last executing test programs:

9.338975993s ago: executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x7}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000f, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
dup(0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sys_enter\x00', r0}, 0x10)
timerfd_settime(0xffffffffffffffff, 0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x3, &(0x7f0000000040)=[{0x14}, {0x34, 0x0, 0x0, 0x7}, {0x6}]})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_time_recursive\x00', 0x275a, 0x0)
write$UHID_CREATE2(r2, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r2, 0x0)
ioctl$VIDIOC_SUBDEV_S_FRAME_INTERVAL(r2, 0xc0305616, &(0x7f0000000000)={0x0, {0x3, 0x80000000}})
listen(r1, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r3, 0x89f3, &(0x7f0000000440)={'sit0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x1, 0x0, 0x4, 0x0, @dev, @empty}}}})
r4 = socket(0x10, 0x802, 0x0)
write(r4, &(0x7f0000000140)="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", 0xfc)

7.986314165s ago: executing program 0:
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@bloom_filter={0x1e, 0x0, 0x6cc, 0x6b9, 0xa20, 0xffffffffffffffff, 0xf2, '\x00', 0x0, 0xffffffffffffffff, 0x80, 0x2}, 0x48)
mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000004c0)={[{@upperdir={'upperdir', 0x3d, './file2'}}, {@metacopy_on}], [{@fscontext={'fscontext', 0x3d, 'root'}}, {@appraise}], 0x2c})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet(0x2, 0x3, 0x8d)
setsockopt$inet_msfilter(r3, 0x0, 0x8, &(0x7f0000000100)=ANY=[@ANYBLOB="be"], 0x1)
getsockopt$inet_pktinfo(r3, 0x0, 0x8, &(0x7f00000000c0)={<r4=>0x0, @local, @local}, &(0x7f0000000140)=0xc)
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x1, r4})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x3c}}, 0x0)
r5 = socket(0xa, 0x1, 0x0)
ioctl(r5, 0x8916, &(0x7f0000000000))
ioctl(r5, 0x8936, &(0x7f0000000000))

7.805456542s ago: executing program 0:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x6, 0x4, 0x8, 0x108}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002c6d8000850000000500000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r2}, 0x0, &(0x7f0000000040)}, 0x20)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x6e, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x3, &(0x7f0000000000)=[{0x35}, {}, {0x6}]})
ioctl$KVM_SET_VCPU_EVENTS(r6, 0x4040aea0, &(0x7f0000000080)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x4})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
preadv(0xffffffffffffffff, &(0x7f0000001880)=[{&(0x7f0000001a80)=""/102400, 0x19000}], 0x1, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000040)='mm_page_alloc\x00', r7}, 0x10)
syz_read_part_table(0x104f, &(0x7f0000001080)="$eJzsz7ENwjAABMAPsSCpIjEJHQUFBTMwCQMABcuwZJAhpKJFCOmu8Ev+d+HwW/vDIiXLoU1KWdWbph7bV3tOPy+v5RnjmF2bDOu56KY3H1yarsbm1E/D5Na+y7E53r/xJQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4N48AAAD//+w8CB8=")
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$devlink(&(0x7f0000000300), r3)
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(r8, &(0x7f00000006c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)={0x14, r9, 0x20, 0x70bd2d, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4000010}, 0x20004010)

6.791107054s ago: executing program 2:
syz_usb_connect(0x0, 0x3f, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000d0918108ac051582588f0000000109022d00010000000009040000030b08000009058d67c8002a000009050502000000000009058b6e"], 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_usb_connect$cdc_ecm(0x0, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040))

6.766963128s ago: executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
write$binfmt_script(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETS(r4, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "7e12ddc5a89047bf00"})
r5 = syz_open_pts(r4, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000200)=0x2)
read(r5, 0x0, 0x2006)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000000))
timer_create(0x0, &(0x7f00000012c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
dup2(r5, r4)
fcntl$setstatus(r5, 0x4, 0x2000)
r6 = gettid()
tkill(r6, 0x14)
connect$vsock_stream(r3, &(0x7f0000000340)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
r7 = syz_open_dev$video4linux(&(0x7f0000000000), 0x2004, 0x0)
ioctl$VIDIOC_SUBDEV_S_FMT(r7, 0xc040563d, &(0x7f0000000880)={0x0, 0x10})
prctl$PR_SCHED_CORE(0x53564d41, 0x1, 0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

6.583828155s ago: executing program 4:
r0 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000600))
ioctl$VHOST_VSOCK_SET_RUNNING(0xffffffffffffffff, 0x4004af61, 0x0)
socket$inet6(0xa, 0x80001, 0x0)
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f00000002c0)='./file0\x00', 0xb98078, 0xffffffffffffffff, 0x1, 0x0, &(0x7f00000000c0))
mount(0x0, &(0x7f0000000040)='./file0/../file0/../file0\x00', 0x0, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000001840)='net/unix\x00')
read$FUSE(r1, &(0x7f0000001880)={0x2020}, 0x2020)
socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
add_key$fscrypt_v1(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
keyctl$clear(0x11, 0xfffffffffffffffd)
r3 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r3, &(0x7f0000f5dfe4)={0xa, 0x0, 0x0, @empty}, 0x1c)
recvmmsg(r3, &(0x7f0000000040), 0x400000000000284, 0x0, 0x0)

5.955431269s ago: executing program 4:
fchmodat(0xffffffffffffffff, 0x0, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$EXT4_IOC_SETFSUUID(0xffffffffffffffff, 0x4008662c, 0x0)
syz_mount_image$hfsplus(&(0x7f0000000040), &(0x7f0000000080)='./bus\x00', 0x200000, &(0x7f00000013c0)=ANY=[], 0xf, 0x6b3, &(0x7f00000000c0)="$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")
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
getsockopt$bt_BT_VOICE(r0, 0x112, 0xb, &(0x7f00000007c0), &(0x7f0000000800)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040))
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYRES64=0x0], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000080000000", @ANYRES32, @ANYBLOB], 0x0}, 0x90)
syz_emit_ethernet(0x0, 0x0, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000840)=ANY=[@ANYBLOB="180000000000000000000000000000009500000000000000e05390808a77c55e556c4c029722e3c8757ce5568fe61fe77f8246457a5f50d3dc3b13c2883b0ea2be21944c177fc26a1578f8f6c8a7a80d9d526a7189fbcdc5b61a35dd4dfb1b156a8d8a6f35e7229b9e8f0c89a0e2fee2a0d987f434ab3f526d66def3bba49700ac06126e219a0e1fda48f9c43b797d41d14a1c4fe8ac7e0f9ae86cf5859f20dc9a362ed68254f81d0e073faa0f0256f49e09fca4c134a2914d5951375ad234477ef11e115b92df0ee0a9cc9b35bf798806335b19259cdf2a28a2fa9406bad1037dd508399e09bcca90bf31d996b8f357b0b6"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r3, 0x1, 0x25, &(0x7f0000000040), 0x4)
recvmsg(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000003c0)=[{0x0}, {0x0}, {0x0}], 0x3}, 0x0)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r3, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r3, &(0x7f0000007fc0), 0x2d, 0x0)

5.627989808s ago: executing program 3:
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@bloom_filter={0x1e, 0x0, 0x6cc, 0x6b9, 0xa20, 0xffffffffffffffff, 0xf2, '\x00', 0x0, 0xffffffffffffffff, 0x80, 0x2}, 0x48)
mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000004c0)={[{@upperdir={'upperdir', 0x3d, './file2'}}, {@metacopy_on}], [{@fscontext={'fscontext', 0x3d, 'root'}}, {@appraise}], 0x2c})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x10, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet(0x2, 0x3, 0x8d)
setsockopt$inet_msfilter(r3, 0x0, 0x8, &(0x7f0000000100)=ANY=[@ANYBLOB="be"], 0x1)
getsockopt$inet_pktinfo(r3, 0x0, 0x8, &(0x7f00000000c0)={<r4=>0x0, @local, @local}, &(0x7f0000000140)=0xc)
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x1, r4})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x3c}}, 0x0)
r5 = socket(0xa, 0x1, 0x0)
ioctl(r5, 0x8916, &(0x7f0000000000))
ioctl(r5, 0x8936, &(0x7f0000000000))

4.963962207s ago: executing program 4:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]})
bind$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$inet6(0xa, 0x806, 0x0)
bind$inet6(r1, &(0x7f0000000100)={0xa, 0x4e23}, 0x1c)
listen(r1, 0x3)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(0x0, 0xffffffffffffffff)
sendmsg$IEEE802154_ASSOCIATE_RESP(0xffffffffffffffff, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r2, &(0x7f0000772000)={0x2, 0x4e23}, 0x10)
r3 = accept4(r1, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, r3)
sendmmsg(r3, &(0x7f0000001500), 0x588, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

4.723067113s ago: executing program 3:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000013140), 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000280))
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000640), 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, &(0x7f0000000100)={'bond_slave_0\x00', 0x0})
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000005000/0x18000)=nil, &(0x7f0000000380)=[@text32={0x20, &(0x7f00000001c0)="b8050000000f01c10f46a78900000066ba2100b067ee66ba2000b000ee6d2f2f800000c00f3266bac0000f3066b808008ed0660f38806f008ee0", 0x3a}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
setsockopt$MRT6_ADD_MIF(0xffffffffffffffff, 0x29, 0xc8, &(0x7f00000001c0), 0xc)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
ioctl$KVM_CREATE_PIT2(r2, 0x4040ae77, &(0x7f0000000040))
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_SET_PIT(r2, 0x8048ae66, &(0x7f0000000080)={[{0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f}, {0x3, 0x3, 0x4}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}]})
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, 0xffffffffffffffff, &(0x7f00000000c0)={0xa0002006})
ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0)={[0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2004cb], 0x0, 0x10202})
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
ioctl$KVM_RUN(r3, 0xae80, 0x0)

4.722451753s ago: executing program 2:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x6, 0x4, 0x8, 0x108}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002c6d8000850000000500000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r2}, 0x0, &(0x7f0000000040)}, 0x20)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x6e, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x3, &(0x7f0000000000)=[{0x35}, {}, {0x6}]})
ioctl$KVM_SET_VCPU_EVENTS(r6, 0x4040aea0, &(0x7f0000000080)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x4})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
preadv(0xffffffffffffffff, &(0x7f0000001880)=[{&(0x7f0000001a80)=""/102400, 0x19000}], 0x1, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000040)='mm_page_alloc\x00', r7}, 0x10)
syz_read_part_table(0x104f, &(0x7f0000001080)="$eJzsz7ENwjAABMAPsSCpIjEJHQUFBTMwCQMABcuwZJAhpKJFCOmu8Ev+d+HwW/vDIiXLoU1KWdWbph7bV3tOPy+v5RnjmF2bDOu56KY3H1yarsbm1E/D5Na+y7E53r/xJQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4N48AAAD//+w8CB8=")
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$devlink(&(0x7f0000000300), r3)
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(r8, &(0x7f00000006c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)={0x14, r9, 0x20, 0x70bd2d, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4000010}, 0x20004010)

4.394866772s ago: executing program 1:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000edff0000000000000000850000000f00000018010000646c012500000000000000007b1a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000540)='fib6_table_lookup\x00', r0}, 0x10)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r1, &(0x7f0000000380)='X', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x0, 0x0, @loopback}, 0x1c)

4.353919689s ago: executing program 1:
shutdown(0xffffffffffffffff, 0x0)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_ifreq(r0, 0x8947, &(0x7f00000000c0)={'rose0\x00', @ifru_ivalue})

4.264558102s ago: executing program 1:
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
read(r0, &(0x7f0000000800)=""/184, 0xb8)
write$UHID_CREATE(r0, 0x0, 0x0)
readv(r0, &(0x7f0000000140)=[{&(0x7f0000000080)=""/155, 0x9b}], 0x1)
write$UHID_DESTROY(r0, &(0x7f0000000200), 0x4)
openat$fuse(0xffffffffffffff9c, &(0x7f00000006c0), 0x2, 0x0)

3.829400087s ago: executing program 4:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_SET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01060000000000000000090000002c0004801300010062726f6164636173742d6c696e6b0000140007"], 0x40}}, 0x0)

