change from 0 to 1024
[  142.799523][ T6901] EXT4-fs: Ignoring removed orlov option
[  142.837087][ T6901] EXT4-fs (loop0): Test dummy encryption mode enabled
[  142.860297][ T6899] loop2: detected capacity change from 0 to 8192
[  142.874921][ T6901] EXT4-fs (loop0): stripe (7) is not aligned with cluster size (16), stripe is disabled
[  142.889076][ T6903] loop1: detected capacity change from 0 to 512
[  142.945028][ T6901] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  142.990068][ T6903] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2234: inode #15: comm syz-executor.1: corrupted in-inode xattr: invalid ea_ino
[  143.011264][ T6903] EXT4-fs error (device loop1): ext4_orphan_get:1399: comm syz-executor.1: couldn't read orphan inode 15 (err -117)
[  143.011549][  T136] bridge_slave_1: left allmulticast mode
[  143.032703][  T136] bridge_slave_1: left promiscuous mode
[  143.033736][ T6903] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  143.057803][  T136] bridge0: port 2(bridge_slave_1) entered disabled state
[  143.090274][  T136] bridge_slave_0: left allmulticast mode
[  143.101947][  T136] bridge_slave_0: left promiscuous mode
[  143.121942][  T136] bridge0: port 1(bridge_slave_0) entered disabled state
[  143.211821][   T53] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  143.221588][   T53] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  143.231033][   T53] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  143.249802][   T53] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  143.264455][   T53] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  143.272047][   T53] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  143.306269][ T5116] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2234: inode #15: comm syz-executor.0: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  143.327651][ T5116] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2234: inode #15: comm syz-executor.0: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  143.338297][ T6233] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.597017][ T6914] loop2: detected capacity change from 0 to 512
[  143.651767][ T6917] loop1: detected capacity change from 0 to 128
[  143.667097][ T6914] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a842e01c, mo2=0002]
[  143.693024][ T6914] System zones: 1-12
[  143.708191][ T6914] EXT4-fs (loop2): orphan cleanup on readonly fs
[  143.720985][ T6914] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz-executor.2: bg 0: block 328: padding at end of block bitmap is not set
[  143.754297][ T6885] loop3: detected capacity change from 0 to 40427
[  143.760957][ T6914] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6551: Corrupt filesystem
[  143.786084][ T6914] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz-executor.2: invalid indirect mapped block 65280 (level 0)
[  143.805347][ T6914] EXT4-fs error (device loop2): ext4_clear_blocks:883: inode #13: comm syz-executor.2: attempt to clear invalid blocks 33619980 len 1
[  143.812671][ T6885] F2FS-fs (loop3): Found nat_bits in checkpoint
[  143.855161][ T6914] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz-executor.2: invalid indirect mapped block 1819239214 (level 0)
[  143.895766][ T6914] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz-executor.2: invalid indirect mapped block 1819239214 (level 1)
[  143.901692][ T6924] loop1: detected capacity change from 0 to 128
[  143.920022][ T6885] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  143.930475][ T6914] EXT4-fs (loop2): 1 orphan inode deleted
[  143.937751][ T6914] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  144.012232][ T6926] F2FS-fs (loop3): Inconsistent error blkaddr:5633, sit bitmap:0
[  144.035645][ T6926] CPU: 0 PID: 6926 Comm: syz-executor.3 Tainted: G        W          6.10.0-rc2-next-20240604-syzkaller #0
[  144.047081][ T6926] Tainted: [W]=WARN
[  144.050912][ T6926] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  144.060983][ T6926] Call Trace:
[  144.064296][ T6926]  <TASK>
[  144.067256][ T6926]  dump_stack_lvl+0x241/0x360
[  144.071966][ T6926]  ? __pfx_dump_stack_lvl+0x10/0x10
[  144.077191][ T6926]  ? __pfx_f2fs_get_dnode_of_data+0x10/0x10
[  144.083124][ T6926]  ? __pfx_f2fs_lookup_read_extent_cache_block+0x10/0x10
[  144.090176][ T6926]  __f2fs_is_valid_blkaddr+0xd4d/0x1460
[  144.095752][ T6926]  f2fs_get_read_data_page+0x410/0x750
[  144.101244][ T6926]  ? __pfx_f2fs_get_read_data_page+0x10/0x10
[  144.107262][ T6926]  ? __filemap_get_folio+0x926/0xbb0
[  144.112582][ T6926]  f2fs_find_data_page+0x92/0x370
[  144.117636][ T6926]  f2fs_readdir+0x5d1/0xbf0
[  144.122161][ T6926]  ? __pfx___might_resched+0x10/0x10
[  144.127494][ T6926]  ? __pfx_f2fs_readdir+0x10/0x10
[  144.132535][ T6926]  ? trace_contention_end+0x3c/0x120
[  144.137924][ T6926]  ? __mutex_lock+0x2ef/0xd70
[  144.142603][ T6926]  ? iterate_dir+0x55b/0x820
[  144.147195][ T6926]  ? __pfx_lock_release+0x10/0x10
[  144.152232][ T6926]  ? __fdget_pos+0x24e/0x310
[  144.156849][ T6926]  ? common_file_perm+0x1a6/0x210
[  144.161887][ T6926]  ? bpf_lsm_file_permission+0x9/0x10
[  144.167290][ T6926]  iterate_dir+0x65e/0x820
[  144.171745][ T6926]  __se_sys_getdents+0x1ef/0x4d0
[  144.176696][ T6926]  ? __pfx___se_sys_getdents+0x10/0x10
[  144.182157][ T6926]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  144.188135][ T6926]  ? __pfx_filldir+0x10/0x10
[  144.192733][ T6926]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  144.199062][ T6926]  ? do_syscall_64+0x100/0x230
[  144.203829][ T6926]  ? do_syscall_64+0xb6/0x230
[  144.208506][ T6926]  do_syscall_64+0xf3/0x230
[  144.213014][ T6926]  ? clear_bhb_loop+0x35/0x90
[  144.217696][ T6926]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  144.223697][ T6926] RIP: 0033:0x7f5bfba7cf69
[  144.228105][ T6926] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  144.247707][ T6926] RSP: 002b:00007f5bfb5de0c8 EFLAGS: 00000246 ORIG_RAX: 000000000000004e
[  144.256123][ T6926] RAX: ffffffffffffffda RBX: 00007f5bfbbb4070 RCX: 00007f5bfba7cf69
[  144.264091][ T6926] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  144.272054][ T6926] RBP: 00007f5bfbada706 R08: 0000000000000000 R09: 0000000000000000
[  144.280020][ T6926] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  144.287984][ T6926] R13: 000000000000006e R14: 00007f5bfbbb4070 R15: 00007ffe8552e8f8
[  144.295963][ T6926]  </TASK>
[  144.855712][ T6268] syz-executor.3: attempt to access beyond end of device
[  144.855712][ T6268] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  144.908436][ T6268] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  144.935765][ T6015] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  144.946518][  T136] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  144.990046][  T136] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  145.035692][  T136] bond0 (unregistering): Released all slaves
[  145.336975][   T53] Bluetooth: hci1: command tx timeout
[  145.352440][ T6942] loop2: detected capacity change from 0 to 1024
[  145.365286][ T6942] EXT4-fs: Ignoring removed orlov option
[  145.375223][ T6942] EXT4-fs (loop2): Test dummy encryption mode enabled
[  145.390075][ T6942] EXT4-fs (loop2): stripe (7) is not aligned with cluster size (16), stripe is disabled
[  145.412757][ T6942] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.436407][ T5116] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.612063][ T6015] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2234: inode #15: comm syz-executor.2: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  145.658394][ T6015] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2234: inode #15: comm syz-executor.2: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  145.769020][  T136] hsr_slave_0: left promiscuous mode
[  145.813256][  T136] hsr_slave_1: left promiscuous mode
[  145.845469][  T136] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  145.870437][  T136] batman_adv: batadv0: Removing interface: batadv_slave_0
[  145.883533][  T136] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  145.892069][  T136] batman_adv: batadv0: Removing interface: batadv_slave_1
[  145.949409][  T136] veth1_macvtap: left promiscuous mode
[  145.960756][  T136] veth0_macvtap: left promiscuous mode
[  145.972120][  T136] veth1_vlan: left promiscuous mode
[  145.983199][  T136] veth0_vlan: left promiscuous mode
[  146.072766][ T5158] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  146.280197][ T5158] usb 4-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  146.304275][ T5112] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  146.305851][ T5158] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  146.337170][ T5112] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  146.337260][ T5158] usb 4-1: Product: syz
[  146.350134][ T5112] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  146.366842][ T5158] usb 4-1: Manufacturer: syz
[  146.371658][ T5112] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  146.376012][ T5158] usb 4-1: SerialNumber: syz
[  146.388714][ T5112] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  146.397392][ T5112] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  146.409984][ T5158] usb 4-1: config 0 descriptor??
[  146.423259][ T5158] ch341 4-1:0.0: ch341-uart converter detected
[  146.571215][ T6960] loop1: detected capacity change from 0 to 40427
[  146.598734][ T6960] F2FS-fs (loop1): Found nat_bits in checkpoint
[  146.722301][ T6960] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  146.748726][ T6964] f2fs_ckpt-7:1: attempt to access beyond end of device
[  146.748726][ T6964] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  146.784776][ T6964] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  146.805351][  T136] team0 (unregistering): Port device team_slave_1 removed
[  146.867866][  T136] team0 (unregistering): Port device team_slave_0 removed
[  147.413199][   T53] Bluetooth: hci1: command tx timeout
[  147.556331][ T6907] chnl_net:caif_netlink_parms(): no params data found
[  147.641248][ T5158] usb 4-1: ch341-uart converter now attached to ttyUSB0
[  147.668049][ T6015] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.890839][ T5158] usb 4-1: USB disconnect, device number 3
[  147.904243][ T6907] bridge0: port 1(bridge_slave_0) entered blocking state
[  147.927546][ T5158] ch341-uart ttyUSB0: ch341-uart converter now disconnected from ttyUSB0
[  147.936461][ T6907] bridge0: port 1(bridge_slave_0) entered disabled state
[  147.951668][ T6907] bridge_slave_0: entered allmulticast mode
[  147.958535][ T5158] ch341 4-1:0.0: device disconnected
[  147.976296][ T6907] bridge_slave_0: entered promiscuous mode
[  147.985499][ T6907] bridge0: port 2(bridge_slave_1) entered blocking state
[  147.993029][ T6907] bridge0: port 2(bridge_slave_1) entered disabled state
[  148.000373][ T6907] bridge_slave_1: entered allmulticast mode
[  148.007966][ T6907] bridge_slave_1: entered promiscuous mode
[  148.096337][ T6907] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  148.136116][ T6907] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  148.200104][ T5112] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  148.209985][ T5112] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  148.218331][ T5112] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  148.234320][ T5112] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  148.244924][ T5112] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  148.258381][ T5112] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  148.290939][ T6907] team0: Port device team_slave_0 added
[  148.314772][ T6907] team0: Port device team_slave_1 added
[  148.320780][ T6962] chnl_net:caif_netlink_parms(): no params data found
[  148.389204][ T6907] batman_adv: batadv0: Adding interface: batadv_slave_0
[  148.396535][ T6907] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  148.424930][ T6907] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  148.438848][ T6907] batman_adv: batadv0: Adding interface: batadv_slave_1
[  148.448537][ T6907] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  148.482800][ T5112] Bluetooth: hci2: command tx timeout
[  148.496728][ T6907] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  148.689743][  T136] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  148.809939][ T6907] hsr_slave_0: entered promiscuous mode
[  148.835532][ T6907] hsr_slave_1: entered promiscuous mode
[  148.854013][ T6907] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  148.882162][ T6907] Cannot create hsr debugfs directory
[  148.957214][  T136] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.252363][ T7005] overlayfs: conflicting lowerdir path
[  149.493524][ T5112] Bluetooth: hci1: command tx timeout
[  149.871082][ T7000] loop3: detected capacity change from 0 to 40427
[  149.886438][  T136] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.937347][ T7000] F2FS-fs (loop3): Found nat_bits in checkpoint
[  150.088083][ T7000] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  150.099048][  T136] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  150.131578][ T6962] bridge0: port 1(bridge_slave_0) entered blocking state
[  150.145231][ T7009] f2fs_ckpt-7:3: attempt to access beyond end of device
[  150.145231][ T7009] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  150.162994][ T6962] bridge0: port 1(bridge_slave_0) entered disabled state
[  150.170257][ T6962] bridge_slave_0: entered allmulticast mode
[  150.172674][ T7009] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  150.191073][ T6962] bridge_slave_0: entered promiscuous mode
[  150.236767][ T6962] bridge0: port 2(bridge_slave_1) entered blocking state
[  150.250698][ T6962] bridge0: port 2(bridge_slave_1) entered disabled state
[  150.270284][ T6962] bridge_slave_1: entered allmulticast mode
[  150.280942][ T6962] bridge_slave_1: entered promiscuous mode
[  150.293125][ T5112] Bluetooth: hci4: command tx timeout
[  150.534889][ T5112] Bluetooth: hci2: command tx timeout
[  150.681180][ T6962] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  150.737797][ T6962] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  150.874207][  T136] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.058882][ T6962] team0: Port device team_slave_0 added
[  151.069592][ T6962] team0: Port device team_slave_1 added
[  151.263241][   T29] kauditd_printk_skb: 314 callbacks suppressed
[  151.263281][   T29] audit: type=1326 audit(1717490033.597:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7023 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5bfba7cf69 code=0x0
[  151.558811][  T136] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.576271][ T5112] Bluetooth: hci1: command tx timeout
[  151.901408][  T136] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  151.943607][ T6962] batman_adv: batadv0: Adding interface: batadv_slave_0
[  151.951842][ T6962] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  151.996046][ T6962] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  152.045411][  T136] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  152.074696][ T6987] chnl_net:caif_netlink_parms(): no params data found
[  152.089121][ T6962] batman_adv: batadv0: Adding interface: batadv_slave_1
[  152.097756][ T6962] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  152.128016][ T6962] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  152.150191][ T5159] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  152.197072][ T6962] hsr_slave_0: entered promiscuous mode
[  152.208736][ T6962] hsr_slave_1: entered promiscuous mode
[  152.216075][ T6962] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  152.224964][ T6962] Cannot create hsr debugfs directory
[  152.315664][  T136] bridge_slave_1: left allmulticast mode
[  152.321517][  T136] bridge_slave_1: left promiscuous mode
[  152.330061][  T136] bridge0: port 2(bridge_slave_1) entered disabled state
[  152.341169][  T136] bridge_slave_0: left allmulticast mode
[  152.348905][  T136] bridge_slave_0: left promiscuous mode
[  152.355291][  T136] bridge0: port 1(bridge_slave_0) entered disabled state
[  152.363284][ T5159] usb 2-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36
[  152.372462][ T5159] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  152.380621][   T53] Bluetooth: hci4: command tx timeout
[  152.387234][ T5159] usb 2-1: Product: syz
[  152.391565][ T5159] usb 2-1: Manufacturer: syz
[  152.396436][ T5159] usb 2-1: SerialNumber: syz
[  152.407244][  T136] bridge_slave_1: left allmulticast mode
[  152.409267][ T5159] usb 2-1: config 0 descriptor??
[  152.413288][  T136] bridge_slave_1: left promiscuous mode
[  152.424424][  T136] bridge0: port 2(bridge_slave_1) entered disabled state
[  152.431161][ T5159] ch341 2-1:0.0: ch341-uart converter detected
[  152.440274][  T136] bridge_slave_0: left allmulticast mode
[  152.447811][  T136] bridge_slave_0: left promiscuous mode
[  152.453860][  T136] bridge0: port 1(bridge_slave_0) entered disabled state
[  152.630745][   T53] Bluetooth: hci2: command tx timeout
[  152.997241][ T7046] loop3: detected capacity change from 0 to 512
[  153.004772][ T7046] EXT4-fs: Ignoring removed mblk_io_submit option
[  153.021117][ T7046] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a064e01c, mo2=0002]
[  153.038482][ T7046] System zones: 1-12
[  153.054385][ T7046] EXT4-fs error (device loop3): ext4_orphan_get:1394: inode #15: comm syz-executor.3: casefold flag without casefold feature
[  153.069404][ T7046] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz-executor.3: couldn't read orphan inode 15 (err -117)
[  153.097997][ T7046] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  153.218478][ T6268] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.249260][  T136] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  153.270856][  T136] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  153.284176][  T136] bond0 (unregistering): Released all slaves
[  153.464205][  T136] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  153.479385][  T136] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  153.490536][  T136] bond0 (unregistering): Released all slaves
[  153.618537][ T6987] bridge0: port 1(bridge_slave_0) entered blocking state
[  153.632372][ T6987] bridge0: port 1(bridge_slave_0) entered disabled state
[  153.647537][ T6987] bridge_slave_0: entered allmulticast mode
[  153.660892][ T5159] usb 2-1: ch341-uart converter now attached to ttyUSB0
[  153.678210][ T6987] bridge_slave_0: entered promiscuous mode
[  153.726984][ T6987] bridge0: port 2(bridge_slave_1) entered blocking state
[  153.743061][ T6987] bridge0: port 2(bridge_slave_1) entered disabled state
[  153.750274][ T6987] bridge_slave_1: entered allmulticast mode
[  153.764290][ T6987] bridge_slave_1: entered promiscuous mode
[  153.896896][   T45] usb 2-1: USB disconnect, device number 5
[  153.917062][   T45] ch341-uart ttyUSB0: ch341-uart converter now disconnected from ttyUSB0
[  153.917597][ T6987] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  153.932814][   T45] ch341 2-1:0.0: device disconnected
[  153.959603][ T6987] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  154.408016][ T6987] team0: Port device team_slave_0 added
[  154.454508][   T53] Bluetooth: hci4: command 0x040f tx timeout
[  154.466216][ T6987] team0: Port device team_slave_1 added
[  154.571701][ T7062] loop3: detected capacity change from 0 to 2048
[  154.692712][ T5112] Bluetooth: hci2: command tx timeout
[  154.768808][ T6987] batman_adv: batadv0: Adding interface: batadv_slave_0
[  154.779052][ T6987] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  154.806882][ T7062] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  154.824180][ T6987] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  155.358186][   T29] audit: type=1326 audit(1717490037.697:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7063 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe746a7cf69 code=0x0
[  155.644024][ T6987] batman_adv: batadv0: Adding interface: batadv_slave_1
[  155.651017][ T6987] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  155.755163][ T6987] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  155.972010][ T6268] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.983032][ T6907] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  156.005719][ T6907] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  156.139082][  T136] hsr_slave_0: left promiscuous mode
[  156.151696][  T136] hsr_slave_1: left promiscuous mode
[  156.162168][  T136] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  156.175400][  T136] batman_adv: batadv0: Removing interface: batadv_slave_0
[  156.193618][  T136] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  156.201114][  T136] batman_adv: batadv0: Removing interface: batadv_slave_1
[  156.212373][  T136] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  156.232743][  T136] batman_adv: batadv0: Removing interface: batadv_slave_0
[  156.250447][  T136] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  156.258670][  T136] batman_adv: batadv0: Removing interface: batadv_slave_1
[  156.342972][  T136] veth1_macvtap: left promiscuous mode
[  156.353454][  T136] veth0_macvtap: left promiscuous mode
[  156.359138][  T136] veth1_vlan: left promiscuous mode
[  156.370457][  T136] veth0_vlan: left promiscuous mode
[  156.406510][  T136] veth1_macvtap: left promiscuous mode
[  156.412109][  T136] veth0_macvtap: left promiscuous mode
[  156.427492][ T7090] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.3'.
[  156.453211][  T136] veth1_vlan: left promiscuous mode
[  156.462795][  T136] veth0_vlan: left promiscuous mode
[  156.532808][ T5112] Bluetooth: hci4: command 0x040f tx timeout
[  157.966133][  T136] team0 (unregistering): Port device team_slave_1 removed
[  158.065450][  T136] team0 (unregistering): Port device team_slave_0 removed
[  158.401373][ T7101] loop3: detected capacity change from 0 to 32768
[  158.435107][ T7101] bcachefs (/dev/loop3): error reading default superblock: checksum error, type crc32c_nonzero: got 2859f616 should be 29d2fb78
[  158.614895][ T5112] Bluetooth: hci4: command 0x040f tx timeout
[  158.677067][ T7101] bcachefs (loop3): mounting version 1.7: mi_btree_bitmap opts=compression=lz4,nojournal_transaction_names
[  158.706795][ T7117] loop1: detected capacity change from 0 to 512
[  158.722365][ T7101] bcachefs (loop3): recovering from clean shutdown, journal seq 7
[  158.735171][ T7117] EXT4-fs: Ignoring removed mblk_io_submit option
[  158.735693][ T7101] bcachefs (loop3): Doing compatible version upgrade from 1.7: mi_btree_bitmap to 1.9: disk_accounting_v2
[  158.735693][ T7101]   running recovery passes: check_allocations
[  158.742496][ T7117] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  158.772941][ T7117] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  158.795290][ T7117] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a00ec118, mo2=0002]
[  158.803787][ T7117] System zones: 1-12
[  158.808982][ T7101] bcachefs (loop3): accounting_read... done
[  158.815325][ T7101] bcachefs (loop3): alloc_read... done
[  158.821003][ T7101] bcachefs (loop3): stripes_read... done
[  158.829294][ T7101] bcachefs (loop3): snapshots_read... done
[  158.835532][ T7101] bcachefs (loop3): check_allocations...
[  158.840123][ T7101] ------------[ cut here ]------------
[  158.851608][ T7101] kernel BUG at fs/bcachefs/buckets.h:96!
