last executing test programs:

54.404750311s ago: executing program 4 (id=432):
r0 = socket$inet6(0xa, 0x3, 0x7)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000100)={@mcast2, 0x800, 0x0, 0x3, 0x1, 0x0, 0x3}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f00000005c0)=0x7fff, 0x4)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x380000, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x9}, 0x1c)
sendmmsg$alg(r0, &(0x7f0000000240)=[{0x20000000, 0xff00, 0x0, 0x0, &(0x7f0000000600)=ANY=[], 0xd8}], 0x1, 0x0)

54.019883721s ago: executing program 4 (id=438):
bpf$MAP_CREATE(0x0, &(0x7f0000000240)=@base={0x8, 0x4, 0x4, 0x200ff, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

53.388154712s ago: executing program 4 (id=444):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000240)={[{@grpquota}, {@auto_da_alloc}, {@minixdf}]}, 0x1, 0x50c, &(0x7f0000000ac0)="$eJzs3c9vG1kdAPCvnThx0uwmu+wBEOyW3YWCqjqJuxut9gDLEaGVEHsEqRsSN4pix1HsLJvQQ3rmikQlTvTIH8C5Jw7cuCC4cSkHJH5EoAaJg9GMJ6mb2o3VJHYUfz7SaObNm/r7fXH8Xuc59gtgZF2PiP2ImIiITyNiNjufy7b4qL0l1z05uLdyeHBvJRet1if/zKX1ybno+DeJa9ljFiPihw8jfpJ7Pm5jd29juVqtbGfl+WZta76xu3drvba8VlmrbJbLS4tLCx/cfr98bm19qzaRHX318R/2v/WzJK2Z7ExnO85Tu+mF4ziJ8Yj4/kUEG4KxrD0Tw06El5KPiNcj4u309T8bY+mzCQBcZa3WbLRmO8sAwFWXT+fAcvlSNhcwE/l8qdSew3sjpvPVeqN58259Z3O1PVc2F4X83fVqZSGbK5yLQi4pL6bHT8vlE+XbEfFaRPxiciotl1bq1dVh/scHAEbYtRPj/38m2+M/AHDFFYedAAAwcD3G//1B5wEADI77fwAYPcZ/ABg97fF/athpAAAD5P4fAEaP8R8ARsoPPv442VqH2fdfr362u7NR/+zWaqWxUartrJRW6ttbpbV6fS39zp7aaY9Xrde3Ft+Lnc/nvr3VaM43dvfu1Oo7m8076fd636kU0qt8sgAAhum1tx79OZeMyB9OpVt0rOVQGGpmwEXLDzsBYGjGhp0AMDRW+4LRdYZ7fNMDcEV0WaL3GcVuHxBqtVqti0sJuGA3vmT+H0ZVx/y/vwKGEWP+H0aX+X8YXa1Wrt81/6PfCwGAy80cP9Dj/f/Xs/1vsjcHfrx68ooHF5kVAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAXG5H6/+WsrXAZyKfL5UiXomIuSjk7q5XKwsR8WpE/GmyMJmUF4ecMwBwVvm/5bL1v27MvjvzTNWb144PJyLip7/65JefLzeb23+MmMj9a/LofPNBdr48+OwBgNMdjdPpvuNG/snBvZWjbZD5/P27EVFsxz88mIjD4/jjMZ7ui1GIiOl/57JyW65j7uIs9u9HxBe7tT8XM+kcSHvl05Pxk9ivDDR+/pn4+bSuvU9+Fl84h1xg1DxK+p+Pur3+8nE93Xd//RfTHurssv4veaiVw7QPfBr/qP8b69H/Xe83xnu/+177aOr5uvsRXx6POIp92NH/HMXP9Yj/bp/x//KVN9/uVdf6dcSN6B6/M9Z8s7Y139jdu7VeW16rrFU2y+WlxaWFD26/X55P56jne48G//jw5qu96pL2T/eIXzyl/V/vs/0P//fpj772gvjffKdb/Hy88YL4yZj4jT7jL0//ttirLom/2qP9pz3/N/uM//ive88tGw4ADE9jd29juVqtbI/kQfR38e+zH9alyHmkD5Jn4RKk0fXgO4OKNRHdq37+TvvXdDKi8xe71XqpWL16jPOYdQMug+MXfUT8d9jJAAAAAAAAAAAAAAAAXQ3iE0vDbiMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABX1/8DAAD//9RMyv0=")
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14d27e, 0x60)
r1 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
pwrite64(r1, &(0x7f0000000280)="f4", 0x1, 0x7930)
fallocate(r1, 0x0, 0x2686, 0x1000f4)
capset(&(0x7f0000000340)={0x20080522}, &(0x7f0000000300)={0x0, 0x0, 0x5f22})
fallocate(r0, 0x8, 0x2000, 0x7000)

52.011029157s ago: executing program 4 (id=455):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000300)='./file0\x00', 0x1004404, &(0x7f0000000240)={[{@noinit_itable}, {@dioread_lock}, {@noauto_da_alloc}, {@lazytime}, {@nombcache}, {@max_batch_time={'max_batch_time', 0x3d, 0xa}}]}, 0x23, 0x44d, &(0x7f0000000980)="$eJzs28tvG0UYAPBv7SR9k1CVRx9AoCDKK2nSUnpAQiCQOICEBIdyDElalboNaoJEq4oWhMoRVeLEBXFE4i/gBBcEnJC4wh1VqlAvLZyM1t5NbMd2HnXsUP9+0jozu2PPfN6d9exONoC+NZq+JBE7I+KPiBiuZusLjFb/3L55afqfm5emkyiX3/47qZS7dfPSdF40f9+OPDMQUfgsif1N6p2/cPHMVKk0ez7Ljy+c/WB8/sLF506fnTo1e2r23OTx40ePTLxwbPL5jsSZxnVr38dzB/a+/u61N6dPXHvvl++SPP6GODpktN3GJ8rlDlfXW7tq0slADxvCmhSr3TQGK/1/OIqxtPOG47VPe9o4YEOVy+Xy/a03XykDd7Gkcg4ovxS9bgjQZfkPfXr9my9dGnpsCjderl4ApXHfzpbqloEoZGUGG65vO2k0Ik5c+ffrdImNuQ8BAFDnh3T882yz8V8hau8L3ZPNoYxExL0RsTsijkXEnoi4L6JS9oGIeHCN9TdOkiwf/xSuryuwVUrHfy9mc1v147989BcjxSy3qxL/YHLydGn2cPadHIrBLWl+ok0dP776+xetttWO/9IlrT8fC2btuD6wpf49M1MLU3cSc60bn0TsG2gWf7I4E5BExN6I2LfOOk4//e2BVttWjr+NDswzlb+JeLK6/69EQ/y5pP385PjWKM0eHs+PiuV+/e3qW63qv6P4OyDd/9ubHv+L8Y8ktfO182v59K+eSl+v/vl5y2ua9R7/Q8k7des+mlpYOD8RMZS8UW107frJhnKTS+XT+A8dbN7/d8fSN7E/ItKD+KGIeDgiHsna/mhEPBYRB9t8Cz+/8vj7649/Y6Xxz6xp/y8lhqJxTfNE8cxP39dVOrL04avb/0crqUPZmtWc/1bTrrUezQAAAPB/VYiInZEUxhbThcLYWPV/+PfE9kJpbn7hmZNzH56bqT4jMBKDhfxO13DN/dCJ7J5Lnp9syB/J7ht/WdxWyY9Nz5Vmeh089LkdLfp/6q9ir1sHbDjPa0H/0v+hf+n/0L/0f+hfTfr/tl60A+i+Zr//l1d+29aNaAvQXQ3937Qf9BHX/9C/1tP/nTPg7tC2Lw91rx1AV81vi5UfkpeQWJaIwqZoxiZKXN4czehQotdnJgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgM74LwAA//8cB+YG")
mount(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000180)='proc\x00', 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000480)='./file0\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000940)=""/28, 0x1c)

51.412285238s ago: executing program 4 (id=461):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000340)={0x1c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0x0)

45.987736981s ago: executing program 4 (id=492):
syz_mount_image$ext4(&(0x7f00000001c0)='ext2\x00', &(0x7f0000000340)='./file0\x00', 0x28000, &(0x7f0000000b00), 0x1, 0x76a, &(0x7f0000000b40)="$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")
mount$nfs4(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='rdma'])

44.454886007s ago: executing program 32 (id=492):
syz_mount_image$ext4(&(0x7f00000001c0)='ext2\x00', &(0x7f0000000340)='./file0\x00', 0x28000, &(0x7f0000000b00), 0x1, 0x76a, &(0x7f0000000b40)="$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")
mount$nfs4(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB='rdma'])

41.003711941s ago: executing program 5 (id=522):
syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000180)='./file1\x00', 0x4000, &(0x7f0000000f00)=ANY=[@ANYBLOB="6c617374626c6f636b3d30303030303030303030303030303030303030302c756d61736b3d30303030303030303030303030303030303030303030302c756e64656c6574652c6c6f6e6761642c73686f727461642c7569643d666f726765742c756e64656c6574652c696f636861727365743d757466382c73686f727461642c696f636861727365743d64656661756c742c7569643d666f726765742c6e6f7374726963742c73657373696f6e3d30303030303030303030303030303030303030302c706172746974696f6e3d30303030303030303030303030303030303030362c00b2e01f5c0b5c8fb2623d8f888e41dfceb3ecf959d23d90b071660660b17884bd109d37086024cf83fa"], 0x2, 0xc2d, &(0x7f00000001c0)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', r0, &(0x7f0000000980)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
unlink(&(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
listxattr(&(0x7f0000000000)='./file1\x00', 0x0, 0x0)

40.47141017s ago: executing program 5 (id=526):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'syz_tun\x00', <r1=>0x0})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="1802000000000000000000007a000000850000007d00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000700)={r2, r1}, 0x40)
syz_emit_ethernet(0x7a, &(0x7f00000017c0)={@broadcast, @local, @void, {@ipv6={0x86dd, @gre_packet={0x6, 0x6, "de98d3", 0x44, 0x2f, 0x0, @ipv4={'\x00', '\xff\xff', @multicast1}, @private0={0xfc, 0x0, '\x00', 0x1}, {[], {{0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x880b, 0x0, 0x3}, {0x1, 0x0, 0x1}, {0x0, 0x0, 0x0, 0x1}, {0x8, 0x88be, 0x2, {{0x1, 0x1, 0xc, 0x0, 0x1, 0x2, 0x2, 0x2}}}, {0x8, 0x22eb, 0x4, {{0x9, 0x2, 0x3, 0x1, 0x0, 0x2, 0x4, 0xc2}, 0x2, {0x6, 0x8, 0x0, 0x9, 0x1, 0x1, 0x1, 0x0, 0x1}}}, {0x8, 0x6558, 0x3}}}}}}}, 0x0)

39.515739951s ago: executing program 5 (id=531):
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
socket$key(0xf, 0x3, 0x2)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'wlan0\x00'})
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r1, 0xffffffff)
accept4(r1, 0x0, 0x0, 0x80000)

38.510119646s ago: executing program 5 (id=540):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f0000000380)={[], [{@rootcontext={'rootcontext', 0x3d, 'unconfined_u'}}, {@euid_gt}]}, 0x0, 0x544, &(0x7f0000000c00)="$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")
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000400)='./file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x18d883, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x89901)
mount$bind(&(0x7f0000000280)='./file0/../file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)

38.017173141s ago: executing program 5 (id=544):
r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000400)=@bpf_lsm={0x18, 0x5, &(0x7f0000000140)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x2, 0xc4, &(0x7f00000002c0)=""/196, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/11], 0x48)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x10, &(0x7f0000000080), 0xfe, 0x48b, &(0x7f0000000640)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket$unix(0x1, 0x5, 0x0)
bind$unix(r3, &(0x7f0000000100)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r4 = socket$unix(0x1, 0x2, 0x0)
writev(r4, &(0x7f0000000040)=[{0x0}], 0x1)
setsockopt$SO_TIMESTAMP(r3, 0x1, 0x23, &(0x7f0000000080)=0x6, 0x26)
r5 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r5, 0x40086602, &(0x7f00000001c0)=0x20000008)
creat(0x0, 0x0)
r6 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0xd, 0x24, 0x4, 0x1, 0x0, r1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r6, &(0x7f00000001c0), 0x0}, 0x20)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f0000000500), 0xff, 0x482, &(0x7f0000001040)="$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")
openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x42, 0x1)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$NL80211_CMD_DEL_TX_TS(r7, &(0x7f0000001440)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x4000000)
r8 = openat(0xffffffffffffff9c, 0x0, 0x900, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r8, 0x800c6613, 0x0)

29.889101228s ago: executing program 5 (id=584):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000000240)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x80}}, {@stripe={'stripe', 0x3d, 0x4000}}, {@errors_remount}, {@max_batch_time={'max_batch_time', 0x3d, 0x4}}]}, 0x3, 0x43a, &(0x7f0000000340)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
read$FUSE(r0, &(0x7f0000000f40)={0x2020}, 0x2020)

29.34361185s ago: executing program 33 (id=584):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000000240)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x80}}, {@stripe={'stripe', 0x3d, 0x4000}}, {@errors_remount}, {@max_batch_time={'max_batch_time', 0x3d, 0x4}}]}, 0x3, 0x43a, &(0x7f0000000340)="$eJzs28tvG0UYAPBv13FKXySU8ugDCBRExCNp0gI9cAGBxAEkJDiUY0jSqtRtUBMkWlUQECpHVIk74ojEX8AJLgg4IXGFO6pUoVxaOBmtvZs4jp0mwY5L/ftJm8zsjjPzeXbs2Z1sAH1rJPuRROyJiN8jYqieXV1gpP7r5tLl6b+XLk8nUa2+9VdSK3dj6fJ0UbR43e48M5pGpJ8lcahFvfMXL52dqlRmL+T58YVz74/PX7z07JlzU6dnT8+enzxx4vixiReen3yuI3Fmbbpx8KO5wwdee+fqG9Mnr77787dJEX9THB0yst7BJ6rVDlfXW3sb0slADxvCppQiIuuucm38D0UpVjpvKF79tKeNA7qqWq1Wd7c/vFgF7mBJbLTk2fzzArgzFF/02fVvsW3T1OO2cP2l+gVQFvfNfKsfGYg0L1Nuur7tpJGIOLn4z1fZFt25DwEAsMr32fznmVbzvzTubyh3d742NBwR90TEvoi4NyL2R8R9EbWyD0TEg5usv3mRZO38J722pcA2KJv/vZivba2e/xWzvxgu5bm9tfjLyakzldmj+XsyGuUdWX5inTp+eOW3L9oda5z/ZVtWfzEXzNtxbWDH6tfMTC1M/ZeYG13/JOLgQKv4k+WVgCQiDkTEwS3Wceapbw63O9Yu/vJG/nAH1pmqX0c8We//xWiKv5Csvz45fldUZo+OF2fFWr/8euXNdvXfuv+7K+v/XS3P/+X4h5PG9dr5zddx5Y/P217TbPX8H0zerqUH830fTi0sXJiIGExerze6cf/kymuLfFE+i3/0SOvxvy9W3olDEZGdxA9FxMMR8Uje9kcj4rGIOLJO/D+9/Ph7W4+/u7L4ZzbV/yuJwWje0zpROvvjd6sqHd5M/Fn/H6+lRvM9G/n820i7tnY2AwAAwP9PGhF7IknHltNpOjZW/3/5/bErrczNLzx9au6D8zP1ZwSGo5wWd7qGGu6HTuSX9UV+sil/LL9v/GVpZy0/Nj1Xmel18NDndrcZ/5k/S71uHdB1nteC/mX8Q/8y/qF/Gf/Qv1qM/529aAew/Vp9/3/cg3YA269p/Fv2gz7i+h/6l/EP/cv4h740vzNu/ZC8hMSaRKS3RTMkupTo9ScTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAZ/wbAAD//9E940M=")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
read$FUSE(r0, &(0x7f0000000f40)={0x2020}, 0x2020)

11.23452074s ago: executing program 2 (id=695):
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r1, &(0x7f0000000100)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r2 = socket$unix(0x1, 0x2, 0x0)
connect$unix(r2, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
writev(r2, &(0x7f0000000040)=[{&(0x7f0000000000)="d2", 0x1}], 0x1)
setsockopt$SO_TIMESTAMP(r1, 0x1, 0x1d, &(0x7f0000000080)=0x6, 0x4)
recvmmsg(r1, &(0x7f0000000300), 0x40000000000049e, 0x1000000000fe, 0x0)

9.757870108s ago: executing program 1 (id=700):
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = semget$private(0x0, 0x6, 0x0)
semop(r0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
shmget$private(0x0, 0x13000, 0x0, &(0x7f0000feb000/0x13000)=nil)
setsockopt$inet6_MCAST_MSFILTER(0xffffffffffffffff, 0x29, 0x30, &(0x7f00000005c0)=ANY=[@ANYBLOB="01000000000000000a00000000000000ff01000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000b01f"], 0x90)
semtimedop(r0, &(0x7f0000000340), 0x92, 0x0)

9.599877222s ago: executing program 2 (id=701):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r0, 0x0)
io_setup(0x2007, &(0x7f0000000200)=<r1=>0x0)
r2 = eventfd2(0x0, 0x0)
poll(&(0x7f00000002c0)=[{r2, 0x400}], 0x1, 0xb6)
io_submit(r1, 0x1, &(0x7f0000000280)=[&(0x7f0000000000)={0x1802, 0x0, 0x0, 0x5, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x1, r2}])
shutdown(r0, 0x0)

7.98733355s ago: executing program 1 (id=706):
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
rt_sigprocmask(0x0, &(0x7f000078b000)={[0xfffffffffffffffd]}, 0x0, 0x8)
r0 = gettid()
r1 = getpid()
rt_tgsigqueueinfo(r1, r0, 0x19, &(0x7f0000000280)={0x14, 0xa3, 0x3})
r2 = signalfd(0xffffffffffffffff, &(0x7f00007aeff8)={[0xfffffffffffffffe]}, 0x8)
read(r2, &(0x7f0000000cc0)=""/384, 0x180)

7.986709449s ago: executing program 6 (id=707):
syz_mount_image$iso9660(&(0x7f0000000dc0), &(0x7f0000000000)='./file0\x00', 0x380cc52, &(0x7f0000002000)={[{@sbsector={'sbsector', 0x3d, 0x1}}, {}, {@nocompress}, {@showassoc}, {@check_relaxed}, {@check_relaxed}, {@utf8}, {@unhide}, {@overriderock}, {@gid}, {@map_off}, {@mode={'mode', 0x3d, 0x6}}], [{@uid_eq}], 0x2c}, 0x3, 0x9bf, &(0x7f0000001640)="$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")
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='ramfs\x00', 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='mounts\x00')
pread64(r0, &(0x7f0000000600)=""/4099, 0x1003, 0x0)

7.589729629s ago: executing program 1 (id=709):
r0 = socket$inet(0x2, 0x3, 0x6)
ioctl$sock_inet_tcp_SIOCINQ(r0, 0x541b, &(0x7f0000000040))

7.333407312s ago: executing program 1 (id=710):
sched_setaffinity(0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f0000000040)='./file0\x00', 0x300001a, &(0x7f0000000800)=ANY=[], 0xd, 0x2ad, &(0x7f0000001100)="$eJzs3U9rI2UYAPBn8q+jIgniRREc0IOnsvXqpVFWEHtSIqgHDe4uSBIWdiFgBeOe+gk8+j38CF68+A0Er4K39lAZmcxMk9KkLTWm0P39Tg/vO8/7Ppl32pzyzNdvTEYPHifx7PiPSNMkGvuxHydJ9KIRtR+jFQDA3XGS5/F3fpPMVmPz1QAA21B+/5duuxYAYDs+/fyLj/sHB/c/ybI0XuseTQdJREyOpoNyvv8ovo1xPIx70Y3TiPxMGX/40cH9aGWFXrw9mU0HRebkq9+q9ft/Rczz96IbvdX5e1lpKX82HbTjxcii/6hdl9qNV1fnv7siPwadeOetpfp3oxu/fxOPYxwPoshd5P+wl2Uf5D8df/9lsU2RnzRisDO/biFvbvNcAAAAAAAAAAAAAAAAAAAAAAC423azLCnb98z79xRDVf+d5ul8fjer9c735ynzk3qhsj9QHlWLnlkeP9f9de5lWZZXF04HnSqhFa+3vFgAAAAAAAAAAAAAAAAAAAAACk+/OxwNx+OHTzYS1N0A6p/133Sd/aWRN+NwNGyuX3Dn2nu9vNxtoKj10jKi1YoN3ZargheKeja+8s7icD+LMqgPZqN7vfJ+uejhaJhVU/VNHg2Tq/ZK64P7ZTGVRsR/LSyfPxKneTnSLh/1SM9KPZ/V2dDd6Ly0cuqfPM/PRooa1q7z3p/lGS3/NV3z2WhXwcoPWATpxbP4df2Csa45R3MD/3YAAAAAAAAAAAAAAAAAAIAVFj/6XTH57NLUxv9WFAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABs2eL9/3WQRsT5kQvBrEq+7Joq6MSTp7f8EQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHgO/BsAAP//tI1Hsg==")
open(&(0x7f0000000140)='./bus\x00', 0x143142, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f00000001c0)='./bus\x00', 0x60200, 0x20)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, "ef359f413bb90152f7d6d1ce5d29c3ee5e5ca9000f7c41499dc2aac63a01000000000000004faa2ad9c084a003ea00", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b900000000fffffffff2060000000000000200"})
getpid()
getpid()
connect$unix(0xffffffffffffffff, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)