3.734173941s ago: executing program 4:
r0 = io_uring_setup(0x1de0, &(0x7f00000007c0))
socket$inet6(0xa, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0)
syz_usb_connect$hid(0x1, 0x36, &(0x7f0000000240)={{0x12, 0x1, 0x201, 0x0, 0x0, 0x0, 0x8, 0x6666, 0x8801, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x3, 0x1, 0x0, 0x0, {0x9}}}]}}]}}, &(0x7f00000001c0)={0x0, 0x0, 0x8, &(0x7f0000000840)={0x5, 0xf, 0x8, 0x1, [@ptm_cap={0x3}]}, 0x6, [{0x0, 0x0}, {0xfe, &(0x7f0000000280)=@string={0xfe, 0x3, "9dd15dea18eb965728066dee6b8d69c79107a1e008cf7b4928143957b6fa8d0fcc529215bc4f54691b930f6e221d946d4854873c75506288064783b92b88913c54c777bc1c481d9bd2d23cdd2373f1de7a91d9ee3e4ca1f167a5ed59eb74cefa951a7e984203d551c92e48b8957719ab7782b07adf999d7b09931939e313e7beb79df73e76d03a973ba52b7eb695823bba80911998263ff3fd842aed76af482faf7d495737418c82a814ae783d79433769a7c92987b3ec51e078ebd31a4dcd9ba36005d91fb61ea161d7b9ea86aba303941b36ee11a546babc43f3a3f8483f76d9c8cd1353044e89a81599e14ffb4f56e25f3a18cc4656ba2705a86a"}}, {0x0, 0x0}, {0x3c, &(0x7f00000000c0)=ANY=[@ANYBLOB="3c03bd72e39572dd6c21541cc74371f505e1d8585bfb40e683915d607e39f3c25ef5ee1243c124058a7d2695f567b1bccf85410dd4e51bf13607c9e7"]}, {0xf, &(0x7f0000000100)=@string={0xf, 0x3, "2bea03155935649f4587f2b257"}}, {0x0, 0x0}]})

3.446528825s ago: executing program 0:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6(0xa, 0x0, 0x8000000003c)
sendmsg(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100), 0x0, 0x0, 0x0, 0x2c}, 0x4)
syz_open_dev$cec(&(0x7f0000000680), 0x0, 0x0)
statfs(&(0x7f0000000140)='./file0\x00', 0x0)
syz_open_dev$cec(&(0x7f0000000040), 0x0, 0x0)
getsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, 0x0, &(0x7f0000000080))
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000100)={@remote, 0x0, 0x2}, 0x0)
r4 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r5 = landlock_create_ruleset(&(0x7f0000000240)={0x3048}, 0x8, 0x0)
landlock_restrict_self(r5, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000440)='./file4\x00', 0xffffffffffffff9c, &(0x7f0000000480)='./file0\x00', 0x2)
ioctl$FS_IOC_GETFSLABEL(r4, 0x400452c8, &(0x7f0000000100))

3.383801934s ago: executing program 1:
bind$bt_hci(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x4)
write(r1, &(0x7f00000004c0)="2700000014000707030e0000120f0a0011000100fe601c8d14afa7841610817233b021f4246d67", 0x27)

3.285694158s ago: executing program 2:
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000980), 0x0, 0x0)
ioctl$SIOCGSKNS(r0, 0x894c, 0x0)
socket(0x0, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000100), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000000c0)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="1fe8ffff0000000000003b00000008000300", @ANYRES32=r3, @ANYBLOB="21003300d0800000080211000000080211000001505050505050000000000000", @ANYRES8=r1], 0x40}}, 0x0)

3.264766951s ago: executing program 3:
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@bloom_filter={0x1e, 0x0, 0x6cc, 0x6b9, 0xa20, 0xffffffffffffffff, 0xf2, '\x00', 0x0, 0xffffffffffffffff, 0x80, 0x2}, 0x48)
mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f00000004c0)={[{@upperdir={'upperdir', 0x3d, './file2'}}, {@metacopy_on}], [{@fscontext={'fscontext', 0x3d, 'root'}}, {@appraise}], 0x2c})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x10, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet(0x2, 0x3, 0x8d)
setsockopt$inet_msfilter(r3, 0x0, 0x8, &(0x7f0000000100)=ANY=[@ANYBLOB="be"], 0x1)
getsockopt$inet_pktinfo(r3, 0x0, 0x8, &(0x7f00000000c0)={<r4=>0x0, @local, @local}, &(0x7f0000000140)=0xc)
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000000)={@ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x1, r4})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x3c}}, 0x0)
r5 = socket(0xa, 0x1, 0x0)
ioctl(r5, 0x8916, &(0x7f0000000000))
ioctl(r5, 0x8936, &(0x7f0000000000))

3.200907611s ago: executing program 1:
io_uring_setup(0x0, &(0x7f0000000100))
unshare(0x68040200)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000001980)=ANY=[], &(0x7f0000000100)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0}, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r3=>0x0})
sendmsg$ETHTOOL_MSG_PRIVFLAGS_GET(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000b40)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r1, @ANYBLOB="350b00000000000000000d000f000c00018008000100", @ANYRES32=r3], 0x20}}, 0x0)

2.979581864s ago: executing program 2:
prctl$PR_SET_MM(0x23, 0x6, &(0x7f0000001000/0x4000)=nil)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, &(0x7f0000000280), 0x4)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000000)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYRES8], 0x0, 0x0, 0x0, 0x0, 0x0, 0x84}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x0, 0x5, 0x0, 0x0, 0x300, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x8}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x1d, 0x4, 0x9, 0x0, r3, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xfffffffc}, 0x48)
sched_setscheduler(0x0, 0x1, &(0x7f00000003c0)=0x7)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000640)=[0x0], 0x0, 0x0, 0x0, 0x1})
r4 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r4, 0x0, 0x80, &(0x7f0000000300)=@filter={'filter\x00', 0xe, 0x1, 0x130, [0x0, 0x20000100, 0x20000130, 0x20000160], 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0000000000e1297b0000000000000000000000000300000000000000000000000000000000000000ffffffff0000000000000000000000000012c31aa8b556307b0000160900000000000000000000000000000000000000ffffffff00000000000000000000000000000000000000000000000000ffffff7f0000b1000000000000000000000000feffffff010000000500000009000000000000000000106cf4aa4a6ac18d0000fdff6c6f000000000000000000000000000162200000000000000000000010000010010000000000001000000000a85f001a4b81692ef300000005000000aaaaaaaa03ffe9020000000000007000000078000000a000000041554449540000000000000000005939000000000000000000000000000000000800001800000d0000000000000000f4"]}, 0x1a8)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000340)=@raw=[@exit, @map_fd={0x18, 0x1, 0x1, 0x0, r3}, @alu={0x7, 0x1, 0x5, 0xa, 0xb, 0x0, 0x1}, @cb_func={0x18, 0xb}], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xffffffd4)
mbind(&(0x7f0000ff6000/0xa000)=nil, 0xa000, 0x4002, &(0x7f0000000000)=0x2, 0x3, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x10, &(0x7f0000000080)=0x9, 0x4)

2.628427877s ago: executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000100), 0x208e24b)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETS(r4, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "7e12ddc5a89047bf00"})
r5 = syz_open_pts(r4, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000200)=0x2)
read(r5, 0x0, 0x2006)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000000))
dup2(r5, 0xffffffffffffffff)
timer_settime(0x0, 0x0, &(0x7f0000000100)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)
r6 = gettid()
tkill(r6, 0x14)
connect$vsock_stream(r3, &(0x7f0000000340)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
r7 = syz_open_dev$video4linux(&(0x7f0000000000), 0x2004, 0x0)
ioctl$VIDIOC_SUBDEV_S_FMT(r7, 0xc040563d, 0x0)
prctl$PR_SCHED_CORE(0x53564d41, 0x0, 0x0, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

2.211745039s ago: executing program 3:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x0, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0xff, 0x7fc00100}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000340)={<r2=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r1, 0xc0182101, &(0x7f0000000100)={r2})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000480)={<r3=>0x0})
r4 = syz_io_uring_setup(0x1103, &(0x7f0000000380)={0x0, 0x0, 0x10100}, &(0x7f0000000100), 0x0)
syz_io_uring_setup(0x5e2, &(0x7f0000000280), &(0x7f0000000040)=<r5=>0x0, &(0x7f0000000180))
syz_io_uring_submit(r5, 0x0, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index, 0x0, 0x0})
io_uring_enter(r4, 0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r1, 0x40182103, &(0x7f0000000180)={r3, 0x3, r1})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(0xffffffffffffffff, 0xc0182101, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x7, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x2}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000001080)={0x3, 0xc, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800e9d35c379aac18bc00000000000018150000", @ANYRES32=r6, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000450000009500000000000000"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x18, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, &(0x7f0000000080)={0x26, 'hash\x00', 0x0, 0x0, 'cbcmac(twofish-generic)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r7, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d0ff0f1d0dbd30", 0x10)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb01001800000000000000300000003000000002000000000000000100000400000000000000004300000000000000000000000000000d000000000000000000000006020000000000"], 0x0, 0x4a}, 0x20)
r8 = syz_open_dev$tty20(0xc, 0x4, 0x1)
syz_emit_ethernet(0x44e, &(0x7f0000000180)=ANY=[@ANYBLOB="aaaaaaaaaaaa0180c200000186dd60d5b33204180000fc0000000000000000000000000000000000000000000000000000000000000062530000006d"], 0x0)
clock_gettime(0x0, &(0x7f00000007c0)={<r9=>0x0, <r10=>0x0})
recvmmsg(0xffffffffffffffff, &(0x7f0000000740)=[{{&(0x7f00000003c0)=@llc={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @random}, 0x80, &(0x7f0000000440)=[{&(0x7f00000004c0)=""/75, 0x4b}, {0x0}], 0x2, &(0x7f0000000680)=""/182, 0xb6}, 0x101}], 0x1, 0x1, &(0x7f0000000800)={r9, r10+60000000})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000480)={&(0x7f0000000840)=ANY=[@ANYBLOB="9feb010018000000000000002400000024000000020000000000000000000001000100000000000001000004000000000000000001000000000000000000", @ANYRES16=r9, @ANYRES8=r0, @ANYRESOCT=r0, @ANYBLOB="0cf93f4488e4df8c9b050154e5f167cacb36a8fb116932f1976ba00d350b1cf17ac72486fef3b10b48e50e0445ab56163b2f131912fa09297456c4f5258ade553b92c640b3ba1cbbce79031b736e640b9dcffcdd16d009b44a05a07448f757310217ede5cce57e6ae5e5306554625f4616b62077b977fea726b0a321d95fe6d86231d896a574dcb6119db3c9a102"], 0x0, 0x3e, 0x0, 0x4, 0x2}, 0xa)
dup(r8)

1.301436045s ago: executing program 2:
mremap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000, 0x0, &(0x7f0000ffe000/0x1000)=nil)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x35, 0x4, 0x0, 0x0, 0xd4, 0x64, 0x0, 0x0, 0x29, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x18, 0x0, 0x0, 0x9, [0x401, 0x5, 0x0, 0x0, 0x4]}, @timestamp_prespec={0x44, 0x44, 0xc0, 0x3, 0x1, [{@private=0xa010100}, {@multicast1}, {@remote, 0x8}, {@dev={0xac, 0x14, 0x14, 0x32}, 0x659}, {@broadcast}, {@empty}, {@multicast1, 0xffd200}, {@private=0xa010100}]}, @timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x0, [{@dev={0xac, 0x14, 0x14, 0x16}}, {@remote, 0x4}, {@multicast2}, {@private=0xa010101}, {@rand_addr=0x640100ff}, {@broadcast, 0x52b1}, {@multicast2}]}, @noop, @noop, @lsrr={0x83, 0xf, 0xdc, [@private=0xa010102, @rand_addr=0x64010102, @multicast1]}, @rr={0x7, 0x17, 0x0, [@dev, @remote, @multicast1, @private=0xa010102, @remote]}]}}}}})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r3, 0x0)
r4 = dup(r2)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})
ioctl$KVM_NMI(r5, 0xae9a)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000500)='tlb_flush\x00', r6}, 0x10)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(0xffffffffffffffff, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000d00)={&(0x7f0000000240)={0x44, 0x0, 0x31, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_TX_RATES={0x28, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0xc, 0x0, 0x0, 0x1, [@NL80211_TXRATE_HE_GI={0x5}]}, @NL80211_BAND_5GHZ={0x18, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HE={0x14}]}]}]}, 0x44}}, 0x0)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x2, 0x4, 0x6, 0xbaa}, 0x48)

1.219246887s ago: executing program 3:
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6}]})
bind$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$inet6(0xa, 0x806, 0x0)
bind$inet6(r1, &(0x7f0000000100)={0xa, 0x4e23}, 0x1c)
listen(r1, 0x3)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(0x0, 0xffffffffffffffff)
sendmsg$IEEE802154_ASSOCIATE_RESP(0xffffffffffffffff, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r2, &(0x7f0000772000)={0x2, 0x4e23}, 0x10)
r3 = accept4(r1, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$ethtool(0x0, r3)
sendmmsg(r3, &(0x7f0000001500), 0x588, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

