last executing test programs:

4m9.259474795s ago: executing program 4 (id=55):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./bus\x00', 0x0, &(0x7f0000000d40)=ANY=[], 0xfa, 0x2c0, &(0x7f0000000100)="$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")
r1 = openat(0xffffffffffffff9c, 0x0, 0x42, 0x1ff)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000000)={0x2, 0x4, 0x8, 0x1, 0x80, r1, 0xa, '\x00', 0x0, r1, 0x1, 0x5, 0x2}, 0x50)
openat$dir(0xffffffffffffff9c, 0x0, 0x101000, 0x24)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108)
getdents64(r2, &(0x7f0000000f80)=""/4088, 0xff8)

4m8.808901567s ago: executing program 4 (id=57):
socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_ep_write$ath9k_ep1(0xffffffffffffffff, 0x82, 0xa8, 0x0)
sendmsg(0xffffffffffffffff, 0x0, 0x0)
r0 = socket(0x10, 0x3, 0x0)
write(r0, &(0x7f0000000080)="1400000052004f030e789e7ee2ce2fa4ff612d27", 0x14)
recvmmsg(r0, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0}}], 0x344, 0x10122, 0x0)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x62181)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r1, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00'})
write$sndseq(r1, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick=0x1f4, {}, {}, @raw32={[0x2600]}}], 0xffc8)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x62181)
write$sndseq(r2, &(0x7f0000000080)=[{0x1e, 0x0, 0x8, 0xfd, @time={0x7ffffffe, 0x4}, {}, {}, @result={0x1f00}}], 0x1c)
msgctl$MSG_STAT_ANY(0x0, 0xd, 0x0)

4m7.33196647s ago: executing program 2 (id=63):
r0 = socket$inet6(0xa, 0x2, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0))
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000000)={'syzkaller0\x00', @broadcast})
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_FSC={0x10, 0x2, {0x4d, 0xfffffffb, 0x7fffffff}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040084)
sendmsg$nl_route_sched(r3, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000001f80)=@newqdisc={0x58, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdf8, {0x0, 0x0, 0x0, r5, {0x10}, {}, {0xa, 0x3}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x2c, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0x3f, 0x0, 0x0, 0x0, 0x97ab, 0x40}, {0x2, 0x0, 0x3, 0x57, 0x8, 0x3}, 0x1, 0x2, 0xa2d}}]}}]}, 0x58}, 0x1, 0x0, 0x0, 0x40098}, 0x0)
r6 = socket$unix(0x1, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmmsg$inet(r0, &(0x7f00000017c0)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @local}, 0x10, 0x0, 0x0, &(0x7f00000006c0)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r7, @dev={0xac, 0x14, 0x14, 0x41}, @empty}}}], 0x20}}], 0x1, 0x8000004)

4m6.540671229s ago: executing program 2 (id=66):
syz_init_net_socket$llc(0x1a, 0x1, 0x0)
sendmsg$nl_crypto(0xffffffffffffffff, 0x0, 0x40c0)
ioctl$F2FS_IOC_MOVE_RANGE(0xffffffffffffffff, 0xc020f509, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000000), 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000100)=0x1800, 0x4)
r1 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c)
listen(r1, 0xfffffffc)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000040), 0xffffffffffffffff)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r4, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
sendmsg$MPTCP_PM_CMD_DEL_ADDR(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)={0x28, r3, 0x7, 0x0, 0x0, {}, [@MPTCP_PM_ATTR_ADDR={0x14, 0x1, 0x0, 0x1, [@MPTCP_PM_ADDR_ATTR_FAMILY={0x6, 0x1, 0x2}, @MPTCP_PM_ADDR_ATTR_ADDR4={0x8, 0x3, @local}]}]}, 0x28}}, 0x0)

4m6.426304455s ago: executing program 2 (id=69):
socket$inet6_sctp(0xa, 0x1, 0x84)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000380), 0xc0001, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x1e, 0x0, 0x4, 0xff, 0x40, 0x1}, 0x50)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_io_uring_setup(0x497, &(0x7f00000000c0)={0x0, 0x7079, 0x400, 0x3, 0x288}, &(0x7f0000000340)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r3, 0x3516, 0x0, 0x0, 0x0, 0x0)

4m5.344809829s ago: executing program 4 (id=71):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x101c08a, &(0x7f0000001140)=ANY=[@ANYBLOB="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", @ANYRES8, @ANYRESOCT, @ANYRESOCT, @ANYRESDEC], 0x6, 0x2c1, &(0x7f0000001880)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@bloom_filter={0x1e, 0x4, 0x2, 0x2, 0x2800, 0xffffffffffffffff, 0x6, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x3, 0x5, 0x1}, 0x50)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0x7, 0x8, &(0x7f0000000480)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x7fff}, 0x94)

4m5.342099379s ago: executing program 2 (id=72):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
fstatfs(r3, &(0x7f0000000300)=""/168)

4m4.448340173s ago: executing program 4 (id=76):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000240)={0x50, 0x0, r2, {0x7, 0x1f, 0x0, 0x202, 0x0, 0x0, 0x2}}, 0x50)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000300)='illinois', 0x8)
setsockopt$inet_tcp_int(r0, 0x6, 0x2, &(0x7f00000001c0)=0xa1, 0x4)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
sendto$inet(r0, &(0x7f00000000c0), 0xffffffffffffffef, 0x0, 0x0, 0x0)
getsockopt$IPT_SO_GET_REVISION_MATCH(r0, 0x0, 0x42, 0x0, 0x0)
r3 = io_uring_setup(0x667, &(0x7f0000000000)={0x0, 0xa14a, 0x1000, 0x2, 0x235})
io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
close_range(r3, 0xffffffffffffffff, 0x0)
recvfrom$inet(r0, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x720, 0x0, 0xfffffffffffffd25)

4m4.447854883s ago: executing program 2 (id=77):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa8442, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
r2 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000380)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x3, 0x1}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000022c0)=@newtfilter={0x44, 0x2c, 0xd27, 0x170bd2b, 0x2, {0x0, 0x0, 0x0, r3, {0x0, 0xfff3}, {}, {0x8, 0xffe0}}, [@filter_kind_options=@f_flow={{0x9}, {0x14, 0x2, [@TCA_FLOW_MODE={0x8, 0x2, 0x1}, @TCA_FLOW_KEYS={0x8, 0x1, 0x1285d}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0xc804}, 0x2)
close(r1)
socket$unix(0x1, 0x2, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @random="af75355d1696"})
r4 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r4, 0x107, 0xf, &(0x7f0000000600), 0x56)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$kcm(r4, &(0x7f0000000280)={&(0x7f0000000740)=@xdp={0x2c, 0x0, r6, 0x42}, 0x80, &(0x7f0000000cc0)=[{&(0x7f00000002c0)="27030200dc0f14000e000e3c0ff000000000ff880000000200000003125ce882cbf490d908f1523f000000002d9c2740e260a09c6911cda856d5141bffc6e29a5789796eec81", 0x46}], 0x1}, 0x8bb3a321efc09a)

4m3.548173837s ago: executing program 2 (id=80):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0x25dfdbfd, {0x0, 0x0, 0x0, r2, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2, 0xe}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x709f, 0x6361, 0x8, 0xc, 0x2}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x40804)
sendmsg$nl_route_sched(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000006c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70b826, 0x25dfdc01, {0x0, 0x0, 0x0, r2, {0x0, 0xd}, {0xffff, 0xb}, {0xffff, 0x9}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40040e0}, 0x2880)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r3)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
r6 = socket$packet(0x11, 0x3, 0x300)
sendto$packet(r6, &(0x7f0000000340)='O', 0x1, 0x40, &(0x7f00000001c0)={0x11, 0x10, r5, 0x1, 0xf0, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, 0x14)

4m3.158790906s ago: executing program 4 (id=82):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000940)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r4 = accept$alg(r3, 0x0, 0x0)
write$binfmt_script(r4, &(0x7f0000000600), 0xfec8)
recvmmsg(r4, &(0x7f00000008c0)=[{{&(0x7f00000000c0)=@pptp={0x18, 0x2, {0x0, @initdev}}, 0x80, &(0x7f00000005c0)=[{&(0x7f00000001c0)=""/200, 0xc8}, {0x0}, {&(0x7f0000000300)=""/225, 0xe1}, {&(0x7f0000000400)=""/41, 0x29}, {&(0x7f00000004c0)=""/203, 0xcb}], 0x5, &(0x7f0000000640)=""/123, 0x7b, 0x2000000}}, {{&(0x7f00000006c0), 0x80, &(0x7f0000000840)}}], 0x2, 0xcb, &(0x7f0000008000)={0x0, 0x989680})

4m2.123748717s ago: executing program 4 (id=86):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x20800, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0x25dfdbfb, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x7, 0x7}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x2, 0x4}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r6 = socket(0x400000000010, 0x3, 0x0)
r7 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@getchain={0x24, 0x66, 0x1, 0x70bd2d, 0x25dfdbff, {0x0, 0x0, 0x0, r8, {0xffff, 0xe}, {0x3, 0xfff1}, {0xa}}}, 0x24}, 0x1, 0x0, 0x0, 0x8848}, 0x20004850)

3m48.358955127s ago: executing program 32 (id=80):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000440)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0x25dfdbfd, {0x0, 0x0, 0x0, r2, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2, 0xe}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x709f, 0x6361, 0x8, 0xc, 0x2}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x40804)
sendmsg$nl_route_sched(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000006c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70b826, 0x25dfdc01, {0x0, 0x0, 0x0, r2, {0x0, 0xd}, {0xffff, 0xb}, {0xffff, 0x9}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40040e0}, 0x2880)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r3)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
r6 = socket$packet(0x11, 0x3, 0x300)
sendto$packet(r6, &(0x7f0000000340)='O', 0x1, 0x40, &(0x7f00000001c0)={0x11, 0x10, r5, 0x1, 0xf0, 0x6, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}}, 0x14)

3m46.357858766s ago: executing program 33 (id=86):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x20800, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0x25dfdbfb, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x7, 0x7}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x2, 0x4}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r6 = socket(0x400000000010, 0x3, 0x0)
r7 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@getchain={0x24, 0x66, 0x1, 0x70bd2d, 0x25dfdbff, {0x0, 0x0, 0x0, r8, {0xffff, 0xe}, {0x3, 0xfff1}, {0xa}}}, 0x24}, 0x1, 0x0, 0x0, 0x8848}, 0x20004850)

9.323796599s ago: executing program 1 (id=840):
socket$inet6_mptcp(0xa, 0x1, 0x106)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_tcp_int(r3, 0x6, 0x9, 0x0, &(0x7f0000002000))
r4 = socket$inet_sctp(0x2, 0x1, 0x84)
r5 = syz_open_dev$evdev(0x0, 0x1, 0x80)
fcntl$setstatus(r5, 0x4, 0x2c00)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000000580)=[@in={0x2, 0x4e21, @local}], 0x10)
setsockopt(r4, 0x84, 0x81, &(0x7f0000000280)="5a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_AUTH_CHUNK(r4, 0x84, 0x15, &(0x7f0000000080), 0x1)
sendmsg$inet_sctp(r4, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @local}, 0x10, &(0x7f00000001c0)=[{&(0x7f0000000000)='M', 0x1}], 0x1}, 0x1)
getsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2a, 0x0, &(0x7f0000000100))
r6 = dup(r4)
write$RDMA_USER_CM_CMD_CREATE_ID(r6, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x1000000000000, 0x0, 0x2, 0x8}}, 0x20)

9.141234278s ago: executing program 3 (id=848):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'aead\x00', 0x0, 0x0, 'gcm(anubis)\x00'}, 0x58)
setsockopt$ALG_SET_AEAD_AUTHSIZE(r0, 0x117, 0x5, 0x0, 0x3)

8.465469172s ago: executing program 3 (id=852):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
write$UHID_CREATE2(0xffffffffffffffff, 0x0, 0x118)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$can_j1939(r3, 0x0, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000540)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000000)="8a", 0x440)
r5 = accept4(r4, 0x0, 0x0, 0x80800)
sendmmsg$alg(r5, &(0x7f00000032c0)=[{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f00000000c0)="58630d2ba9eddc1a7f0d1ec40d9b203a09389c653bb35e1909e6bacd6976b3875518f7f28abf9ec64d51fa418a46a2a1452c51c5010b92066a423c65e8d77dbf", 0x40}, {0x0}, {&(0x7f00000002c0)="bcd3bbbd9c35699109", 0x9}], 0x3, 0x0, 0x0, 0x4000000}], 0x1, 0x4040)
timer_create(0xfffffffffffffffc, 0x0, &(0x7f00000000c0))
fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, 0x0)
timer_settime(0x0, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x8413, &(0x7f0000000080)={[{@noload}, {@acl}, {@jqfmt_vfsold}, {@mblk_io_submit}, {@usrquota}]}, 0x0, 0x533, &(0x7f0000000a80)="$eJzs3e9rHGkdAPDvbLK5pEkvOfWFHnh3eidp0e4mF+4u+OI8QfTVgXq+rzHZhJBNtmQ3d81y2BT/AEFEBV8piG9E/wBBCr7xZREK+lpRUURbfaGgnWN3Z9M02d1s2iTbJp8PTOf5MTPf55lmJ/PMTHYCOLfeyqb7aZpejojJrDyXTZ9sZHYiXoqIe3ffX2xMSaTpO/9IIsnK2ttKm56J8dYqzQ189UsR30gOxq1u19cWyuXSZpYv1tavFavb9Sur6wsrpZXSxtzc7Ovzb8y/Nj/zON1bHs8SFyPizS/85Xvf/ukX3/zVZ97749W/Xfpm0mrzjdjXjyMa7lXZ2p/5GN1T1thLm48Y7Ek0vDcx1t86N7MfEQAATlfjvPRD2Xn+5ZiMod6nswAAAMBTKP3cRPwvad+7O2CkSzkAAADwFMlFxEQkuUL2vO9E5HKFQjSf4f1IXMiVK9Xap5crWxtLjbqIqcjnllfLpZns2dapyCeN/Gwz/SD/6r78XEQ8FxHfnRxr5guLlfLSoC9+AAAAwDkxvm/8/+/J1vgfAAAAOGOmBt0AAAAA4MQZ/wMAAMDZZ/wPAAAAZ9qX3367MaXt918vvbu9tVZ598pSqbpWWN9aLCxWNq8VViqVleZ39q333NjuqwM3tq4Xa6VqrVjdrl9dr2xt1K6uPvQKbAAAAOAUPffird8nEbHz2bHm1DCyp/6/2XsCBtZA4MTsXrKLJJuPHFzoD8+25n8+pUYBp2Jo0A0ABmZ40A0ABiY/6AYAg3S73sdCXR/euZ3NP3F8DQIAAE7G9Me63//P9Vxzp3c18MTzIYbzy/1/OL+a9/87PPLXkZMFOFPyHc4Afj6QlgCDkhxSf+j9/0P5GyIAABi0ieaU5ArZ5b2JyOUKhYiLzdcC5JPl1XJpJiKejYjfTeafaeRnm2smh44ZAAAAAAAAAAAAAAAAAAAAAAAAAICWNE0iBQAAAM60iNxfk1+3vst/evKVif3XB0aS/0xG9orQ9374zvevL9Rqm7ON8n/ultd+kJW/euTLD/2+eRQAAAA4gvY4vT2OBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIDjdO/u+4vt6TTj/v3zETHVKf5wjDbno5GPiAv/SmJ4z3pJRAwdQ/ydmxHx0U7xk0azdkN2ij928vFjKtsLneKPH0N8OM9uNY4/b3X6/OXipea88+dvOOKh/KPqfvyL3ePfUJfP/8U+Yzx/5xfFrvFvRjw/3Pn4046fdIn/cp/xv/61er1bXfqjiOmOv3+Sh2IVa+vXitXt+pXV9YWV0kppY25u9vX5N+Zfm58pLq+WS9m/HWN85+O/vN+r/xe6xJ86pP+v9Nn//9+5fvfDrWS+U/xLL3eI/5sfZ0scjJ/Lfvd9Kks36qfb6Z1Weq8XfvbbF3r1f6lL/w/7/7/UZ/8vf+Vbf+pzUQDgFFS362sL5XJp88wmGqP0x9/Oxk9a+6vnwiMx2C7HzpOww5+ixI2DVS/GI28wTdO08TPyGA1L+ooeoye2W5LdkgEfmAAAgGP34Oz/iCv2e/MJAAAAAAAAAAAAAAAAAAAAONRpfMva/pg7u6nkOL5CGwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgWHwQAAD//7Do6tE=")
bind$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x4e21, 0x5, @ipv4={'\x00', '\xff\xff', @empty}, 0x4}, 0x1c)
connect$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x4e21, 0x659, @empty, 0xff}, 0x1c)

7.8946358s ago: executing program 1 (id=862):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC], 0x0, 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2e, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3a}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000fc0)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r3 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000040)=0x5)
syz_emit_ethernet(0xfc0, &(0x7f0000000000)=ANY=[@ANYBLOB="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"], 0x0)
r4 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
r5 = landlock_create_ruleset(&(0x7f0000000040)={0x0, 0x3}, 0x10, 0x0)
landlock_restrict_self(r5, 0x0)
landlock_restrict_self(r5, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
fsmount(r4, 0x0, 0x88)
r6 = syz_open_dev$I2C(&(0x7f0000000480), 0x0, 0x0)
ioctl$I2C_RDWR(r6, 0x707, &(0x7f0000000180)={&(0x7f0000000400)=[{0x0, 0x0, 0x0, 0x0}], 0x1})

4.532059916s ago: executing program 3 (id=865):
r0 = socket(0x2, 0x2, 0x1)
ioctl$sock_inet6_SIOCSIFDSTADDR(r0, 0x8918, &(0x7f00000002c0)={@private2, 0x37})

3.341190125s ago: executing program 3 (id=866):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_mount_image$cramfs(&(0x7f0000000240), &(0x7f00000006c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2200400, &(0x7f0000002fc0)=ANY=[@ANYRES32=0x0, @ANYRES8=0x0, @ANYRESHEX, @ANYBLOB="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", @ANYRES64], 0x1, 0x14f, &(0x7f0000000280)="$eJzszjFLclEcx/Hf4d5HfSqToMCCTGjokph2w5qiNBKE7ELh0lJgNxIUI6Gcwoi2hqDVwQqaxLdgWYulEPYmWpwdi+M1Imhp/32Wy/mec/7nri42NXiBExe6VrKZg0MzlzN3vRtGPLr5Xq2GZbcB6PzYt87fh4F9+VWB9ikg86MT2EulzZlkNi3X7TCgAYj0Y1n2oGxDQJ9sw9bZWVj3tUmgNmI1/Zc212tjKhBxWU3O+7gGpuQ8O4BU2rRbv4d80VcpP6836jH/9N24gvOYb+Jfb++re8wLPTp6O+BWkDCfbhAR8t5boO5/DVTKrWYjvmYsAdD1eQEUgqGW8dKIhQqXULftR8CWAAS+37HB7VETDpwJ4Ko7q/0gnABqpY6RGVwo9d53HCteQOSLyR1Frv8DigYBIiIiIiIiIiIiIiIiIiKiv/oMAAD//2BhXwk=")
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
syz_mount_image$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x20, 0x0, 0x0, 0x0, 0x0)
clock_gettime(0x0, &(0x7f0000005a40)={<r4=>0x0, <r5=>0x0})
recvmmsg(r2, &(0x7f0000005800), 0x0, 0x10000, &(0x7f0000005a80)={r4, r5+60000000})
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000140))
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r6, 0x8933, &(0x7f0000000c00)={'wpan1\x00'})
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff000000000200"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
socket$inet(0x2, 0x4000000000000001, 0x0)