7.201679174s ago: executing program 6 (id=711):
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f0000000300)='./file0\x00', 0x2000480, &(0x7f0000001900), 0x1, 0x761, &(0x7f0000001180)="$eJzs3c1rHGUYAPBnNknTptVEELSeAoIGSjemxlbBQ8WDCBYKerYum22o2WRLdlOaEFARwYug4kHQS89+1Js38eOq/4WnlqppseJBIrOZTTfd3TZpPla7vx9M8r4zs/vMszP7zrs7LzsB9KzR9E8u4nBEfJhEDGfzk4gYqJf6I06urXdzZbmYTkmsrr76e1Jf58bKcjGaHpM6mFUejYgf34s4kmuNW11cmimUy6X5rD5emz0/Xl1cOnputjBdmi7NHZ+YnDx24pkTx3cu1z9/WTp09aOXnvz65N/vPnL5g5+SOBmHsmXNeeyU0RjNXpOB9CXc4MWdDtZlSbc3gHuSvjX71t7lcTiGo69eAgDuZ29FxCoA0GMS538A6DGN7wFurCwXG1N3v5HYW9deiIj9a/k3rm+uLenPrtntr18HHbqRbLgykkTEyA7EH42Iz799/ct0il26DgnQztvfZYWW9j9pGbOwVU9tYp3Rvo117R/sne/T/s+z7fp/ufX+T7Tp/ww2xo5t0+3P0fr+z13ZgTAdpf2/55vGtt1syj8z0pfVHqj3+QaSs+fKpbRtezAixmJgMK1P3CHG2PV/rnda1tz/++PjN79I46f/b62Ru9I/uPExU4VaYTs5N7v2TsRj/e3yT9b3f9Kh/3t6kzFefu79zzotS/NP821MrfnvrtVLEU+03f+3RrQldxyfOF4/HMYbB0Ub3/z66VCn+M37P53S+I3PAnsh3f9Dd85/JGker1ndeoyfLw3/0GnZ3fNvf/zvS16rl/dl8y4WarX5iYh9ySut84/demyj3lg/zX/s8Xr+B7JVWtq/dsd/+pnwjbslnm1E/9Xfvrr3/HdXmv/Ulvb/1guXb870dYq/uf0/WS+NZXM20/5tdgO389oBAAAAAAAAAAAAAAAAAAAAAAAAwGblIuJQJLn8ejmXy+fX7uH9cAzlypVq7cjZysLcVNTvlT0SA7nGT10ON/0e6kT2e/iN+rHb6k9HxEMR8cnggXo9jT3V7eQBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIHOww/3/AYD73P5ubwAAsOec/wGg92z1/K+/AAD/f87nANB7nP8BoPc4/wMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALDLTp86lU6rf60sF9P61IXFhZnKhaNTpepMfnahmC9W5s/npyuV6XIpX6zM3u35ypXK+cmYW7g4XitVa+PVxaUzs5WFudqZc7OF6dKZ0sCeZAUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAW1NdXJoplMuleQUFBYX1QtZADHW5gQIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4j/s3AAD//wZCISY=")
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14d27e, 0x0)
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x0, 0x3)
fallocate(r0, 0x3, 0x1b02, 0x7000)
sendfile(r1, r1, 0x0, 0xdc24)

7.067836412s ago: executing program 2 (id=712):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x1, 0x5, 0x9fd, 0x84, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, &(0x7f0000000940)={0x0, 0x0, 0x0, 0x0, 0x2, r0, 0x4}, 0x38)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000001040)=@getlink={0x20, 0x12, 0x2fa9ccd93d5c0297, 0x70bd3d, 0x0, {0x7}}, 0x20}, 0x1, 0x0, 0x0, 0x40010}, 0x0)
r3 = socket$inet6(0xa, 0x3, 0x1)
sendmsg$NLBL_UNLABEL_C_STATICADDDEF(0xffffffffffffffff, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x14}, 0x2, 0x34005}, 0x0)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(r3, 0x29, 0x37, &(0x7f0000000000)=ANY=[], 0x130)

6.934576402s ago: executing program 0 (id=713):
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$cgroup(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000340)={[], [{@appraise_type}]})
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x804810, &(0x7f0000005440), 0x26, 0x76c, &(0x7f0000000b00)="$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")
chdir(&(0x7f00000000c0)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000a80)={0x1, 0x2, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0})

6.931833938s ago: executing program 7 (id=714):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec000000010902120001000000000904"], 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000100)={0x2c, &(0x7f0000000080)=ANY=[@ANYBLOB="000001000000040f"], 0x0, 0x0, 0x0, 0x0})
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
getsockopt$inet6_mreq(r1, 0x29, 0x10, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000007c0)={0x84, &(0x7f0000000340)={0x40, 0xd, 0x3d, "aedbe0b0841bd3aa3a20a02c46b85d0607b7c94e39e6eee5bca5e6dcb64f5024341a04b0edc4fd9eb984e3226b10a5ba06bb6a496714549de57478935d"}, &(0x7f0000000400)={0x0, 0xa, 0x1, 0xfb}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

6.928455115s ago: executing program 3 (id=715):
syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000180)='./file1\x00', 0x4000, &(0x7f0000000e00)={[{@lastblock}, {@adinicb}, {}, {@umask={'umask', 0x3d, 0x5}}, {@shortad}, {@shortad}, {@undelete}, {@uid}, {@lastblock={'lastblock', 0x3d, 0x3ff}}, {@umask={'umask', 0x3d, 0x6}}, {@dmode={'dmode', 0x3d, 0x9}}, {@nostrict}, {@umask={'umask', 0x3d, 0x80000001}}, {@umask={'umask', 0x3d, 0x5}}]}, 0x2, 0xc2d, &(0x7f00000001c0)="$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")
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x1881c00, 0x0, 0x0, 0x0, &(0x7f0000000000))
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000280)='./bus/file0\x00', 0x0)
renameat2(r0, &(0x7f00000001c0)='./bus/file0\x00', r0, &(0x7f0000000140)='./file0\x00', 0x4)

6.561226937s ago: executing program 1 (id=716):
r0 = userfaultfd(0x0)
setgid(0xee00)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='task\x00')
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
socket$key(0xf, 0x3, 0x2)
r4 = socket$inet(0x2, 0x2, 0x0)
r5 = msgget$private(0x0, 0x3a9)
setreuid(0x0, 0xee01)
msgrcv(r5, 0x0, 0x0, 0x0, 0x0)
msgctl$IPC_SET(r5, 0x1, &(0x7f0000000280)={{0x2, 0xee00, 0x0, 0x0, 0xee01, 0x82}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8})
shutdown(r4, 0x0)
recvmmsg(r4, &(0x7f00000066c0), 0xa0d, 0x0, 0x0)
fchdir(r2)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
r6 = syz_open_procfs(r1, 0x0)
unlinkat(r6, &(0x7f00000004c0)='./file0\x00', 0x0)
ioctl$UFFDIO_API(r0, 0xc018aa3f, 0x0)
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, 0x0)
unshare(0x20000400)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)

5.623822259s ago: executing program 1 (id=717):
syz_open_procfs$namespace(0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
setsockopt$sock_int(r0, 0x1, 0x12, &(0x7f0000000180)=0x4000000, 0x4)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r2}, 0x10)
sendto$inet6(r0, 0x0, 0x1e, 0x2200c851, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c)
poll(&(0x7f0000000040)=[{r0, 0x680}], 0x1, 0x800)
sendto$inet6(r0, &(0x7f0000000080)="44f9b108b1cdc885c9c533d21f474bec8bfef1df1e2da71e578dc6b91d09f7ab15378571d8e27546090011006e75436914ab717528ee4b7a9beaf908d11137c11903064e83b4951f4d433a5404970c85d92d7083fd38844cbb0c6c5eb508ddc2dc7a590aa7941b1e9eeb5a688138dea09b776cbfa784cbf550bf3074fb0d775da4df5a3f48bbdf452eeb6b923da9d0e25b80f76a873664b5753444fe05f33e5f91045540836c3cd6af10f0cd018f0c6f57f926ac959a5628c45088fbe0c87fbe6cbcda4662d2a12f6d00"/215, 0xd0d0c2ac, 0x1, 0x0, 0x0)

4.787422639s ago: executing program 34 (id=717):
syz_open_procfs$namespace(0xffffffffffffffff, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x8000002}, 0x1c)
setsockopt$sock_int(r0, 0x1, 0x12, &(0x7f0000000180)=0x4000000, 0x4)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r2}, 0x10)
sendto$inet6(r0, 0x0, 0x1e, 0x2200c851, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c)
poll(&(0x7f0000000040)=[{r0, 0x680}], 0x1, 0x800)
sendto$inet6(r0, &(0x7f0000000080)="44f9b108b1cdc885c9c533d21f474bec8bfef1df1e2da71e578dc6b91d09f7ab15378571d8e27546090011006e75436914ab717528ee4b7a9beaf908d11137c11903064e83b4951f4d433a5404970c85d92d7083fd38844cbb0c6c5eb508ddc2dc7a590aa7941b1e9eeb5a688138dea09b776cbfa784cbf550bf3074fb0d775da4df5a3f48bbdf452eeb6b923da9d0e25b80f76a873664b5753444fe05f33e5f91045540836c3cd6af10f0cd018f0c6f57f926ac959a5628c45088fbe0c87fbe6cbcda4662d2a12f6d00"/215, 0xd0d0c2ac, 0x1, 0x0, 0x0)

4.750537181s ago: executing program 2 (id=719):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r0 = getpid()
socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000001c0)='net/fib_trie\x00')
lseek(r3, 0x7fffffffffffffff, 0x0)

4.74953454s ago: executing program 3 (id=720):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f00000003c0)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

4.748455104s ago: executing program 6 (id=721):
unshare(0x22020600)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x1, 0x4, 0x404, 0x4, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000000)={r0, 0x0, 0x0}, 0x20)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r1, &(0x7f0000000480)={0x2, 0x4, @multicast2}, 0x10)
sendmmsg(r1, &(0x7f0000007fc0), 0x800001d, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x1, 0x1, 0x4, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xc, 0x4, 0x4, 0x9, 0x0, r2, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_DELETE_ELEM(0x2, &(0x7f00000003c0)={r3, &(0x7f0000000300), 0x20000000}, 0x20)

4.312169174s ago: executing program 0 (id=722):
pipe(&(0x7f00000045c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
vmsplice(r1, &(0x7f00000003c0)=[{&(0x7f00000000c0)="17e4f3ca3c05", 0x2b}, {&(0x7f0000000200)="abc46908b3df918fe61946b2a7d85cf473884b91c53b94d51db7a5918ed07847c392ee17a23d6fea6e8d3c0f5e15638daf629312107876c7f31ade70432bc5b43f642876bf7e04c45086b9b3695182eeff8243f87f8966baec1a670803eb8ca6b37342f9ea242f21e5726b6c501808457f85459c91ff1116eae79e54b5ec3544ebbb18ee617231e4bdb87424814565dfb6ebe0", 0x93}, {&(0x7f0000000580)="db56b84884ffc02c06bd0f01587a681de55a4df7714790716dddfa75831670014c811bd064f615db698adab368dafbf134b3d26a38503c3fe8a7c5ece07759b81233530ed432985e4feebb5d4ca49dcb8c490c015acacef99f7da736180800000000000000ba12b327f6b79ea0d90605040d84453eff84443a09ab5eeba1586f85c1e383f8095573726b1bf117d96c91d1349f4951ead7fd07838ce689e171c4bda933d8fc5c35ce2fcbc1c5bae12537482f023984c435e056b2e8a6613a841360d40172a17e494ae06d5af1305ffa1eb9cbcedd90b7de636015883d0d3473c4bdfd1f", 0xe0}, {&(0x7f0000000140)="d80a642bc17284b8945c0c21fcd2df4e9cf2a68e854560584ed04f62aebae0dab1e7c4", 0x2a}, {&(0x7f00000004c0)="67df3baec1ce766316819b76b14295d4f969f2095747039d8a9e01159fc171d6ab964bc50f5d66ab6bcdefa298582348a01ac90b6ecd3001c769cf58704f758dae3ecd02919b7e1eebc643c57afec3b45811ab935a8f893220c7329def2702370b371c3966c553ce13a625dfddbe8bc98f220a9ff6ac6a09165c1273ac580916e65995994307bb637dba5994702e22a333a3d48507689db92142d492c5ca788f11ff4a5c51adfcec8f7e15467d446025f37f9c", 0xb3}, {&(0x7f00000002c0)="2b4f2c23cd72e5f8c27c5125a38cc74027abf1994ab65ba7ca4e64b9ab8b357454e5abb6d754f1318dd05531dce7560e6e7d95526c4358848e67345b32b86de0ff15be80ddf3dab5b55443991f2b4d7276d4d6334a4385a70581c45a6926fc7874e38018387a2d6195df3281ba32a96811d4e9e40b1cf5b927", 0x2a}], 0x6, 0x8)
r2 = socket$inet(0x2, 0x3, 0x7f)
bind$inet(r2, &(0x7f0000000000)={0x2, 0x0, @local}, 0x10)
setsockopt$inet_int(r2, 0x0, 0x3, &(0x7f0000000080)=0xfffffffa, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
connect$inet(r2, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10)
splice(r0, 0x0, r2, 0x0, 0x8000, 0x0)

3.475844733s ago: executing program 3 (id=723):
syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f00000000c0)='./bus\x00', 0x50, &(0x7f0000000a80)=ANY=[@ANYRES32=0x0, @ANYBLOB="120f3163b4063712399be63eab8763bac600a6e03d735669edb220f5500bdaf6de1af6f7c3d48082933d5626b20401063293f9a99881897f4018766c76475374f4eab3c713eb2a5d62a2d8a3c46001724614032595eaab7d13c3", @ANYRES64, @ANYRESOCT, @ANYRESHEX=0x0, @ANYBLOB="98b6417eacbbeb9914c797963456c8ae6a7f88", @ANYRESOCT, @ANYRESDEC, @ANYRES64], 0x2, 0x62e, &(0x7f0000000cc0)="$eJzs3c1rXNcZB+DfHcmy5ICjNLbjlkBEDGmpqK0PlFbd1C2lqBBKSBddC1vGwmMnlZSihNKoX3TbRf6AdKFdV4VuCgVDum532WoZKHSTlbqacu/cGY1seTqKJc04eR5z55wz595z3/PO/ZgZIybAl9bKbMYfpsjK7BvbZXtvd7G5t7t4v1NPcj5JIxlvFykeJMXHyc20l3y1fLIernjSfj5cX37rk8/2Pm23xuulWr/Rb7vB7NRLZpKM1eVJjXfrqccrujMsE3atkzgYtnNJWof8/MpBT38Xnvq8BUZB0b5vdrXqM3u6Os0zWb8PaN8V2/fsZ9rOsAMAAACAM/D8fvaznYvDjgMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACeJfXv/1e/+j/ZfSrFTIrO7/9PdPrr+mgaMLKHjdMOBAAAAAAAAABO3yv72c92LnbarSKNJK9WjUvV43N5N5tZy0auZzur2cpWNjKfZLpnoInt1a2tjfkBtlw4csuFAQOeevo5AwAAAAAAAMAX0G+ycvD//wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMAqKZKxdVMulTn06jfEkk0kmyvV2kn916s+yh8MOAAAAAM7A8/vZz3YudtqtovrMf6X63D+Zd/MgW1nPVppZy+3qu4D2p/7G3u5ic2938X65PD7u9/9zrDCqEdP+7uHoPV+t1pjKnaxXz1zPrbydZm6nUW1ZutqJ5+i4fl3GVHyvNmBkt+uynPkf6/L0jQ2wznSVkXPdjMzVsZXZeKF/Jg6/OjvH3dN8Gt1vfi6dQs4v1GWRPPfjM8v5IOpMvJI6Ews9R9+V/plIvv7XP//sbvPBvbt3NmdHZ0rHcL7VanXqjx4Tiz2ZeOkLn4lec1UmLnfbK/lRfprZzOTNbGQ9v8hqtrKWmfywqq3Wx3P5ON0/UzcPtd6sHqeeHMlE/bq0rx7Hi+nVatuLWc9P8nZuZy2vV/8WMp9vZylLWe55hS8PcNY3jnfWX/tGXSkn+If+Ez1jZV5fqPP6QXLomjtd9fU+c5ClFDnpa+P41+pKuY/f1uVoeDQT8z2ZeLH/8fKn6rKy2Xxwb+Pu6jsD7u+1uizPo9+P1F2iPF6+Ur5YVevw0VH2vXhk33zVd6nb13is73K37/+dqRP1e7jHR1qo+l46sm+x6rva03fU+y0ARt6Fb16YmPr31D+nPpr63dTdqTcmf3D+O+dfnsi5f5z77vjc2GuNl4u/5KP86uDzPwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8Pltvvf+vdVmc23jkUqr1frgCV2ftzKW42z197+d5N47v0d0gtM52crkcVZujUbMx6n8t9VqnciAO30O2hOrtGojkbohVYZ8YQJO3Y2t++/c2Hzv/W+td26RS0vLc8tLry/euLPeXJtrPw45SOBUHNz0hx0JAAAAAAAAAAAAMKiz+HOCYc8RAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeLatzGb8YYrMz12fK9t7u4vNcunUD9YcT9JIUvwyKT5Obqa9ZLpnuOJJ+/lwffmtTz7b+/RgrPHO+o1+2w1mp14yk2SsLk9qvFtPPV7RnWGZsGudxMGw/S8AAP//C8wPrA==")
syz_usb_connect(0x5, 0x24, 0x0, 0x0)
r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
r1 = open(&(0x7f0000000080)='./file1\x00', 0x24000, 0x0)
sendfile(r0, r1, 0x0, 0x10f800)

3.383880478s ago: executing program 2 (id=724):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x3014850, &(0x7f00000001c0)={[{@quota}, {@barrier_val={'barrier', 0x3d, 0x1000}}, {@grpjquota}, {@norecovery}, {@dioread_lock}]}, 0x3, 0x4c1, &(0x7f0000000680)="$eJzs3d9rW9cdAPDvle3ESZzZ2faQBZaFLcMJWyQ7XhKzh8yDsT0FlmXvnmfLxli2jCUnsQnDYX9AofQX7VOf+lLocymU/AmlEGjfSyktoU3Shz60VZF81SSubMvEshLr84Hje8+9V/5+j4SOdO656AbQsU5FxFhEdEXE2YjoT7dn0hJr66V63IP7tyarJYlK5dqXSSTptvr/StLlkfRhvRHxr39E/Df5adzSyurcRKGQX0rrufL8Yq60snpudn5iJj+TXxgbGb44emn0wujQrrX18t8+e+WFt/5++f0/3vhk/Isz/6um1Zfue7wdzVhr8rj1pvfUnou67ohY2kmwZ1hX2p6edicCAEBTqt/xfx4Rv42Ih6+3OxsAAACgFSp/6Ytvk4gKAAAAsG9latfAJplsei1AX2Qy2ez6Nby/jMOZQrFU/sN0cXlhav1a2YHoyUzPFvJD6bXCA9GTVOvDtfVH9fMb6iMRcSwiXuo/VKtnJ4uFqXaf/AAAAIAOcWTD+P/r/vXxPwAAALDPDLQ7AQAAAKDljP8BAABg/9t0/J90720iAAAAQCv888qVaqnU7389dX1lea54/dxUvjSXnV+ezE4WlxazM8XiTO03++a3+3+FYnHxT7GwfDNXzpfKudLK6vh8cXmhPF67r/d43n2iAQAAYO8d+82dj5OIWPvzoVqpOpDua2KsPtba7IBWyuzs8KRVeQB7r6vdCQBt4wJf6Fzm44FtBvYvb6jv8LQBAADwLBj81VPN/5sPhOeYgTx0LvP/0LnM/0PnMv8PHe7g9of0brbjg13OBQAAaJm+Wkky2XQusC8ymWw24mjttgA9yfRsIT8UET+LiI/6ew5W68PtThoAAAAAAAAAAAAAAAAAAAAAAAAAnjOVShIVAAAAYF+LyHyepDfyH+w/3bfx/MCB5Jv+2jIibrxx7dWbE+Xy0nB1+1c/bi+/lm4/344zGAAAAMBG9XF6fRwPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALvpwf1bk/Wyl3Hv/TUiBhrF747e2rL33f6IOPwwie7HHpdERNcuxF+7HRHHG8VPqmnFQJrFxviZiDjU5vhHdiE+dLI71f5nrNH7LxOnasvG77/utDyte6c26/8y9f6v1s816v+ONhnjxN13cpvGvx1xortx/1OPnzxl//uff6+ubrav8mbEYMPPn+SJWLny/GKutLJ6bnZ+YiY/k18YGRm+OHpp9MLoUG56tpBP/zaM8eKv3/t+q/Yf3iT+wDbtP91k+7+7e/P+L7aIf+Z3jV//41vErz73v08/B6r7B+vra+vrjzv59ocnt2r/1Cbt3+71P9Nk+89e/f+nTR4KAOyB0srq3EShkF+yYsXK/lu5mr7Rd/zwNndMAADArnv0pb/dmQAAAAAAAAAAAAAAAAAAAEDnavmPkB188pcFetvXVAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACALf0QAAD//9sy0wA=")
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000180)=ANY=[], 0xfe37, 0x0)

3.282390648s ago: executing program 7 (id=725):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_DELETE(r0, &(0x7f0000000ac0)={0x0, 0x0, &(0x7f0000000a80)={&(0x7f00000009c0)={0x2c, 0x2, 0x2, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}, [@CTA_EXPECT_TUPLE={0x18, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @private=0xa010101}, {0x8, 0x2, @multicast2}}}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x840}, 0x40004)

2.999788954s ago: executing program 7 (id=726):
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xe, 0x4, 0x4, 0xbf22, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_TX_RATES={0x18, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x14, 0x1, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x5, 0x1, [0x30]}, @NL80211_TXRATE_HT={0x6, 0x2, [{}]}]}]}]}, 0x34}}, 0x0)