316.012883ms ago: executing program 2:
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x7}, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000f, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
dup(0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sys_enter\x00', r0}, 0x10)
timerfd_settime(0xffffffffffffffff, 0x0, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x3, &(0x7f0000000040)=[{0x14}, {0x34, 0x0, 0x0, 0x7}, {0x6}]})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.bfq.io_service_time_recursive\x00', 0x275a, 0x0)
write$UHID_CREATE2(r2, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r2, 0x0)
ioctl$VIDIOC_SUBDEV_S_FRAME_INTERVAL(r2, 0xc0305616, &(0x7f0000000000)={0x0, {0x3, 0x80000000}})
listen(r1, 0xfff)
socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000440)={'sit0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x1, 0x0, 0x4, 0x0, @dev, @empty}}}})
r3 = socket(0x10, 0x802, 0x0)
write(r3, &(0x7f0000000140)="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", 0xfc)

240.821154ms ago: executing program 3:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
close(r0)
socket$alg(0x26, 0x5, 0x0)
r1 = syz_mount_image$exfat(&(0x7f0000000040), &(0x7f0000000000)='./bus\x00', 0x1a1000a, &(0x7f00000003c0)=ANY=[], 0x21, 0x1507, &(0x7f0000001b00)="$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")
r2 = creat(&(0x7f0000000580)='./bus\x00', 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
io_setup(0x206, &(0x7f0000000200)=<r3=>0x0)
io_submit(r3, 0x3, &(0x7f0000000340)=[&(0x7f00000000c0)={0x15, 0x0, 0x0, 0x1, 0x0, r2}, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x5, 0x8, r1, &(0x7f0000000600)="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", 0x1000, 0x4e5, 0x0, 0x3, r0}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x2, 0xffffffffffffffff, &(0x7f0000000400)="047d7e8bc97577d7e9a12bb3a20c2ccaa72bd80826ebd8758b37a16697a443b4d9dc923b3cbd7786be6b2779a08a2bd54853039f62fd398613d790000885f196416a2a6bff05ed768523635aa39ff56f42ce5379aeec126ccc6f0e8f9f3454c39f01bdae4a0b0020c980326b333607d4ff8b58461c3869e44624aebea8bebae2a5d8f4570fc2cfd1c67a09d4a399e417534ec341c1de4cf836924a93bf656f167f46bcc17dd16a2248", 0xa9, 0x1}])

205.476239ms ago: executing program 4:
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x6, 0x4, 0x8, 0x108}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002c6d8000850000000500000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r2}, 0x0, &(0x7f0000000040)}, 0x20)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r5, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x6e, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x3, &(0x7f0000000000)=[{0x35}, {}, {0x6}]})
ioctl$KVM_SET_VCPU_EVENTS(r6, 0x4040aea0, &(0x7f0000000080)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x4})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
preadv(0xffffffffffffffff, &(0x7f0000001880)=[{&(0x7f0000001a80)=""/102400, 0x19000}], 0x1, 0x0, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000040)='mm_page_alloc\x00', r7}, 0x10)
syz_read_part_table(0x104f, &(0x7f0000001080)="$eJzsz7ENwjAABMAPsSCpIjEJHQUFBTMwCQMABcuwZJAhpKJFCOmu8Ev+d+HwW/vDIiXLoU1KWdWbph7bV3tOPy+v5RnjmF2bDOu56KY3H1yarsbm1E/D5Na+y7E53r/xJQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4N48AAAD//+w8CB8=")
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$devlink(&(0x7f0000000300), r3)
sendmsg$DEVLINK_CMD_SB_TC_POOL_BIND_GET(r8, &(0x7f00000006c0)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)={0x14, r9, 0x20, 0x70bd2d, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x4000010}, 0x20004010)

0s ago: executing program 0:
r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x109842, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000000)=0x400)
r1 = socket$xdp(0x2c, 0x3, 0x0)
mmap$xdp(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x13, r1, 0x0)

kernel console output (not intermixed with test programs):