3.330219205s ago: executing program 0 (id=867):
syz_mount_image$ocfs2(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="6a6f75726e616c5f6173796e635f636f6d6d69742c6e6f61636c2c636f686572656e63793d66756c6c2c6865617274626561743d6e6f6e652c6a6f75726e616c5f6173796e635f636f6d6d69742c6e6f757365725f78617474722c008e1d54758732e066b2e39f7bd9e6e2dab460"], 0x1, 0x446c, &(0x7f00000044c0)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)

3.306926616s ago: executing program 6 (id=868):
syz_mount_image$msdos(&(0x7f00000002c0), &(0x7f0000000280)='./file1\x00', 0x4, &(0x7f0000000900)={[{@dots}, {@dots}, {@dots}, {}, {@fat=@fmask={'fmask', 0x3d, 0x10}}, {@nodots}, {@fat=@discard}, {@dots}]}, 0x1, 0x22d, &(0x7f0000000300)="$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")
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000080)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x399446c, 0x0, 0x1, 0x0, &(0x7f0000000080))

3.245036729s ago: executing program 1 (id=869):
r0 = syz_open_dev$usbfs(&(0x7f0000000040), 0x76, 0x1501)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0xc1, &(0x7f0000000080)={0x4b5a9da54893e123, 0x3, 0x805, 0xffff}, 0x8, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0})

3.23385757s ago: executing program 5 (id=870):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x84, &(0x7f0000000040)={0x0, @in={{0xa, 0x0, @loopback}}, 0xe, 0xfffe}, 0x90)

2.877404558s ago: executing program 1 (id=871):
syz_usb_connect(0x3, 0x2d, &(0x7f00000001c0)={{0x12, 0x1, 0x0, 0xd8, 0x57, 0xe0, 0x40, 0xdfc, 0x1, 0xc19, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x3}}]}}, 0x0)
syz_emit_vhci(&(0x7f00000001c0)=ANY=[@ANYBLOB="040e0443050c"], 0x7)

2.876898628s ago: executing program 6 (id=872):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x2, 0x7fff7ffc}]})
close_range(r4, 0xffffffffffffffff, 0x200000000000000)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000300)='ns/net\x00')
r5 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000005c0)={r5, 0x0, 0x24, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xa)
r6 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000005c0)={r6, 0x0, 0x24, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xa)
r7 = socket$inet(0x2, 0x2, 0x1)
setsockopt$inet_opts(r7, 0x0, 0x4, 0x0, 0x0)
sendmsg$inet(r7, &(0x7f0000000080)={&(0x7f0000000900)={0x2, 0x4e23, @empty}, 0x10, &(0x7f0000000280)=[{&(0x7f00000001c0)="08001efbb07d586e", 0x8}], 0x1, 0x0, 0x0, 0x60000000}, 0x800)
ioctl$BTRFS_IOC_QUOTA_CTL(r7, 0xc0109428, &(0x7f0000000080)={0x2, 0x7})
fcntl$dupfd(r3, 0x406, r2)
r8 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r9=>0x0})
mount(&(0x7f0000000000)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000004200)='qnx6\x00', 0xa18410, 0x0)
sendmsg$BATADV_CMD_GET_DAT_CACHE(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x1c, r8, 0x303, 0x0, 0x0, {0x6}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r9}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x8000)

2.876018928s ago: executing program 5 (id=882):
syz_mount_image$msdos(&(0x7f00000002c0), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000000180)=ANY=[@ANYRES16=0x0], 0x1, 0x29b, &(0x7f0000000340)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
mremap(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x4000, 0x3, &(0x7f0000005000/0x4000)=nil)
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000cc0)="e1", 0x10113}], 0x1)

2.779729222s ago: executing program 5 (id=873):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000080)='./file1\x00', 0x800000, &(0x7f00000001c0)={[{@fat=@errors_remount}, {@iocharset={'iocharset', 0x3d, 'cp775'}}, {@shortname_win95}, {@shortname_win95}, {@fat=@codepage={'codepage', 0x3d, '852'}}, {@utf8no}, {@shortname_lower}, {@shortname_mixed}, {@utf8}, {@numtail}, {@utf8no}, {@shortname_mixed}, {@uni_xlateno}, {@shortname_win95}]}, 0x26, 0x35a, &(0x7f00000007c0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)

2.755858274s ago: executing program 5 (id=874):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$VT_ACTIVATE(r0, 0x5606, 0x4)

2.570814832s ago: executing program 5 (id=875):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
write$UHID_CREATE2(0xffffffffffffffff, 0x0, 0x118)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$can_j1939(r3, 0x0, 0x0)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000540)={0x26, 'hash\x00', 0x0, 0x0, 'nhpoly1305\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000000)="8a", 0x440)
r5 = accept4(r4, 0x0, 0x0, 0x80800)
sendmmsg$alg(r5, &(0x7f00000032c0)=[{0x0, 0x0, &(0x7f0000000640)=[{&(0x7f00000000c0)="58630d2ba9eddc1a7f0d1ec40d9b203a09389c653bb35e1909e6bacd6976b3875518f7f28abf9ec64d51fa418a46a2a1452c51c5010b92066a423c65e8d77dbf", 0x40}, {0x0}, {&(0x7f00000002c0)="bcd3bbbd9c35699109", 0x9}], 0x3, 0x0, 0x0, 0x4000000}], 0x1, 0x4040)
timer_create(0xfffffffffffffffc, 0x0, &(0x7f00000000c0))
fcntl$F_SET_FILE_RW_HINT(0xffffffffffffffff, 0x40e, 0x0)
timer_settime(0x0, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x8413, &(0x7f0000000080)={[{@noload}, {@acl}, {@jqfmt_vfsold}, {@mblk_io_submit}, {@usrquota}]}, 0x0, 0x533, &(0x7f0000000a80)="$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")
bind$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x4e21, 0x5, @ipv4={'\x00', '\xff\xff', @empty}, 0x4}, 0x1c)
connect$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x4e21, 0x659, @empty, 0xff}, 0x1c)

2.497060626s ago: executing program 6 (id=877):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
r1 = openat$full(0xffffffffffffff9c, &(0x7f0000000600), 0x2c0801, 0x0)
sendfile(r1, r0, 0x0, 0x2)

2.496851366s ago: executing program 0 (id=878):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, 0x0, &(0x7f0000000140))
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_AUTH_KEY(r1, 0x84, 0x17, &(0x7f00000209c0)=ANY=[@ANYRES8, @ANYRES64=r0, @ANYRES16, @ANYRES32, @ANYRES16=r1, @ANYBLOB="22612a81bf8e5093464cd42a9bf2a9624c5609e9b6b42768aa0e001671b446deb2abb765672f1c6ec58a56842ae9b471fdb4f0cccfc6aeb79bab9ab387651e1c60ef8a46b7a28f1d6bb0d48e46c41972", @ANYRES16], 0xa)

2.437327349s ago: executing program 0 (id=879):
syz_mount_image$hfsplus(&(0x7f00000000c0), &(0x7f0000000980)='./bus\x00', 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="666f7263652c6e6f626172726965722c63726561746f723dbd3c66f52c6e6c733d6d6163696e7569742c666f7263652c666f7263652c00e4fc379f5d3b737931087563d08075a28550d98b7ceb93413b717546de81c69d046a7c7de8b7877acbd69ee6be03a2ee9a6f18a95984da551773b44694170cc523576b447ba266b98f316ea57b543f70ba341c31a3ebdda905e7fe6b43c2a3df705330ee5e204149ac4976e64dd1fadd4aa5366c443b6b98d34c"], 0x3, 0x6af, &(0x7f0000002200)="$eJzs3U1sHGf9B/DvbJx1Nn8pdds0zR8h1WqkChqR2FmVBAmpASGUQ4QiuPRqJU5jZZNWjovSCpENUJA4cUI9cChC4dATQgipnBDljITEhVPukbhxyAFYNLOz67W9cey8eJf285HG8zz7zPM8v/l5XnbHiTbAZ9a5N7K/myLnjp+/Wdbv3ml37t5pXxuUk8wmaSQz/VWKVlJ8kpxNf8n/ly/WwxUPmue1ex8XMx981O7XZuql2r6xXb8txm7ZTQ4MK/uSzPeL/9rxsFvGq5ZqnIvr4z2iYhh3mbBjg8TBpPW26K43Nh7afefnLTC1bvXvm1vMJQfTv7uW7wNSXx0efmWYvG2vTd29iwMAAACelrGf5Uc9cz/3czOH9iYcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+HQo+t8ZWNRLY1CeTzH4/v/myHfqNycc7mN6/3K1+vYzkw4EAAAAAAAAAB7LS/dzPzdzaFDvFdXf/F+uKoern/+Xd3Ijy1nNidzMUtayltUsJpkbGah5c2ltbXVxa8+fp+zZ6/Vu1T1Pje15amNc3c2BjvuXBls2AgAAAAAAAIDPrB/k3Prf/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYBoUyb7+qloOD8pzacwkOZCkWcwPN29ONNgn4I+TDgAAAACevla9PlT8p1/oFdVn/iPV5/4DeSfXs5aVrKWT5VyqngX0P/U3/tptd+7eaV8rl60Df+0fu4qjGjH9Zw/jZ16otnhh2ONcvpnv5HjmcyGrWcl3s5S1LGc+36hKSykyVz+9mLt7p5VBrFvjPbuhdmFzbC+NlMv4jlaRtHI5K1VsJ3KxOQi9UW93dGS23zeTTTPeLrNTvF7bYY4u1etyj35Wr6fDXLXn+4cZWahzX2bj2dG8b839Lo+TzTMtpjF8BnV4fZayunmmR8r5wXpd5vrHTzfnu3yUtjET3Z+WtcHRd2T7nCdf/NufLlxpXL965fKN49NzGD2izcdEeyQTL+4oE50yE93HyMSBx4n/yWnW2ehfRXd3tXy56nsoK/lW3sqlLOd0FrKYM1nIV3Iq7ZwayesL2+e1OtcauzvXjn2hLpT3pJ+M3Jv2zOyDGsq8PjuS19Er3VzVNvrKepae20GWimbGZ+nvY0OZ+VxdKOf44cgdZ/I2Z2JxJBPPb5+JX/67l+RG5/rV1StLb+9wvlfqdXnavr/x2vyrJ7JDu1fvbnm8PFf+stK/bYweHWXb84O2Tflq1n9xmakH29DWTHU+99sedqaWIx25PW6kftuLY2dpV21HR9o2vMvJW+kM34UAMMUOvnqw2brX+kvrw9aPWlda5w98ffbM7Oeb2f/nmT/s+03j142vFq/mw3w/hyYdKQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAfBrcePe9q0udzvLqFBbSeMID3h7bNEhF/5XmdOz7sNDIVISx08LsdkfUb5OMbeoVo7+CPY25lWQqUpeZPZhrNmOazg9faSWNYTxJrk7JF9wBT8PJtWtvn7zx7ntfWrm29Obym8vXT505/frp9pcXb528vNJZXuj/nHSUwNOw/jZg0pEAAAAAAAAAAAAAO7UX/71hzLRFdwL7CgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPxvOvdG9ndTZHHhxEJZv3un3SmXQXl9y5kkjSTF95Lik+Rs+kvmRoYrHjTPa/c+/sUrH3zUXh9rZrB9Y1O/3/2z19vlXnTrJfNJ9tXrh5vd0XgXR8br7jKwvmK4h2XCjg0SB5P23wAAAP//bVsE6g==")
r0 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000c80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x40, 0x104)

2.436891069s ago: executing program 6 (id=880):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0xfd, &(0x7f00000004c0)=[{&(0x7f0000000380)="2e00000010008188e6b62aa73772cc9f1ba1f848110000005e140602000000000e000a001000000002900000121f", 0x2e}], 0x1}, 0x40)
sendmsg$kcm(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000010008188040f80ec59acbc0413a1f8481100000003000000000000000e000a000f08000002800000121f", 0x2e}], 0x1}, 0x8084)

2.400156061s ago: executing program 3 (id=881):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC], 0x0, 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2e, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3a}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000fc0)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r3 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000040)=0x5)
syz_emit_ethernet(0xfc0, &(0x7f0000000000)=ANY=[@ANYBLOB="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"], 0x0)
r4 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
r5 = landlock_create_ruleset(&(0x7f0000000040)={0x0, 0x3}, 0x10, 0x0)
landlock_restrict_self(r5, 0x0)
landlock_restrict_self(r5, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
fsmount(r4, 0x0, 0x88)
r6 = syz_open_dev$I2C(&(0x7f0000000480), 0x0, 0x0)
ioctl$I2C_RDWR(r6, 0x707, &(0x7f0000000180)={&(0x7f0000000400)=[{0x0, 0x0, 0x0, 0x0}], 0x1})

2.374980323s ago: executing program 0 (id=883):
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in=@multicast1=0xe0000002, @in, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x87}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb}}}, 0xb8}}, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000740)=@updpolicy={0xb8, 0x15, 0x1, 0x70bd29, 0x0, {{@in=@multicast1=0xe0000002, @in=@empty, 0x0, 0x0, 0x4e22, 0x0, 0xa, 0x10}, {0x0, 0x6, 0x0, 0x0, 0x0, 0x8, 0x400}, {0x0, 0x0, 0x101}, 0x0, 0x6e6bb5, 0x0, 0x0, 0x1}}, 0xb8}}, 0x10000000)

2.297338356s ago: executing program 6 (id=884):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000240)='./file3\x00', 0x4002, &(0x7f00000002c0)={[{@errors_remount}, {@bh}, {@norecovery}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x4}}]}, 0x1, 0xbd2, &(0x7f0000000540)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000180)='./bus\x00', 0x300000d, 0x0, 0x1, 0x0, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000280)='./bus\x00', r0, &(0x7f00000004c0)='./file0\x00', 0x2)

2.296859116s ago: executing program 0 (id=885):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000080)=0x13)
ioctl$TCSETSW(r0, 0x5403, &(0x7f00000000c0)={0x72b, 0xc6, 0x7, 0x4, 0x19, "f9094cbc593af5b688b7e2b551679a94677259"})
ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000001c0)=0x8)

2.069182797s ago: executing program 1 (id=886):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000080), 0x1, 0x579, &(0x7f0000000a40)="$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")
setrlimit(0x1, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff})
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f00000000c0)='a', 0x200000c1, 0x404043000)

1.129234754s ago: executing program 5 (id=887):
r0 = syz_open_dev$usbmon(0x0, 0x7, 0x80000)
ioctl$BTRFS_IOC_DEFAULT_SUBVOL(r0, 0x40089413, &(0x7f0000000340)=0xa)
io_uring_register$IORING_REGISTER_SYNC_CANCEL(0xffffffffffffffff, 0x25, &(0x7f0000000000)={0x1, 0xffffffffffffffff, 0x0, {0xfffffffffffffffd, 0x7}, 0x1}, 0x1)
openat2$dir(0xffffff9c, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x0, 0x0)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r4 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
writev(r4, &(0x7f00000000c0)=[{&(0x7f0000000140)='2', 0x1}], 0x1)
r5 = socket$igmp(0x2, 0x3, 0x2)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_REQ_SET_REG(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x810}, 0x0)
r6 = syz_genetlink_get_family_id$gtp(0x0, 0xffffffffffffffff)
sendmsg$GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000200)={0x1c, r6, 0x800, 0x70bd27, 0x25dfdbfe, {}, [@GTPA_PEER_ADDRESS={0x8, 0x4, @multicast1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x0)
setsockopt$MRT_INIT(r5, 0x0, 0xc8, &(0x7f0000000000), 0x4)
syz_clone3(&(0x7f0000000240)={0x80001000, &(0x7f0000000000), &(0x7f0000000080), &(0x7f00000000c0), {0xa}, &(0x7f0000000100)=""/8, 0x8, 0x0, &(0x7f0000000200)=[0x0, 0xffffffffffffffff, 0x0], 0x3}, 0x58)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x15, 0x4, &(0x7f0000000300)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x79, 0x10, 0x28}, [@ldst={0x6, 0x3, 0x2, 0x0, 0x5}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_reuseport, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0x6, 0x1000}, 0x10}, 0x94)

953.407902ms ago: executing program 6 (id=888):
syz_mount_image$hfsplus(&(0x7f00000000c0), &(0x7f0000000140)='./file1\x00', 0x0, &(0x7f0000000180)=ANY=[], 0x85, 0x6bb, &(0x7f0000002040)="$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")
truncate(&(0x7f0000000000)='./file1\x00', 0x442dc)
truncate(&(0x7f0000000280)='./file1\x00', 0x1bf8)

951.565772ms ago: executing program 3 (id=889):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000080)={[{@auto_da_alloc}, {@mblk_io_submit}]}, 0x1, 0x580, &(0x7f0000000440)="$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")
setxattr$incfs_metadata(&(0x7f0000000240)='./file1\x00', &(0x7f0000000280), &(0x7f00000002c0)="30573472b621739991c336124406e8a5c812ca847e3bf9b837c91d46ab", 0x1d, 0x1)
lsetxattr$trusted_overlay_upper(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000180), &(0x7f0000000000)=ANY=[], 0x361, 0x0)
lsetxattr$trusted_overlay_upper(&(0x7f0000000200)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000740)=ANY=[], 0xfe37, 0x0)

943.455853ms ago: executing program 0 (id=890):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x2, 0x7fff7ffc}]})
close_range(r4, 0xffffffffffffffff, 0x200000000000000)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000300)='ns/net\x00')
r5 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000005c0)={r5, 0x0, 0x24, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xa)
r6 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000005c0)={r6, 0x0, 0x24, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xa)
r7 = socket$inet(0x2, 0x2, 0x1)
setsockopt$inet_opts(r7, 0x0, 0x4, 0x0, 0x0)
sendmsg$inet(r7, &(0x7f0000000080)={&(0x7f0000000900)={0x2, 0x4e23, @empty}, 0x10, &(0x7f0000000280)=[{&(0x7f00000001c0)="08001efbb07d586e", 0x8}], 0x1, 0x0, 0x0, 0x60000000}, 0x800)
ioctl$BTRFS_IOC_QUOTA_CTL(r7, 0xc0109428, &(0x7f0000000080)={0x2, 0x7})
fcntl$dupfd(r3, 0x406, r2)
r8 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r9=>0x0})
mount(&(0x7f0000000000)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000004200)='qnx6\x00', 0xa18410, 0x0)
sendmsg$BATADV_CMD_GET_DAT_CACHE(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)={0x1c, r8, 0x303, 0x0, 0x0, {0x6}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r9}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000000}, 0x8000)

