last executing test programs:

2m27.118715067s ago: executing program 2 (id=3):
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/uevent_seqnum', 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$vfat(&(0x7f0000000540), &(0x7f0000000040)='./file4\x00', 0xa18c14, &(0x7f0000001200)={[{@rodir}, {@shortname_win95}, {@iocharset={'iocharset', 0x3d, 'iso8859-13'}}, {@fat=@codepage={'codepage', 0x3d, '860'}}, {@uni_xlate}, {@utf8no}, {@shortname_winnt}, {@shortname_win95}, {@numtail}, {@uni_xlateno}, {@rodir}, {@utf8no}, {}]}, 0x88, 0x29b, &(0x7f0000000180)="$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")
ioctl$OCFS2_IOC_REFLINK(r0, 0x40186f04, &(0x7f00000001c0)={&(0x7f0000000040)='})%\xa8\x00', 0x0, 0x7})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x200000000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./bus\x00', 0x140)

2m25.120875253s ago: executing program 2 (id=12):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'lo\x00', <r1=>0x0})
r2 = socket(0xa, 0x3, 0x87)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeeb, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r7, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @dev, 0x5}, 0x1c)
sendmmsg$inet6(r7, 0x0, 0x0, 0x4000000)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'lo\x00'})
ioctl$sock_inet6_SIOCSIFADDR(r2, 0x8916, &(0x7f0000000000)={@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x18, r1})
ioctl$sock_inet6_tcp_SIOCINQ(r2, 0x8936, &(0x7f0000000000))

2m23.529549355s ago: executing program 2 (id=15):
socket$nl_route(0x10, 0x3, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000001d40)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x1, 0x10, &(0x7f0000000bc0)=ANY=[@ANYBLOB="1808000000000000000000000000000018120000", @ANYRES32=r2, @ANYBLOB="0000000000000000b703000000000000850000000c000000b7000000000000001801000000082c2500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f00000000c0)=r3, 0x4)
sendmsg$inet(r1, &(0x7f0000000400)={0x0, 0x0, 0x0}, 0x4040000)

2m21.864293139s ago: executing program 2 (id=20):
mkdirat(0xffffffffffffff9c, 0x0, 0x1c0)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f0000000180)={[{@noload}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}, {@jqfmt_vfsv1}, {@noload}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1}}, {@nouid32}]}, 0xff, 0x47b, &(0x7f0000000540)="$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")
bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[], 0x48)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000000)=0x20)
renameat2(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0xffffffffffffff9c, 0x0, 0x2)
syz_mount_image$fuse(0x0, &(0x7f0000000100)='./bus\x00', 0x20020, 0x0, 0x1, 0x0, 0x0)
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, 0x0, 0x0)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000380)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@nfs_export_on}]})
setxattr$security_capability(&(0x7f0000000240)='./file0/file1\x00', 0x0, 0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFCONF(r0, 0x8912, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', 0x0, 0x8, &(0x7f00000000c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@uuid_off}]})

2m20.296198416s ago: executing program 2 (id=24):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x210000, &(0x7f0000000040)={[{@nodelalloc}, {@dioread_lock}, {@barrier_val={'barrier', 0x3d, 0x4}}, {@nolazytime}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@errors_remount}, {@stripe={'stripe', 0x3d, 0x5}}, {@bh}, {@init_itable}], [{@obj_user={'obj_user', 0x3d, '\x00\x00'}}, {@fsmagic={'fsmagic', 0x3d, 0x8}}]}, 0xff, 0x57b, &(0x7f0000000380)="$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")
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f00000003c0)=ANY=[@ANYBLOB="12010000090024206d041cc340000000000109022400010000a00009040000010301010009210008000122010009058103"], 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000240)={0x24, &(0x7f00000002c0)=ANY=[@ANYBLOB="00000c000000070001"], 0x0, 0x0, 0x0}, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000180)={0x84, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB=' '], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000001200)={0x84, 0x0, 0x0, 0x0, &(0x7f0000000040)={0x20, 0x0, 0x4, {0x1}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000000)={0x2c, &(0x7f0000000080)={0x0, 0x13, 0x4, "111520eb"}, 0x0, 0x0, 0x0, 0x0})
writev(0xffffffffffffffff, 0x0, 0x0)
mmap(&(0x7f0000ff5000/0x1000)=nil, 0x1000, 0x0, 0x13012, 0xffffffffffffffff, 0x0)

2m19.571800149s ago: executing program 2 (id=25):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200000, &(0x7f0000000040)={[{@nouid32}, {@errors_remount}, {@lazytime}, {@noquota}]}, 0x1, 0x51b, &(0x7f00000001c0)="$eJzs3c9vI1cdAPDveNeON5s2adkDIGiXtrCg1TqJt42qHqCcEEKVED2CtA2JN4pix1HslCbsIT0jcUKiEic48gdw7gmJIxcENy7lgMSPCNQgcTCa8Th1svZuQn44jT8faXbemzee73ubnfcyz2u/AMbW7YjYjYhSRLwTEdP58STf4s3ulp738d6jpf29R0tJdDpv/yPJytNj0fea1M38muWI+N63In6YPB63tb2ztliv1zbz/Gy7sTHb2t65t9pYXKmt1Nar1YX5hbnX779W7b3k1mnb+mKjlKe++NHvd7/247RaU/mR/nacpW7TiwdxUtcj4jvnEWwEruXtKY26IvxfChHxfES8lN3/03Et+2kCAFdZpzMdnen+/IHkcBYAuCoK2RxYUqjkcwFTUShUKt05vFsxWag3W+27D5tb68vdubKZKBYertZrc/lc4UwUkzQ/n6U/yVeP5O9HxHMR8bOJG1m+stSsL4/yFx8AGGM3j4z//57ojv8AwBVXHnUFAIALZ/wHgPFj/AeA8WP8B4Dx0x3/b4y6GgDABfL8DwDjx/gPAGPlu2+9lW6d/fz7r5ff3d5aa757b7nWWqs0tpYqS83NjcpKs7mSfWdP42nXqzebG/OvxtZ7M1/faLVnW9s7DxrNrfX2g+x7vR/UitlZuxfQMgBgmOde/PBPSToiv3Ej26JvLYfiSGsGnLfCqCsAjMy1UVcAGBmrfcH4OsUzfjHip6YI4FPtd9mfA5boPaQ86ANCnU6nc17VAs7dnc+Z/4dx1Tf/738Bw5gx/w/jy/w/jK9OJznuIv9x3BMBgMvNHD8w5P3/5/P9r/M3B36wfPSMD86zVgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHC59db/reRrgU9FoVCpRDwTETNRTB6u1mtzEfFsRPxxojiR5udHXGcA4LQKf03y9b/uTL8ydajohZsHyVJE/OgXb//8vcV2e/MPEaXknxO94+0P8uPVEwUunVULAIAn643T2b7vQf7jvUdLve0i6/O3b0ZEuRt/f68U+wfxr8f1bF+OYkRM/ivJ811J39zFaey+HxGfHdT+JKayOZDuyqdH46exn7nQ+IVD8QtZWXef/l185gzqAuPmw7T/eXPQ/VeI29l+8P1fznqo08v7v/RSS/tZH/hJ/F7/d21I/3f7uDFe/e23u6kbj5e9H/H56xG92Pt9/U8vfjIk/ivHjP/nL7zw0rCyzi8j7sTg+P2xZtuNjdnW9s691cbiSm2ltl6tLswvzL1+/7XqbDZHPTt8NPj7G3efHVaWtn9ySPzyU9r/5WO2/1f/fef7X3pC/K++PCh+IW49IX46Jn7lmPEXJ39THlaWxl8e0v6n/fzvHjP+R3/ZeWzZcABgdFrbO2uL9XptU0Li8ifSf7KXoBoDE9842at6zzcnj1WKwUU/ebl7xb6iTmdtsfe7/wmbM6zHOItZN+AyOLjpI+I/o64MAAAAAAAAAAAAAAAw0EV8OmrUbQQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAODq+l8AAAD//5WlxZA=")
openat(0xffffffffffffff9c, &(0x7f0000000100)='./bus\x00', 0x42, 0x6e)

2m18.548776923s ago: executing program 32 (id=25):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200000, &(0x7f0000000040)={[{@nouid32}, {@errors_remount}, {@lazytime}, {@noquota}]}, 0x1, 0x51b, &(0x7f00000001c0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000100)='./bus\x00', 0x42, 0x6e)

1m29.0546533s ago: executing program 4 (id=163):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000000c0), 0x32, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r3 = openat2$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
mknodat(r3, 0x0, 0x1, 0x0)
r4 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x41)
copy_file_range(r4, 0x0, r4, &(0x7f0000000080)=0x8800000, 0x1, 0x0)

1m27.306599063s ago: executing program 4 (id=167):
syz_emit_ethernet(0x2a, &(0x7f00000001c0)={@broadcast, @local, @void, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0xa, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3b}, @private=0xa010102, @empty, @loopback}}}}, 0x0)

1m26.95759066s ago: executing program 4 (id=170):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000280)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x800, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x10000000000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
mmap$fb(&(0x7f0000ff9000/0x4000)=nil, 0x4000, 0x0, 0x13, r2, 0xd8000)
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000240)={0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, &(0x7f0000000440)="97713b46fbaa2b1044f2d408ffca802db4d770eb9874f493e0ef367e4bde497c403b450c72ff2417d079bb892435a1e107fa5c0ecd207d9e6f2a209bf148e6bc56955cb53347d1499097488fcad724a1"})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000600), 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x54, 0x0, &(0x7f0000000740)="c2f46f02cca317dfac58a127aae9a229ac74cd2e253529e7b3f9f67ff1cf010bf05f8bc4686b2b34c69d85fd71a36790a474e6439586f48c8e21f09cfa30c6a4c0be3b00d270ae5bb69c9c82b24b762164ad209c"})

1m25.61218306s ago: executing program 4 (id=176):
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f00000004c0)={[{@noload}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}, {@bh}, {@noload}, {@data_err_ignore}, {@usrjquota}]}, 0xff, 0x44d, &(0x7f0000000900)="$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")
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0xf8c0e, 0x0, 0x3, 0x0, &(0x7f0000000080))
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x10000, &(0x7f00000002c0)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './bus'}}], [], 0x2c})
chdir(&(0x7f0000000140)='./file0\x00')
r0 = open(&(0x7f0000000080)='./file1\x00', 0x64842, 0x86)
write$FUSE_NOTIFY_RETRIEVE(r0, &(0x7f0000000040)={0x30, 0x5, 0x0, {0x0, 0x4, 0x5, 0xfffff801}}, 0x30)