3606] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  238.444245][ T3606] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  238.473771][ T3606] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  238.529394][ T3606] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  238.576382][ T5836] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  238.584635][ T5836] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  238.596214][ T3606] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  238.715469][   T27] audit: type=1800 audit(1717620312.243:70): pid=6395 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="file1" dev="sda1" ino=1963 res=0 errno=0
[  239.384034][   T56] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  239.402215][ T3606] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  239.413650][ T4722] XFS (loop4): page discard on page ffffea0001563700, inode 0x42a, pos 1159168.
[  239.430247][ T4386] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  239.431955][ T3606] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  239.460602][   T56] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  239.489705][ T4386] XFS (loop4): Unmount and run xfs_repair
[  239.490614][ T3606] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  239.506823][ T4386] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  239.532169][ T4386] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  239.541237][   T27] audit: type=1800 audit(1717620313.093:71): pid=6399 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="file0" dev="sda1" ino=1963 res=0 errno=0
[  239.575887][ T4386] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  239.606455][ T4386] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  239.653016][ T4386] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  239.684521][ T4386] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  239.711690][ T4386] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  239.742860][ T4386] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  239.763254][ T4386] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  239.792173][ T4722] XFS (loop4): page discard on page ffffea0001563740, inode 0x42a, pos 1163264.
[  239.808315][ T3606] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  239.862314][ T3606] XFS (loop4): Unmount and run xfs_repair
[  239.885769][ T3606] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  239.911375][ T3606] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  239.952913][ T3606] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  239.967601][ T3566] Bluetooth: hci6: command tx timeout
[  239.982937][ T3606] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  240.151419][ T3606] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  240.161299][ T3606] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  240.170490][ T3606] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  240.180095][ T3606] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  240.189302][ T3606] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  240.198740][ T4722] XFS (loop4): page discard on page ffffea0001563780, inode 0x42a, pos 1167360.
[  240.209437][ T4386] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  240.297721][ T6411] serio: Serial port pts0
[  241.011801][ T4386] XFS (loop4): Unmount and run xfs_repair
[  241.023492][ T4386] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  241.031128][ T4386] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  241.040304][ T4386] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  241.049796][ T4386] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  241.067022][ T4386] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  241.087123][ T4386] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  241.106272][ T4386] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  241.117959][ T4386] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  241.146089][ T4386] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  241.175301][ T4722] XFS (loop4): page discard on page ffffea00015637c0, inode 0x42a, pos 1171456.
[  241.187561][ T4389] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  241.207762][ T4389] XFS (loop4): Unmount and run xfs_repair
[  241.219235][ T4389] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  241.228061][ T4389] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  241.246678][ T4389] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  241.256311][ T4389] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  241.275442][ T4389] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  241.325227][ T4389] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  241.337916][ T4389] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  241.364401][ T4389] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  241.388764][ T4389] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  241.419482][ T4722] XFS: metadata IO error: 55 callbacks suppressed
[  241.419500][ T4722] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x26e/0x370" at daddr 0x8 len 8 error 74
[  241.439052][ T4722] XFS (loop4): page discard on page ffffea0001563800, inode 0x42a, pos 1175552.
[  241.454709][ T1148] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  241.474886][   T27] audit: type=1326 audit(1717620315.023:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6420 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe63787cf69 code=0x0
[  241.516479][ T1148] XFS (loop4): Unmount and run xfs_repair
[  241.535735][ T1148] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  241.711647][ T1148] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  241.721064][ T1148] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  241.730228][ T1148] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  241.739252][ T1148] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  241.748674][ T1148] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  241.757597][ T1148] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  241.775157][ T1148] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  241.798724][ T1148] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  241.853204][ T6435] xt_TCPMSS: Only works on TCP SYN packets
[  241.932076][ T4722] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x26e/0x370" at daddr 0x8 len 8 error 74
[  241.943505][ T4722] XFS (loop4): page discard on page ffffea0001563840, inode 0x42a, pos 1179648.
[  242.646990][ T4498] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  242.708348][ T4498] XFS (loop4): Unmount and run xfs_repair
[  242.752422][ T4498] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  242.763665][ T6427] loop2: detected capacity change from 0 to 8192
[  242.782368][ T4498] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  242.790883][ T6442] loop1: detected capacity change from 0 to 2048
[  242.804589][ T4498] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  242.826828][ T6427]  loop2: p3 p4 < >
[  242.838290][ T6442] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  242.855395][ T6427] loop2: p3 start 619312 is beyond EOD, truncated
[  242.869610][ T4498] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  242.888153][ T6442] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  242.888918][ T4498] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  242.918421][ T4498] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  242.943189][ T4498] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  243.051835][ T4498] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  243.071121][ T4498] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  243.086583][ T4722] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x26e/0x370" at daddr 0x8 len 8 error 74
[  243.098074][ T4722] XFS (loop4): page discard on page ffffea0001563880, inode 0x42a, pos 1183744.
[  243.110298][ T4498] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  243.127148][ T4498] XFS (loop4): Unmount and run xfs_repair
[  243.149811][ T4498] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  243.181071][ T4498] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  243.225929][ T4498] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  243.234825][ T4498] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  243.274325][ T4498] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  243.297822][ T4498] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  243.313625][ T4498] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  243.348608][ T4498] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  243.368492][ T4498] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  243.395565][ T4386] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  243.404699][ T4722] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x26e/0x370" at daddr 0x8 len 8 error 74
[  243.417188][ T4722] XFS (loop4): page discard on page ffffea00015638c0, inode 0x42a, pos 1187840.
[  243.437122][   T14] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  243.509483][   T14] XFS (loop4): Unmount and run xfs_repair
[  243.530453][   T14] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  243.542818][   T14] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  243.561384][   T14] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  243.572948][   T14] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  243.592194][   T14] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  243.645298][   T14] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  243.656138][   T14] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  243.682275][   T14] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  243.685183][ T4386] usb 5-1: Using ep0 maxpacket: 32
[  243.692670][   T14] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  243.745379][ T4722] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x26e/0x370" at daddr 0x8 len 8 error 74
[  243.757332][ T4722] XFS (loop4): page discard on page ffffea0001563900, inode 0x42a, pos 1191936.
[  243.768168][   T14] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  243.784481][   T14] XFS (loop4): Unmount and run xfs_repair
[  243.815317][   T14] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  243.822737][   T14] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  243.855480][ T4386] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  243.865694][   T14] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  243.874662][   T14] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  243.882896][ T4386] usb 5-1: config 0 interface 0 altsetting 31 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  243.931750][ T4386] usb 5-1: config 0 interface 0 has no altsetting 0
[  243.942048][   T14] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  243.977506][   T14] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  243.997821][   T14] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  244.035485][ T4386] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  244.052710][   T14] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  244.054651][ T4386] usb 5-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[  244.102327][   T14] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  244.126363][ T4386] usb 5-1: Manufacturer: syz
[  244.131046][ T4722] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x26e/0x370" at daddr 0x8 len 8 error 74
[  244.143682][ T4722] XFS (loop4): page discard on page ffffea0001563940, inode 0x42a, pos 1196032.
[  244.163987][ T4390] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  244.179242][ T4386] usb 5-1: config 0 descriptor??
[  244.199952][ T4390] XFS (loop4): Unmount and run xfs_repair
[  244.217168][ T4390] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  244.236397][ T4386] hub 5-1:0.0: bad descriptor, ignoring hub
[  244.242345][ T4386] hub: probe of 5-1:0.0 failed with error -5
[  244.257758][ T4390] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  244.273060][ T4386] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[  244.285617][ T6467] loop2: detected capacity change from 0 to 64
[  244.291930][ T4390] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  244.332226][ T4390] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  244.346624][ T4390] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  244.357119][ T4390] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  244.569299][ T4390] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  244.578832][ T4390] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  244.587926][ T4390] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  244.596992][ T4722] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x26e/0x370" at daddr 0x8 len 8 error 74
[  244.608420][ T4722] XFS (loop4): page discard on page ffffea0001563980, inode 0x42a, pos 1200128.
[  244.618538][ T3606] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  244.654430][ T3606] XFS (loop4): Unmount and run xfs_repair
[  244.745346][   T27] audit: type=1800 audit(1717620318.263:73): pid=6471 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="file1" dev="loop2" ino=22 res=0 errno=0
[  244.822014][ T3606] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  244.987446][ T3606] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  245.292288][ T3606] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  245.333929][ T3606] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  245.378625][ T3606] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  245.416360][ T3606] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  245.449195][ T3606] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  245.473802][ T3606] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  245.526713][ T3606] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  245.547166][ T4722] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x26e/0x370" at daddr 0x8 len 8 error 74
[  245.558597][ T4722] XFS (loop4): page discard on page ffffea00015639c0, inode 0x42a, pos 1204224.
[  245.570343][ T4390] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  245.586341][ T4390] XFS (loop4): Unmount and run xfs_repair
[  245.596367][ T4390] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  245.608276][ T4390] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  245.816549][ T4390] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  245.844408][ T4390] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  246.435847][ T6481] xt_TCPMSS: Only works on TCP SYN packets
[  247.018625][ T4390] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  247.042444][ T4390] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  247.122422][ T6480] serio: Serial port pts0
[  247.156307][ T4390] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  247.195641][ T4390] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  247.246114][ T4390] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  247.315843][ T4722] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x26e/0x370" at daddr 0x8 len 8 error 74
[  247.327561][ T4722] XFS (loop4): page discard on page ffffea0001563a00, inode 0x42a, pos 1208320.
[  247.341114][ T4888] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  247.395392][ T4888] XFS (loop4): Unmount and run xfs_repair
[  247.425834][ T4888] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  247.457987][ T4888] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  247.489350][ T4888] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  247.527609][ T4888] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  247.542957][ T4888] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  247.555410][ T4888] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  247.564447][ T4888] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  247.583649][ T4888] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  247.593119][ T4888] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  247.611060][ T4722] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x26e/0x370" at daddr 0x8 len 8 error 74
[  247.623644][ T4722] XFS (loop4): page discard on page ffffea0001563a40, inode 0x42a, pos 1212416.
[  247.647275][ T4390] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  247.659236][ T4386] usb 5-1: USB disconnect, device number 7
[  247.678755][ T4390] XFS (loop4): Unmount and run xfs_repair
[  247.690142][ T4390] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  247.702994][ T4390] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  247.723749][ T4390] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  247.742318][ T4390] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  247.752749][ T4390] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  247.770759][ T4390] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  247.782167][ T4390] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  247.798081][ T4390] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  247.812815][ T4390] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  247.827738][ T4722] XFS (loop4): page discard on page ffffea0001563a80, inode 0x42a, pos 1216512.
[  247.845605][ T4888] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  247.865871][ T4888] XFS (loop4): Unmount and run xfs_repair
[  247.872084][ T4888] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  247.887766][ T4888] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  247.897220][ T4888] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  247.906638][ T4888] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  247.915947][ T4888] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  247.926862][ T4888] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  247.936160][ T4888] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  247.955490][ T4888] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  247.971227][ T4888] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  247.990761][ T4722] XFS (loop4): page discard on page ffffea0001563ac0, inode 0x42a, pos 1220608.
[  248.007620][ T4888] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  248.031452][ T4888] XFS (loop4): Unmount and run xfs_repair
[  248.048075][ T4888] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  248.061175][ T4888] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  248.078394][ T4888] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  248.087439][ T4888] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  248.103373][ T4888] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  248.112349][ T4888] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  248.121920][ T4888] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  248.132089][ T4888] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  248.142842][ T4888] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  248.152004][ T4722] XFS (loop4): page discard on page ffffea0001563b00, inode 0x42a, pos 1224704.
[  248.166942][ T4888] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  248.174651][ T4888] hid-generic 0000:0000:0000.0006: unknown main item tag 0x0
[  248.183361][ T4390] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  248.202326][ T4888] hid-generic 0000:0000:0000.0006: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  248.214083][ T4390] XFS (loop4): Unmount and run xfs_repair
[  248.221682][ T4390] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  248.236776][ T4390] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  248.264492][ T4390] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  248.277351][ T4390] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  248.302589][ T4390] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  248.326579][ T4390] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  248.344865][ T4390] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  248.354315][ T4390] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  248.363534][ T4390] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  248.377888][ T4722] XFS (loop4): page discard on page ffffea0001563b40, inode 0x42a, pos 1228800.
[  248.396516][ T4390] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  248.445562][ T4390] XFS (loop4): Unmount and run xfs_repair
[  248.451447][ T4390] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  248.459640][ T4390] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  248.468675][ T4390] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  248.468991][   T27] audit: type=1326 audit(1717620322.023:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6495 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f791347cf69 code=0x0
[  248.477779][ T4390] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  248.536142][ T4390] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  248.559819][ T4390] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  248.584723][ T4390] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  248.621411][ T4390] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  248.716814][ T4390] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  248.741021][ T4722] XFS (loop4): page discard on page ffffea0001563b80, inode 0x42a, pos 1232896.
[  248.754083][ T4888] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  248.772504][ T4888] XFS (loop4): Unmount and run xfs_repair
[  248.778832][ T4888] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  248.794860][ T4888] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  248.823762][ T4888] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  248.860656][ T4888] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  248.882407][ T4888] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  248.901742][ T6487] loop0: detected capacity change from 0 to 40427
[  248.910780][ T4888] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  248.947274][ T4888] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  248.963980][ T6510] loop2: detected capacity change from 0 to 64
[  248.988757][ T4888] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  248.999407][ T6487] F2FS-fs (loop0): Found nat_bits in checkpoint
[  249.031965][ T4888] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  249.070392][ T4722] XFS (loop4): page discard on page ffffea0001563bc0, inode 0x42a, pos 1236992.
[  249.082010][ T4390] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  249.119167][ T4390] XFS (loop4): Unmount and run xfs_repair