0s ago: executing program 1 (id=891):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000002240)='./file0\x00', 0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="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", @ANYRES16], 0x1, 0x2c2, &(0x7f00000006c0)="$eJzs3T+LI2UYAPBndpNJ7iySwkoEB7SwOm6vtckiOThMpaRQC128O5AkCHew4CkGK1sbSz+BINj5JWwEP4DgB7DzioNXJpkh2btJsoHLrX9+vyL77Lzv877POzPZPyzz7sevziZ3i7j/9Ze/R7ebxdEgBvE4i34cRS2llGJl8G0AAP9mj1OKP9PSJVMG5UsWEd3DlgYAHMje3/9/OnhJAMCBvff+B++cjkbDd4uiG7dn35yPy9/sy4/L9tP78WlM417cjF48Wf4toP5poXy9nVKat4pSP96Yzc/HZebso1+q8U/riU6iF/1FdDH/zmh4Uiyt5c/LOq5X8w/K+W9FL15umP/OaHirIT/Gebz5+lr9N6IXv34Sn8U07i6KWOV/dVIUb6fv/vriw7K8Mj+bn487i34r6fjFXRUAAAAAAAAAAAAAAAAAAAAAAP7rblR753RisX9Peajaf+f4SflJO4pa/+L+PMv8rB7oqf2B5im+T6nTihgNbxZFkaqOq/xWvNKK1tWsGgAAAAAAAAAAAAAAAAAAAP5ZHn7+aHI2nd570BD8dj1iQ9OGoN4NoH6sf0fW8aamwdqR1+LR5KyzecC1pqMq3DJpHNd9soity4lWux65v9dJ2D+4tqnmH37cd8Du7j7tbefn+QT13TU5y6KxTyfqI936mv683iePS86Vb2pKu2+/tSBvbOrtvfb8pUUw39Insm2FvfXH8sxVR7KnV5EvzmpjenttN47me6P5Wmx6pzwjW7yt8+f3xQcAAAAAAAAAAAAAAAAAALhg9dDvM03XdqQepc7BygIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAF2r1///3COZV8iU65/Hg4RUvEQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgP+BvwMAAP//QSRWPA==")
syz_mount_image$fuse(0x0, &(0x7f0000000140)='./file0\x00', 0x2a0000a, 0x0, 0x0, 0x0, 0x0)
unlinkat(0xffffffffffffff9c, &(0x7f0000000180)='./file0/file0\x00', 0x0)
unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200)

kernel console output (not intermixed with test programs):