1m24.608217646s ago: executing program 4 (id=180):
sendmsg$IPVS_CMD_SET_INFO(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x40081c4}, 0x44000)
r0 = socket(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=ANY=[@ANYBLOB="0200000004000000020000000c000000001466bfdac3c37dd5273545b9193c412d42832b1bc897a82f6f0b95c99bcf82e5ef1a49736b94ceead334e440a96111d5713c3408ca3de393208cc5dfb2d637ec39407436c4494f0d20"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x14, &(0x7f0000000980)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb7020000080000", @ANYRESHEX=r0], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$alg(0x26, 0x5, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f00000008c0)=ANY=[], 0xbc}}, 0x0)
bind$alg(r2, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
sendmsg$IPVS_CMD_GET_DEST(r1, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10805}, 0x44049)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x0)

1m21.921831347s ago: executing program 4 (id=191):
r0 = syz_usb_connect(0x2, 0x2d, &(0x7f0000000240)=ANY=[@ANYBLOB="12010000459bb2405804035000000000000109021b000111000000090400000195699b", @ANYRES8], 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$rtl8150(r0, &(0x7f0000000400)={0x14, 0x0, &(0x7f00000001c0)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0xc0a}}}, 0x0)

1m21.220797988s ago: executing program 33 (id=191):
r0 = syz_usb_connect(0x2, 0x2d, &(0x7f0000000240)=ANY=[@ANYBLOB="12010000459bb2405804035000000000000109021b000111000000090400000195699b", @ANYRES8], 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$rtl8150(r0, &(0x7f0000000400)={0x14, 0x0, &(0x7f00000001c0)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0xc0a}}}, 0x0)

53.615553964s ago: executing program 6 (id=274):
syz_mount_image$ext4(&(0x7f0000000380)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8052, &(0x7f00000001c0), 0x43, 0x4f7, &(0x7f0000000740)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f00000000c0)=ANY=[@ANYBLOB="000000004c900200000000000300010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000ffffffffffffffff00000000000000000015000000000000000000000000000000000000000000000000000000000000ffffffff0000000009000000000000000a000000000000000000000000000047d1504ba043203a9b2d00"])

52.177580262s ago: executing program 7 (id=281):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x7, &(0x7f0000000040)={0x0, 0x0, 0x8000, 0x3ff})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x9)
timer_settime(r0, 0x1, &(0x7f0000000040)={{0x77359400}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mremap(&(0x7f0000ceb000/0x2000)=nil, 0x2000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)

51.736020901s ago: executing program 7 (id=283):
syz_mount_image$erofs(&(0x7f0000000040), &(0x7f0000000000)='./file2\x00', 0x20404a, &(0x7f00000003c0)=ANY=[], 0xfd, 0x1e1, &(0x7f0000000640)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file2\x00', 0x80000, 0x0)
readahead(r0, 0x6, 0x1000009)

51.38171431s ago: executing program 6 (id=285):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = socket$unix(0x1, 0x2, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000440)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x7, 0x6361, 0x5, 0xffffffff, 0x6}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x240080c1}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0x80000, {0x0, 0x0, 0x0, r3, {0x0, 0x6}, {0x3, 0xb}, {0xffe0, 0x6}}, [@qdisc_kind_options=@q_pfifo_fast={0xf}]}, 0x34}, 0x1, 0x0, 0x0, 0x2404c0f1}, 0x6008000)

51.072220432s ago: executing program 7 (id=286):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x2008002, &(0x7f00000000c0)={[{@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1000}}, {@nodiscard}, {@quota}]}, 0x1, 0x558, &(0x7f0000000680)="$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")
r0 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
fsconfig$FSCONFIG_SET_FLAG(r0, 0x0, &(0x7f0000000080)='ro\x00', 0x0, 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0)

49.432215547s ago: executing program 6 (id=289):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000240)={[{@noblock_validity}, {}, {@sysvgroups}, {@resuid={'resuid', 0x3d, 0xee01}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodelalloc}, {@grpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
chmod(&(0x7f0000000380)='./file1\x00', 0x122)