2.879628211s ago: executing program 0 (id=727):
r0 = socket(0xa, 0x2400000001, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10012, r1, 0x0)
getsockopt$inet6_buf(r0, 0x29, 0x10000000000030, &(0x7f0000034000)=""/144, &(0x7f0000e5f000)=0x90)

2.841544473s ago: executing program 7 (id=728):
syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./file2\x00', 0x2208050, &(0x7f0000000140)=ANY=[], 0x1, 0x1520, &(0x7f0000011680)="$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")
chdir(&(0x7f0000000000)='./file0\x00')
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x0, 0x0)
lseek(r0, 0x7, 0x0)
socket(0x21, 0x6, 0x6)
getdents(r0, 0x0, 0x58)

2.783718485s ago: executing program 6 (id=729):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000002c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
prctl$PR_CAP_AMBIENT(0x2f, 0x0, 0x28)
r0 = epoll_create(0x3ff)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x18)
r3 = epoll_create1(0x80000)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r3, &(0x7f0000000240)={0xa0000000})
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r3, &(0x7f0000000280))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
gettid()
r4 = socket$inet6(0xa, 0x80003, 0xff)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x16, &(0x7f0000fcb000), 0x4)
setsockopt$inet6_int(r4, 0x29, 0x16, &(0x7f0000fcb000), 0x4)
setsockopt$inet6_int(r4, 0x29, 0x16, &(0x7f0000000000)=0x2, 0x4)

2.678053639s ago: executing program 0 (id=730):
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
r1 = fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r1, 0x0)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000032680)=""/102400, 0x19000)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000006ec0)=@newtaction={0xf0, 0x30, 0x1, 0x0, 0x0, {}, [{0xdc, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0xfe}}]]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x1}}}}, @m_police={0x6c, 0x2, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x7, 0x6, 0x7ff, 0x5, 0xc27, {0x8, 0x0, 0x5, 0x3, 0xfff, 0x6}, {0x9, 0x2, 0x9800, 0x2, 0x6}, 0x5f78, 0x7f, 0x8}}]]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xf0}}, 0x0)

2.388552338s ago: executing program 2 (id=731):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r2)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100))
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
write$cgroup_devices(r1, &(0x7f0000000440)=ANY=[@ANYBLOB="1e0308003c5ca601288763"], 0xffdd)
write$cgroup_devices(r0, &(0x7f0000000440)=ANY=[], 0xffdd)

2.080832024s ago: executing program 3 (id=732):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x13, 0x4, &(0x7f0000000340)=ANY=[@ANYBLOB="1b0000000000000000000000410b5d60850000001800000095"], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

1.498048464s ago: executing program 0 (id=733):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file2\x00', 0x200000, &(0x7f00000000c0)={[{@dioread_lock}, {@noblock_validity}, {@lazytime}, {@noblock_validity}]}, 0xfc, 0x564, &(0x7f00000008c0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000180), 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x60000b, 0x9)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0))

1.36010455s ago: executing program 6 (id=734):
setgroups(0x0, 0x0)
getgroups(0x1, &(0x7f00000000c0)=[<r0=>0xee00])
setregid(0x0, r0)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000640)='./file1\x00', 0x1008000, &(0x7f0000000040)=ANY=[], 0x1, 0x603, &(0x7f0000000c80)="$eJzs3U9vHHcZB/DvbBxnN6DUcZM2oEpYRaoQFsnalkjKBSgFWahClThwtoiTWNmkle0itwcSEIeKU19CEfIbQByLlAPtgQOcejbqEYm7b4tmdna9TjZp/KfZdfh8pNl5Zn4zv3nmmdnxzK6sDfB/a3k+Uw9SZHn+ra1yemd7qbOzvXSnHyc5k6SRNJMUaSV/TfJFcj+9Id+oGnqKx23n80+aNz/76NMPe1NlX81iqrd88aT1ns4gl5lertX4uPpbPHJ/+/dwNsnc0fKD49Ht+/fI5iO+LwGASVYkp0bNn0nO1jfs5XNA7664d499ot0fdwIAAADwDLywm91s5dy48wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAICTpP79/6IeGv14LkX/9/+n63mp4xPtwbgTAAAAAAAAAIBj8K3d7GYr5/rT3aL6zv/VauJC9fq1vJeNrGY9l7OVlWxmM+tZSDIz1NH01srm5vrCU6y5OHLNxWezvwAAAAAAAADwnPp9lve+/wcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgElQJKd6o2q40I9n0phK0kwyXS53P/lXPz7JHow7AQAAAHgGXtjNbrZyrj/dLapn/peq5/5m3svdbGYtm+lkNderzwJ6T/2Nne2lzs720p1yeLTfH//3QGlUPab32cPoLV+qlmjlRtaqOZfz67yTTq6nUa1ZutTPZ3RevytzKn5Ye8rMrtfjcs9/Xo8nQKsfnB5UpF3nVlbj/JMrccCjM1P1urelhTQGn/xc+ApqfrYel/vz5uTUfEQlFofOvpeeXIlk9ld/vHqrc/f2rRsb85OzS4f0cCWWhirx8omvxNcPsGy7qsTFwfRyfpZfZj5zeTvrWctvspLNrGYub1bRSn0+l68zT67Uj/ZNvf1lmUzXx6V3FT1YTq9W657LWn6Rd3K9OqLtXM3VLOb7eT3tfUf44si873Xr5t1ut5vGwd713/5OHZxO8tN6PBnKup4fquvwNXemahues1el2eO/Nk59sw7Ks+eNibs2nn/or0S/Ei8+XIn9B/dP1Ymz0bl7e/3WyrtPub3X6nFZgZ8MKjFVz+2eOp69OozyfJmtc+l2u/fKef2zo2x7cZDn/npN19+49Noaj7RdHLR92Tt1ur6He7Snxart5ZFtvfUuDbWNut8CYOKd/e7Z6dZ/Wv9sfdz6Q+tW663mG2eunXllOqf/fvoHU+1TrzVeKf6Sj/Pbved/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAADg8Dbe/+D2Sqezun7ooP9LREftR3CCg27PvUnJR3DkYNxXJuCrdmXzzrtXNt7/4Htrd1Zurt5cvft6+9q1hYWFq+0rN9Y6q/XruLMEAI7T3k3/uDMBAAAAAAAAAAAAAAAe51n8O/G49xEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHi+Lc9n6kGKLLQvt8vpne2lTjn0470lm0mKMvhbki+S++kNmRnqrnjcdj7/pHnzs48+/XCvr2a1/D8Wj2Mv9uXSeCino/a3ONTfnw/VXTGozFyS2XoMY/e/AAAA//9C3Q3U")
fchmodat(0xffffffffffffff9c, &(0x7f0000000300)='.\x00', 0xffffffd3)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
capset(&(0x7f0000000100)={0x20080522}, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x81, 0xfffffffb})
mkdirat(r1, &(0x7f0000000300)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x408)

1.337921274s ago: executing program 7 (id=735):
syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000180)='./file1\x00', 0x4000, &(0x7f0000000f00)=ANY=[@ANYBLOB="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"], 0x2, 0xc2d, &(0x7f00000001c0)="$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")
r0 = gettid()
sigaltstack(&(0x7f0000000200)={&(0x7f0000001200)=""/4090, 0x0, 0xffa}, 0x0)
rt_sigqueueinfo(r0, 0x21, &(0x7f0000000000))

923.26589ms ago: executing program 7 (id=736):
syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f00000004c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x800810, &(0x7f0000000640)=ANY=[], 0x1, 0x669, &(0x7f0000001000)="$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")
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x0, 0x0)
mount$bind(0x0, &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)

511.876124ms ago: executing program 3 (id=737):
r0 = socket(0x2, 0x3, 0xff)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r0, &(0x7f0000001980)=[{{&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, &(0x7f0000000280)=[{&(0x7f0000000140)="ed", 0x1}, {&(0x7f0000000080)="c158084b3658049f2f6584eafd6c55b92cbd09a4ac34bcd3d7565a36fa3f3d7f42192752c9b0bc9afaabc174888cc7009331dc", 0x33}], 0x2}}], 0x1, 0x0)

123.600545ms ago: executing program 6 (id=738):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000200), 0x3, 0x570, &(0x7f0000000680)="$eJzs3V1rHFUYAOB3Nkm/tSmUoiIS6IWV2k2T+FFBsF6KFgt6X5dkGmo23ZLdlCYW2l7YG2+kCCIWxB/gvZfFP+CvKGihSAl64U1kNrPtNtnN52q2zvPAtOfMzObM2TPv2Xd2dtkACmsk+6cU8WLcjK+TiMNt2wYj3ziyst/So+uT2ZLE8vInfySR5Ota+yf5/wfzygsR8cuXESdLa9utLyzOVKrVdC6vjzZmr4zWFxZPXZqtTKfT6eXxiYkzb06Mv/P2Wz3r62vn//ru43sfnPnq+NK3Pz04cieJs3Eo39bejx242V4ZiZH8ORmKs6t2HOtBY/0k2e0DYFsG8jgfimwOOBwDedQD/383ImIZKKhE/ENBtfKA1rV9j66DnxkP31+5AFrb/8GV90ZiX/Pa6MBS8tSVUXa9O9yD9rM2fv797p1siQ3eh7jRg/YAWm7eiojTg4Nr578kn/+273TzzeP1rW6jaK8/sJvuZfnP653yn9Lj/Cc65D8HO8Tudmwc/6UHPWimqyz/e7dj/vt46hoeyGvPNXO+oeTipWp6OiKej4gTMbQ3q693P+fM0v3lbtva879sydpv5YL5cTwY3Pv0Y6YqjcpO+tzu4a2Il57kv0msmf/3NXPd1eOfPR/nN9nGsfTuK922bdz/dr3PgJd/jHi14/g/uaOVrH9/crR5Poy2zoq1/rx97Ndu7W+t/72Xjf+B9fs/nLTfr61vvY0f9v2ddtu23fN/T/Jps7wnX3et0mjMjUXsST5au378yWNb9db+Wf9PHF9//ut0/u+PiM822f/bR2933bUfxn9qS+O/9cL9D7/4vlv7mxv/N5qlE/mazcx/mz3AnTx3AAAAAAAA0G9KEXEoklL5cblUKpdXPt9xNA6UqrV64+TF2vzlqWh+V3Y4hkqtO92H2z4PMZZ/HrZVH19Vn4iIIxHxzcD+Zr08WatO7XbnAQAAAAAAAAAAAAAAAAAAoE8c7PL9/8xvA7t9dMC/zk9+Q3FtGP+9+KUnoC95/Yfi6hL/pgUoAIEOxSX+objEPxSX+IfiEv9QXOIfAAAAAAAAAAAAAAAAAAAAAAAAAAAAeur8uXPZsrz06PpkVp+6ujA/U7t6aiqtz5Rn5yfLk7W5K+XpWm26mpYna7Mb/b1qrXZlbDzmr4020npjtL6weGG2Nn+5ceHSbGU6vZAO/Se9AgAAAAAAAAAAAAAAAAAAgGdLfWFxplKtpnMKXQvvxW4fxucv7+ThSedRTto6uGJbTQz2yzAp9LSwyxMTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALT5JwAA//821zOC")
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x103042, 0x0)
pwritev2(r0, &(0x7f00000001c0)=[{&(0x7f0000000780)="f7", 0x1}], 0x1, 0x7fff, 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305839, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x3fffffff404})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
pwritev2(r2, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5412, 0x0, 0x0)

58.255287ms ago: executing program 0 (id=739):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
r1 = gettid()
ioctl$sock_FIOSETOWN(r0, 0x8901, &(0x7f0000000140)=r1)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x20}}, 0x10)
sendto$inet(r0, &(0x7f0000000840)='\t', 0x1, 0x20008005, 0x0, 0x0)

0s ago: executing program 3 (id=740):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_FEATURES_SET(r0, &(0x7f0000001e80)={0x0, 0x0, &(0x7f0000001e40)={&(0x7f0000000000)={0x3c, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_FEATURES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth1_to_bridge\x00'}]}, @ETHTOOL_A_FEATURES_WANTED={0x10, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x8, 0x3, 0x0, 0x1, [{0x4}]}, @ETHTOOL_A_BITSET_NOMASK={0x4}]}]}, 0x3c}}, 0x4000)

kernel console output (not intermixed with test programs):