[  249.160127][ T4390] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  249.240287][ T4390] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  249.375432][   T27] audit: type=1800 audit(1717620322.903:75): pid=6517 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="file1" dev="loop2" ino=22 res=0 errno=0
[  249.444343][ T6504] loop1: detected capacity change from 0 to 8192
[  249.737717][ T6487] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  250.065509][ T4390] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  250.075540][ T4390] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  250.084408][ T4390] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  250.093312][ T4390] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  250.102191][ T4390] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  250.111066][ T4390] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  250.120192][ T4390] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  250.130286][ T4722] XFS (loop4): page discard on page ffffea0001563c00, inode 0x42a, pos 1241088.
[  250.150198][ T4390] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  250.182740][ T4390] XFS (loop4): Unmount and run xfs_repair
[  250.202213][ T4390] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  250.228157][ T6504]  loop1: p3 p4 < >
[  250.229198][ T4390] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  250.232132][ T6504] loop1: p3 start 619312 is beyond EOD, 
[  250.251092][ T3566] Bluetooth: hci5: Ignoring HCI_Connection_Complete for existing connection
[  250.358732][   T27] audit: type=1800 audit(1717620323.883:76): pid=6521 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=10 res=0 errno=0
[  250.545596][ T6504] truncated
[  250.939476][ T4390] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  250.949231][ T4390] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  250.958126][ T4390] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  250.967030][ T4390] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  250.975919][ T4390] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  250.984868][ T4390] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  250.994580][ T4390] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  251.003773][ T4722] XFS (loop4): page discard on page ffffea0001563c40, inode 0x42a, pos 1245184.
[  251.024266][ T4386] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  251.036279][ T3002]  loop1: p3 p4 < >
[  251.040444][ T3002] loop1: p3 start 619312 is beyond EOD, truncated
[  251.055261][ T4386] XFS (loop4): Unmount and run xfs_repair
[  251.061467][ T4386] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  251.096124][ T4386] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  251.119336][ T4386] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  251.134468][ T4386] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  251.145886][ T4386] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  251.154866][ T4386] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  251.155728][ T3573] __loop_clr_fd: partition scan of loop1 failed (rc=-16)
[  251.171220][ T3554] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  251.177487][ T4386] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  251.189269][ T3554] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  251.215554][ T3554] Buffer I/O error on dev loop1p4, logical block 0, async page read
[  251.220555][ T4386] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  251.244630][ T3554] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  251.265256][ T4386] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  251.265519][ T3554] Buffer I/O error on dev loop1p4, logical block 0, async page read
[  251.301357][ T3554] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  251.323167][ T3554] Buffer I/O error on dev loop1p4, logical block 0, async page read
[  251.340326][ T3554] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  251.367725][ T3554] Buffer I/O error on dev loop1p4, logical block 0, async page read
[  251.395551][ T3554] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  251.435230][ T3554] Buffer I/O error on dev loop1p4, logical block 0, async page read
[  251.446792][ T4722] XFS (loop4): page discard on page ffffea0001563c80, inode 0x42a, pos 1249280.
[  251.456785][ T3606] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  251.515386][ T3606] XFS (loop4): Unmount and run xfs_repair
[  251.541114][ T3606] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  251.554058][ T3554] udevd[3554]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  251.579153][ T3606] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  251.596941][ T6529] loop2: detected capacity change from 0 to 512
[  251.614334][ T3606] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  251.645201][ T3606] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  251.654182][ T3606] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  251.684453][ T3554] udevd[3554]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  251.694826][ T3606] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  251.707177][ T6529] EXT4-fs error (device loop2): ext4_ext_check_inode:520: inode #15: comm syz-executor.2: pblk 0 bad header/extent: invalid eh_entries - magic f30a, entries 24833, max 4(4), depth 0(0)
[  251.732894][ T6529] EXT4-fs error (device loop2): ext4_orphan_get:1401: comm syz-executor.2: couldn't read orphan inode 15 (err -117)
[  251.756299][ T3606] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  251.774470][ T3606] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  251.793420][ T6529] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  251.812837][ T3606] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  251.833329][ T6529] ext4 filesystem being mounted at /root/syzkaller-testdir4272656379/syzkaller.ZjXp6H/9/file0 supports timestamps until 2038 (0x7fffffff)
[  251.855388][ T4722] XFS (loop4): page discard on page ffffea0001563cc0, inode 0x42a, pos 1253376.
[  251.879852][ T4386] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  251.904608][ T4386] XFS (loop4): Unmount and run xfs_repair
[  252.049637][ T4386] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  252.116298][ T4386] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  252.165251][ T4386] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  252.174148][ T4386] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  252.221952][ T4386] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  252.241798][ T4386] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  252.262965][ T4386] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  252.305159][ T4386] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  252.314062][ T4386] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  252.353286][ T4722] XFS (loop4): page discard on page ffffea0001563d00, inode 0x42a, pos 1257472.
[  252.370505][ T4390] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  252.386056][ T4283] syz-executor.0: attempt to access beyond end of device
[  252.386056][ T4283] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  252.401031][ T4390] XFS (loop4): Unmount and run xfs_repair
[  252.407358][ T4390] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  252.427832][ T4390] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  252.447806][ T4390] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  252.466724][ T4390] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  252.505290][ T4390] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  252.514188][ T4390] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  252.569806][ T4390] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  252.590583][ T4390] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  252.622056][ T4390] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  252.645417][ T4722] XFS (loop4): page discard on page ffffea0001563d40, inode 0x42a, pos 1261568.
[  252.657072][ T4386] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  252.699290][ T4386] XFS (loop4): Unmount and run xfs_repair
[  252.705762][ T4386] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  252.720993][ T4386] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  252.742158][ T4386] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  252.781824][ T4386] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  252.809766][ T4386] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  252.840155][ T4386] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  252.868706][ T4386] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  252.886752][ T4386] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  252.915343][ T4386] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  252.946757][ T4390] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  252.970816][ T4390] XFS (loop4): Unmount and run xfs_repair
[  253.026318][ T4390] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  253.033734][ T4390] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  253.076451][ T4390] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  253.107761][ T4390] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  253.147077][ T4390] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  253.167785][ T4390] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  253.198796][ T4390] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  253.223309][ T4390] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  253.248756][ T4390] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  253.271417][ T4722] xfs_discard_folio: 1 callbacks suppressed
[  253.271436][ T4722] XFS (loop4): page discard on page ffffea0001563dc0, inode 0x42a, pos 1269760.
[  253.287517][ T3606] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  253.344337][ T3606] XFS (loop4): Unmount and run xfs_repair
[  253.370409][ T3606] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  253.394090][ T3606] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  253.425868][ T3606] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  253.454490][ T6547] loop3: detected capacity change from 0 to 4096
[  253.495044][ T6547] ntfs3: loop3: Different NTFS' sector size (2048) and media sector size (512)
[  253.601658][ T3606] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  253.610990][ T3606] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  253.620226][ T3606] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  253.629616][ T3606] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  253.639006][ T3606] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  253.648097][ T3606] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  253.658048][ T4722] XFS (loop4): page discard on page ffffea0001563e00, inode 0x42a, pos 1273856.
[  253.669912][ T3606] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  253.672142][ T6547] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  253.747974][ T6555] serio: Serial port pts0
[  253.763285][ T3606] XFS (loop4): Unmount and run xfs_repair
[  253.847284][ T3606] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  253.906503][ T3606] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  253.934453][ T3606] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  253.987030][ T3606] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  254.023786][ T3606] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  254.084276][ T3606] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  254.152845][ T3606] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  254.162258][ T3606] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  254.173704][ T3606] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  254.182859][ T4722] XFS (loop4): page discard on page ffffea0001563e40, inode 0x42a, pos 1277952.
[  254.196269][ T4390] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  254.207615][ T4390] XFS (loop4): Unmount and run xfs_repair
[  254.219337][ T4390] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  254.221567][ T6179] EXT4-fs (loop2): unmounting filesystem.
[  254.251343][ T4390] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  254.276968][ T4390] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  254.311467][ T4390] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  254.325043][ T4390] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  254.331882][ T3575] Bluetooth: hci4: Malformed LE Event: 0x0d
[  254.338578][ T4390] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  254.405250][ T4390] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  254.414162][ T4390] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  254.455280][ T4390] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  254.464320][ T4722] XFS (loop4): page discard on page ffffea0001563e80, inode 0x42a, pos 1282048.
[  254.486770][ T4386] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  254.514140][    T9] ntfs3: loop3: ntfs3_write_inode r=5 failed, -22.
[  254.542356][ T4386] XFS (loop4): Unmount and run xfs_repair
[  254.552220][ T4386] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  254.562907][ T3568] ntfs3: loop3: ntfs_evict_inode r=5 failed, -22.
[  254.591965][ T4386] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  254.627581][ T4386] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  254.676460][ T4386] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  254.722318][ T4386] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  254.770904][ T4386] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  254.780137][ T4386] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  254.840700][ T4386] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  254.873294][ T4386] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  254.911207][ T4722] XFS (loop4): page discard on page ffffea0001563ec0, inode 0x42a, pos 1286144.
[  254.922138][ T4390] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  254.971650][ T4390] XFS (loop4): Unmount and run xfs_repair
[  255.205861][ T4390] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  255.350212][ T4390] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  255.620866][ T4390] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  255.657086][ T4390] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  255.675862][ T4390] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  255.684758][ T4390] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  255.725689][ T1255] ieee802154 phy0 wpan0: encryption failed: -22
[  255.775272][ T4390] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  255.817420][ T4390] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  255.843328][ T4390] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  255.873022][ T4722] XFS (loop4): page discard on page ffffea0001563f00, inode 0x42a, pos 1290240.
[  255.885568][   T14] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  255.919265][   T14] XFS (loop4): Unmount and run xfs_repair
[  256.008865][   T14] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  256.051015][   T14] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  256.070178][   T14] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  256.096283][   T14] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  256.120188][   T14] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  256.146968][   T14] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  256.171625][   T14] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  256.203862][   T14] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  256.230991][   T14] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  256.280047][ T4722] XFS (loop4): page discard on page ffffea0001563f40, inode 0x42a, pos 1294336.
[  256.289986][   T14] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  256.340276][   T14] XFS (loop4): Unmount and run xfs_repair
[  256.371128][   T14] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  256.402344][   T14] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  256.565558][   T27] audit: type=1804 audit(1717620330.083:77): pid=6599 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir2506603798/syzkaller.N663zk/154/file0" dev="sda1" ino=1967 res=1 errno=0
[  256.595779][   T14] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  257.276143][   T14] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  257.285045][   T14] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  257.294021][   T14] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  257.307658][   T14] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  257.317154][   T14] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  257.326075][   T14] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  257.335257][ T4722] XFS (loop4): page discard on page ffffea0001563f80, inode 0x42a, pos 1298432.
[  257.348073][ T3606] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  257.386644][ T3606] XFS (loop4): Unmount and run xfs_repair
[  257.392410][ T3606] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  257.400801][ T3606] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  257.410071][ T3606] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  257.419007][ T3606] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  257.441896][ T3606] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  257.476356][ T3606] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  257.501080][ T3606] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  257.521753][ T6574] loop0: detected capacity change from 0 to 40427
[  257.529603][ T3606] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  257.547935][ T3575] Bluetooth: hci5: Ignoring HCI_Connection_Complete for existing connection
[  257.558529][ T3606] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  257.567867][ T4722] XFS (loop4): page discard on page ffffea0001563fc0, inode 0x42a, pos 1302528.
[  257.592349][ T3606] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  257.616986][ T3606] XFS (loop4): Unmount and run xfs_repair
[  257.634150][ T3606] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  257.646487][ T6574] F2FS-fs (loop0): Found nat_bits in checkpoint
[  257.672895][ T3606] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  257.718641][ T3606] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  257.755250][ T3606] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  257.790826][ T3606] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  257.829902][ T3606] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  257.864523][ T3606] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  257.891238][ T3606] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  257.916742][ T3606] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  257.944971][ T4722] XFS (loop4): page discard on page ffffea000152f000, inode 0x42a, pos 1306624.
[  257.958125][ T4389] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  257.987002][ T4389] XFS (loop4): Unmount and run xfs_repair
[  258.033965][ T4389] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  258.065537][ T4389] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  258.074433][ T4389] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  258.086636][ T6610] loop3: detected capacity change from 0 to 4096
[  258.113194][ T6610] ntfs3: loop3: Different NTFS' sector size (2048) and media sector size (512)
[  258.138743][ T4389] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  258.173908][ T4389] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  258.196252][ T4389] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  258.231844][ T4389] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  258.258861][ T4389] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  258.285558][ T4389] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  258.310600][ T4722] XFS (loop4): page discard on page ffffea000152f040, inode 0x42a, pos 1310720.
[  258.324435][ T4498] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  258.325991][ T6610] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  258.343290][ T4498] XFS (loop4): Unmount and run xfs_repair
[  258.391314][ T4498] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  258.413241][ T4498] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  258.450977][ T4498] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  258.487817][ T4498] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  258.518419][ T4498] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  258.546610][ T4498] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  258.587449][ T4498] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  258.616864][ T4498] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  258.637259][ T4498] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  258.656917][ T4722] XFS (loop4): page discard on page ffffea000152f080, inode 0x42a, pos 1314816.
[  258.666964][ T4389] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  258.679282][   T33] ntfs3: loop3: ntfs3_write_inode r=5 failed, -22.
[  258.689739][ T3568] ntfs3: loop3: ntfs_evict_inode r=5 failed, -22.
[  258.712981][ T4389] XFS (loop4): Unmount and run xfs_repair
[  258.735612][ T4389] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  258.766362][ T4389] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  258.811306][ T4389] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  258.844841][ T4389] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  258.871692][ T4389] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  258.902844][ T4389] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  258.995338][ T4389] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  259.004237][ T4389] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  259.077661][ T4389] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  259.098566][ T6622] process 'syz-executor.2' launched './file1' with NULL argv: empty string added
[  259.260769][ T4722] XFS (loop4): page discard on page ffffea000152f0c0, inode 0x42a, pos 1318912.
[  259.272333][ T3606] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  259.365223][ T6635] serio: Serial port pts0
[  259.648683][ T3606] XFS (loop4): Unmount and run xfs_repair