 disabled state
[   77.280231][ T4939] device bridge_slave_1 entered promiscuous mode
[   77.287068][ T4946] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   77.315756][ T5038] fido_id[5038]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[   77.327150][ T4939] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   77.330349][ T4939] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   77.358703][ T4946] team0: Port device team_slave_0 added
[   77.362027][ T4946] team0: Port device team_slave_1 added
[   77.378564][ T4939] team0: Port device team_slave_0 added
[   77.387105][ T5042] binder: 5041:5042 tried to acquire reference to desc 0, got 1 instead
[   77.387757][ T4939] team0: Port device team_slave_1 added
[   77.389925][ T5042] binder: 5041:5042 got transaction with invalid data ptr
[   77.391078][ T5042] binder: 5041:5042 transaction call to 5041:0 failed 47/29201/-14, size 0-12288 line 3333
[   77.414225][ T5040] netlink: 76 bytes leftover after parsing attributes in process `syz.3.135'.
[   77.429892][ T4946] batman_adv: batadv0: Adding interface: batadv_slave_0
[   77.431048][ T4946] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   77.435941][ T4946] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   77.509796][ T4946] batman_adv: batadv0: Adding interface: batadv_slave_1
[   77.510852][ T4946] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   77.521682][ T4946] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   77.540789][ T5040] device syzkaller0 entered promiscuous mode
[   77.549848][ T4939] batman_adv: batadv0: Adding interface: batadv_slave_0
[   77.550908][ T4939] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   77.762130][ T4939] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   77.893682][ T4939] batman_adv: batadv0: Adding interface: batadv_slave_1
[   77.894769][ T4939] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   77.899018][ T4939] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   78.975150][ T4325] Bluetooth: hci6: command 0x0419 tx timeout
[   79.143286][ T4907] binder: undelivered TRANSACTION_ERROR: 29201
[   79.145939][ T5042] syz.1.136 (5042): drop_caches: 2
[   79.635509][ T4946] device hsr_slave_0 entered promiscuous mode
[   79.710091][ T4946] device hsr_slave_1 entered promiscuous mode
[   79.835804][ T4946] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   79.837394][ T4946] Cannot create hsr debugfs directory
[   80.095771][ T4939] device hsr_slave_0 entered promiscuous mode
[   80.196692][ T5086] loop0: detected capacity change from 0 to 512
[   80.251700][ T5086] EXT4-fs: Invalid want_extra_isize 16494
[   80.375370][ T4949] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[   80.423536][ T4939] device hsr_slave_1 entered promiscuous mode
[   80.463561][ T4939] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   80.466921][ T4939] Cannot create hsr debugfs directory
[   83.105712][ T4939] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   83.165056][ T4939] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   83.555694][ T4939] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   83.604394][ T4939] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   83.668897][ T5156] loop3: detected capacity change from 0 to 2048
[   83.961517][ T5157] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   83.977956][ T5155] NILFS (loop3): vblocknr = 5121 has abnormal lifetime: start cno (= 100663298) > current cno (= 3)
[   83.979881][ T5155] NILFS error (device loop3): nilfs_bmap_propagate: broken bmap (inode number=13)
[   83.990377][ T5155] Remounting filesystem read-only
[   84.074494][ T5160] loop0: detected capacity change from 0 to 32768
[   84.081197][ T5160] (syz.0.153,5160,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[   84.085371][ T5160] (syz.0.153,5160,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[   84.100856][ T5160] JBD2: Ignoring recovery information on journal
[   84.110998][ T5160] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[   84.520529][ T4334] NILFS (loop3): disposed unprocessed dirty file(s) when stopping log writer
[   84.520541][ T4946] netdevsim netdevsim6 netdevsim0: renamed from eth0
[   84.534766][ T4946] netdevsim netdevsim6 netdevsim1: renamed from eth1
[   84.851223][ T4946] netdevsim netdevsim6 netdevsim2: renamed from eth2
[   85.001653][ T4328] ocfs2: Unmounting device (7,0) on (node local)
[   85.277852][ T5184] loop0: detected capacity change from 0 to 256
[   85.626989][ T4946] netdevsim netdevsim6 netdevsim3: renamed from eth3
[   86.650977][ T4718] device hsr_slave_0 left promiscuous mode
[   86.749906][ T4718] device hsr_slave_1 left promiscuous mode
[   86.776170][ T5197] loop0: detected capacity change from 0 to 512
[   86.781271][ T5197] EXT4-fs: Ignoring removed orlov option
[   86.795808][ T5197] EXT4-fs (loop0): Test dummy encryption mode enabled
[   86.796979][ T5197] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   86.855174][ T5197] EXT4-fs (loop0): 1 truncate cleaned up
[   86.856125][ T5197] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[   86.865502][ T4718] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   86.866726][ T4718] batman_adv: batadv0: Removing interface: batadv_slave_0
[   86.869872][ T4718] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   86.871017][ T4718] batman_adv: batadv0: Removing interface: batadv_slave_1
[   86.872421][ T4718] device bridge_slave_1 left promiscuous mode
[   86.881274][ T4718] bridge0: port 2(bridge_slave_1) entered disabled state
[   86.985295][ T4718] device bridge_slave_0 left promiscuous mode
[   86.987000][ T4718] bridge0: port 1(bridge_slave_0) entered disabled state
[   87.092671][   T27] audit: type=1326 audit(87.070:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5195 comm="syz.0.158" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff94177128 code=0x0
[   87.224785][ T5207] 9pnet_fd: Insufficient options for proto=fd
[   88.087769][ T4328] EXT4-fs error (device loop0): mb_free_blocks:1824: group 0, inode 16: block 35:freeing already freed block (bit 34); block bitmap corrupt.
[   88.095068][ T4328] EXT4-fs (loop0): unmounting filesystem.
[   88.118787][ T4718] device veth1_macvtap left promiscuous mode
[   88.119949][ T4718] device veth0_macvtap left promiscuous mode
[   88.120998][ T4718] device veth1_vlan left promiscuous mode
[   88.122032][ T4718] device veth0_vlan left promiscuous mode
[   88.138496][ T5201] loop3: detected capacity change from 0 to 131072
[   88.140725][ T5201] F2FS-fs (loop3): invalid crc value
[   88.205374][ T5201] F2FS-fs (loop3): Found nat_bits in checkpoint
[   88.221237][ T5201] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   88.226059][ T5201] syz.3.160 (pid 5201) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[   89.011383][ T5231] loop0: detected capacity change from 0 to 128
[   89.027093][ T5231] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[   89.029476][ T5231] hpfs: filesystem error: improperly stopped
[   89.030440][ T5231] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[   89.031987][ T5231] hpfs: You really don't want any checks? You are crazy...
[   89.038922][ T5231] hpfs: hpfs_map_sector(): read error
[   89.039871][ T5231] hpfs: code page support is disabled
[   89.041084][ T5231] hpfs: hpfs_map_4sectors(): unaligned read
[   89.042142][ T5231] hpfs: hpfs_map_4sectors(): unaligned read
[   89.043453][ T5231] hpfs: filesystem error: unable to find root dir
[   89.111083][ T5235] loop3: detected capacity change from 0 to 1024
[   89.123223][ T5235] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (7780!=20869)
[   89.125462][ T5235] EXT4-fs error (device loop3): ext4_get_journal_inode:5756: inode #8: comm syz.3.164: inode has both inline data and extents flags
[   89.128468][ T5235] EXT4-fs (loop3): no journal found
[   90.485602][ T5249] loop3: detected capacity change from 0 to 256
[   92.386817][ T4718] team0 (unregistering): Port device team_slave_1 removed
[   92.714445][ T4718] team0 (unregistering): Port device team_slave_0 removed
[   92.973944][ T4718] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   93.234077][ T4718] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   94.724877][ T4718] bond0 (unregistering): Released all slaves
[   95.016128][ T5224] device syzkaller0 entered promiscuous mode
[   95.041797][ T4939] 8021q: adding VLAN 0 to HW filter on device bond0
[   95.054229][ T4939] 8021q: adding VLAN 0 to HW filter on device team0
[   95.055432][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   95.070211][ T5271] syz.0.171 uses obsolete (PF_INET,SOCK_PACKET)
[   95.082670][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   95.165208][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   95.166851][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   95.168291][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   95.169425][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   95.170740][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   95.178567][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   95.179948][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[   95.181067][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[   95.273636][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   95.312693][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   95.470541][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   95.477894][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   95.481779][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   95.489918][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   95.495845][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   95.499379][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   95.559426][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   95.561355][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   95.576407][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   95.578248][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   95.581352][ T4939] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   95.717512][ T5289] process 'syz.1.173' launched './file2' with NULL argv: empty string added
[   95.925363][ T4975] Bluetooth: hci1: Frame reassembly failed (-84)
[   95.963720][ T4946] 8021q: adding VLAN 0 to HW filter on device bond0
[   95.972830][ T4442] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   95.974765][ T4442] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   96.009398][ T5274] loop3: detected capacity change from 0 to 40427
[   96.013533][ T4946] 8021q: adding VLAN 0 to HW filter on device team0
[   96.021538][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   96.023900][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   96.027669][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[   96.028763][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[   96.051636][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   96.059704][ T5274] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[   96.061074][ T5274] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[   96.065818][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   96.067494][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   96.069203][ T5274] F2FS-fs (loop3): invalid crc value
[   96.071457][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[   96.072560][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[   96.079192][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   96.085080][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   96.096152][ T4946] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   96.099907][ T4946] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   96.424198][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   96.426339][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   96.428293][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   96.430071][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   96.432092][ T5274] F2FS-fs (loop3): Found nat_bits in checkpoint
[   96.436798][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   96.441545][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   96.444404][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   96.447026][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   96.449443][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   96.450810][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   96.460034][ T5274] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[   96.461125][ T5274] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   96.478055][ T4975] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   96.479422][ T4975] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   96.482196][ T4939] 8021q: adding VLAN 0 to HW filter on device batadv0
[   97.097143][ T5322] mkiss: ax0: crc mode is auto.
[   97.163888][ T4946] 8021q: adding VLAN 0 to HW filter on device batadv0
[   97.165497][ T4530] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   97.166782][ T4530] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   97.278502][ T4975] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   97.280247][ T4975] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   97.294930][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   97.296454][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   97.298596][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   97.299956][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   97.725599][ T5347] loop3: detected capacity change from 0 to 2048
[   97.911512][ T4939] device veth0_vlan entered promiscuous mode
[   97.917572][ T4326] Bluetooth: hci1: Opcode 0x1003 failed: -110
[   97.919740][ T4325] Bluetooth: hci1: command 0x1003 tx timeout
[   98.317007][ T5347] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[   98.599404][ T4939] device veth1_vlan entered promiscuous mode
[   98.714993][ T4939] device veth0_macvtap entered promiscuous mode
[   98.728028][ T4939] device veth1_macvtap entered promiscuous mode
[   98.780201][ T4939] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   98.796907][ T4939] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   98.798321][ T4939] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   98.800160][ T4939] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   98.801766][ T4939] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   98.830843][ T4939] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   98.834025][ T4939] batman_adv: batadv0: Interface activated: batadv_slave_0
[   98.842858][ T4939] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   98.844574][ T4939] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   98.846220][ T4939] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   98.847982][ T4939] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   98.849637][ T4939] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   98.851264][ T4939] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   98.852800][ T4939] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   98.857473][ T4939] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   98.858740][ T4334] EXT4-fs (loop3): unmounting filesystem.
[   98.859674][ T4939] batman_adv: batadv0: Interface activated: batadv_slave_1
[   98.916694][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   98.927320][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   98.932164][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   98.936572][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   98.941727][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   98.948332][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   98.950000][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   98.953913][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   98.958905][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   98.966258][ T4939] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   98.967706][ T4939] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   98.969107][ T4939] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   98.975954][ T4939] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   99.057152][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   99.155500][   T27] audit: type=1326 audit(99.140:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5359 comm="syz.3.180" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffa3d77128 code=0x0
[   99.290471][ T5366] 9pnet_fd: Insufficient options for proto=fd
[  100.050656][ T4530] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  100.051976][ T4530] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  100.054233][ T4530] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  100.106263][ T4975] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  100.107498][ T4975] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  100.108977][ T4975] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  100.137517][ T5372] mkiss: ax0: crc mode is auto.
[  100.281245][ T1737] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  100.283009][ T1737] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  100.284642][ T1737] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  100.286288][ T1737] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  101.564738][ T1737] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  101.566318][ T1737] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  101.573323][ T5384] device bridge1 entered promiscuous mode
[  101.605704][ T4946] device veth0_vlan entered promiscuous mode
[  101.609278][ T4946] device veth1_vlan entered promiscuous mode
[  101.643410][ T4946] device veth0_macvtap entered promiscuous mode
[  101.646137][ T4946] device veth1_macvtap entered promiscuous mode
[  101.651410][ T4946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  101.653564][ T4946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  101.655220][ T4946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  101.656901][ T4946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  101.658510][ T4946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  101.660374][ T4946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  101.662099][ T4946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  101.664029][ T4946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  101.666591][ T4946] batman_adv: batadv0: Interface activated: batadv_slave_0
[  101.669011][ T4946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  101.670761][ T4946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  101.673080][ T4946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  101.674910][ T4946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  101.676636][ T4946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  101.678497][ T4946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  101.711196][ T4946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  101.716741][ T4946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  101.719541][ T4946] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  101.723633][ T4946] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  101.729900][ T4946] batman_adv: batadv0: Interface activated: batadv_slave_1
[  102.035438][ T4718] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.048133][ T1737] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  102.049860][ T1737] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  102.051656][ T1737] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  102.053287][ T1737] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  102.057063][ T1737] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  102.059718][ T1737] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  102.066975][ T1737] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  102.070885][ T4946] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  102.072614][ T4946] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  102.075454][ T4946] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  102.076873][ T4946] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  102.085715][ T1737] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  102.338281][ T5410] loop3: detected capacity change from 0 to 512
[  102.344420][ T5410] EXT4-fs: Ignoring removed mblk_io_submit option
[  102.380078][ T5410] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  102.382847][ T5410] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  102.384524][ T5410] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  102.386194][ T5410] EXT4-fs (loop3): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  102.446521][ T4718] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  102.582250][ T5250] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  102.583612][ T5250] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  102.584976][ T4408] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  102.593090][ T5410] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  102.594426][ T5410] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=e04ce11c, mo2=0000]
[  102.595776][ T5410] EXT4-fs (loop3): failed to initialize system zone (-117)
[  102.597053][ T5410] EXT4-fs (loop3): mount failed
[  102.628972][ T1737] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  102.630284][ T1737] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  102.631601][ T5250] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  102.988063][ T4718] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  103.125309][ T4718] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  104.764304][ T5448] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  104.765877][ T5448] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  104.779671][ T4718] tipc: Left network mode
[  105.155387][ T5456] bridge0: port 2(bridge_slave_1) entered disabled state
[  105.157770][ T5456] bridge0: port 1(bridge_slave_0) entered disabled state
[  105.320240][ T5459] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  105.323240][ T5459] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  105.750236][ T5472] netlink: 72 bytes leftover after parsing attributes in process `syz.0.192'.
[  105.751982][ T5472] netlink: 96 bytes leftover after parsing attributes in process `syz.0.192'.
[  107.460147][ T5483] fuse: Bad value for 'fd'
[  107.508135][ T5489] loop3: detected capacity change from 0 to 256
[  107.885821][ T5496] tipc: Started in network mode
[  107.886775][ T5496] tipc: Node identity 3a, cluster identity 511
[  107.887812][ T5496] tipc: Node number set to 58
[  108.711302][ T5509] loop6: detected capacity change from 0 to 256
[  109.401064][ T5532] loop0: detected capacity change from 0 to 256
[  109.661187][ T5540] loop3: detected capacity change from 0 to 1024
[  110.320044][ T4408] hfsplus: b-tree write err: -5, ino 25
[  110.320204][ T4408] hfsplus: b-tree write err: -5, ino 4
[  110.320301][ T4408] hfsplus: b-tree write err: -5, ino 2
[  110.378088][   T24] libceph: connect (1)[c::]:6789 error -101
[  110.378599][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  110.380397][   T24] libceph: connect (1)[c::]:6789 error -101
[  110.380457][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  110.508490][ T5528] ceph: No mds server is up or the cluster is laggy
[  110.782620][ T5565] loop1: detected capacity change from 0 to 512
[  110.788557][ T5565] EXT4-fs: Ignoring removed mblk_io_submit option
[  110.807930][ T5565] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  110.811328][ T5565] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  110.812904][ T5565] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  110.814537][ T5565] EXT4-fs (loop1): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  110.838615][ T4547] libceph: connect (1)[c::]:6789 error -101
[  110.839666][ T4547] libceph: mon0 (1)[c::]:6789 connect error
[  110.848594][ T5565] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  110.849827][ T5565] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=e04ce11c, mo2=0000]
[  110.851172][ T5565] EXT4-fs (loop1): failed to initialize system zone (-117)
[  110.852369][ T5565] EXT4-fs (loop1): mount failed
[  110.896021][ T4949] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  111.114880][ T5553] loop3: detected capacity change from 0 to 32768
[  111.176620][ T5579] loop5: detected capacity change from 0 to 16
[  111.180528][ T5579] MTD: Attempt to mount non-MTD device "/dev/loop5"
[  111.363503][ T5577] overlayfs: missing 'lowerdir'
[  111.370668][ T5553] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.205 (5553)
[  111.406119][ T5553] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  111.407744][ T5553] BTRFS info (device loop3): using crc32c (crc32c-generic) checksum algorithm
[  111.409213][ T5553] BTRFS info (device loop3): turning off barriers
[  111.410277][ T5553] BTRFS info (device loop3): setting nodatasum
[  111.411272][ T5553] BTRFS info (device loop3): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  111.412830][ T5553] BTRFS info (device loop3): use zstd compression, level 3
[  111.496071][ T5553] BTRFS info (device loop3): using free space tree
[  111.926919][ T5583] loop1: detected capacity change from 0 to 32768
[  112.711593][ T5632] hub 9-0:1.0: USB hub found
[  112.714187][ T5632] hub 9-0:1.0: 8 ports detected
[  112.825802][ T5604] loop5: detected capacity change from 0 to 32768
[  112.828859][ T5604] 
[  112.828859][ T5604]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  112.828859][ T5604] 
[  112.876811][ T4718] device hsr_slave_0 left promiscuous mode
[  112.953404][ T4334] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  112.973584][ T4718] device hsr_slave_1 left promiscuous mode
[  113.127455][ T5643] ERROR: (device loop5): diWrite: ixpxd invalid
[  113.127455][ T5643] 
[  113.145430][ T5643] ERROR: (device loop5): txAbort: 
[  113.145430][ T5643] 
[  113.753781][ T4939] 
[  113.753781][ T4939]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  113.753781][ T4939] 
[  113.784850][ T4718] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  113.786125][ T4718] batman_adv: batadv0: Removing interface: batadv_slave_0
[  113.855025][ T4939] 
[  113.855025][ T4939]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  113.855025][ T4939] 
[  114.471229][ T4718] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  114.472615][ T4718] batman_adv: batadv0: Removing interface: batadv_slave_1
[  114.478605][ T4718] device bridge_slave_1 left promiscuous mode
[  114.485948][ T4718] bridge0: port 2(bridge_slave_1) entered disabled state
[  114.524247][ T4718] device bridge_slave_0 left promiscuous mode
[  114.525359][ T4718] bridge0: port 1(bridge_slave_0) entered disabled state
[  114.912297][ T4718] device veth1_macvtap left promiscuous mode
[  114.919019][ T4718] device veth0_macvtap left promiscuous mode
[  114.978095][ T4718] device veth1_vlan left promiscuous mode
[  115.012565][ T4718] device veth0_vlan left promiscuous mode
[  116.463658][ T5701] loop6: detected capacity change from 0 to 65536
[  116.524195][ T5708] loop3: detected capacity change from 0 to 16
[  116.543790][ T5708] erofs: (device loop3): mounted with root inode @ nid 36.
[  116.636548][ T5708] syz.3.224: attempt to access beyond end of device
[  116.636548][ T5708] loop3: rw=524288, sector=1056, nr_sectors = 16 limit=16
[  116.847280][ T5701] XFS (loop6): Mounting V5 Filesystem
[  116.881419][ T5701] XFS (loop6): Ending clean mount
[  117.629333][ T5730] hub 8-0:1.0: USB hub found
[  117.631163][ T5730] hub 8-0:1.0: 8 ports detected
[  117.989872][ T5735] loop0: detected capacity change from 0 to 256
[  118.035520][ T5735] FAT-fs (loop0): Directory bread(block 64) failed
[  118.038326][ T5735] FAT-fs (loop0): Directory bread(block 65) failed
[  118.039495][ T5735] FAT-fs (loop0): Directory bread(block 66) failed
[  118.041236][ T5735] FAT-fs (loop0): Directory bread(block 67) failed
[  118.044040][ T5735] FAT-fs (loop0): Directory bread(block 68) failed
[  118.045197][ T5735] FAT-fs (loop0): Directory bread(block 69) failed
[  118.046365][ T5735] FAT-fs (loop0): Directory bread(block 70) failed
[  118.053309][ T5735] FAT-fs (loop0): Directory bread(block 71) failed
[  118.054499][ T5735] FAT-fs (loop0): Directory bread(block 72) failed
[  118.055675][ T5735] FAT-fs (loop0): Directory bread(block 73) failed
[  120.722409][ T5770] loop1: detected capacity change from 0 to 16
[  120.731218][ T5770] erofs: (device loop1): mounted with root inode @ nid 36.
[  121.968954][ T5782] Injecting memory failure for pfn 0x1405bf at process virtual address 0x20ffe000
[  122.143416][ T5782] Memory failure: 0x1405bf: recovery action for dirty LRU page: Recovered
[  122.144818][ T5782] Injecting memory failure for pfn 0x1405c0 at process virtual address 0x20fff000
[  122.146613][ T5782] Memory failure: 0x1405c0: recovery action for dirty LRU page: Recovered
[  122.325350][ T5787] hub 8-0:1.0: USB hub found
[  122.326345][ T5787] hub 8-0:1.0: 8 ports detected
[  122.672567][ T4718] team0 (unregistering): Port device team_slave_1 removed
[  123.094421][ T4718] team0 (unregistering): Port device team_slave_0 removed
[  123.296325][ T4718] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  123.655783][ T4718] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  123.672862][ T5799] loop1: detected capacity change from 0 to 4096
[  123.674380][ T5799] ntfs3: Unknown parameter '��������0x00000000000000ba01777777777777777777777q#�`1��a�E�b�n��ja����uy�_~p��'
[  123.706522][ T4949] I/O error, dev loop1, sector 3968 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  124.871715][   T27] audit: type=1326 audit(124.239:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5802 comm="syz.1.244" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff7e977128 code=0x7ffc0000
[  124.875335][   T27] audit: type=1326 audit(124.239:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5802 comm="syz.1.244" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff7e977128 code=0x7ffc0000
[  124.882763][   T27] audit: type=1326 audit(124.248:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5802 comm="syz.1.244" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=275 compat=0 ip=0xffff7e977128 code=0x7ffc0000
[  124.886294][   T27] audit: type=1326 audit(124.248:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5802 comm="syz.1.244" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff7e977128 code=0x7ffc0000
[  124.889496][   T27] audit: type=1326 audit(124.248:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5802 comm="syz.1.244" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff7e977128 code=0x7ffc0000
[  124.989420][   T27] audit: type=1326 audit(124.248:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5802 comm="syz.1.244" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=34 compat=0 ip=0xffff7e977128 code=0x7ffc0000
[  124.995258][   T27] audit: type=1326 audit(124.248:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5802 comm="syz.1.244" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff7e977128 code=0x7ffc0000
[  125.003902][   T27] audit: type=1326 audit(124.248:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5802 comm="syz.1.244" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff7e977128 code=0x7ffc0000
[  125.007346][   T27] audit: type=1326 audit(124.248:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5802 comm="syz.1.244" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=40 compat=0 ip=0xffff7e977128 code=0x7ffc0000
[  125.010735][   T27] audit: type=1326 audit(124.248:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5802 comm="syz.1.244" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff7e977128 code=0x7ffc0000
[  125.489063][ T5807] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  125.721659][ T4718] bond0 (unregistering): Released all slaves
[  126.177841][ T5813] IPv6: ADDRCONF(NETDEV_CHANGE): bpq0: link becomes ready
[  126.179094][ T5656] infiniband syz1: set active
[  126.187158][ T5656] infiniband syz1: added syz_tun
[  126.197687][ T4946] XFS (loop6): Unmounting Filesystem
[  126.234689][ T5656] infiniband syz1: Couldn't open port 1
[  126.275494][ T5813] 8021q: adding VLAN 0 to HW filter on device bond0
[  126.283179][ T5813] bond0: (slave rose0): Enslaving as an active interface with an up link
[  126.286552][ T5810] mkiss: ax0: crc mode is auto.
[  126.294831][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  126.300312][ T5656] RDS/IB: syz1: added
[  126.301114][ T5656] smc: adding ib device syz1 with port count 1
[  126.304728][ T5656] smc:    ib device syz1 port 1 has pnetid 
[  126.317190][ T5813] loop0: detected capacity change from 0 to 512
[  126.349763][ T5813] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  126.454455][ T3084] block nbd1: Attempted send on invalid socket
[  126.455760][ T3084] I/O error, dev nbd1, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  126.458325][ T5823] qnx6: unable to read the first superblock
[  126.460750][ T3084] block nbd1: Attempted send on invalid socket
[  126.461786][ T3084] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  126.463333][ T5823] qnx6: unable to read the first superblock
[  126.464414][ T5823] qnx6: unable to read the first superblock
[  126.684445][ T2060] ieee802154 phy0 wpan0: encryption failed: -22
[  126.685644][ T2060] ieee802154 phy1 wpan1: encryption failed: -22
[  126.737577][ T5828] loop3: detected capacity change from 0 to 512
[  126.738785][ T5813] EXT4-fs (loop0): 1 truncate cleaned up
[  126.741755][ T5813] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  126.818589][ T5828] EXT4-fs warning (device loop3): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  126.830622][ T5828] EXT4-fs warning (device loop3): dx_probe:881: Enable large directory feature to access it
[  126.833288][ T5828] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.249: Corrupt directory, running e2fsck is recommended
[  126.837355][ T5828] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117
[  126.838645][ T5828] EXT4-fs error (device loop3): ext4_iget_extra_inode:4756: inode #15: comm syz.3.249: corrupted in-inode xattr
[  126.857778][ T5828] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.249: couldn't read orphan inode 15 (err -117)
[  126.859964][ T5828] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  127.219555][ T4328] EXT4-fs (loop0): unmounting filesystem.
[  127.346091][ T5828] EXT4-fs warning (device loop3): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  127.348091][ T5828] EXT4-fs warning (device loop3): dx_probe:881: Enable large directory feature to access it
[  127.349567][ T5828] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.249: Corrupt directory, running e2fsck is recommended
[  127.351630][ T5828] EXT4-fs error (device loop3): ext4_readdir:263: inode #2: block 3: comm syz.3.249: path /66/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4294967295, rec_len=17, size=1024 fake=0
[  127.358597][ T5828] EXT4-fs error (device loop3): ext4_readdir:263: inode #2: block 22: comm syz.3.249: path /66/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=0, rec_len=65535, size=1024 fake=0
[  127.362048][ T5828] EXT4-fs error (device loop3): ext4_readdir:263: inode #2: block 8: comm syz.3.249: path /66/file0: bad entry in directory: inode out of bounds - offset=0, inode=16810477, rec_len=1024, size=1024 fake=0
[  128.143503][ T4334] EXT4-fs (loop3): unmounting filesystem.
[  128.205127][ T5850] loop1: detected capacity change from 0 to 164
[  128.419690][ T5863] loop5: detected capacity change from 0 to 128
[  128.902845][ T5863] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  129.005953][ T5863] fscrypt (loop5, inode 12): Direct key flag not allowed with different contents and filenames modes
[  129.818102][ T5870] loop6: detected capacity change from 0 to 40427
[  129.822999][ T5870] F2FS-fs (loop6): Corrupted extension count (64 + 1 > 64)
[  129.824261][ T5870] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  129.830987][ T5870] F2FS-fs (loop6): build fault injection attr: rate: 0, type: 0x216
[  129.839705][ T5870] F2FS-fs (loop6): invalid crc value
[  129.842741][ T5870] F2FS-fs (loop6): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 10241044815247771109)
[  129.853678][ T5870] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  129.854793][ T5870] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  129.880736][ T4939] EXT4-fs (loop5): unmounting filesystem.
[  130.242694][ T3084] block nbd1: Attempted send on invalid socket
[  130.243699][ T3084] I/O error, dev nbd1, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  130.245230][ T5878] qnx6: unable to read the first superblock
[  130.246325][ T3084] block nbd1: Attempted send on invalid socket
[  130.247252][ T3084] I/O error, dev nbd1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  130.248655][ T5878] qnx6: unable to read the first superblock
[  130.249668][ T5878] qnx6: unable to read the first superblock
[  130.962887][ T5857] loop3: detected capacity change from 0 to 32768
[  130.974300][ T5886] loop5: detected capacity change from 0 to 512
[  130.994748][ T5857] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.253 (5857)
[  131.668868][ T5886] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  131.670790][ T5886] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  131.734950][ T5886] EXT4-fs (loop5): Unsupported blocksize for fs-verity
[  131.786996][ T5881] mkiss: ax0: crc mode is auto.
[  131.791863][ T5857] BTRFS error (device loop3): open_ctree failed: -4
[  131.811821][ T5890] loop0: detected capacity change from 0 to 4096
[  131.969291][ T5593] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by udevd (5593)
[  132.968708][ T4326] Bluetooth: hci6: SCO packet for unknown connection handle 0
[  133.245145][ T5924] mkiss: ax0: crc mode is auto.
[  136.773208][ T5958] loop0: detected capacity change from 0 to 128
[  137.455859][ T5972] loop0: detected capacity change from 0 to 512
[  137.468484][ T5972] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[  137.748777][ T5981] tipc: Enabled bearer <udp:syz1>, priority 10
[  138.460151][ T4326] Bluetooth: hci5: Malformed HCI Event
[  139.047124][ T5996] loop3: detected capacity change from 0 to 32768
[  139.085537][ T5983] mkiss: ax0: crc mode is auto.
[  139.111323][ T6011] loop6: detected capacity change from 0 to 8
[  139.114491][ T4379] tipc: Node number set to 2913892648
[  139.146034][ T6011] unable to read inode lookup table
[  139.221220][ T6017] loop0: detected capacity change from 0 to 128
[  139.222645][ T6017] qnx6: invalid mount options.
[  139.240052][ T5996] XFS (loop3): Mounting V5 Filesystem
[  139.262367][ T5905] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  139.295023][ T5996] XFS (loop3): Ending clean mount
[  139.300856][ T6023] loop6: detected capacity change from 0 to 8192
[  139.308443][ T6027] loop0: detected capacity change from 0 to 128
[  139.886243][ T4334] XFS (loop3): Unmounting Filesystem
[  140.040893][ T6044] block device autoloading is deprecated and will be removed.
[  140.682327][ T6063] loop0: detected capacity change from 0 to 512
[  140.683836][ T6063] EXT4-fs: Ignoring removed mblk_io_submit option
[  140.685301][ T6063] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  140.687481][ T6063] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  140.689016][ T6063] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  140.690647][ T6063] EXT4-fs (loop0): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  140.728247][ T6063] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  140.729511][ T6063] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=e04ce11c, mo2=0000]
[  140.730840][ T6063] EXT4-fs (loop0): failed to initialize system zone (-117)
[  140.732048][ T6063] EXT4-fs (loop0): mount failed
[  141.231670][ T4949] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  142.279291][ T6093] loop1: detected capacity change from 0 to 736
[  142.341988][ T6096] loop0: detected capacity change from 0 to 8
[  142.352626][ T6096] SQUASHFS error: Failed to read block 0x6de: -5
[  142.353716][ T6096] SQUASHFS error: Unable to read metadata cache entry [6dc]
[  142.354950][ T6096] SQUASHFS error: Unable to read inode 0x11f
[  142.454219][ T4949] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  142.517017][ T6104] loop3: detected capacity change from 0 to 164
[  142.538179][ T6104] rock: directory entry would overflow storage
[  142.539363][ T6104] rock: sig=0x5053, size=7, remaining=4
[  142.542622][ T6104] isofs_fill_super: root inode is not a directory. Corrupted media?
[  142.543383][ T6106] loop0: detected capacity change from 0 to 1024
[  142.569998][ T6091] loop6: detected capacity change from 0 to 32768
[  142.582369][ T6106] EXT4-fs (loop0): blocks per group (131072) and clusters per group (32) inconsistent
[  142.602281][ T6091] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop6 scanned by syz.6.298 (6091)
[  142.610777][ T6091] BTRFS info (device loop6): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  142.612376][ T6091] BTRFS info (device loop6): using blake2b (blake2b-256-generic) checksum algorithm
[  142.613845][ T6091] BTRFS info (device loop6): enabling auto defrag
[  142.627598][ T6091] BTRFS info (device loop6): turning off barriers
[  142.628697][ T6091] BTRFS info (device loop6): trying to use backup root at mount time
[  142.630030][ T6091] BTRFS info (device loop6): turning on barriers
[  142.631102][ T6091] BTRFS info (device loop6): enabling ssd optimizations
[  142.644662][ T6091] BTRFS info (device loop6): using spread ssd allocation scheme
[  142.645815][ T6091] BTRFS info (device loop6): ignoring data csums
[  142.655471][ T6091] BTRFS info (device loop6): using free space tree
[  142.667214][ T6095] loop1: detected capacity change from 0 to 40427
[  142.699403][ T6095] F2FS-fs (loop1): Fix alignment : done, start(4096) end(16896) block(12288)
[  142.701559][ T6095] F2FS-fs (loop1): invalid crc value
[  142.702530][ T6095] F2FS-fs (loop1): invalid crc value
[  142.703477][ T6095] F2FS-fs (loop1): Failed to get valid F2FS checkpoint
[  142.756753][ T6118] loop3: detected capacity change from 0 to 8192
[  142.759936][ T6118] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  142.762109][ T6118] REISERFS warning (device loop3): sh-2012 read_super_block: found unknown format "65535" of reiserfs with non-standard magic
[  142.773917][ T6119] mkiss: ax0: crc mode is auto.
[  142.781343][ T5045] I/O error, dev loop1, sector 40192 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  142.783208][ T6118] REISERFS warning (device loop3): sh-2021 reiserfs_fill_super: can not find reiserfs on loop3
[  142.835005][ T4458] BTRFS warning (device loop6): checksum verify failed on logical 5337088 mirror 1 wanted 0x324c5e2d0cac2dc8f61cbfdfc8cd69d9816061b1498b9e1bff7d10a59610160b found 0xf8bb6bdef03b64ff3b11a2a87ba7a2aeacfdb41cc49a87adad5cc1644d216b29 level 0
[  142.844094][ T6091] BTRFS error (device loop6): failed to load root extent
[  142.845316][ T6091] BTRFS warning (device loop6): try to load backup roots slot 1
[  142.846993][ T4673] BTRFS warning (device loop6): checksum verify failed on logical 5324800 mirror 1 wanted 0xf9add13dc504a1acd8e35bacb280edb1b2c4b1b19fb24ba4f546d3837af278fd found 0x1ae3bb076c206cf19d5e9f8e9e9d2ac554e51255ca2b23c6d0ae860e710815d8 level 0
[  142.851022][ T6091] BTRFS warning (device loop6): couldn't read tree root
[  142.852148][ T6091] BTRFS warning (device loop6): try to load backup roots slot 2
[  142.854376][ T6091] BTRFS error (device loop6): parent transid verify failed on logical 5255168 mirror 1 wanted 5 found 7
[  142.874776][ T6091] BTRFS warning (device loop6): couldn't read tree root
[  142.875912][ T6091] BTRFS warning (device loop6): try to load backup roots slot 3
[  142.885663][ T4458] BTRFS warning (device loop6): checksum verify failed on logical 5242880 mirror 1 wanted 0xe0c39838a778cb4b4ae28d12b0de3786fb1034ada1f0aafcd193a31f8d89e0b8 found 0x7fbf618fcf5f406b2e8186ffdfc42a8706ced59c3b0a5888ca9e1e922b75c8ae level 0
[  142.889390][ T6091] BTRFS warning (device loop6): couldn't read tree root
[  143.009076][ T6091] BTRFS error (device loop6): open_ctree failed: -22
[  143.023683][ T6147] loop1: detected capacity change from 0 to 512
[  143.025140][ T6147] EXT4-fs: Ignoring removed mblk_io_submit option
[  143.026670][ T6147] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  143.028167][ T6147] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  143.029770][ T6147] EXT4-fs (loop1): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  143.031444][ T6147] EXT4-fs (loop1): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  143.036183][ T6147] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  143.037552][ T6147] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=e04ce11c, mo2=0000]
[  143.038810][ T6147] EXT4-fs (loop1): failed to initialize system zone (-117)
[  143.040023][ T6147] EXT4-fs (loop1): mount failed
[  143.113880][ T4326] Bluetooth: Frame is too long (len 12, expected len 4)
[  143.848318][ T6200] loop3: detected capacity change from 0 to 8192
[  143.877623][ T6200]  loop3: p1 p2 < > p3 p4 < p5 >
[  143.878686][ T6200] loop3: partition table partially beyond EOD, truncated
[  143.879984][ T6200] loop3: p1 size 1342439424 extends beyond EOD, truncated
[  143.882565][ T6200] loop3: p2 start 16384 is beyond EOD, truncated
[  143.887354][ T6200] loop3: p3 start 67108864 is beyond EOD, truncated
[  143.895680][ T6200] loop3: p5 size 1342439424 extends beyond EOD, truncated
[  144.008064][ T4326] Bluetooth: min 0 < 6
[  144.091096][ T5905] udevd[5905]: inotify_add_watch(7, /dev/loop3p5, 10) failed: No such file or directory
[  144.094401][ T5904] udevd[5904]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  144.099244][ T4949] udevd[4949]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[  144.114693][ T6209] loop1: detected capacity change from 0 to 32768
[  144.122704][ T6209] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.326 (6209)
[  144.134676][ T6209] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  144.138687][ T6209] BTRFS info (device loop1): using crc32c (crc32c-generic) checksum algorithm
[  144.142750][ T6209] BTRFS info (device loop1): setting nodatasum
[  144.145023][ T6209] BTRFS error (device loop1): unrecognized thread_pool value 0x7fffffffffffffff
[  144.170929][ T6209] BTRFS error (device loop1): open_ctree failed: -34
[  144.178091][ T6203]  loop0: p1 < > p3 < p5 p6 >
[  144.178859][ T6203] loop0: partition table partially beyond EOD, truncated
[  144.181485][ T6203] loop0: p6 start 2164271104 is beyond EOD, truncated
[  144.182380][ T4325] Bluetooth: hci6: Received unexpected HCI Event 0x00
[  144.234864][ T6217] XFS (loop3): Invalid device [./file0], error=-15
[  144.281561][ T5905] I/O error, dev loop3, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  144.359625][ T6248] EXT4-fs: Ignoring removed bh option
[  144.375863][ T6248] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  144.399548][ T6248] EXT4-fs warning (device loop6): ext4_multi_mount_protect:298: Invalid MMP block in superblock
[  144.407032][ T4949] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by udevd (4949)
[  144.448797][ T4325] Bluetooth: hci4: Malformed HCI Event: 0x22
[  144.499354][ T6261] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  144.502790][ T6261] UDF-fs: error (device loop3): udf_read_inode: (ino 1408) failed !bh
[  144.504287][ T6261] UDF-fs: error (device loop3): udf_fill_super: Error in udf_iget, block=96, partition=0
[  144.942680][ T5904] udevd[5904]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[  144.948795][ T4325] Bluetooth: Unknown BR/EDR signaling command 0xff
[  144.949955][ T4325] Bluetooth: Wrong link type (-22)
[  144.961177][ T5593] udevd[5593]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory
[  144.979675][ T5026] udevd[5026]: inotify_add_watch(7, /dev/loop0p5, 10) failed: No such file or directory
[  145.086385][ T4325] Bluetooth: hci4: ACL packet too small
[  145.343776][ T6294] resize option for remount only
[  145.396543][ T4949] I/O error, dev loop3, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  145.415183][ T6305] affs: No valid root block on device loop1
[  145.436730][ T5904] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  145.471087][ T6297] OCFS2: ERROR (device loop0): int ocfs2_validate_inode_block(struct super_block *, struct buffer_head *): Invalid dinode #71: signature = IN
[  145.473474][ T6297] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  145.475045][ T6297] OCFS2: File system is now read-only.
[  145.475902][ T6297] (syz.0.358,6297,0):ocfs2_read_locked_inode:521 ERROR: status = -30
[  145.488484][ T6297] (syz.0.358,6297,0):_ocfs2_get_system_file_inode:144 ERROR: status = -30
[  145.490197][ T6297] (syz.0.358,6297,0):ocfs2_init_global_system_inodes:461 ERROR: status = -30
[  145.491608][ T6297] (syz.0.358,6297,0):ocfs2_init_global_system_inodes:463 ERROR: Unable to load system inode 4, possibly corrupt fs?
[  145.491635][ T6297] (syz.0.358,6297,0):ocfs2_init_global_system_inodes:472 ERROR: status = -30
[  145.507173][ T6309] MINIX-fs: bad superblock