49.17956958s ago: executing program 7 (id=290):
syz_mount_image$exfat(&(0x7f00000009c0), &(0x7f0000000000)='./file1\x00', 0x2000000, &(0x7f0000000380)={[{@utf8}, {@utf8}, {@uid={'uid', 0x3d, 0xee01}}, {@errors_continue}, {@iocharset={'iocharset', 0x3d, 'cp1251'}}, {@umask={'umask', 0x3d, 0x2}}, {@errors_remount}, {@dmask={'dmask', 0x3d, 0x3}}, {@dmask={'dmask', 0x3d, 0x8}}, {@gid={'gid', 0x3d, 0xee00}}]}, 0x1, 0x152b, &(0x7f0000001240)="$eJzs3AmYjtXbAPD7Puc8Y0zS2yTLcM65H95kOSZJsiTJkiRJkmRLSJrkLwmJIVvSkIRkGZJlCMkyMWns+74kJEmTJCHZkvNdir/66r8vvuub+3ddzzXnfs9zn+c87/0+8yyzfNN5SI1GNas2ICL4l+AvX5IBIBYABgDANQAQAEDZ+LLxF/pzSkz+1zbC/r0eSrvSM2BXEtc/e+P6Z29c/+yN65+9cf2zN65/9sb1z964/oxlZ5umFbiWl+y78PP/7IzP//+PZJUa88WaUtd3AYj5e1O4/tkb1///reDvWYnrn71x/bOr2Cs9AfZ/AB//2UGOv9jD9c/euP6MZWdX+vnzf36Rf7UfItnhPfgr+88YY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjP0XnPaXKQC41L7S82KMMcYYY4wxxti/j89xpWfAGGOMMcYYY4yx/zwEARIUBBADOSAWckIcCAC4GnLDNRCBayEeroM8cD3khXyQHwpAAhSEQqDBgAWCEApDEYjCDVAUboRiUBxKQElwUAoS4SYoDTdDGbgFysKtUA5ug/JQASpCJbgdKsMdUAXuhKpwF1SD6lADasLdUAvugdpwL9SB+6Au3A/14AGoDw9CA3gIGsLD0AgegcbwKDSBptAMmkOLfyr/BegOL0IP6AnJ0At6w0vQB/pCP+gPA+BlGAivwCB4FVJgMAyB12AovA7D4A0YDiNgJLwJo+AtGA1jYCyMg1QYDxPgbZgI78AkmAxTYCqkwTSYDu/CDJgJs+A9mA3vwxyYC/NgPqTDB7AAFkIGfAiL4CPIhMWwBJbCMlgOK2AlrILVsAbWwjpYDxtgI2yCzbAFtsI22A474GPYCZ/ALtgNe/5cv38k/9Sv8j+FvdAFAQEFClSoMAZjMBZjMQ7jMBfmwtyYGyMYwXiMxzyYB/NiXsyP+TEBE7AQFkKDBgkJC2NhjGIUi2JRLIbFsASWQIcOEzERS+PNWAbLYFksi+WwHJbHClgBK2ElrIyVsQpWwapYFathNayBNfBuvBt7YW2sjXWwDtbFupceT2EDbIANsSE2wkbYGBtjE2yCzbAZtsAW2BJbYitshW2wDbbFttgO22ESJmF7bI8dsAN2xI7YCTthZ+yMXbArds16IQfgi/gi9sRqohf2xt7YB1Ny9MP+2B9fxoH4Cr6Cr2IKDsYh+Bq+hq/jMDyJw3EEjsSRWFm8haNxDJIYh6mYihNwAk7EiTgJJ+NknIppOA2n43ScgTNxJr6Hs/F9fB/n4lycj+mYjgtwIWZgBi7CU5iJi3EJLsVluByX4UpchStxDa7FNbge1+NG3IibcTNuxa24Hbfjx6gA8BPcjbsxBffiXtyH+3A/7scDeACzMAsP4kE8hIfwMB7GI3gEj+IxPI7H8ASewJN4Ck/jaTyLZ/EcPpfwVcOPi69OAXGBEkrEiBgRK2JFnIgTuUQukVvkFhEREfEiXuQReURekVfkF/lFgkgQhUQhYYQRJMIYABBRERVFRVFRTBQTJUQJ4YQTiSJRlBalRRlRRpQVt4py4jZRXlQQrV0lUUlUFm1cFXGnqCqqimqiuqghaoqaopaoJWqL2qKOqCPqirqinnhA1Be9sB8+JC5UppEYjI3FEGwimgp58QhoKYZhK9FatBFPiBE4HNuJli5JPC3ai9HYQfxJjMFnRScxDjuL50UX0VV0Ey+I7qKV6yF6iknYS/QWU7GP6Cv6if5iBlYX7+HsnDXEqyJFDBZDxGtiPr4uhok3xHAxQowUb4pR4i0xWowRY8U4kSrGiwnibTFRvCMmicliipgq0sQ0MV28K2aImWKWeE/MFu+LOWKumCfmi3TxgVggFooM8aFYJD4SmWKxWCKWimViuVghVopVYrVYI9aKdWK92CA2ik1is9gitoptYrvYIT4WO8UnYpfYLfaIT8Ve8ZnYJz4X+8UX4oD4UmSJr8RB8bU4JL4Rh8W34oj4ThwVx8Rx8b04IX4QJ8UpcVqcEWfFj+Kc+EmcF16ARCmklEoGMkbmkLEyp4yTV8lcMrj47l4r4+V1Mo+8XuaV+WR+WUAmyIKykNTSSCtJhrKwLCKj8gZZVN4oi8nisoQsKZ0sJRPlTbK0vFmWkbfIsvJWWU7eJsvLCrKirCRvl5XlHRIiv2yjmqwua8ia8m6ZDPfI2vJeWUfeJ+vK+2U9+YCsLx+UDeRDsqF8WDaSj8jG8lHZRDaVzWRz2UI+JlvKx2Ur2Vq2kU/ItvJJ2U4+JZPk07K99Bc/Is/KTvI52Vk+L7vIrrKb/Emel172kD0l9ALZW74k+8i+sp/sLwfIl+VA+YocJF+VKXKwHCJfk0Pl63KYfEMOlyPkSPmmHCXfkqPlGDlWjpOpcrycIN+WE+U7cpKcLKfIqTJNTpP9Lo40S8q/mf/2r/MvnHrlNDno561vlJvkZrlFbpXb5Ha5Q34sd8qdcpfcJffIPXKv3Cv3yX1yv9wvD8gDMktmyYPyoDwkD8nD8rA8Io/Io/KYPCO/lyfkD/KkPCVPyTPyrDwrz118D0ChEkoqpQIVo3KoWJVTxamrVC51tcqtrlERda2KV9epPOp6lVflU/lVAZWgCqpCSiujrCIVqsKqiIqqG/DiB0aVUCWVU6VUorrpH8lXRdWNqpgq/pv8S/NL/gvza6FaqJaqpWqlWqk2qo1qq9qqdqqdSlJJqr1qrzqoDqqj6qg6qU6qs+qsuqguqpvqprqr7qqH6qGSVbLqrV5SfVRf1U/1VwPUy2qgGqgGqUEqRaWoIWqIGqqGqmFqmBquhquRaqQapUap0Wq0GqvGqlSVqiaoCWqimqgmqUlqipqi0lSamq6mqxlqhpqlZqnZaraao+aoeWqeSlfpaoFaoDJUhlqkFqlMtVgtVkvVUrVcLVcr1Uq1Wq1Wa9VatV6tV5lqk9qktqgtapvapnaoHWqn2ql2qV1qj9qj9qq9ap/ap/ar/eqAOqCyVJY6qA6qQ+qQOqwOqyPqiDqqjqrj6rg6oU6ok+qkOq1Oq7PqrDqnzqnz6ryCQIAIRKACFcQEMUFsEBvEBXFBriBXkDvIHUSCSBAfxAd5guuDvEG+IH9QIEgICgaFAh2YwAbiYtGjwQ1B0eDGoFhQPCgRlAxcUCpIDG4KSgc3B2WCW4Kywa1BueC2oHxQIagYVApuDyoHdwRVgjuDqsFdQbWgelAjqBncHdQK7glqB/cGdYL7grrB/UG94IGgfvBg0CB4KGgYPBw0Ch4JGgePBk2CpkGzoHnQ4t86vvcn8z3ueuieOln30r31S7qP7qv76f56gH5ZD9Sv6EH6VZ2iB+sh+jU9VL+uh+k39HA9Qo/Ub+pR+i09Wo/RY/U4narH6wn6bT1Rv6Mn6cl6ip6q0/Q0PV2/q2fomXqWfk/P1u/rOXqunqfn63T9gV6gF+oM/aFepD/SmXqxXqKX6mV6uV6hV+pVerVeo9fqdXq93qA36k16s96it+pterveoT/WO/UnepferffoT/Ve/Znepz/X+/UX+oD+Umfpr/RB/bU+pL/Rh/W3+oj+Th/Vx/Rx/b0+oX/QJ/UpfVqf0Wf1j/qc/kmf1/7Cxf2F07tRRpkYE2NiTayJM3Eml8llcpvcJmIiJt7Emzwmj8lr8pr8Jr9JMAmmkClkLiBDprApbKImaoqaoqaYKWZKmBLGGWcSTaIpbUqbMqaMKWvKmnKmnClvypuKpqK53dxu7jB3mDvNneYuc5epbqqbmqamqWVqmdqmtqlj6pi6pq6pZ+qZ+qa+aWAamIamoWlkGpnGprFpYpqYZqaZaWFamJampWllWpk2po1pa9qadqadSTJJpr1pbzqYDqaj6Wg6mU6ms+lsupguppvpZrqb7qaH6WGSTbLpbXqbPqaP6Wf6mQFmgBloBppBZpBJMSlmiBlihpqhZpgZZoabEWbkhQtV85YZbcaYsWacSTWpZoKZYCaaiWaSmWSmmCkmzaSZ6Wa6mWFmmFlmlpltZps5Zo6ZZ+aZdJNuFpgFJsNkmEVmkck0mWaJWWKWmWVmhVlhVplVZo1ZY9bBOrPBbDCbzCazxWwx28w2s8PsMDvNTrPL7DJ7zB6z1+w1+8w+s9/sNwfMAZNlssxBc9AcMofMYXPYHDFHzFFz1Bw3x80Jc8KcNCfNaXPanDX5Lp4vvYm1OW2cvcrmslfb3PYa+7/j/LaATbAFbSGrbV6b7zexsdYWs8VtCVvSOlvKJtqbfheXtxVsRVvJ3m4r2ztsld/Ftew9tra919ax99ma9u7fxHXt/baefcTWRwSwTW1D29w2so/YxvZR28Q2tc1sc9vWPmnb2adskn3atrfP/C5eYBfaVXa1XWPX2l12tz1tz9hD9ht71v5oe9iedoB92Q60r9hB9lWbYgf/Lh5p37Sj7Ft2tB1jx9pxv4un2Kk2zU6z0+27doad+bs43X5gZ9sMO8fOtfPs/J/jC3PKsB/aRfYjm2kDWGKX2mV2uV1hV/55rkvtervBbrQ77Sd2i91qt9ntdselC2G72+6xn9q99jN70H5t99sv7AF72GbZr36OL+zfYfutPWK/s0ftMXvcfm9P2B/UpewL+/69/cmet94CIQFJUhRQDOWgWMpJcXQV5aKrKTddQxG6luLpOspD11Neykf5qQAlUEEqRJoMWSIKqTAVoSjdQJemV4JKkqNSlEg3UWm6mcrQLVSWbqVydBuVpwpUkSrR7VSZ7qAqdCdVpbuoGlWnGlST7qZadA/VpnupDt1Hdel+qkcPUH16kBrQQ9SQHqZG9Ag1pkepCTWlZtScWtBj1JIep1bUmtrQE9SWnqR29BQl0dPUnp6hDvQn6kjPUid6jjrT89SFulI3eoG604vUg3pSMvWi3vQS9aG+1I/60wB6mQbSKzSIXqUUGkxD6DUaSq/TMHqDhtMIGklv0ih6i0bTGBpL4yiVxtMEepsm0js0iSbTFJpKaTSNptO7NINm0ix6j2bT+zSH5tI8mk/p9AEtoIWUQR/SIvqIMmkxLaGltIyW0wpaSatoNa2htbSO1tMG2kibaDNtoa20jbbTDvqYdtIntIt20x76lPbSZ7SPPqf99AUdoC8pi76ig/Q1HaJv6DB963vSd3SUjtFx+p5O0A90kk7RaTpDZ+lHOkc/0XnyBCGGIpShCoMwJswRxoY5w7jwqjBXeHWYO7wmjITXhvHhdWGe8Powb5gvzB8WCBPCgmGhUIcmtCGFYVg4LBJGwxvCouGNYbGweFgiLBm6sFSYGN4Ulg5vDsuEt4Rlw1vDcuFtYfmwQvjIfZXC28PK4R1hlfDOsGp4V1gtrB7WCGuGd4e1wnvC2uG9YZ3wvrBMeH9YL3wgrB8+GDYIHwobhg+HjcJHwsbho2GTsGnYLGwetggfC1uGj4etwtZhm/CJsG34ZNgufCpMCp8O24fP/Nx//8K/3J8c9gp7hy+FL4Xe3yvnRedH06MfRBdEF0Yzoh9GF0U/imZGF0eXRJdGl0WXR1dEV0ZXRVdH10TXRtdF10c3RDdGva+ZAxw64aRTLnAxLoeLdTldnLvK5XJXu9zuGhdx17p4d53L4653eV0+l98VcAmuoCvktDPOOnKhK+yKuKi7wRV1N7pirrgr4Uo650q5RNfctXAtXEv3uGvlWrs27gn3hHvSPemeck+5p11794zr4P7kOrpnXSf3nHvOPe+6uK6um3vBdXfjc/9yTCa73q636+P6uH6unxvgBriBbqAb5Aa5FJfihrghbqgb6oa5YW64G+5GupFulBvlRrvRbqwb61JdqpvgJriJbqKb5Ca5KW6KS3Npbrqb7ma4Ga7yzF+2MsfNcfPcPJfu0t0Cd+GaMcMtcotcpst0S9wSt8wtcyvcCrfKrXJr3Bq3zq1zG9wGt8ltclvcFrfNbXM73A630+10u/w1vwzq9rp9bp/b7/a7A+5Ll+W+cgfd1+6Q+8Yddt+6I+47d9Qdc8fd9+6E+8GddKfcaXfGnXU/unPuJ3feeZcaGR+ZEHk7MjHyTmRSZHJkSmRqJC0yLTI98m5kRmRmZFbkvcjsyPuROZG5kXmR+ZH0yAeRBZGFkYzIh5FFkY8imZHFkSWRpZFlkeUR7wtuCX1hX8RH/Q2+qL/RF/PFfQlf0jtfyif6m3xpf7Mv42/xZf2tvpy/zZf3FXxF/6hv4pv6Zr65b+Ef8y39476Vb+3b+Cd8W/+kb+ef8kn+ad/eP+M7+D/5jv5Z38k/5zv7530X39V38y/47v5F38P39Mm+l+/tX/J9fF/fz/f3A/zLfqB/xQ/yr/oUP9gP8a/5of51P8y/4Yf7EX5kzJt+1KVbZBjnU/14P8G/7Sf6d/wkP9lP8VN9mp/mp/t3/Qw/08/y7/nZ/n0/x8/18/x8n+4/8Av8Qp/hP/SL/Ec+0y++9FDSr/Ar/Sq/2q/xa/06v95v8Bv9Jr/Zb/Fb/Ta/3e/wH/ud/hO/y+/2e/ynfq//zO/zn/v9/gt/wH/ps/xX/qD/2h/y3/jD/lt/xH/nj/pj/rj/3p/wP/iT/pQ/7c/4s/5Hf87/5M/z36wxxhhjjP1dxl9uit/2/PI4v9cf5IhfrdwbAK7eWiDr1/0XrijX5f2l3VcktI0AwNM9Oz90aalWLTk5+eK6mRKCInMBLv0k6IIYuBwvhjbwJCRBayj9h/PvK7qepb8xfvRWgLhf5cTC5fjy+J8DYPIfjP/YEyMXlAtPx/+V8ecCFCtyOScnXI4XQ5ufn6+0hjJ/Yf75Wv6N+ef8IhWg1a9ycsHl+PL8E+FxeAaSfrMmY4wxxhhjjDH2i76iYsdL95+XfuPzj+7PE9TlnBxwOf5b9+eMMcYYY4wxxhi78p7t2u2px5KSWnf8xxtV/qmsv7vRGP5TI3PjDxveA1x6RQHAvzggwIWG/G/uxeb/yrZSLh46/7tr2RkfwP+NUv7zjbF/fuUKf2NijDHGGGOM/dtdvvr/7evqSk2IMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhjLhv4b/1fsSu8jY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxdqX9TwAAAP//HmP+kg==")
statx(0xffffffffffffffff, 0x0, 0x6000, 0x16, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002140), 0x8004, &(0x7f0000004600)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x0)
mount$bpf(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x20, &(0x7f0000002980)={[], [{@fowner_lt}]})