 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  162.524564][ T6890] RSP: 002b:00007fa3ae9f6058 EFLAGS: 00000246 ORIG_RAX: 0000000000000037
[  162.533004][ T6890] RAX: ffffffffffffffda RBX: 00007fa3b0d45fa0 RCX: 00007fa3b0b7ff19
[  162.540991][ T6890] RDX: 0000000000000014 RSI: 0000000000000084 RDI: 0000000000000003
[  162.548966][ T6890] RBP: 00007fa3ae9f60a0 R08: 0000000020001080 R09: 0000000000000000
[  162.556956][ T6890] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000001
[  162.564943][ T6890] R13: 0000000000000000 R14: 00007fa3b0d45fa0 R15: 00007fff0f61a988
[  162.572990][ T6890]  </TASK>
[  162.667164][ T6892] loop4: detected capacity change from 0 to 4096
[  162.690352][ T6892] ntfs3(loop4): Different NTFS sector size (2048) and media sector size (512).
[  162.810888][    T9] usbhid 5-1:0.0: can't add hid device: -71
[  162.852650][    T9] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[  162.890854][    T9] usb 5-1: USB disconnect, device number 5
[  163.028629][ T6894] loop0: detected capacity change from 0 to 32768
[  163.036098][ T6894] XFS: ikeep mount option is deprecated.
[  163.389233][ T6905] overlayfs: missing 'lowerdir'
[  163.401720][ T6894] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  163.660992][    T9] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  163.890669][    T9] usb 5-1: Using ep0 maxpacket: 16
[  163.975295][    T9] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  164.040115][    T9] usb 5-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  164.079640][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  164.168631][    T9] usb 5-1: config 0 descriptor??
[  164.212879][    T9] input: bcm5974 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input10
[  164.252694][ T6894] XFS (loop0): Ending clean mount
[  164.294937][ T6894] XFS (loop0): Quotacheck needed: Please wait.
[  164.330705][ T6912] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(6)
[  164.337396][ T6912] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  164.403849][ T6912] vhci_hcd vhci_hcd.0: Device attached
[  164.523648][ T6894] XFS (loop0): Quotacheck: Done.
[  164.565917][   T29] audit: type=1800 audit(1733184585.943:40): pid=6894 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.249" name="bus" dev="loop0" ino=9290 res=0 errno=0
[  164.629127][   T29] audit: type=1800 audit(1733184585.993:41): pid=6921 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.249" name="file1" dev="loop0" ino=9286 res=0 errno=0
[  164.640640][   T57] usb 39-1: new low-speed USB device number 3 using vhci_hcd
[  164.793730][ T5182] bcm5974 5-1:0.0: could not read from device
[  164.868442][ T5182] bcm5974 5-1:0.0: could not read from device
[  164.944814][    T9] usb 5-1: USB disconnect, device number 6
[  164.964102][ T5829] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  165.111800][ T6914] loop2: detected capacity change from 0 to 32768
[  165.358551][ T6914] add_index: next_index = 0.  Resetting!
[  165.364880][ T6914] find_entry called with index >= next_index
[  165.371491][ T6914] find_entry called with index >= next_index
[  165.377484][ T6914] find_entry called with index >= next_index
[  165.383594][ T6914] find_entry called with index >= next_index
[  165.397224][ T6914] find_entry called with index >= next_index
[  165.403347][ T6914] find_entry called with index >= next_index
[  165.409339][ T6914] find_entry called with index >= next_index
[  165.819475][ T6935] loop4: detected capacity change from 0 to 64
[  166.245342][ T5897] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  166.774176][ T6919] loop3: detected capacity change from 0 to 32768
[  167.095845][ T6915] vhci_hcd: cannot find a urb of seqnum 16777216 max seqnum 2
[  167.161009][ T5897] usb 6-1: Using ep0 maxpacket: 16
[  167.171567][ T5897] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  167.182110][ T5897] usb 6-1: New USB device found, idVendor=0846, idProduct=9030, bcdDevice=54.42
[  167.200125][ T5897] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  167.214367][   T51] vhci_hcd: stop threads
[  167.218693][   T51] vhci_hcd: release socket
[  167.225059][   T51] vhci_hcd: disconnect device
[  168.211337][ T6949] random: crng reseeded on system resumption
[  168.529509][ T5897] usb 6-1: config 0 descriptor??
[  168.556001][ T5897] usb 6-1: ath9k_htc: Device endpoint numbers are not the expected ones
[  168.561633][ T6951] loop4: detected capacity change from 0 to 512
[  168.835461][ T6951] EXT4-fs (loop4): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  169.789851][ T5893] usb 6-1: USB disconnect, device number 4
[  169.811434][ T5832] EXT4-fs (loop4): unmounting filesystem 00800000-0000-0000-0000-000000000000.
[  169.871254][   T57] vhci_hcd: vhci_device speed not set
[  170.194328][ T6957] loop2: detected capacity change from 0 to 32768
[  170.335393][ T6971] netlink: 9 bytes leftover after parsing attributes in process `syz.3.268'.
[  170.344579][ T6971] 0·: renamed from hsr0 (while UP)
[  170.402460][ T6971] 0·: entered promiscuous mode
[  170.407680][ T6971] A link change request failed with some changes committed already. Interface 
70· may have been left with an inconsistent configuration, please check.
[  171.422800][ T6974] overlayfs: missing 'lowerdir'
[  171.825406][ T6957] add_index: next_index = 0.  Resetting!
[  171.831195][ T6957] find_entry called with index >= next_index
[  171.837285][ T6957] find_entry called with index >= next_index
[  171.843793][ T6957] find_entry called with index >= next_index
[  171.849810][ T6957] find_entry called with index >= next_index
[  171.862233][ T6957] find_entry called with index >= next_index
[  171.868366][ T6957] find_entry called with index >= next_index
[  171.874461][ T6957] find_entry called with index >= next_index
[  172.513486][ T6964] loop5: detected capacity change from 0 to 32768
[  172.612901][ T6985] loop1: detected capacity change from 0 to 64
[  172.613674][ T6987] loop4: detected capacity change from 0 to 512
[  173.801041][ T6989] overlayfs: missing 'lowerdir'
[  174.283844][ T6994] add_index: next_index = 0.  Resetting!
[  174.289571][ T6994] find_entry called with index >= next_index
[  174.295683][ T6994] find_entry called with index >= next_index
[  174.301805][ T6994] find_entry called with index >= next_index
[  174.307862][ T6994] find_entry called with index >= next_index
[  174.829958][ T6978] loop0: detected capacity change from 0 to 32768
[  174.883357][ T6978] read_mapping_page failed!
[  174.919925][ T6987] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  174.972122][ T6978] diRead: read_metapage failed
[  175.048117][ T6987] ext4 filesystem being mounted at /48/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  175.629094][ T5832] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.873482][ T7007] overlayfs: missing 'lowerdir'
[  177.103430][ T7014] loop5: detected capacity change from 0 to 4096
[  177.771678][ T7014] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[  178.040900][ T7031] netlink: 9 bytes leftover after parsing attributes in process `syz.4.285'.
[  178.050169][ T7031] 0·: renamed from hsr0 (while UP)
[  178.333244][ T7031] 0·: entered promiscuous mode
[  178.344819][ T7031] A link change request failed with some changes committed already. Interface 
70· may have been left with an inconsistent configuration, please check.
[  178.481646][ T7037] overlayfs: missing 'lowerdir'
[  179.062759][ T7014] ntfs3(loop5): failed to convert "c46c" to cp864
[  179.235472][ T7036] loop2: detected capacity change from 0 to 4096
[  179.263305][ T7036] ntfs3: Unknown parameter '�n}zº2ò
[  179.263305][ T7036] .N¢Âû~΢AL	O¦…ÒjÿÿÃou”½vTb\áÐÁŽH.Nqw'
[  179.403124][ T7043] fuse: Unknown parameter 'groupCid'
[  180.508598][ T7053] netlink: 20 bytes leftover after parsing attributes in process `syz.0.289'.
[  180.526154][ T7053] netlink: 28 bytes leftover after parsing attributes in process `syz.0.289'.
[  180.541475][ T7053] loop0: detected capacity change from 0 to 128
[  180.548582][ T7053] ubifs: Bad value for 'auth_key'
[  180.831184][ T7056] loop3: detected capacity change from 0 to 64
[  181.270087][ T7048] loop5: detected capacity change from 0 to 32768
[  181.400717][    T9] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  181.581024][ T7048] add_index: next_index = 0.  Resetting!
[  181.586900][ T7048] find_entry called with index >= next_index
[  181.593416][ T7048] find_entry called with index >= next_index
[  181.599689][ T7048] find_entry called with index >= next_index
[  181.605942][ T7048] find_entry called with index >= next_index
[  181.782090][    T9] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  181.792342][    T9] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  181.814767][    T9] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  181.860851][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  181.868873][    T9] usb 1-1: SerialNumber: syz
[  182.031629][ T7071] FAULT_INJECTION: forcing a failure.
[  182.031629][ T7071] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  182.044814][ T7071] CPU: 1 UID: 0 PID: 7071 Comm: syz.3.295 Not tainted 6.13.0-rc1-syzkaller-00001-ge70140ba0d2b #0
[  182.055434][ T7071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  182.065506][ T7071] Call Trace:
[  182.068800][ T7071]  <TASK>
[  182.071749][ T7071]  dump_stack_lvl+0x241/0x360
[  182.076471][ T7071]  ? __pfx_dump_stack_lvl+0x10/0x10
[  182.081702][ T7071]  ? __pfx__printk+0x10/0x10
[  182.086327][ T7071]  ? __pfx_lock_release+0x10/0x10
[  182.091385][ T7071]  ? srso_alias_return_thunk+0x5/0xfbef5
[  182.097050][ T7071]  should_fail_ex+0x3b0/0x4e0
[  182.101761][ T7071]  _copy_to_iter+0x21f/0x1e70
[  182.106469][ T7071]  ? __virt_addr_valid+0x183/0x530
[  182.111598][ T7071]  ? __pfx_lock_release+0x10/0x10
[  182.116649][ T7071]  ? __pfx__copy_to_iter+0x10/0x10
[  182.121779][ T7071]  ? __virt_addr_valid+0x183/0x530
[  182.126915][ T7071]  ? srso_alias_return_thunk+0x5/0xfbef5
[  182.132553][ T7071]  ? __virt_addr_valid+0x45f/0x530
[  182.137680][ T7071]  ? srso_alias_return_thunk+0x5/0xfbef5
[  182.143321][ T7071]  ? __phys_addr_symbol+0x2f/0x70
[  182.148360][ T7071]  ? srso_alias_return_thunk+0x5/0xfbef5
[  182.154007][ T7071]  ? __check_object_size+0x48e/0x900
[  182.159314][ T7071]  ? srso_alias_return_thunk+0x5/0xfbef5
[  182.165081][ T7071]  __skb_datagram_iter+0x107/0x900
[  182.170240][ T7071]  ? __pfx_simple_copy_to_iter+0x10/0x10
[  182.176013][ T7071]  skb_copy_datagram_iter+0xd1/0x250
[  182.181349][ T7071]  netlink_recvmsg+0x2d0/0x11d0
[  182.186261][ T7071]  ? __pfx_netlink_recvmsg+0x10/0x10
[  182.191593][ T7071]  ? __pfx_lock_acquire+0x10/0x10
[  182.196652][ T7071]  ? __pfx_aa_sk_perm+0x10/0x10
[  182.201547][ T7071]  ? aa_sock_msg_perm+0x91/0x160
[  182.206500][ T7071]  ? srso_alias_return_thunk+0x5/0xfbef5
[  182.212148][ T7071]  ? srso_alias_return_thunk+0x5/0xfbef5
[  182.217797][ T7071]  ? __pfx_netlink_recvmsg+0x10/0x10
[  182.223109][ T7071]  sock_recvmsg+0x231/0x280
[  182.227652][ T7071]  sock_read_iter+0x2c4/0x3d0
[  182.232362][ T7071]  ? __pfx_sock_read_iter+0x10/0x10
[  182.237608][ T7071]  ? srso_alias_return_thunk+0x5/0xfbef5
[  182.243274][ T7071]  do_iter_readv_writev+0x602/0x880
[  182.248518][ T7071]  ? __pfx_do_iter_readv_writev+0x10/0x10
[  182.254286][ T7071]  ? srso_alias_return_thunk+0x5/0xfbef5
[  182.259953][ T7071]  ? srso_alias_return_thunk+0x5/0xfbef5
[  182.265630][ T7071]  ? security_file_permission+0x74/0x280
[  182.271312][ T7071]  ? srso_alias_return_thunk+0x5/0xfbef5
[  182.276969][ T7071]  ? rw_verify_area+0x55e/0x6f0
[  182.281854][ T7071]  vfs_readv+0x2b3/0xa80
[  182.286125][ T7071]  ? srso_alias_return_thunk+0x5/0xfbef5
[  182.291790][ T7071]  ? __pfx_vfs_readv+0x10/0x10
[  182.296584][ T7071]  ? __pfx_vfs_write+0x10/0x10
[  182.301372][ T7071]  ? __fget_files+0x2a/0x410
[  182.305996][ T7071]  ? __fget_files+0x395/0x410
[  182.310697][ T7071]  ? __fget_files+0x2a/0x410
[  182.315316][ T7071]  ? srso_alias_return_thunk+0x5/0xfbef5
[  182.320980][ T7071]  do_readv+0x1b6/0x360
[  182.325171][ T7071]  ? srso_alias_return_thunk+0x5/0xfbef5
[  182.330834][ T7071]  ? __pfx_do_readv+0x10/0x10
[  182.335537][ T7071]  ? do_syscall_64+0x100/0x230
[  182.340338][ T7071]  ? do_syscall_64+0xb6/0x230
[  182.345055][ T7071]  do_syscall_64+0xf3/0x230
[  182.349597][ T7071]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  182.355536][ T7071] RIP: 0033:0x7effe757ff19
[  182.359976][ T7071] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  182.379648][ T7071] RSP: 002b:00007effe82c2058 EFLAGS: 00000246 ORIG_RAX: 0000000000000013
[  182.388094][ T7071] RAX: ffffffffffffffda RBX: 00007effe7745fa0 RCX: 00007effe757ff19
[  182.396091][ T7071] RDX: 0000000000000001 RSI: 00000000200001c0 RDI: 0000000000000003
[  182.404082][ T7071] RBP: 00007effe82c20a0 R08: 0000000000000000 R09: 0000000000000000
[  182.412072][ T7071] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  182.420062][ T7071] R13: 0000000000000000 R14: 00007effe7745fa0 R15: 00007fffe4ed7838
[  182.428071][ T7071]  </TASK>
[  183.108568][ T7082] overlayfs: missing 'lowerdir'
[  183.397753][    T9] usb 1-1: 0:2 : does not exist
[  183.403008][    T9] usb 1-1: unit 5: unexpected type 0x0c
[  183.428716][    T9] usb 1-1: USB disconnect, device number 4
[  183.997523][ T7090] loop3: detected capacity change from 0 to 8
[  184.178613][ T7093] loop2: detected capacity change from 0 to 4096
[  184.357605][ T7093] ntfs3(loop2): Different NTFS sector size (1024) and media sector size (512).
[  184.514835][ T7095] loop5: detected capacity change from 0 to 40427
[  184.550211][ T7095] F2FS-fs (loop5): build fault injection attr: rate: 690, type: 0x1fffff
[  184.558952][ T7095] F2FS-fs (loop5): Image doesn't support compression
[  184.574312][ T7095] F2FS-fs (loop5): invalid crc value
[  184.604134][ T7095] F2FS-fs (loop5): Found nat_bits in checkpoint
[  184.632161][ T5890] udevd[5890]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  184.830661][ T7095] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  185.587154][ T5844] Bluetooth: hci3: unexpected event 0x06 length: 4 > 3
[  185.763934][ T7100] loop4: detected capacity change from 0 to 32768
[  185.839516][ T7100] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.301 (7100)
[  185.841654][ T5836] syz-executor: attempt to access beyond end of device
[  185.841654][ T5836] loop5: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  185.909134][ T5836] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  185.993046][ T7111] loop0: detected capacity change from 0 to 4096
[  186.076897][ T7111] ntfs3(loop0): It is recommened to use chkdsk.
[  186.088750][ T7100] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  186.101501][ T7111] ntfs3(loop0): try to read out of volume at offset 0x3fffffc0c00
[  186.109442][ T7111] ntfs3(loop0): try to read out of volume at offset 0x3fffffc0c00
[  186.126317][ T5836] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  186.127471][ T7111] ntfs3(loop0): try to read out of volume at offset 0x3fffffc0c00
[  186.141680][ T7111] ntfs3(loop0): try to read out of volume at offset 0x3fffffc0c00
[  186.149563][ T7111] ntfs3(loop0): try to read out of volume at offset 0x3fffffc1c00
[  186.158303][ T7111] ntfs3(loop0): try to read out of volume at offset 0x3fffffc2c00
[  186.169158][ T7111] ntfs3(loop0): try to read out of volume at offset 0x3fffffc4c00
[  186.177280][ T7111] ntfs3(loop0): try to read out of volume at offset 0x3fffffc8c00
[  186.185842][ T7111] ntfs3(loop0): try to read out of volume at offset 0x3fffffd0c00
[  186.235897][ T7100] BTRFS info (device loop4): using sha256 (sha256-ni) checksum algorithm
[  186.248327][ T7100] BTRFS info (device loop4): using free-space-tree
[  187.194315][ T5893] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  187.477030][ T7138] loop1: detected capacity change from 0 to 64
[  187.690832][ T5848] Bluetooth: hci3: command tx timeout
[  188.355203][ T5893] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  188.366947][ T5893] usb 1-1: New USB device found, idVendor=1430, idProduct=474c, bcdDevice= 0.00
[  188.376265][ T5893] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  188.386838][ T5893] usb 1-1: rejected 1 configuration due to insufficient available bus power
[  188.397568][ T5893] usb 1-1: no configuration chosen from 1 choice
[  188.704151][   T80] BTRFS info (device loop4): qgroup scan completed (inconsistency flag cleared)
[  188.870774][ T5832] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  188.923659][ T7147] loop5: detected capacity change from 0 to 512
[  188.976746][ T7147] EXT4-fs (loop5): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  189.437986][ T7155] overlayfs: missing 'lowerdir'
[  189.941923][ T5844] Bluetooth: hci3: command 0x0406 tx timeout
[  190.620646][ T5897] usb 1-1: USB disconnect, device number 5
[  190.850143][ T5836] EXT4-fs (loop5): unmounting filesystem 00800000-0000-0000-0000-000000000000.
[  190.926793][ T7164] trusted_key: encrypted_key: key description must be 16 hexadecimal characters long
[  191.100078][ T7167] netlink: 12 bytes leftover after parsing attributes in process `syz.0.318'.
[  191.205239][ T7167] netlink: 56 bytes leftover after parsing attributes in process `syz.0.318'.
[  191.530640][    T9] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  191.619024][ T7178] loop2: detected capacity change from 0 to 8
[  191.690586][    T9] usb 6-1: Using ep0 maxpacket: 32
[  191.712882][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  191.740790][    T9] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  191.774003][    T9] usb 6-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  191.813770][    T9] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  191.843051][    T9] usb 6-1: config 0 descriptor??
[  191.867900][ T7167] netlink: 12 bytes leftover after parsing attributes in process `syz.0.318'.
[  191.897139][ T7162] loop3: detected capacity change from 0 to 32768
[  191.902993][ T7161] loop1: detected capacity change from 0 to 40427
[  191.953609][ T7161] F2FS-fs (loop1): build fault injection attr: rate: 690, type: 0x1fffff
[  192.017330][ T7161] F2FS-fs (loop1): Image doesn't support compression
[  192.060919][ T7170] loop4: detected capacity change from 0 to 32768
[  192.148294][ T7161] F2FS-fs (loop1): invalid crc value
[  192.265527][ T7161] F2FS-fs (loop1): Found nat_bits in checkpoint
[  192.345815][ T7170] XFS (loop4): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  192.505417][ T7192] add_index: next_index = 0.  Resetting!
[  192.511227][ T7192] find_entry called with index >= next_index
[  192.517275][ T7192] find_entry called with index >= next_index
[  192.523399][ T7192] find_entry called with index >= next_index
[  192.529479][ T7192] find_entry called with index >= next_index
[  193.350669][    T9] ft260 0003:0403:6030.0004: failed to retrieve chip version
[  193.396724][    T9] ft260 0003:0403:6030.0004: probe with driver ft260 failed with error -71
[  193.408538][    T9] usb 6-1: USB disconnect, device number 5
[  193.453676][ T7170] XFS (loop4): Ending clean mount
[  193.716453][ T7194] loop0: detected capacity change from 0 to 4096
[  193.718559][ T5832] XFS (loop4): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  193.782767][ T5848] Bluetooth: hci0: unexpected event 0x06 length: 4 > 3
[  193.825646][ T7194] NILFS (loop0): couldn't find nilfs on the device
[  193.853556][ T5891] udevd[5891]: incorrect nilfs2 checksum on /dev/loop0
[  193.897014][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[  193.905535][ T1290] ieee802154 phy1 wpan1: encryption failed: -22
[  194.282076][ T7207] loop5: detected capacity change from 0 to 128
[  194.293230][ T7207] VFS: Found a Xenix FS (block size = 512) on device loop5
[  194.321181][ T7207] sysv_free_block: getblk() failed
[  194.326386][ T7207] sysv_free_block: getblk() failed
[  194.352690][ T7207] sysv_free_block: getblk() failed
[  194.360845][ T7207] sysv_free_block: getblk() failed
[  194.371537][ T7207] sysv_free_block: getblk() failed
[  194.411403][ T7207] sysv_free_block: getblk() failed
[  194.490223][ T7207] sysv_free_block: getblk() failed
[  194.544669][ T7207] sysv_free_block: getblk() failed
[  194.560719][ T7207] sysv_free_block: getblk() failed
[  194.566048][ T7207] sysv_free_block: getblk() failed
[  194.572333][ T7207] sysv_free_block: getblk() failed
[  194.580733][ T7207] sysv_free_block: getblk() failed
[  194.609686][ T7207] sysv_free_block: getblk() failed
[  194.653113][ T7207] sysv_free_block: getblk() failed
[  194.658367][ T7207] sysv_free_block: getblk() failed
[  194.735495][ T7207] sysv_free_block: getblk() failed
[  194.780212][ T7217] FAULT_INJECTION: forcing a failure.
[  194.780212][ T7217] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  194.805811][ T7207] sysv_free_block: getblk() failed
[  194.842979][ T7207] sysv_free_block: getblk() failed
[  194.881008][ T7207] sysv_free_block: getblk() failed
[  194.893966][ T7217] CPU: 0 UID: 0 PID: 7217 Comm: syz.4.325 Not tainted 6.13.0-rc1-syzkaller-00001-ge70140ba0d2b #0
[  194.901851][ T7207] sysv_free_block: getblk() failed
[  194.904601][ T7217] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  194.909727][ T7207] sysv_free_block: getblk() failed
[  194.919771][ T7217] Call Trace:
[  194.919793][ T7217]  <TASK>
[  194.919807][ T7217]  dump_stack_lvl+0x241/0x360
[  194.919853][ T7217]  ? __pfx_dump_stack_lvl+0x10/0x10
[  194.919892][ T7217]  ? __pfx__printk+0x10/0x10
[  194.925139][ T7207] sysv_free_block: getblk() failed
[  194.928265][ T7217]  ? __pfx_lock_release+0x10/0x10
[  194.931404][ T7207] sysv_free_block: getblk() failed
[  194.935840][ T7217]  should_fail_ex+0x3b0/0x4e0
[  194.935884][ T7217]  _copy_from_user+0x2f/0xc0
[  194.941500][ T7207] sysv_free_block: getblk() failed
[  194.945628][ T7217]  copy_msghdr_from_user+0xae/0x680
[  194.945682][ T7217]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  194.951053][ T7207] sysv_free_block: getblk() failed
[  194.955770][ T7217]  ? __fget_files+0x2a/0x410
[  194.955805][ T7217]  ? __fget_files+0x2a/0x410
[  194.955842][ T7217]  __sys_sendmmsg+0x32b/0x720
[  194.987057][ T7207] sysv_free_block: getblk() failed
[  194.991672][ T7217]  ? __pfx___sys_sendmmsg+0x10/0x10
[  194.991732][ T7217]  ? __pfx_lock_release+0x10/0x10
[  194.991772][ T7217]  ? kstrtouint_from_user+0x128/0x190
[  194.991823][ T7217]  ? srso_alias_return_thunk+0x5/0xfbef5
[  194.991856][ T7217]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  194.991899][ T7217]  ? ksys_write+0x22a/0x2b0
[  195.008620][ T7207] sysv_free_block: getblk() failed
[  195.010880][ T7217]  ? __pfx_lock_release+0x10/0x10
[  195.010927][ T7217]  ? srso_alias_return_thunk+0x5/0xfbef5
[  195.010958][ T7217]  ? srso_alias_return_thunk+0x5/0xfbef5
[  195.010985][ T7217]  ? vfs_write+0x730/0xd30
[  195.011024][ T7217]  ? srso_alias_return_thunk+0x5/0xfbef5
[  195.011051][ T7217]  ? __mutex_unlock_slowpath+0x21e/0x790
[  195.017810][ T7207] sysv_free_block: getblk() failed
[  195.021283][ T7217]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  195.021329][ T7217]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  195.021363][ T7217]  ? do_syscall_64+0x100/0x230
[  195.021407][ T7217]  __x64_sys_sendmmsg+0xa0/0xb0
[  195.027691][ T7207] sysv_free_block: getblk() failed
[  195.032395][ T7217]  do_syscall_64+0xf3/0x230
[  195.032451][ T7217]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  195.032492][ T7217] RIP: 0033:0x7fbe1e77ff19
[  195.032516][ T7217] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  195.032540][ T7217] RSP: 002b:00007fbe1f62e058 EFLAGS: 00000246
[  195.039346][ T7207] sysv_free_block: getblk() failed
[  195.042909][ T7217]  ORIG_RAX: 0000000000000133
[  195.042928][ T7217] RAX: ffffffffffffffda RBX: 00007fbe1e945fa0 RCX: 00007fbe1e77ff19
[  195.042950][ T7217] RDX: 0000000000000001 RSI: 0000000020005200 RDI: 0000000000000003
[  195.042970][ T7217] RBP: 00007fbe1f62e0a0 R08: 0000000000000000 R09: 0000000000000000
[  195.042989][ T7217] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  195.043007][ T7217] R13: 0000000000000000 R14: 00007fbe1e945fa0 R15: 00007ffd4bcab3d8
[  195.043045][ T7217]  </TASK>
[  195.884367][ T7207] sysv_free_block: getblk() failed
[  195.889812][ T7207] sysv_free_block: getblk() failed
[  195.908276][ T7207] sysv_free_block: getblk() failed
[  195.913549][ T7207] sysv_free_block: getblk() failed
[  195.918715][ T7207] sysv_free_block: getblk() failed