[  145.508454][ T6297] (syz.0.358,6297,0):ocfs2_initialize_super:2255 ERROR: status = -30
[  145.509768][ T6297] (syz.0.358,6297,0):ocfs2_fill_super:1176 ERROR: status = -30
[  145.632126][ T4949] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  146.141030][ T6333] (syz.1.367,6333,1):ocfs2_fill_super:990 ERROR: superblock probe failed!
[  146.142608][ T6333] (syz.1.367,6333,1):ocfs2_fill_super:1176 ERROR: status = -22
[  146.202408][ T6332] EXT4-fs: Ignoring removed mblk_io_submit option
[  146.267695][ T6332] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  146.286815][ T6332] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  146.288587][ T6332] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  146.290434][ T6332] EXT4-fs (loop0): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  146.346951][ T6332] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  146.348395][ T6332] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=e04ce11c, mo2=0000]
[  146.349711][ T6332] EXT4-fs (loop0): failed to initialize system zone (-117)
[  146.351099][ T6332] EXT4-fs (loop0): mount failed
[  146.968802][ T6348] netlink: 'syz.6.373': attribute type 1 has an invalid length.
[  147.252296][ T4325] Bluetooth: hci4: command 0x201b tx timeout
[  147.364317][ T6356] F2FS-fs (loop0): Corrupted extension count (64 + 1 > 64)
[  147.365526][ T6356] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  147.377741][ T6356] F2FS-fs (loop0): build fault injection attr: rate: 0, type: 0x216
[  147.380788][ T6356] F2FS-fs (loop0): invalid crc value
[  147.686171][ T6356] F2FS-fs (loop0): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 10241044815247771109)
[  147.738656][ T6356] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  147.739812][ T6356] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  147.995612][ T6355] set_capacity_and_notify: 11 callbacks suppressed
[  147.995622][ T6355] loop3: detected capacity change from 0 to 64
[  148.287801][ T6376] loop3: detected capacity change from 0 to 512
[  148.388339][ T6376] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  148.764022][ T6352] loop1: detected capacity change from 0 to 65536
[  148.864081][ T6352] XFS (loop1): Mounting V5 Filesystem
[  148.866715][ T6394] tipc: Started in network mode
[  148.867573][ T6394] tipc: Node identity c2469003f34c, cluster identity 4711
[  148.868771][ T6394] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  148.871538][ T6394] device syzkaller0 entered promiscuous mode
[  148.893007][ T6352] XFS (loop1): Metadata corruption detected at xfs_inode_buf_verify+0x3b8/0x4e0, xfs_inode block 0x20 xfs_inode_buf_verify
[  148.895208][ T6352] XFS (loop1): Unmount and run xfs_repair
[  148.896478][ T6352] XFS (loop1): First 128 bytes of corrupted metadata buffer:
[  148.943356][ T6352] 00000000: 49 00 04 00 00 00 00 00 00 00 00 00 00 00 00 00  I...............
[  148.983515][ T6352] 00000010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  149.041538][ T6352] 00000020: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  149.099039][ T6352] 00000030: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  149.162353][ T6352] 00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  149.260420][ T6352] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  149.264723][ T6352] 00000060: ff ff ff ff 74 df 7b 1b 00 00 00 00 00 00 00 00  ....t.{.........
[  149.266053][ T6406] loop6: detected capacity change from 0 to 128
[  149.266077][ T6352] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  149.268858][ T6352] XFS (loop1): metadata I/O error in "xfs_imap_to_bp+0xfc/0x170" at daddr 0x20 len 32 error 117
[  149.273335][ T6394] tipc: Resetting bearer <eth:syzkaller0>
[  149.276896][ T6352] XFS (loop1): Failed to read root inode 0x20, error 117
[  149.287081][ T6406] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  149.293576][ T4326] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  149.294335][ T6406] UDF-fs: error (device loop6): udf_process_sequence: Primary Volume Descriptor not found!
[  149.295582][ T4326] Bluetooth: hci2: Injecting HCI hardware error event
[  149.296705][ T6406] UDF-fs: error (device loop6): udf_process_sequence: Primary Volume Descriptor not found!
[  149.298579][ T4325] Bluetooth: hci2: hardware error 0x00
[  149.299243][ T6406] UDF-fs: Scanning with blocksize 512 failed
[  149.317803][ T6391] tipc: Resetting bearer <eth:syzkaller0>
[  149.322638][ T6406] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  149.331940][ T6406] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=512, location=512
[  149.333544][ T6406] UDF-fs: warning (device loop6): udf_load_vrs: No anchor found
[  149.339024][ T6406] UDF-fs: Scanning with blocksize 1024 failed
[  149.340424][ T6406] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  149.349383][ T6406] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=512, location=512
[  149.350975][ T6406] UDF-fs: warning (device loop6): udf_load_vrs: No anchor found
[  149.355573][ T6406] UDF-fs: Scanning with blocksize 2048 failed
[  149.378265][ T6406] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  149.384473][ T6406] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=512, location=512
[  149.385993][ T6406] UDF-fs: warning (device loop6): udf_load_vrs: No anchor found
[  149.387186][ T6406] UDF-fs: Scanning with blocksize 4096 failed
[  149.388150][ T6406] UDF-fs: warning (device loop6): udf_fill_super: No partition found (1)
[  149.401639][ T6391] tipc: Disabling bearer <eth:syzkaller0>
[  149.497943][ T6414] loop6: detected capacity change from 0 to 4096
[  149.500713][ T6414] __ntfs_warning: 10 callbacks suppressed
[  149.500723][ T6414] ntfs: (device loop6): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  149.509829][ T6418] loop0: detected capacity change from 0 to 4096
[  149.512099][ T6418] ntfs3: loop0: Different NTFS' sector size (2048) and media sector size (512)
[  149.519467][ T6414] ntfs: (device loop6): ntfs_is_extended_system_file(): Non-resident file name. You should run chkdsk.
[  149.521137][ T6414] ntfs: (device loop6): ntfs_read_locked_inode(): $DATA attribute is missing.
[  149.522600][ T6414] ntfs: (device loop6): ntfs_read_locked_inode(): Failed with error code -2.  Marking corrupt inode 0x1 as bad.  Run chkdsk.
[  149.524833][ T6414] ntfs: (device loop6): load_system_files(): Failed to load $MFTMirr.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  149.553811][ T6414] ntfs: volume version 3.1.
[  149.572910][ T6414] ntfs: (device loop6): ntfs_attr_find(): Inode is corrupt.  Run chkdsk.
[  149.575017][ T6414] ntfs: (device loop6): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0x40 as bad.  Run chkdsk.
[  151.066480][ T4326] Bluetooth: hci4: command 0x0406 tx timeout
[  151.277643][ T6449] loop1: detected capacity change from 0 to 512
[  151.279520][ T6449] EXT4-fs: Ignoring removed bh option
[  151.288241][ T6449] EXT4-fs: Ignoring removed mblk_io_submit option
[  151.292185][ T6449] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[  151.299145][ T6449] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  151.300912][ T6449] EXT4-fs (loop1): orphan cleanup on readonly fs
[  151.315670][ T6449] Quota error (device loop1): do_insert_tree: Free block already used in tree: block 4
[  151.322582][ T6449] Quota error (device loop1): qtree_write_dquot: Error -5 occurred while creating quota
[  151.330209][ T6449] EXT4-fs error (device loop1): ext4_acquire_dquot:6835: comm syz.1.401: Failed to acquire dquot type 1
[  151.336467][ T6449] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:477: comm syz.1.401: Invalid block bitmap block 0 in block_group 0
[  151.340400][ T6449] Quota error (device loop1): write_blk: dquota write failed
[  151.341758][ T6449] EXT4-fs error (device loop1): ext4_acquire_dquot:6835: comm syz.1.401: Failed to acquire dquot type 1
[  151.344659][ T6449] EXT4-fs error (device loop1): ext4_acquire_dquot:6835: comm syz.1.401: Failed to acquire dquot type 1
[  151.348949][ T6449] EXT4-fs (loop1): 1 orphan inode deleted
[  151.356836][ T6449] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  151.372139][ T6433] loop0: detected capacity change from 0 to 32768
[  151.380978][ T6433] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop0 scanned by syz.0.398 (6433)
[  151.391162][ T6433] BTRFS info (device loop0): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  151.392844][ T6433] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm
[  151.394328][ T6433] BTRFS info (device loop0): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  151.396323][ T4321] EXT4-fs (loop1): unmounting filesystem.
[  151.405599][ T6433] BTRFS info (device loop0): use zstd compression, level 3
[  151.406908][ T6433] BTRFS info (device loop0): using free space tree
[  151.430425][ T4336] Bluetooth: hci5: command 0x0406 tx timeout
[  151.537944][ T6452] loop3: detected capacity change from 0 to 32768
[  151.583671][ T6452] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  151.585387][ T6452] BTRFS info (device loop3): using sha256 (sha256-ce) checksum algorithm
[  151.586962][ T6452] BTRFS info (device loop3): using free space tree
[  151.592828][ T6471] loop6: detected capacity change from 0 to 4096
[  151.594634][ T6471] ntfs3: loop6: Different NTFS' sector size (2048) and media sector size (512)
[  151.601388][ T4325] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  151.629669][ T4442] BTRFS error (device loop0): bad fsid on logical 5312512 mirror 1
[  151.631108][ T6433] BTRFS error (device loop0: state C): failed to load root csum
[  151.684895][ T6456] 
[  151.684895][ T6456]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  151.684895][ T6456] 
[  151.710972][ T6456] jfs_lookup: dtSearch returned -5
[  151.736420][ T6433] BTRFS error (device loop0: state C): open_ctree failed: -22
[  151.846414][ T4321] 
[  151.846414][ T4321]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  151.846414][ T4321] 
[  151.852705][ T4321] 
[  151.852705][ T4321]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  151.852705][ T4321] 
[  151.854519][ T5904] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop0 scanned by udevd (5904)
[  151.868336][ T6452] BTRFS info (device loop3): enabling ssd optimizations
[  151.936394][ T4334] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  152.049219][ T6524] EXT4-fs: Ignoring removed nobh option
[  152.149265][ T6524] EXT4-fs error (device loop1): ext4_do_update_inode:5272: inode #16: comm syz.1.413: corrupted inode contents
[  152.177398][ T4949] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 9 /dev/loop3 scanned by udevd (4949)
[  152.186617][ T6524] EXT4-fs (loop1): Remounting filesystem read-only
[  152.187718][ T6524] EXT4-fs error (device loop1): ext4_dirty_inode:6137: inode #16: comm syz.1.413: mark_inode_dirty error
[  152.213182][ T6524] EXT4-fs (loop1): Remounting filesystem read-only
[  152.214606][ T6524] EXT4-fs error (device loop1): ext4_do_update_inode:5272: inode #16: comm syz.1.413: corrupted inode contents
[  152.234729][ T6524] EXT4-fs (loop1): Remounting filesystem read-only
[  152.235801][ T6524] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #16: comm syz.1.413: mark_inode_dirty error
[  152.244258][ T6524] EXT4-fs (loop1): Remounting filesystem read-only
[  152.245313][ T6524] EXT4-fs error (device loop1): ext4_do_update_inode:5272: inode #16: comm syz.1.413: corrupted inode contents
[  152.263283][ T6524] EXT4-fs (loop1): Remounting filesystem read-only
[  152.266441][ T6524] EXT4-fs error (device loop1) in ext4_orphan_del:303: Corrupt filesystem
[  152.270079][ T6535] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[  152.279062][ T6524] EXT4-fs (loop1): Remounting filesystem read-only
[  152.280085][ T6524] EXT4-fs error (device loop1): ext4_do_update_inode:5272: inode #16: comm syz.1.413: corrupted inode contents
[  152.282436][ T6524] EXT4-fs (loop1): Remounting filesystem read-only
[  152.283528][ T6524] EXT4-fs error (device loop1): ext4_truncate:4318: inode #16: comm syz.1.413: mark_inode_dirty error
[  152.296046][ T6524] EXT4-fs (loop1): Remounting filesystem read-only
[  152.297167][ T6524] EXT4-fs error (device loop1) in ext4_process_orphan:345: Corrupt filesystem
[  152.299717][ T6524] EXT4-fs (loop1): Remounting filesystem read-only
[  152.304556][ T6524] EXT4-fs (loop1): 1 truncate cleaned up
[  152.305518][ T6524] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  152.320343][ T5473] EXT4-fs error (device loop1): ext4_release_dquot:6871: comm kworker/u4:17: Failed to release dquot type 1
[  152.324319][ T5473] EXT4-fs (loop1): Remounting filesystem read-only
[  152.330108][ T6524] EXT4-fs error (device loop1): ext4_empty_dir:3177: inode #12: block 13: comm syz.1.413: bad entry in directory: inode out of bounds - offset=24, inode=33554445, rec_len=16, size=4096 fake=0
[  152.349685][ T6524] EXT4-fs (loop1): Remounting filesystem read-only
[  152.395633][ T4321] EXT4-fs (loop1): unmounting filesystem.
[  152.400592][ T5473] EXT4-fs error (device loop1): ext4_release_dquot:6871: comm kworker/u4:17: Failed to release dquot type 1
[  152.402833][ T5473] EXT4-fs (loop1): Remounting filesystem read-only
[  152.519299][ T4442] hfsplus: b-tree write err: -5, ino 25
[  152.520294][ T4442] hfsplus: b-tree write err: -5, ino 4
[  152.521269][ T4442] hfsplus: b-tree write err: -5, ino 2
[  152.662613][ T6545] XFS (loop6): Mounting V5 Filesystem
[  152.687999][ T6545] XFS (loop6): Ending clean mount
[  152.699134][ T6545] XFS (loop6): Quotacheck needed: Please wait.
[  152.731600][ T6551] (syz.1.421,6551,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  152.748016][ T6551] (syz.1.421,6551,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  152.758171][ T6545] XFS (loop6): Quotacheck: Done.
[  152.763279][ T6551] JBD2: Ignoring recovery information on journal
[  152.821012][ T4946] XFS (loop6): Unmounting Filesystem
[  152.824812][ T6551] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  152.912788][ T4321] ocfs2: Unmounting device (7,1) on (node local)
[  152.927866][ T6571] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512)
[  153.390350][ T6585] set_capacity_and_notify: 6 callbacks suppressed
[  153.390373][ T6585] loop1: detected capacity change from 0 to 128
[  154.410775][ T5959] kworker/u4:20: attempt to access beyond end of device
[  154.410775][ T5959] loop1: rw=1, sector=145, nr_sectors = 896 limit=128
[  155.070825][ T6600] syz.1.436 (6600): drop_caches: 2
[  155.543056][ T6588] loop3: detected capacity change from 0 to 32768
[  155.545373][ T6588] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop3 scanned by syz.3.434 (6588)
[  155.548432][ T6588] BTRFS info (device loop3): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  155.550172][ T6588] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm
[  155.551724][ T6588] BTRFS info (device loop3): force zlib compression, level 3
[  155.552857][ T6588] BTRFS info (device loop3): turning on flush-on-commit
[  155.553984][ T6588] BTRFS info (device loop3): max_inline at 4096
[  155.554988][ T6588] BTRFS info (device loop3): using free space tree
[  156.073192][ T6593] loop0: detected capacity change from 0 to 32768
[  156.076697][ T6593] (syz.0.435,6593,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  156.079084][ T6593] (syz.0.435,6593,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  156.084201][ T6593] JBD2: Ignoring recovery information on journal
[  156.106708][ T6617] usb usb8: usbfs: process 6617 (syz.1.438) did not claim interface 0 before use
[  156.149436][ T6623] loop1: detected capacity change from 0 to 128
[  156.153250][ T6593] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  156.181574][ T6593] (syz.0.435,6593,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x98842a5e, computed 0xe74db1cd. Applying ECC.
[  156.249186][ T6593] (syz.0.435,6593,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x1cec3d0f, computed 0xd2ffbdfe. Applying ECC.
[  156.306812][ T4328] ocfs2: Unmounting device (7,0) on (node local)
[  156.427156][ T6650] loop6: detected capacity change from 0 to 8
[  156.449365][ T6650] SQUASHFS error: Unable to read inode 0x11f
[  156.673614][ T6658] loop1: detected capacity change from 0 to 512
[  156.687562][ T6588] BTRFS info (device loop3): enabling ssd optimizations
[  156.692818][ T5045] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  156.717256][ T6658] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  156.830461][ T4321] EXT4-fs (loop1): unmounting filesystem.
[  156.878941][ T4334] BTRFS info (device loop3): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[  157.011762][ T6682] syz.0.448 (6682): drop_caches: 2
[  157.873018][ T5904] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 10 /dev/loop3 scanned by udevd (5904)
[  157.881354][ T6693] loop6: detected capacity change from 0 to 256
[  157.882820][ T6693] FAT-fs (loop6): Unrecognized mount option "shortname����+s�=lower" or missing value
[  158.080927][ T5905] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  158.412735][ T6686] loop6: detected capacity change from 0 to 8192
[  158.429342][ T6686] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  158.614543][ T6719] binder: 6718:6719 tried to acquire reference to desc 0, got 1 instead
[  158.622157][ T6719] binder_alloc: 6718: pid 6718 spamming oneway? 2 buffers allocated for a total size of 5120
[  158.627556][ T6719] binder_alloc: 6718: pid 6718 spamming oneway? 3 buffers allocated for a total size of 5128
[  158.639507][ T6149] binder: undelivered TRANSACTION_COMPLETE
[  158.640417][ T6149] binder: undelivered TRANSACTION_COMPLETE
[  158.641301][ T6149] binder: undelivered TRANSACTION_COMPLETE
[  158.661500][ T6149] binder: undelivered transaction 53, process died.
[  158.662551][ T6149] binder: undelivered transaction 54, process died.
[  158.663661][ T6149] binder: undelivered transaction 52, process died.
[  158.771365][ T6698] loop1: detected capacity change from 0 to 40427
[  158.774857][ T6698] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  158.777245][ T6698] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  158.809977][ T6698] F2FS-fs (loop1): Found nat_bits in checkpoint
[  159.167464][ T6698] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  159.168621][ T6698] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  159.305442][ T4321] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  159.305461][ T4321] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  159.310489][ T4321] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  159.311797][ T4321] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  159.318140][ T4321] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  159.320618][ T4321] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  159.321800][ T4321] F2FS-fs (loop1): invalid namelen(0), ino:0, run fsck to fix.
[  159.831987][ T6768] loop6: detected capacity change from 0 to 512
[  159.890905][ T6768] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  159.963521][ T4946] EXT4-fs (loop6): unmounting filesystem.
[  160.009234][ T6748] loop0: detected capacity change from 0 to 32768
[  160.043410][ T6748] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  160.044814][ T6748] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  160.080505][ T6748] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error
[  160.080505][ T6748]   inode = 3 2073
[  160.080505][ T6748]   function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 464
[  160.085971][ T6748] gfs2: fsid=syz:syz.0: G:  s:SH n:2/819 f:qobnN t:SH d:EX/0 a:0 v:0 r:3 m:20 p:1
[  160.093171][ T6748] gfs2: fsid=syz:syz.0:  H: s:SH f:H e:0 p:6748 [syz.0.459] init_inodes+0xe0/0x2d4
[  160.094768][ T6748] gfs2: fsid=syz:syz.0:  I: n:3/2073 t:4 f:0x00 d:0x00000000 s:0 p:0
[  160.096144][ T6748] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  160.105513][ T6748] gfs2: fsid=syz:syz.0: File system withdrawn
[  160.106368][ T6748] CPU: 0 PID: 6748 Comm: syz.0.459 Not tainted syzkaller #0
[  160.107477][ T6748] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026
[  160.109241][ T6748] Call trace:
[  160.109849][ T6748]  dump_backtrace+0x1c0/0x1ec
[  160.110698][ T6748]  show_stack+0x2c/0x3c
[  160.111421][ T6748]  __dump_stack+0x30/0x40
[  160.112127][ T6748]  dump_stack_lvl+0xf4/0x15c
[  160.112832][ T6748]  dump_stack+0x1c/0x5c
[  160.113527][ T6748]  gfs2_withdraw+0xfa4/0x1390
[  160.114350][ T6748]  gfs2_consist_inode_i+0xf0/0x10c
[  160.115252][ T6748]  gfs2_inode_refresh+0x918/0xd64
[  160.116015][ T6748]  inode_go_instantiate+0x4c/0x68
[  160.116847][ T6748]  gfs2_instantiate+0x178/0x2b4
[  160.117626][ T6748]  gfs2_glock_wait+0x1b4/0x298
[  160.118388][ T6748]  gfs2_glock_nq+0x8bc/0x11c4
[  160.119192][ T6748]  init_journal+0x27c/0x1e94
[  160.119977][ T6748]  init_inodes+0xe0/0x2d4
[  160.120652][ T6748]  gfs2_fill_super+0x11c0/0x194c
[  160.121467][ T6748]  get_tree_bdev+0x358/0x544
[  160.122318][ T6748]  gfs2_get_tree+0x54/0x1b4
[  160.123077][ T6748]  vfs_get_tree+0x90/0x274
[  160.123737][ T6748]  do_new_mount+0x228/0x810
[  160.124102][ T6690] loop3: detected capacity change from 0 to 131072
[  160.124444][ T6748]  path_mount+0x5bc/0xe80
[  160.126192][ T6748]  __arm64_sys_mount+0x49c/0x59c
[  160.126951][ T6748]  invoke_syscall+0x98/0x2b4
[  160.127799][ T6748]  el0_svc_common+0x138/0x258
[  160.128549][ T6748]  do_el0_svc+0x58/0x130
[  160.129251][ T6748]  el0_svc+0x58/0x128
[  160.129976][ T6748]  el0t_64_sync_handler+0x84/0xf0
[  160.130840][ T6748]  el0t_64_sync+0x18c/0x190
[  160.142219][ T6690] F2FS-fs (loop3): Test dummy encryption mode enabled
[  160.147867][ T6690] F2FS-fs (loop3): invalid crc value
[  160.171730][ T6748] gfs2: fsid=syz:syz.0: can't read journal index: -5
[  160.177581][ T6690] F2FS-fs (loop3): Found nat_bits in checkpoint
[  160.207215][ T6772] loop1: detected capacity change from 0 to 40427
[  160.211136][ T6690] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  160.218134][ T6772] F2FS-fs (loop1): invalid crc value
[  160.223561][ T6772] F2FS-fs (loop1): Found nat_bits in checkpoint
[  160.298784][ T6772] F2FS-fs (loop1): Start checkpoint disabled!
[  160.308736][ T6772] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  160.546084][ T6807] syz.1.462: attempt to access beyond end of device
[  160.546084][ T6807] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  160.835651][ T6808] syz.0.468 (6808): drop_caches: 2
[  161.939622][ T6816] binder: 6813:6816 tried to acquire reference to desc 0, got 1 instead
[  161.942270][ T6816] binder_alloc: 6813: pid 6813 spamming oneway? 2 buffers allocated for a total size of 5120
[  161.944720][ T6816] binder_alloc: 6813: pid 6813 spamming oneway? 3 buffers allocated for a total size of 5128
[  161.947817][ T5652] binder: undelivered TRANSACTION_COMPLETE
[  161.948723][ T5652] binder: undelivered TRANSACTION_COMPLETE
[  161.949688][ T5652] binder: undelivered TRANSACTION_COMPLETE
[  161.962433][ T6485] binder: undelivered transaction 60, process died.
[  162.076359][ T1737] kworker/u4:5: attempt to access beyond end of device
[  162.076359][ T1737] loop1: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  162.112007][ T6824] mkiss: ax0: crc mode is auto.
[  162.483275][ T6847] loop3: detected capacity change from 0 to 128
[  162.483765][ T6846] binder: 6844:6846 tried to acquire reference to desc 0, got 1 instead
[  162.492510][ T6839] MPTCP: addr_signal error, rm_addr=1
[  162.492547][ T6839] MPTCP: addr_signal error, rm_addr=1
[  162.876719][ T6846] binder: 6844:6846 ioctl c0306201 20000c00 returned -14
[  163.623784][ T6880] loop0: detected capacity change from 0 to 8
[  163.655079][ T6880] SQUASHFS error: Unable to read inode 0x11f
[  164.639460][ T4949] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  164.829868][ T6901] loop0: detected capacity change from 0 to 64
[  164.836141][ T6901] MINIX-fs: mounting unchecked file system, running fsck is recommended
[  164.992230][ T6909] syz.1.486 (6909): drop_caches: 2
[  165.056141][ T6919] loop6: detected capacity change from 0 to 24
[  165.070053][ T6890] loop3: detected capacity change from 0 to 40427
[  165.116885][ T6890] F2FS-fs (loop3): invalid crc value
[  165.150015][ T6919] romfs: read error for inode 0x8000
[  165.156187][ T6890] F2FS-fs (loop3): Found nat_bits in checkpoint
[  165.191255][ T6890] F2FS-fs (loop3): Start checkpoint disabled!
[  165.201087][ T6890] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  166.274419][ T6940] syz.3.487: attempt to access beyond end of device
[  166.274419][ T6940] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  166.685993][ T5741] kworker/u4:19: attempt to access beyond end of device