[  259.654449][ T3606] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  259.662577][ T3606] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  259.672353][ T3606] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  259.725164][ T3606] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  259.734145][ T3606] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  259.785177][ T3606] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  259.794073][ T3606] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  259.862242][ T3606] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  259.903251][ T3606] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  259.936564][ T4722] XFS (loop4): page discard on page ffffea000152f100, inode 0x42a, pos 1323008.
[  259.954439][ T3606] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  259.995290][ T3606] XFS (loop4): Unmount and run xfs_repair
[  260.001068][ T3606] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  260.027680][ T3606] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  260.063523][ T3606] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  260.118085][ T3606] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  260.195371][ T3606] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  260.211048][ T3606] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  260.262118][ T3606] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  260.295260][ T3606] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  260.304147][ T3606] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  260.345597][   T27] audit: type=1326 audit(1717620333.903:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6639 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa06987cf69 code=0x0
[  260.368460][ T4722] XFS (loop4): page discard on page ffffea000152f140, inode 0x42a, pos 1327104.
[  260.385749][ T3606] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  260.444168][ T3606] XFS (loop4): Unmount and run xfs_repair
[  260.465498][ T3606] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  260.525240][ T3606] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  260.573364][ T3606] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  260.617252][ T3606] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  260.655290][ T3606] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  260.664197][ T3606] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  260.715160][ T3606] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  260.741636][ T3606] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  260.770863][ T3606] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  260.801354][ T4722] XFS (loop4): page discard on page ffffea000152f180, inode 0x42a, pos 1331200.
[  260.811716][ T3606] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  260.859113][ T3606] XFS (loop4): Unmount and run xfs_repair
[  260.875183][  T152] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  260.895163][ T3606] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  260.902584][ T3606] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  260.975309][ T3606] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  260.984209][ T3606] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  261.015144][ T3606] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  261.024039][ T3606] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  261.072275][ T3606] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  261.100676][ T3606] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  261.115428][  T152] usb 3-1: Using ep0 maxpacket: 32
[  261.130285][ T3606] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  261.161164][ T4722] XFS (loop4): page discard on page ffffea000152f1c0, inode 0x42a, pos 1335296.
[  261.172876][ T4888] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  261.197548][ T4888] XFS (loop4): Unmount and run xfs_repair
[  261.203484][ T4888] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  261.245489][  T152] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  261.255789][ T4888] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  261.264661][ T4888] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  261.303827][  T152] usb 3-1: config 0 interface 0 altsetting 31 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  261.328708][  T152] usb 3-1: config 0 interface 0 has no altsetting 0
[  261.339961][ T4888] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  261.357360][ T4888] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  261.371827][ T4888] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  261.404288][ T4888] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  261.423623][ T4888] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  261.445417][  T152] usb 3-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  261.462390][  T152] usb 3-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[  261.479949][ T4888] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  261.503433][  T152] usb 3-1: Manufacturer: syz
[  261.523581][ T4722] XFS (loop4): page discard on page ffffea000152f200, inode 0x42a, pos 1339392.
[  261.536036][ T4389] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  261.565298][  T152] usb 3-1: config 0 descriptor??
[  261.574797][ T4389] XFS (loop4): Unmount and run xfs_repair
[  261.587546][ T4389] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  261.769116][  T152] hub 3-1:0.0: bad descriptor, ignoring hub
[  261.775437][  T152] hub: probe of 3-1:0.0 failed with error -5
[  261.782996][  T152] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[  261.791279][ T4389] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  261.815151][ T4389] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  261.824046][ T4389] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  261.875837][ T4389] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  261.884992][ T4389] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  261.941294][ T4389] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  262.065133][ T4389] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  262.074031][ T4389] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  262.112940][ T4722] XFS (loop4): page discard on page ffffea000152f240, inode 0x42a, pos 1343488.
[  262.131787][ T4390] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  262.159308][ T4390] XFS (loop4): Unmount and run xfs_repair
[  262.196583][ T4390] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  262.301744][ T4390] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  262.347701][ T4390] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  262.413718][ T4390] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  262.459498][ T4390] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  262.495791][ T4390] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  262.529010][ T4390] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  262.577444][ T4390] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  262.612252][ T4390] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  262.649340][ T4722] XFS (loop4): page discard on page ffffea000152f280, inode 0x42a, pos 1347584.
[  262.670579][   T14] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  262.704072][   T14] XFS (loop4): Unmount and run xfs_repair
[  262.723199][   T14] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  262.745901][   T14] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  262.804909][   T14] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  262.831199][   T14] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  262.865808][   T14] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  262.886415][   T14] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  262.969248][   T14] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  262.985352][   T14] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  262.994229][   T14] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  263.055853][ T3606] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  263.074843][ T3606] XFS (loop4): Unmount and run xfs_repair
[  263.090240][ T3606] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  263.117979][ T3606] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  263.139777][ T3606] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  263.152969][ T3606] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  263.171344][ T3606] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  263.184672][ T3606] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  263.202497][ T3606] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  263.212858][ T3606] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  263.229681][ T3606] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  263.273580][ T4498] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  263.310842][ T4498] XFS (loop4): Unmount and run xfs_repair
[  263.348478][ T4498] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  263.373964][ T4498] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  263.401910][ T4498] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  263.417722][ T4498] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  263.434429][ T4498] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  263.452344][ T4498] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  263.467962][ T4498] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  263.483708][ T4498] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  263.502155][ T4498] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  263.519076][ T4722] xfs_discard_folio: 2 callbacks suppressed
[  263.519094][ T4722] XFS (loop4): page discard on page ffffea000152f340, inode 0x42a, pos 1359872.
[  263.537171][ T4389] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  263.548200][ T4389] XFS (loop4): Unmount and run xfs_repair
[  263.553922][ T4389] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  263.561906][ T4389] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  263.573904][ T4389] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  263.594348][ T4389] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  263.612419][ T4389] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  263.680712][ T4389] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  263.733693][ T4389] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  263.781379][ T4389] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  263.835682][ T4389] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  263.900981][ T4722] XFS (loop4): page discard on page ffffea000152f380, inode 0x42a, pos 1363968.
[  263.916733][  T152] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  263.941996][  T152] XFS (loop4): Unmount and run xfs_repair
[  263.961452][  T152] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  263.981504][  T152] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  264.169467][   T27] audit: type=1804 audit(1717620337.623:79): pid=6704 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir2506603798/syzkaller.N663zk/164/file0" dev="sda1" ino=1967 res=1 errno=0
[  264.424657][  T152] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  264.496742][  T152] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  264.562209][  T152] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  264.639518][  T152] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  264.844842][  T152] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  264.879747][  T152] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  264.895218][  T152] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  264.904663][ T4722] XFS (loop4): page discard on page ffffea000152f3c0, inode 0x42a, pos 1368064.
[  264.918235][ T4386] usb 3-1: USB disconnect, device number 8
[  264.928351][   T22] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  264.947881][   T22] XFS (loop4): Unmount and run xfs_repair
[  264.953616][   T22] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  264.961366][   T22] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  264.971475][   T22] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  264.989514][   T22] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  265.012132][   T22] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  265.028868][   T22] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  265.068296][   T22] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  265.105553][   T22] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  265.114593][   T22] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  265.162962][ T4722] XFS (loop4): page discard on page ffffea000152f400, inode 0x42a, pos 1372160.
[  265.289781][   T27] audit: type=1326 audit(1717620338.843:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6694 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe63787cf69 code=0x0
[  265.333289][   T22] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  265.347919][   T22] XFS (loop4): Unmount and run xfs_repair
[  265.353680][   T22] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  265.361666][   T22] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  265.371839][   T22] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  265.387778][   T22] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  265.397209][   T22] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  265.416065][   T22] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  265.452771][   T22] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  265.488218][   T22] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  265.537593][   T22] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  265.575850][ T4722] XFS (loop4): page discard on page ffffea000152f440, inode 0x42a, pos 1376256.
[  265.590868][   T14] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  265.613416][   T14] XFS (loop4): Unmount and run xfs_repair
[  265.628444][   T14] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  265.645239][   T14] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  265.654147][   T14] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  265.716669][   T14] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  265.762479][   T14] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  265.810834][   T14] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  265.829741][   T14] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  265.860800][   T14] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  265.874782][   T14] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  265.936041][ T4722] XFS (loop4): page discard on page ffffea000152f480, inode 0x42a, pos 1380352.
[  265.951615][ T4386] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  266.005400][   T22] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  266.013107][ T4386] XFS (loop4): Unmount and run xfs_repair
[  266.035150][ T4386] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  266.042571][ T4386] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  266.090602][ T4386] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  266.115380][ T4386] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  266.124324][ T4386] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  266.135023][ T4386] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  266.175234][ T4386] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  266.184122][ T4386] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  266.217728][ T4386] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  266.242984][ T4722] XFS (loop4): page discard on page ffffea000152f4c0, inode 0x42a, pos 1384448.
[  266.263620][ T4386] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  266.285370][   T22] usb 5-1: Using ep0 maxpacket: 32
[  266.304932][ T4386] XFS (loop4): Unmount and run xfs_repair
[  266.335849][ T4386] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  266.362194][ T4386] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  266.393241][ T4386] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  266.418061][ T4386] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  266.427626][   T22] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  266.448471][   T22] usb 5-1: config 0 interface 0 altsetting 31 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  266.472699][ T4386] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  266.492178][ T4386] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  266.507564][   T22] usb 5-1: config 0 interface 0 has no altsetting 0
[  266.509276][ T6745] loop2: detected capacity change from 0 to 2048
[  266.524650][ T4386] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  266.551581][ T4386] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  266.573308][ T4386] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  266.591054][ T6749] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  266.605888][   T22] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  266.623681][ T4722] XFS (loop4): page discard on page ffffea000152f500, inode 0x42a, pos 1388544.
[  266.628723][   T22] usb 5-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[  266.643137][ T3575] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci6/hci6:201'
[  266.653159][ T3575] CPU: 0 PID: 3575 Comm: kworker/u5:5 Not tainted 6.1.92-syzkaller #0
[  266.661335][ T3575] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  266.661785][   T22] usb 5-1: Manufacturer: syz
[  266.671384][ T3575] Workqueue: hci6 hci_rx_work
[  266.671443][ T3575] Call Trace:
[  266.671451][ T3575]  <TASK>
[  266.671459][ T3575]  dump_stack_lvl+0x1e3/0x2cb
[  266.690038][ T4386] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  266.691556][ T3575]  ? nf_tcp_handle_invalid+0x642/0x642
[  266.691592][ T3575]  ? panic+0x764/0x764
[  266.712038][ T3575]  sysfs_create_dir_ns+0x2c6/0x390
[  266.717161][ T3575]  ? sysfs_warn_dup+0xa0/0xa0
[  266.721841][ T3575]  kobject_add_internal+0x6df/0xd10
[  266.727037][ T3575]  kobject_add+0x14e/0x210
[  266.731447][ T3575]  ? device_add+0x3c2/0xfd0
[  266.735946][ T3575]  ? kobject_init+0x1d0/0x1d0
[  266.740612][ T3575]  ? __raw_spin_lock_init+0x41/0x100
[  266.745889][ T3575]  ? get_device_parent+0x128/0x400
[  266.751026][ T3575]  device_add+0x476/0xfd0
[  266.755373][ T3575]  hci_conn_add_sysfs+0xe4/0x1f0
[  266.760335][ T3575]  le_conn_complete_evt+0xcc6/0x1320
[  266.765642][ T3575]  ? hci_le_big_info_adv_report_evt+0x390/0x390
[  266.771924][ T3575]  ? __mutex_unlock_slowpath+0x218/0x750
[  266.777571][ T3575]  ? mutex_unlock+0x10/0x10
[  266.782080][ T3575]  ? skb_pull_data+0x10e/0x220
[  266.786859][ T3575]  hci_le_enh_conn_complete_evt+0x181/0x410
[  266.792759][ T3575]  hci_event_packet+0xa40/0x1510
[  266.797698][ T3575]  ? hci_remote_host_features_evt+0x210/0x210
[  266.803764][ T3575]  ? bis_list+0x290/0x290
[  266.808083][ T3575]  ? do_raw_spin_unlock+0x137/0x8a0
[  266.813298][ T3575]  ? kcov_remote_start+0x4b5/0x7d0
[  266.818425][ T3575]  ? get_cpu_entry_area+0x10/0x20
[  266.823458][ T3575]  ? hci_send_to_monitor+0x99/0x4d0
[  266.828659][ T3575]  hci_rx_work+0x3cd/0xce0
[  266.833089][ T3575]  ? do_raw_spin_unlock+0x137/0x8a0
[  266.838301][ T3575]  ? process_one_work+0x7a9/0x11d0
[  266.843418][ T3575]  process_one_work+0x8a9/0x11d0
[  266.848371][ T3575]  ? worker_detach_from_pool+0x260/0x260
[  266.854003][ T3575]  ? _raw_spin_lock_irqsave+0x120/0x120
[  266.859549][ T3575]  ? kthread_data+0x4e/0xc0
[  266.864054][ T3575]  ? wq_worker_running+0x97/0x190
[  266.869082][ T3575]  worker_thread+0xa47/0x1200
[  266.873751][ T3575]  ? _raw_spin_unlock+0x40/0x40
[  266.878613][ T3575]  ? __sched_text_start+0x8/0x8
[  266.883474][ T3575]  ? _raw_spin_unlock+0x40/0x40
[  266.888438][ T3575]  kthread+0x28d/0x320
[  266.892513][ T3575]  ? worker_clr_flags+0x190/0x190
[  266.897535][ T3575]  ? kthread_blkcg+0xd0/0xd0
[  266.902120][ T3575]  ret_from_fork+0x1f/0x30
[  266.906545][ T3575]  </TASK>
[  266.914157][ T3575] kobject_add_internal failed for hci6:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  266.927569][ T3575] Bluetooth: hci6: failed to register connection device
[  266.935937][   T22] usb 5-1: config 0 descriptor??
[  266.975152][ T4386] XFS (loop4): Unmount and run xfs_repair
[  266.980918][ T4386] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  266.989467][   T22] hub 5-1:0.0: bad descriptor, ignoring hub
[  267.015405][   T22] hub: probe of 5-1:0.0 failed with error -5
[  267.038737][   T22] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[  267.043246][ T6747] loop1: detected capacity change from 0 to 4096
[  267.050780][ T4386] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  267.062878][ T6751] netlink: 104 bytes leftover after parsing attributes in process `syz-executor.3'.
[  267.074903][ T6747] ntfs3: loop1: Different NTFS' sector size (2048) and media sector size (512)
[  267.098831][ T4386] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  267.135171][ T4386] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  267.169123][ T4386] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  267.199351][ T4386] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  267.219039][ T4386] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  267.234004][ T4386] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  267.243887][ T4386] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  267.254165][ T4722] XFS (loop4): page discard on page ffffea000152f540, inode 0x42a, pos 1392640.
[  267.264925][ T4386] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  267.277315][ T4386] XFS (loop4): Unmount and run xfs_repair
[  267.283297][ T4386] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  267.291308][ T4386] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  267.296221][ T6747] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  267.301805][ T4386] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  267.316815][ T4386] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  267.329150][ T4386] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  267.375539][ T4386] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  267.398190][ T4386] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  267.417610][ T4386] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  267.427699][ T4386] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  267.444653][ T4722] XFS (loop4): page discard on page ffffea000152f580, inode 0x42a, pos 1396736.
[  267.455873][ T4498] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  267.486328][   T33] ntfs3: loop1: ntfs3_write_inode r=5 failed, -22.