[  195.924367][ T7207] sysv_free_block: getblk() failed
[  195.930097][ T7207] sysv_free_block: trying to free block not in datazone
[  195.947385][ T5848] Bluetooth: hci0: command tx timeout
[  196.055802][ T7224] loop0: detected capacity change from 0 to 1024
[  196.130885][ T7232] netlink: 4 bytes leftover after parsing attributes in process `syz.4.334'.
[  196.140030][ T7232] netlink: 4 bytes leftover after parsing attributes in process `syz.4.334'.
[  196.348805][ T7228] loop3: detected capacity change from 0 to 32768
[  196.398453][ T7228] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.331 (7228)
[  196.419078][ T7228] BTRFS info (device loop3): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  196.429735][ T7228] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm
[  196.439362][ T7228] BTRFS info (device loop3): using free-space-tree
[  196.529728][ T7235] overlayfs: missing 'lowerdir'
[  197.178274][ T5836] sysv_free_block: getblk() failed
[  197.240857][ T5836] sysv_free_block: getblk() failed
[  197.246156][ T5836] sysv_free_block: trying to free block not in datazone
[  197.342062][ T5836] sysv_free_block: getblk() failed
[  197.347474][ T5836] sysv_free_block: getblk() failed
[  197.437922][ T5836] sysv_free_block: getblk() failed
[  197.520883][ T5836] sysv_free_block: getblk() failed
[  197.535170][ T5836] sysv_free_block: getblk() failed
[  197.584137][ T5836] sysv_free_block: getblk() failed
[  197.589618][ T5836] sysv_free_block: getblk() failed
[  197.618358][ T7260] tipc: Started in network mode
[  197.646496][ T5836] sysv_free_block: getblk() failed
[  197.660836][ T7260] tipc: Node identity 4, cluster identity 4711
[  197.686711][ T5836] sysv_free_block: getblk() failed
[  197.688409][ T7260] tipc: Node number set to 4
[  197.734703][ T5836] sysv_free_block: getblk() failed
[  197.758212][ T5836] sysv_free_block: getblk() failed
[  198.041102][ T5836] sysv_free_block: getblk() failed
[  198.280654][ T5844] Bluetooth: hci0: command 0x0406 tx timeout
[  198.343183][ T5836] sysv_free_block: getblk() failed
[  198.348405][ T5836] sysv_free_block: getblk() failed
[  198.397701][ T5836] sysv_free_block: getblk() failed
[  198.403608][ T5836] sysv_free_block: getblk() failed
[  198.423830][ T5836] sysv_free_block: getblk() failed
[  198.452300][ T5836] sysv_free_block: getblk() failed
[  198.475184][ T5836] sysv_free_block: trying to free block not in datazone
[  198.496912][ T5836] sysv_free_block: trying to free block not in datazone
[  198.516083][ T5836] sysv_free_inode: inode 0,1,2 or nonexistent inode
[  198.630601][    T9] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  198.657536][ T7270] loop1: detected capacity change from 0 to 128
[  198.889179][ T5830] BTRFS info (device loop3): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  198.917129][ T7270] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  199.038615][ T7270] ext4 filesystem being mounted at /47/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  199.105950][    T9] usb 3-1: Using ep0 maxpacket: 16
[  199.113401][    T9] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  199.124227][    T9] usb 3-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[  199.467519][ T5892] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  199.564042][    T9] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  199.582202][    T9] usb 3-1: config 0 descriptor??
[  199.594305][    T9] input: bcm5974 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input11
[  199.670611][ T5892] usb 2-1: Using ep0 maxpacket: 16
[  199.721784][ T5892] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  199.782927][ T5892] usb 2-1: config 0 interface 0 has no altsetting 0
[  199.820197][ T5892] usb 2-1: New USB device found, idVendor=060b, idProduct=500a, bcdDevice= 0.00
[  199.857068][ T5892] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  199.887506][ T5892] usb 2-1: config 0 descriptor??
[  199.947601][ T5182] bcm5974 3-1:0.0: could not read from device
[  199.986244][ T7292] loop4: detected capacity change from 0 to 8
[  199.997465][ T5182] bcm5974 3-1:0.0: could not read from device
[  200.030329][ T5182] bcm5974 3-1:0.0: could not read from device
[  200.047323][    T9] usb 3-1: USB disconnect, device number 5
[  200.172270][ T5845] Bluetooth: hci4: unexpected event 0x06 length: 4 > 3
[  200.204025][ T5182] bcm5974 3-1:0.0: could not read from device
[  200.332968][ T5892] hid (null): invalid report_size 29797
[  200.338594][ T5892] hid (null): invalid report_size 29797
[  200.364743][ T5892] hid (null): invalid report_size 29535
[  200.395444][ T5892] hid (null): unknown global tag 0xd
[  200.407515][ T5892] hid (null): unknown global tag 0xc
[  200.413720][ T5892] hid (null): unknown global tag 0xe
[  200.419187][ T5892] hid (null): invalid report_size 61170
[  200.428980][ T5892] cougar 0003:060B:500A.0005: usage count exceeds max: fixing up report descriptor
[  200.801102][ T7270] fscrypt (loop1, inode 12): Unsupported encryption flags (0x10)
[  201.043507][ T7270] bond0: option arp_validate: invalid value (18446744073696780033)
[  201.104914][ T5892] cougar 0003:060B:500A.0005: unexpected long global item
[  201.121088][ T5892] cougar 0003:060B:500A.0005: parse failed
[  201.130627][ T5892] cougar 0003:060B:500A.0005: probe with driver cougar failed with error -22
[  201.202952][ T5845] Bluetooth: hci5: command 0x0405 tx timeout
[  201.220743][ T5841] Bluetooth: hci3: command 0x0406 tx timeout
[  201.227076][ T5841] Bluetooth: hci4: command 0x0406 tx timeout
[  201.234468][ T5841] Bluetooth: hci1: command 0x0406 tx timeout
[  201.287430][ T5831] Bluetooth: hci2: command 0x0406 tx timeout
[  201.324907][ T5845] Bluetooth: hci0: command 0x0406 tx timeout
[  201.428067][ T7309] raw_sendmsg: syz.5.349 forgot to set AF_INET. Fix it!
[  201.654202][ T7301] loop3: detected capacity change from 0 to 32768
[  201.697349][ T7270] netlink: 'syz.1.340': attribute type 10 has an invalid length.
[  201.776056][ T7311] overlayfs: missing 'lowerdir'
[  201.813702][ T7314] FAULT_INJECTION: forcing a failure.
[  201.813702][ T7314] name failslab, interval 1, probability 0, space 0, times 0
[  201.840092][ T7270] syz_tun: entered promiscuous mode
[  201.854490][ T7304] loop0: detected capacity change from 0 to 2048
[  201.931380][ T7314] CPU: 1 UID: 0 PID: 7314 Comm: syz.5.350 Not tainted 6.13.0-rc1-syzkaller-00001-ge70140ba0d2b #0
[  201.942152][ T7314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  201.952247][ T7314] Call Trace:
[  201.955551][ T7314]  <TASK>
[  201.958498][ T7314]  dump_stack_lvl+0x241/0x360
[  201.963223][ T7314]  ? __pfx_dump_stack_lvl+0x10/0x10
[  201.968468][ T7314]  ? __pfx__printk+0x10/0x10
[  201.973097][ T7314]  ? fs_reclaim_acquire+0x93/0x130
[  201.978245][ T7314]  ? __pfx___might_resched+0x10/0x10
[  201.983565][ T7314]  should_fail_ex+0x3b0/0x4e0
[  201.988283][ T7314]  should_failslab+0xac/0x100
[  201.993015][ T7314]  __kmalloc_noprof+0xdd/0x4c0
[  201.997829][ T7314]  ? kstrtouint_from_user+0x128/0x190
[  202.003240][ T7314]  ? tomoyo_realpath_from_path+0xcf/0x5e0
[  202.009003][ T7314]  tomoyo_realpath_from_path+0xcf/0x5e0
[  202.014601][ T7314]  tomoyo_path_number_perm+0x236/0x860
[  202.020113][ T7314]  ? srso_alias_return_thunk+0x5/0xfbef5
[  202.025782][ T7314]  ? __lock_acquire+0x1397/0x2100
[  202.030847][ T7314]  ? tomoyo_path_number_perm+0x206/0x860
[  202.036527][ T7314]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[  202.042594][ T7314]  ? __fget_files+0x2a/0x410
[  202.047216][ T7314]  ? srso_alias_return_thunk+0x5/0xfbef5
[  202.052882][ T7314]  ? __fget_files+0x2a/0x410
[  202.057506][ T7314]  security_file_ioctl+0xc6/0x2a0
[  202.062572][ T7314]  __se_sys_ioctl+0x46/0x170
[  202.067199][ T7314]  do_syscall_64+0xf3/0x230
[  202.071755][ T7314]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  202.077692][ T7314] RIP: 0033:0x7f75f617ff19
[  202.082136][ T7314] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  202.101796][ T7314] RSP: 002b:00007f75f6fae058 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  202.110261][ T7314] RAX: ffffffffffffffda RBX: 00007f75f6345fa0 RCX: 00007f75f617ff19
[  202.118269][ T7314] RDX: 0000000020000380 RSI: 00000000c03864bc RDI: 0000000000000003
[  202.126343][ T7314] RBP: 00007f75f6fae0a0 R08: 0000000000000000 R09: 0000000000000000
[  202.134448][ T7314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  202.138141][ T7270] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  202.142440][ T7314] R13: 0000000000000000 R14: 00007f75f6345fa0 R15: 00007ffde2119158
[  202.142507][ T7314]  </TASK>
[  202.163002][ T7314] ERROR: Out of memory at tomoyo_realpath_from_path.
[  202.409135][ T7318] add_index: next_index = 0.  Resetting!
[  202.415062][ T7318] find_entry called with index >= next_index
[  202.421213][ T7318] find_entry called with index >= next_index
[  202.427319][ T7318] find_entry called with index >= next_index
[  202.433948][ T7318] find_entry called with index >= next_index
[  202.531128][ T7317] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  202.891372][ T5893] usb 2-1: USB disconnect, device number 3
[  203.300654][ T5847] Bluetooth: hci4: command 0x0406 tx timeout
[  203.923365][ T7330] loop4: detected capacity change from 0 to 512
[  204.294156][ T7330] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  204.495917][ T7336] loop0: detected capacity change from 0 to 128
[  204.570191][ T7336] VFS: Found a Xenix FS (block size = 512) on device loop0
[  204.607537][ T7336] sysv_free_block: getblk() failed
[  204.640800][ T7336] sysv_free_block: getblk() failed
[  204.663110][ T7336] sysv_free_block: getblk() failed
[  204.710867][ T7336] sysv_free_block: getblk() failed
[  204.716145][ T7336] sysv_free_block: getblk() failed
[  204.754138][ T7336] sysv_free_block: getblk() failed
[  204.759355][ T7336] sysv_free_block: getblk() failed
[  204.812692][ T7336] sysv_free_block: getblk() failed
[  204.817914][ T7336] sysv_free_block: getblk() failed
[  204.841021][ T7336] sysv_free_block: getblk() failed
[  204.854011][ T7336] sysv_free_block: getblk() failed
[  204.870040][ T7336] sysv_free_block: getblk() failed
[  204.880228][ T7336] sysv_free_block: getblk() failed
[  204.885963][ T7330] ext4 filesystem being mounted at /63/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  204.920888][ T7336] sysv_free_block: getblk() failed
[  204.926227][ T7336] sysv_free_block: getblk() failed
[  204.931897][ T7336] sysv_free_block: getblk() failed
[  204.937095][ T5827] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  204.937164][ T7336] sysv_free_block: getblk() failed
[  205.000702][ T7336] sysv_free_block: getblk() failed
[  205.032905][ T7336] sysv_free_block: getblk() failed
[  205.042547][ T7336] sysv_free_block: getblk() failed
[  205.090647][ T7336] sysv_free_block: getblk() failed
[  205.098977][ T5832] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  205.151430][ T7336] sysv_free_block: getblk() failed
[  205.169230][ T7336] sysv_free_block: getblk() failed
[  205.206273][ T7336] sysv_free_block: getblk() failed
[  205.232056][ T7336] sysv_free_block: getblk() failed
[  205.258911][ T7336] sysv_free_block: getblk() failed
[  205.288185][ T7336] sysv_free_block: getblk() failed
[  205.317515][ T7348] loop1: detected capacity change from 0 to 128
[  205.321858][ T7336] sysv_free_block: getblk() failed
[  205.328994][ T7336] sysv_free_block: getblk() failed
[  205.365029][ T7336] sysv_free_block: getblk() failed
[  205.390552][ T7336] sysv_free_block: getblk() failed
[  205.395859][ T5840] Bluetooth: hci4: command 0x0406 tx timeout
[  205.422538][ T7336] sysv_free_block: getblk() failed
[  205.440568][ T7336] sysv_free_block: getblk() failed
[  205.478139][ T7336] sysv_free_block: getblk() failed
[  205.510663][ T7336] sysv_free_block: getblk() failed
[  205.515875][ T7336] sysv_free_block: getblk() failed
[  205.545540][ T7348] VFS: Found a Xenix FS (block size = 512) on device loop1
[  205.570577][ T7336] sysv_free_block: trying to free block not in datazone
[  205.683178][ T7347] sysv_free_block: trying to free block not in datazone
[  205.741249][ T5829] sysv_free_block: getblk() failed
[  205.750871][ T5829] sysv_free_block: getblk() failed
[  205.756097][ T5829] sysv_free_block: trying to free block not in datazone
[  205.956744][ T5829] sysv_free_block: getblk() failed
[  206.028962][ T7327] loop2: detected capacity change from 0 to 32768
[  206.035860][ T5829] sysv_free_block: getblk() failed
[  206.061091][ T5829] sysv_free_block: getblk() failed
[  206.066441][ T5829] sysv_free_block: getblk() failed
[  206.078632][ T5829] sysv_free_block: getblk() failed
[  206.084310][ T5829] sysv_free_block: getblk() failed
[  206.089787][ T5829] sysv_free_block: getblk() failed
[  206.096272][ T5829] sysv_free_block: getblk() failed
[  206.112732][ T7338] loop5: detected capacity change from 0 to 40427
[  206.127119][ T5829] sysv_free_block: getblk() failed
[  206.140608][ T5829] sysv_free_block: getblk() failed
[  206.150904][ T5829] sysv_free_block: getblk() failed
[  206.156903][ T5829] sysv_free_block: getblk() failed
[  206.163008][ T5829] sysv_free_block: getblk() failed
[  206.168690][ T5829] sysv_free_block: getblk() failed
[  206.174641][ T5829] sysv_free_block: getblk() failed
[  206.180233][ T5829] sysv_free_block: getblk() failed
[  206.186079][ T5829] sysv_free_block: getblk() failed
[  206.192437][ T5829] sysv_free_block: getblk() failed
[  206.197772][ T5829] sysv_free_block: trying to free block not in datazone
[  206.246666][ T7338] F2FS-fs (loop5): build fault injection attr: rate: 690, type: 0x1fffff
[  206.342606][ T5829] sysv_free_block: trying to free block not in datazone
[  206.349611][ T5829] sysv_free_inode: inode 0,1,2 or nonexistent inode
[  206.365194][ T7338] F2FS-fs (loop5): Image doesn't support compression
[  206.436993][ T7338] F2FS-fs (loop5): invalid crc value
[  206.500220][ T7338] F2FS-fs (loop5): Found nat_bits in checkpoint
[  206.594371][ T7345] loop3: detected capacity change from 0 to 32768
[  206.847734][ T7345] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,norecovery,nojournal_transaction_names,reconstruct_alloc,no_data_io
[  206.870727][ T5827] sysv_free_inode: inode 0,1,2 or nonexistent inode
[  206.915156][ T7345] bcachefs (loop3): recovering from clean shutdown, journal seq 10
[  206.932005][ T7345] bcachefs (loop3): Version upgrade required:
[  206.932005][ T7345] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  206.932005][ T7345] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.13: inode_has_child_snapshots
[  206.932005][ T7345]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,set_fs_needs_rebalance
[  206.957616][ T7338] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  207.003501][    C0] vkms_vblank_simulate: vblank timer overrun
[  207.239076][ T7345] bcachefs (loop3): dropping and reconstructing all alloc info
[  207.792741][ T7345] bcachefs (loop3): check_topology... done
[  207.798889][ T7345] bcachefs (loop3): accounting_read... done
[  207.891418][ T7345] bcachefs (loop3): alloc_read... done
[  207.896998][ T7345] bcachefs (loop3): stripes_read... done
[  207.974505][ T7345] bcachefs (loop3): snapshots_read... done
[  208.003551][ T7345] bcachefs (loop3): check_allocations...
[  208.008471][ T5836] syz-executor: attempt to access beyond end of device
[  208.008471][ T5836] loop5: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  208.061260][ T5836] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  208.073478][ T5836] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  208.413161][ T7345]  done
[  208.512350][ T7345] bcachefs (loop3): going read-write
[  208.555168][ T7345] bcachefs (loop3): bch2_copygc_start(): error creating copygc thread EINTR
[  208.593492][ T7345] bcachefs (loop3): error starting copygc thread
[  208.611905][ T7345] bcachefs (loop3): bch2_fs_start(): error starting filesystem EINTR
[  208.626580][ T7345] bcachefs (loop3): shutting down
[  208.643995][ T7345] bcachefs (loop3): going read-only
[  208.649380][ T7345] bcachefs (loop3): finished waiting for writes to stop
[  208.665611][ T7345] bcachefs (loop3): flushing journal and stopping allocators, journal seq 10
[  208.694585][ T7345] bcachefs (loop3): flushing journal and stopping allocators complete, journal seq 10
[  208.719241][ T7345] bcachefs (loop3): unshutdown complete, journal seq 11
[  208.727418][ T7345] bcachefs (loop3): done going read-only, filesystem not clean
[  208.778685][ T7345] bcachefs (loop3): shutdown complete
[  209.069105][ T7416] warning: `syz.5.374' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  209.528415][ T7434] tap0: tun_chr_ioctl cmd 1074812118
[  209.817426][ T7445] loop5: detected capacity change from 0 to 8
[  209.980366][ T7450] loop0: detected capacity change from 0 to 16
[  210.079852][ T7450] erofs (device loop0): mounted with root inode @ nid 36.
[  210.415778][ T7464] loop4: detected capacity change from 0 to 128
[  210.530707][ T7464] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  210.554143][ T7464] ext4 filesystem being mounted at /76/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  210.787982][ T5832] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  210.963014][ T7476] loop4: detected capacity change from 0 to 512
[  210.998231][ T7476] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  211.210861][ T7345] bcachefs: bch2_fs_get_tree() error: EINTR
[  211.229187][ T7484] loop0: detected capacity change from 0 to 1024
[  211.278236][ T7476] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  211.319826][ T7486] loop5: detected capacity change from 0 to 256
[  211.354766][ T7476] ext4 filesystem being mounted at /77/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  211.493514][ T7486] FAT-fs (loop5): Directory bread(block 64) failed
[  211.523396][ T7486] FAT-fs (loop5): Directory bread(block 65) failed
[  211.530204][ T7486] FAT-fs (loop5): Directory bread(block 66) failed
[  211.579223][ T7486] FAT-fs (loop5): Directory bread(block 67) failed
[  211.594487][ T6456] hfsplus: b-tree write err: -5, ino 4
[  211.600841][ T7486] FAT-fs (loop5): Directory bread(block 68) failed
[  211.607416][ T7486] FAT-fs (loop5): Directory bread(block 69) failed
[  211.623175][ T7486] FAT-fs (loop5): Directory bread(block 70) failed
[  211.629816][ T7486] FAT-fs (loop5): Directory bread(block 71) failed
[  211.636930][ T7486] FAT-fs (loop5): Directory bread(block 72) failed
[  211.652791][ T7486] FAT-fs (loop5): Directory bread(block 73) failed
[  211.725759][ T5832] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  211.763876][ T7486] syz.5.416: attempt to access beyond end of device
[  211.763876][ T7486] loop5: rw=524288, sector=1768, nr_sectors = 4 limit=256
[  211.794984][ T7486] syz.5.416: attempt to access beyond end of device
[  211.794984][ T7486] loop5: rw=0, sector=1768, nr_sectors = 4 limit=256
[  211.819117][ T7492] netlink: 104 bytes leftover after parsing attributes in process `syz.0.421'.
[  211.830137][   T29] audit: type=1800 audit(1733184633.193:42): pid=7486 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.416" name="file1" dev="loop5" ino=1048606 res=0 errno=0
[  211.863653][ T7486] syz.5.416: attempt to access beyond end of device
[  211.863653][ T7486] loop5: rw=0, sector=1768, nr_sectors = 4 limit=256
[  211.909158][ T7486] syz.5.416: attempt to access beyond end of device
[  211.909158][ T7486] loop5: rw=0, sector=1768, nr_sectors = 4 limit=256
[  211.926678][ T7485] syz.5.416: attempt to access beyond end of device
[  211.926678][ T7485] loop5: rw=0, sector=1768, nr_sectors = 4 limit=256
[  211.943576][ T7486] syz.5.416: attempt to access beyond end of device
[  211.943576][ T7486] loop5: rw=0, sector=1768, nr_sectors = 4 limit=256
[  211.957580][ T7485] syz.5.416: attempt to access beyond end of device
[  211.957580][ T7485] loop5: rw=0, sector=1768, nr_sectors = 4 limit=256
[  211.972324][ T7486] syz.5.416: attempt to access beyond end of device
[  211.972324][ T7486] loop5: rw=0, sector=1768, nr_sectors = 4 limit=256
[  211.977527][   T29] audit: type=1800 audit(1733184633.283:43): pid=7486 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.416" name="file1" dev="loop5" ino=1048606 res=0 errno=0
[  211.987402][ T7485] syz.5.416: attempt to access beyond end of device
[  211.987402][ T7485] loop5: rw=0, sector=1768, nr_sectors = 4 limit=256
[  212.421834][ T7510] support for the xor transformation has been removed.
[  212.722391][ T7526] binder: BINDER_SET_CONTEXT_MGR already set
[  212.728654][ T7526] binder: 7525:7526 ioctl 4018620d 20000040 returned -16
[  213.032885][    T9] kernel write not supported for file /184/attr/current (pid: 9 comm: kworker/0:1)
[  213.172957][ T7542] loop0: detected capacity change from 0 to 512
[  213.227686][ T7542] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  213.260862][ T7542] EXT4-fs (loop0): orphan cleanup on readonly fs
[  213.294040][ T7542] EXT4-fs warning (device loop0): ext4_enable_quotas:7156: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[  213.383327][ T7548] netlink: 'syz.1.442': attribute type 31 has an invalid length.
[  213.436657][ T7542] EXT4-fs (loop0): Cannot turn on quotas: error -22
[  213.490584][ T7542] EXT4-fs error (device loop0): ext4_ext_check_inode:524: inode #13: comm syz.0.439: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  213.610669][ T7542] EXT4-fs error (device loop0): ext4_orphan_get:1394: comm syz.0.439: couldn't read orphan inode 13 (err -117)
[  213.635090][ T7542] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  213.686500][ T7554] loop4: detected capacity change from 0 to 512
[  213.739482][ T7558] loop3: detected capacity change from 0 to 16
[  213.870192][ T7556] loop1: detected capacity change from 0 to 1024
[  213.924557][ T7542] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[  214.319300][ T7542] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002]
[  214.359341][ T7558] erofs (device loop3): mounted with root inode @ nid 36.
[  214.389199][ T7556] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (29950!=20869)
[  214.395166][ T7558] bio_check_eod: 1113 callbacks suppressed
[  214.395191][ T7558] syz.3.446: attempt to access beyond end of device
[  214.395191][ T7558] loop3: rw=0, sector=14552337248, nr_sectors = 16 limit=16
[  214.422482][ T7558] erofs (device loop3): read error -5 @ 123 of nid 36
[  214.433032][ T7556] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  214.444781][ T7554] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  214.449754][ T7608] loop2: detected capacity change from 0 to 512
[  214.467956][ T7558] erofs (device loop3): read error -117 @ 247 of nid 36
[  214.476849][ T7554] ext4 filesystem being mounted at /81/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  214.486812][ T7558] erofs (device loop3): fail to readdir of logical block 247 of nid 36
[  214.499578][ T7556] EXT4-fs (loop1): invalid journal inode
[  214.537861][ T7556] EXT4-fs (loop1): can't get journal size
[  214.538238][ T7608] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  214.557199][ T7556] EXT4-fs error (device loop1): ext4_protect_reserved_inode:182: inode #2: comm syz.1.445: blocks 48-48 from inode overlap system zone
[  214.573337][ T7556] EXT4-fs (loop1): failed to initialize system zone (-117)
[  214.598227][ T7542] EXT4-fs warning (device loop0): ext4_multi_mount_protect:398: Unable to create kmmpd thread for loop0.
[  214.603561][ T7556] EXT4-fs (loop1): mount failed
[  214.625318][ T7608] EXT4-fs (loop2): 1 truncate cleaned up
[  214.666329][ T7608] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  214.685939][   T29] audit: type=1800 audit(1733184636.033:44): pid=7554 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.444" name="bus" dev="loop4" ino=18 res=0 errno=0
[  214.762582][ T7608] EXT4-fs (loop2): shut down requested (1)
[  214.782286][ T7615] loop5: detected capacity change from 0 to 4096
[  214.883667][ T7619] loop1: detected capacity change from 0 to 8
[  214.894222][ T5825] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  214.913541][ T7619] SQUASHFS error: Unable to read directory block [629:0]
[  214.974300][ T7617] loop3: detected capacity change from 0 to 2048
[  215.024954][ T7615] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  215.036535][ T7622] loop2: detected capacity change from 0 to 1024
[  215.072752][ T5832] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  215.104146][ T7622] hfsplus: request for non-existent node 3 in B*Tree
[  215.114534][ T7617] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  215.118030][ T7622] hfsplus: request for non-existent node 3 in B*Tree
[  215.163051][ T5829] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  215.270331][ T7628] loop4: detected capacity change from 0 to 512
[  215.311745][ T7617] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  215.366789][ T7628] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  215.386124][ T7617] EXT4-fs (loop3): Remounting filesystem read-only
[  215.411610][ T7628] EXT4-fs (loop4): 1 truncate cleaned up
[  215.418417][ T7628] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  215.444937][ T5836] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  215.480916][ T7617] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  215.494658][ T5832] EXT4-fs error (device loop4): ext4_readdir:261: inode #11: block 54: comm syz-executor: path /82/file0/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  215.571246][ T5832] EXT4-fs error (device loop4): ext4_empty_dir:3135: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  215.598643][ T5832] EXT4-fs error (device loop4): ext4_readdir:261: inode #11: block 54: comm syz-executor: path /82/file0/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  215.621136][    T9] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  215.644836][ T7634] loop1: detected capacity change from 0 to 2048
[  215.645396][ T5832] EXT4-fs error (device loop4): ext4_empty_dir:3135: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  215.677062][ T5832] EXT4-fs error (device loop4): ext4_readdir:261: inode #11: block 54: comm syz-executor: path /82/file0/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  215.761426][ T5832] EXT4-fs error (device loop4): ext4_empty_dir:3135: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  215.820090][ T7639] loop5: detected capacity change from 0 to 1024
[  215.830581][    T9] usb 1-1: Using ep0 maxpacket: 8
[  215.857848][ T5832] EXT4-fs error (device loop4): ext4_readdir:261: inode #11: block 54: comm syz-executor: path /82/file0/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  215.882776][ T7634] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  215.899026][ T7634] ext4 filesystem being mounted at /69/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  215.928122][    T9] usb 1-1: New USB device found, idVendor=0763, idProduct=2080, bcdDevice=d0.ab
[  215.938419][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  215.940084][ T7634] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 5 vs 2053 free clusters
[  215.956358][    T9] usb 1-1: Product: syz
[  215.975376][    T9] usb 1-1: Manufacturer: syz
[  215.978413][ T7634] EXT4-fs (loop1): Delayed block allocation failed for inode 13 at logical offset 0 with max blocks 1 with error 28
[  215.986091][    T9] usb 1-1: SerialNumber: syz
[  215.993028][ T7634] EXT4-fs (loop1): This should not happen!! Data will be lost
[  215.993028][ T7634] 
[  216.007413][ T7634] EXT4-fs (loop1): Total free blocks count 0
[  216.017512][ T5832] EXT4-fs error (device loop4): ext4_empty_dir:3135: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  216.019107][ T7634] EXT4-fs (loop1): Free/Dirty block details
[  216.043783][ T7634] EXT4-fs (loop1): free_blocks=32784
[  216.050345][ T7634] EXT4-fs (loop1): dirty_blocks=16
[  216.057717][ T7634] EXT4-fs (loop1): Block reservation details
[  216.066167][ T7634] EXT4-fs (loop1): i_reserved_data_blocks=1
[  216.092798][    T9] usb 1-1: config 0 descriptor??
[  216.113184][ T5832] EXT4-fs error (device loop4): ext4_readdir:261: inode #11: block 54: comm syz-executor: path /82/file0/lost+found: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=1024 fake=0
[  216.120665][ T7639] hfsplus: xattr searching failed
[  216.152122][ T5832] EXT4-fs error (device loop4): ext4_empty_dir:3135: inode #11: block 54: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=5120, inode=0, rec_len=0, size=1024 fake=0
[  216.215212][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  216.556886][    T9] usb 1-1: USB disconnect, device number 6
[  216.810102][ T7654] loop3: detected capacity change from 0 to 2048
[  216.829698][ T7655] loop5: detected capacity change from 0 to 256
[  216.865343][ T7655] exfat: Unknown parameter 'ÿÿÿÿÿÿÿÿ'
[  217.092186][ T7654] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  217.175747][ T7663] loop5: detected capacity change from 0 to 128
[  217.218950][ T7654] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  217.231249][ T7663] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[  217.428385][ T7668] loop0: detected capacity change from 0 to 1024
[  217.508300][ T5830] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  217.557969][   T29] audit: type=1800 audit(1733184638.933:45): pid=7668 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.471" name=0E251968BC70FF0D42A638CA744DEA4C7EBB4FEA777CF663BB4F1505ED79730C45BC86E488A13F924377A8E2EE6670A02CA52874AE1C42A35D55B9765757047B2CC3742AA51FA3E43FB2C113C92AD213BAD252C1A82966DD016F12A7F1C3900C0F1AB455035163F31899BDD30F3FF43AD17D9E45BB7438C1C986712736F24BE14F71AB1BFE92A25EC07F086EE8C7971B8077A13E58A8E8BEA39C8E06B251909F02CB dev="loop0" ino=26 res=0 errno=0
[  218.205012][ T7682] loop1: detected capacity change from 0 to 1024
[  218.330802][ T7688] loop0: detected capacity change from 0 to 1764
[  218.533302][ T7694] loop0: detected capacity change from 0 to 2048
[  218.545062][ T7694] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  219.086877][ T7704] loop3: detected capacity change from 0 to 4096
[  219.129762][ T7704] ntfs3(loop3): Different NTFS sector size (2048) and media sector size (512).
[  219.190352][ T7704] ntfs3(loop3): Failed to initialize $Extend/$ObjId.
[  219.460675][ T5892] usb 4-1: new full-speed USB device number 6 using dummy_hcd
[  219.675089][ T5892] usb 4-1: not running at top speed; connect to a high speed hub
[  219.705213][ T5892] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 1023, setting to 64
[  219.732623][ T5892] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  219.747972][ T5892] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  219.756863][ T5892] usb 4-1: Product: syz
[  219.761189][ T5892] usb 4-1: Manufacturer: syz
[  219.768060][ T5892] usb 4-1: SerialNumber: syz
[  220.422701][ T7690] syz_tun: entered allmulticast mode
[  220.459529][ T7691] lo: entered allmulticast mode
[  220.483210][ T7692] lo: left allmulticast mode
[  220.489887][ T7692] syz_tun: left allmulticast mode
[  220.704654][ T5832] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  220.910380][ T7714] netlink: 112 bytes leftover after parsing attributes in process `syz.1.491'.
[  221.588813][ T7717] random: crng reseeded on system resumption
[  221.856290][ T4477] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  222.104875][ T7720] cgroup: Unknown subsys name 'appraise_type'
[  222.154949][ T5892] cdc_ncm 4-1:1.0: bind() failure
[  222.174413][ T5892] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found
[  222.212829][ T5892] cdc_ncm 4-1:1.1: bind() failure
[  222.249041][ T7714] loop1: detected capacity change from 0 to 2048
[  222.276850][ T5892] usb 4-1: USB disconnect, device number 6
[  222.289161][ T4477] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  222.377119][ T7714] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  222.389662][ T7714] ext4 filesystem being mounted at /75/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  222.463571][ T4477] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  222.520574][ T7714] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.491: bg 0: block 440: padding at end of block bitmap is not set
[  222.595309][ T7714] fs-verity (loop1, inode 13): Error -117 writing Merkle tree block 9
[  222.650732][ T7714] fs-verity (loop1, inode 13): Error -117 building Merkle tree
[  222.866063][ T4477] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  222.895024][ T7741] loop0: detected capacity change from 0 to 128
[  223.168750][ T5892] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  223.183029][ T7741] syz.0.499: attempt to access beyond end of device
[  223.183029][ T7741] loop0: rw=2049, sector=145, nr_sectors = 216 limit=128
[  223.284999][ T5847] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  223.290917][ T4477] bridge_slave_1: left allmulticast mode
[  223.317634][ T5847] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  223.328366][ T5847] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  223.336893][ T5847] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  223.347052][ T5892] usb 6-1: too many configurations: 63, using maximum allowed: 8
[  223.357989][ T5847] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  223.363378][ T5892] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  223.375824][ T5847] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  223.389591][ T4477] bridge_slave_1: left promiscuous mode
[  223.417212][ T5892] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  223.429723][ T4477] bridge0: port 2(bridge_slave_1) entered disabled state
[  223.450373][ T5892] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  223.471761][ T5892] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  223.490791][ T5892] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  223.501252][ T5892] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  223.521481][ T5892] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  223.533671][ T5892] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  223.536661][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.573508][ T5892] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  223.583814][ T5892] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  223.635128][ T5892] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  223.645689][ T5892] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  223.656390][ T5892] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  223.666751][ T5892] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  223.677120][ T7758] loop2: detected capacity change from 0 to 1024
[  223.677227][ T5892] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  223.694397][ T5892] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  223.710124][ T5892] usb 6-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  223.725498][ T4477] bridge_slave_0: left allmulticast mode
[  223.733172][ T4477] bridge_slave_0: left promiscuous mode
[  223.747576][ T4477] bridge0: port 1(bridge_slave_0) entered disabled state
[  223.754837][ T5892] usb 6-1: New USB device strings: Mfr=54, Product=252, SerialNumber=36
[  223.790836][ T5892] usb 6-1: Product: syz
[  223.838116][ T7763] loop0: detected capacity change from 0 to 764
[  223.843908][ T7761] loop3: detected capacity change from 0 to 1024
[  223.869134][ T5892] usb 6-1: Manufacturer: syz
[  223.897148][ T5892] usb 6-1: SerialNumber: syz
[  223.938298][ T7761] EXT4-fs: Ignoring removed orlov option
[  223.956381][ T7763] Symlink component flag not implemented
[  224.005983][ T7761] EXT4-fs: Ignoring removed nomblk_io_submit option
[  224.028191][ T7763] Symlink component flag not implemented (101)
[  224.076283][ T7761] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  224.171242][ T5892] usb 6-1: USB disconnect, device number 6
[  224.533935][ T5830] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.793285][ T7791] loop3: detected capacity change from 0 to 128
[  224.892667][ T7791] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  224.895051][ T7796] loop1: detected capacity change from 0 to 512
[  224.907387][ T7791] ext4 filesystem being mounted at /74/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  224.945101][ T7796] EXT4-fs: inline encryption not supported
[  225.032931][ T7796] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  225.047251][ T5830] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  225.055612][ T7796] ext4 filesystem being mounted at /79/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  225.357704][ T4477] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  225.435631][ T4477] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  225.461147][ T5840] Bluetooth: hci4: command tx timeout
[  225.483030][ T4477] bond0 (unregistering): Released all slaves
[  225.638966][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.816576][ T7813] loop1: detected capacity change from 0 to 128
[  226.014196][ T4477] tipc: Left network mode
[  226.035755][ T7818] loop5: detected capacity change from 0 to 2048
[  226.050099][ T7746] chnl_net:caif_netlink_parms(): no params data found
[  226.144453][ T7813] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  226.174160][ T7818] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  226.194431][ T7813] ext4 filesystem being mounted at /80/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  226.318192][   T29] audit: type=1326 audit(1733184647.693:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7828 comm="syz.2.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3b0b7ff19 code=0x7ffc0000
[  226.359870][   T29] audit: type=1326 audit(1733184647.693:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7828 comm="syz.2.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3b0b7ff19 code=0x7ffc0000
[  226.389597][   T29] audit: type=1326 audit(1733184647.693:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7828 comm="syz.2.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa3b0b7ff19 code=0x7ffc0000
[  226.412659][   T29] audit: type=1326 audit(1733184647.693:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7828 comm="syz.2.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3b0b7ff19 code=0x7ffc0000
[  226.435437][   T29] audit: type=1326 audit(1733184647.693:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7828 comm="syz.2.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fa3b0b7ff19 code=0x7ffc0000
[  226.438595][ T7813] EXT4-fs warning (device loop1): ext4_group_add:1736: No reserved GDT blocks, can't resize
[  226.665146][ T7833] loop3: detected capacity change from 0 to 512
[  226.878416][ T7833] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  226.970390][ T5827] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  227.154845][ T7833] EXT4-fs (loop3): 1 truncate cleaned up
[  227.205851][ T7833] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  227.287939][ T7833] EXT4-fs error (device loop3): ext4_generic_delete_entry:2687: inode #2: block 13: comm syz.3.527: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0
[  227.367608][ T7833] EXT4-fs error (device loop3) in ext4_delete_entry:2758: Corrupt filesystem
[  227.453291][ T7847] loop1: detected capacity change from 0 to 1024
[  227.462198][ T7833] EXT4-fs warning (device loop3): ext4_rename_delete:3740: inode #2: comm syz.3.527: Deleting old file: nlink 4, error=-117
[  227.518229][ T7853] EXT4-fs error (device loop3): ext4_generic_delete_entry:2687: inode #2: block 13: comm syz.3.527: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0
[  227.548291][ T5840] Bluetooth: hci4: command tx timeout
[  227.565268][ T7855] loop2: detected capacity change from 0 to 2048
[  227.599121][ T7746] bridge0: port 1(bridge_slave_0) entered blocking state
[  227.612186][ T7746] bridge0: port 1(bridge_slave_0) entered disabled state
[  227.617298][ T7855] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  227.636656][ T7853] EXT4-fs error (device loop3) in ext4_delete_entry:2758: Corrupt filesystem
[  227.640003][ T7746] bridge_slave_0: entered allmulticast mode
[  227.673479][ T7853] EXT4-fs warning (device loop3): ext4_rename_delete:3740: inode #2: comm syz.3.527: Deleting old file: nlink 4, error=-117
[  227.724523][ T7746] bridge_slave_0: entered promiscuous mode
[  227.779735][ T7746] bridge0: port 2(bridge_slave_1) entered blocking state
[  227.828822][ T7746] bridge0: port 2(bridge_slave_1) entered disabled state
[  227.869664][ T7746] bridge_slave_1: entered allmulticast mode
[  227.887441][ T7860] loop0: detected capacity change from 0 to 1024
[  227.908596][ T7746] bridge_slave_1: entered promiscuous mode
[  227.939712][ T5830] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  228.055129][ T7863] netlink: 12 bytes leftover after parsing attributes in process `syz.2.534'.
[  228.123395][ T7866] loop2: detected capacity change from 0 to 256
[  228.131362][ T7866] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  228.269145][ T7871] loop0: detected capacity change from 0 to 1024
[  228.535747][ T4477] hsr_slave_0: left promiscuous mode
[  228.560652][ T7881] loop5: detected capacity change from 0 to 512
[  228.583162][ T7880] loop2: detected capacity change from 0 to 512
[  228.624519][ T7881] ext4: Unknown parameter 'rootcontext'
[  228.639453][ T7880] EXT4-fs error (device loop2): ext4_orphan_get:1389: inode #15: comm syz.2.539: casefold flag without casefold feature
[  228.664293][ T4477] hsr_slave_1: left promiscuous mode
[  228.689152][ T7884] loop3: detected capacity change from 0 to 512
[  228.702932][ T7880] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.539: couldn't read orphan inode 15 (err -117)
[  228.742878][ T4477] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  228.768832][ T7884] EXT4-fs (loop3): blocks per group (34) and clusters per group (32768) inconsistent
[  228.779256][ T7880] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  228.780645][ T4477] batman_adv: batadv0: Removing interface: batadv_slave_0
[  228.892119][ T4477] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  228.899598][ T4477] batman_adv: batadv0: Removing interface: batadv_slave_1
[  228.941578][ T7889] loop1: detected capacity change from 0 to 512
[  228.977470][ T7889] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  229.011698][ T7889] EXT4-fs (loop1): 1 truncate cleaned up
[  229.018303][ T7889] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  229.042894][ T4477] veth1_macvtap: left promiscuous mode
[  229.049665][ T4477] veth0_macvtap: left promiscuous mode
[  229.055423][ T4477] veth1_vlan: left promiscuous mode
[  229.063120][ T4477] veth0_vlan: left promiscuous mode
[  229.075094][ T7889] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.256666][ T7889] loop1: detected capacity change from 0 to 1024
[  229.282785][ T7889] /dev/loop1: Can't open blockdev
[  229.375659][ T5825] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.619309][ T7905] loop0: detected capacity change from 0 to 1024
[  229.625949][ T5840] Bluetooth: hci4: command tx timeout
[  229.626534][ T7907] cgroup: Unknown subsys name 'appraise_type'
[  229.803683][ T7907] loop1: detected capacity change from 0 to 2048
[  229.818558][   T80] hfsplus: found bad thread record in catalog
[  229.844337][ T7907] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  229.858085][ T7907] ext4 filesystem being mounted at /84/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  229.928666][ T7913] loop3: detected capacity change from 0 to 128
[  229.996887][ T7913] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  230.018512][ T7913] ext4 filesystem being mounted at /81/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  230.063683][ T7907] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.550: bg 0: block 440: padding at end of block bitmap is not set
[  230.100305][ T7907] fs-verity (loop1, inode 13): Error -117 writing Merkle tree block 9
[  230.108936][ T7907] fs-verity (loop1, inode 13): Error -117 building Merkle tree
[  230.127432][ T7916] loop0: detected capacity change from 0 to 512
[  230.203594][ T7916] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  230.223341][ T7916] ext4 filesystem being mounted at /106/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  230.254003][ T5830] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  230.276627][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  230.630056][ T7924] capability: warning: `syz.1.555' uses 32-bit capabilities (legacy support in use)
[  231.568173][ T5829] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  231.975743][ T5840] Bluetooth: hci4: command tx timeout
[  232.673096][ T7942] loop1: detected capacity change from 0 to 8
[  233.201705][ T4477] team0 (unregistering): Port device team_slave_1 removed
[  233.213178][ T7948] loop0: detected capacity change from 0 to 16
[  233.273511][ T7948] erofs (device loop0): rootino(nid 36) is not a directory(i_mode 16700)
[  233.508764][ T4477] team0 (unregistering): Port device team_slave_0 removed
[  233.846809][ T7955] loop3: detected capacity change from 0 to 256
[  234.983670][ T7966] loop3: detected capacity change from 0 to 128
[  235.175456][ T7970] loop0: detected capacity change from 0 to 512
[  235.231887][ T7966] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  235.276732][ T7970] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.572: invalid indirect mapped block 4294967295 (level 1)
[  235.301151][ T7966] ext4 filesystem being mounted at /90/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  235.380689][ T7970] EXT4-fs error (device loop0): ext4_free_branches:1023: inode #11: comm syz.0.572: invalid indirect mapped block 4294967295 (level 1)
[  235.449441][ T7970] EXT4-fs (loop0): 2 truncates cleaned up
[  235.474866][ T7970] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  235.550294][   T29] audit: type=1800 audit(1733184656.923:51): pid=7966 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.571" name="file1" dev="loop3" ino=12 res=0 errno=0
[  235.623476][ T7970] EXT4-fs (loop0): shut down requested (0)
[  235.873974][ T5829] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  235.930078][ T7976] loop1: detected capacity change from 0 to 128
[  236.006247][ T7976] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  236.090969][ T5830] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  236.164717][ T7978] binder: 7977:7978 ioctl c0306201 20000080 returned -11
[  236.336494][ T7981] loop3: detected capacity change from 0 to 2048
[  236.403955][ T7983] loop0: detected capacity change from 0 to 2048
[  236.460215][ T7985] loop1: detected capacity change from 0 to 1024
[  236.467615][ T7985] EXT4-fs: Ignoring removed nomblk_io_submit option
[  236.500630][ T7985] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  236.508892][ T7985] System zones: 0-1, 3-36
[  236.548806][ T7985] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  236.558814][ T7981] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  236.657716][ T7746] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  236.703483][ T5830] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  236.708793][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  236.852851][ T7746] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  236.956333][ T5830] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  237.156925][ T7746] team0: Port device team_slave_0 added
[  237.219216][ T7746] team0: Port device team_slave_1 added
[  237.263242][ T8000] loop3: detected capacity change from 0 to 256
[  237.362235][ T7746] batman_adv: batadv0: Adding interface: batadv_slave_0
[  237.378197][ T7746] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  237.434209][ T8000] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  237.450620][ T7746] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  237.476921][ T7746] batman_adv: batadv0: Adding interface: batadv_slave_1
[  237.481511][ T8000] exFAT-fs (loop3): start_clu is invalid cluster(0xffffffff)
[  237.493175][ T7746] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  237.550724][ T7746] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  237.780338][ T7746] hsr_slave_0: entered promiscuous mode
[  237.817733][ T8012] loop1: detected capacity change from 0 to 16
[  237.825701][ T7746] hsr_slave_1: entered promiscuous mode
[  237.848352][ T8012] erofs (device loop1): mounted with root inode @ nid 36.
[  237.898867][ T5847] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  237.915234][ T5830] exFAT-fs (loop3): valid_size(150994954) is greater than size(10)
[  237.921603][ T5847] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  237.940312][ T5847] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  237.948769][ T5847] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  237.957077][ T5847] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  237.965990][ T5847] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  238.233426][ T8024] loop0: detected capacity change from 0 to 1024
[  238.241351][ T8022] loop1: detected capacity change from 0 to 1024
[  238.373702][ T8031] loop3: detected capacity change from 0 to 2048
[  238.403783][ T8031] ext4: Unknown parameter 'noacl'
[  238.440984][    T8] kernel write not supported for file /310/net/psched (pid: 8 comm: kworker/0:0)
[  238.958601][ T8024] EXT4-fs: Ignoring removed i_version option
[  238.984951][ T8024] EXT4-fs (loop0): Test dummy encryption mode enabled
[  239.023114][ T8024] EXT4-fs (loop0): stripe (7) is not aligned with cluster size (16), stripe is disabled
[  239.067013][ T8058] loop2: detected capacity change from 0 to 164
[  239.172874][ T8058] iso9660: Corrupted directory entry in block 0 of inode 1792
[  239.254091][ T8065] xt_TCPMSS: Only works on TCP SYN packets
[  240.024104][ T8024] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  240.049333][ T5840] Bluetooth: hci5: command tx timeout
[  240.199748][ T8070] loop1: detected capacity change from 0 to 512
[  240.255624][ T8080] loop2: detected capacity change from 0 to 512
[  240.272366][ T8070] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  240.282603][ T8080] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.607: corrupted in-inode xattr: e_value size too large
[  240.304799][ T8080] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.607: couldn't read orphan inode 15 (err -117)
[  240.348999][ T8080] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  240.366679][ T8070] ext4 filesystem being mounted at /98/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  240.460037][ T5825] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  240.463277][ T7602] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  240.500645][ T5996] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  240.524013][ T8024] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-aesni"
[  240.666995][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  240.677863][ T5996] usb 4-1: Using ep0 maxpacket: 8
[  240.697133][ T5996] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has an invalid bInterval 255, changing to 11
[  240.724235][ T5996] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid maxpacket 59391, setting to 1024
[  240.733484][ T8024] fscrypt: AES-256-XTS using implementation "xts-aes-vaes-avx2"
[  240.752972][ T5996] usb 4-1: New USB device found, idVendor=1b3d, idProduct=0146, bcdDevice= 1.b8
[  240.768258][ T5996] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  240.779851][ T5996] usb 4-1: config 0 descriptor??
[  240.788083][ T8077] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  240.819751][ T7602] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  240.853014][ T5996] ftdi_sio 4-1:0.0: FTDI USB Serial Device converter detected
[  240.862128][ T5996] usb 4-1: Detected SIO
[  240.876161][ T5996] usb 4-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  240.897226][ T5829] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  241.100984][ T5996] usb 4-1: USB disconnect, device number 7
[  241.106650][ T8102] loop2: detected capacity change from 0 to 1024
[  241.112618][ T5996] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  241.126337][ T7602] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  241.138514][ T5996] ftdi_sio 4-1:0.0: device disconnected
[  241.208147][ T8013] chnl_net:caif_netlink_parms(): no params data found
[  241.260126][    C0] Unknown status report in ack skb
[  241.264755][ T7746] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  241.596852][ T7602] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  241.653560][ T8121] netlink: 'syz.1.613': attribute type 4 has an invalid length.
[  241.711035][ T7746] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  241.773385][ T7746] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  241.841100][ T7746] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  241.916993][ T8128] loop2: detected capacity change from 0 to 512
[  242.051702][ T8128] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  242.065284][ T5996] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  242.103571][ T5840] Bluetooth: hci5: command tx timeout
[  242.112580][ T8128] ext4 filesystem being mounted at /111/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  242.191749][ T8013] bridge0: port 1(bridge_slave_0) entered blocking state
[  242.215839][ T8013] bridge0: port 1(bridge_slave_0) entered disabled state
[  242.234546][ T8142] netlink: 'syz.1.618': attribute type 4 has an invalid length.
[  242.245411][ T8140] loop0: detected capacity change from 0 to 512
[  242.245807][ T8013] bridge_slave_0: entered allmulticast mode
[  242.252205][ T8128] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  242.267958][ T8013] bridge_slave_0: entered promiscuous mode
[  242.279402][ T5996] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  242.291888][ T8144] netlink: 'syz.1.618': attribute type 4 has an invalid length.
[  242.294940][ T5996] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  242.310298][ T8140] EXT4-fs (loop0): mounting ext3 file system using the ext4 subsystem
[  242.318932][ T8128] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 32768 with max blocks 1 with error 28
[  242.332604][ T8013] bridge0: port 2(bridge_slave_1) entered blocking state
[  242.339730][ T8140] EXT4-fs (loop0): invalid journal inode
[  242.350924][ T8013] bridge0: port 2(bridge_slave_1) entered disabled state
[  242.358288][ T8013] bridge_slave_1: entered allmulticast mode
[  242.364464][ T5996] usb 4-1: New USB device found, idVendor=046d, idProduct=c623, bcdDevice= 0.00
[  242.364500][ T5996] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  242.377258][ T8013] bridge_slave_1: entered promiscuous mode
[  242.383380][ T8140] EXT4-fs (loop0): can't get journal size
[  242.433998][ T8128] EXT4-fs (loop2): This should not happen!! Data will be lost
[  242.433998][ T8128] 
[  242.447857][ T5996] usb 4-1: config 0 descriptor??
[  242.458746][ T8140] EXT4-fs (loop0): 1 truncate cleaned up
[  242.475663][ T8128] EXT4-fs (loop2): Total free blocks count 0
[  242.483443][ T8140] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  242.508533][ T8128] EXT4-fs (loop2): Free/Dirty block details
[  242.539877][ T8128] EXT4-fs (loop2): free_blocks=39626
[  242.600878][ T8128] EXT4-fs (loop2): dirty_blocks=1
[  242.620700][ T8128] EXT4-fs (loop2): Block reservation details
[  242.627247][ T8128] EXT4-fs (loop2): i_reserved_data_blocks=1
[  242.663818][ T8140] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  242.708216][ T8013] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  242.799666][ T8013] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  242.913325][ T5996] logitech 0003:046D:C623.0006: hidraw0: USB HID v0.00 Device [HID 046d:c623] on usb-dummy_hcd.3-1/input0
[  242.964454][ T5825] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  243.048605][ T8013] team0: Port device team_slave_0 added
[  243.069818][ T7602] bridge_slave_1: left allmulticast mode
[  243.112542][ T7602] bridge_slave_1: left promiscuous mode
[  243.118534][ T5996] usb 4-1: USB disconnect, device number 8
[  243.140863][ T7602] bridge0: port 2(bridge_slave_1) entered disabled state
[  243.238050][ T7602] bridge_slave_0: left allmulticast mode
[  243.253567][ T8163] loop2: detected capacity change from 0 to 512
[  243.267610][ T7602] bridge_slave_0: left promiscuous mode
[  243.292810][ T7602] bridge0: port 1(bridge_slave_0) entered disabled state
[  243.305973][ T8163] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  243.345624][ T8163] EXT4-fs (loop2): invalid journal inode
[  243.360774][ T8163] EXT4-fs (loop2): can't get journal size
[  243.385836][ T8168] loop1: detected capacity change from 0 to 512
[  243.395411][ T8163] EXT4-fs (loop2): 1 truncate cleaned up
[  243.403294][ T8168] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  243.426192][ T8163] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  243.486687][ T8168] EXT4-fs (loop1): 1 truncate cleaned up
[  243.487635][ T8168] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  243.493861][ T8173] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  243.493861][ T8173] The task syz.0.625 (8173) triggered the difference, watch for misbehavior.
[  243.503733][ T8168] EXT4-fs error (device loop1): ext4_generic_delete_entry:2687: inode #2: block 13: comm syz.1.624: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0
[  243.504328][ T8168] EXT4-fs error (device loop1) in ext4_delete_entry:2758: Corrupt filesystem
[  243.506354][ T8168] EXT4-fs warning (device loop1): ext4_rename_delete:3740: inode #2: comm syz.1.624: Deleting old file: nlink 4, error=-117
[  243.589574][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  243.835775][ T5825] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  243.975758][ T8182] loop2: detected capacity change from 0 to 512
[  243.983935][ T8182] EXT4-fs (loop2): Invalid default hash set in the superblock
[  244.147448][ T8186] loop2: detected capacity change from 0 to 1024
[  244.188583][ T5840] Bluetooth: hci5: command tx timeout
[  244.558239][ T8194] loop1: detected capacity change from 0 to 512
[  244.667824][ T8194] EXT4-fs warning (device loop1): ext4_enable_quotas:7156: Failed to enable quota tracking (type=0, err=-13, ino=3). Please run e2fsck to fix.
[  244.728779][ T8202] loop2: detected capacity change from 0 to 256
[  244.730211][ T8194] EXT4-fs (loop1): mount failed
[  244.737661][ T8202] vfat: Bad value for 'fmask'
[  245.018366][ T8206] loop0: detected capacity change from 0 to 2048
[  245.045131][ T8206] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  245.105603][   T29] audit: type=1326 audit(1733184666.483:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8205 comm="syz.2.640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3b0b7ff19 code=0x7ffc0000
[  245.153764][   T29] audit: type=1326 audit(1733184666.503:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8205 comm="syz.2.640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3b0b7ff19 code=0x7ffc0000
[  245.191441][   T29] audit: type=1326 audit(1733184666.503:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8205 comm="syz.2.640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fa3b0b7ff19 code=0x7ffc0000
[  245.240085][   T29] audit: type=1326 audit(1733184666.503:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8205 comm="syz.2.640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3b0b7ff19 code=0x7ffc0000
[  245.336472][   T29] audit: type=1326 audit(1733184666.503:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8205 comm="syz.2.640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3b0b7ff19 code=0x7ffc0000
[  245.362818][ T8213] netlink: 32 bytes leftover after parsing attributes in process `syz.0.641'.
[  245.372666][ T7602] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  245.386872][   T29] audit: type=1326 audit(1733184666.513:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8205 comm="syz.2.640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fa3b0b7ff19 code=0x7ffc0000
[  245.414196][ T7602] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  245.425665][ T7602] bond0 (unregistering): Released all slaves
[  245.469228][ T8013] team0: Port device team_slave_1 added
[  245.496396][ T8178] netlink: 16 bytes leftover after parsing attributes in process `syz.3.627'.
[  245.541199][   T29] audit: type=1326 audit(1733184666.913:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8205 comm="syz.2.640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3b0b7ff19 code=0x7ffc0000
[  245.575301][   T29] audit: type=1326 audit(1733184666.913:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8205 comm="syz.2.640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa3b0b7ff19 code=0x7ffc0000
[  245.656362][ T8013] batman_adv: batadv0: Adding interface: batadv_slave_0
[  245.690607][ T8013] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  245.744686][ T8013] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  245.806307][ T8225] loop2: detected capacity change from 0 to 736
[  245.821265][ T8225] iso9660: Bad value for 'mode'
[  245.853492][ T8226] netlink: 'syz.3.644': attribute type 4 has an invalid length.
[  245.905818][ T8227] netlink: 'syz.3.644': attribute type 4 has an invalid length.
[  246.162575][ T8234] loop2: detected capacity change from 0 to 1024
[  246.173649][ T8013] batman_adv: batadv0: Adding interface: batadv_slave_1
[  246.187129][ T8013] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  246.244763][ T8013] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  246.260673][ T5840] Bluetooth: hci5: command tx timeout
[  246.303603][   T12] hfsplus: bad catalog file entry
[  246.326860][   T12] hfsplus: b-tree write err: -5, ino 3
[  246.457759][ T8238] loop2: detected capacity change from 0 to 1024
[  246.595346][ T8238] netlink: 44 bytes leftover after parsing attributes in process `syz.2.650'.
[  246.655839][ T8238] netlink: 12 bytes leftover after parsing attributes in process `syz.2.650'.
[  246.682248][ T8238] netlink: 8 bytes leftover after parsing attributes in process `syz.2.650'.
[  246.864978][ T7602] hsr_slave_0: left promiscuous mode
[  246.923206][ T7602] hsr_slave_1: left promiscuous mode
[  246.969300][ T7602] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  246.992963][ T7602] batman_adv: batadv0: Removing interface: batadv_slave_0
[  247.003786][ T8251] loop3: detected capacity change from 0 to 1024
[  247.018672][ T7602] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  247.037727][ T7602] batman_adv: batadv0: Removing interface: batadv_slave_1
[  247.055105][ T8251] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  247.076272][ T8251] ext4 filesystem being mounted at /107/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  247.111843][ T7602] veth1_macvtap: left promiscuous mode
[  247.129069][ T7602] veth0_macvtap: left promiscuous mode
[  247.130806][ T5893] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  247.141031][ T7602] veth1_vlan: left promiscuous mode
[  247.170710][ T7602] veth0_vlan: left promiscuous mode
[  247.230328][ T5830] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  247.291976][ T5893] usb 3-1: Using ep0 maxpacket: 16
[  247.313973][ T5893] usb 3-1: config 0 has an invalid interface number: 214 but max is 0
[  247.342453][ T5893] usb 3-1: config 0 has no interface number 0
[  247.362798][ T5893] usb 3-1: config 0 interface 214 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  247.398130][ T5893] usb 3-1: New USB device found, idVendor=0596, idProduct=0001, bcdDevice= 0.00
[  247.429920][ T5893] usb 3-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  247.450309][ T5893] usb 3-1: Product: syz
[  247.470629][ T5893] usb 3-1: SerialNumber: syz
[  247.491440][ T5893] usb 3-1: config 0 descriptor??
[  247.662539][ T8260] loop3: detected capacity change from 0 to 256
[  247.712064][ T8260] FAT-fs (loop3): Directory bread(block 64) failed
[  247.720557][ T8260] FAT-fs (loop3): Directory bread(block 65) failed
[  247.754386][ T8260] FAT-fs (loop3): Directory bread(block 66) failed
[  247.782266][ T8260] FAT-fs (loop3): Directory bread(block 67) failed
[  247.807624][ T8260] FAT-fs (loop3): Directory bread(block 68) failed
[  247.815024][ T8260] FAT-fs (loop3): Directory bread(block 69) failed
[  247.822372][ T8260] FAT-fs (loop3): Directory bread(block 70) failed
[  247.829267][ T8260] FAT-fs (loop3): Directory bread(block 71) failed
[  247.836439][ T8260] FAT-fs (loop3): Directory bread(block 72) failed
[  247.843304][ T8260] FAT-fs (loop3): Directory bread(block 73) failed
[  247.927150][ T5893] usbtouchscreen 3-1:0.214: probe with driver usbtouchscreen failed with error -71
[  247.958903][ T5893] usb 3-1: USB disconnect, device number 6
[  248.179610][ T8264] mmap: syz.3.659 (8264) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  248.591112][ T8066] kworker/u8:11: attempt to access beyond end of device
[  248.591112][ T8066] loop3: rw=1, sector=1224, nr_sectors = 608 limit=256
[  248.644844][ T8066] kworker/u8:11: attempt to access beyond end of device
[  248.644844][ T8066] loop3: rw=1, sector=1864, nr_sectors = 3704 limit=256
[  248.689225][ T8066] kworker/u8:11: attempt to access beyond end of device
[  248.689225][ T8066] loop3: rw=1, sector=5568, nr_sectors = 4096 limit=256
[  248.714237][ T8066] kworker/u8:11: attempt to access beyond end of device
[  248.714237][ T8066] loop3: rw=1, sector=9664, nr_sectors = 2872 limit=256
[  248.731247][ T7602] team0 (unregistering): Port device team_slave_1 removed
[  248.787271][ T8066] kworker/u8:11: attempt to access beyond end of device
[  248.787271][ T8066] loop3: rw=1, sector=12536, nr_sectors = 3064 limit=256
[  248.823283][ T8272] loop1: detected capacity change from 0 to 1024
[  248.882451][ T7602] team0 (unregistering): Port device team_slave_0 removed
[  249.159928][ T8274] loop1: detected capacity change from 0 to 1024
[  249.239097][   T12] hfsplus: b-tree write err: -5, ino 4
[  249.408738][ T8283] netlink: 68 bytes leftover after parsing attributes in process `syz.1.667'.
[  249.570689][ T5893] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  249.588295][ T8285] loop1: detected capacity change from 0 to 1024
[  249.644905][ T8285] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  249.728204][ T5893] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  249.752632][ T5893] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  249.804605][ T5893] usb 4-1: New USB device found, idVendor=04d9, idProduct=a055, bcdDevice= 0.00
[  249.824214][ T5893] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  249.855525][ T5893] usb 4-1: config 0 descriptor??
[  249.899735][ T8287] loop1: detected capacity change from 0 to 736
[  249.907575][ T8287] iso9660: Bad value for 'mode'
[  250.058364][ T8013] hsr_slave_0: entered promiscuous mode
[  250.074571][ T8013] hsr_slave_1: entered promiscuous mode
[  250.086323][ T8013] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  250.117330][ T8013] Cannot create hsr debugfs directory
[  250.320010][ T8276] loop3: detected capacity change from 0 to 512
[  250.363787][ T7746] 8021q: adding VLAN 0 to HW filter on device bond0
[  250.377619][ T8276] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  250.445145][ T8276] EXT4-fs (loop3): 1 truncate cleaned up
[  250.459139][ T8276] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  250.489507][ T7746] 8021q: adding VLAN 0 to HW filter on device team0
[  250.518998][ T8300] loop0: detected capacity change from 0 to 1024
[  250.552003][ T8300] EXT4-fs: Ignoring removed i_version option
[  250.558187][ T8300] EXT4-fs: Ignoring removed bh option
[  250.600306][ T5893] usbhid 4-1:0.0: can't add hid device: -71
[  250.606522][ T5893] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  250.617329][ T5893] usb 4-1: USB disconnect, device number 9
[  250.664240][ T8300] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  250.728457][ T8302] bond0: (slave syz_tun): Releasing backup interface
[  250.751641][ T6456] bridge0: port 1(bridge_slave_0) entered blocking state
[  250.758984][ T6456] bridge0: port 1(bridge_slave_0) entered forwarding state
[  250.906069][ T5829] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  250.916680][ T6456] bridge0: port 2(bridge_slave_1) entered blocking state
[  250.925480][ T6456] bridge0: port 2(bridge_slave_1) entered forwarding state
[  251.324538][ T8315] loop1: detected capacity change from 0 to 512
[  252.208467][ T8315] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  252.360788][ T8315] ext4 filesystem being mounted at /127/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  252.378899][ T8326] loop2: detected capacity change from 0 to 1024
[  252.418693][ T8326] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  252.468879][ T8326] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  252.489326][ T5830] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  252.511420][ T8326] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (53380!=20869)
[  252.531444][ T8013] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  252.533678][ T8326] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  252.654179][ T8335] loop3: detected capacity change from 0 to 1764
[  252.663396][ T8326] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  252.683694][ T8013] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  252.735568][ T8013] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  252.740069][ T8335] iso9660: Corrupted directory entry in block 2 of inode 1920
[  252.811001][ T8013] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  252.822789][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  252.854750][ T8326] EXT4-fs (loop2): ext4_remount: Checksum for group 0 failed (53380!=20869)
[  253.020566][ T5892] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  253.082431][ T5825] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  253.161949][ T7746] 8021q: adding VLAN 0 to HW filter on device batadv0
[  253.221691][ T5892] usb 1-1: Using ep0 maxpacket: 16
[  253.253795][ T5892] usb 1-1: config 0 interface 0 altsetting 254 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  253.280864][ T5892] usb 1-1: config 0 interface 0 has no altsetting 0
[  253.294682][ T5892] usb 1-1: New USB device found, idVendor=056a, idProduct=0026, bcdDevice= 0.00
[  253.326778][ T5892] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  253.353566][ T8013] 8021q: adding VLAN 0 to HW filter on device bond0
[  253.364165][ T8353] cgroup: Unknown subsys name 'appraise_type'
[  253.394395][ T5892] usb 1-1: config 0 descriptor??
[  253.436935][ T8013] 8021q: adding VLAN 0 to HW filter on device team0
[  253.467145][ T8353] loop2: detected capacity change from 0 to 2048
[  253.533708][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  253.541007][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  253.594648][ T8353] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  253.596063][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  253.613951][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  253.622660][ T8353] ext4 filesystem being mounted at /127/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  253.675688][ T8353] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.685: bg 0: block 440: padding at end of block bitmap is not set
[  253.775259][ T8013] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  253.790018][ T8353] fs-verity (loop2, inode 13): ext4_end_enable_verity() failed with err -117
[  253.838773][ T5892] wacom 0003:056A:0026.0007: unknown main item tag 0x0
[  253.890514][ T5892] wacom 0003:056A:0026.0007: unknown main item tag 0x0
[  253.920709][ T5892] wacom 0003:056A:0026.0007: unknown main item tag 0x0
[  253.953831][ T5892] wacom 0003:056A:0026.0007: unknown main item tag 0x0
[  253.984340][ T5892] wacom 0003:056A:0026.0007: unknown main item tag 0x0
[  253.999241][ T5825] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  254.029813][ T5892] wacom 0003:056A:0026.0007: Unknown device_type for 'HID 056a:0026'. Assuming pen.
[  254.058103][ T8370] loop1: detected capacity change from 0 to 1764
[  254.081346][ T5892] wacom 0003:056A:0026.0007: hidraw0: USB HID va.d6 Device [HID 056a:0026] on usb-dummy_hcd.0-1/input0
[  254.120840][ T5892] input: Wacom Intuos5 touch S Pen as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:056A:0026.0007/input/input13
[  254.323237][ T8380] loop2: detected capacity change from 0 to 512
[  254.325969][ T7746] veth0_vlan: entered promiscuous mode
[  254.364267][ T7746] veth1_vlan: entered promiscuous mode
[  254.375870][ T8013] 8021q: adding VLAN 0 to HW filter on device batadv0
[  254.388097][ T5892] usb 1-1: USB disconnect, device number 7
[  254.414580][ T8380] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  254.477858][ T8380] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  254.510630][ T7746] veth0_macvtap: entered promiscuous mode
[  254.560099][ T7746] veth1_macvtap: entered promiscuous mode
[  254.578185][ T8380] ext4 filesystem being mounted at /128/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  254.586720][ T8386] netlink: 8 bytes leftover after parsing attributes in process `syz.1.690'.
[  254.658262][ T7746] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  254.704272][ T8380] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[  254.735706][ T7746] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  254.770543][ T7746] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  254.782466][ T8380] Quota error (device loop2): write_blk: dquota write failed