[  158.856377][ T7117] EXT4-fs (loop1): 1 truncate cleaned up
[  158.857729][ T7101] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN PTI
[  158.857755][ T7101] CPU: 1 PID: 7101 Comm: syz-executor.3 Tainted: G        W          6.10.0-rc2-next-20240604-syzkaller #0
[  158.857785][ T7101] Tainted: [W]=WARN
[  158.857791][ T7101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  158.857801][ T7101] RIP: 0010:gc_bucket+0x250/0x260
[  158.857830][ T7101] Code: 8c e8 84 42 63 fd e9 29 ff ff ff 89 f9 80 e1 07 fe c1 38 c1 0f 8c 36 ff ff ff e8 3b d4 ec fd e9 2c ff ff ff e8 b1 e5 86 fd 90 <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 90 90 90 90 90 90
[  158.857844][ T7101] RSP: 0018:ffffc900143ee208 EFLAGS: 00010246
[  158.857861][ T7101] RAX: ffffffff840fa54f RBX: 000000000001007c RCX: 0000000000040000
[  158.857875][ T7101] RDX: ffffc90009931000 RSI: 000000000003ffff RDI: 0000000000040000
[  158.857887][ T7101] RBP: ffff8880232e4000 R08: ffffffff840fa4b1 R09: 0000000000000000
[  158.857900][ T7101] R10: ffffc900143eefd0 R11: fffff5200287ddfc R12: ffff88805de1b130
[  158.857914][ T7101] R13: ffff88805de1b118 R14: 000000000001007c R15: 0000000000000080
[  158.857926][ T7101] FS:  00007f5bfb5ff6c0(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000
[  158.857942][ T7101] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  158.857955][ T7101] CR2: 00007fe73c83f000 CR3: 000000005c1de000 CR4: 00000000003506f0
[  158.857971][ T7101] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  158.857982][ T7101] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  158.857994][ T7101] Call Trace:
[  158.858000][ T7101]  <TASK>
[  158.858007][ T7101]  ? __die_body+0x88/0xe0
[  158.858032][ T7101]  ? die+0xcf/0x110
[  158.858055][ T7101]  ? do_trap+0x15a/0x3a0
2024/06/04 08:34:01 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF
[  158.858076][ T7101]  ? gc_bucket+0x250/0x260
[  158.858098][ T7101]  ? do_error_trap+0x1dc/0x2c0
[  158.858118][ T7101]  ? gc_bucket+0x250/0x260
[  158.858140][ T7101]  ? __pfx_do_error_trap+0x10/0x10
[  158.858161][ T7101]  ? report_bug+0x3e8/0x500
[  158.858185][ T7101]  ? handle_invalid_op+0x34/0x40
[  158.858205][ T7101]  ? gc_bucket+0x250/0x260
[  158.858224][ T7101]  ? exc_invalid_op+0x38/0x50
[  158.858247][ T7101]  ? asm_exc_invalid_op+0x1a/0x20
[  158.858274][ T7101]  ? gc_bucket+0x1b1/0x260
[  158.858293][ T7101]  ? gc_bucket+0x24f/0x260
[  158.858315][ T7101]  ? gc_bucket+0x250/0x260
[  158.858335][ T7101]  ? gc_bucket+0x24f/0x260
[  158.858357][ T7101]  bch2_check_allocations+0xc63/0xb9d0
[  158.858380][ T7101]  ? bch2_check_allocations+0x67e/0xb9d0
[  158.858405][ T7101]  ? validate_chain+0x11e/0x5920
[  158.858430][ T7101]  ? bch2_btree_node_iter_init+0x36bb/0x4280
[  158.858454][ T7101]  ? validate_chain+0x11e/0x5920
[  158.858480][ T7101]  ? bch2_btree_path_verify_level+0x369/0x1950
[  158.858499][ T7101]  ? __bch2_journal_key_search+0x9c2/0x10e0
[  158.858521][ T7101]  ? __bch2_btree_node_iter_advance+0x577/0xaa0
[  158.858543][ T7101]  ? validate_chain+0x11e/0x5920
[  158.858565][ T7101]  ? __pfx_validate_chain+0x10/0x10
[  158.858587][ T7101]  ? __pfx___bch2_journal_key_search+0x10/0x10
[  158.858609][ T7101]  ? bch2_btree_node_iter_advance+0x3c8/0xc70
[  158.858628][ T7101]  ? desc_read+0x200/0x3f0
[  158.858648][ T7101]  ? __pfx_bch2_check_allocations+0x10/0x10
[  158.858671][ T7101]  ? desc_read+0x1a2/0x3f0
[  158.858694][ T7101]  ? prb_first_seq+0x131/0x210
[  158.858715][ T7101]  ? __pfx_prb_first_seq+0x10/