[  267.491722][ T4498] XFS (loop4): Unmount and run xfs_repair
[  267.508174][ T4498] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  267.514924][ T3573] ntfs3: loop1: ntfs_evict_inode r=5 failed, -22.
[  267.529429][ T4498] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  267.541721][ T4498] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  267.599193][ T4498] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  267.642836][ T4498] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  267.678588][ T4498] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  267.717520][ T4498] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  267.775511][ T4498] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  267.784929][ T4498] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  267.842586][ T4498] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  267.883775][ T4498] XFS (loop4): Unmount and run xfs_repair
[  267.904954][ T4498] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  267.947168][ T4498] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  267.972062][ T4498] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  268.015209][ T4498] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  268.035859][ T4498] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  268.052575][ T4498] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  268.085336][ T4498] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  268.095952][ T4498] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  268.103350][ T6787] loop0: detected capacity change from 0 to 2048
[  268.113915][ T4498] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  268.133571][   T27] audit: type=1326 audit(1717620341.683:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6763 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f21b4c7cf69 code=0x0
[  268.157102][   T22] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  268.200631][   T22] XFS (loop4): Unmount and run xfs_repair
[  268.215480][   T22] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  268.227144][   T22] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  268.235336][ T6791] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  268.242491][   T22] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  268.254802][ T3575] Bluetooth: hci4: Ignoring HCI_Connection_Complete for existing connection
[  268.298894][   T22] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  268.348114][   T22] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  268.375164][   T22] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  268.397354][   T22] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  268.422191][   T22] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  268.440916][   T22] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  268.459779][   T22] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  268.482724][   T22] XFS (loop4): Unmount and run xfs_repair
[  268.500309][   T22] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  268.531502][   T22] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  268.550814][   T22] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  268.566766][   T22] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  268.585326][   T22] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  268.594250][   T22] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  268.622112][   T22] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  268.631091][   T22] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  268.643200][   T22] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  268.658379][ T4722] xfs_discard_folio: 3 callbacks suppressed
[  268.658394][ T4722] XFS (loop4): page discard on page ffffea000152f680, inode 0x42a, pos 1413120.
[  268.674253][ T4386] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  268.700858][ T4386] XFS (loop4): Unmount and run xfs_repair
[  268.719251][ T4386] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  268.737228][ T4386] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  268.805740][ T4386] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  268.846180][ T4386] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  268.855924][   T14] usb 5-1: USB disconnect, device number 8
[  268.879528][ T4386] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  268.930591][ T4386] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  268.977966][ T4386] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  269.009892][ T4386] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  269.075454][ T4386] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  269.109590][ T4722] XFS (loop4): page discard on page ffffea000152f6c0, inode 0x42a, pos 1417216.
[  269.227261][   T22] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  269.366397][ T6828] serio: Serial port pts1
[  269.655158][   T22] XFS (loop4): Unmount and run xfs_repair
[  269.705531][   T22] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  269.712953][   T22] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  269.738005][   T22] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  269.753703][   T22] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  269.762687][   T22] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  269.780554][   T22] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  269.816041][   T22] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  269.845415][   T22] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  269.864753][   T22] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  269.891883][ T4722] XFS (loop4): page discard on page ffffea000152f700, inode 0x42a, pos 1421312.
[  269.905590][ T4498] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  269.930845][ T4498] XFS (loop4): Unmount and run xfs_repair
[  269.954623][ T6837] loop2: detected capacity change from 0 to 2048
[  269.964772][ T4498] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  269.979974][ T4498] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  269.991230][ T4498] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  270.004416][ T4498] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  270.016556][ T6842] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  270.033767][ T4498] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  270.043689][ T4498] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  270.054447][ T3575] Bluetooth: hci6: Ignoring HCI_Connection_Complete for existing connection
[  270.064427][ T4498] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  270.073782][ T4498] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  270.084536][ T4498] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  270.093879][ T4722] XFS (loop4): page discard on page ffffea000152f740, inode 0x42a, pos 1425408.
[  270.104386][ T4386] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  270.136916][ T4386] XFS (loop4): Unmount and run xfs_repair
[  270.152268][ T4386] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  270.185332][  T152] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  270.202802][ T4386] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  270.218360][ T4386] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  270.228016][ T4386] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  270.238729][ T4386] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  270.251923][ T4386] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  270.285938][ T4386] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  270.325622][ T4386] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  270.344783][ T4386] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  270.360757][   T27] audit: type=1326 audit(1717620343.913:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6844 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1b8fc7cf69 code=0x0
[  270.376848][ T4722] XFS (loop4): page discard on page ffffea000152f780, inode 0x42a, pos 1429504.
[  270.398319][ T4386] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  270.428333][ T4386] XFS (loop4): Unmount and run xfs_repair
[  270.435872][  T152] usb 5-1: Using ep0 maxpacket: 32
[  270.450599][ T4386] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  270.459234][ T4386] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  270.469001][ T4386] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  270.478279][ T4386] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  270.500919][ T4386] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  270.516780][ T4386] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  270.532227][ T4386] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  270.541790][ T4386] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  270.553337][ T4386] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  270.562807][ T4722] XFS (loop4): page discard on page ffffea000152f7c0, inode 0x42a, pos 1433600.
[  270.575562][  T152] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  270.589348][  T152] usb 5-1: config 0 interface 0 altsetting 31 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  270.589727][ T4498] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  270.602496][  T152] usb 5-1: config 0 interface 0 has no altsetting 0
[  270.695447][ T4498] XFS (loop4): Unmount and run xfs_repair
[  270.695532][  T152] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  270.701206][ T4498] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  270.712750][  T152] usb 5-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[  270.743909][  T152] usb 5-1: Manufacturer: syz
[  270.754416][  T152] usb 5-1: config 0 descriptor??
[  270.761876][   T27] audit: type=1326 audit(1717620344.313:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6856 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe63787cf69 code=0x0
[  270.799460][ T4498] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  270.816491][  T152] hub 5-1:0.0: bad descriptor, ignoring hub
[  270.820427][ T4498] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  270.822449][  T152] hub: probe of 5-1:0.0 failed with error -5
[  270.823852][  T152] usbhid 5-1:0.0: couldn't find an input interrupt endpoint
[  270.833453][ T4498] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  270.905644][ T4498] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  270.930775][ T4498] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  270.950951][ T4498] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  271.022060][ T4498] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  271.095550][ T4498] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  271.104705][ T4722] XFS (loop4): page discard on page ffffea000152f800, inode 0x42a, pos 1437696.
[  271.188703][ T6869] serio: Serial port pts0
[  271.549513][   T14] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  271.561671][   T14] XFS (loop4): Unmount and run xfs_repair
[  271.673862][   T14] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  271.735997][   T14] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  271.762862][   T14] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  271.772323][   T14] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  271.801059][   T27] audit: type=1326 audit(1717620345.353:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6875 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1b8fc7cf69 code=0x0
[  271.840771][   T14] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  271.874829][   T14] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  271.917284][   T14] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  271.951530][   T14] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  271.990822][   T14] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  272.007179][ T4722] XFS: metadata IO error: 55 callbacks suppressed
[  272.007216][ T4722] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x26e/0x370" at daddr 0x8 len 8 error 74
[  272.025307][ T4722] XFS (loop4): page discard on page ffffea000152f840, inode 0x42a, pos 1441792.
[  272.035331][ T3606] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  272.052820][ T3606] XFS (loop4): Unmount and run xfs_repair
[  272.059474][ T3606] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  272.067895][ T3606] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  272.078658][ T3606] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  272.085232][ T4386] usb 4-1: new low-speed USB device number 6 using dummy_hcd
[  272.113842][ T3606] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  272.142973][ T3606] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  272.169724][ T3606] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  272.182828][ T6892] loop0: detected capacity change from 0 to 8192
[  272.184814][ T3606] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  272.209970][ T3606] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  272.223129][ T3606] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  272.236645][ T6892]  loop0: p3 p4 < >
[  272.241839][ T4722] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x26e/0x370" at daddr 0x8 len 8 error 74
[  272.253230][ T4722] XFS (loop4): page discard on page ffffea000152f880, inode 0x42a, pos 1445888.
[  272.263538][ T6892] loop0: p3 start 619312 is beyond EOD, truncated
[  272.289454][ T3606] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  272.330502][ T3606] XFS (loop4): Unmount and run xfs_repair
[  272.344594][ T3606] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  272.374474][ T3606] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  272.399275][ T3606] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  272.420093][ T3606] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  272.441511][ T3606] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  272.454619][ T3606] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  272.472444][ T3606] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  272.482404][ T3606] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  272.500715][ T3606] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  272.527490][ T4722] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x26e/0x370" at daddr 0x8 len 8 error 74
[  272.538959][ T4722] XFS (loop4): page discard on page ffffea000152f8c0, inode 0x42a, pos 1449984.
[  272.548628][ T4386] usb 4-1: No LPM exit latency info found, disabling LPM.
[  272.563295][  T152] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  272.580516][  T152] XFS (loop4): Unmount and run xfs_repair
[  272.605761][  T152] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  272.636142][  T152] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  272.653057][  T152] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  272.662673][ T4386] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  272.683776][  T152] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  272.696741][  T152] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  272.707221][  T152] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  272.716931][  T152] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  272.726274][  T152] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  272.736103][  T152] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  272.745524][ T4722] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x26e/0x370" at daddr 0x8 len 8 error 74
[  272.757835][   T14] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  272.845182][   T14] XFS (loop4): Unmount and run xfs_repair
[  272.852998][   T14] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  272.874598][   T14] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  272.894488][   T14] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  272.935396][ T4386] usb 4-1: string descriptor 0 read error: -22
[  272.960069][ T4386] usb 4-1: New USB device found, idVendor=6666, idProduct=8801, bcdDevice= 0.40
[  272.969865][ T4386] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  272.988133][ T4390] usb 5-1: USB disconnect, device number 9
[  273.035283][   T22] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  273.042985][   T14] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  273.046231][ T4386] usbhid 4-1:1.0: couldn't find an input interrupt endpoint
[  273.052388][   T14] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  273.068106][   T14] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  273.077180][   T14] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  273.086383][   T14] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  273.095515][   T14] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  273.104539][ T4722] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x26e/0x370" at daddr 0x8 len 8 error 74
[  273.120103][ T6899] serio: Serial port pts0
[  273.133569][   T14] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  273.155290][ T3566] Bluetooth: hci5: command 0x0406 tx timeout
[  273.163277][   T14] XFS (loop4): Unmount and run xfs_repair
[  273.172329][   T14] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  273.181647][   T14] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  273.193475][   T14] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  273.204233][   T14] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  273.219807][   T14] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  273.229747][   T14] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  273.239094][   T14] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  273.254300][   T14] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  273.320896][   T14] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  273.338740][ T4722] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x26e/0x370" at daddr 0x8 len 8 error 74
[  273.373810][ T4386] usb 4-1: USB disconnect, device number 6
[  273.383650][ T4390] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  273.395755][ T4390] XFS (loop4): Unmount and run xfs_repair
[  273.401520][ T4390] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  273.410252][ T4390] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  273.420393][ T4390] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  273.429751][ T4390] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  273.443688][ T4390] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  273.467929][ T4390] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  273.477471][ T4390] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  273.487943][ T4390] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  273.504215][ T4390] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  273.514444][ T4722] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x26e/0x370" at daddr 0x8 len 8 error 74
[  273.527568][   T22] usb 3-1: Using ep0 maxpacket: 8
[  273.534999][ T4390] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  273.546339][ T4390] XFS (loop4): Unmount and run xfs_repair
[  273.552146][ T4390] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  273.560043][ T4390] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  273.569939][ T4390] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  273.579583][ T4390] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  273.588955][ T4390] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  273.598081][ T4390] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  273.607527][ T4390] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  273.616650][ T4390] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  273.626619][ T4390] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  273.635979][ T4722] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x26e/0x370" at daddr 0x8 len 8 error 74
[  273.647817][   T22] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  273.659833][   T22] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  273.671051][   T22] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  273.681189][   T22] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  273.688094][   T14] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  273.691281][   T22] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 0
[  273.711906][   T22] usb 3-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  273.721077][   T22] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  273.731548][   T22] usb 3-1: config 0 descriptor??
[  273.766107][   T14] XFS (loop4): Unmount and run xfs_repair
[  273.796275][ T3566] Bluetooth: hci7: urb ffff888021481300 submission failed (90)
[  273.805569][   T14] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  273.813180][   T14] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  273.823963][   T14] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  273.834342][   T14] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  273.843594][   T14] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  273.852661][   T14] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  273.861755][   T14] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  273.870678][   T14] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  273.881884][   T14] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  273.891580][ T4722] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x26e/0x370" at daddr 0x8 len 8 error 74
[  273.903284][ T4722] xfs_discard_folio: 5 callbacks suppressed
[  273.903293][ T4722] XFS (loop4): page discard on page ffffea000152fa40, inode 0x42a, pos 1474560.
[  273.924806][ T3606] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  273.951061][ T3606] XFS (loop4): Unmount and run xfs_repair
[  273.958514][ T3606] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  273.969997][ T3606] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  273.980574][ T3606] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  273.993799][ T3606] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  274.017120][ T3606] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  274.044419][ T3606] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  274.060314][ T3606] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  274.070052][ T3606] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  274.079822][ T3606] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  274.089109][ T4722] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x26e/0x370" at daddr 0x8 len 8 error 74