48.728254909s ago: executing program 6 (id=293):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
epoll_create1(0x80000)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000040)='./file0\x00', 0x802, &(0x7f0000000480)=ANY=[], 0x1, 0x2a4, &(0x7f00000001c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x40, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1002, 0x12)
write(r1, &(0x7f0000000a00)="c7", 0x1)
sendfile(r1, r0, 0x0, 0x3ffff)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x184)
fcntl$lock(r2, 0x24, &(0x7f0000000400)={0x0, 0x1, 0x101, 0x80000001})
lchown(&(0x7f0000000000)='.\x00', 0xffffffffffffffff, 0xee01)
fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0xfffffffb)
syz_emit_ethernet(0x86, &(0x7f0000000c00)=ANY=[@ANYBLOB="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"], 0x0)
symlinkat(&(0x7f0000001200)='./file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00')

48.451343524s ago: executing program 7 (id=295):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000540)=ANY=[@ANYBLOB="120100009f187620ef170372362e010203010902240001000010000904bc00029e8833000905020200020200000905820220"], 0x0)
syz_usb_control_io$rtl8150(r0, 0x0, 0x0)
syz_usb_control_io$rtl8150(r0, 0x0, &(0x7f00000029c0)={0x2c, &(0x7f0000000080)=ANY=[@ANYBLOB="200302"], 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000002640)={0x44, &(0x7f0000000500)={0x20, 0x10, 0x2, '!k'}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, &(0x7f0000000a80)={0x44, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000840)={0x40, 0xb, 0x2, "31fb"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$lan78xx(r0, 0x0, &(0x7f0000000000)={0x34, &(0x7f0000000040)=ANY=[@ANYBLOB="001602000000f610b311268b8f46611c"], 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000380)={0x2c, &(0x7f0000000200)={0x40, 0x17, 0x1, 't'}, 0x0, 0x0, 0x0, 0x0})
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000100)='./file0\x00', 0x624a9, &(0x7f0000001540)=ANY=[@ANYRESOCT, @ANYRES16, @ANYRES64, @ANYRES16, @ANYRESOCT, @ANYRES64, @ANYRES8, @ANYRES32], 0x1, 0x38d, &(0x7f0000001600)="$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")
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r1, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000000480)=""/74, 0x0})
timer_create(0x3, &(0x7f0000000080)={0x0, 0x40, 0x2, @thr={0x0, 0x0}}, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000400))
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000280)={0x0, 0x0, 0x0, &(0x7f0000000340)=""/185, &(0x7f0000000140)=""/92})
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f00000000c0)=0x1)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r1, 0x4008af60, &(0x7f0000000040)={@my=0x1})
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000002d80)={0x1, 0x0, [{0x0, 0x66, &(0x7f0000001b00)=""/102}]})
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000200)={0x28, 0x0, 0xffffffff, @my=0x1}, 0x10)
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)=""/57, 0x0, &(0x7f0000000500)=""/4092})
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000000)=0x1)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)

47.675736514s ago: executing program 7 (id=301):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x16, 0xf, &(0x7f0000000400)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x9}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0xfca804a0, 0x10, 0x38, &(0x7f00000002c0)="b800000500000000", &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

46.54843407s ago: executing program 34 (id=301):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x16, 0xf, &(0x7f0000000400)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x9}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x2}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0xfca804a0, 0x10, 0x38, &(0x7f00000002c0)="b800000500000000", &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

46.53134544s ago: executing program 6 (id=304):
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x1d, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x4, 0x40, 0x7fff0000}]})
getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x400000000008d}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_BIND_MAP(0xa, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_GET(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=ANY=[@ANYBLOB="440000000102030600000000000000"], 0x44}}, 0x0)

40.987549912s ago: executing program 6 (id=320):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0xb, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000006c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = syz_io_uring_setup(0x2532, &(0x7f0000000100)={0x0, 0x0, 0x400, 0x3, 0x20e}, &(0x7f0000000080), &(0x7f0000000000))
io_uring_register$IORING_REGISTER_BUFFERS(r3, 0x0, &(0x7f0000000040)=[{0x0}, {0x0}], 0x2)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r3, 0x10, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000540)=[{0x0}, {&(0x7f0000000340), 0xa002a0}], &(0x7f00000005c0), 0x2}, 0x20)

24.994938282s ago: executing program 35 (id=320):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0xb, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000006c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = syz_io_uring_setup(0x2532, &(0x7f0000000100)={0x0, 0x0, 0x400, 0x3, 0x20e}, &(0x7f0000000080), &(0x7f0000000000))
io_uring_register$IORING_REGISTER_BUFFERS(r3, 0x0, &(0x7f0000000040)=[{0x0}, {0x0}], 0x2)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r3, 0x10, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000540)=[{0x0}, {&(0x7f0000000340), 0xa002a0}], &(0x7f00000005c0), 0x2}, 0x20)

19.870774586s ago: executing program 3 (id=363):
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0)
r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x862b01)
write$char_usb(r0, 0x0, 0x0)

18.592617735s ago: executing program 3 (id=365):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
unshare(0x64000600)
bpf$PROG_LOAD(0x2, &(0x7f0000000680)={0x3, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

12.172147106s ago: executing program 1 (id=375):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = syz_open_dev$usbfs(&(0x7f0000000040), 0x20000007d, 0x0)
poll(&(0x7f0000000180)=[{r0, 0x200}], 0x1, 0x7)

11.983036189s ago: executing program 1 (id=377):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f0000000300)=ANY=[@ANYBLOB="0204000904000e"], 0x20}}, 0x40014)

11.011335955s ago: executing program 0 (id=378):
socket$inet6(0xa, 0x3, 0x5)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/uevent_seqnum', 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x200000000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
syz_mount_image$f2fs(&(0x7f0000000040), &(0x7f0000000280)='./file0\x00', 0x200841a, &(0x7f0000000880)=ANY=[@ANYBLOB="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", @ANYRES32=r0], 0x1, 0x5555, &(0x7f000000cf80)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x1a37c1, 0x42)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f00000024c0)=@raw={'raw\x00', 0x8, 0x3, 0x248, 0x140, 0xb, 0xd0e0011, 0x0, 0xc6, 0x218, 0x1d8, 0x190, 0x218, 0x1d8, 0x3, 0x0, {[{{@ip={@rand_addr, @broadcast, 0x0, 0x0, 'nr0\x00', '\x00', {}, {}, 0x1, 0x0, 0x3b}, 0x0, 0x70, 0xd8, 0x2000000}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x1, 0x101, 0x0, 0xc, 'netbios-ns\x00', 'syz1\x00', {0x27ff}}}}, {{@uncond, 0x0, 0x70, 0xd8}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x20000, 'syz1\x00', 'syz1\x00'}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2a8)
r4 = socket(0x10, 0x803, 0x0)
r5 = socket$inet(0x2, 0x4000000000000001, 0x0)
bind$inet(r4, &(0x7f0000000000)={0x2, 0x4e24, @broadcast}, 0x10)
write$tun(r0, 0xfffffffffffffffd, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[], 0x184}, 0x1, 0x0, 0x0, 0x2004c805}, 0x40880)
sendto$inet(r5, 0x0, 0x0, 0x2000877d, &(0x7f0000000180)={0x2, 0x4e23, @empty}, 0x10)
setsockopt$sock_int(r5, 0x1, 0x28, &(0x7f0000000600), 0x4)
sendto$inet(r5, &(0x7f0000000300)="0c268a927f1f6588b967481241ba78600a34f65ac618ded8974895abeaf4b4834ff959bcecc7a95425a3a07e758044ab4ea6f7", 0x33, 0x0, 0x0, 0x0)
setsockopt$sock_int(r4, 0x1, 0x22, &(0x7f0000000000)=0x6, 0x4)
sendto(r4, &(0x7f00000000c0)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
r6 = getpid()
process_vm_readv(r6, 0x0, 0x0, &(0x7f0000000800)=[{0x0}, {0x0}], 0x2, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x8000})

10.928522477s ago: executing program 1 (id=379):
socket$inet6(0xa, 0x2, 0x0)
socket(0x25, 0x4, 0xfffffffe)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeee, 0x8031, 0xffffffffffffffff, 0x4000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mmap$xdp(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x100000c, 0x11, 0xffffffffffffffff, 0x100000000)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r3, 0x6, 0x14, &(0x7f0000000280)=0x1, 0x4)
connect$inet6(r3, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}, 0x1000}, 0x1c)
sendto$inet6(r3, &(0x7f00000001c0)="a6e2976b5c4383036d32dadd2e144d8645ca8d1b230e105614396838da83c754887e7bea2f35d4ea667817d90d532af065f2e398dd9081ea16f8b371a202a6f9e505bbc964a0d3880bf0104a0a0a2f0d311efee1637e85a0125b38f961918f99bf9c2c146e42327f178dc2b3d4936e7f7f0a79f74ba464d83ab41742d1186776dc1779b5c50ac82d0fa8f9e42074b5b6079207fb21e718080907964669be539791e3e98687ee059853", 0xfffffffffffffcc1, 0x840, 0x0, 0x56)
mmap(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r3, 0x604ab000)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r3, 0x6, 0x23, &(0x7f0000000140)={&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0, &(0x7f0000001380)=""/4080, 0xfffffffffffffdcc, 0x0, 0x0, 0xffffffffffffff87}, &(0x7f0000000000)=0x40)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r3, 0x6, 0x23, &(0x7f0000000100)={&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000000c0)=0x40)