[  254.797556][ T7746] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  254.863411][ T8380] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota
[  254.887649][ T8380] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.689: Failed to acquire dquot type 0
[  254.980580][ T7746] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  254.993722][ T7746] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  255.052918][ T7746] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  255.118894][ T7746] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  255.132600][ T7746] batman_adv: batadv0: Interface activated: batadv_slave_0
[  255.202808][ T7746] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  255.227601][ T5825] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  255.231879][ T8396] loop0: detected capacity change from 0 to 2048
[  255.263906][ T7746] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  255.303554][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[  255.310354][ T1290] ieee802154 phy1 wpan1: encryption failed: -22
[  255.310747][ T8394] loop3: detected capacity change from 0 to 2048
[  255.325263][ T7746] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  255.366768][ T7746] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  255.400618][ T7746] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  255.438655][ T8394] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  255.462117][ T7746] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  255.505320][ T7746] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  255.537990][ T7746] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  255.582647][ T7746] batman_adv: batadv0: Interface activated: batadv_slave_1
[  255.644263][ T8396]  loop0: p1 < > p3
[  255.650837][ T7746] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  255.659595][ T7746] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  255.712018][ T8396] loop0: p3 size 134217728 extends beyond EOD, truncated
[  255.735876][ T7746] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  255.746511][ T7746] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  255.929290][ T5970] udevd[5970]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory
[  255.942137][ T5890] udevd[5890]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[  256.006320][ T8013] veth0_vlan: entered promiscuous mode
[  256.067224][ T8013] veth1_vlan: entered promiscuous mode
[  256.143397][ T5890] udevd[5890]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory
[  256.149369][ T8418] loop0: detected capacity change from 0 to 256
[  256.231572][ T8418] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  256.250231][ T8066] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  256.268821][ T8066] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  256.281819][ T8418] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  256.309240][ T8013] veth0_macvtap: entered promiscuous mode
[  256.330857][ T8418] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  256.357429][ T8421] loop1: detected capacity change from 0 to 512
[  256.394095][   T29] audit: type=1800 audit(1733184677.773:60): pid=8418 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.697" name="file1" dev="loop0" ino=1048622 res=0 errno=0
[  256.414823][ T8421] EXT4-fs: Ignoring removed nomblk_io_submit option
[  256.428802][ T8013] veth1_macvtap: entered promiscuous mode
[  256.461458][ T8421] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  256.470090][ T8421] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=1842c01c, mo2=0002]
[  256.483904][ T8421] EXT4-fs (loop1): couldn't mount RDWR because of unsupported optional features (80)
[  256.524599][ T7598] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  256.575811][ T7598] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  256.591882][ T8013] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  256.610523][ T8421] EXT4-fs (loop1): Skipping orphan cleanup due to unknown ROCOMPAT features
[  256.640270][ T8421] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  256.652477][ T8013] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  256.680648][ T8013] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  256.699039][ T8013] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  256.726396][ T8013] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  256.737050][ T8013] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  256.747247][ T8013] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  256.758153][ T8013] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  256.768117][ T8013] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  256.778725][ T8013] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  256.780610][ T8421] EXT4-fs warning (device loop1): dx_probe:893: inode #2: comm syz.1.698: dx entry: limit 65535 != root limit 120
[  256.790029][ T8013] batman_adv: batadv0: Interface activated: batadv_slave_0
[  256.850562][ T8421] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.698: Corrupt directory, running e2fsck is recommended
[  256.851252][ T8013] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  256.874704][ T8013] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  256.885024][ T8013] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  256.895926][ T8013] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  256.906142][ T8013] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  256.918329][ T8013] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  256.928881][ T8013] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  256.939517][ T8013] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  256.949583][ T8013] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  256.960270][ T8013] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  256.971542][ T8013] batman_adv: batadv0: Interface activated: batadv_slave_1
[  256.982005][ T8013] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  256.991059][ T8013] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  256.999868][ T8013] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  257.008781][ T8013] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  257.343678][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  257.346334][   T51] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  257.359463][   T51] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  257.377665][ T5827] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.435869][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  257.949175][ T8442] loop3: detected capacity change from 0 to 512
[  259.010305][ T8453] loop7: detected capacity change from 0 to 512
[  259.437716][ T8459] loop6: detected capacity change from 0 to 1764
[  259.488384][ T8463] loop0: detected capacity change from 0 to 4096
[  259.507551][ T8442] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  259.537577][ T8442] ext4 filesystem being mounted at /113/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  259.597081][ T8442] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.702: corrupted inode contents
[  259.629220][ T8453] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  259.641207][ T8442] EXT4-fs error (device loop3): ext4_dirty_inode:6041: inode #2: comm syz.3.702: mark_inode_dirty error
[  259.642569][ T8453] ext4 filesystem being mounted at /0/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  259.707991][ T8442] EXT4-fs error (device loop3): ext4_do_update_inode:5153: inode #2: comm syz.3.702: corrupted inode contents
[  259.729282][ T8463] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  259.791901][ T8442] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #2: comm syz.3.702: mark_inode_dirty error
[  259.876843][ T8476] loop1: detected capacity change from 0 to 256
[  259.986400][ T8479] loop6: detected capacity change from 0 to 2048
[  260.038804][ T8013] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  260.161025][ T8476] loop1: detected capacity change from 256 to 0
[  260.169833][ T8486] syz.1.710: attempt to access beyond end of device
[  260.169833][ T8486] loop1: rw=0, sector=12, nr_sectors = 4 limit=0
[  260.191523][ T5830] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  260.203160][ T5829] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  260.218938][ T8486] FAT-fs (loop1): Directory bread(block 3) failed
[  260.229068][ T8486] syz.1.710: attempt to access beyond end of device
[  260.229068][ T8486] loop1: rw=0, sector=4, nr_sectors = 4 limit=0
[  260.246623][ T8486] FAT-fs (loop1): FAT read failed (blocknr 1)
[  260.368896][ T5827] syz-executor: attempt to access beyond end of device
[  260.368896][ T5827] loop1: rw=0, sector=12, nr_sectors = 4 limit=0
[  260.383113][ T5827] FAT-fs (loop1): Directory bread(block 3) failed
[  260.713666][ T8479] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  260.745989][ T5827] syz-executor: attempt to access beyond end of device
[  260.745989][ T5827] loop1: rw=0, sector=0, nr_sectors = 4 limit=0
[  260.854993][ T5827] FAT-fs (loop1): unable to read boot sector to mark fs as dirty
[  261.238009][   T29] audit: type=1800 audit(1733184682.613:61): pid=8479 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.711" name="bus" dev="loop6" ino=18 res=0 errno=0
[  261.386182][ T8503] loop3: detected capacity change from 0 to 2048
[  261.443030][   T29] audit: type=1800 audit(1733184682.613:62): pid=8479 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.711" name="bus" dev="loop6" ino=18 res=0 errno=0
[  261.454889][ T8503] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  261.534577][ T8505] cgroup: Unknown subsys name 'appraise_type'
[  261.561916][ T5934] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  261.669362][ T8505] loop0: detected capacity change from 0 to 2048
[  261.760908][ T5934] usb 8-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  261.809217][ T5934] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  261.821169][ T5934] usb 8-1: config 0 descriptor??
[  261.821884][ T7746] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  261.829912][ T5934] cp210x 8-1:0.0: cp210x converter detected
[  261.842808][ T8505] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  261.902867][ T8505] ext4 filesystem being mounted at /140/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  261.981934][ T8505] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.713: bg 0: block 440: padding at end of block bitmap is not set
[  262.167825][ T8505] fs-verity (loop0, inode 13): ext4_end_enable_verity() failed with err -117
[  262.271909][ T5934] usb 8-1: cp210x converter now attached to ttyUSB0
[  262.495653][    T8] usb 8-1: USB disconnect, device number 2
[  262.533735][    T8] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  262.564877][ T5847] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  262.587095][ T5847] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  262.597957][ T5847] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  262.610998][ T5847] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  262.656321][ T5847] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  262.674292][ T5847] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  262.683643][    T8] cp210x 8-1:0.0: device disconnected
[  263.036745][ T5829] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  263.628429][ T8528] loop3: detected capacity change from 0 to 1024
[  263.679708][ T8531] loop2: detected capacity change from 0 to 512
[  263.752813][ T8531] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  263.778535][   T29] audit: type=1800 audit(1733184685.143:63): pid=8528 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.723" name="file1" dev="loop3" ino=20 res=0 errno=0
[  263.811202][ T8528] syz.3.723: attempt to access beyond end of device
[  263.811202][ T8528] loop3: rw=0, sector=5778, nr_sectors = 2 limit=1024
[  263.973593][ T8531] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  264.038583][ T8531] ext4 filesystem being mounted at /134/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  264.199963][ T8546] loop7: detected capacity change from 0 to 256
[  264.328568][ T8517] chnl_net:caif_netlink_parms(): no params data found
[  264.366068][ T8546] exFAT-fs (loop7): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x46ae1815, utbl_chksum : 0xe619d30d)
[  264.401094][ T8546] exFAT-fs (loop7): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  264.410837][   T29] audit: type=1326 audit(1733184685.783:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8553 comm="syz.6.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30ac57ff19 code=0x7ffc0000
[  264.475532][   T29] audit: type=1326 audit(1733184685.783:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8553 comm="syz.6.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30ac57ff19 code=0x7ffc0000
[  264.620261][ T5825] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  264.670679][   T29] audit: type=1326 audit(1733184685.823:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8553 comm="syz.6.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f30ac57ff19 code=0x7ffc0000
[  264.821032][   T29] audit: type=1326 audit(1733184685.823:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8553 comm="syz.6.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30ac57ff19 code=0x7ffc0000
[  265.485231][ T5847] Bluetooth: hci1: command tx timeout
[  265.497391][   T29] audit: type=1326 audit(1733184685.823:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8553 comm="syz.6.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30ac57ff19 code=0x7ffc0000
[  265.756522][ T8568] loop0: detected capacity change from 0 to 1024
[  265.792905][ T8570] loop7: detected capacity change from 0 to 2048
[  265.902131][   T29] audit: type=1326 audit(1733184685.823:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8553 comm="syz.6.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=213 compat=0 ip=0x7f30ac57ff19 code=0x7ffc0000
[  265.960336][ T8570] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  266.090674][   T29] audit: type=1326 audit(1733184685.823:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8553 comm="syz.6.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30ac57ff19 code=0x7ffc0000
[  266.219087][ T8568] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  266.244142][   T29] audit: type=1326 audit(1733184685.823:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8553 comm="syz.6.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30ac57ff19 code=0x7ffc0000
[  266.410558][ T8578] loop6: detected capacity change from 0 to 1024
[  266.445572][ T8568] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  266.500894][   T29] audit: type=1326 audit(1733184685.833:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8553 comm="syz.6.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f30ac57ff19 code=0x7ffc0000
[  266.676997][   T29] audit: type=1326 audit(1733184685.833:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8553 comm="syz.6.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30ac57ff19 code=0x7ffc0000
[  266.828984][   T29] audit: type=1326 audit(1733184685.833:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8553 comm="syz.6.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30ac57ff19 code=0x7ffc0000
[  266.935519][ T8068] ------------[ cut here ]------------
[  266.941406][ T8068] kernel BUG at fs/ext4/inode.c:2620!
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  267.050879][ T8068] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI
[  267.058046][ T8068] CPU: 1 UID: 0 PID: 8068 Comm: kworker/u8:12 Not tainted 6.13.0-rc1-syzkaller-00001-ge70140ba0d2b #0
[  267.068992][ T8068] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  267.079057][ T8068] Workqueue: writeback wb_workfn (flush-7:0)
[  267.085076][ T8068] RIP: 0010:ext4_do_writepages+0x3d01/0x3d10
[  267.091090][ T8068] Code: af 8e 4c 89 f2 e8 df 19 a3 02 e9 ab fb ff ff e8 85 bc 3f ff 90 0f 0b e8 7d bc 3f ff 90 0f 0b e8 25 97 70 09 e8 70 bc 3f ff 90 <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 90 90 90 90 90 90 90
[  267.110721][ T8068] RSP: 0018:ffffc9000420ecc0 EFLAGS: 00010293
[  267.116812][ T8068] RAX: ffffffff825fb5b0 RBX: 0000004000000000 RCX: ffff88801eb60000
[  267.124801][ T8068] RDX: 0000000000000000 RSI: 0000004000000000 RDI: 0000000000000000
[  267.132776][ T8068] RBP: ffffc9000420f0d0 R08: ffffffff825f7dbb R09: 1ffff1100ad88da9
[  267.140765][ T8068] R10: dffffc0000000000 R11: ffffed100ad88daa R12: 0000000000000001
[  267.148744][ T8068] R13: 0000000004208060 R14: 0000006210000000 R15: ffff888056c46fa8
[  267.156743][ T8068] FS:  0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[  267.165690][ T8068] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  267.172281][ T8068] CR2: 000055b7d1bf31f8 CR3: 00000000501c2000 CR4: 0000000000350ef0
[  267.180264][ T8068] Call Trace:
[  267.183546][ T8068]  <TASK>
[  267.186479][ T8068]  ? __die_body+0x5f/0xb0
[  267.190833][ T8068]  ? die+0x9e/0xc0
[  267.194566][ T8068]  ? do_trap+0x15a/0x3a0
[  267.198813][ T8068]  ? ext4_do_writepages+0x3d01/0x3d10
[  267.204210][ T8068]  ? do_error_trap+0x1dc/0x2c0
[  267.208976][ T8068]  ? ext4_do_writepages+0x3d01/0x3d10
[  267.210611][   T29] audit: type=1326 audit(1733184685.833:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8553 comm="syz.6.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f30ac57ff19 code=0x7ffc0000
[  267.214340][ T8068]  ? __pfx_do_error_trap+0x10/0x10
[  267.241484][ T8068]  ? report_bug+0x3e8/0x500
[  267.246007][ T8068]  ? srso_alias_return_thunk+0x5/0xfbef5
[  267.251651][ T8068]  ? handle_invalid_op+0x34/0x40
[  267.256595][ T8068]  ? ext4_do_writepages+0x3d01/0x3d10
[  267.261982][ T8068]  ? exc_invalid_op+0x38/0x50
[  267.266671][ T8068]  ? asm_exc_invalid_op+0x1a/0x20
[  267.271708][ T8068]  ? ext4_do_writepages+0x50b/0x3d10
[  267.277004][ T8068]  ? ext4_do_writepages+0x3d00/0x3d10
[  267.282390][ T8068]  ? ext4_do_writepages+0x3d01/0x3d10
[  267.287773][ T8068]  ? validate_chain+0x11e/0x5920
[  267.292718][ T8068]  ? __pfx_validate_chain+0x10/0x10
[  267.297930][ T8068]  ? srso_alias_return_thunk+0x5/0xfbef5
[  267.303563][ T8068]  ? look_up_lock_class+0x77/0x170
[  267.308681][ T8068]  ? srso_alias_return_thunk+0x5/0xfbef5
[  267.314311][ T8068]  ? register_lock_class+0x102/0x980
[  267.319597][ T8068]  ? srso_alias_return_thunk+0x5/0xfbef5
[  267.325250][ T8068]  ? validate_chain+0x11e/0x5920
[  267.330194][ T8068]  ? __pfx_validate_chain+0x10/0x10
[  267.335433][ T8068]  ? __pfx_register_lock_class+0x10/0x10
[  267.341074][ T8068]  ? srso_alias_return_thunk+0x5/0xfbef5
[  267.346704][ T8068]  ? mark_lock+0x9a/0x360
[  267.351051][ T8068]  ? __pfx_ext4_do_writepages+0x10/0x10
[  267.356611][ T8068]  ? validate_chain+0x11e/0x5920
[  267.361567][ T8068]  ? srso_alias_return_thunk+0x5/0xfbef5
[  267.367201][ T8068]  ? srso_alias_return_thunk+0x5/0xfbef5
[  267.372837][ T8068]  ? srso_alias_return_thunk+0x5/0xfbef5
[  267.378466][ T8068]  ? rcu_read_lock_any_held+0xb7/0x160
[  267.383943][ T8068]  ext4_writepages+0x213/0x3c0
[  267.388712][ T8068]  ? __pfx_ext4_writepages+0x10/0x10
[  267.394005][ T8068]  ? srso_alias_return_thunk+0x5/0xfbef5
[  267.399661][ T8068]  ? do_raw_spin_unlock+0x13c/0x8b0
[  267.404862][ T8068]  ? __pfx_ext4_writepages+0x10/0x10
[  267.410154][ T8068]  do_writepages+0x361/0x880
[  267.414754][ T8068]  ? __pfx_do_writepages+0x10/0x10
[  267.419870][ T8068]  ? srso_alias_return_thunk+0x5/0xfbef5
[  267.425504][ T8068]  ? srso_alias_return_thunk+0x5/0xfbef5
[  267.431139][ T8068]  ? __pfx_lock_acquire+0x10/0x10
[  267.436167][ T8068]  ? writeback_sb_inodes+0x595/0x1360
[  267.441542][ T8068]  ? __pfx_lock_release+0x10/0x10
[  267.446568][ T8068]  ? do_raw_spin_lock+0x14f/0x370
[  267.451598][ T8068]  __writeback_single_inode+0x14f/0x10d0
[  267.457240][ T8068]  ? wbc_attach_and_unlock_inode+0x561/0x580
[  267.463243][ T8068]  writeback_sb_inodes+0x820/0x1360
[  267.468455][ T8068]  ? __pfx_lock_acquire+0x10/0x10
[  267.473485][ T8068]  ? __pfx_lock_release+0x10/0x10
[  267.478514][ T8068]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  267.484195][ T8068]  ? rcu_is_watching+0x15/0xb0
[  267.488969][ T8068]  ? srso_alias_return_thunk+0x5/0xfbef5
[  267.494599][ T8068]  ? queue_io+0x3d9/0x5a0
[  267.498935][ T8068]  wb_writeback+0x413/0xb80
[  267.503446][ T8068]  ? queue_io+0x381/0x5a0
[  267.507778][ T8068]  ? __pfx_wb_writeback+0x10/0x10
[  267.512814][ T8068]  wb_workfn+0x410/0x1080
[  267.517151][ T8068]  ? __pfx_wb_workfn+0x10/0x10
[  267.521914][ T8068]  ? srso_alias_return_thunk+0x5/0xfbef5
[  267.527636][ T8068]  ? __pfx_lock_acquire+0x10/0x10
[  267.532662][ T8068]  ? srso_alias_return_thunk+0x5/0xfbef5
[  267.538300][ T8068]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  267.544303][ T8068]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  267.550673][ T8068]  ? process_scheduled_works+0x976/0x1840
[  267.556409][ T8068]  process_scheduled_works+0xa68/0x1840
[  267.561988][ T8068]  ? __pfx_process_scheduled_works+0x10/0x10
[  267.567987][ T8068]  ? assign_work+0x364/0x3d0
[  267.572585][ T8068]  worker_thread+0x870/0xd30
[  267.577185][ T8068]  ? srso_alias_return_thunk+0x5/0xfbef5
[  267.582829][ T8068]  ? srso_alias_return_thunk+0x5/0xfbef5
[  267.588468][ T8068]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  267.594373][ T8068]  ? __kthread_parkme+0x169/0x1d0
[  267.599403][ T8068]  ? __pfx_worker_thread+0x10/0x10
[  267.604521][ T8068]  kthread+0x2f2/0x390
[  267.608598][ T8068]  ? __pfx_worker_thread+0x10/0x10
[  267.613715][ T8068]  ? __pfx_kthread+0x10/0x10
[  267.618315][ T8068]  ret_from_fork+0x4d/0x80
[  267.622764][ T8068]  ? __pfx_kthread+0x10/0x10
[  267.627406][ T8068]  ret_from_fork_asm+0x1a/0x30
[  267.632180][ T8068]  </TASK>
[  267.635194][ T8068] Modules linked in:
[  267.639255][ T8068] ---[ end trace 0000000000000000 ]---
[  267.666951][   T29] audit: type=1326 audit(1733184685.833:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8553 comm="syz.6.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30ac57ff19 code=0x7ffc0000
[  267.693720][ T8592] loop6: detected capacity change from 0 to 1024
[  267.705274][   T29] audit: type=1326 audit(1733184685.833:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8553 comm="syz.6.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f30ac57ff19 code=0x7ffc0000
[  267.727476][   T29] audit: type=1326 audit(1733184685.883:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8553 comm="syz.6.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30ac57ff19 code=0x7ffc0000
[  267.749751][   T29] audit: type=1326 audit(1733184685.883:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8553 comm="syz.6.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f30ac57ff19 code=0x7ffc0000
[  267.772487][   T29] audit: type=1326 audit(1733184685.883:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8553 comm="syz.6.729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30ac57ff19 code=0x7ffc0000
[  267.782106][ T5847] Bluetooth: hci1: command tx timeout
[  267.871163][ T8068] RIP: 0010:ext4_do_writepages+0x3d01/0x3d10
[  267.877600][ T8068] Code: af 8e 4c 89 f2 e8 df 19 a3 02 e9 ab fb ff ff e8 85 bc 3f ff 90 0f 0b e8 7d bc 3f ff 90 0f 0b e8 25 97 70 09 e8 70 bc 3f ff 90 <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 90 90 90 90 90 90 90
[  267.897907][ T8068] RSP: 0018:ffffc9000420ecc0 EFLAGS: 00010293
[  267.905360][ T8068] RAX: ffffffff825fb5b0 RBX: 0000004000000000 RCX: ffff88801eb60000
[  267.912119][ T8592] EXT4-fs warning (device loop6): ext4_multi_mount_protect:398: Unable to create kmmpd thread for loop6.
[  267.913627][ T8068] RDX: 0000000000000000 RSI: 0000004000000000 RDI: 0000000000000000
[  267.932834][ T8068] RBP: ffffc9000420f0d0 R08: ffffffff825f7dbb R09: 1ffff1100ad88da9
[  267.946685][ T8068] R10: dffffc0000000000 R11: ffffed100ad88daa R12: 0000000000000001
[  267.981471][ T8068] R13: 0000000004208060 R14: 0000006210000000 R15: ffff888056c46fa8
[  267.990534][ T8068] FS:  0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[  267.999507][ T8068] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  268.009994][ T8068] CR2: 00007effe82c1fb8 CR3: 000000000e736000 CR4: 0000000000350ef0
[  268.018163][ T8068] Kernel panic - not syncing: Fatal exception
[  268.024471][ T8068] Kernel Offset: disabled
[  268.028799][ T8068] Rebooting in 86400 seconds..