[  274.089480][ T3606] usb 3-1: USB disconnect, device number 9
[  274.100872][ T4722] XFS (loop4): page discard on page ffffea000152fa80, inode 0x42a, pos 1478656.
[  274.127627][ T4390] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  274.161213][ T4390] XFS (loop4): Unmount and run xfs_repair
[  274.188444][ T4390] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  274.212042][ T4390] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  274.234232][ T4390] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  274.276750][ T4390] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  274.297290][ T4390] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  274.307378][ T4390] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  274.316744][ T4390] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  274.435595][ T4390] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  274.452980][ T4390] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  274.465473][ T4722] XFS (loop4): page discard on page ffffea000152fac0, inode 0x42a, pos 1482752.
[  274.496407][ T3606] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  274.544677][ T6925] serio: Serial port pts1
[  274.703983][ T3606] XFS (loop4): Unmount and run xfs_repair
[  274.735490][   T27] audit: type=1326 audit(1717620348.283:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6927 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa06987cf69 code=0x0
[  274.780867][ T3606] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  274.823633][ T3606] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  274.904063][ T3606] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  274.959583][ T3606] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  274.971634][   T27] audit: type=1326 audit(1717620348.523:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6931 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fe63787cf69 code=0x0
[  275.018886][ T3606] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  275.067237][ T3606] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  275.105749][ T3606] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  275.138777][ T3606] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  275.169321][ T3606] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  275.194133][ T4722] XFS (loop4): page discard on page ffffea000152fb00, inode 0x42a, pos 1486848.
[  275.205693][ T1148] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  275.217686][ T1148] XFS (loop4): Unmount and run xfs_repair
[  275.251937][ T1148] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  275.285816][ T1148] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  275.295304][ T1148] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  275.304161][ T1148] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  275.319173][ T6947] loop2: detected capacity change from 0 to 8192
[  275.328392][ T1148] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  275.337295][ T1148] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  275.347991][ T1148] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  275.357005][ T1148] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  275.366459][ T1148] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  275.378007][ T4722] XFS (loop4): page discard on page ffffea000152fb40, inode 0x42a, pos 1490944.
[  275.389537][ T6947]  loop2: p3 p4 < >
[  275.393595][   T22] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  275.395623][ T6947] loop2: p3 start 619312 is beyond EOD, truncated
[  275.405243][   T22] XFS (loop4): Unmount and run xfs_repair
[  275.422395][   T22] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  275.430142][   T22] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  275.439321][   T22] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  275.453211][   T22] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  275.465506][   T22] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  275.475731][   T22] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  275.484933][   T22] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  275.494329][   T22] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  275.503569][   T22] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  275.512954][ T4722] XFS (loop4): page discard on page ffffea000152fb80, inode 0x42a, pos 1495040.
[  275.523033][ T1148] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  275.534530][ T1148] XFS (loop4): Unmount and run xfs_repair
[  275.540837][ T1148] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  275.552384][ T1148] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  275.573103][ T1148] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  275.584577][ T1148] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  275.601637][ T1148] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  275.611244][ T1148] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  275.620949][ T1148] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  275.624029][ T6958] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.4'.
[  275.630417][ T1148] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  275.649080][ T1148] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  275.658891][ T4722] XFS (loop4): page discard on page ffffea000152fbc0, inode 0x42a, pos 1499136.
[  275.679944][ T1148] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  275.691331][ T1148] XFS (loop4): Unmount and run xfs_repair
[  275.742155][ T1148] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  275.752109][ T1148] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  275.785306][ T1148] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  275.794193][ T1148] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  275.806775][ T1148] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  275.816168][ T1148] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  275.825041][ T1148] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  275.834391][ T1148] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  275.843467][ T1148] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  275.852866][ T4722] XFS (loop4): page discard on page ffffea000152fc00, inode 0x42a, pos 1503232.
[  275.864575][   T22] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  275.950180][   T22] XFS (loop4): Unmount and run xfs_repair
[  275.956183][   T22] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  275.963577][   T22] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  275.972626][   T22] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  275.982284][   T22] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  275.991197][   T22] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  276.000092][   T22] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  276.016317][   T22] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  276.041034][   T22] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  276.208208][   T22] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  276.217415][ T4722] XFS (loop4): page discard on page ffffea000152fc40, inode 0x42a, pos 1507328.
[  276.231852][ T1148] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  276.269347][ T1148] XFS (loop4): Unmount and run xfs_repair
[  276.343600][ T1148] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  276.395300][   T22] usb 5-1: new low-speed USB device number 10 using dummy_hcd
[  276.398602][ T1148] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  276.464702][ T1148] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  276.495809][ T1148] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  276.514291][ T1148] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  276.534977][ T1148] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  276.552467][ T1148] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  276.570927][ T1148] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  276.588884][ T1148] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  276.602117][ T4722] XFS (loop4): page discard on page ffffea000152fc80, inode 0x42a, pos 1511424.
[  276.669673][   T14] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  276.733409][   T14] XFS (loop4): Unmount and run xfs_repair
[  276.931796][   T14] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  276.935871][   T22] usb 5-1: No LPM exit latency info found, disabling LPM.
[  276.966590][   T14] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  276.984131][   T14] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  277.156057][   T22] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  277.454454][   T14] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  277.463432][   T14] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  277.472337][   T14] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  277.495462][   T14] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  277.525053][   T14] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  277.554583][   T14] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  277.591808][ T3606] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  277.619424][ T3606] XFS (loop4): Unmount and run xfs_repair
[  278.007686][ T6994] serio: Serial port pts0
[  278.275590][   T22] usb 5-1: string descriptor 0 read error: -22
[  278.284472][   T22] usb 5-1: New USB device found, idVendor=6666, idProduct=8801, bcdDevice= 0.40
[  278.327728][ T3606] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  278.331300][   T22] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  278.336861][   T27] audit: type=1326 audit(1717620351.893:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6998 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f21b4c7cf69 code=0x0
[  278.368173][ T3606] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  278.378225][ T3606] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  278.387226][ T3606] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  278.397202][ T3606] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  278.406217][ T3606] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  278.415183][ T3606] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  278.417432][   T22] usbhid 5-1:1.0: couldn't find an input interrupt endpoint
[  278.424024][ T3606] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  278.424041][ T3606] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  278.533444][ T4390] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  278.572837][ T4390] XFS (loop4): Unmount and run xfs_repair
[  278.591632][ T4390] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  278.628464][ T4390] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  278.650169][ T4390] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  278.671461][ T4390] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  278.687782][ T4390] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  278.702942][ T4390] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  278.715030][ T6999] kvm: emulating exchange as write
[  278.715699][ T4390] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  278.739413][ T4390] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  278.755259][ T4390] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  278.766570][  T152] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  278.778410][   T22] usb 5-1: USB disconnect, device number 10
[  278.794077][  T152] XFS (loop4): Unmount and run xfs_repair
[  278.802458][  T152] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  278.819327][  T152] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  278.831569][  T152] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  278.844292][  T152] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  278.857819][  T152] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  278.873590][  T152] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  278.886010][  T152] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  278.903354][  T152] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  278.914039][  T152] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  278.932052][ T4722] xfs_discard_folio: 3 callbacks suppressed
[  278.932071][ T4722] XFS (loop4): page discard on page ffffea000152fd80, inode 0x42a, pos 1527808.
[  278.950353][  T152] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  278.975375][  T152] XFS (loop4): Unmount and run xfs_repair
[  278.990343][  T152] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  278.998084][  T152] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  279.015361][  T152] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  279.024845][  T152] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  279.039436][  T152] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  279.082388][  T152] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  279.094820][  T152] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  279.104343][  T152] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  279.113620][  T152] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  279.128108][ T4722] XFS (loop4): page discard on page ffffea000152fdc0, inode 0x42a, pos 1531904.
[  279.184470][  T152] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  279.233837][  T152] XFS (loop4): Unmount and run xfs_repair
[  279.245633][  T152] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  279.272777][  T152] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  279.287204][ T7008] loop3: detected capacity change from 0 to 256
[  279.302441][  T152] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  279.320603][  T152] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  279.345970][   T27] audit: type=1326 audit(1717620352.903:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7007 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa06987cf69 code=0x0
[  279.353174][  T152] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  279.394259][  T152] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  279.395379][   T28] INFO: task syz-executor.4:4720 blocked for more than 143 seconds.
[  279.410007][  T152] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  279.430592][  T152] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
2024/06/05 20:45:53 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF
[  279.443479][  T152] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  279.517726][ T4722] XFS (loop4): page discard on page ffffea000152fe00, inode 0x42a, pos 1536000.
[  279.543999][ T4390] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  279.561179][   T28]       Not tainted 6.1.92-syzkaller #0
[  279.574011][ T4390] XFS (loop4): Unmount and run xfs_repair
[  279.605156][   T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  279.613868][   T28] task:syz-executor.4  state:D stack:23176 pid:4720  ppid:3565   flags:0x00004006
[  279.615132][ T4390] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  279.635248][   T28] Call Trace:
[  279.638556][   T28]  <TASK>
[  279.641496][   T28]  __schedule+0x142d/0x4550
[  279.660832][   T28]  ? __sched_text_start+0x8/0x8
[  279.675128][   T28]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  279.675238][ T4390] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  279.705183][   T28]  ? print_irqtrace_events+0x210/0x210
[  279.710787][   T28]  ? _raw_spin_lock_irq+0xdb/0x110
[  279.715157][ T4390] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  279.735150][   T28]  schedule+0xbf/0x180
[  279.735184][ T4390] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  279.735202][ T4390] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  279.739256][   T28]  ? down_read_nested+0x6a3/0xa40
[  279.758046][ T4390] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  279.781999][ T4390] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  279.791177][ T4390] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  279.800716][ T4390] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  279.810293][ T4722] XFS (loop4): page discard on page ffffea000152fe40, inode 0x42a, pos 1540096.
[  279.811670][   T28]  schedule_preempt_disabled+0xf/0x20
[  279.821710][   T14] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  279.831950][   T28]  down_read_nested+0x703/0xa40
[  279.840907][   T28]  ? downgrade_write+0x3b0/0x3b0
[  279.845937][   T28]  ? file_update_time+0x34c/0x3c0
[  279.850994][   T28]  ? __file_remove_privs+0x640/0x640
[  279.856461][   T28]  ? __xfs_filemap_fault+0x3fa/0x9e0
[  279.856535][   T14] XFS (loop4): Unmount and run xfs_repair
[  279.861749][   T28]  xfs_ilock+0x1e6/0x430
[  279.873226][   T28]  __xfs_filemap_fault+0x3fa/0x9e0
[  279.878556][   T28]  ? do_page_mkwrite+0x1a1/0x5f0
[  279.883525][   T28]  ? xfs_filemap_pfn_mkwrite+0x20/0x20
[  279.894788][   T28]  ? do_raw_spin_lock+0x14a/0x370
[  279.895241][   T14] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  279.903139][   T28]  do_page_mkwrite+0x1a1/0x5f0
[  279.913170][   T28]  wp_page_shared+0x164/0x380
[  279.915156][   T14] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  279.925890][   T28]  handle_mm_fault+0x2525/0x5340
[  279.933087][   T28]  ? mt_find+0x29a/0xc60
[  279.935169][   T14] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  279.943589][   T28]  ? mt_find+0x29a/0xc60
[  279.950733][   T28]  ? numa_migrate_prep+0x250/0x250
[  279.964665][   T28]  ? lock_mm_and_find_vma+0xae/0x2e0
[  279.965174][   T14] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  279.970412][   T28]  exc_page_fault+0x26f/0x660
[  279.993563][   T28]  asm_exc_page_fault+0x22/0x30
[  279.995162][   T14] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  279.998923][   T28] RIP: 0033:0x7f57fac2ba61
[  280.012076][   T28] RSP: 002b:00007ffdef7b1d70 EFLAGS: 00010246
[  280.015172][   T14] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  280.034573][   T28] RAX: 0000000020000200 RBX: 0000000000000004 RCX: 0000000000000000
[  280.043759][   T28] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00005555573c1360
[  280.043762][   T14] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  280.043781][   T14] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  280.059180][   T28] RBP: 00007ffdef7b1e68 R08: 0000000000000000 R09: 0000000000000000
[  280.079987][   T28] R10: 0000000000000000 R11: 0000000000000000 R12: 00007ffdef7b1e90
[  280.085141][   T14] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  280.088299][   T28] R13: 00007f57fadb3f8c R14: 0000000000000032 R15: 00007f57fadb5980
[  280.105034][   T28]  </TASK>
[  280.108593][   T28] 
[  280.108593][   T28] Showing all locks held in the system:
[  280.116839][   T28] 1 lock held by rcu_tasks_kthre/12:
[  280.122132][   T28]  #0: ffffffff8d12ae50 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x29/0xe30
[  280.133038][ T4722] XFS (loop4): page discard on page ffffea000152fe80, inode 0x42a, pos 1544192.
[  280.133213][   T28] 1 lock held by rcu_tasks_trace/13:
[  280.147539][   T14] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  280.157557][   T28]  #0: ffffffff8d12b650 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x29/0xe30
[  280.170130][   T14] XFS (loop4): Unmount and run xfs_repair
[  280.175959][   T14] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  280.177029][   T28] 5 locks held by kworker/0:1/14:
[  280.187808][   T14] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  280.197603][   T28] 1 lock held by khungtaskd/28:
[  280.197621][   T28]  #0: ffffffff8d12ac80 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x51/0x290
[  280.209273][   T14] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  280.224396][   T14] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  280.233558][   T28] 2 locks held by getty/3301:
[  280.238662][   T28]  #0: ffff88814b705098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x21/0x70
[  280.241334][   T14] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  280.265780][   T14] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  280.265920][   T28]  #1: 
[  280.274626][   T14] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  280.274646][   T14] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  280.285115][   T28] ffffc900031262f0
[  280.304272][   T14] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  280.305113][   T28]  (
[  280.309268][ T4722] XFS (loop4): page discard on page ffffea000152fec0, inode 0x42a, pos 1548288.
[  280.335258][   T28] &ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6a7/0x1db0
[  280.337538][ T4498] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  280.343494][   T28] 1 lock held by syz-fuzzer/3555:
[  280.362789][ T4498] XFS (loop4): Unmount and run xfs_repair
[  280.368693][ T4498] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[  280.382452][   T28] 5 locks held by kworker/u4:5/3607:
[  280.385668][ T4498] 00000000: 41 42 33 42 00 00 00 02 ff ff ff ff ff ff ff ff  AB3B............
[  280.403948][ T4498] 00000010: 00 00 00 00 00 00 00 08 00 00 00 01 00 00 00 10  ................
[  280.405350][   T28]  #0: ffff888012616938 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  280.423178][ T4498] 00000020: a2 f8 2a ab 77 f8 42 86 af d4 a8 f7 00 a7 4b ab  ..*.w.B.......K.
[  280.433370][ T4498] 00000030: 00 00 00 00 5b fd 4f dd 00 00 00 05 00 00 00 01  ....[.O.........
[  280.442356][ T4498] 00000040: 00 00 02 36 00 00 0d ca 00 00 00 00 00 00 00 00  ...6............
[  280.442923][   T28]  #1: 
[  280.462193][ T4498] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  280.465183][   T28] ffffc90003f6fd20 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  280.474251][ T4498] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  280.494120][   T28]  #2: ffffffff8e28ecd0 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0xf1/0xb60
[  280.502467][ T4498] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  280.512835][ T4722] XFS (loop4): page discard on page ffffea000152ff00, inode 0x42a, pos 1552384.
[  280.515118][   T28]  #3: ffffffff8e29b028 (rtnl_mutex){+.+.}-{3:3}, at: ip_tunnel_delete_nets+0xc9/0x330
[  280.543158][ T4498] XFS (loop4): Metadata CRC error detected at xfs_allocbt_read_verify+0x39/0xc0, xfs_bnobt block 0x8 
[  280.555302][   T28]  #4: ffffffff8d130278 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchro