last executing test programs:

3m34.321546729s ago: executing program 3 (id=4):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = fsopen(&(0x7f0000001340)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
r5 = fsmount(r4, 0x0, 0x80)
r6 = openat$cgroup_procs(r5, &(0x7f00000002c0)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r6, &(0x7f0000001c00), 0x12)
r7 = socket$unix(0x1, 0x2, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
setsockopt$SO_TIMESTAMP(r7, 0x1, 0x23, 0x0, 0x0)
recvmmsg(r7, &(0x7f0000000300), 0x40000000000049e, 0x1000000000fe, 0x0)
bind$inet(r0, &(0x7f0000000100)={0x2, 0x4e21, @broadcast}, 0x10)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffffaf, 0x4000280, 0x0, 0xffffffffffffffe1)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)

3m33.300749483s ago: executing program 3 (id=7):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000001100)='./file1\x00', 0x0, &(0x7f0000000340)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x4}}, {@discard}, {@errors_remount}, {@mblk_io_submit}, {@quota}, {@mblk_io_submit}, {@minixdf}, {@barrier_val}, {@nombcache}, {}]}, 0x45, 0x7b6, &(0x7f0000001140)="$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")
pread64(0xffffffffffffffff, 0x0, 0x0, 0x8000000000000001)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
timer_create(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000780)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@nfs_export_on}]})

3m32.403609942s ago: executing program 3 (id=8):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x2010008, &(0x7f00000001c0), 0xff, 0x545, &(0x7f0000001300)="$eJzs3U9vHGcZAPBn1l7HSZzaBQ5QqaWiRUkF2Y1r2locSpEQnCohyj0Ye2NZWXsje93GVgWbT4CEECBxggsXJD4AEorEhSNCigRnkIpACFKQ4FA6aHZnbbOedTZm7Y3Xv580mfedf8/zbjyzMzuvZgI4t56PiDci4sM0TV+KiNl8eikfotUZsuXef/jucjYkkaZv/S2JJJ+WLZamadrd5uV8temI+NpXIr6ZHAg4nY93dm8v1eu1zbxaba7fqW7t7F5fW19ara3WNhYW5l9dfG3xlcUbQ2nnlYh4/Ut/+v53fvrl13/52Xf+ePMv176VpTWTz++24xgmj5rZaXr5wnTPCpvHDPYkytpT/iCvXBxsnXsnmRAAAH1l5/gfiYhPRcRLMRsTR5/OAgAAAGdQ+oWZ+CDp3L8rMNVnOgAAAHCGlNp9YJNSJe8LMBOlUqXS6cP7sbhUqje2mp+51djeWOn0lZ2LcunWWr12I+8rPBflJKvPt8v79Zd76gsR8XREfG/2YrteWW7UV0b94wcAAACcE5d7rv//Odu5/j9acjrJAQAAAMMzN+oEAAAAgBPn+h8AAADGWnnUCQAAAAAn7qtvvpkNaff91ytv72zfbrx9faW2dbuyvr1cWW5s3qmsNhqr7Wf2rT9qe/VG487nYmP7brVZ22pWr+zs3lxvbG80b67F9Kk0CAAAADjk6U/e/30SEa3PX2wPmalRJwWcism9UveZngV7/x+e6ozfO6WkgFMxMcAy710onu48Ac62yd4JffZ1YPzo/w886o0efTvv/KYzKg05HwAAYPiufuK49/9bTvnhjPMmTzi/eu7/p7OjSgQ4de3v/0E78jjjh7FSHqgHIDDO/t/7/4+Wpo+VEAAAMHQz7SEpVfKf92aiVKpUIq60XwtYTm6t1Ws3IuKpiPjdbPlCVp9vr5m4dwgAAAAAAAAAAAAAAAAAAAAAAAAAA0rTJFIAAABgrEWU/pz8qvMs/6uzL870/j4wlfy7/UrgqYh450dv/eDuUrO5OZ9N//ve9OYP8+kvj+IXDAAAAKBX9zq9Pf7XqLMBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYNy8//Dd5e4wwOIXhxX3r1+MiLmi+JMx3R5PRzkiLv0jickD6yURMTGE+K17EfHxovhJltZeyKL4w/gQWveSVtpWGD/m8k+hKP7lIcSH8+x+dvx5o2j/L8Xz7XHx/jcZ8T/14+p//Iu9499En/3/yoAxnnnw82rf+PcinpksPv514yd94r8wUPRyfOPru7v95qY/jrja/f5pH/EORtgvVZvrd6pbO7vX19aXVmurtY2FhflXF19bfGXxRvXWWr2W/1sY47vP/uLDo9p/qfD7L8mz6d/+Fwu2N1GQ/38e3H340W6ldTj+tRcK4v/6J/kSh+OX8jifzsvZ/KvdcqtTPui5n/32uaPav7Lf/vLj/P9f67fRXod2lGcH+9MBAE7E1s7u7aV6vbY5toXsKv0JSOM4hal4ItIY38K3s8KDYW0wTdM026cKZt2PiEG2k8SQW1oqzme/0PcIMOojEwAAMGz7J/2jzgQAAAAAAAAAAAAAAAAAAADOr9N4ylpvzP1HICfDeIQ2AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMBQ/DcAAP///wrcAQ==")
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0xffffd000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e25}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x0, &(0x7f0000000040)={0x0, 0x0})
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
clock_settime(0x0, &(0x7f0000000040)={0x77359400})
io_setup(0x1, 0x0)
io_submit(0x0, 0x1, &(0x7f0000001840)=[0x0])
r4 = socket$tipc(0x1e, 0x2, 0x0)
r5 = syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0)
r6 = fcntl$dupfd(r5, 0x0, r4)
connect$inet6(r6, &(0x7f0000000000)={0xa, 0x4e24, 0x9, @ipv4={'\x00', '\xff\xff', @local}, 0x6}, 0x1c)
add_key$keyring(&(0x7f0000000000), 0x0, 0x0, 0x0, 0xfffffffffffffffe)
openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000300), &(0x7f0000000280)='./bus\x00', 0x3c9c9b, 0x0, 0x0, 0x0, &(0x7f0000000140))
sendmsg$IPSET_CMD_TEST(r0, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x100000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, 0xb, 0x6, 0x101, 0x0, 0x0, {0xa, 0x0, 0xa}, [@IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x9}]}, 0x1c}, 0x1, 0x0, 0x0, 0x800}, 0xacff31de60823174)

3m24.459155977s ago: executing program 3 (id=60):
r0 = gettid()
timer_create(0x1, &(0x7f0000000800)={0x0, 0x21, 0x4, @tid=r0}, &(0x7f0000000000))
io_setup(0x9, &(0x7f0000000180))
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x3ed4, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x9)
timer_settime(0x0, 0x1, &(0x7f0000000040), 0x0)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000180), 0xc)

3m24.019862116s ago: executing program 32 (id=60):
r0 = gettid()
timer_create(0x1, &(0x7f0000000800)={0x0, 0x21, 0x4, @tid=r0}, &(0x7f0000000000))
io_setup(0x9, &(0x7f0000000180))
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x3ed4, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x9)
timer_settime(0x0, 0x1, &(0x7f0000000040), 0x0)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000180), 0xc)

2m58.277772323s ago: executing program 4 (id=197):
r0 = userfaultfd(0x80001)
unshare(0x22020600)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x10})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa04, 0x0)

2m58.186522307s ago: executing program 4 (id=199):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r3 = getpid()
syz_pidfd_open(r3, 0x0)
socket$packet(0x11, 0x2, 0x300)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x4, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x4}, [@call={0x85, 0x0, 0x0, 0x2e}, @printk={@li, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x7}}]}, 0x0, 0x3, 0x0, 0x0, 0x40f00, 0x34, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

2m58.002901805s ago: executing program 4 (id=201):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r4, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, r5, {0x2, 0x4e24, @broadcast}, 0x2, 0x0, 0x3}}, 0x26)
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000080)=@pppol2tpv3={0x18, 0x1, {0x3, r4, {0x2, 0x4e21, @broadcast}, 0x2, 0x9800, 0xffff7ff9, 0x20}}, 0x2e)
socket$pppl2tp(0x18, 0x1, 0x1)
close_range(r0, 0xffffffffffffffff, 0x0)

2m57.382215132s ago: executing program 4 (id=204):
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x210000, &(0x7f00000006c0)={[{@nobarrier}, {@dioread_lock}, {@barrier_val={'barrier', 0x3d, 0x4}}, {@nolazytime}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@errors_remount}, {@stripe={'stripe', 0x3d, 0x2}}, {@bh}, {@resuid}]}, 0xfc, 0x56f, &(0x7f0000003780)="$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")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x3, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000040)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
setxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', &(0x7f0000002a40)='system.posix_acl_default\x00', &(0x7f00000000c0)={{}, {0x1, 0x6}, [], {0x4, 0x6}}, 0x24, 0x3)

2m57.254589088s ago: executing program 4 (id=207):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000280)=ANY=[@ANYRES8], 0xf8}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r0 = socket$inet6(0xa, 0x3, 0x7)
connect$inet6(r0, &(0x7f00000001c0)={0xa, 0x0, 0x1000006, @loopback, 0x97}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000002200)=[{{0x0, 0xf5, 0x0}}], 0x40000000000027f, 0x0)

2m56.27635005s ago: executing program 4 (id=211):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mremap(&(0x7f00005ab000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffe000/0x1000)=nil)
mremap(&(0x7f000020e000/0x2000)=nil, 0x2000, 0x400000, 0x3, &(0x7f000082a000/0x400000)=nil)
gettid()
timer_create(0x9, 0x0, &(0x7f0000bbdffc))
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)

2m55.926888416s ago: executing program 33 (id=211):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mremap(&(0x7f00005ab000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffe000/0x1000)=nil)
mremap(&(0x7f000020e000/0x2000)=nil, 0x2000, 0x400000, 0x3, &(0x7f000082a000/0x400000)=nil)
gettid()
timer_create(0x9, 0x0, &(0x7f0000bbdffc))
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)

2m26.448206365s ago: executing program 0 (id=363):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/stat\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x20000023896)
ioctl$TCXONC(r0, 0x540a, 0x0)
ioctl$TIOCSERGETLSR(r0, 0x5459, &(0x7f0000000080))

2m26.391207987s ago: executing program 0 (id=364):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x68080, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000140))
ioctl$PPPIOCGNPMODE(r0, 0xc008744c, &(0x7f00000000c0)={0x21})

2m26.226603635s ago: executing program 0 (id=366):
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/raw\x00')
preadv(r0, &(0x7f00000013c0)=[{&(0x7f0000000240)=""/4082, 0xff2}], 0x1, 0x15f, 0x0)

2m26.198311636s ago: executing program 0 (id=367):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file2\x00', 0x404, &(0x7f0000000200)={[{@nogrpid}, {@noinit_itable}, {@noinit_itable}, {@debug}, {@nodiscard}, {@quota}]}, 0x1, 0x43d, &(0x7f0000000700)="$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")
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
madvise(&(0x7f000004d000/0x2000)=nil, 0x2000, 0xb)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, 0x0, 0x20044000)
r4 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r4)
ptrace$pokeuser(0x6, r4, 0x388, 0x41d9fda7)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x103a42, 0x32)
ftruncate(r5, 0x6000000)

2m25.211500379s ago: executing program 0 (id=378):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x4e, &(0x7f00000000c0)=0xfffffff7, 0x4)
sendmmsg$inet6(r0, &(0x7f0000001700)=[{{&(0x7f0000000000)={0xa, 0x4e1f, 0x0, @loopback, 0xfffffff0}, 0x1c, 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB="24000000000000002900000032000000ff11"], 0x28, 0x7ffffff7}}], 0x1, 0x4040)

2m23.426067946s ago: executing program 0 (id=395):
r0 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000140)=0x7, 0x4)
r1 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001300)=@newtfilter={0x4c, 0x2c, 0xf3f, 0x30bd29, 0x25df9bfd, {0x0, 0x0, 0x0, r2, {0x0, 0xfff3}, {}, {0xffe0, 0x300}}, [@filter_kind_options=@f_flow={{0x9}, {0x1c, 0x2, [@TCA_FLOW_ADDEND={0x8, 0x5, 0x9}, @TCA_FLOW_MODE={0x8, 0x2, 0x1}, @TCA_FLOW_BASECLASS={0x8, 0x3, {0x3, 0xa}}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x200000c4}, 0x0)

2m23.286183412s ago: executing program 34 (id=395):
r0 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000140)=0x7, 0x4)
r1 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001300)=@newtfilter={0x4c, 0x2c, 0xf3f, 0x30bd29, 0x25df9bfd, {0x0, 0x0, 0x0, r2, {0x0, 0xfff3}, {}, {0xffe0, 0x300}}, [@filter_kind_options=@f_flow={{0x9}, {0x1c, 0x2, [@TCA_FLOW_ADDEND={0x8, 0x5, 0x9}, @TCA_FLOW_MODE={0x8, 0x2, 0x1}, @TCA_FLOW_BASECLASS={0x8, 0x3, {0x3, 0xa}}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x200000c4}, 0x0)

2m23.022617113s ago: executing program 5 (id=402):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x103a42, 0x32)
copy_file_range(r0, 0x0, r0, 0x0, 0x9, 0x0)

2m22.986869335s ago: executing program 5 (id=403):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
syz_open_procfs(0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$tipc(0x1e, 0x2, 0x0)
r1 = syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0)
r2 = fcntl$dupfd(r1, 0x0, r0)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4e24, 0x9, @ipv4={'\x00', '\xff\xff', @local}, 0x6}, 0x1c)

2m22.894013899s ago: executing program 5 (id=404):
r0 = gettid()
timer_create(0x2, &(0x7f0000000040)={0x0, 0x7, 0x4, @tid=r0}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0xffffffffffffffff}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, 0x0, 0x0)
fcntl$setstatus(r4, 0x4, 0x40800)
setsockopt$inet_mtu(r4, 0x0, 0xa, 0x0, 0x0)
connect$inet(r4, &(0x7f0000000000)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x18}}, 0x10)

2m21.96209866s ago: executing program 5 (id=410):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000003c0)={[{@block_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@lazytime}, {@noauto_da_alloc}, {@discard}]}, 0xfd, 0x56d, &(0x7f0000000480)="$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")
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file1\x00', &(0x7f0000000100), &(0x7f0000001400)=ANY=[], 0x835, 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
chroot(&(0x7f0000000200)='./file0\x00')
umount2(&(0x7f0000000000)='./file0\x00', 0x0)
syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000002680)='.\x00', 0xa0, &(0x7f00000008c0)=ANY=[], 0xc, 0x0, &(0x7f0000000000))
setxattr$trusted_overlay_upper(&(0x7f0000000380)='./file0/file0\x00', &(0x7f00000001c0), &(0x7f0000001400)=ANY=[], 0x835, 0x0)

2m21.779330678s ago: executing program 5 (id=415):
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeeb, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000640)={0x14, 0x2, 0x1, 0x5, 0x0, 0x0, {0x2, 0x0, 0x8}}, 0x14}, 0x1, 0x0, 0x0, 0x20044804}, 0x40040)

2m21.110342026s ago: executing program 5 (id=420):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000980)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, <r1=>0xffffffffffffffff}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xa, 0x10, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000020000007b8a00fe0000000087080000000000007b8af0ff00000000bda100000000000027000000f8ffffffbfa400000000000007040000f0ffffffb702000000000000182300", @ANYRES32=r1, @ANYBLOB="0000000000000000b704000008000000850000004900000095"], &(0x7f0000000440)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000007c0)={r2, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000680)="76389e6a65585578f830e9000000", 0x0, 0x10001, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

2m20.989297692s ago: executing program 35 (id=420):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000980)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, <r1=>0xffffffffffffffff}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xa, 0x10, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000020000007b8a00fe0000000087080000000000007b8af0ff00000000bda100000000000027000000f8ffffffbfa400000000000007040000f0ffffffb702000000000000182300", @ANYRES32=r1, @ANYBLOB="0000000000000000b704000008000000850000004900000095"], &(0x7f0000000440)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000007c0)={r2, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000680)="76389e6a65585578f830e9000000", 0x0, 0x10001, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

4.022723296s ago: executing program 7 (id=1432):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r3 = getpid()
syz_pidfd_open(r3, 0x0)
socket$packet(0x11, 0x2, 0x300)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x4, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x4}, [@call={0x85, 0x0, 0x0, 0x2e}, @printk={@li, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x7}}]}, 0x0, 0x3, 0x0, 0x0, 0x40f00, 0x34, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

3.00238327s ago: executing program 1 (id=1446):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0xffffffffffffff3c, &(0x7f0000000100)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000010880)=ANY=[@ANYBLOB="0200000004000000080000000c"], 0x50)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000080)={0xffffffffffffffff, r1}, 0xc)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f066bbeeb, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r4 = syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581)
r5 = openat$zero(0xffffffffffffff9c, &(0x7f0000000040), 0x2000, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000300)={'wlan1\x00'})
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000640)={[{@fat=@errors_remount}, {@dots}, {@fat=@dmask={'dmask', 0x3d, 0x4}}, {@fat=@uid={'uid', 0x3d, 0xee00}}, {@nodots}, {@nodots}, {@fat=@codepage={'codepage', 0x3d, '865'}}, {@nodots}, {@nodots}, {@dots}, {@dots}, {@nodots}, {@nodots}, {@nodots}, {@nodots}, {@fat=@sys_immutable}, {@nodots}, {@fat=@gid}, {}, {@dots}, {@fat=@tz_utc}, {@dots}], [{@appraise}]}, 0x1, 0x20e, &(0x7f0000000400)="$eJzs3T9rE2EYAPAnbdpcVKSbIAgnDjoVdXKsSAUxIFQy6CboZKZ2SV3a7+DiV/B7+QGkUxZ5Jd4lF9MkDaW5YP39lnvunve990/IJUuepHgWQz/ufIssa8TGXuzFoBE7sREjpwEAXCeDlOJnKqx7LgBAPZb4/P9V85QAgBV7++796+edzv5BnmcRZ6f9br9bHIv8y1ed/cf5HztVr7N+v7s5zj/Jp787DPNbcaPMPy365+P0dkR0t+PRgyI/zL1408n/7t+KjyteOwAAAAAAAAAAAAAAAAAAAAAArMu9yEeq+j6bEVHW99ndnc63y/o8xdlEfaCp+j3NuNssT6vyQOmkllUBAAAAAAAAAAAAAAAAAADAv+Xo+MvnD73ep8MqaEXE5JXmjDbzg0Z546UaXxzcvKL7zAs24nLd26MNbMzcw0VBo9yic6ksrnCB7dkv7jJBNFe44bUEeQ1jtRdub0rDYPa7YFQWY2737YhYPPrDg8tOfpBS6n2/f3h0HGlh4+oZ0arzgQQAAAAAAAAAAAAAAAAAAP+xiV99j329XRyztc0KAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOpV/f//MDh/ZWFwEhG34sLGo7G2IlvrWgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALi+fgcAAP//9DweRg==")
chdir(0x0)
r6 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x90)
getdents64(r6, &(0x7f0000000f80)=""/4096, 0x1000)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r5, &(0x7f0000000400)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000440)={&(0x7f0000000340)={0x34, 0x0, 0x200, 0x70bd27, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_DURATION={0x8, 0x57, 0xffffffff}, @chandef_params=[@NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8}, @NL80211_ATTR_WIPHY_FREQ={0x8}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x8}]]}, 0x34}, 0x1, 0x0, 0x0, 0x4000010}, 0x2004c840)
r7 = fcntl$dupfd(r4, 0x0, r4)
ioctl$USBDEVFS_SUBMITURB(r7, 0x8038550a, 0x0)
ioctl$USBDEVFS_REAPURB(r7, 0x4004550c, &(0x7f0000000380))
remap_file_pages(&(0x7f00006ca000/0x4000)=nil, 0x4000, 0x0, 0x3, 0x20000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000002100010001000000000000000a00000000000000000000000600150002000000080003"], 0x50}}, 0x24004044)

2.896784415s ago: executing program 7 (id=1448):
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
bind$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0xe00, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x30, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_ingress={0xc}]}, 0x30}}, 0x20040084)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000008c0)=@newqdisc={0x24, 0x28, 0x4ee4e6a52ff56541, 0x4005, 0xfffffdfc, {0x0, 0x0, 0x0, r3, {0xffff}, {0xfffc, 0xffff}, {0x2, 0x1}}}, 0x24}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)

1.728663315s ago: executing program 7 (id=1452):
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x10002, &(0x7f0000000680)={[{@nobarrier}, {@dioread_lock}, {@min_batch_time={'min_batch_time', 0x3d, 0x1}}, {@auto_da_alloc}, {@nolazytime}, {@nodioread_nolock}, {@errors_remount}, {@dioread_nolock}, {@bh}, {@inlinecrypt}]}, 0x1, 0x56f, &(0x7f0000003780)="$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")
io_setup(0x6, &(0x7f0000000540))
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
recvmmsg(r1, &(0x7f0000001640)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000004c0)=""/4096, 0x1e28}, {&(0x7f00000000c0)=""/250, 0x468}], 0x2, 0x0, 0xd64}}], 0x300, 0x34000, 0x0)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000280)={0x18, r0, 0xfaac4106a1b87a7, 0x0, 0x0, {0xb}, [@HEADER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x8814}, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
truncate(&(0x7f0000000900)='./file1\x00', 0x3000000)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r3, 0x0)
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
socket$netlink(0x10, 0x3, 0x0)
fallocate(r2, 0x0, 0x9, 0x8ffff)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)

1.726829175s ago: executing program 1 (id=1454):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="09000000070000000080000001"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r0, <r1=>0xffffffffffffffff}, &(0x7f00000002c0), &(0x7f0000000280)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000300)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x40000000, '\x00', 0x0, 0x0}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r5}, &(0x7f0000000280), &(0x7f0000000240)=r2}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000bc0)=ANY=[@ANYBLOB="1808000000000000000000000000000018120000", @ANYRES32=r5, @ANYBLOB="0000000000000000b703000000000000850000000c000000b7000000000000001801000000082c2500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r3, 0x1, 0x32, &(0x7f00000000c0)=r6, 0x4)
sendmsg$inet(r4, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)

1.660598368s ago: executing program 2 (id=1455):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x30000001}, 0x4840)

1.660373939s ago: executing program 1 (id=1456):
unshare(0x22020600)
r0 = gettid()
timer_create(0x1, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x3ed4, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x9)
timer_settime(0x0, 0x1, &(0x7f0000000040), 0x0)
r2 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MFC(r2, 0x29, 0xcc, &(0x7f0000000280)={{0xa, 0x0, 0x0, @loopback}, {0xa, 0x0, 0x0, @mcast2}, 0x0, {[0x1, 0x0, 0x0, 0x0, 0x9]}}, 0x5c)
timer_getoverrun(r1)
listen(0xffffffffffffffff, 0x9)
accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x800)
fsetxattr$security_evm(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000240)=ANY=[], 0x7, 0x2)
ioctl$sock_inet_SIOCSARP(0xffffffffffffffff, 0x8955, &(0x7f0000000a80)={{0x2, 0x0, @multicast1}, {0x0, @broadcast}, 0xe, {0x2, 0x4e20, @remote}, 'ip6tnl0\x00'})

1.659964988s ago: executing program 8 (id=1457):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r4, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, r5, {0x2, 0x4e24, @broadcast}, 0x2, 0x0, 0x3}}, 0x26)
r6 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r6, 0x0, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
close_range(r0, 0xffffffffffffffff, 0x0)

1.655380999s ago: executing program 6 (id=1458):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r3 = getpid()
syz_pidfd_open(r3, 0x0)
socket$packet(0x11, 0x2, 0x300)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x4, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x4}, [@call={0x85, 0x0, 0x0, 0x2e}, @printk={@li, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x7}}]}, 0x0, 0x3, 0x0, 0x0, 0x40f00, 0x34, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

1.655054879s ago: executing program 2 (id=1459):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = epoll_create1(0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
epoll_pwait(r0, &(0x7f0000000180), 0x0, 0xfffffffb, 0x0, 0x0)

996.524467ms ago: executing program 7 (id=1460):
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x20045a, &(0x7f0000000200)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0/file1\x00', 0x42, 0x5)
setxattr$security_capability(&(0x7f0000000040)='./file0/file1\x00', &(0x7f0000000140), &(0x7f0000000280)=@v3={0x3000000, [{0xffff7fff, 0xe}, {0x0, 0x81}]}, 0x18, 0x1)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x2, 0x0, 0x2, 0x2}}, 0x20)

996.301067ms ago: executing program 2 (id=1461):
socket(0x10, 0x3, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)={{0x14}, [], {0x14}}, 0x28}}, 0x0)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r2, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "560400", 0x14, 0x6, 0x0, @local, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2, 0x0, 0x0, 0x4}}}}}}}, 0x0)

996.002957ms ago: executing program 8 (id=1462):
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
bind$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0xe00, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x30, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_ingress={0xc}]}, 0x30}}, 0x20040084)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000008c0)=@newqdisc={0x24, 0x28, 0x4ee4e6a52ff56541, 0x4005, 0xfffffdfc, {0x0, 0x0, 0x0, r3, {0xffff}, {0xfffc, 0xffff}, {0x2, 0x1}}}, 0x24}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)

938.28147ms ago: executing program 2 (id=1463):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x2, &(0x7f0000000440)=[{0x20, 0x2, 0x81, 0xfffff034}, {0x6, 0x0, 0x0, 0xffffffff}]}, 0x10)
syz_emit_ethernet(0x96, &(0x7f00000006c0)=ANY=[@ANYBLOB="61fe71b72b5f1780c202090086dd60d2339600603a"], 0x0)

897.257072ms ago: executing program 7 (id=1464):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000780)=@newsa={0x138, 0x10, 0x1, 0xbffffffe, 0x25dfdbfd, {{@in=@empty, @in6=@ipv4={'\x00', '\xff\xff', @multicast1}, 0x1, 0x394, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in6=@ipv4={'\x00', '\xff\xff', @multicast1}, 0x4d4, 0x6c}, @in=@remote, {0xc, 0xf, 0x6, 0xffff, 0x8251c, 0x2, 0xfffffffffffffff8}, {0x6, 0x0, 0x1f, 0x202}, {0x2, 0xfffffffc}, 0x70bd2a, 0x3504, 0xa, 0x1, 0xfd, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x8801}, 0x10)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000004c0)=@newsa={0x104, 0x10, 0x7, 0x0, 0x0, {{@in6=@mcast2, @in=@multicast2, 0x4e20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xee00}, {@in6=@mcast1, 0x0, 0x2b}, @in6=@private0, {0x0, 0x0, 0x2, 0x0, 0x10000000, 0xffffffffffffffff}, {0x0, 0x200000, 0x7}, {0x40000, 0xfffffffd, 0xae8}, 0x0, 0x0, 0xa, 0x2, 0x0, 0x34}, [@coaddr={0x14, 0xe, @in6=@remote}]}, 0x104}}, 0x0)

896.900032ms ago: executing program 6 (id=1465):
bind$inet(0xffffffffffffffff, &(0x7f0000000380)={0x2, 0x4e22, @multicast1}, 0x10)
getpid()
socketpair(0x2, 0x1, 0x6, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001580)=ANY=[@ANYBLOB="600000000206030000000000b8791fa80000000014000780080012400000000005001500010000000500010006000000050005000200000005000400000000000900020073797a310000000012000300686173683a6e65742c706f7274"], 0x60}}, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB="54000000090601020000000000000000020000000900020073797a310000000005000100070000002c0007800c00018008000140ac1414aa050007008400000006000440462000000c00028008000140"], 0x54}, 0x1, 0x0, 0x0, 0x34040017}, 0x80)

873.885693ms ago: executing program 6 (id=1466):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f00000001c0)={[{@utf8no}, {@uni_xlateno}, {@fat=@errors_remount}, {@fat=@sys_immutable}, {@fat=@codepage={'codepage', 0x3d, '1255'}}, {@shortname_lower}, {@numtail}, {@shortname_winnt}, {@utf8no}, {@utf8no}, {@numtail}, {@iocharset={'iocharset', 0x3d, 'cp950'}}, {@iocharset={'iocharset', 0x3d, 'cp852'}}, {@shortname_mixed}]}, 0x2a, 0x37b, &(0x7f0000000800)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x0, 0x24)
getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000)

818.743675ms ago: executing program 8 (id=1467):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_GET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000001240)=ANY=[@ANYBLOB="500000000102010800000000000000000a0000093c0001802c00018014000300ff02000000000000000000000000000114000400ff0200000000000000000000000000010c000280", @ANYBLOB='l'], 0x50}, 0x1, 0x0, 0x0, 0x4000054}, 0x4000000)

818.473635ms ago: executing program 7 (id=1468):
socket$packet(0x11, 0x2, 0x300)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r1 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r1, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r1, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r1, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sched_setscheduler(0x0, 0x2, 0x0)
sendto$inet(r1, &(0x7f0000000580)="17", 0x59a, 0x10008095, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

818.350675ms ago: executing program 8 (id=1469):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket(0x400000000010, 0x3, 0x0)
r1 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000500)=@newtfilter={0x3c, 0x2c, 0xd27, 0x70bd25, 0x8000, {0x0, 0x0, 0x0, r4, {0x0, 0x9}, {}, {0x6, 0x2}}, [@filter_kind_options=@f_flower={{0xb}, {0xc, 0x2, [@TCA_FLOWER_KEY_ETH_TYPE={0x6, 0x8, 0x806}]}}]}, 0x3c}}, 0x4000846)

810.091825ms ago: executing program 2 (id=1470):
ioctl$COMEDI_DEVCONFIG(0xffffffffffffffff, 0x40946400, &(0x7f0000000140)={'dt2815\x00', [0x300, 0x8, 0x5ffff803, 0x4, 0x2f, 0xfffffff7, 0x6, 0xa22, 0xfffffff4, 0x2, 0x0, 0x8500, 0x5003, 0x1000007, 0x1, 0x10010003, 0x801000, 0x80000000, 0x1ff, 0x8, 0x1001010, 0x1ff, 0x8, 0x3, 0x20008003, 0x8, 0x5, 0x5, 0x0, 0x0, 0xfffd]})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_STATION(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000fddbdf251200000008000300", @ANYRES32=r1, @ANYBLOB="0a0006000802110000"], 0x34}}, 0x20048054)

747.396758ms ago: executing program 2 (id=1471):
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x10002, &(0x7f0000000680)={[{@nobarrier}, {@dioread_lock}, {@min_batch_time={'min_batch_time', 0x3d, 0x1}}, {@auto_da_alloc}, {@nolazytime}, {@nodioread_nolock}, {@errors_remount}, {@dioread_nolock}, {@bh}, {@inlinecrypt}]}, 0x1, 0x56f, &(0x7f0000003780)="$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")
io_setup(0x6, &(0x7f0000000540))
r0 = syz_genetlink_get_family_id$ethtool(&(0x7f00000001c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
recvmmsg(r1, &(0x7f0000001640)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000004c0)=""/4096, 0x1e28}, {&(0x7f00000000c0)=""/250, 0x468}], 0x2, 0x0, 0xd64}}], 0x300, 0x34000, 0x0)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000280)={0x18, r0, 0xfaac4106a1b87a7, 0x0, 0x0, {0xb}, [@HEADER={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x8814}, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
truncate(&(0x7f0000000900)='./file1\x00', 0x3000000)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r3, 0x0)
bind$netlink(0xffffffffffffffff, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
socket$netlink(0x10, 0x3, 0x0)
fallocate(r2, 0x0, 0x9, 0x8ffff)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)

709.19581ms ago: executing program 6 (id=1472):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = epoll_create1(0x0)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
epoll_pwait(r0, &(0x7f0000000180), 0x0, 0xfffffffb, 0x0, 0x0)

708.64453ms ago: executing program 8 (id=1473):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$pppl2tp(0x18, 0x1, 0x1)
r5 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r4, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, r5, {0x2, 0x4e24, @broadcast}, 0x2, 0x0, 0x3}}, 0x26)
r6 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r6, 0x0, 0x0)
socket$pppl2tp(0x18, 0x1, 0x1)
close_range(r0, 0xffffffffffffffff, 0x0)

695.22377ms ago: executing program 1 (id=1474):
socket(0x10, 0x3, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x801, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x88}}, 0x0)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='GPL\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r2, 0x0)
syz_emit_ethernet(0x4a, &(0x7f0000000080)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "560400", 0x14, 0x6, 0x0, @local, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2, 0x0, 0x0, 0x4}}}}}}}, 0x0)

602.666974ms ago: executing program 6 (id=1475):
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x20045a, &(0x7f0000000200)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0/file1\x00', 0x42, 0x5)
setxattr$security_capability(&(0x7f0000000040)='./file0/file1\x00', &(0x7f0000000140), &(0x7f0000000280)=@v3={0x3000000, [{0xffff7fff, 0xe}, {0x0, 0x81}]}, 0x18, 0x1)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000001c0)={0x0, 0x18, 0xfa00, {0x2, 0x0, 0x2, 0x2}}, 0x20)

602.440594ms ago: executing program 6 (id=1476):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
r3 = getpid()
syz_pidfd_open(r3, 0x0)
socket$packet(0x11, 0x2, 0x300)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x4, 0xc, &(0x7f0000000440)=@framed={{0x18, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x4}, [@call={0x85, 0x0, 0x0, 0x2e}, @printk={@li, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x7}}]}, 0x0, 0x3, 0x0, 0x0, 0x40f00, 0x34, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

584.974506ms ago: executing program 1 (id=1477):
bind$inet(0xffffffffffffffff, &(0x7f0000000380)={0x2, 0x4e22, @multicast1}, 0x10)
getpid()
socketpair(0x2, 0x1, 0x6, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001580)=ANY=[@ANYBLOB="600000000206030000000000b8791fa80000000014000780080012400000000005001500010000000500010006000000050005000200000005000400000000000900020073797a310000000012000300686173683a6e65742c706f7274"], 0x60}}, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=ANY=[@ANYBLOB="54000000090601020000000000000000020000000900020073797a310000000005000100070000002c0007800c00018008000140ac1414aa050007008400000006000440462000000c00028008000140"], 0x54}, 0x1, 0x0, 0x0, 0x34040017}, 0x80)

11.15205ms ago: executing program 8 (id=1478):
prctl$PR_SET_THP_DISABLE(0x29, 0x1)
bind$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0xe00, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x30, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_ingress={0xc}]}, 0x30}}, 0x20040084)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000008c0)=@newqdisc={0x24, 0x28, 0x4ee4e6a52ff56541, 0x4005, 0xfffffdfc, {0x0, 0x0, 0x0, r3, {0xffff}, {0xfffc, 0xffff}, {0x2, 0x1}}}, 0x24}, 0x1, 0x0, 0x0, 0x400dc}, 0x0)

0s ago: executing program 1 (id=1479):
syz_mount_image$erofs(&(0x7f0000000000), &(0x7f00000001c0)='./file1\x00', 0x6, &(0x7f0000000800)=ANY=[@ANYBLOB="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", @ANYRESDEC], 0x1, 0x194, &(0x7f0000000640)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file2\x00', 0x80000, 0x0)
read$FUSE(r0, &(0x7f0000003f00)={0x2020}, 0x2020)

kernel console output (not intermixed with test programs):

2FS-fs (loop5): Found nat_bits in checkpoint
[   76.879706][ T5417] F2FS-fs (loop5): Start checkpoint disabled!
[   76.882234][ T5417] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[   76.958229][ T4394] kworker/u4:6: attempt to access beyond end of device
[   76.958229][ T4394] loop5: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[   77.151377][ T5373] exFAT-fs (loop0): hint_cluster is invalid (17)
[   77.406162][ T5431] EXT4-fs (loop0): unable to read superblock
[   77.901551][ T4334] Bluetooth: hci4: command 0x040f tx timeout
[   78.255957][   T55] team0 (unregistering): Port device team_slave_1 removed
[   78.411026][ T5438] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   78.437660][   T55] team0 (unregistering): Port device team_slave_0 removed
[   78.607462][   T55] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   78.831914][   T55] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   80.134840][ T4328] Bluetooth: hci4: command 0x0419 tx timeout
[   80.392744][   T55] bond0 (unregistering): Released all slaves
[   80.704482][ T5409] tipc: Started in network mode
[   80.705355][ T5409] tipc: Node identity , cluster identity 4711
[   80.706551][ T4653] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   80.708317][ T4653] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   80.710395][ T4653] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   80.713894][ T4653] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   80.732234][ T5211] device veth0_macvtap entered promiscuous mode
[   80.739568][ T4653] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   80.777823][ T5211] device veth1_macvtap entered promiscuous mode
[   80.788933][ T5445] binder: 5444:5445 BC_FREE_BUFFER u0000000000000000 no match
[   80.798781][ T5445] binder: 5444:5445 Acquire 1 refcount change on invalid ref 1 ret -22
[   80.801928][ T5211] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   80.803681][ T5211] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.805418][   T27] audit: type=1400 audit(2000000034.073:2): apparmor="DENIED" operation="setprocattr" info="fscreate" error=-22 profile="unconfined" pid=5450 comm="syz.0.276"
[   80.814703][ T5452] set_capacity_and_notify: 4 callbacks suppressed
[   80.814710][ T5452] loop0: detected capacity change from 0 to 2048
[   80.818105][ T5211] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   80.821256][ T5211] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.823094][ T5211] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   80.825303][ T5211] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.826997][ T5211] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   80.828760][ T5211] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.843830][ T5211] batman_adv: batadv0: Interface activated: batadv_slave_0
[   80.866139][ T4653] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   80.868194][ T4653] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   80.883459][ T5211] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   80.885326][ T5211] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.886972][ T5211] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   80.905042][ T5211] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.906723][ T5211] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   80.908520][ T5211] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.910277][ T5211] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   80.925522][ T5211] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   80.935047][ T5211] batman_adv: batadv0: Interface activated: batadv_slave_1
[   80.961420][ T5466] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   80.964846][ T5462] device bridge1 entered promiscuous mode
[   80.966424][  T493] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   80.968250][  T493] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   80.971611][ T5211] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   80.973073][ T5211] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   80.974602][ T5211] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   80.976002][ T5211] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   80.979928][ T5466] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   81.421908][ T4653] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   81.423189][ T4653] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   81.424881][ T4653] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   81.481769][ T4541] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   81.483168][ T4541] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   81.485242][ T4541] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   81.541589][ T5490] binder: Unknown parameter 'defcontext'
[   81.773327][ T5499] loop2: detected capacity change from 0 to 256
[   81.774781][ T5499] exfat: Deprecated parameter 'utf8'
[   81.775741][ T5499] exfat: Deprecated parameter 'utf8'
[   81.776720][ T5499] exfat: Deprecated parameter 'utf8'
[   81.817358][ T5499] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xc70f51ff, utbl_chksum : 0xe619d30d)
[   81.984985][ T5508] syz.2.292 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[   82.464157][ T5527] loop2: detected capacity change from 0 to 256
[   82.478026][ T5527] exfat: Deprecated parameter 'namecase'
[   82.479040][ T5527] exfat: Deprecated parameter 'namecase'
[   82.497646][ T5527] exFAT-fs (loop2): failed to load upcase table (idx : 0x0001fe89, chksum : 0xbf24f927, utbl_chksum : 0xe619d30d)
[   82.792383][ T5484] loop1: detected capacity change from 0 to 131072
[   82.806956][ T5484] F2FS-fs (loop1): Invalid segment/section count (31, 24 x 150994945)
[   82.812026][ T5484] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[   82.821388][ T5484] F2FS-fs (loop1): invalid crc value
[   82.920530][ T5484] F2FS-fs (loop1): Found nat_bits in checkpoint
[   82.946355][ T5484] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[   82.947926][ T5484] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4
[   83.124274][ T5554] netlink: 64 bytes leftover after parsing attributes in process `syz.6.300'.
[   83.963794][ T5580] loop6: detected capacity change from 0 to 40427
[   83.973659][ T5580] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[   83.976185][ T5580] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[   83.985264][ T5580] F2FS-fs (loop6): invalid crc value
[   84.000255][ T5580] F2FS-fs (loop6): Found nat_bits in checkpoint
[   84.015294][ T5580] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[   84.016582][ T5580] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[   84.071536][ T5569] loop0: detected capacity change from 0 to 131072
[   84.073939][ T5569] F2FS-fs (loop0): invalid crc value
[   84.121850][ T5569] F2FS-fs (loop0): Found nat_bits in checkpoint
[   84.140219][ T5569] F2FS-fs (loop0): Cannot turn on quotas: -2 on 2
[   84.142894][ T5569] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4
[   85.411961][ T5593] loop0: detected capacity change from 0 to 131072
[   85.417322][ T5593] F2FS-fs (loop0): Wrong NAT boundary, start(2560) end(5) blocks(1024)
[   85.418735][ T5593] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock
[   85.510503][ T5593] F2FS-fs (loop0): Found nat_bits in checkpoint
[   85.533658][ T5593] F2FS-fs (loop0): Try to recover 2th superblock, ret: 0
[   85.534899][ T5593] F2FS-fs (loop0): Mounted with checkpoint version = 753bd00b
[   86.381380][ T5614] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   86.383798][ T5614] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   86.879324][ T5620] loop0: detected capacity change from 0 to 40427
[   86.884905][ T5620] F2FS-fs (loop0): Small segment_count (9 < 1 * 24)
[   86.886216][ T5620] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[   86.892372][ T5620] F2FS-fs (loop0): Found nat_bits in checkpoint
[   86.904613][ T5620] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[   86.905860][ T5620] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[   86.950733][ T5624] loop0: detected capacity change from 0 to 256
[   86.956385][ T5624] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   86.958316][ T5624] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[   86.962209][ T5624] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x5817f139, utbl_chksum : 0xe619d30d)
[   87.188709][ T5635] loop6: detected capacity change from 0 to 128
[   87.501329][ T5635] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[   87.503112][ T5635] ext4 filesystem being mounted at /8/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   87.515516][ T5635] syz.6.321 (pid 5635) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[   87.547609][ T5635] fscrypt: Adiantum using implementation "adiantum(xchacha12-neon,aes-ce,nhpoly1305-generic)"
[   87.567284][ T5211] EXT4-fs (loop6): unmounting filesystem.
[   87.596720][ T5644] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[   87.598721][ T5644] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[   89.160648][ T5659] loop0: detected capacity change from 0 to 40427
[   89.169723][ T5659] F2FS-fs (loop0): invalid crc value
[   89.171383][ T5659] F2FS-fs (loop0): Found nat_bits in checkpoint
[   89.178682][ T5659] F2FS-fs (loop0): Start checkpoint disabled!
[   89.180690][ T5659] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[   89.626475][ T5070] kworker/u4:18: attempt to access beyond end of device
[   89.626475][ T5070] loop0: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[   89.631730][ T5667] loop6: detected capacity change from 0 to 256
[   89.651652][ T5667] FAT-fs (loop6): Directory bread(block 64) failed
[   89.652792][ T5667] FAT-fs (loop6): Directory bread(block 65) failed
[   89.653864][ T5667] FAT-fs (loop6): Directory bread(block 66) failed
[   89.654893][ T5667] FAT-fs (loop6): Directory bread(block 67) failed
[   89.657975][ T5667] FAT-fs (loop6): Directory bread(block 68) failed
[   89.659209][ T5667] FAT-fs (loop6): Directory bread(block 69) failed
[   89.660398][ T5667] FAT-fs (loop6): Directory bread(block 70) failed
[   89.661429][ T5667] FAT-fs (loop6): Directory bread(block 71) failed
[   89.662524][ T5667] FAT-fs (loop6): Directory bread(block 72) failed
[   89.663560][ T5667] FAT-fs (loop6): Directory bread(block 73) failed
[   89.774433][ T5672] netlink: 16 bytes leftover after parsing attributes in process `syz.6.331'.
[   89.776991][ T5672] netlink: 16 bytes leftover after parsing attributes in process `syz.6.331'.
[   90.265103][  T113] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[   90.458817][  T113] usb 1-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30
[   90.460607][  T113] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[   90.462365][  T113] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   90.463971][  T113] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[   90.466892][  T113] usb 1-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40
[   90.468410][  T113] usb 1-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0
[   90.469678][  T113] usb 1-1: Manufacturer: syz
[   90.471565][  T113] usb 1-1: config 0 descriptor??
[   91.031818][  T113] appleir 0003:05AC:8243.0001: item fetching failed at offset 0/1
[   91.033501][  T113] appleir 0003:05AC:8243.0001: parse failed
[   91.036764][  T113] appleir: probe of 0003:05AC:8243.0001 failed with error -22
[   91.246916][  T113] usb 1-1: USB disconnect, device number 5
[   93.106176][ T5701] loop0: detected capacity change from 0 to 128
[   93.112499][ T5701] EXT4-fs (loop0): Test dummy encryption mode enabled
[   93.115054][ T5701] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[   93.116685][ T5701] ext4 filesystem being mounted at /87/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[   93.146440][ T4329] EXT4-fs (loop0): unmounting filesystem.
[   93.491598][ T5705] loop0: detected capacity change from 0 to 131072
[   93.498468][ T5705] F2FS-fs (loop0): Wrong NAT boundary, start(2560) end(3584) blocks(0)
[   93.499809][ T5705] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[   93.501366][ T5705] F2FS-fs (loop0): invalid crc value
[   93.504221][ T5705] F2FS-fs (loop0): Found nat_bits in checkpoint
[   93.511884][ T5705] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[   93.513122][ T5705] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4
[   93.528204][ T4329] F2FS-fs (loop0): f2fs_remove_inode_page: inconsistent i_blocks, ino:7, iblocks:1407713280
[   94.868641][ T5717] loop0: detected capacity change from 0 to 512
[   94.885752][ T5717] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[   94.887417][ T5717] ext4 filesystem being mounted at /91/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[   99.385855][ T4329] EXT4-fs (loop0): unmounting filesystem.
[   99.844818][   T27] audit: type=1326 audit(2000000051.890:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5753 comm="syz.0.356" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff803789e8 code=0x7ffc0000
[   99.848950][   T27] audit: type=1326 audit(2000000051.890:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5753 comm="syz.0.356" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff803789e8 code=0x7ffc0000
[   99.857214][   T27] audit: type=1326 audit(2000000051.890:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5753 comm="syz.0.356" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff803789e8 code=0x7ffc0000
[   99.945815][   T27] audit: type=1326 audit(2000000051.909:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5753 comm="syz.0.356" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=292 compat=0 ip=0xffff803789e8 code=0x7ffc0000
[   99.962190][   T27] audit: type=1326 audit(2000000051.909:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5753 comm="syz.0.356" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff803789e8 code=0x7ffc0000
[   99.966297][   T27] audit: type=1326 audit(2000000051.909:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5753 comm="syz.0.356" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff803789e8 code=0x7ffc0000
[  100.279731][ T5766] netlink: 'syz.2.359': attribute type 13 has an invalid length.
[  100.281071][ T5766] netlink: 'syz.2.359': attribute type 17 has an invalid length.
[  100.288649][   T27] audit: type=1326 audit(2000000051.909:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5753 comm="syz.0.356" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=436 compat=0 ip=0xffff803789e8 code=0x7ffc0000
[  100.296140][   T27] audit: type=1326 audit(2000000051.909:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5753 comm="syz.0.356" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=94 compat=0 ip=0xffff803789e8 code=0x7ffc0000
[  100.323581][ T5766] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  100.390769][ T5766] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  100.482016][ T5776] netlink: 27 bytes leftover after parsing attributes in process `syz.0.360'.
[  100.489526][ T5776] virt_wifi0: mtu less than device minimum
[  100.822803][ T5798] loop6: detected capacity change from 0 to 2048
[  100.828904][ T5728] loop1: detected capacity change from 0 to 131072
[  100.835617][ T5728] F2FS-fs (loop1): invalid crc value
[  100.861184][ T5728] F2FS-fs (loop1): Found nat_bits in checkpoint
[  100.882600][ T5798] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  100.884171][ T5798] ext4 filesystem being mounted at /24/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  100.905629][ T5733] loop5: detected capacity change from 0 to 131072
[  100.909388][ T5733] F2FS-fs (loop5): Test dummy encryption mode enabled
[  100.911624][ T5733] F2FS-fs (loop5): invalid crc value
[  100.923059][ T5728] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  100.924381][ T5733] F2FS-fs (loop5): Found nat_bits in checkpoint
[  100.931334][ T5733] F2FS-fs (loop5): f2fs_check_nid_range: out-of-range nid=80000000, run fsck to fix.
[  100.937855][ T5733] F2FS-fs (loop5): Cannot turn on quotas: -2 on 0
[  100.938947][ T5733] F2FS-fs (loop5): Start checkpoint disabled!
[  100.942401][ T5733] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6
[  100.959928][ T5819] loop0: detected capacity change from 0 to 512
[  100.972880][ T5819] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  100.987298][ T4464] F2FS-fs (loop5): f2fs_check_nid_range: out-of-range nid=80000000, run fsck to fix.
[  101.007706][ T5819] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=200ec018, mo2=0002]
[  101.009383][ T5819] System zones: 1-12
[  101.011874][ T5819] EXT4-fs (loop0): 1 truncate cleaned up
[  101.012830][ T5819] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  101.252227][ T5211] EXT4-fs (loop6): unmounting filesystem.
[  101.858598][ T4329] EXT4-fs error (device loop0): ext4_readdir:263: inode #11: block 54: comm syz-executor: path /101/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  102.267877][ T4329] EXT4-fs error (device loop0): ext4_empty_dir:3177: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  102.275278][ T4329] EXT4-fs error (device loop0): ext4_readdir:263: inode #11: block 54: comm syz-executor: path /101/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  102.295972][ T4329] EXT4-fs error (device loop0): ext4_empty_dir:3177: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  102.310903][ T4329] EXT4-fs error (device loop0): ext4_readdir:263: inode #11: block 54: comm syz-executor: path /101/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  102.317048][ T4329] EXT4-fs error (device loop0): ext4_empty_dir:3177: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  102.323144][ T4329] EXT4-fs error (device loop0): ext4_readdir:263: inode #11: block 54: comm syz-executor: path /101/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  102.329308][ T4329] EXT4-fs error (device loop0): ext4_empty_dir:3177: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  102.335669][ T4329] EXT4-fs error (device loop0): ext4_readdir:263: inode #11: block 54: comm syz-executor: path /101/file2/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  102.340903][ T4329] EXT4-fs error (device loop0): ext4_empty_dir:3177: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  102.420783][ T5871] loop6: detected capacity change from 0 to 512
[  102.498279][ T5871] EXT4-fs (loop6): VFS: Can't find ext4 filesystem
[  102.549818][ T5878] loop5: detected capacity change from 0 to 512
[  102.551300][ T5878] EXT4-fs: Ignoring removed orlov option
[  102.588643][ T5878] EXT4-fs (loop5): Test dummy encryption mode enabled
[  102.589825][ T5878] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  102.605824][ T5878] EXT4-fs (loop5): 1 truncate cleaned up
[  102.606901][ T5878] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  102.831606][ T5897] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  103.138347][ T4599] EXT4-fs (loop5): unmounting filesystem.
[  103.220707][ T5904] usb usb7: usbfs: process 5904 (syz.6.391) did not claim interface 0 before use
[  103.442365][ T5829] EXT4-fs (loop0): unmounting filesystem.
[  103.931221][ T4334] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  103.935565][ T4334] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  103.941561][ T4334] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  103.949705][ T4334] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  103.952006][ T4334] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  103.953422][ T4334] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  104.020380][ T4653] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.036168][   T27] audit: type=1326 audit(2000000055.811:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5944 comm="syz.5.402" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffac7789e8 code=0x7ffc0000
[  104.047448][   T27] audit: type=1326 audit(2000000055.830:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5944 comm="syz.5.402" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffffac7789e8 code=0x7ffc0000
[  104.123421][ T5922] loop1: detected capacity change from 0 to 40427
[  104.134791][ T5922] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  104.142412][ T5922] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  104.148895][ T5922] F2FS-fs (loop1): invalid crc value
[  104.169446][ T4653] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.175468][ T5922] F2FS-fs (loop1): Found nat_bits in checkpoint
[  104.203109][ T5922] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  104.204894][ T5922] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  104.254358][ T4653] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.574442][ T4653] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.926390][ T5935] chnl_net:caif_netlink_parms(): no params data found
[  104.984215][ T5935] bridge0: port 1(bridge_slave_0) entered blocking state
[  104.985658][ T5935] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.988387][ T5935] device bridge_slave_0 entered promiscuous mode
[  104.996301][ T5935] bridge0: port 2(bridge_slave_1) entered blocking state
[  105.002889][ T5935] bridge0: port 2(bridge_slave_1) entered disabled state
[  105.008298][ T5935] device bridge_slave_1 entered promiscuous mode
[  105.030570][ T5935] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  105.036415][ T5935] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  105.142413][ T6002] loop5: detected capacity change from 0 to 1024
[  105.144119][ T6002] EXT4-fs: Ignoring removed orlov option
[  105.180242][ T6008] netlink: 'syz.2.412': attribute type 1 has an invalid length.
[  105.193173][ T6002] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  105.207787][ T6013] loop2: detected capacity change from 0 to 256
[  105.214451][ T6013] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[  105.222216][ T5935] team0: Port device team_slave_0 added
[  105.225471][ T5935] team0: Port device team_slave_1 added
[  105.250877][ T6002] EXT4-fs (loop5): re-mounted. Quota mode: none.
[  105.272524][ T6002] EXT4-fs (loop5): re-mounted. Quota mode: none.
[  105.291781][ T4599] EXT4-fs error (device loop5): ext4_readdir:263: inode #11: block 39: comm syz-executor: path /45/file1/lost+found: bad entry in directory: directory entry overrun - offset=0, inode=0, rec_len=58624, size=1024 fake=0
[  105.296068][ T4599] EXT4-fs error (device loop5): ext4_empty_dir:3177: inode #11: block 39: comm syz-executor: bad entry in directory: directory entry overrun - offset=7168, inode=0, rec_len=58624, size=1024 fake=0
[  105.301036][ T4599] EXT4-fs error (device loop5): ext4_readdir:263: inode #11: block 39: comm syz-executor: path /45/file1/lost+found: bad entry in directory: directory entry overrun - offset=0, inode=0, rec_len=58624, size=1024 fake=0
[  105.305248][ T4599] EXT4-fs error (device loop5): ext4_empty_dir:3177: inode #11: block 39: comm syz-executor: bad entry in directory: directory entry overrun - offset=7168, inode=0, rec_len=58624, size=1024 fake=0
[  105.309492][ T5935] batman_adv: batadv0: Adding interface: batadv_slave_0
[  105.311515][ T5935] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  105.312357][ T4599] EXT4-fs error (device loop5): ext4_readdir:263: inode #11: block 39: comm syz-executor: path /45/file1/lost+found: bad entry in directory: directory entry overrun - offset=0, inode=0, rec_len=58624, size=1024 fake=0
[  105.316239][ T5935] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  105.321185][ T4599] EXT4-fs error (device loop5): ext4_empty_dir:3177: inode #11: block 39: comm syz-executor: bad entry in directory: directory entry overrun - offset=7168, inode=0, rec_len=58624, size=1024 fake=0
[  105.322576][ T5935] batman_adv: batadv0: Adding interface: batadv_slave_1
[  105.325926][ T5935] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  105.330656][ T5935] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  105.341150][ T4599] EXT4-fs error (device loop5): ext4_readdir:263: inode #11: block 39: comm syz-executor: path /45/file1/lost+found: bad entry in directory: directory entry overrun - offset=0, inode=0, rec_len=58624, size=1024 fake=0
[  105.346396][ T4599] EXT4-fs error (device loop5): ext4_empty_dir:3177: inode #11: block 39: comm syz-executor: bad entry in directory: directory entry overrun - offset=7168, inode=0, rec_len=58624, size=1024 fake=0
[  105.350839][ T4599] EXT4-fs error (device loop5): ext4_readdir:263: inode #11: block 39: comm syz-executor: path /45/file1/lost+found: bad entry in directory: directory entry overrun - offset=0, inode=0, rec_len=58624, size=1024 fake=0
[  105.358454][ T4599] EXT4-fs error (device loop5): ext4_empty_dir:3177: inode #11: block 39: comm syz-executor: bad entry in directory: directory entry overrun - offset=7168, inode=0, rec_len=58624, size=1024 fake=0
[  105.366599][ T6019] loop2: detected capacity change from 0 to 512
[  105.367915][ T6019] ext4: Unknown parameter 'nouser_xattr'
[  105.399027][ T5726] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  105.484788][ T5935] device hsr_slave_0 entered promiscuous mode
[  105.546487][ T5935] device hsr_slave_1 entered promiscuous mode
[  105.588937][ T5935] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  105.591454][ T5935] Cannot create hsr debugfs directory
[  105.745655][ T6023] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  105.747262][ T6023] ext4 filesystem being mounted at /78/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  105.888498][ T6023] 8021q: VLANs not supported on vcan0
[  105.934948][ T4599] EXT4-fs (loop5): unmounting filesystem.
[  105.955620][ T4325] EXT4-fs (loop1): unmounting filesystem.
[  106.028393][ T5935] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  106.123456][ T4328] Bluetooth: hci2: command 0x0409 tx timeout
[  106.148001][ T5935] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  106.168244][ T6049] set_capacity_and_notify: 1 callbacks suppressed
[  106.168254][ T6049] loop6: detected capacity change from 0 to 256
[  106.173895][ T4334] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  106.180117][ T4334] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  106.182181][ T4334] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  106.194100][ T4334] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  106.197569][ T4334] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  106.198076][ T6049] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  106.201245][ T4334] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  106.246388][ T5935] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  106.269807][ T6049] FAT-fs (loop6): error, corrupted file size (i_pos 196, 16779264)
[  106.271224][ T6049] FAT-fs (loop6): Filesystem has been set read-only
[  106.285967][ T5935] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  106.484805][ T6050] chnl_net:caif_netlink_parms(): no params data found
[  106.641014][ T6063] loop1: detected capacity change from 0 to 40427
[  107.000826][ T5935] 8021q: adding VLAN 0 to HW filter on device bond0
[  107.005934][ T5935] 8021q: adding VLAN 0 to HW filter on device team0
[  107.019856][ T5935] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  107.025718][ T6063] F2FS-fs (loop1): invalid crc value
[  107.025910][ T5935] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  107.033815][ T6063] F2FS-fs (loop1): Found nat_bits in checkpoint
[  107.048026][ T6063] F2FS-fs (loop1): Start checkpoint disabled!
[  107.051066][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  107.053050][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  107.055141][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  107.057074][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  107.059928][ T4394] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.061097][ T4394] bridge0: port 1(bridge_slave_0) entered forwarding state
[  107.071317][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  107.073359][ T6063] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  107.081633][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  107.085712][ T4394] bridge0: port 2(bridge_slave_1) entered blocking state
[  107.086974][ T4394] bridge0: port 2(bridge_slave_1) entered forwarding state
[  107.088509][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  107.090382][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  107.092106][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  107.093891][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  107.095735][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  107.097494][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  107.099146][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  107.100535][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  107.102170][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  107.103692][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  107.105180][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  107.107702][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  107.109325][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  107.632304][ T6050] bridge0: port 1(bridge_slave_0) entered blocking state
[  107.633691][ T6050] bridge0: port 1(bridge_slave_0) entered disabled state
[  107.636772][ T6050] device bridge_slave_0 entered promiscuous mode
[  107.645016][ T6050] bridge0: port 2(bridge_slave_1) entered blocking state
[  107.646239][ T6050] bridge0: port 2(bridge_slave_1) entered disabled state
[  107.652607][ T6050] device bridge_slave_1 entered promiscuous mode
[  107.703116][ T6050] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  107.710494][ T6050] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  107.734592][ T6050] team0: Port device team_slave_0 added
[  107.743745][ T6050] team0: Port device team_slave_1 added
[  107.758545][ T6050] batman_adv: batadv0: Adding interface: batadv_slave_0
[  107.759680][ T6050] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  107.774870][ T6050] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  107.853681][ T6099] loop6: detected capacity change from 0 to 40427
[  107.864893][ T6099] F2FS-fs (loop6): Small segment_count (9 < 1 * 24)
[  107.869970][ T6099] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  107.884489][ T6099] F2FS-fs (loop6): Found nat_bits in checkpoint
[  108.247640][ T6099] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  108.248907][ T6099] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  108.306090][ T6099] syz.6.435: attempt to access beyond end of device
[  108.306090][ T6099] loop6: rw=2049, sector=53248, nr_sectors = 136 limit=40427
[  108.335318][ T4334] Bluetooth: hci2: command 0x041b tx timeout
[  108.360666][ T5211] syz-executor: attempt to access beyond end of device
[  108.360666][ T5211] loop6: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  108.424226][ T6050] batman_adv: batadv0: Adding interface: batadv_slave_1
[  108.425519][ T6050] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  108.429962][ T6050] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  108.431936][ T4328] Bluetooth: hci0: command 0x0409 tx timeout
[  108.627214][ T5935] 8021q: adding VLAN 0 to HW filter on device batadv0
[  108.644327][ T4560] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  108.646820][ T4560] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  108.943773][ T6144] binder: 6143:6144 ioctl 8004587d 0 returned -22
[  108.954610][ T6146] loop1: detected capacity change from 0 to 512
[  108.961085][ T6146] ext4: Unknown parameter 'uid>00000000000000000000'
[  108.967368][ T4653] device hsr_slave_0 left promiscuous mode
[  108.995859][ T5726] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  108.998479][ T4653] device hsr_slave_1 left promiscuous mode
[  109.076200][ T6154] xt_hashlimit: size too large, truncated to 1048576
[  109.083637][ T4653] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  109.084988][ T4653] batman_adv: batadv0: Removing interface: batadv_slave_0
[  109.086598][ T4653] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  109.088054][ T4653] batman_adv: batadv0: Removing interface: batadv_slave_1
[  109.089696][ T4653] device bridge_slave_1 left promiscuous mode
[  109.091987][ T4653] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.148159][ T4653] device bridge_slave_0 left promiscuous mode
[  109.149431][ T4653] bridge0: port 1(bridge_slave_0) entered disabled state
[  109.297056][ T4653] device veth1_macvtap left promiscuous mode
[  109.298267][ T4653] device veth0_macvtap left promiscuous mode
[  109.299562][ T4653] device veth1_vlan left promiscuous mode
[  109.300766][ T4653] device veth0_vlan left promiscuous mode
[  109.707539][ T6160] loop6: detected capacity change from 0 to 512
[  109.746636][ T6160] EXT2-fs (loop6): error: couldn't mount because of unsupported optional features (a240)
[  109.986258][ T6163] loop6: detected capacity change from 0 to 1024
[  109.995102][ T6163] EXT2-fs (loop6): error: couldn't mount RDWR because of unsupported optional features (310)
[  110.030945][ T6165] loop1: detected capacity change from 0 to 256
[  110.032461][ T6165] exfat: Deprecated parameter 'namecase'
[  110.049946][ T6165] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36df086c, utbl_chksum : 0xe619d30d)
[  110.448466][ T6174] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  110.450126][ T6174] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  110.557927][ T4334] Bluetooth: hci2: command 0x040f tx timeout
[  110.643566][ T4328] Bluetooth: hci0: command 0x041b tx timeout
[  111.890600][ T4653] team0 (unregistering): Port device team_slave_1 removed
[  112.104694][ T6196] xt_hashlimit: size too large, truncated to 1048576
[  112.140646][ T4653] team0 (unregistering): Port device team_slave_0 removed
[  112.322585][ T4653] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  112.546604][ T4653] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  112.780614][ T4334] Bluetooth: hci2: command 0x0419 tx timeout
[  112.866089][ T4328] Bluetooth: hci0: command 0x040f tx timeout
[  113.333811][ T6203] loop2: detected capacity change from 0 to 512
[  113.350380][ T6203] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  113.351917][ T6203] ext4 filesystem being mounted at /104/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  113.415474][ T4331] EXT4-fs (loop2): unmounting filesystem.
[  114.138877][ T4653] bond0 (unregistering): Released all slaves
[  114.481144][ T6050] device hsr_slave_0 entered promiscuous mode
[  114.522723][ T6050] device hsr_slave_1 entered promiscuous mode
[  114.565233][ T6050] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  114.566447][ T6050] Cannot create hsr debugfs directory
[  114.569178][    T7] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  114.621788][ T6208] netlink: 76 bytes leftover after parsing attributes in process `syz.2.465'.
[  114.636939][ T6216] loop1: detected capacity change from 0 to 512
[  114.638692][ T6216] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  114.649010][ T6216] EXT4-fs (loop1): 1 truncate cleaned up
[  114.650072][ T6216] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  114.839038][ T6050] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  114.863265][ T6231] xt_hashlimit: size too large, truncated to 1048576
[  114.887208][ T6050] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  114.945656][ T6233] loop2: detected capacity change from 0 to 256
[  115.937204][ T4334] Bluetooth: hci0: command 0x0419 tx timeout
[  115.980075][ T6050] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  116.023166][ T6050] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  116.098158][ T5592] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  116.099942][ T5592] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  116.120844][ T5592] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  116.122531][ T5592] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  116.124106][ T5592] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  116.130075][ T5592] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  116.165867][ T5935] device veth0_vlan entered promiscuous mode
[  116.184697][ T5935] device veth1_vlan entered promiscuous mode
[  116.223008][ T5592] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  116.224669][ T5592] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  116.226344][ T5592] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  116.228772][ T5592] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  116.238447][ T5935] device veth0_macvtap entered promiscuous mode
[  116.245110][ T5935] device veth1_macvtap entered promiscuous mode
[  116.259093][ T6050] 8021q: adding VLAN 0 to HW filter on device bond0
[  116.277215][ T5592] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  116.278871][ T5592] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  116.280238][ T5592] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  116.281650][ T5592] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  116.289965][ T6050] 8021q: adding VLAN 0 to HW filter on device team0
[  116.311661][ T5935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  116.313426][ T5935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  116.315164][ T5935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  116.316911][ T5935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  116.331100][ T5935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  116.332781][ T5935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  116.334447][ T5935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  116.336241][ T5935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  116.352716][ T5935] batman_adv: batadv0: Interface activated: batadv_slave_0
[  116.354926][ T5592] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  116.356603][ T5592] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  116.358140][ T5592] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  116.359635][ T5592] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  116.363193][ T5592] bridge0: port 1(bridge_slave_0) entered blocking state
[  116.364375][ T5592] bridge0: port 1(bridge_slave_0) entered forwarding state
[  116.417869][ T5592] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  116.419625][ T5592] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  116.421344][ T5592] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  116.423254][ T5592] bridge0: port 2(bridge_slave_1) entered blocking state
[  116.424586][ T5592] bridge0: port 2(bridge_slave_1) entered forwarding state
[  116.429418][ T5592] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  116.437567][ T5592] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  116.465384][ T5592] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  116.481262][ T5592] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  116.484573][ T5592] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  116.854952][ T5935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  116.862471][ T5935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  116.867223][ T5935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  116.871266][ T5935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  116.877524][ T5935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  116.881504][ T5935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  116.883837][ T5935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  116.890212][ T5935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  116.897184][ T5935] batman_adv: batadv0: Interface activated: batadv_slave_1
[  116.904376][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  116.906378][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  116.908089][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  116.909569][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  116.911005][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  116.912655][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  116.922651][ T5935] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  116.924410][ T5935] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  116.930501][ T5935] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  116.933225][ T5935] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  116.946296][  T493] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  116.949111][  T493] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  116.967464][ T6050] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  117.036924][ T4394] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.038577][ T4394] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.041897][ T4887] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  117.222717][ T4325] EXT4-fs (loop1): unmounting filesystem.
[  117.410465][ T4653] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.416421][  T493] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.417804][  T493] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.432278][ T5070] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  117.433986][ T5070] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  117.435356][ T5070] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  117.458524][ T6050] 8021q: adding VLAN 0 to HW filter on device batadv0
[  117.593976][ T4653] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.645351][ T6295] loop7: detected capacity change from 0 to 256
[  117.646779][ T6295] exfat: Deprecated parameter 'utf8'
[  117.647707][ T6295] exfat: Deprecated parameter 'namecase'
[  117.709143][ T6295] exFAT-fs (loop7): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc232f927, utbl_chksum : 0xe619d30d)
[  117.725627][ T6295] fuse: Bad value for 'fd'
[  117.762009][ T4653] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.832264][ T6311] loop7: detected capacity change from 0 to 4096
[  117.833751][ T6311] EXT4-fs: inline encryption not supported
[  117.834675][ T6311] EXT4-fs: Ignoring removed mblk_io_submit option
[  117.844301][ T6311] EXT4-fs: Ignoring removed bh option
[  117.849483][ T6311] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  117.868919][ T4653] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.881227][ T6311] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0002]
[  117.883023][ T6311] System zones: 0-5
[  117.903192][ T6311] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  117.906804][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  117.908435][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  117.926513][ T6050] device veth0_vlan entered promiscuous mode
[  117.929756][ T6050] device veth1_vlan entered promiscuous mode
[  117.931732][ T4541] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  117.933374][ T4541] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  117.934926][ T4541] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  117.937396][ T4541] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  117.939196][ T4541] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  118.032867][ T6325] process 'syz.1.482' launched './file1' with NULL argv: empty string added
[  118.391216][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  118.405530][ T6050] device veth0_macvtap entered promiscuous mode
[  118.421419][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  118.423080][    C0] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  118.423892][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  118.427428][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  118.442961][ T6050] device veth1_macvtap entered promiscuous mode
[  118.486478][ T6050] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  118.516069][ T6050] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.549587][ T6050] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  118.611355][ T6050] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.667710][ T6050] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  118.824411][ T6050] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.864090][ T6050] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  118.865928][ T6050] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.867962][ T6050] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  118.870350][ T6050] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.882198][ T6050] batman_adv: batadv0: Interface activated: batadv_slave_0
[  118.882772][ T5935] EXT4-fs (loop7): unmounting filesystem.
[  118.890448][ T5070] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  118.892224][ T5070] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  118.897917][ T5070] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  118.916206][ T6050] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  118.920740][ T6050] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.924276][ T6050] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  118.930614][ T6050] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.934520][ T6050] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  118.940999][ T6050] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.943553][ T6050] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  118.955231][ T6050] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.959239][ T6050] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  118.964253][ T6050] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  118.970337][ T6050] batman_adv: batadv0: Interface activated: batadv_slave_1
[  118.984459][ T5070] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  118.986372][ T5070] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  118.990179][ T6050] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  118.993857][ T6050] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  118.997616][ T6050] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  119.001408][ T6050] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  119.121324][   T27] kauditd_printk_skb: 5 callbacks suppressed
[  119.121335][   T27] audit: type=1326 audit(2000000069.932:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6351 comm="syz.7.488" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff87b789e8 code=0x7ffc0000
[  119.129198][   T27] audit: type=1326 audit(2000000069.932:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6351 comm="syz.7.488" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff87b789e8 code=0x7ffc0000
[  119.133386][   T27] audit: type=1326 audit(2000000069.932:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6351 comm="syz.7.488" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff87b789e8 code=0x7ffc0000
[  119.137616][   T27] audit: type=1326 audit(2000000069.932:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6351 comm="syz.7.488" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffff87b789e8 code=0x7ffc0000
[  119.174703][   T27] audit: type=1326 audit(2000000069.932:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6351 comm="syz.7.488" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff87b789e8 code=0x7ffc0000
[  119.178817][   T27] audit: type=1326 audit(2000000069.932:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6351 comm="syz.7.488" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff87b789e8 code=0x7ffc0000
[  119.219970][   T27] audit: type=1326 audit(2000000069.932:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6351 comm="syz.7.488" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff87b789e8 code=0x7ffc0000
[  119.224106][   T27] audit: type=1326 audit(2000000069.932:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6351 comm="syz.7.488" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=88 compat=0 ip=0xffff87b789e8 code=0x7ffc0000
[  119.231402][ T4394] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.232801][ T4394] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.249495][ T4394] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  119.252030][   T27] audit: type=1326 audit(2000000069.932:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6351 comm="syz.7.488" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff87b789e8 code=0x7ffc0000
[  119.267141][   T27] audit: type=1326 audit(2000000069.932:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6351 comm="syz.7.488" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=436 compat=0 ip=0xffff87b789e8 code=0x7ffc0000
[  119.310920][ T6358] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  119.315534][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.316954][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.318340][ T4541] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  120.001947][ T6393] loop1: detected capacity change from 0 to 256
[  120.070456][ T6393] FAT-fs (loop1): Directory bread(block 64) failed
[  120.072793][ T6393] FAT-fs (loop1): Directory bread(block 65) failed
[  120.078563][ T6393] FAT-fs (loop1): Directory bread(block 66) failed
[  120.084374][ T6393] FAT-fs (loop1): Directory bread(block 67) failed
[  120.087457][ T6393] FAT-fs (loop1): Directory bread(block 68) failed
[  120.092465][ T6393] FAT-fs (loop1): Directory bread(block 69) failed
[  120.098020][ T6393] FAT-fs (loop1): Directory bread(block 70) failed
[  120.100772][ T6393] FAT-fs (loop1): Directory bread(block 71) failed
[  120.104330][ T6393] FAT-fs (loop1): Directory bread(block 72) failed
[  120.107136][ T6393] FAT-fs (loop1): Directory bread(block 73) failed
[  120.254185][ T6406] loop1: detected capacity change from 0 to 256
[  120.263122][ T6406] exFAT-fs (loop1): failed to load upcase table (idx : 0x0001207b, chksum : 0x1e8dde4d, utbl_chksum : 0xe619d30d)
[  121.360932][ T6440] xt_hashlimit: size too large, truncated to 1048576
[  121.620031][ T6436] loop2: detected capacity change from 0 to 40427
[  121.639026][ T6436] F2FS-fs (loop2): Insane cp_payload (553648128 >= 504)
[  121.640476][ T6436] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  121.641880][ T6436] F2FS-fs (loop2): build fault injection attr: rate: 17008, type: 0x3ffff
[  121.643196][ T6436] F2FS-fs (loop2): build fault injection attr: rate: 0, type: 0x1f8
[  121.655934][ T6436] F2FS-fs (loop2): invalid crc value
[  121.686017][ T6436] F2FS-fs (loop2): Found nat_bits in checkpoint
[  121.704174][ T6436] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  121.705439][ T6436] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  121.709980][ T6436] F2FS-fs (loop2): switch discard_unit option is not allowed
[  122.507951][ T4653] device hsr_slave_0 left promiscuous mode
[  122.558710][ T4653] device hsr_slave_1 left promiscuous mode
[  122.601420][ T6441] loop8: detected capacity change from 0 to 131072
[  122.619886][ T6441] F2FS-fs (loop8): Wrong NAT boundary, start(2560) end(3584) blocks(0)
[  122.621287][ T6441] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[  122.645308][ T4653] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  122.652255][ T4653] batman_adv: batadv0: Removing interface: batadv_slave_0
[  122.652474][ T6441] F2FS-fs (loop8): invalid crc value
[  122.655347][ T4653] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  122.659011][ T4653] batman_adv: batadv0: Removing interface: batadv_slave_1
[  122.661492][ T4653] device bridge_slave_1 left promiscuous mode
[  122.671565][ T4653] bridge0: port 2(bridge_slave_1) entered disabled state
[  122.699987][ T6441] F2FS-fs (loop8): Found nat_bits in checkpoint
[  122.727809][ T4653] device bridge_slave_0 left promiscuous mode
[  122.731259][ T6441] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[  122.732394][ T6441] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e4
[  122.732473][ T4653] bridge0: port 1(bridge_slave_0) entered disabled state
[  122.806446][ T6050] F2FS-fs (loop8): f2fs_remove_inode_page: inconsistent i_blocks, ino:7, iblocks:1407713280
[  122.901528][ T4653] device veth0_macvtap left promiscuous mode
[  122.903872][ T4653] device veth1_vlan left promiscuous mode
[  122.904868][ T4653] device veth0_vlan left promiscuous mode
[  123.477912][ T6503] loop8: detected capacity change from 0 to 40427
[  123.489012][ T6503] F2FS-fs (loop8): Invalid segment/section count (24 != 24 * 3)
[  123.492197][ T6503] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[  123.589900][ T6503] F2FS-fs (loop8): Unrecognized mount option "whint_mode=user-based" or missing value
[  124.512150][ T6517] loop1: detected capacity change from 0 to 512
[  124.545750][ T6517] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  124.554319][ T6517] ext4 filesystem being mounted at /106/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  124.588922][ T4325] EXT4-fs (loop1): unmounting filesystem.
[  124.889623][ T6529] loop1: detected capacity change from 0 to 512
[  124.922314][ T6529] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  124.925720][ T6529] ext4 filesystem being mounted at /109/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  125.856285][ T4325] EXT4-fs (loop1): unmounting filesystem.
[  126.043724][ T6543] loop1: detected capacity change from 0 to 40427
[  126.049380][ T6543] F2FS-fs (loop1): Invalid log_blocksize (64), supports only 12
[  126.051500][ T6543] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  126.053591][ T6543] F2FS-fs (loop1): invalid crc value
[  126.060133][ T6543] F2FS-fs (loop1): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 10241044815247771109)
[  126.073643][ T6543] F2FS-fs (loop1): Cannot turn on quotas: -2 on 1
[  126.081125][ T6543] F2FS-fs (loop1): Start checkpoint disabled!
[  126.095159][ T6543] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  126.096856][ T6543] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  126.140673][ T4653] team0 (unregistering): Port device team_slave_1 removed
[  126.579024][ T4653] team0 (unregistering): Port device team_slave_0 removed
[  126.630008][    C0] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  126.769922][ T4653] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  126.983977][ T4653] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  128.864637][ T4653] bond0 (unregistering): Released all slaves
[  129.207084][ T6539] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  129.208381][ T6564] loop7: detected capacity change from 0 to 256
[  129.229697][ T6565] loop2: detected capacity change from 0 to 512
[  129.348118][ T6565] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.537: invalid indirect mapped block 4294967295 (level 1)
[  129.352442][ T6565] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.537: invalid indirect mapped block 4294967295 (level 1)
[  129.359568][ T6565] EXT4-fs (loop2): 2 truncates cleaned up
[  129.360524][ T6565] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  129.370072][ T6564] FAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  129.601220][ T6565] EXT4-fs error (device loop2): ext4_search_dir:1549: inode #2: block 13: comm syz.2.537: bad entry in directory: rec_len is smaller than minimal - offset=44, inode=12, rec_len=4, size=1024 fake=0
[  129.655406][ T4331] EXT4-fs (loop2): unmounting filesystem.
[  129.669104][ T6583] xt_hashlimit: size too large, truncated to 1048576
[  129.844187][ T6600] loop6: detected capacity change from 0 to 512
[  129.852615][ T6600] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  129.860171][ T6600] EXT4-fs (loop6): 1 truncate cleaned up
[  129.861239][ T6600] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  129.950787][ T5211] EXT4-fs (loop6): unmounting filesystem.
[  130.118519][ T6617] loop6: detected capacity change from 0 to 512
[  130.132898][ T6617] EXT4-fs (loop6): unable to read superblock
[  130.235290][ T6625] loop2: detected capacity change from 0 to 512
[  130.266034][ T6625] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  130.267635][ T6625] ext4 filesystem being mounted at /131/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  130.351859][ T6625] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1126: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  130.637925][ T6632] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  130.639643][ T6632] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  130.648995][ T6625] EXT4-fs (loop2): Remounting filesystem read-only
[  130.824737][ T6647] loop1: detected capacity change from 0 to 512
[  130.847969][ T6647] EXT4-fs error (device loop1): ext4_iget_extra_inode:4763: inode #15: comm syz.1.558: corrupted in-inode xattr
[  130.859986][ T6647] EXT4-fs error (device loop1): ext4_orphan_get:1410: comm syz.1.558: couldn't read orphan inode 15 (err -117)
[  130.864680][ T6647] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  131.841441][ T4325] EXT4-fs (loop1): unmounting filesystem.
[  131.948462][ T6657] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  131.955554][ T6657] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  131.970973][ T2061] ieee802154 phy0 wpan0: encryption failed: -22
[  131.972029][ T2061] ieee802154 phy1 wpan1: encryption failed: -22
[  132.024088][ T6661] loop1: detected capacity change from 0 to 512
[  132.049002][ T6661] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  132.056478][ T6661] EXT4-fs (loop1): 1 truncate cleaned up
[  132.057481][ T6661] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  132.068583][ T6661] EXT4-fs error (device loop1): ext4_find_dest_de:2115: inode #2: block 13: comm syz.1.560: bad entry in directory: '.' directory cannot be the last in data block - offset=0, inode=2, rec_len=1024, size=1024 fake=1
[  132.125183][ T4325] EXT4-fs (loop1): unmounting filesystem.
[  132.243046][ T4331] EXT4-fs (loop2): unmounting filesystem.
[  133.135373][ T6700] loop8: detected capacity change from 0 to 4096
[  133.138126][ T6700] ext4: Unknown parameter 'defcontext'
[  133.181840][ T5726] I/O error, dev loop8, sector 3968 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  133.323972][ T6692] loop6: detected capacity change from 0 to 40427
[  133.333066][ T6692] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  133.335576][ T6692] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  133.342549][ T6692] F2FS-fs (loop6): invalid crc value
[  133.355786][ T6692] F2FS-fs (loop6): Found nat_bits in checkpoint
[  133.807857][ T6692] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  133.809289][ T6692] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  135.348491][ T6756] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  135.353144][ T6756] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  135.361409][ T6746] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  135.362904][ T6746] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  135.384829][ T6746] loop7: detected capacity change from 0 to 16
[  135.403959][ T6746] erofs: (device loop7): mounted with root inode @ nid 36.
[  135.638982][ T6776] loop6: detected capacity change from 0 to 4096
[  135.648252][ T6776] ext4: Unknown parameter 'nouser_xattr'
[  135.939248][ T6776] loop6: detected capacity change from 0 to 40427
[  135.945761][ T6776] F2FS-fs (loop6): Invalid SB checksum offset: 0
[  135.946794][ T6776] F2FS-fs (loop6): Can't find valid F2FS filesystem in 2th superblock
[  135.952989][ T6776] F2FS-fs (loop6): invalid crc value
[  135.969458][ T6776] F2FS-fs (loop6): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  135.991678][ T6776] F2FS-fs (loop6): Try to recover 2th superblock, ret: 0
[  135.992960][ T6776] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  136.118592][ T6806] xt_hashlimit: size too large, truncated to 1048576
[  137.117467][ T6854] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  137.124357][ T6854] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  137.140422][ T6786] loop2: detected capacity change from 0 to 131072
[  137.445926][ T6871] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  137.458577][ T6871] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  137.739222][ T6879] loop1: detected capacity change from 0 to 512
[  137.748093][ T6879] EXT4-fs: Ignoring removed mblk_io_submit option
[  137.755575][ T6879] EXT4-fs: Ignoring removed mblk_io_submit option
[  137.761555][ T6879] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  137.778211][ T6879] EXT4-fs (loop1): 1 truncate cleaned up
[  137.779340][ T6879] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  137.913761][ T6871] loop2: detected capacity change from 0 to 40427
[  137.922734][ T4325] EXT4-fs (loop1): unmounting filesystem.
[  138.008951][ T6871] F2FS-fs (loop2): Insane cp_payload (553648128 >= 504)
[  138.010125][ T6871] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  138.014826][ T6871] F2FS-fs (loop2): build fault injection attr: rate: 17008, type: 0x3ffff
[  138.018606][ T6871] F2FS-fs (loop2): build fault injection attr: rate: 0, type: 0x1f8
[  138.026481][ T6871] F2FS-fs (loop2): invalid crc value
[  138.041915][ T6871] F2FS-fs (loop2): Found nat_bits in checkpoint
[  138.397746][ T6871] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  138.398977][ T6871] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  139.011900][ T6927] loop7: detected capacity change from 0 to 512
[  139.042129][ T6927] EXT4-fs: Ignoring removed nobh option
[  139.043508][ T6927] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  139.048909][ T6927] EXT4-fs (loop7): 1 truncate cleaned up
[  139.049966][ T6927] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  139.272702][ T5935] EXT4-fs (loop7): unmounting filesystem.
[  139.275105][ T6940] loop8: detected capacity change from 0 to 512
[  139.316712][ T6940] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  139.328512][ T6940] EXT4-fs (loop8): 1 truncate cleaned up
[  139.329548][ T6940] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  139.333713][ T6940] EXT4-fs error (device loop8): ext4_find_dest_de:2115: inode #2: block 13: comm syz.8.607: bad entry in directory: '.' directory cannot be the last in data block - offset=0, inode=2, rec_len=1024, size=1024 fake=1
[  139.418607][ T6050] EXT4-fs (loop8): unmounting filesystem.
[  139.509557][ T6935] loop2: detected capacity change from 0 to 32768
[  139.563174][ T6935]  loop2: p3 < > p4 < >
[  140.143764][ T5817] udevd[5817]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  140.143818][ T5726] udevd[5726]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[  140.817289][ T6990] loop7: detected capacity change from 0 to 256
[  141.825614][ T7002] loop8: detected capacity change from 0 to 40427
[  142.058557][ T7002] F2FS-fs (loop8): Fix alignment : internally, start(4096) end(16896) block(12288)
[  142.060493][ T7002] F2FS-fs (loop8): Fix alignment : internally, start(4096) end(16896) block(12288)
[  142.062093][ T7002] F2FS-fs (loop8): Unrecognized mount option "prjquota=resuid" or missing value
[  142.370335][    C0] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  142.443408][ T7004] loop7: detected capacity change from 0 to 256
[  142.470456][ T7004] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[  143.127849][ T7023] loop8: detected capacity change from 0 to 256
[  143.134936][ T7023] exFAT-fs (loop8): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  143.508744][ T7023] exFAT-fs (loop8): hint_cluster is invalid (17)
[  144.318152][ T7062] netlink: 28 bytes leftover after parsing attributes in process `syz.6.638'.
[  144.319586][ T7062] netlink: 28 bytes leftover after parsing attributes in process `syz.6.638'.
[  144.320847][ T7062] netlink: 28 bytes leftover after parsing attributes in process `syz.6.638'.
[  144.322397][ T7062] netlink: 28 bytes leftover after parsing attributes in process `syz.6.638'.
[  144.330895][ T7062] netlink: 28 bytes leftover after parsing attributes in process `syz.6.638'.
[  144.332557][ T7062] netlink: 28 bytes leftover after parsing attributes in process `syz.6.638'.
[  144.333852][ T7062] netlink: 28 bytes leftover after parsing attributes in process `syz.6.638'.
[  144.335603][ T7062] netlink: 28 bytes leftover after parsing attributes in process `syz.6.638'.
[  144.339409][ T7062] netlink: 28 bytes leftover after parsing attributes in process `syz.6.638'.
[  144.341131][ T7062] netlink: 28 bytes leftover after parsing attributes in process `syz.6.638'.
[  144.349091][ T7062] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  144.351268][ T7062] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  144.352506][ T7062] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  146.133356][ T7091] xt_hashlimit: size too large, truncated to 1048576
[  146.164858][ T7095] netlink: 'syz.1.646': attribute type 4 has an invalid length.
[  146.386253][ T7106] xt_NFQUEUE: number of total queues is 0
[  146.410410][ T7106] loop8: detected capacity change from 0 to 512
[  146.933225][ T7106] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  146.935118][ T7106] ext4 filesystem being mounted at /41/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  147.512066][ T6050] EXT4-fs (loop8): unmounting filesystem.
[  148.800122][ T7151] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  148.801654][ T7151] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  149.339047][ T7167] loop2: detected capacity change from 0 to 128
[  149.340726][ T7167] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  149.347310][ T7167] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  150.175667][ T7184] loop2: detected capacity change from 0 to 512
[  150.177185][ T7184] EXT4-fs: Ignoring removed i_version option
[  150.455513][ T7184] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  150.457057][ T7184] ext4 filesystem being mounted at /149/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  150.517390][ T4331] EXT4-fs (loop2): unmounting filesystem.
[  150.777942][ T7174] loop8: detected capacity change from 0 to 131072
[  151.087254][ T7174] F2FS-fs (loop8): invalid crc value
[  151.172949][ T7174] F2FS-fs (loop8): Found nat_bits in checkpoint
[  151.205677][ T7174] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e4
[  152.060944][ T7238] loop1: detected capacity change from 0 to 128
[  152.549550][ T7248] ipt_CLUSTERIP: Please specify destination IP
[  152.578823][ T7198] loop2: detected capacity change from 0 to 131072
[  152.591503][ T7198] F2FS-fs (loop2): Invalid log sectorsize (67108873)
[  152.592837][ T7198] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  152.611990][ T7198] F2FS-fs (loop2): invalid crc value
[  152.638697][ T7198] F2FS-fs (loop2): Found nat_bits in checkpoint
[  152.652386][ T7198] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  152.653516][ T7198] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4
[  152.698430][ T7198] F2FS-fs (loop2): inconsistent node block, nid:8, node_footer[nid:5,ino:5,ofs:0,cpver:1219692001,blkaddr:15361]
[  153.023877][ T7262] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  153.034613][ T7262] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  153.372200][ T7270] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  153.377548][ T7270] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  153.901827][   T27] kauditd_printk_skb: 1 callbacks suppressed
[  153.901862][   T27] audit: type=1107 audit(2000000102.480:29): pid=7274 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  154.143665][ T7289] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  154.149170][ T7289] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  154.850216][ T7327] xt_hashlimit: size too large, truncated to 1048576
[  155.584157][ T7360] loop7: detected capacity change from 0 to 128
[  156.092261][ T7385] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  156.098268][ T7385] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  156.311259][ T7391] xt_hashlimit: size too large, truncated to 1048576
[  156.665663][ T7404] loop1: detected capacity change from 0 to 512
[  156.708628][ T7404] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  156.710254][ T7404] ext4 filesystem being mounted at /151/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  156.757782][ T7404] EXT4-fs error (device loop1): ext4_do_update_inode:5279: inode #2: comm syz.1.699: corrupted inode contents
[  156.794488][ T7404] EXT4-fs error (device loop1): ext4_dirty_inode:6156: inode #2: comm syz.1.699: mark_inode_dirty error
[  156.806879][ T7404] EXT4-fs error (device loop1): ext4_do_update_inode:5279: inode #2: comm syz.1.699: corrupted inode contents
[  156.826819][ T7412] EXT4-fs error (device loop1): ext4_do_update_inode:5279: inode #2: comm syz.1.699: corrupted inode contents
[  156.853491][ T7412] EXT4-fs error (device loop1): ext4_dirty_inode:6156: inode #2: comm syz.1.699: mark_inode_dirty error
[  156.868882][ T7412] EXT4-fs error (device loop1): ext4_do_update_inode:5279: inode #2: comm syz.1.699: corrupted inode contents
[  156.889678][ T7419] loop8: detected capacity change from 0 to 1024
[  156.891162][ T7419] EXT4-fs: Ignoring removed bh option
[  156.902000][ T7412] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #2: comm syz.1.699: mark_inode_dirty error
[  156.909422][ T7412] EXT4-fs error (device loop1): ext4_do_update_inode:5279: inode #2: comm syz.1.699: corrupted inode contents
[  156.916539][ T7412] EXT4-fs error (device loop1): ext4_dirty_inode:6156: inode #2: comm syz.1.699: mark_inode_dirty error
[  156.941443][ T7404] EXT4-fs error (device loop1): ext4_do_update_inode:5279: inode #2: comm syz.1.699: corrupted inode contents
[  156.959921][ T7419] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  157.001053][ T4325] EXT4-fs (loop1): unmounting filesystem.
[  157.070388][ T6050] EXT4-fs (loop8): unmounting filesystem.
[  157.084899][   T27] audit: type=1326 audit(2000000105.455:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7430 comm="syz.7.704" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff87b789e8 code=0x0
[  158.057350][ T7473] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  158.059306][ T7473] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  158.079747][ T7476] netlink: 'syz.1.710': attribute type 1 has an invalid length.
[  158.815255][ T7502] binder: 7499:7502 BC_ACQUIRE_DONE node 1 has no pending acquire request
[  160.174847][ T7505] device syzkaller0 entered promiscuous mode
[  160.189599][ T7505] sch_tbf: burst 185 is lower than device syzkaller0 mtu (1500) !
[  160.191748][ T7505] tipc: Started in network mode
[  160.192529][ T7505] tipc: Node identity , cluster identity 4711
[  160.193585][ T7505] tipc: Failed to obtain node identity
[  160.194556][ T7505] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  160.295675][ T7515] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  160.297324][ T7515] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  160.423113][ T7520] Illegal XDP return value 4294967274 on prog  (id 44) dev syz_tun, expect packet loss!
[  160.511299][ T7533] loop7: detected capacity change from 0 to 256
[  160.538971][ T7533] FAT-fs (loop7): Directory bread(block 64) failed
[  160.541894][ T7534] ipt_CLUSTERIP: Please specify destination IP
[  160.543741][ T7533] FAT-fs (loop7): Directory bread(block 65) failed
[  160.549688][ T7533] FAT-fs (loop7): Directory bread(block 66) failed
[  160.554442][ T7533] FAT-fs (loop7): Directory bread(block 67) failed
[  160.555469][ T7533] FAT-fs (loop7): Directory bread(block 68) failed
[  160.560155][ T7533] FAT-fs (loop7): Directory bread(block 69) failed
[  160.562857][ T7533] FAT-fs (loop7): Directory bread(block 70) failed
[  160.566418][ T7533] FAT-fs (loop7): Directory bread(block 71) failed
[  160.569132][ T7533] FAT-fs (loop7): Directory bread(block 72) failed
[  160.572652][ T7533] FAT-fs (loop7): Directory bread(block 73) failed
[  160.638945][ T7539] __nla_validate_parse: 135 callbacks suppressed
[  160.638958][ T7539] netlink: 12 bytes leftover after parsing attributes in process `syz.8.723'.
[  160.688028][ T7541] loop7: detected capacity change from 0 to 256
[  160.705492][ T7541] FAT-fs (loop7): Directory bread(block 64) failed
[  160.706600][ T7541] FAT-fs (loop7): Directory bread(block 65) failed
[  160.718864][ T7541] FAT-fs (loop7): Directory bread(block 66) failed
[  160.720049][ T7541] FAT-fs (loop7): Directory bread(block 67) failed
[  160.721482][ T7541] FAT-fs (loop7): Directory bread(block 68) failed
[  160.722520][ T7541] FAT-fs (loop7): Directory bread(block 69) failed
[  160.723562][ T7541] FAT-fs (loop7): Directory bread(block 70) failed
[  160.724667][ T7541] FAT-fs (loop7): Directory bread(block 71) failed
[  160.725789][ T7541] FAT-fs (loop7): Directory bread(block 72) failed
[  160.726945][ T7541] FAT-fs (loop7): Directory bread(block 73) failed
[  160.746322][ T7545] xt_hashlimit: size too large, truncated to 1048576
[  160.877669][ T7551] loop1: detected capacity change from 0 to 512
[  160.897840][ T7553] mmap: syz.2.729 (7553): VmData 49188864 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[  160.946400][ T7551] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  160.947926][ T7551] ext4 filesystem being mounted at /158/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  160.996920][ T4334] Bluetooth: hci3: command 0x0406 tx timeout
[  160.997995][ T4334] Bluetooth: hci1: command 0x0406 tx timeout
[  161.015778][ T7560] loop2: detected capacity change from 0 to 512
[  161.020466][ T4325] EXT4-fs (loop1): unmounting filesystem.
[  161.063064][ T7560] EXT4-fs error (device loop2): ext4_orphan_get:1405: inode #15: comm syz.2.730: casefold flag without casefold feature
[  161.065780][ T7560] EXT4-fs error (device loop2): ext4_orphan_get:1410: comm syz.2.730: couldn't read orphan inode 15 (err -117)
[  161.077854][ T7560] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  163.055093][ T4331] EXT4-fs (loop2): unmounting filesystem.
[  163.171746][ T7590] netlink: 324 bytes leftover after parsing attributes in process `syz.2.735'.
[  166.021223][ T7658] loop2: detected capacity change from 0 to 512
[  166.098307][ T7658] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  166.099883][ T7658] EXT4-fs (loop2): ext4_check_descriptors: Inode table for group 0 not in group (block 32768)!
[  166.101245][ T7664] loop1: detected capacity change from 0 to 512
[  166.101549][ T7658] EXT4-fs (loop2): group descriptors corrupted!
[  166.112508][ T7664] EXT4-fs (loop1): can't mount with both data=journal and delalloc
[  166.198811][ T7668] loop1: detected capacity change from 0 to 512
[  166.227427][ T7668] EXT4-fs error (device loop1): ext4_orphan_get:1405: inode #15: comm syz.1.749: inode has both inline data and extents flags
[  166.230154][ T7672] loop2: detected capacity change from 0 to 1024
[  166.230171][ T7668] EXT4-fs error (device loop1): ext4_orphan_get:1410: comm syz.1.749: couldn't read orphan inode 15 (err -117)
[  166.231666][ T7672] EXT4-fs: Ignoring removed bh option
[  166.233857][ T7668] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  166.253748][ T7672] EXT4-fs: inline encryption not supported
[  166.258083][ T7672] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  166.300201][ T7672] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  167.212298][ T4325] EXT4-fs (loop1): unmounting filesystem.
[  167.326134][ T4331] EXT4-fs (loop2): unmounting filesystem.
[  168.127700][ T7763] xt_hashlimit: size too large, truncated to 1048576
[  169.849998][ T7858] loop7: detected capacity change from 0 to 512
[  169.851886][ T7858] EXT4-fs: Ignoring removed nobh option
[  169.858078][ T7858] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  169.863968][ T7858] EXT4-fs (loop7): 1 truncate cleaned up
[  169.864947][ T7858] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  169.891125][ T5935] EXT4-fs (loop7): unmounting filesystem.
[  170.431143][ T7874] loop6: detected capacity change from 0 to 64
[  170.930486][ T7886] loop6: detected capacity change from 0 to 4096
[  170.996574][ T7890] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  171.405331][ T7910] loop2: detected capacity change from 0 to 4096
[  171.416379][ T7913] device syzkaller0 entered promiscuous mode
[  171.999618][ T7923] loop9: detected capacity change from 0 to 7
[  172.009842][ T7923] Dev loop9: unable to read RDB block 7
[  172.010983][ T7923]  loop9: unable to read partition table
[  172.012248][ T7923] loop9: partition table beyond EOD, truncated
[  172.021141][ T7923] loop_reread_partitions: partition scan of loop9 (þ被xü—ŸÑà– ) failed (rc=-5)
[  172.766565][ T7950] loop2: detected capacity change from 0 to 1764
[  172.876238][ T7953] loop2: detected capacity change from 0 to 16
[  172.877881][ T7953] erofs: Unknown parameter ''
[  173.026451][ T7959] xt_hashlimit: size too large, truncated to 1048576
[  173.066313][ T7962] loop7: detected capacity change from 0 to 512
[  173.099084][ T7962] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  173.101020][ T7962] ext4 filesystem being mounted at /82/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  173.125428][ T5935] EXT4-fs (loop7): unmounting filesystem.
[  173.146228][    C0] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  173.148527][ T4373] kernel write not supported for file /input/mice (pid: 4373 comm: kworker/0:3)
[  173.283684][ T7974] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  173.285341][ T7974] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  173.859874][ T7989] netlink: 36 bytes leftover after parsing attributes in process `syz.7.837'.
[  173.910400][ T7991] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  173.913007][ T7991] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  174.100536][ T7995] loop6: detected capacity change from 0 to 512
[  174.102332][ T7995] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  174.105433][ T7995] EXT4-fs (loop6): 1 truncate cleaned up
[  174.106560][ T7995] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  174.128065][ T5211] EXT4-fs (loop6): unmounting filesystem.
[  174.162722][ T7998] netlink: 24 bytes leftover after parsing attributes in process `syz.6.841'.
[  174.196324][ T8000] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  174.197767][ T8000] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  174.200433][ T8000] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  174.201806][ T8000] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  174.203020][ T8000] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  174.207198][ T8000] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  174.245297][ T8002] loop6: detected capacity change from 0 to 1024
[  174.259556][ T8002] EXT4-fs (loop6): unsupported inode size: 143
[  174.260681][ T8002] EXT4-fs (loop6): blocksize: 1024
[  175.048816][ T8046] EXT4-fs: Ignoring removed bh option
[  175.049988][ T8046] EXT4-fs: inline encryption not supported
[  175.051538][ T8046] EXT4-fs (loop7): feature flags set on rev 0 fs, running e2fsck is recommended
[  175.073680][ T8046] EXT4-fs warning (device loop7): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  175.081271][ T8050] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  175.083882][ T8050] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  175.085171][ T8046] EXT4-fs error (device loop7): ext4_validate_block_bitmap:438: comm syz.7.857: bg 0: block 248: padding at end of block bitmap is not set
[  175.089769][ T8050] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  175.099518][ T8046] Quota error (device loop7): write_blk: dquota write failed
[  175.099548][ T8050] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  175.104927][ T8046] Quota error (device loop7): qtree_write_dquot: Error -28 occurred while creating quota
[  175.111438][ T8046] EXT4-fs error (device loop7): ext4_acquire_dquot:6841: comm syz.7.857: Failed to acquire dquot type 1
[  175.119777][ T8046] EXT4-fs (loop7): 1 truncate cleaned up
[  175.120927][ T8046] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  175.128564][ T8046] Quota error (device loop7): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  175.130500][ T8046] Quota error (device loop7): qtree_write_dquot: Error -117 occurred while creating quota
[  175.132262][ T8046] EXT4-fs error (device loop7): ext4_acquire_dquot:6841: comm syz.7.857: Failed to acquire dquot type 1
[  175.149787][ T5935] EXT4-fs (loop7): unmounting filesystem.
[  175.335364][ T8059] binder: 8057:8059 tried to acquire reference to desc 0, got 1 instead
[  175.340546][ T8059] binder: 8059:8057 failed to get security context
[  175.341642][ T8059] binder: 8057:8059 transaction call to 8057:0 failed 6/29201/-22, size 0-0 line 3197
[  175.360436][ T4373] binder: undelivered TRANSACTION_ERROR: 29201
[  175.436430][ T8067] set_capacity_and_notify: 1 callbacks suppressed
[  175.436442][ T8067] loop1: detected capacity change from 0 to 128
[  175.758578][ T8083] xt_hashlimit: size too large, truncated to 1048576
[  175.780965][ T8085] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  175.782483][ T8085] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  176.339275][ T8098] tipc: Failed to remove unknown binding: 66,0,0/0:2105326559/2105326560
[  176.408103][ T8100] netlink: 24 bytes leftover after parsing attributes in process `syz.7.877'.
[  176.487900][ T8104] binder: 8103:8104 got reply transaction with no transaction stack
[  176.489214][ T8104] binder: 8103:8104 transaction reply to 0:0 failed 7/29201/-71, size 0-0 line 2946
[  176.541943][ T8106] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  176.543473][ T8106] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  177.420901][ T1515] binder: undelivered TRANSACTION_ERROR: 29201
[  177.901138][ T8147] input: syz0 as /devices/virtual/input/input4
[  178.215314][ T8159] loop1: detected capacity change from 0 to 512
[  178.222063][ T8159] EXT4-fs error (device loop1): ext4_orphan_get:1405: inode #15: comm syz.1.899: inode has both inline data and extents flags
[  178.225056][ T8159] EXT4-fs error (device loop1): ext4_orphan_get:1410: comm syz.1.899: couldn't read orphan inode 15 (err -117)
[  178.227375][ T8159] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  178.257844][ T4325] EXT4-fs (loop1): unmounting filesystem.
[  178.273093][ T8163] device syzkaller0 entered promiscuous mode
[  178.578915][ T8170] loop2: detected capacity change from 0 to 1024
[  178.761201][ T8179] loop7: detected capacity change from 0 to 4096
[  178.794270][ T8184] xt_hashlimit: size too large, truncated to 1048576
[  178.826835][ T5935] ntfs3: loop7: ntfs_evict_inode r=5 failed, -22.
[  178.829366][ T5935] ntfs3: loop7: Mark volume as dirty due to NTFS errors
[  179.630534][ T8212] loop1: detected capacity change from 0 to 4096
[  179.647865][ T8212] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  179.657218][ T8212] ntfs3: loop1: Failed to load $MFT.
[  179.783491][ T8215] loop1: detected capacity change from 0 to 1024
[  179.828944][ T8215] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  179.830416][ T8215] ext4 filesystem being mounted at /203/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  179.856014][ T4325] EXT4-fs (loop1): unmounting filesystem.
[  181.574746][ T8254] loop7: detected capacity change from 0 to 4096
[  181.772579][ T8259] loop1: detected capacity change from 0 to 512
[  182.194967][ T8259] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  182.196441][ T8259] ext4 filesystem being mounted at /207/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  182.252779][ T4325] EXT4-fs (loop1): unmounting filesystem.
[  182.266758][ T8270] netlink: 'syz.7.940': attribute type 39 has an invalid length.
[  182.909282][ T8290] loop7: detected capacity change from 0 to 512
[  182.957599][ T8290] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  182.959316][ T8290] ext4 filesystem being mounted at /122/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  183.551189][ T8306] loop6: detected capacity change from 0 to 4096
[  183.752443][ T8318] loop8: detected capacity change from 0 to 2048
[  183.836400][ T5935] EXT4-fs (loop7): unmounting filesystem.
[  184.278147][ T8329] loop1: detected capacity change from 0 to 128
[  184.295765][ T8329] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  184.297674][ T8329] ext4 filesystem being mounted at /211/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  184.365057][ T4325] EXT4-fs (loop1): unmounting filesystem.
[  184.369979][ T8332] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  184.374297][ T8332] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  184.417066][ T8324] loop6: detected capacity change from 0 to 40427
[  184.417096][ T8334] loop1: detected capacity change from 0 to 512
[  184.420287][ T8334] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  184.423883][ T8334] EXT4-fs (loop1): 1 truncate cleaned up
[  184.425081][ T8324] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  184.425110][ T8334] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  184.426436][ T8324] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  184.435446][ T8324] F2FS-fs (loop6): invalid crc value
[  184.450665][ T8324] F2FS-fs (loop6): Found nat_bits in checkpoint
[  184.463920][ T8324] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  184.465296][ T8324] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  184.466693][ T4325] EXT4-fs (loop1): unmounting filesystem.
[  184.743726][ T8343] loop2: detected capacity change from 0 to 40427
[  184.749157][ T8343] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  184.751849][ T8343] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  184.785289][ T8343] F2FS-fs (loop2): invalid crc value
[  184.806456][ T8343] F2FS-fs (loop2): Found nat_bits in checkpoint
[  184.832795][ T8343] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  184.833925][ T8343] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  184.994348][ T8357] loop8: detected capacity change from 0 to 256
[  185.710803][ T8341] F2FS-fs (loop1): Wrong NAT boundary, start(2560) end(5) blocks(1024)
[  185.712189][ T8341] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock
[  185.743268][ T8357] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[  185.807847][ T8341] F2FS-fs (loop1): Found nat_bits in checkpoint
[  185.933261][ T8341] F2FS-fs (loop1): Try to recover 2th superblock, ret: 0
[  185.934485][ T8341] F2FS-fs (loop1): Mounted with checkpoint version = 753bd00b
[  186.203955][ T8371] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  186.207966][ T8371] ext4 filesystem being mounted at /134/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  186.553742][ T8368] F2FS-fs (loop8): Invalid SB checksum offset: 0
[  186.554946][ T8368] F2FS-fs (loop8): Can't find valid F2FS filesystem in 2th superblock
[  186.556734][ T8368] F2FS-fs (loop8): invalid crc value
[  186.625895][ T8368] F2FS-fs (loop8): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437)
[  186.653890][ T8368] F2FS-fs (loop8): Try to recover 2th superblock, ret: 0
[  186.655223][ T8368] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  187.066176][ T6050] syz-executor: attempt to access beyond end of device
[  187.066176][ T6050] loop8: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  187.221963][ T5211] EXT4-fs (loop6): unmounting filesystem.
[  188.519453][ T8416] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  188.521065][ T8416] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  188.867048][ T8431] set_capacity_and_notify: 3 callbacks suppressed
[  188.867058][ T8431] loop2: detected capacity change from 0 to 4096
[  189.631320][ T8455] loop2: detected capacity change from 0 to 512
[  189.660501][ T8455] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  189.662244][ T8455] ext4 filesystem being mounted at /204/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  189.684824][ T4331] EXT4-fs (loop2): unmounting filesystem.
[  190.233703][ T8475] loop2: detected capacity change from 0 to 40427
[  190.249984][ T8475] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  190.251352][ T8475] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  190.272558][ T8475] F2FS-fs (loop2): invalid crc value
[  190.295938][ T8475] F2FS-fs (loop2): Found nat_bits in checkpoint
[  190.311319][ T8475] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  190.312464][ T8475] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  190.418852][ T8493] loop7: detected capacity change from 0 to 512
[  190.428062][ T8493] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  190.429511][ T8493] ext4 filesystem being mounted at /133/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  191.078551][ T5935] EXT4-fs (loop7): unmounting filesystem.
[  192.906288][ T8541] loop6: detected capacity change from 0 to 40427
[  192.915098][ T8541] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  192.929757][ T8541] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  192.937099][ T8541] F2FS-fs (loop6): invalid crc value
[  192.943814][ T8543] loop2: detected capacity change from 0 to 40427
[  192.948097][ T8543] F2FS-fs (loop2): Invalid segment/section count (24 != 24 * 3)
[  192.952328][ T8543] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  192.954084][ T8543] F2FS-fs (loop2): Unrecognized mount option "whint_mode=user-based" or missing value
[  192.959764][ T8541] F2FS-fs (loop6): Found nat_bits in checkpoint
[  192.973605][ T8541] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  192.974865][ T8541] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  195.402626][ T8606] loop7: detected capacity change from 0 to 4096
[  197.085990][ T2061] ieee802154 phy1 wpan1: encryption failed: -22
[  197.301389][ T8670] loop8: detected capacity change from 0 to 512
[  197.387155][ T8670] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  197.388766][ T8670] ext4 filesystem being mounted at /109/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  197.423740][ T6050] EXT4-fs (loop8): unmounting filesystem.
[  198.102010][ T8714] loop2: detected capacity change from 0 to 512
[  198.134893][ T8714] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  198.136446][ T8714] ext4 filesystem being mounted at /225/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  198.171134][ T4331] EXT4-fs (loop2): unmounting filesystem.
[  198.531721][ T8746] xt_hashlimit: size too large, truncated to 1048576
[  199.094566][ T8777] loop8: detected capacity change from 0 to 2048
[  200.000482][ T8807] loop6: detected capacity change from 0 to 4096
[  200.965220][ T8835] loop8: detected capacity change from 0 to 1024
[  200.972533][ T8835] EXT4-fs: inline encryption not supported
[  200.986385][ T8835] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  201.477526][ T8843] loop1: detected capacity change from 0 to 4096
[  201.911205][ T8863] loop6: detected capacity change from 0 to 2048
[  202.168987][ T8874] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  202.174584][ T8874] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  202.316880][ T8868] loop1: detected capacity change from 0 to 40427
[  202.323570][ T8868] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  202.324859][ T8868] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  202.335345][ T8868] F2FS-fs (loop1): invalid crc value
[  202.355254][ T8868] F2FS-fs (loop1): Found nat_bits in checkpoint
[  202.367906][ T8868] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  202.369020][ T8868] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  203.421127][ T8892] netlink: 64 bytes leftover after parsing attributes in process `syz.6.1161'.
[  204.015512][ T8900] loop1: detected capacity change from 0 to 2048
[  204.132773][ T8908] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  204.134301][ T8908] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  204.245244][ T6050] EXT4-fs (loop8): unmounting filesystem.
[  204.502734][ T8919] loop1: detected capacity change from 0 to 40427
[  204.508568][ T8919] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  204.510239][ T8919] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  204.522601][ T8919] F2FS-fs (loop1): invalid crc value
[  204.537854][ T8919] F2FS-fs (loop1): Found nat_bits in checkpoint
[  204.556564][ T8919] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  204.557792][ T8919] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  204.809882][ T4334] Bluetooth: hci4: command 0x0406 tx timeout
[  205.702422][ T8943] loop6: detected capacity change from 0 to 2048
[  205.741729][ T8948] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  205.751575][ T8948] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  205.767237][ T8948] loop8: detected capacity change from 0 to 512
[  205.797921][ T8948] EXT4-fs (loop8): 1 orphan inode deleted
[  205.798978][ T8948] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  205.807135][ T8954] loop6: detected capacity change from 0 to 1024
[  205.817557][ T8954] EXT4-fs: inline encryption not supported
[  205.882735][ T8954] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  207.299297][ T6050] EXT4-fs (loop8): unmounting filesystem.
[  207.388113][ T8979] loop1: detected capacity change from 0 to 40427
[  207.390303][ T8979] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  207.392285][ T8979] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  207.395701][ T8979] F2FS-fs (loop1): invalid crc value
[  207.397941][ T8979] F2FS-fs (loop1): Found nat_bits in checkpoint
[  207.410951][ T8979] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  207.412271][ T8979] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  207.533973][ T8994] loop8: detected capacity change from 0 to 2048
[  208.696585][ T9025] loop8: detected capacity change from 0 to 4096
[  208.700258][ T9025] EXT4-fs: Ignoring removed orlov option
[  208.720765][ T9025] EXT4-fs (loop8): Test dummy encryption mode enabled
[  208.869041][ T9025] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  209.023132][ T5211] EXT4-fs (loop6): unmounting filesystem.
[  209.196535][ T9042] loop7: detected capacity change from 0 to 512
[  209.769682][ T6050] EXT4-fs (loop8): unmounting filesystem.
[  209.968816][ T9042] EXT4-fs error (device loop7): ext4_free_branches:1030: inode #13: comm syz.7.1214: invalid indirect mapped block 10 (level 1)
[  209.989268][ T9042] EXT4-fs error (device loop7): ext4_free_branches:1030: inode #13: comm syz.7.1214: invalid indirect mapped block 8 (level 1)
[  210.042297][ T9042] EXT4-fs (loop7): 1 truncate cleaned up
[  210.043232][ T9042] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  210.168315][ T5935] EXT4-fs (loop7): unmounting filesystem.
[  210.223561][ T9049] loop2: detected capacity change from 0 to 40427
[  210.237516][ T9049] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  210.238867][ T9049] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  210.246373][ T9049] F2FS-fs (loop2): invalid crc value
[  210.554855][ T9049] F2FS-fs (loop2): Found nat_bits in checkpoint
[  210.591487][ T9068] device syzkaller0 entered promiscuous mode
[  210.595559][ T9049] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  210.597128][ T9049] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  211.142565][ T9083] loop1: detected capacity change from 0 to 512
[  211.188340][ T9083] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  211.193907][ T9083] ext4 filesystem being mounted at /268/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  211.268460][ T4325] EXT4-fs (loop1): unmounting filesystem.
[  214.351045][ T9155] loop2: detected capacity change from 0 to 512
[  214.364283][ T9155] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  214.365900][ T9155] ext4 filesystem being mounted at /258/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  215.268026][ T4331] EXT4-fs (loop2): unmounting filesystem.
[  215.434119][ T9167] loop2: detected capacity change from 0 to 40427
[  215.436578][ T9167] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  215.437892][ T9167] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  215.442357][ T9167] F2FS-fs (loop2): Found nat_bits in checkpoint
[  215.457550][ T9167] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  215.458776][ T9167] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  215.564209][ T9173] loop2: detected capacity change from 0 to 512
[  215.573787][ T9173] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  215.575476][ T9173] ext4 filesystem being mounted at /262/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  215.593903][ T4331] EXT4-fs (loop2): unmounting filesystem.
[  218.870453][ T9203] loop2: detected capacity change from 0 to 131072
[  218.878006][ T9203] F2FS-fs (loop2): invalid crc value
[  218.880459][ T9203] F2FS-fs (loop2): Found nat_bits in checkpoint
[  218.888130][ T9203] F2FS-fs (loop2): Cannot turn on quotas: -2 on 2
[  218.889695][ T9203] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4
[  224.943544][ T9226] loop2: detected capacity change from 0 to 256
[  224.976698][ T9226] FAT-fs (loop2): Directory bread(block 64) failed
[  224.978023][ T9226] FAT-fs (loop2): Directory bread(block 65) failed
[  224.979179][ T9226] FAT-fs (loop2): Directory bread(block 66) failed
[  224.980208][ T9226] FAT-fs (loop2): Directory bread(block 67) failed
[  224.981298][ T9226] FAT-fs (loop2): Directory bread(block 68) failed
[  224.982354][ T9226] FAT-fs (loop2): Directory bread(block 69) failed
[  224.983462][ T9226] FAT-fs (loop2): Directory bread(block 70) failed
[  224.994216][ T9226] FAT-fs (loop2): Directory bread(block 71) failed
[  224.996045][ T9226] FAT-fs (loop2): Directory bread(block 72) failed
[  224.997680][ T9226] FAT-fs (loop2): Directory bread(block 73) failed
[  226.076750][ T9255] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  226.081823][ T9255] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  227.184241][ T9286] loop6: detected capacity change from 0 to 512
[  227.273067][ T9286] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  227.274798][ T9286] ext4 filesystem being mounted at /196/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  227.724000][   T27] audit: type=1107 audit(2000000171.615:31): pid=9292 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  227.778956][ T9298] overlayfs: failed to resolve './file1': -2
[  227.814903][ T9306] random: crng reseeded on system resumption
[  228.008613][ T5211] EXT4-fs (loop6): unmounting filesystem.
[  228.567082][ T9338] fuse: Bad value for 'fd'
[  228.594640][ T9340] loop8: detected capacity change from 0 to 2048
[  228.672658][ T9346] loop8: detected capacity change from 0 to 512
[  228.674165][ T9346] EXT4-fs: Ignoring removed orlov option
[  228.685986][ T9346] EXT4-fs (loop8): Test dummy encryption mode enabled
[  228.687241][ T9346] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  228.704992][ T9346] EXT4-fs (loop8): 1 truncate cleaned up
[  228.709774][ T9346] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  228.728442][ T9351] loop6: detected capacity change from 0 to 1024
[  228.756369][ T9351] EXT4-fs: inline encryption not supported
[  228.850890][ T9351] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  228.865901][ T9362] loop2: detected capacity change from 0 to 512
[  228.932887][ T6050] EXT4-fs error (device loop8): mb_free_blocks:1839: group 0, inode 16: block 35:freeing already freed block (bit 34); block bitmap corrupt.
[  228.954614][ T6050] EXT4-fs (loop8): unmounting filesystem.
[  229.249466][ T9362] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  229.251202][ T9362] ext4 filesystem being mounted at /281/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  229.271740][ T9369] netlink: 68 bytes leftover after parsing attributes in process `syz.8.1309'.
[  229.293766][ T9373] loop7: detected capacity change from 0 to 1024
[  229.298783][ T9373] EXT4-fs: Ignoring removed bh option
[  229.299848][ T9373] EXT4-fs: inline encryption not supported
[  229.305641][ T9373] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  229.366398][ T9373] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  229.835278][ T4331] EXT4-fs (loop2): unmounting filesystem.
[  230.120635][ T9384] loop1: detected capacity change from 0 to 2048
[  230.253979][ T9392] loop2: detected capacity change from 0 to 512
[  230.275968][ T9392] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  230.277717][ T9392] ext4 filesystem being mounted at /283/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  230.300947][ T4331] EXT4-fs (loop2): unmounting filesystem.
[  230.391622][ T9398] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  230.393799][ T9398] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  230.501288][ T9398] loop8: detected capacity change from 0 to 40427
[  230.507822][ T9398] F2FS-fs (loop8): Insane cp_payload (553648128 >= 504)
[  230.509015][ T9398] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[  230.510385][ T9398] F2FS-fs (loop8): build fault injection attr: rate: 17008, type: 0x3ffff
[  230.512106][ T9398] F2FS-fs (loop8): build fault injection attr: rate: 0, type: 0x1f8
[  230.515856][ T9398] F2FS-fs (loop8): invalid crc value
[  230.523437][ T9398] F2FS-fs (loop8): Found nat_bits in checkpoint
[  230.563225][ T9398] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[  230.564919][ T9398] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  230.601916][ T5935] EXT4-fs (loop7): unmounting filesystem.
[  230.707342][ T9416] loop7: detected capacity change from 0 to 512
[  230.738561][ T9416] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  230.740165][ T9416] ext4 filesystem being mounted at /184/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  231.593927][ T5935] EXT4-fs (loop7): unmounting filesystem.
[  231.674430][ T9433] netlink: 68 bytes leftover after parsing attributes in process `syz.1.1327'.
[  231.928634][ T9437] bridge0: port 2(bridge_slave_1) entered disabled state
[  231.930873][ T9437] bridge0: port 1(bridge_slave_0) entered disabled state
[  231.939817][ T9437] A link change request failed with some changes committed already. Interface bridge0 may have been left with an inconsistent configuration, please check.
[  231.954599][ T9437] netlink: 24 bytes leftover after parsing attributes in process `syz.7.1328'.
[  231.997595][ T9437] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  231.999368][ T9437] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  232.071404][ T5211] EXT4-fs (loop6): unmounting filesystem.
[  232.243242][ T9447] xt_hashlimit: size too large, truncated to 1048576
[  232.555945][ T9454] loop1: detected capacity change from 0 to 256
[  232.575855][ T9454] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x68afaf67, utbl_chksum : 0xe619d30d)
[  232.650837][ T9458] loop7: detected capacity change from 0 to 2048
[  232.875472][ T9460] exFAT-fs (loop1): error, tried to truncate zeroed cluster.
[  232.876856][ T9460] exFAT-fs (loop1): Filesystem has been set read-only
[  232.891687][ T9460] exFAT-fs (loop1): hint_cluster is invalid (1)
[  232.996688][ T9460] exFAT-fs (loop1): error, invalid access to exfat cache (entry 0x00000000)
[  232.998799][ T9460] exFAT-fs (loop1): error, failed to bmap (inode : 00000000bab2bd37 iblock : 9, err : -5)
[  233.002272][ T9460] exFAT-fs (loop1): error, tried to truncate zeroed cluster.
[  233.003679][ T9460] exFAT-fs (loop1): error, tried to truncate zeroed cluster.
[  233.885819][ T9466] netlink: 68 bytes leftover after parsing attributes in process `syz.6.1340'.
[  233.905378][ T9468] loop1: detected capacity change from 0 to 1024
[  233.907289][ T9468] EXT4-fs: inline encryption not supported
[  233.927564][ T9472] loop8: detected capacity change from 0 to 256
[  233.969124][ T9472] FAT-fs (loop8): Directory bread(block 64) failed
[  233.970260][ T9472] FAT-fs (loop8): Directory bread(block 65) failed
[  233.972845][ T9472] FAT-fs (loop8): Directory bread(block 66) failed
[  233.973918][ T9472] FAT-fs (loop8): Directory bread(block 67) failed
[  233.975494][ T9472] FAT-fs (loop8): Directory bread(block 68) failed
[  233.981878][ T9472] FAT-fs (loop8): Directory bread(block 69) failed
[  233.983051][ T9472] FAT-fs (loop8): Directory bread(block 70) failed
[  233.984117][ T9472] FAT-fs (loop8): Directory bread(block 71) failed
[  233.985238][ T9472] FAT-fs (loop8): Directory bread(block 72) failed
[  233.986975][ T9472] FAT-fs (loop8): Directory bread(block 73) failed
[  233.996711][ T9468] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  234.761967][ T9491] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1347'.
[  235.193319][    C0] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  235.251694][   T27] audit: type=1326 audit(2000000178.943:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9503 comm="syz.6.1352" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa8b789e8 code=0x7ffc0000
[  235.259405][   T27] audit: type=1326 audit(2000000178.943:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9503 comm="syz.6.1352" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa8b789e8 code=0x7ffc0000
[  235.269296][   T27] audit: type=1326 audit(2000000178.953:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9503 comm="syz.6.1352" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=71 compat=0 ip=0xffffa8b789e8 code=0x7ffc0000
[  235.277086][   T27] audit: type=1326 audit(2000000178.953:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9503 comm="syz.6.1352" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa8b789e8 code=0x7ffc0000
[  235.295812][   T27] audit: type=1326 audit(2000000178.953:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9503 comm="syz.6.1352" exe="/root/ci2-linux-6-1-kasan-arm64/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa8b789e8 code=0x7ffc0000
[  235.779530][ T9511] loop8: detected capacity change from 0 to 512
[  235.784886][ T9511] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  235.829758][ T9511] EXT4-fs error (device loop8): ext4_validate_block_bitmap:429: comm syz.8.1355: bg 0: block 5: invalid block bitmap
[  235.832402][ T9511] EXT4-fs error (device loop8) in ext4_mb_clear_bb:6180: Corrupt filesystem
[  235.835288][ T9511] EXT4-fs error (device loop8): ext4_free_branches:1030: inode #11: comm syz.8.1355: invalid indirect mapped block 3 (level 2)
[  235.850970][ T9511] EXT4-fs (loop8): 2 truncates cleaned up
[  235.853526][ T9511] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  235.977836][ T9516] netlink: 64 bytes leftover after parsing attributes in process `syz.2.1354'.
[  236.184041][ T6050] EXT4-fs (loop8): unmounting filesystem.
[  236.277269][ T9520] ipt_CLUSTERIP: Please specify destination IP
[  236.350595][ T9515] loop7: detected capacity change from 0 to 40427
[  236.359459][ T9515] F2FS-fs (loop7): Invalid log_blocksize (268), supports only 12
[  236.365712][ T9515] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[  236.368570][ T9515] F2FS-fs (loop7): invalid crc value
[  236.388233][ T9515] F2FS-fs (loop7): Found nat_bits in checkpoint
[  236.409959][ T9515] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0
[  236.411376][ T9515] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  237.106767][ T4325] EXT4-fs (loop1): unmounting filesystem.
[  237.236677][ T4328] Bluetooth: hci2: command 0x0406 tx timeout
[  237.273935][ T9559] loop8: detected capacity change from 0 to 1024
[  237.282504][ T9559] EXT4-fs: Ignoring removed orlov option
[  237.289431][ T9559] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  237.314651][ T9559] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: writeback.
[  237.318673][ T9562] bridge0: port 2(bridge_slave_1) entered disabled state
[  237.320274][ T9562] bridge0: port 1(bridge_slave_0) entered disabled state
[  237.408351][ T4334] Bluetooth: hci0: command 0x0406 tx timeout
[  237.440235][ T9562] A link change request failed with some changes committed already. Interface bridge0 may have been left with an inconsistent configuration, please check.
[  237.447836][ T9563] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1369'.
[  237.650160][ T6050] EXT4-fs (loop8): unmounting filesystem.
[  237.701695][ T9568] random: crng reseeded on system resumption
[  238.125242][ T9575] netlink: 64 bytes leftover after parsing attributes in process `syz.7.1374'.
[  238.436652][ T9585] netlink: 45349 bytes leftover after parsing attributes in process `syz.2.1377'.
[  238.486955][ T9587] loop2: detected capacity change from 0 to 1024
[  238.499447][ T9587] EXT4-fs: inline encryption not supported
[  238.534626][ T9587] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  239.541051][ T9604] loop8: detected capacity change from 0 to 40427
[  239.559780][ T9604] F2FS-fs (loop8): Invalid log_blocksize (268), supports only 12
[  239.569360][ T9604] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[  239.577633][ T9604] F2FS-fs (loop8): invalid crc value
[  239.593693][ T9604] F2FS-fs (loop8): Found nat_bits in checkpoint
[  239.607969][ T9604] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[  239.609375][ T9604] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  240.069508][ T9628] loop6: detected capacity change from 0 to 40427
[  240.359046][ T9628] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  240.362794][ T9628] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  240.366532][ T9628] F2FS-fs (loop6): invalid crc value
[  240.377845][ T9628] F2FS-fs (loop6): Found nat_bits in checkpoint
[  240.404300][ T9628] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  240.406948][ T9628] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  240.455041][ T9650] loop8: detected capacity change from 0 to 1024
[  240.477152][ T9650] EXT4-fs: Ignoring removed bh option
[  240.480453][ T9650] EXT4-fs: inline encryption not supported
[  240.484079][ T9650] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  240.502323][ T9650] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  240.643184][ T9658] loop6: detected capacity change from 0 to 256
[  240.702523][ T9660] overlayfs: failed to resolve './bus': -2
[  241.229151][ T9668] device syz_tun entered promiscuous mode
[  241.234333][ T9668] device macsec1 entered promiscuous mode
[  241.236828][ T9668] device syz_tun left promiscuous mode
[  241.336248][ T9666] loop1: detected capacity change from 0 to 40427
[  241.359583][ T9666] F2FS-fs (loop1): Corrupted extension count (64 + 1 > 64)
[  241.360844][ T9666] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  241.363167][ T9666] F2FS-fs (loop1): invalid crc value
[  241.369217][ T9666] F2FS-fs (loop1): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 10241044815247771109)
[  241.386948][ T9666] F2FS-fs (loop1): recover fsync data on readonly fs
[  241.389326][ T9666] F2FS-fs (loop1): Try to recover 1th superblock, ret: -30
[  241.390523][ T9666] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  241.474425][ T6050] EXT4-fs (loop8): unmounting filesystem.
[  241.518924][ T9678] loop1: detected capacity change from 0 to 2048
[  241.603043][ T9684] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1408'.
[  241.703134][ T9680] loop8: detected capacity change from 0 to 40427
[  241.725163][ T9680] F2FS-fs (loop8): Unrecognized mount option "faø+Åžot" or missing value
[  241.756325][ T4331] EXT4-fs (loop2): unmounting filesystem.
[  242.174988][ T9699] binder: 9698:9699 ioctl 400c620e 20001f80 returned -22
[  242.516413][ T9712] loop8: detected capacity change from 0 to 1024
[  242.520783][ T9712] EXT4-fs: Ignoring removed bh option
[  242.521910][ T9712] EXT4-fs: inline encryption not supported
[  242.523452][ T9712] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  242.530894][ T9712] EXT4-fs (loop8): mounted filesystem without journal. Quota mode: none.
[  242.684625][ T9724] loop7: detected capacity change from 0 to 512
[  242.696998][ T9724] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  242.699998][ T9724] ext4 filesystem being mounted at /207/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  242.735771][ T9730] loop1: detected capacity change from 0 to 256
[  242.737669][ T5935] EXT4-fs (loop7): unmounting filesystem.
[  242.953492][ T9732] loop7: detected capacity change from 0 to 40427
[  242.956983][ T9732] F2FS-fs (loop7): Invalid log_blocksize (268), supports only 12
[  242.958507][ T9732] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[  242.967408][ T9732] F2FS-fs (loop7): Found nat_bits in checkpoint
[  242.981617][ T9732] F2FS-fs (loop7): Try to recover 1th superblock, ret: 0
[  242.983158][ T9732] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  243.495341][ T9761] loop1: detected capacity change from 0 to 1024
[  243.501009][ T9761] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  243.503684][ T9761] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869)
[  243.506139][ T9761] EXT4-fs error (device loop1): ext4_ext_check_inode:520: inode #3: comm syz.1.1437: pblk 0 bad header/extent: too large eh_max - magic f30a, entries 2, max 15(4), depth 0(0)
[  243.514764][ T9764] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  243.517057][ T9764] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  243.522245][ T9761] EXT4-fs (loop1): no journal found
[  243.523470][ T9761] EXT4-fs (loop1): can't get journal size
[  243.528134][ T9761] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  243.540587][ T4325] EXT4-fs (loop1): unmounting filesystem.
[  243.573615][ T6050] EXT4-fs (loop8): unmounting filesystem.
[  244.126955][ T9786] loop8: detected capacity change from 0 to 256
[  244.138412][ T9786] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  244.214053][ T9791] overlayfs: failed to resolve './bus': -2
[  244.360410][ T9792] loop1: detected capacity change from 0 to 256
[  244.724444][ T9793] netlink: 'syz.1.1446': attribute type 21 has an invalid length.
[  244.725880][ T9793] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1446'.
[  245.229133][ T9799] EXT4-fs: Ignoring removed bh option
[  245.230057][ T9799] EXT4-fs: inline encryption not supported
[  245.250338][ T9799] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  245.301682][ T9799] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: none.
[  246.058634][ T5935] EXT4-fs (loop7): unmounting filesystem.
[  246.224600][ T9837] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1467'.
[  246.233903][ T9836] FAT-fs (loop6): Directory bread(block 64) failed
[  246.235078][ T9836] FAT-fs (loop6): Directory bread(block 65) failed
[  246.236281][ T9836] FAT-fs (loop6): Directory bread(block 66) failed
[  246.245035][ T9836] FAT-fs (loop6): Directory bread(block 67) failed
[  246.246116][ T9836] FAT-fs (loop6): Directory bread(block 68) failed
[  246.247158][ T9836] FAT-fs (loop6): Directory bread(block 69) failed
[  246.255987][ T9836] FAT-fs (loop6): Directory bread(block 70) failed
[  246.257443][ T9836] FAT-fs (loop6): Directory bread(block 71) failed
[  246.258793][ T9836] FAT-fs (loop6): Directory bread(block 72) failed
[  246.265299][ T9836] FAT-fs (loop6): Directory bread(block 73) failed
[  246.297987][ T9843] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1470'.
[  246.349284][ T9845] EXT4-fs: Ignoring removed bh option
[  246.351984][ T9845] EXT4-fs: inline encryption not supported
[  246.354427][ T9845] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  246.457380][ T9845] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  247.090672][ T9871] set_capacity_and_notify: 3 callbacks suppressed
[  247.090682][ T9871] loop1: detected capacity change from 0 to 16
[  247.108499][ T9871] erofs: (device loop1): mounted with root inode @ nid 36.
[  247.119978][ T9871] syz.1.1479: attempt to access beyond end of device
[  247.119978][ T9871] loop1: rw=524288, sector=1056, nr_sectors = 16 limit=16
[  247.123476][ T9871] syz.1.1479: attempt to access beyond end of device
[  247.123476][ T9871] loop1: rw=524288, sector=8, nr_sectors = 16 limit=16
[  247.130032][ T9871] ==================================================================
[  247.131424][ T9871] BUG: KASAN: use-after-free in z_erofs_transform_plain+0x3a4/0x490
[  247.132855][ T9871] Read of size 4096 at addr ffff0000de677000 by task syz.1.1479/9871
[  247.134307][ T9871] 
[  247.134672][ T9871] CPU: 0 PID: 9871 Comm: syz.1.1479 Not tainted syzkaller #0
[  247.135928][ T9871] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[  247.137669][ T9871] Call trace:
[  247.138259][ T9871]  dump_backtrace+0x1c0/0x1ec
[  247.139060][ T9871]  show_stack+0x2c/0x3c
[  247.139826][ T9871]  __dump_stack+0x30/0x40
[  247.140637][ T9871]  dump_stack_lvl+0xf4/0x15c
[  247.141468][ T9871]  print_address_description+0x88/0x218
[  247.142437][ T9871]  print_report+0x50/0x68
[  247.143209][ T9871]  kasan_report+0xa8/0xfc
[  247.144096][ T9871]  kasan_check_range+0x258/0x290
[  247.144985][ T9871]  memcpy+0x48/0x90
[  247.145681][ T9871]  z_erofs_transform_plain+0x3a4/0x490
[  247.146634][ T9871]  z_erofs_decompress+0x9c/0xd4
[  247.147648][ T9871]  z_erofs_decompress_queue+0x100c/0x1b40
[  247.148600][ T9871]  z_erofs_runqueue+0x152c/0x16cc
[  247.149371][ T9871]  z_erofs_read_folio+0x2d8/0x5c8
[  247.150218][ T9871]  filemap_read_folio+0x134/0x384
[  247.151130][ T9871]  filemap_read+0x12cc/0x2104
[  247.151895][ T9871]  generic_file_read_iter+0xf8/0x5c4
[  247.152896][ T9871]  vfs_read+0x3d4/0x7f0
[  247.153626][ T9871]  ksys_read+0x12c/0x224
[  247.154375][ T9871]  __arm64_sys_read+0x7c/0x90
[  247.155159][ T9871]  invoke_syscall+0x98/0x2b4
[  247.156021][ T9871]  el0_svc_common+0x138/0x258
[  247.156821][ T9871]  do_el0_svc+0x58/0x130
[  247.157657][ T9871]  el0_svc+0x58/0x128
[  247.158373][ T9871]  el0t_64_sync_handler+0x84/0xf0
[  247.159250][ T9871]  el0t_64_sync+0x18c/0x190
[  247.159984][ T9871] 
[  247.160335][ T9871] Allocated by task 6160:
[  247.161111][ T9871]  kasan_set_track+0x4c/0x80
[  247.161813][ T9871]  kasan_save_alloc_info+0x24/0x30
[  247.162678][ T9871]  __kasan_slab_alloc+0x70/0x88
[  247.163557][ T9871]  slab_post_alloc_hook+0x74/0x430
[  247.164528][ T9871]  kmem_cache_alloc+0x22c/0x308
[  247.165393][ T9871]  zswap_frontswap_store+0x388/0x11d0
[  247.166323][ T9871]  __frontswap_store+0x284/0x430
[  247.167140][ T9871]  swap_writepage+0x108/0x18c
[  247.167987][ T9871]  shrink_folio_list+0x252c/0x44e8
[  247.168836][ T9871]  reclaim_pages+0x56c/0x78c
[  247.169656][ T9871]  madvise_cold_or_pageout_pte_range+0x11c0/0x189c
[  247.170711][ T9871]  walk_pgd_range+0x818/0xfa4
[  247.171535][ T9871]  __walk_page_range+0x124/0x51c
[  247.172300][ T9871]  walk_page_range+0x31c/0x4b4
[  247.173164][ T9871]  do_madvise+0x18ac/0x28e4
[  247.173961][ T9871]  __arm64_sys_madvise+0xa4/0xc0
[  247.174777][ T9871]  invoke_syscall+0x98/0x2b4
[  247.175537][ T9871]  el0_svc_common+0x138/0x258
[  247.176324][ T9871]  do_el0_svc+0x58/0x130
[  247.177093][ T9871]  el0_svc+0x58/0x128
[  247.177781][ T9871]  el0t_64_sync_handler+0x84/0xf0
[  247.178679][ T9871]  el0t_64_sync+0x18c/0x190
[  247.179439][ T9871] 
[  247.179827][ T9871] The buggy address belongs to the object at ffff0000de677000
[  247.179827][ T9871]  which belongs to the cache zswap_entry of size 64
[  247.182217][ T9871] The buggy address is located 0 bytes inside of
[  247.182217][ T9871]  64-byte region [ffff0000de677000, ffff0000de677040)
[  247.184598][ T9871] 
[  247.184970][ T9871] The buggy address belongs to the physical page:
[  247.186052][ T9871] page:0000000031c62b2d refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x11e677
[  247.187859][ T9871] flags: 0x5ffc00000000200(slab|node=0|zone=2|lastcpupid=0x7ff)
[  247.189191][ T9871] raw: 05ffc00000000200 0000000000000000 dead000000000001 ffff0000d70ce780
[  247.190610][ T9871] raw: 0000000000000000 00000000802a002a 00000001ffffffff 0000000000000000
[  247.192119][ T9871] page dumped because: kasan: bad access detected
[  247.193196][ T9871] 
[  247.193567][ T9871] Memory state around the buggy address:
[  247.194552][ T9871]  ffff0000de676f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  247.195936][ T9871]  ffff0000de676f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  247.197275][ T9871] >ffff0000de677000: fb fb fb fb fb fb fb fb fc fc fc fc fb fb fb fb
[  247.198604][ T9871]                    ^
[  247.199255][ T9871]  ffff0000de677080: fb fb fb fb fc fc fc fc fb fb fb fb fb fb fb fb
[  247.200665][ T9871]  ffff0000de677100: fc fc fc fc fb fb fb fb fb fb fb fb fc fc fc fc
[  247.202095][ T9871] ==================================================================
[  247.207340][ T9871] Disabling lock debugging due to kernel taint
[  247.208719][ T9871] syz.1.1479: attempt to access beyond end of device
[  247.208719][ T9871] loop1: rw=0, sector=1056, nr_sectors = 8 limit=16
[  247.269990][ T4331] EXT4-fs (loop2): unmounting filesystem.