[  166.685993][ T5741] loop3: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  167.415162][ T6958] tipc: Started in network mode
[  167.416118][ T6958] tipc: Node identity 3aee97ea0ad4, cluster identity 4711
[  167.420293][ T6958] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  167.423796][ T6958] device syzkaller0 entered promiscuous mode
[  167.505890][ T6958] tipc: Resetting bearer <eth:syzkaller0>
[  167.509477][ T6962] device syzkaller0 entered promiscuous mode
[  167.661993][ T6957] tipc: Resetting bearer <eth:syzkaller0>
[  168.330599][ T6957] tipc: Disabling bearer <eth:syzkaller0>
[  169.001679][ T7005] loop3: detected capacity change from 0 to 128
[  169.008770][ T7005] ext4: Unknown parameter 'noacl'
[  169.599888][ T7014] netlink: 4 bytes leftover after parsing attributes in process `syz.6.506'.
[  169.922020][ T7033] device syzkaller0 entered promiscuous mode
[  169.968431][ T7039] binder: 7038:7039 tried to acquire reference to desc 0, got 1 instead
[  171.259191][ T4369] binder_debug: 7 callbacks suppressed
[  171.259203][ T4369] binder: release 7038:7039 transaction 72 out, still active
[  171.380458][ T7064] netlink: 4 bytes leftover after parsing attributes in process `syz.3.513'.
[  171.771101][ T4369] binder: undelivered TRANSACTION_COMPLETE
[  171.773162][ T4369] binder: send failed reply for transaction 79 to 7038:7051
[  171.787370][ T4369] binder: undelivered TRANSACTION_COMPLETE
[  171.793241][ T4369] binder: undelivered TRANSACTION_ERROR: 29189
[  171.805605][ T4369] binder: send failed reply for transaction 72, target dead
[  173.490471][ T7095] loop0: detected capacity change from 0 to 512
[  173.491953][ T7095] EXT4-fs: Ignoring removed mblk_io_submit option
[  173.597173][ T7095] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  173.599732][ T7095] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  173.601234][ T7095] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  173.602982][ T7095] EXT4-fs (loop0): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  173.673133][ T7095] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  173.674584][ T7095] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=e04ce11c, mo2=0000]
[  173.676141][ T7095] EXT4-fs (loop0): failed to initialize system zone (-117)
[  173.677760][ T7095] EXT4-fs (loop0): mount failed
[  174.942757][ T4379] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0
[  174.946195][ T4379] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0
[  174.951935][ T4379] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0
[  174.954241][ T4379] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0
[  174.956665][ T4379] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0
[  174.960071][ T4379] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0
[  174.963356][ T4379] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0
[  174.965463][ T4379] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0
[  174.966764][ T4379] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0
[  174.968125][ T7112] mkiss: ax0: crc mode is auto.
[  174.968917][ T4379] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0
[  174.970866][ T4379] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0
[  174.972628][ T4379] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0
[  174.974882][ T4379] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0
[  174.976186][ T4379] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0
[  174.977501][ T4379] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0
[  174.978760][ T4379] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0
[  174.980025][ T4379] hid-generic 0006:0004:0009.0002: unknown main item tag 0x0
[  174.981832][ T4379] hid-generic 0006:0004:0009.0002: hidraw0: VIRTUAL HID v0.04 Device [syz1] on syz0
[  174.997198][ T7111] loop0: detected capacity change from 0 to 32768
[  175.269481][ T7101] loop3: detected capacity change from 0 to 32768
[  175.320110][ T7119] netlink: 76 bytes leftover after parsing attributes in process `syz.1.527'.
[  175.357198][ T7119] device syzkaller0 entered promiscuous mode
[  177.071127][ T7142] loop3: detected capacity change from 0 to 128
[  177.311218][ T5904] udevd[5904]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[  177.332857][ T5904] udevd[5904]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[  177.481421][ T7146] loop1: detected capacity change from 0 to 256
[  179.123358][ T7146] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  179.125136][ T7146] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[  179.142928][ T7146] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  179.178441][ T5904] udevd[5904]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[  179.181675][ T5904] udevd[5904]: inotify_add_watch(7, /dev/loop0, 10) failed: No such file or directory
[  179.270036][ T7150] binder: 7149:7150 tried to acquire reference to desc 0, got 1 instead
[  179.277334][ T7150] binder: 7149:7150 got transaction with invalid data ptr
[  179.283202][ T7150] binder: 7149:7150 transaction call to 7149:0 failed 84/29201/-14, size 0-12288 line 3333
[  179.590942][ T7150] syz.3.533 (7150): drop_caches: 2
[  179.592683][ T7150] syz.3.533 (7150): drop_caches: 2
[  179.607167][ T5652] binder: undelivered TRANSACTION_ERROR: 29201
[  182.283617][ T7179] netlink: 'syz.3.541': attribute type 10 has an invalid length.
[  183.218419][ T7179] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  185.745622][ T7217] loop3: detected capacity change from 0 to 512
[  185.751487][ T7217] EXT4-fs: Ignoring removed mblk_io_submit option
[  185.838607][ T7217] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  185.841618][ T7217] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  185.843216][ T7217] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  185.844881][ T7217] EXT4-fs (loop3): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  185.906502][ T7217] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  185.907933][ T7217] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=e04ce11c, mo2=0000]
[  185.909315][ T7217] EXT4-fs (loop3): failed to initialize system zone (-117)
[  185.910547][ T7217] EXT4-fs (loop3): mount failed
[  186.132439][ T7221] loop6: detected capacity change from 0 to 512
[  186.258561][ T7221] EXT4-fs: Invalid want_extra_isize 16494
[  186.348431][ T4949] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  186.572369][   T27] kauditd_printk_skb: 5 callbacks suppressed
[  186.572426][   T27] audit: type=1326 audit(181.997:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7222 comm="syz.5.552" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff8ab77128 code=0x0
[  187.772463][ T7232] mkiss: ax0: crc mode is auto.
[  188.668927][ T7234] loop3: detected capacity change from 0 to 256
[  188.673734][ T7234] FAT-fs (loop3): Unrecognized mount option "shortname����+s�=lower" or missing value
[  188.756323][ T7234] loop3: detected capacity change from 0 to 8192
[  188.919916][ T7234] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  188.986616][ T7242] mkiss: ax0: crc mode is auto.
[  190.485983][ T7262] loop6: detected capacity change from 0 to 512
[  190.487433][ T7262] EXT4-fs: Ignoring removed mblk_io_submit option
[  190.494393][ T7262] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  190.495891][ T7262] EXT4-fs (loop6): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  190.497369][ T7262] EXT4-fs (loop6): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  190.498944][ T7262] EXT4-fs (loop6): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  190.540138][ T7262] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  190.541430][ T7262] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=e04ce11c, mo2=0000]
[  190.542771][ T7262] EXT4-fs (loop6): failed to initialize system zone (-117)
[  190.544020][ T7262] EXT4-fs (loop6): mount failed
[  190.856059][ T7267] syz.1.561 (7267): drop_caches: 2
[  191.710046][ T7278] loop6: detected capacity change from 0 to 32768
[  191.722019][ T7278] BTRFS info (device loop6): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  191.724857][ T7278] BTRFS info (device loop6): using crc32c (crc32c-generic) checksum algorithm
[  191.737455][ T7278] BTRFS info (device loop6): using free space tree
[  192.315446][ T2060] ieee802154 phy0 wpan0: encryption failed: -22
[  192.316492][ T2060] ieee802154 phy1 wpan1: encryption failed: -22
[  192.453604][ T7278] BTRFS info (device loop6): enabling ssd optimizations
[  193.963739][ T4946] BTRFS info (device loop6): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  194.707881][ T7320] mkiss: ax0: crc mode is auto.
[  195.879688][ T7323] loop6: detected capacity change from 0 to 8192
[  195.984786][ T7323] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  195.987150][ T7323] REISERFS (device loop6): found reiserfs format "3.6" with non-standard journal
[  195.988537][ T7323] REISERFS (device loop6): using ordered data mode
[  195.989552][ T7323] reiserfs: using flush barriers
[  195.996353][ T7323] REISERFS (device loop6): journal params: device loop6, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  196.012895][ T7323] REISERFS (device loop6): checking transaction log (loop6)
[  196.145837][ T7332] loop3: detected capacity change from 0 to 8
[  196.165399][ T7332] SQUASHFS error: Unable to read inode 0x11f
[  196.866690][ T7323] REISERFS (device loop6): Using tea hash to sort names
[  196.872879][ T7323] REISERFS warning (device loop6): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[  196.883411][ T7323] REISERFS (device loop6): Created .reiserfs_priv - reserved for xattr storage.
[  198.056553][ T7323] overlayfs: missing 'lowerdir'
[  198.440145][ T7349] device bridge1 entered promiscuous mode
[  200.000513][ T4325] Bluetooth: hci5: command 0x0406 tx timeout
[  200.573897][ T7371] mkiss: ax0: crc mode is auto.
[  204.477048][ T7390] mkiss: ax0: crc mode is auto.
[  204.494536][ T7391] loop3: detected capacity change from 0 to 8
[  204.535937][ T7391] SQUASHFS error: Unable to read inode 0x11f
[  205.689922][ T7400] loop3: detected capacity change from 0 to 512
[  205.732949][ T7400] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  205.734960][ T7400] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  205.759946][ T7400] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:477: comm syz.3.592: Invalid block bitmap block 0 in block_group 0
[  205.762528][ T7400] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6179: Corrupt filesystem
[  205.764028][ T7400] EXT4-fs error (device loop3): ext4_clear_blocks:883: inode #11: comm syz.3.592: attempt to clear invalid blocks 983261 len 1
[  205.766310][ T7400] EXT4-fs error (device loop3): __ext4_get_inode_loc:4513: comm syz.3.592: Invalid inode table block 0 in block_group 0
[  205.775917][ T7400] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5933: Corrupt filesystem
[  205.777584][ T7400] EXT4-fs error (device loop3) in ext4_orphan_del:303: Corrupt filesystem
[  205.782798][ T7400] EXT4-fs error (device loop3): __ext4_get_inode_loc:4513: comm syz.3.592: Invalid inode table block 0 in block_group 0
[  205.785156][ T7400] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5933: Corrupt filesystem
[  205.878834][ T7400] EXT4-fs error (device loop3): ext4_truncate:4318: inode #11: comm syz.3.592: mark_inode_dirty error
[  205.886831][ T7400] EXT4-fs error (device loop3) in ext4_process_orphan:345: Corrupt filesystem
[  205.896926][ T7400] EXT4-fs error (device loop3): __ext4_get_inode_loc:4513: comm syz.3.592: Invalid inode table block 0 in block_group 0
[  205.950633][ T7400] EXT4-fs (loop3): 1 truncate cleaned up
[  205.951531][ T7400] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  206.915667][ T7406] device bridge1 entered promiscuous mode
[  206.923053][ T4334] EXT4-fs (loop3): unmounting filesystem.
[  207.358754][ T7420] device syzkaller0 entered promiscuous mode
[  208.619469][ T7443] syz.3.599 (7443): drop_caches: 2
[  209.618562][ T7457] loop6: detected capacity change from 0 to 128
[  209.631129][ T7457] ext4: Unknown parameter 'noacl'
[  212.462004][ T7487] loop6: detected capacity change from 0 to 512
[  212.463382][ T7487] EXT4-fs: Ignoring removed mblk_io_submit option
[  212.472256][ T7487] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  212.473711][ T7487] EXT4-fs (loop6): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  212.475206][ T7487] EXT4-fs (loop6): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  212.476722][ T7487] EXT4-fs (loop6): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  212.514935][ T7487] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  212.516278][ T7487] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=e04ce11c, mo2=0000]
[  212.517471][ T7487] EXT4-fs (loop6): failed to initialize system zone (-117)
[  212.518598][ T7487] EXT4-fs (loop6): mount failed
[  213.979006][ T7498] mkiss: ax0: crc mode is auto.
[  215.042264][ T7509] loop1: detected capacity change from 0 to 512
[  215.057828][ T7509] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  215.059491][ T7509] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  215.270295][ T7518] (syz.6.614,7518,0):ocfs2_fill_super:990 ERROR: superblock probe failed!
[  215.271624][ T7518] (syz.6.614,7518,0):ocfs2_fill_super:1176 ERROR: status = -22
[  215.584967][ T7519] mkiss: ax0: crc mode is auto.
[  215.768309][ T7509] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:477: comm syz.1.612: Invalid block bitmap block 0 in block_group 0
[  215.772665][ T7509] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6179: Corrupt filesystem
[  215.776181][ T7509] EXT4-fs error (device loop1): ext4_clear_blocks:883: inode #11: comm syz.1.612: attempt to clear invalid blocks 983261 len 1
[  215.841367][ T7509] EXT4-fs error (device loop1): __ext4_get_inode_loc:4513: comm syz.1.612: Invalid inode table block 0 in block_group 0
[  215.893778][ T7509] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5933: Corrupt filesystem
[  215.958780][ T7509] EXT4-fs error (device loop1) in ext4_orphan_del:303: Corrupt filesystem
[  215.960400][ T7509] EXT4-fs error (device loop1): __ext4_get_inode_loc:4513: comm syz.1.612: Invalid inode table block 0 in block_group 0
[  215.962563][ T7509] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5933: Corrupt filesystem
[  215.980972][ T7509] EXT4-fs error (device loop1): ext4_truncate:4318: inode #11: comm syz.1.612: mark_inode_dirty error
[  215.982929][ T7509] EXT4-fs error (device loop1) in ext4_process_orphan:345: Corrupt filesystem
[  215.985370][ T7509] EXT4-fs error (device loop1): __ext4_get_inode_loc:4513: comm syz.1.612: Invalid inode table block 0 in block_group 0
[  215.996291][ T7509] EXT4-fs (loop1): 1 truncate cleaned up
[  215.997265][ T7509] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  216.770962][ T7533] loop6: detected capacity change from 0 to 2048
[  219.614434][ T4321] EXT4-fs (loop1): unmounting filesystem.
[  219.745439][ T7533] EXT4-fs warning (device loop6): ext4_multi_mount_protect:404: Unable to create kmmpd thread for loop6.
[  220.820222][ T7554] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  225.121039][ T7589] mkiss: ax0: crc mode is auto.
[  225.475132][ T7591] loop6: detected capacity change from 0 to 128
[  225.626833][ T7590] syz.6.632: attempt to access beyond end of device
[  225.626833][ T7590] loop6: rw=1, sector=145, nr_sectors = 896 limit=128
[  225.635999][ T7593] loop1: detected capacity change from 0 to 128
[  225.650002][ T7593] ext4: Unknown parameter 'noacl'
[  226.177171][ T7599] mkiss: ax0: crc mode is auto.
[  227.132867][ T7603] loop6: detected capacity change from 0 to 512
[  227.139283][ T7603] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  227.141497][ T7603] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  227.150436][ T7603] EXT4-fs error (device loop6): ext4_read_block_bitmap_nowait:477: comm syz.6.635: Invalid block bitmap block 0 in block_group 0
[  227.157049][ T7603] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6179: Corrupt filesystem
[  227.158614][ T7603] EXT4-fs error (device loop6): ext4_clear_blocks:883: inode #11: comm syz.6.635: attempt to clear invalid blocks 983261 len 1
[  227.160920][ T7603] EXT4-fs error (device loop6): __ext4_get_inode_loc:4513: comm syz.6.635: Invalid inode table block 0 in block_group 0
[  227.163397][ T7603] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5933: Corrupt filesystem
[  227.164948][ T7603] EXT4-fs error (device loop6) in ext4_orphan_del:303: Corrupt filesystem
[  227.166615][ T7603] EXT4-fs error (device loop6): __ext4_get_inode_loc:4513: comm syz.6.635: Invalid inode table block 0 in block_group 0
[  227.168789][ T7603] EXT4-fs error (device loop6) in ext4_reserve_inode_write:5933: Corrupt filesystem
[  227.170302][ T7603] EXT4-fs error (device loop6): ext4_truncate:4318: inode #11: comm syz.6.635: mark_inode_dirty error
[  227.172326][ T7603] EXT4-fs error (device loop6) in ext4_process_orphan:345: Corrupt filesystem
[  227.174048][ T7603] EXT4-fs error (device loop6): __ext4_get_inode_loc:4513: comm syz.6.635: Invalid inode table block 0 in block_group 0
[  227.176622][ T7603] EXT4-fs (loop6): 1 truncate cleaned up
[  227.177535][ T7603] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  228.101360][ T4946] EXT4-fs (loop6): unmounting filesystem.
[  228.255351][   T27] audit: type=1326 audit(221.001:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7614 comm="syz.1.636" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff7e977128 code=0x0
[  228.717376][ T7627] 9pnet_fd: Insufficient options for proto=fd
[  233.249813][ T7663] mkiss: ax0: crc mode is auto.
[  237.439051][ T7677] netlink: 72 bytes leftover after parsing attributes in process `syz.1.655'.
[  237.439086][ T7677] netlink: 96 bytes leftover after parsing attributes in process `syz.1.655'.
[  240.565043][ T7719] mkiss: ax0: crc mode is auto.
[  243.114747][ T7740] netlink: 72 bytes leftover after parsing attributes in process `syz.3.669'.
[  243.116230][ T7740] netlink: 96 bytes leftover after parsing attributes in process `syz.3.669'.
[  243.852497][ T7755] loop1: detected capacity change from 0 to 2048
[  244.423021][ T7755] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  245.665929][ T4321] EXT4-fs (loop1): unmounting filesystem.
[  246.816339][ T7784] mkiss: ax0: crc mode is auto.
[  248.880016][ T7796] loop1: detected capacity change from 0 to 1024
[  249.531494][ T7803] mkiss: ax0: crc mode is auto.
[  250.072034][ T7805] rdma_rxe: rxe_register_device failed with error -23
[  250.084617][ T7805] rdma_rxe: failed to add syz_tun
[  250.746913][ T7815] loop6: detected capacity change from 0 to 16
[  250.772981][ T7814] hub 9-0:1.0: USB hub found
[  250.773970][ T7814] hub 9-0:1.0: 8 ports detected
[  250.787239][ T7815] erofs: (device loop6): mounted with root inode @ nid 36.
[  250.804983][ T7815] syz.6.684: attempt to access beyond end of device
[  250.804983][ T7815] loop6: rw=524288, sector=1056, nr_sectors = 16 limit=16
[  251.833023][ T7826] bridge0: port 2(bridge_slave_1) entered disabled state
[  251.834302][ T7826] bridge0: port 1(bridge_slave_0) entered disabled state
[  251.846733][ T4470] hfsplus: b-tree write err: -5, ino 25
[  251.847934][ T4470] hfsplus: b-tree write err: -5, ino 4
[  251.848821][ T4470] hfsplus: b-tree write err: -5, ino 2
[  253.386391][ T7824] loop6: detected capacity change from 0 to 32768
[  254.448311][ T7853] hub 8-0:1.0: USB hub found
[  254.635394][ T7853] hub 8-0:1.0: 8 ports detected
[  255.838574][ T7868] mkiss: ax0: crc mode is auto.
[  257.001836][ T7871] rdma_rxe: rxe_register_device failed with error -23
[  257.002948][ T7871] rdma_rxe: failed to add syz_tun
[  257.036744][ T7875] loop6: detected capacity change from 0 to 512
[  257.037668][ T7878] loop3: detected capacity change from 0 to 256
[  257.430079][ T7875] EXT4-fs warning (device loop6): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  257.432048][ T7875] EXT4-fs warning (device loop6): dx_probe:881: Enable large directory feature to access it
[  257.433619][ T7875] EXT4-fs warning (device loop6): dx_probe:966: inode #2: comm syz.6.703: Corrupt directory, running e2fsck is recommended
[  257.438420][ T7875] EXT4-fs (loop6): Cannot turn on journaled quota: type 1: error -117
[  257.439751][ T7875] EXT4-fs error (device loop6): ext4_iget_extra_inode:4756: inode #15: comm syz.6.703: corrupted in-inode xattr
[  257.443086][ T7878] FAT-fs (loop3): Directory bread(block 64) failed
[  257.444096][ T7878] FAT-fs (loop3): Directory bread(block 65) failed
[  257.445169][ T7878] FAT-fs (loop3): Directory bread(block 66) failed
[  257.446240][ T7878] FAT-fs (loop3): Directory bread(block 67) failed
[  257.449728][ T7875] EXT4-fs error (device loop6): ext4_orphan_get:1404: comm syz.6.703: couldn't read orphan inode 15 (err -117)
[  257.451715][ T7875] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  257.458203][ T7878] FAT-fs (loop3): Directory bread(block 68) failed
[  257.459375][ T7878] FAT-fs (loop3): Directory bread(block 69) failed
[  257.460518][ T7878] FAT-fs (loop3): Directory bread(block 70) failed
[  257.461557][ T7878] FAT-fs (loop3): Directory bread(block 71) failed
[  257.462557][ T7878] FAT-fs (loop3): Directory bread(block 72) failed
[  257.463597][ T7878] FAT-fs (loop3): Directory bread(block 73) failed
[  257.561160][ T4325] Bluetooth: hci6: link tx timeout
[  257.562589][ T4325] Bluetooth: hci6: killing stalled connection 11:aa:aa:aa:aa:aa
[  257.593919][ T7875] EXT4-fs warning (device loop6): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  257.595772][ T7875] EXT4-fs warning (device loop6): dx_probe:881: Enable large directory feature to access it
[  257.597533][ T7875] EXT4-fs warning (device loop6): dx_probe:966: inode #2: comm syz.6.703: Corrupt directory, running e2fsck is recommended
[  257.599613][ T7875] EXT4-fs error (device loop6): ext4_readdir:263: inode #2: block 3: comm syz.6.703: path /101/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=4294967295, rec_len=17, size=1024 fake=0
[  257.608995][ T7875] EXT4-fs error (device loop6): ext4_readdir:263: inode #2: block 22: comm syz.6.703: path /101/file0: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=0, rec_len=65535, size=1024 fake=0
[  257.612604][ T7875] EXT4-fs error (device loop6): ext4_readdir:263: inode #2: block 8: comm syz.6.703: path /101/file0: bad entry in directory: inode out of bounds - offset=0, inode=16810477, rec_len=1024, size=1024 fake=0
[  257.657029][ T4946] EXT4-fs (loop6): unmounting filesystem.
[  257.970010][ T2060] ieee802154 phy0 wpan0: encryption failed: -22
[  257.971247][ T2060] ieee802154 phy1 wpan1: encryption failed: -22
[  258.084588][ T7893] mkiss: ax0: crc mode is auto.
[  260.121502][ T4326] Bluetooth: hci6: command 0x0406 tx timeout
[  260.687989][ T4326] Bluetooth: hci4: SCO packet for unknown connection handle 0
[  262.197107][ T7915] loop3: detected capacity change from 0 to 65536
[  262.507310][ T7918] loop1: detected capacity change from 0 to 4096
[  262.619725][ T7915] XFS (loop3): Mounting V5 Filesystem
[  263.113308][ T7915] XFS (loop3): Ending clean mount
[  263.708880][ T4334] XFS (loop3): Unmounting Filesystem
[  263.807726][ T7923] loop6: detected capacity change from 0 to 32768
[  263.862125][ T7941] loop1: detected capacity change from 0 to 32768
[  263.863800][ T7941] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.714 (7941)
[  263.873713][ T7941] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  263.875265][ T7941] BTRFS info (device loop1): using sha256 (sha256-ce) checksum algorithm
[  263.876601][ T7941] BTRFS info (device loop1): using free space tree
[  263.910243][ T7923] XFS (loop6): Mounting V5 Filesystem
[  264.059112][ T7923] XFS (loop6): Ending clean mount
[  264.897207][ T4946] XFS (loop6): Unmounting Filesystem
[  264.958999][ T7941] BTRFS info (device loop1): enabling ssd optimizations
[  266.975139][ T4321] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  267.150757][ T4326] Bluetooth: hci5: SCO packet for unknown connection handle 0
[  267.384254][ T8002] binder: 7994:8002 unknown command 1074553619
[  267.386439][ T8002] binder: 7994:8002 ioctl c0306201 20000540 returned -22
[  268.499558][ T8011] hub 8-0:1.0: USB hub found
[  268.501043][ T8011] hub 8-0:1.0: 8 ports detected
[  269.673579][ T8026] tipc: Enabled bearer <udp:syz1>, priority 10
[  270.444868][ T8020] loop1: detected capacity change from 0 to 32768
[  270.796564][ T8020] XFS (loop1): Mounting V5 Filesystem
[  270.826916][    T7] tipc: Node number set to 809146346
[  270.849963][ T8020] XFS (loop1): Ending clean mount
[  271.430362][ T4321] XFS (loop1): Unmounting Filesystem
[  272.434828][ T8068] loop6: detected capacity change from 0 to 128
[  272.834652][ T5904] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  272.897685][ T8062] loop3: detected capacity change from 0 to 32768
[  272.903649][ T8062] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.747 (8062)
[  272.909148][ T8062] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  272.912150][ T8062] BTRFS info (device loop3): using sha256 (sha256-ce) checksum algorithm
[  272.914754][ T8062] BTRFS info (device loop3): using free space tree
[  273.134834][ T8086] mkiss: ax0: crc mode is auto.
[  274.167771][ T4326] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci5/hci5:201'
[  274.169625][ T4326] CPU: 1 PID: 4326 Comm: kworker/u5:3 Not tainted syzkaller #0
[  274.170835][ T4326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026
[  274.172439][ T4326] Workqueue: hci5 hci_rx_work
[  274.173191][ T4326] Call trace:
[  274.173687][ T4326]  dump_backtrace+0x1c0/0x1ec
[  274.174526][ T4326]  show_stack+0x2c/0x3c
[  274.175197][ T4326]  __dump_stack+0x30/0x40
[  274.175893][ T4326]  dump_stack_lvl+0xf4/0x15c
[  274.176651][ T4326]  dump_stack+0x1c/0x5c
[  274.177289][ T4326]  sysfs_create_dir_ns+0x244/0x264
[  274.178231][ T4326]  kobject_add_internal+0x598/0xb08
[  274.179054][ T4326]  kobject_add+0x140/0x20c
[  274.179766][ T4326]  device_add+0x3f0/0xf90
[  274.180488][ T4326]  hci_conn_add_sysfs+0xbc/0x1c8
[  274.181302][ T4326]  le_conn_complete_evt+0xcc8/0x1244
[  274.182191][ T4326]  hci_le_conn_complete_evt+0x114/0x3f4
[  274.183075][ T4326]  hci_le_meta_evt+0x2c0/0x4a0
[  274.183843][ T4326]  hci_event_packet+0x6b8/0xf18
[  274.184623][ T4326]  hci_rx_work+0x324/0xa80
[  274.185348][ T4326]  process_one_work+0x7f8/0x13a4
[  274.186179][ T4326]  worker_thread+0x8c4/0xfec
[  274.186970][ T4326]  kthread+0x250/0x2d8
[  274.187615][ T4326]  ret_from_fork+0x10/0x20
[  274.188654][ T4326] kobject_add_internal failed for hci5:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  274.190886][ T4326] Bluetooth: hci5: failed to register connection device
[  274.322188][ T8101] binder: 8087:8101 unknown command 1074553619
[  274.323280][ T8101] binder: 8087:8101 ioctl c0306201 20000540 returned -22
[  275.203166][ T8062] BTRFS info (device loop3): enabling ssd optimizations
[  275.252897][ T4334] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  275.596608][ T8122] loop6: detected capacity change from 0 to 4096
[  275.598027][ T8122] ntfs3: Unknown parameter '��������0x000000000000016501777777777777777777777q#�`1��a�E�b�n��ja����uy�_~p��'
[  275.714987][   T27] audit: type=1326 audit(265.404:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8118 comm="syz.0.750" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff94177128 code=0x7ffc0000
[  275.719581][   T27] audit: type=1326 audit(265.404:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8118 comm="syz.0.750" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff94177128 code=0x7ffc0000
[  275.723089][   T27] audit: type=1326 audit(265.414:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8118 comm="syz.0.750" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=275 compat=0 ip=0xffff94177128 code=0x7ffc0000
[  275.726424][   T27] audit: type=1326 audit(265.414:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8118 comm="syz.0.750" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff94177128 code=0x7ffc0000
[  275.729753][   T27] audit: type=1326 audit(265.414:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8118 comm="syz.0.750" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff94177128 code=0x7ffc0000
[  276.343628][   T27] audit: type=1326 audit(265.414:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8118 comm="syz.0.750" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=34 compat=0 ip=0xffff94177128 code=0x7ffc0000
[  276.357174][ T8125] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  276.372696][ T8129] loop1: detected capacity change from 0 to 1024
[  276.376026][   T27] audit: type=1326 audit(265.414:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8118 comm="syz.0.750" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff94177128 code=0x7ffc0000
[  276.389601][   T27] audit: type=1326 audit(265.414:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8118 comm="syz.0.750" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff94177128 code=0x7ffc0000
[  276.397465][   T27] audit: type=1326 audit(265.414:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8118 comm="syz.0.750" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=40 compat=0 ip=0xffff94177128 code=0x7ffc0000
[  276.409654][   T27] audit: type=1326 audit(265.414:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8118 comm="syz.0.750" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff94177128 code=0x7ffc0000
[  276.989766][ T4657] hfsplus: b-tree write err: -5, ino 25
[  276.990796][ T4657] hfsplus: b-tree write err: -5, ino 4
[  276.992505][ T4657] hfsplus: b-tree write err: -5, ino 2
[  277.027713][ T8135] Injecting memory failure for pfn 0x15159f at process virtual address 0x20ffe000
[  277.034435][ T8135] Memory failure: 0x15159f: recovery action for dirty LRU page: Recovered
[  277.035736][ T8135] Injecting memory failure for pfn 0x1515a8 at process virtual address 0x20fff000
[  277.037341][ T8135] Memory failure: 0x1515a8: recovery action for dirty LRU page: Recovered
[  278.328564][ T8150] loop6: detected capacity change from 0 to 1024
[  278.390027][ T4442] hfsplus: b-tree write err: -5, ino 25
[  278.391110][ T4442] hfsplus: b-tree write err: -5, ino 4
[  278.395510][ T4442] hfsplus: b-tree write err: -5, ino 2
[  278.479857][ T8146] loop1: detected capacity change from 0 to 128
[  278.489457][ T4326] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci6/hci6:201'
[  278.491269][ T4326] CPU: 1 PID: 4326 Comm: kworker/u5:3 Not tainted syzkaller #0
[  278.492562][ T4326] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026
[  278.494177][ T4326] Workqueue: hci6 hci_rx_work
[  278.494888][ T4326] Call trace:
[  278.495369][ T4326]  dump_backtrace+0x1c0/0x1ec
[  278.496088][ T4326]  show_stack+0x2c/0x3c
[  278.496725][ T4326]  __dump_stack+0x30/0x40
[  278.497400][ T4326]  dump_stack_lvl+0xf4/0x15c
[  278.498101][ T4326]  dump_stack+0x1c/0x5c
[  278.498809][ T4326]  sysfs_create_dir_ns+0x244/0x264
[  278.499600][ T4326]  kobject_add_internal+0x598/0xb08
[  278.500429][ T4326]  kobject_add+0x140/0x20c
[  278.501180][ T4326]  device_add+0x3f0/0xf90
[  278.501917][ T4326]  hci_conn_add_sysfs+0xbc/0x1c8
[  278.502700][ T4326]  le_conn_complete_evt+0xcc8/0x1244
[  278.503540][ T4326]  hci_le_conn_complete_evt+0x114/0x3f4
[  278.504490][ T4326]  hci_le_meta_evt+0x2c0/0x4a0
[  278.505330][ T4326]  hci_event_packet+0x6b8/0xf18
[  278.506107][ T4326]  hci_rx_work+0x324/0xa80
[  278.506830][ T4326]  process_one_work+0x7f8/0x13a4
[  278.507620][ T4326]  worker_thread+0x8c4/0xfec
[  278.508367][ T4326]  kthread+0x250/0x2d8
[  278.509051][ T4326]  ret_from_fork+0x10/0x20
[  278.511244][ T4326] kobject_add_internal failed for hci6:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  278.513250][ T4326] Bluetooth: hci6: failed to register connection device
[  278.515250][ T4326] Bluetooth: hci6: link tx timeout
[  278.516034][ T4326] Bluetooth: hci6: killing stalled connection 11:aa:aa:aa:aa:aa
[  279.348387][ T8132] loop3: detected capacity change from 0 to 32768
[  279.391346][ T8132] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.749 (8132)
[  281.229831][ T8180] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  281.326261][ T8175] loop6: detected capacity change from 0 to 32768
[  281.353819][ T8175] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  281.355556][ T8175] BTRFS info (device loop6): using sha256 (sha256-ce) checksum algorithm
[  281.356822][ T8175] BTRFS info (device loop6): using free space tree
[  281.361130][ T8192] loop3: detected capacity change from 0 to 16
[  281.371551][ T8192] erofs: (device loop3): mounted with root inode @ nid 36.
[  281.568753][ T8212] loop1: detected capacity change from 0 to 1764
[  282.402045][ T8217] mkiss: ax0: crc mode is auto.
[  282.618229][ T8175] BTRFS info (device loop6): enabling ssd optimizations
[  282.647220][ T4946] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  282.794275][ T8237] loop3: detected capacity change from 0 to 8192
[  282.882579][ T8237]  loop3: p1 p2 p3 p4[DM]
[  282.883389][ T8237] loop3: p1 size 835329 extends beyond EOD, truncated
[  282.884742][ T8227] loop1: detected capacity change from 0 to 32768
[  282.884932][ T8237] loop3: p2 size 327680 extends beyond EOD, truncated
[  282.890803][ T8237] loop3: p3 start 1052673 is beyond EOD, truncated
[  282.891789][ T8237] loop3: p4 size 7405568 extends beyond EOD, truncated
[  282.893602][ T8227] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.778 (8227)
[  282.913116][ T8227] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  282.914904][ T8227] BTRFS info (device loop1): using sha256 (sha256-ce) checksum algorithm
[  282.916307][ T8227] BTRFS info (device loop1): using free space tree
[  283.306182][   T27] kauditd_printk_skb: 32 callbacks suppressed
[  283.306197][   T27] audit: type=1326 audit(272.301:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8240 comm="syz.5.782" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8ab77128 code=0x7ffc0000
[  283.314364][   T27] audit: type=1326 audit(272.301:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8240 comm="syz.5.782" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8ab77128 code=0x7ffc0000
[  283.323534][   T27] audit: type=1326 audit(272.329:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8240 comm="syz.5.782" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=275 compat=0 ip=0xffff8ab77128 code=0x7ffc0000
[  283.332194][   T27] audit: type=1326 audit(272.329:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8240 comm="syz.5.782" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8ab77128 code=0x7ffc0000
[  283.343908][   T27] audit: type=1326 audit(272.329:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8240 comm="syz.5.782" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8ab77128 code=0x7ffc0000
[  283.347515][ T8263] loop3: detected capacity change from 0 to 1024
[  283.349124][   T27] audit: type=1326 audit(272.329:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8240 comm="syz.5.782" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=34 compat=0 ip=0xffff8ab77128 code=0x7ffc0000
[  283.352843][   T27] audit: type=1326 audit(272.329:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8240 comm="syz.5.782" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8ab77128 code=0x7ffc0000
[  283.356832][   T27] audit: type=1326 audit(272.329:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8240 comm="syz.5.782" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8ab77128 code=0x7ffc0000
[  283.360388][   T27] audit: type=1326 audit(272.339:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8240 comm="syz.5.782" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=40 compat=0 ip=0xffff8ab77128 code=0x7ffc0000
[  283.362838][ T8263] hfsplus: bad catalog entry type
[  283.363870][   T27] audit: type=1326 audit(272.339:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8240 comm="syz.5.782" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8ab77128 code=0x7ffc0000
[  283.414873][ T5741] hfsplus: b-tree write err: -5, ino 25
[  283.415882][ T5741] hfsplus: b-tree write err: -5, ino 4
[  283.416789][ T5741] hfsplus: b-tree write err: -5, ino 2
[  283.454111][ T5905] udevd[5905]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[  283.460882][ T5045] udevd[5045]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[  283.470838][ T8227] BTRFS info (device loop1): enabling ssd optimizations
[  283.474792][ T4949] udevd[4949]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  283.524421][ T8286] loop3: detected capacity change from 0 to 1764
[  283.537257][ T4321] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  283.556271][ T8284] syz.0.789 (8284): drop_caches: 2
[  283.876781][ T5904] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 9 /dev/loop1 scanned by udevd (5904)
[  283.959867][ T8306] mkiss: ax0: crc mode is auto.
[  285.104443][ T8305] loop6: detected capacity change from 0 to 32768
[  285.108768][ T8305] BTRFS: device fsid c6b85f58-0c7e-41ca-a553-c8d9f94f6663 devid 1 transid 8 /dev/loop6 scanned by syz.6.799 (8305)
[  285.124821][ T8305] BTRFS info (device loop6): first mount of filesystem c6b85f58-0c7e-41ca-a553-c8d9f94f6663
[  285.128803][ T8305] BTRFS info (device loop6): using blake2b (blake2b-256-generic) checksum algorithm
[  285.130246][ T8305] BTRFS info (device loop6): using free space tree
[  285.423903][ T8305] BTRFS info (device loop6): enabling ssd optimizations
[  285.491707][ T4946] BTRFS info (device loop6): last unmount of filesystem c6b85f58-0c7e-41ca-a553-c8d9f94f6663
[  285.847404][ T8315] syz.1.804 (8315): drop_caches: 2
[  285.938122][ T8363] loop1: detected capacity change from 0 to 64
[  286.174123][ T8381] loop1: detected capacity change from 0 to 164
[  286.511641][ T8381] iso9660: Corrupted directory entry in block 4 of inode 1792
[  286.538566][ T8361] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  286.684623][ T8390] loop1: detected capacity change from 0 to 1024
[  286.686286][ T8390] EXT4-fs: Ignoring removed nomblk_io_submit option
[  286.719611][ T8390] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  286.826294][ T4321] EXT4-fs (loop1): unmounting filesystem.
[  287.304488][ T8408] netlink: 12 bytes leftover after parsing attributes in process `syz.0.833'.
[  287.400232][ T8388] syz.3.826 (8388): drop_caches: 2
[  287.406987][ T8398] loop1: detected capacity change from 0 to 32768
[  287.427822][ T8398] XFS (loop1): Mounting V5 Filesystem
[  287.476458][ T8398] XFS (loop1): Ending clean mount
[  287.522157][ T8427] loop3: detected capacity change from 0 to 256
[  287.523641][ T8427] exfat: Deprecated parameter 'utf8'
[  287.529337][ T8427] exfat: Deprecated parameter 'utf8'
[  287.544180][ T8427] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x72bddf51, utbl_chksum : 0xe619d30d)
[  287.575572][ T4321] XFS (loop1): Unmounting Filesystem
[  287.708311][ T8441] netlink: 'syz.3.846': attribute type 33 has an invalid length.
[  287.714288][ T8441] netlink: 152 bytes leftover after parsing attributes in process `syz.3.846'.
[  288.575037][ T8448] syz.6.849 (8448): drop_caches: 2
[  288.589114][ T8468] set_capacity_and_notify: 2 callbacks suppressed
[  288.589127][ T8468] loop3: detected capacity change from 0 to 512
[  288.591647][ T8468] EXT4-fs: Ignoring removed mblk_io_submit option
[  288.595456][ T8468] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  288.598023][ T8468] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 1 overlaps superblock
[  288.599679][ T8468] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 1 overlaps superblock
[  288.601413][ T8468] EXT4-fs (loop3): ext4_check_descriptors: Inode table for group 1 overlaps superblock
[  288.642540][ T8468] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  288.643890][ T8468] [EXT4 FS bs=4096, gc=2, bpg=34, ipg=32, mo=e04ce11c, mo2=0000]
[  288.645176][ T8468] EXT4-fs (loop3): failed to initialize system zone (-117)
[  288.646583][ T8468] EXT4-fs (loop3): mount failed
[  288.667169][ T8471] loop6: detected capacity change from 0 to 164
[  288.861991][ T8475] loop6: detected capacity change from 0 to 4096
[  288.870426][ T8475] __ntfs_warning: 40 callbacks suppressed
[  288.870434][ T8475] ntfs: (device loop6): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  288.894786][ T8475] ntfs: (device loop6): ntfs_is_extended_system_file(): Non-resident file name. You should run chkdsk.
[  288.897530][ T8475] ntfs: (device loop6): ntfs_read_locked_inode(): $DATA attribute is missing.
[  288.900626][ T8475] ntfs: (device loop6): ntfs_read_locked_inode(): Failed with error code -2.  Marking corrupt inode 0x1 as bad.  Run chkdsk.
[  288.903179][ T8475] ntfs: (device loop6): load_system_files(): Failed to load $MFTMirr.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  288.933198][ T8475] ntfs: volume version 3.1.
[  288.941682][ T8475] ntfs: (device loop6): ntfs_remount(): Volume has errors and is read-only.  Cannot remount read-write.
[  289.080433][ T8490] device gre1 entered promiscuous mode
[  289.211574][ T8497] mkiss: ax0: crc mode is auto.
[  293.658368][ T8513] loop6: detected capacity change from 0 to 512
[  293.720279][ T8515] loop3: detected capacity change from 0 to 16
[  293.792832][ T8515] MTD: Attempt to mount non-MTD device "/dev/loop3"
[  293.947828][ T8507] overlayfs: missing 'lowerdir'
[  293.988237][ T8520] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  293.992005][ T8520] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  294.231756][   T51] block nbd6: Attempted send on invalid socket
[  294.233124][   T51] I/O error, dev nbd6, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  294.235018][ T8528] qnx6: unable to read the first superblock
[  294.236731][   T51] block nbd6: Attempted send on invalid socket
[  294.238156][   T51] I/O error, dev nbd6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  294.239944][ T8528] qnx6: unable to read the first superblock
[  294.241032][ T8528] qnx6: unable to read the first superblock
[  294.433186][ T8539] netlink: 'syz.6.880': attribute type 10 has an invalid length.
[  294.449583][ T8539] team0: Port device dummy0 added
[  294.478890][ T8539] netlink: 'syz.6.880': attribute type 10 has an invalid length.
[  294.520596][ T8539] team0: Port device dummy0 removed
[  294.541566][ T8545] netlink: 96 bytes leftover after parsing attributes in process `syz.0.883'.
[  294.592113][ T8548] loop6: detected capacity change from 0 to 4096
[  294.597862][ T8548] EXT4-fs: Ignoring removed bh option
[  294.786983][ T8548] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  295.856529][ T8548] EXT4-fs error (device loop6): ext4_get_first_dir_block:3603: inode #12: block 80: comm syz.6.884: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0
[  295.858161][ T8548] EXT4-fs (loop6): Remounting filesystem read-only
[  295.858174][ T8548] EXT4-fs error (device loop6): ext4_get_first_dir_block:3605: inode #12: comm syz.6.884: directory missing '..'
[  295.858312][ T8548] EXT4-fs (loop6): Remounting filesystem read-only
[  295.899057][ T8560] loop1: detected capacity change from 0 to 1024
[  295.937552][ T4946] EXT4-fs (loop6): unmounting filesystem.
[  296.469977][ T8560] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  296.883894][ T8568] loop3: detected capacity change from 0 to 1024
[  296.885286][ T8568] EXT4-fs: Ignoring removed mblk_io_submit option
[  296.905258][ T4321] EXT4-fs (loop1): unmounting filesystem.
[  296.923836][ T8568] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  297.121494][ T3084] block nbd0: Attempted send on invalid socket
[  297.122505][ T3084] I/O error, dev nbd0, sector 16 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  297.124019][ T8573] qnx6: unable to read the first superblock
[  297.125095][ T3084] block nbd0: Attempted send on invalid socket
[  297.126077][ T3084] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  297.127635][ T8573] qnx6: unable to read the first superblock
[  297.128665][ T8573] qnx6: unable to read the first superblock
[  297.156490][ T8568] ==================================================================
[  297.157880][ T8568] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x7c0/0x15a0
[  297.159175][ T8568] Read of size 18446744073709551588 at addr ffff0000ced48040 by task syz.3.889/8568
[  297.160584][ T8568] 
[  297.160927][ T8568] CPU: 0 PID: 8568 Comm: syz.3.889 Not tainted syzkaller #0
[  297.162096][ T8568] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/26/2026
[  297.163636][ T8568] Call trace:
[  297.164123][ T8568]  dump_backtrace+0x1c0/0x1ec
[  297.164873][ T8568]  show_stack+0x2c/0x3c
[  297.165549][ T8568]  __dump_stack+0x30/0x40
[  297.166229][ T8568]  dump_stack_lvl+0xf4/0x15c
[  297.166938][ T8568]  print_address_description+0x88/0x218
[  297.167787][ T8568]  print_report+0x50/0x68
[  297.168535][ T8568]  kasan_report+0xa8/0xfc
[  297.169244][ T8568]  kasan_check_range+0x258/0x290
[  297.170024][ T8568]  memmove+0x48/0x90
[  297.170605][ T8568]  ext4_xattr_set_entry+0x7c0/0x15a0
[  297.171436][ T8568]  ext4_xattr_block_set+0x640/0x2880
[  297.172276][ T8568]  ext4_xattr_set_handle+0x10dc/0x1344
[  297.173072][ T8568]  ext4_xattr_set+0x1f4/0x2c0
[  297.173834][ T8568]  ext4_xattr_trusted_set+0x4c/0x64
[  297.174696][ T8568]  __vfs_setxattr+0x384/0x3a0
[  297.175448][ T8568]  __vfs_setxattr_noperm+0x120/0x564
[  297.176317][ T8568]  __vfs_setxattr_locked+0x1ec/0x218
[  297.177179][ T8568]  vfs_setxattr+0x158/0x2ac
[  297.177865][ T8568]  setxattr+0x258/0x2d8
[  297.178575][ T8568]  path_setxattr+0x130/0x260
[  297.179272][ T8568]  __arm64_sys_lsetxattr+0xbc/0xd8
[  297.180154][ T8568]  invoke_syscall+0x98/0x2b4
[  297.180901][ T8568]  el0_svc_common+0x138/0x258
[  297.181672][ T8568]  do_el0_svc+0x58/0x130
[  297.182391][ T8568]  el0_svc+0x58/0x128
[  297.183088][ T8568]  el0t_64_sync_handler+0x84/0xf0
[  297.183958][ T8568]  el0t_64_sync+0x18c/0x190
[  297.184720][ T8568] 
[  297.185095][ T8568] Allocated by task 8568:
[  297.185836][ T8568]  kasan_set_track+0x4c/0x80
[  297.186543][ T8568]  kasan_save_alloc_info+0x24/0x30
[  297.187328][ T8568]  __kasan_kmalloc+0xa0/0xb8
[  297.188006][ T8568]  __kmalloc_node_track_caller+0xe0/0x16c
[  297.188890][ T8568]  kmemdup+0x5c/0x98
[  297.189475][ T8568]  ext4_xattr_block_set+0x574/0x2880
[  297.190348][ T8568]  ext4_xattr_set_handle+0x10dc/0x1344
[  297.191165][ T8568]  ext4_xattr_set+0x1f4/0x2c0
[  297.191880][ T8568]  ext4_xattr_trusted_set+0x4c/0x64
[  297.192748][ T8568]  __vfs_setxattr+0x384/0x3a0
[  297.193456][ T8568]  __vfs_setxattr_noperm+0x120/0x564
[  297.194364][ T8568]  __vfs_setxattr_locked+0x1ec/0x218
[  297.195228][ T8568]  vfs_setxattr+0x158/0x2ac
[  297.195985][ T8568]  setxattr+0x258/0x2d8
[  297.196663][ T8568]  path_setxattr+0x130/0x260
[  297.197444][ T8568]  __arm64_sys_lsetxattr+0xbc/0xd8
[  297.198232][ T8568]  invoke_syscall+0x98/0x2b4
[  297.198976][ T8568]  el0_svc_common+0x138/0x258
[  297.199711][ T8568]  do_el0_svc+0x58/0x130
[  297.200499][ T8568]  el0_svc+0x58/0x128
[  297.201136][ T8568]  el0t_64_sync_handler+0x84/0xf0
[  297.201907][ T8568]  el0t_64_sync+0x18c/0x190
[  297.202617][ T8568] 
[  297.202980][ T8568] The buggy address belongs to the object at ffff0000ced48000
[  297.202980][ T8568]  which belongs to the cache kmalloc-1k of size 1024
[  297.205190][ T8568] The buggy address is located 64 bytes inside of
[  297.205190][ T8568]  1024-byte region [ffff0000ced48000, ffff0000ced48400)
[  297.207255][ T8568] 
[  297.207628][ T8568] The buggy address belongs to the physical page:
[  297.208646][ T8568] page:0000000029c5a66f refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x10ed48
[  297.210324][ T8568] head:0000000029c5a66f order:3 compound_mapcount:0 compound_pincount:0
[  297.211755][ T8568] flags: 0x5ffc00000010200(slab|head|node=0|zone=2|lastcpupid=0x7ff)
[  297.213074][ T8568] raw: 05ffc00000010200 fffffc0003474400 dead000000000002 ffff0000c0002780
[  297.214473][ T8568] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[  297.215764][ T8568] page dumped because: kasan: bad access detected
[  297.216786][ T8568] 
[  297.217133][ T8568] Memory state around the buggy address:
[  297.218064][ T8568]  ffff0000ced47f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  297.219322][ T8568]  ffff0000ced47f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  297.220709][ T8568] >ffff0000ced48000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  297.221975][ T8568]                                            ^
[  297.222841][ T8568]  ffff0000ced48080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  297.224152][ T8568]  ffff0000ced48100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  297.225468][ T8568] ==================================================================
[  297.283114][ T8568] Disabling lock debugging due to kernel taint
[  297.284803][ T8577] loop6: detected capacity change from 0 to 1024
[  297.288078][ T8577] hfsplus: invalid length 32517 has been corrected to 255
[  297.308872][ T4334] EXT4-fs (loop3): unmounting filesystem.
[  297.310768][   T39] hfsplus: b-tree write err: -5, ino 20