program:
syz_mount_image$minix(&(0x7f0000000200), &(0x7f0000000240)='./file0\x00', 0x808c41, &(0x7f00000000c0)=ANY=[], 0xfe, 0x21f, &(0x7f0000000280)="$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")
r0 = accept(0xffffffffffffffff, &(0x7f0000000040)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @multicast}, &(0x7f00000000c0)=0x80)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_GET(r0, &(0x7f0000000580)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000540)={&(0x7f00000004c0)={0x74, r1, 0x20, 0x70bd2d, 0x25dfdbfd, {}, [@TIPC_NLA_MEDIA={0x14, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}]}, @TIPC_NLA_MON={0x4c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x3}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x1}, @TIPC_NLA_MON_REF={0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xc}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x6}, @TIPC_NLA_MON_REF={0x8, 0x2, 0xfffffffb}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x80000000}]}]}, 0x74}, 0x1, 0x0, 0x0, 0x10}, 0x401c1)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000000)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})

[   75.112621][ T4670] Bluetooth: hci0: command tx timeout
[   75.171590][ T5321] loop0: detected capacity change from 0 to 256
[   75.195845][ T5321] =======================================================
[   75.195845][ T5321] WARNING: The mand mount option has been deprecated and
[   75.195845][ T5321]          and is ignored by this kernel. Remove the mand
[   75.195845][ T5321]          option from the mount to silence this warning.
[   75.195845][ T5321] =======================================================
[   75.308500][ T5321] MINIX-fs: mounting file system with errors, running fsck is recommended
[   75.348450][ T5321] ------------[ cut here ]------------
[   75.350498][ T5321] UBSAN: shift-out-of-bounds in fs/minix/inode.c:399:57
[   75.363899][ T5321] shift exponent 11776 is too large for 64-bit type 'unsigned long'
[   75.367400][ T5321] CPU: 0 UID: 0 PID: 5321 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   75.367418][ T5321] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.367426][ T5321] Call Trace:
[   75.367432][ T5321]  <TASK>
[   75.367438][ T5321]  dump_stack_lvl+0x189/0x250
[   75.367525][ T5321]  ? __pfx_dump_stack_lvl+0x10/0x10
[   75.367539][ T5321]  ? __pfx__printk+0x10/0x10
[   75.367561][ T5321]  ubsan_epilogue+0xa/0x40
[   75.367579][ T5321]  __ubsan_handle_shift_out_of_bounds+0x386/0x410
[   75.367647][ T5321]  minix_statfs+0x31c/0x340
[   75.367668][ T5321]  vfs_statfs+0x147/0x2d0
[   75.367690][ T5321]  ovl_fill_super+0xa13/0x3da0
[   75.367728][ T5321]  ? __pfx_ovl_fill_super+0x10/0x10
[   75.367744][ T5321]  ? __mutex_unlock_slowpath+0x1a1/0x740
[   75.367800][ T5321]  ? __raw_spin_lock_init+0x45/0x100
[   75.367814][ T5321]  ? __init_swait_queue_head+0xa9/0x150
[   75.367830][ T5321]  ? shrinker_register+0x16b/0x230
[   75.367848][ T5321]  ? sget_fc+0x962/0xa40
[   75.367866][ T5321]  ? __pfx_set_anon_super_fc+0x10/0x10
[   75.367881][ T5321]  ? __pfx_ovl_fill_super+0x10/0x10
[   75.367894][ T5321]  get_tree_nodev+0xbb/0x150
[   75.367906][ T5321]  vfs_get_tree+0x92/0x2b0
[   75.367914][ T5321]  do_new_mount+0x302/0xa10
[   75.367921][ T5321]  ? apparmor_capable+0x137/0x1b0
[   75.367932][ T5321]  ? __pfx_do_new_mount+0x10/0x10
[   75.367939][ T5321]  ? ns_capable+0x8a/0xf0
[   75.367954][ T5321]  ? path_mount+0x61c/0xfe0
[   75.367964][ T5321]  ? kmem_cache_free+0x19b/0x690
[   75.367982][ T5321]  __se_sys_mount+0x313/0x410
[   75.367998][ T5321]  ? __pfx___se_sys_mount+0x10/0x10
[   75.368013][ T5321]  ? do_syscall_64+0xbe/0xfa0
[   75.368027][ T5321]  ? __x64_sys_mount+0x20/0xc0
[   75.368037][ T5321]  do_syscall_64+0xfa/0xfa0
[   75.368046][ T5321]  ? lockdep_hardirqs_on+0x9c/0x150
[   75.368055][ T5321]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.368062][ T5321]  ? clear_bhb_loop+0x60/0xb0
[   75.368071][ T5321]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.368078][ T5321] RIP: 0033:0x7ff87458efc9
[   75.368090][ T5321] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.368099][ T5321] RSP: 002b:00007ff8753fe038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   75.368114][ T5321] RAX: ffffffffffffffda RBX: 00007ff8747e5fa0 RCX: 00007ff87458efc9
[   75.368122][ T5321] RDX: 0000200000000180 RSI: 0000200000000140 RDI: 0000000000000000
[   75.368130][ T5321] RBP: 00007ff874611f91 R08: 0000200000000000 R09: 0000000000000000
[   75.368138][ T5321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   75.368145][ T5321] R13: 00007ff8747e6038 R14: 00007ff8747e5fa0 R15: 00007ffd099312f8
[   75.368167][ T5321]  </TASK>
[   75.368171][ T5321] ---[ end trace ]---
[   75.505904][ T5321] Kernel panic - not syncing: UBSAN: panic_on_warn set ...
[   75.508948][ T5321] CPU: 0 UID: 0 PID: 5321 Comm: syz.0.0 Not tainted syzkaller #0 PREEMPT(full) 
[   75.512968][ T5321] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[   75.517786][ T5321] Call Trace:
[   75.519205][ T5321]  <TASK>
[   75.520608][ T5321]  dump_stack_lvl+0x99/0x250
[   75.522686][ T5321]  ? __asan_memcpy+0x40/0x70
[   75.524575][ T5321]  ? __pfx_dump_stack_lvl+0x10/0x10
[   75.526537][ T5321]  ? __pfx__printk+0x10/0x10
[   75.528523][ T5321]  vpanic+0x237/0x6d0
[   75.530235][ T5321]  ? __pfx_vpanic+0x10/0x10
[   75.532247][ T5321]  panic+0xb9/0xc0
[   75.533889][ T5321]  ? __pfx_panic+0x10/0x10
[   75.535827][ T5321]  ? __pfx__printk+0x10/0x10
[   75.537708][ T5321]  check_panic_on_warn+0x89/0xb0
[   75.539847][ T5321]  __ubsan_handle_shift_out_of_bounds+0x386/0x410
[   75.542820][ T5321]  minix_statfs+0x31c/0x340
[   75.544928][ T5321]  vfs_statfs+0x147/0x2d0
[   75.546903][ T5321]  ovl_fill_super+0xa13/0x3da0
[   75.548987][ T5321]  ? __pfx_ovl_fill_super+0x10/0x10
[   75.551302][ T5321]  ? __mutex_unlock_slowpath+0x1a1/0x740
[   75.553715][ T5321]  ? __raw_spin_lock_init+0x45/0x100
[   75.556027][ T5321]  ? __init_swait_queue_head+0xa9/0x150
[   75.558352][ T5321]  ? shrinker_register+0x16b/0x230
[   75.560415][ T5321]  ? sget_fc+0x962/0xa40
[   75.562216][ T5321]  ? __pfx_set_anon_super_fc+0x10/0x10
[   75.564852][ T5321]  ? __pfx_ovl_fill_super+0x10/0x10
[   75.567120][ T5321]  get_tree_nodev+0xbb/0x150
[   75.569044][ T5321]  vfs_get_tree+0x92/0x2b0
[   75.570976][ T5321]  do_new_mount+0x302/0xa10
[   75.572945][ T5321]  ? apparmor_capable+0x137/0x1b0
[   75.575095][ T5321]  ? __pfx_do_new_mount+0x10/0x10
[   75.577205][ T5321]  ? ns_capable+0x8a/0xf0
[   75.579139][ T5321]  ? path_mount+0x61c/0xfe0
[   75.581131][ T5321]  ? kmem_cache_free+0x19b/0x690
[   75.583330][ T5321]  __se_sys_mount+0x313/0x410
[   75.585372][ T5321]  ? __pfx___se_sys_mount+0x10/0x10
[   75.587570][ T5321]  ? do_syscall_64+0xbe/0xfa0
[   75.589573][ T5321]  ? __x64_sys_mount+0x20/0xc0
[   75.591616][ T5321]  do_syscall_64+0xfa/0xfa0
[   75.593548][ T5321]  ? lockdep_hardirqs_on+0x9c/0x150
[   75.595806][ T5321]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.598303][ T5321]  ? clear_bhb_loop+0x60/0xb0
[   75.600312][ T5321]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.602814][ T5321] RIP: 0033:0x7ff87458efc9
[   75.604667][ T5321] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   75.612683][ T5321] RSP: 002b:00007ff8753fe038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   75.616357][ T5321] RAX: ffffffffffffffda RBX: 00007ff8747e5fa0 RCX: 00007ff87458efc9
[   75.619823][ T5321] RDX: 0000200000000180 RSI: 0000200000000140 RDI: 0000000000000000
[   75.623282][ T5321] RBP: 00007ff874611f91 R08: 0000200000000000 R09: 0000000000000000
[   75.626655][ T5321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   75.630133][ T5321] R13: 00007ff8747e6038 R14: 00007ff8747e5fa0 R15: 00007ffd099312f8
[   75.633760][ T5321]  </TASK>
[   75.635428][ T5321] Kernel Offset: disabled
[   75.637412][ T5321] Rebooting in 86400 seconds..