8.896903458s ago: executing program 1 (id=380):
syz_mount_image$ext4(&(0x7f0000000380)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8052, &(0x7f00000001c0), 0x43, 0x4f7, &(0x7f0000000740)="$eJzs3E9sFNUfAPDvbFva8udHf/z4oSBqEY2NxBYKCgcTg9HEgyZGTNRj0xaCFGpoSYSglsTg0ZB4NyZevHrwql6I8WTiFY8mhoQYLoCJcczszrTb7W7Llu0u2M8n2e6bN7Pz3tv33uyb97obwLo1mP1JKuFrEbE1Ikq1BwxWnm7fvDh+5+bF8a960vTYH0n5ZbduXhwvDs1PE5vyjaFSROmTZGFHlZnzF06NTU1Nns23R2ZPvz8yc/7Csyf78pgjRw4dPHD4+dHnmi9UnfSyct3a9dH07p2vvnvl9fHuIr5IrbocrTIYg/WyUvZUqxPrsC1V4aS7gxmhKVn7z6qrp9z/t0ZXLFd5c23MGbDW0jRNexvvnktrXVoSAzywkuh0DoDOKD7os/vf4lFvILBhbYYfHXfjaOUGKCv37fwR8Xg5spgH6am5v22lwYh4Z+7PL7JHrNE8BABAte+PFiPBmvHfQGVl5K9zV1/Mnv+Tr6EMRMR/I2JbRPwvIrZHxP8jYkdEPBQRD9ecvysi0mXSr51tnk9/fhGqdL1FRa0rG/+9kK9tLYz/FmVgoCvf2hJRDJgn9+fvyVD09B4/OTV5YJk0fnj5l88a7ase/2WPLP1iLJjn43p3zQTdxNjs2KoLXOPGpYhd3bXlT7ojkvm6SSJiZ0TsauK8A1Xhk898vXt+o2fxcSuXvyytu47WgnWm9MuIpyv1PxeL6n8hxWTR+uTpsROTJybPjM6vT470xdTk/pGsFeyvm8ZPP19+o1H6K5b/299qX/LK4e+O5T3r3mX1v7Gq/UexfrtQ/oEkIplfr51pPo3Lv37a8J5mte1/Q/JWOVzcl34wNjt79kDEhuS1pfGjC68ttrPnmKuUf2hv/f6/LX9N9k48EhFZI340Ih6Lyh1ilvc9EfFEROxdpvw/vvTke6VVl39tZeWfqLn+VWo+KdpAVv8L6/WNAkm+NliJ6a/e1XVqz7U7DS4ed1f/h8qhoTxm6fWvnNdFl4hGOS0+7bKYv1v2LgIAAMD9rRQRm6vmkjZHqTQ8XJkD2h4bS1PTM7P7jk+fOzOR7YsYiJ5SMdNVmQ/uSYr5z4Gq7dGa7YP5vPHnXf3l7eHx6amJjpYc2FTu80lpOOLtrqr+n/m9NVPMwP3M97Vg/Vqu/2eD+B1X2pgZoK3u/vP/6odrmhGg7ar6f6Nv+M+t4v++gAeA+39gwco/9OOaAQ++VF+Gda2p/r/PjwDCv0l3vDkfrnxRMU3TjzuYIaBtjP9hXVrxe/33FEh76+/qi6UHR9/yJ+yK1WWjv05aaxLoX+GYbGTVhmw0n7H6v+eQN5CGx0SpuRP2Rmvq9Pg9vhtzZ2dO7Gh540/z/5VvdQ1+05Z+Wi/QkcsRAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAy/0TAAD//6Xb41U=")
syz_mount_image$fuse(0x0, &(0x7f0000000340)='./bus\x00', 0x181180f, 0x0, 0xfd, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000040)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x58)

7.591483858s ago: executing program 1 (id=381):
clock_gettime(0x7, &(0x7f0000000040))
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
eventfd2(0x9, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
timer_delete(0x0)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f00000008c0)='/proc/tty/drivers\x00', 0x0, 0x0)
lseek(r3, 0x13, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
r4 = fsopen(&(0x7f0000000080)='binder\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f00000003c0)='/proc/tty/ldiscs\x00', 0x0, 0x0)
io_submit(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))

7.537836568s ago: executing program 0 (id=382):
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x1, 0x5, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0)
close(r0)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r1, 0xc004743e, 0x110e22fff2)
ioctl$TUNGETVNETLE(r0, 0x40047451, &(0x7f00000002c0))

4.212882732s ago: executing program 3 (id=386):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$CAN_RAW_FILTER(0xffffffffffffffff, 0x65, 0x1, 0x0, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000140)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x7ff, 0xf83, 0x3}, 0x1c)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f00000005c0)=0x9, 0xfc17)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000480)={'syz_tun\x00', <r2=>0x0})
sendto$packet(r1, &(0x7f00000002c0)="05030500d3fc030000004788800509101128", 0x100f, 0x4, &(0x7f0000000140)={0x11, 0x88a8, r2, 0x1, 0x0, 0x6, @multicast}, 0x14)

4.056071177s ago: executing program 0 (id=387):
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000200), 0x140, 0x0)
ioctl$RTC_SET_TIME(r0, 0x4024700a, &(0x7f00000000c0)={0x38, 0x2b, 0xa, 0x6, 0xb, 0x81, 0x2, 0xea, 0x1})

3.740021113s ago: executing program 3 (id=390):
socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0xfa, 0x0, 0x2f0}]}, 0x10)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_UNLABEL_C_ACCEPT(r0, 0x0, 0x20000000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee6, 0x8031, 0xffffffffffffffff, 0xd15d000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000540)={&(0x7f0000000100)={0x2, 0x0, @loopback}, 0x10, &(0x7f0000000580)=[{&(0x7f0000000600)="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", 0xa00}], 0x1, &(0x7f0000000080)=ANY=[@ANYRES16, @ANYRES8=r1, @ANYRES8=r1], 0x38}, 0x0)
sched_setscheduler(r1, 0x5, &(0x7f0000000240)=0xfffff800)
r4 = getpid()
r5 = syz_pidfd_open(r4, 0x0)
setns(r5, 0x24020000)
mkdirat(0xffffffffffffff9c, 0x0, 0x152)
add_key$keyring(&(0x7f0000000200), &(0x7f0000000140)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff)
r6 = add_key$fscrypt_v1(&(0x7f00000002c0), &(0x7f0000000300)={'fscrypt:', @auto=[0x63, 0x62, 0x32, 0x30, 0x65, 0x32, 0x31, 0x35, 0x37, 0x37, 0x30, 0x61, 0x61, 0x38, 0x39, 0x36]}, &(0x7f0000000440)={0x0, "8527d2100090af54bfbca283be11c0de7af30e94937920fcba13ce0af61beaa44d66a6535daf1bc35fb3af1e9197d71d26589d077c88184095fb00", 0x14}, 0x48, 0xffffffffffffffff)
keyctl$unlink(0x9, r6, 0xffffffffffffffff)
mount$bind(&(0x7f0000000200)='.\x00', &(0x7f00000004c0)='./file0\x00', 0x0, 0x2125099, 0x0)
umount2(&(0x7f0000000040)='.\x00', 0x2)

3.71744902s ago: executing program 0 (id=391):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r0=>0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x10162, 0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x4})
syz_genetlink_get_family_id$ipvs(0x0, 0xffffffffffffffff)
sendmsg$IPVS_CMD_DEL_DAEMON(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x20000000}, 0x40008c1)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
ioctl$EVIOCSREP(0xffffffffffffffff, 0x40084503, &(0x7f0000000140)=[0xffff, 0x3])
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000100)={0x0, 0x0})
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0x42795000)
r1 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000000), 0x40, 0x0)
preadv2(r1, &(0x7f0000000200)=[{&(0x7f0000000500)=""/61, 0x3d}], 0x1, 0x40, 0x4, 0x0)

3.477502089s ago: executing program 5 (id=392):
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x9, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r2, 0x6, 0x0, 0x0, 0x0)
r3 = fsmount(r2, 0x0, 0x80)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000000c0)={r1, r3, 0x16, 0x0, @void}, 0x10)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000004c40)={@private2}, 0x14)

2.561374788s ago: executing program 3 (id=393):
r0 = socket$inet6(0xa, 0x3, 0xff)
setsockopt$inet6_IPV6_RTHDR(r0, 0x29, 0x39, &(0x7f0000000000)=ANY=[@ANYBLOB="00020201"], 0x18)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
r1 = dup(r0)
shutdown(r1, 0x1)
sendto$inet_nvme_pdu(r1, &(0x7f0000000080)=@data_h2c_no_hdigest={{0x6, 0x2, 0x18, 0x18, 0x8}, 0x3, 0xf, 0x6, 0x10001, "4bf14a64"}, 0x80, 0x0, 0x0, 0x0)

2.495772107s ago: executing program 0 (id=394):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0xe22}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x8000000004)
pselect6(0x40, &(0x7f0000000100)={0x0, 0x3, 0x0, 0x1, 0x59b9, 0xfffffffffffffffd, 0x2000000000000, 0x4000000}, 0x0, &(0x7f0000000080)={0x1f, 0x3, 0x9114}, 0x0, 0x0)
writev(r1, &(0x7f0000000180)=[{&(0x7f00000001c0)="580000001500add427323b472545b4560a117fffffff81000e220e227f000001925aa80013007b00090080007f000001e809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee000000deff0000000200000000", 0x58}], 0x1)

2.495237991s ago: executing program 5 (id=395):
r0 = socket(0x2c, 0x3, 0x0)
setsockopt$inet_int(r0, 0x0, 0xd, 0x0, 0x0)

2.391818579s ago: executing program 5 (id=396):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f0000000100)={[{@grpid}, {@grpquota}]}, 0x4, 0x4eb, &(0x7f0000000540)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x180)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f00000001c0), 0x8, &(0x7f00000002c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
open(&(0x7f0000000000)='.\x00', 0x0, 0x0)

2.307324405s ago: executing program 3 (id=397):
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, 0x0, 0x0)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x2}, 0x4)
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000340)={0x0, 0x0, 0x52, 0x0, 0x1}, 0x28)
socket$netlink(0x10, 0x3, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r4)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000000c0)={0x1c, r5, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}}, 0x4000054)

2.174112494s ago: executing program 5 (id=398):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x6, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x9a974000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
chdir(0x0)

1.400360013s ago: executing program 0 (id=399):
syz_mount_image$ext4(&(0x7f0000000ac0)='ext4\x00', &(0x7f00000002c0)='./file1\x00', 0x3a1074c, &(0x7f0000000200)={[{@noauto_da_alloc}, {@block_validity}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4}}, {}, {@nodiscard}, {@grpid}, {@errors_remount}, {@abort}, {@test_dummy_encryption}]}, 0x1, 0x47e, &(0x7f0000000b00)="$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")
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000240)={'dummy0\x00'})
syz_open_dev$evdev(0x0, 0x2, 0x862b01)
syz_emit_ethernet(0x3e, &(0x7f00000003c0)={@multicast, @remote, @void, {@ipv6={0x86dd, @generic={0xc, 0x6, "5e9432", 0x8, 0xff, 0xff, @private1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', {[@fragment={0x87, 0x0, 0x4, 0x0, 0x0, 0x5, 0x67}]}}}}}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x61, 0x8e}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
pipe(0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r5, &(0x7f00000002c0)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r6, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000380)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x65f3, '\x00', r6, 0xffffffffffffffff, 0x1, 0x4}, 0x50)

823.633771ms ago: executing program 1 (id=400):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x800718, &(0x7f00000003c0)={[{@delalloc}, {@journal_dev={'journal_dev', 0x3d, 0x40000ff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x60}}, {@nobh}, {@resgid}, {@resuid}, {@nombcache}, {@noblock_validity}, {@usrquota}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x4}}]}, 0x2, 0x4a3, &(0x7f00000004c0)="$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")
chdir(&(0x7f0000000140)='./file0\x00')
creat(&(0x7f00000000c0)='./bus\x00', 0x0)

822.194557ms ago: executing program 5 (id=401):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
getrlimit(0x1, 0x0)
r1 = syz_io_uring_setup(0x111, &(0x7f0000000b00)={0x0, 0x35da, 0x2, 0x7, 0x367}, &(0x7f0000000140), &(0x7f0000000400))
io_uring_enter(r1, 0x2, 0x4000, 0xf, 0x0, 0x0)

0s ago: executing program 5 (id=402):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f0000000300)=ANY=[@ANYBLOB="0204000904"], 0x20}}, 0x40014)

kernel console output (not intermixed with test programs):

0 to HW filter on device batadv0
[   99.936196][ T5830] veth1_vlan: entered promiscuous mode
[   99.943584][ T5829] veth0_vlan: entered promiscuous mode
[   99.957648][ T5825] 8021q: adding VLAN 0 to HW filter on device batadv0
[  100.043080][ T5826] veth0_vlan: entered promiscuous mode
[  100.049977][ T5829] veth1_vlan: entered promiscuous mode
[  100.084692][ T5828] 8021q: adding VLAN 0 to HW filter on device batadv0
[  100.118058][ T5826] veth1_vlan: entered promiscuous mode
[  100.128570][ T5830] veth0_macvtap: entered promiscuous mode
[  100.154140][ T5830] veth1_macvtap: entered promiscuous mode
[  100.189558][ T5827] veth0_vlan: entered promiscuous mode
[  100.222275][ T5829] veth0_macvtap: entered promiscuous mode
[  100.235121][ T5829] veth1_macvtap: entered promiscuous mode
[  100.248455][ T5827] veth1_vlan: entered promiscuous mode
[  100.290116][ T5825] veth0_vlan: entered promiscuous mode
[  100.305656][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_0
[  100.324820][ T5830] batman_adv: batadv0: Interface activated: batadv_slave_1
[  100.338628][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_0
[  100.360876][   T13] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  100.377737][ T5829] batman_adv: batadv0: Interface activated: batadv_slave_1
[  100.397135][   T13] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  100.406299][   T13] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  100.431094][ T5826] veth0_macvtap: entered promiscuous mode
[  100.443844][   T13] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  100.454963][ T5825] veth1_vlan: entered promiscuous mode
[  100.478376][ T5826] veth1_macvtap: entered promiscuous mode
[  100.486684][   T13] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  100.498161][   T13] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  100.513890][ T5827] veth0_macvtap: entered promiscuous mode
[  100.532855][   T13] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  100.534011][ T5846] Bluetooth: hci1: command tx timeout
[  100.548710][   T13] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  100.589099][ T5827] veth1_macvtap: entered promiscuous mode
[  100.611288][ T5828] veth0_vlan: entered promiscuous mode
[  100.622053][ T5846] Bluetooth: hci0: command tx timeout
[  100.661070][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_0
[  100.693802][ T5846] Bluetooth: hci4: command tx timeout
[  100.694029][ T5841] Bluetooth: hci5: command tx timeout
[  100.699232][ T5846] Bluetooth: hci3: command tx timeout
[  100.704677][ T5840] Bluetooth: hci2: command tx timeout
[  100.725275][ T5828] veth1_vlan: entered promiscuous mode
[  100.741363][ T5825] veth0_macvtap: entered promiscuous mode
[  100.765825][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_1
[  100.828024][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_0
[  100.854160][   T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  100.862106][   T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  100.865141][ T5825] veth1_macvtap: entered promiscuous mode
[  100.904060][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  100.912182][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  100.945745][ T1099] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  100.957090][ T1099] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  100.969707][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_1
[  100.998313][ T1099] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  101.007534][ T1099] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  101.033728][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_0
[  101.058984][   T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  101.063855][ T3540] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  101.067023][   T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  101.075769][ T3540] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  101.128462][ T5828] veth0_macvtap: entered promiscuous mode
[  101.140081][   T49] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  101.181373][ T5825] batman_adv: batadv0: Interface activated: batadv_slave_1
[  101.201099][ T5828] veth1_macvtap: entered promiscuous mode
[  101.211773][   T49] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  101.256663][ T5830] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  101.282021][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_0
[  101.290565][   T49] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  101.300762][   T49] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  101.337193][   T49] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  101.381989][ T5828] batman_adv: batadv0: Interface activated: batadv_slave_1
[  101.415202][   T49] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  101.425278][   T49] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  101.461632][ T3540] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  101.485430][ T3540] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  101.536430][   T13] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  101.559224][   T13] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  101.569711][ T5970] loop5: detected capacity change from 0 to 2048
[  101.570008][ T5969] loop4: detected capacity change from 0 to 4096
[  101.641685][ T5970] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  101.666895][ T5969] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  101.695644][   T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  101.742526][   T13] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  101.747096][   T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  101.769861][ T5969] EXT4-fs (loop4): shut down requested (2)
[  101.770036][   T13] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  101.799449][   T13] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  101.888745][ T5829] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  101.938596][   T30] audit: type=1804 audit(1773712194.071:2): pid=5970 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.6" name=2F6E6577726F6F742F302F66696C65302F02 dev="loop5" ino=18 res=1 errno=0
[  102.046338][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  102.088895][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  103.233191][ T5980] bridge1: entered promiscuous mode
[  103.240034][ T5980] bridge1: entered allmulticast mode
[  103.268242][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  103.280141][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  103.316771][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  103.332605][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  104.328893][ T5976] loop4: detected capacity change from 0 to 40427
[  104.389203][ T5976] F2FS-fs (loop4): invalid crc value
[  104.439036][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  104.494030][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  104.515538][ T5830] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.558900][ T3540] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  104.682245][ T3540] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.027549][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  105.107683][ T5976] F2FS-fs (loop4): Failed to initialize F2FS segment manager (-4)
[  105.121883][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  105.206720][ T5989] loop0: detected capacity change from 0 to 4096
[  105.351658][ T5989] EXT4-fs (loop0): Test dummy encryption mode enabled
[  105.517039][ T5991] loop2: detected capacity change from 0 to 256
[  105.586538][ T5989] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  105.984258][ T5997] netlink: 32 bytes leftover after parsing attributes in process `syz.1.2'.
[  107.086664][ T5989] EXT4-fs error (device loop0): ext4_do_update_inode:5569: inode #15: comm syz.0.10: corrupted inode contents
[  107.191793][ T6005] loop3: detected capacity change from 0 to 256
[  107.238620][ T6005] =======================================================
[  107.238620][ T6005] WARNING: The mand mount option has been deprecated and
[  107.238620][ T6005]          and is ignored by this kernel. Remove the mand
[  107.238620][ T6005]          option from the mount to silence this warning.
[  107.238620][ T6005] =======================================================
[  107.274264][ T5989] EXT4-fs error (device loop0): ext4_dirty_inode:6450: inode #15: comm syz.0.10: mark_inode_dirty error
[  107.319440][ T5989] EXT4-fs error (device loop0): ext4_do_update_inode:5569: inode #15: comm syz.0.10: corrupted inode contents
[  107.463130][ T5989] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #15: comm syz.0.10: mark_inode_dirty error
[  107.502116][ T6005] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  107.520803][ T6010] loop4: detected capacity change from 0 to 1024
[  107.551525][ T6005] exFAT-fs (loop3): Medium has reported failures. Some data may be lost.
[  107.562481][ T6010] EXT4-fs: inline encryption not supported
[  107.583808][ T5989] EXT4-fs error (device loop0): ext4_do_update_inode:5569: inode #15: comm syz.0.10: corrupted inode contents
[  107.617907][ T6010] EXT4-fs: Ignoring removed bh option
[  107.635901][ T5989] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #15: comm syz.0.10: mark_inode_dirty error
[  107.665230][ T6012] loop1: detected capacity change from 0 to 1024
[  107.668594][ T5989] EXT4-fs error (device loop0): ext4_do_update_inode:5569: inode #15: comm syz.0.10: corrupted inode contents
[  107.732067][ T6005] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  107.941665][ T5989] EXT4-fs error (device loop0): ext4_truncate:4587: inode #15: comm syz.0.10: mark_inode_dirty error
[  108.383183][ T6005] exFAT-fs (loop3): failed to load alloc-bitmap
[  108.389551][ T6005] exFAT-fs (loop3): failed to recognize exfat type
[  108.416051][ T5989] EXT4-fs error (device loop0) in ext4_setattr:5983: Corrupt filesystem
[  108.576272][ T6012] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  108.591402][ T6010] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  108.622856][ T6021] loop5: detected capacity change from 0 to 1024
[  108.630728][ T6021] EXT4-fs: Ignoring removed bh option
[  108.637595][ T6021] EXT4-fs: Ignoring removed oldalloc option
[  108.647027][ T6021] EXT4-fs: Ignoring removed nobh option
[  108.880331][ T6021] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  108.988222][ T5826] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  109.194357][ T6029] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  109.961651][ T5829] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.010876][ T5825] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.065922][ T6021] EXT4-fs error (device loop5): mb_free_blocks:2044: group 0, inode 15: block 177:freeing already freed block (bit 11); block bitmap corrupt.
[  110.355075][ T6038] loop2: detected capacity change from 0 to 512
[  110.376867][ T6038] EXT4-fs (loop2): 1 truncate cleaned up
[  110.387062][ T6008] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  110.451471][ T5830] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  110.474132][ T6041] loop4: detected capacity change from 0 to 1024
[  110.482330][ T6038] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  110.516028][ T6041] EXT4-fs: Ignoring removed orlov option
[  110.555417][ T6041] EXT4-fs (loop4): stripe (2) is not aligned with cluster size (16), stripe is disabled
[  111.093596][ T6041] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.337570][ T6008] usb 4-1: unable to get BOS descriptor or descriptor too short
[  111.374878][ T6038] overlayfs: upper fs needs to support d_type.
[  111.416194][ T6008] usb 4-1: New USB device found, idVendor=1395, idProduct=0300, bcdDevice= 0.40
[  111.480809][ T6008] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  111.524273][ T6008] usb 4-1: Product: syz
[  111.560314][ T6008] usb 4-1: Manufacturer: syz
[  111.593042][ T6008] usb 4-1: SerialNumber: syz
[  111.708956][ T6055] loop0: detected capacity change from 0 to 2048
[  111.734029][ T5895] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  111.770031][ T5827] EXT4-fs error (device loop2): ext4_lookup:1785: inode #14: comm syz-executor: invalid fast symlink length 39
[  111.774979][ T6055] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  111.785175][ T5827] EXT4-fs error (device loop2): ext4_lookup:1785: inode #14: comm syz-executor: invalid fast symlink length 39
[  111.808347][ T6055] ext4 filesystem being mounted at /5/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  111.824709][ T5993] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  111.948111][ T5895] usb 5-1: config 1 has an invalid interface number: 249 but max is 1
[  111.963149][ T5895] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  111.983107][ T5895] usb 5-1: config 1 has 3 interfaces, different from the descriptor's value: 2
[  111.986272][ T6039] loop1: detected capacity change from 0 to 40427
[  111.992215][ T5895] usb 5-1: config 1 has no interface number 2
[  112.005517][ T5895] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  112.020625][ T6039] F2FS-fs (loop1): invalid crc value
[  112.038857][ T5895] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  112.055918][ T5993] usb 6-1: Using ep0 maxpacket: 32
[  112.063787][ T5895] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  112.077582][ T5993] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  112.089714][ T5895] usb 5-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  112.099518][ T5993] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  112.134745][ T5993] usb 6-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  112.156621][ T5993] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  112.173263][ T5895] usb 5-1: config 1 interface 1 has no altsetting 0
[  112.185034][ T5993] usb 6-1: config 0 descriptor??
[  112.197402][ T5895] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  112.203476][ T5993] hub 6-1:0.0: USB hub found
[  112.242961][ T5895] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  112.277994][ T6008] usb 4-1: 1:1 : UAC_AS_GENERAL descriptor not found
[  112.288831][ T5895] usb 5-1: Product: syz
[  112.306407][ T5895] usb 5-1: Manufacturer: syz
[  112.311188][ T5895] usb 5-1: SerialNumber: syz
[  112.319320][ T5827] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  112.358916][ T6039] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  112.403584][ T5895] cdc_ncm 5-1:1.0: skipping garbage
[  112.408875][ T5895] cdc_ncm 5-1:1.0: NCM or ECM functional descriptors missing
[  112.426171][ T6039] F2FS-fs (loop1): Start checkpoint disabled!
[  112.433950][ T5895] cdc_ncm 5-1:1.0: bind() failure
[  112.445977][   T36] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  112.453746][ T5993] hub 6-1:0.0: 1 port detected
[  112.482821][ T6039] F2FS-fs (loop1): f2fs_disable_checkpoint() finish, err:0
[  112.517817][ T5895] cdc_ncm 5-1:1.249: CDC Union missing and no IAD found
[  112.532604][ T5895] cdc_ncm 5-1:1.249: bind() failure
[  112.536242][ T6039] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  112.665283][ T5993] hub 6-1:0.0: hub_hub_status failed (err = -71)
[  112.684280][ T5993] hub 6-1:0.0: config failed, can't get hub status (err -71)
[  112.737343][ T5993] usbhid 6-1:0.0: can't add hid device: -71
[  112.760246][ T5993] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  112.777708][ T6008] usb 4-1: USB disconnect, device number 2
[  112.857308][ T5993] usb 6-1: USB disconnect, device number 2
[  112.862305][   T36] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  112.890849][ T5824] udevd[5824]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  113.035082][ T1099] kworker/u8:7: attempt to access beyond end of device
[  113.035082][ T1099] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  113.066509][    T9] usb 5-1: USB disconnect, device number 2
[  113.096627][ T1099] CPU: 0 UID: 0 PID: 1099 Comm: kworker/u8:7 Not tainted syzkaller #0 PREEMPT(full) 
[  113.096673][ T1099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  113.096694][ T1099] Workqueue: writeback wb_workfn (flush-7:1)
[  113.096758][ T1099] Call Trace:
[  113.096770][ T1099]  <TASK>
[  113.096784][ T1099]  dump_stack_lvl+0x100/0x190
[  113.096846][ T1099]  f2fs_handle_critical_error+0x5d7/0x970
[  113.096888][ T1099]  ? srso_alias_return_thunk+0x5/0xfbef5
[  113.096940][ T1099]  ? f2fs_build_fault_attr+0x53/0x280
[  113.097007][ T1099]  f2fs_write_end_io+0xc3f/0xf30
[  113.097054][ T1099]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  113.097102][ T1099]  ? srso_alias_return_thunk+0x5/0xfbef5
[  113.097156][ T1099]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  113.097197][ T1099]  bio_endio+0x7a3/0x910
[  113.097237][ T1099]  submit_bio_noacct+0x64c/0x2010
[  113.097299][ T1099]  f2fs_submit_write_bio+0x133/0x350
[  113.097339][ T1099]  __submit_merged_bio+0x331/0x7b0
[  113.097387][ T1099]  __submit_merged_write_cond+0x3fe/0x510
[  113.097439][ T1099]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  113.097494][ T1099]  ? __pfx___might_resched+0x10/0x10
[  113.097533][ T1099]  ? srso_alias_return_thunk+0x5/0xfbef5
[  113.097587][ T1099]  f2fs_write_cache_pages+0x21c0/0x2720
[  113.097661][ T1099]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[  113.097711][ T1099]  ? srso_alias_return_thunk+0x5/0xfbef5
[  113.097765][ T1099]  ? srso_alias_return_thunk+0x5/0xfbef5
[  113.097810][ T1099]  ? srso_alias_return_thunk+0x5/0xfbef5
[  113.097854][ T1099]  ? find_held_lock+0x2b/0x80
[  113.097897][ T1099]  ? nr_blockdev_pages+0xde/0x120
[  113.097945][ T1099]  ? nr_blockdev_pages+0xde/0x120
[  113.097986][ T1099]  ? srso_alias_return_thunk+0x5/0xfbef5
[  113.098049][ T1099]  ? si_meminfo+0x118/0x230
[  113.098081][ T1099]  ? srso_alias_return_thunk+0x5/0xfbef5
[  113.098127][ T1099]  ? srso_alias_return_thunk+0x5/0xfbef5
[  113.098235][ T1099]  ? srso_alias_return_thunk+0x5/0xfbef5
[  113.098279][ T1099]  ? rcu_is_watching+0x12/0xc0
[  113.098318][ T1099]  f2fs_write_data_pages+0x799/0x16d0
[  113.098362][ T1099]  ? srso_alias_return_thunk+0x5/0xfbef5
[  113.098413][ T1099]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  113.098471][ T1099]  ? srso_alias_return_thunk+0x5/0xfbef5
[  113.098531][ T1099]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  113.098580][ T1099]  do_writepages+0x278/0x600
[  113.098635][ T1099]  ? __pfx_do_writepages+0x10/0x10
[  113.098687][ T1099]  ? srso_alias_return_thunk+0x5/0xfbef5
[  113.098733][ T1099]  __writeback_single_inode+0x164/0x13c0
[  113.098775][ T1099]  ? find_held_lock+0x2b/0x80
[  113.098816][ T1099]  ? srso_alias_return_thunk+0x5/0xfbef5
[  113.098858][ T1099]  ? __pfx___writeback_single_inode+0x10/0x10
[  113.098900][ T1099]  ? srso_alias_return_thunk+0x5/0xfbef5
[  113.098945][ T1099]  ? do_raw_spin_unlock+0x145/0x1e0
[  113.098981][ T1099]  ? srso_alias_return_thunk+0x5/0xfbef5
[  113.099026][ T1099]  writeback_sb_inodes+0x766/0x1c70
[  113.099088][ T1099]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  113.099130][ T1099]  ? srso_alias_return_thunk+0x5/0xfbef5
[  113.099169][ T1099]  ? __lock_acquire+0x4a5/0x2630
[  113.099220][ T1099]  ? srso_alias_return_thunk+0x5/0xfbef5
[  113.099313][ T1099]  ? srso_alias_return_thunk+0x5/0xfbef5
[  113.099352][ T1099]  ? rcu_is_watching+0x12/0xc0
[  113.099386][ T1099]  ? srso_alias_return_thunk+0x5/0xfbef5
[  113.099427][ T1099]  ? queue_io+0x287/0x550
[  113.099465][ T1099]  wb_writeback+0x1c0/0xbe0
[  113.099503][ T1099]  ? srso_alias_return_thunk+0x5/0xfbef5
[  113.099557][ T1099]  ? __pfx_wb_writeback+0x10/0x10
[  113.099610][ T1099]  ? srso_alias_return_thunk+0x5/0xfbef5
[  113.099651][ T1099]  ? mark_held_locks+0x40/0x70
[  113.099702][ T1099]  ? _raw_spin_unlock_irq+0x23/0x50
[  113.099753][ T1099]  wb_workfn+0x142/0xc00
[  113.099800][ T1099]  ? srso_alias_return_thunk+0x5/0xfbef5
[  113.099840][ T1099]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  113.099888][ T1099]  ? __pfx_wb_workfn+0x10/0x10
[  113.099940][ T1099]  ? srso_alias_return_thunk+0x5/0xfbef5
[  113.099986][ T1099]  ? srso_alias_return_thunk+0x5/0xfbef5
[  113.100031][ T1099]  ? srso_alias_return_thunk+0x5/0xfbef5
[  113.100071][ T1099]  ? rcu_is_watching+0x12/0xc0
[  113.100114][ T1099]  process_one_work+0xa23/0x19a0
[  113.100167][ T1099]  ? __pfx_process_one_work+0x10/0x10
[  113.100197][ T1099]  ? srso_alias_return_thunk+0x5/0xfbef5
[  113.100252][ T1099]  ? srso_alias_return_thunk+0x5/0xfbef5
[  113.100301][ T1099]  worker_thread+0x5ef/0xe50
[  113.100347][ T1099]  ? __pfx_worker_thread+0x10/0x10
[  113.100381][ T1099]  ? kthread+0x13a/0x450
[  113.100433][ T1099]  ? __pfx_worker_thread+0x10/0x10
[  113.100464][ T1099]  kthread+0x370/0x450
[  113.100516][ T1099]  ? __pfx_kthread+0x10/0x10
[  113.100572][ T1099]  ret_from_fork+0x754/0xd80
[  113.100629][ T1099]  ? __pfx_ret_from_fork+0x10/0x10
[  113.100687][ T1099]  ? srso_alias_return_thunk+0x5/0xfbef5
[  113.100728][ T1099]  ? __switch_to+0x7b4/0x1120
[  113.100767][ T1099]  ? __pfx_kthread+0x10/0x10
[  113.100824][ T1099]  ret_from_fork_asm+0x1a/0x30
[  113.100884][ T1099]  </TASK>
[  113.100897][ T1099] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  113.617682][   T36] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  113.788790][ T5829] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.800327][   T36] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  113.830289][ T6063] loop3: detected capacity change from 0 to 512
[  113.876349][   T30] audit: type=1804 audit(1773712206.011:3): pid=6055 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.23" name="/newroot/5/file1/file1" dev="loop0" ino=15 res=1 errno=0
[  113.909054][ T6063] EXT4-fs: Ignoring removed mblk_io_submit option
[  113.958415][ T6063] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  114.008653][ T5841] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  114.025369][ T5841] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  114.034423][ T6063] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  114.045830][ T5841] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  114.069841][ T5841] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  114.078358][ T5841] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  114.135592][ T5928] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  114.153027][ T6063] EXT4-fs error (device loop3): ext4_validate_block_bitmap:440: comm syz.3.28: bg 0: block 384: padding at end of block bitmap is not set
[  114.233491][ T6063] loop3: lost filesystem error report for type 5 error -117
[  114.238257][ T6063] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6685: Corrupt filesystem
[  114.245704][    C0] EXT4-fs (loop3): error count since last fsck: 1
[  114.245810][    C0] EXT4-fs (loop3): initial error at time 1773712206: ext4_validate_block_bitmap:440
[  114.245852][    C0] EXT4-fs (loop3): last error at time 1773712206: ext4_validate_block_bitmap:440
[  114.319255][ T5826] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.374658][ T6063] loop3: lost filesystem error report for type 5 error -117
[  114.374864][ T5928] usb 6-1: Using ep0 maxpacket: 16
[  114.425533][ T6063] EXT4-fs error (device loop3): ext4_clear_blocks:874: inode #11: comm syz.3.28: attempt to clear invalid blocks 983260 len 1
[  114.505340][ T5928] usb 6-1: unable to get BOS descriptor or descriptor too short
[  114.545974][ T6063] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  114.551828][ T6063] EXT4-fs error (device loop3): ext4_free_branches:1020: inode #11: comm syz.3.28: invalid indirect mapped block 393216 (level 1)
[  114.583673][ T6063] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  114.585059][ T5928] usb 6-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  114.774912][ T6063] EXT4-fs error (device loop3): __ext4_get_inode_loc:4781: comm syz.3.28: Invalid inode table block 0 in block_group 0
[  115.094749][ T6063] loop3: lost filesystem error report for type 5 error -117
[  115.098730][ T6063] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6246: Corrupt filesystem
[  115.185571][ T6063] loop3: lost filesystem error report for type 5 error -117
[  115.191250][ T6063] EXT4-fs error (device loop3) in ext4_orphan_del:303: Corrupt filesystem
[  115.228999][   T36] bridge_slave_1: left allmulticast mode
[  115.250653][   T36] bridge_slave_1: left promiscuous mode
[  115.273052][ T6063] loop3: lost filesystem error report for type 5 error -117
[  115.275000][   T36] bridge0: port 2(bridge_slave_1) entered disabled state
[  115.292288][ T6063] EXT4-fs error (device loop3): __ext4_get_inode_loc:4781: comm syz.3.28: Invalid inode table block 0 in block_group 0
[  115.327820][ T6075] loop0: detected capacity change from 0 to 1024
[  115.351275][ T5928] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[  115.353297][ T6063] loop3: lost filesystem error report for type 5 error -117
[  115.368762][ T6075] EXT4-fs: inline encryption not supported
[  115.380670][ T5928] usb 6-1: New USB device found, idVendor=04b4, idProduct=931c, bcdDevice= 0.40
[  115.396510][ T5928] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  115.406171][ T6063] EXT4-fs error (device loop3) in ext4_reserve_inode_write:6246: Corrupt filesystem
[  115.416046][ T5928] usb 6-1: Product: syz
[  115.427399][   T36] bridge_slave_0: left allmulticast mode
[  115.446682][ T5928] usb 6-1: Manufacturer: syz
[  115.451324][ T5928] usb 6-1: SerialNumber: syz
[  115.458620][ T6075] EXT4-fs: Ignoring removed bh option
[  115.458812][ T6063] loop3: lost filesystem error report for type 5 error -117
[  115.464325][   T36] bridge_slave_0: left promiscuous mode
[  115.488364][ T6063] EXT4-fs error (device loop3): ext4_truncate:4587: inode #11: comm syz.3.28: mark_inode_dirty error
[  115.499873][   T36] bridge0: port 1(bridge_slave_0) entered disabled state
[  115.534401][ T6063] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  115.539042][ T6063] EXT4-fs error (device loop3) in ext4_process_orphan:345: Corrupt filesystem
[  115.581469][ T6075] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  115.596010][ T6063] loop3: lost filesystem error report for type 5 error -117
[  115.605073][ T6063] EXT4-fs (loop3): 1 truncate cleaned up
[  115.621306][ T6063] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.938025][ T5928] usb 6-1: unit 6: unexpected type 0x0d
[  115.943695][ T5928] usb 6-1: unit 0 not found!
[  115.968243][ T5826] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.003830][ T6082] loop4: detected capacity change from 0 to 16
[  116.037660][ T5928] usb 6-1: USB disconnect, device number 3
[  116.067183][ T6082] erofs (device loop4): mounted with root inode @ nid 36.
[  116.134118][ T5840] Bluetooth: hci2: command tx timeout
[  116.313516][ T5824] udevd[5824]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  116.532431][ T6087] loop4: detected capacity change from 0 to 1024
[  116.581421][ T6087] EXT4-fs (loop4): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock
[  116.602077][ T6087] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (42152!=20869)
[  116.654339][ T6087] EXT4-fs (loop4): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  116.694192][ T6087] EXT4-fs error (device loop4): ext4_get_journal_inode:5863: inode #5: comm syz.4.35: unexpected bad inode w/o EXT4_IGET_BAD
[  116.726880][ T6087] loop4: lost file I/O error report for ino 5 type 5 pos 0x0 len 0x0 error -117
[  116.727602][ T6087] EXT4-fs (loop4): no journal found
[  116.729476][   T36] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  116.736755][    C1] EXT4-fs (loop4): error count since last fsck: 1
[  116.736786][    C1] EXT4-fs (loop4): initial error at time 1773712208: ext4_get_journal_inode:5863: inode 5
[  116.736841][    C1] EXT4-fs (loop4): last error at time 1773712208: ext4_get_journal_inode:5863: inode 5
[  116.749837][ T6090] loop0: detected capacity change from 0 to 1024
[  116.804225][ T6087] EXT4-fs (loop4): can't get journal size
[  116.814302][   T36] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  116.829523][ T6091] loop5: detected capacity change from 0 to 256
[  116.837867][ T6090] EXT4-fs: Ignoring removed bh option
[  116.846496][ T6087] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  116.896893][   T36] bond0 (unregistering): Released all slaves
[  116.930963][ T6090] ext4: Unknown parameter 'obj_user'
[  116.945476][ T5829] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  117.084676][ T6091] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x32e3664b, utbl_chksum : 0xe619d30d)
[  117.223884][ T6091] exFAT-fs (loop5): start_clu is invalid cluster(0xffffffff)
[  117.253197][ T6020] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:482: comm ext4lazyinit: Invalid block bitmap block 0 in block_group 0
[  117.273336][ T5928] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  117.288213][ T6020] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:482: comm ext4lazyinit: Invalid block bitmap block 0 in block_group 0
[  117.344741][ T6096] loop4: detected capacity change from 0 to 1024
[  117.425272][ T6096] EXT4-fs error (device loop4): ext4_ext_check_inode:521: inode #4: comm syz.4.38: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  117.443074][ T5928] usb 1-1: Using ep0 maxpacket: 32
[  117.448392][ T6096] loop4: lost file I/O error report for ino 4 type 5 pos 0x0 len 0x0 error -117
[  117.450562][ T5928] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 73, changing to 10
[  117.459454][ T6096] EXT4-fs error (device loop4): ext4_quota_enable:7194: comm syz.4.38: Bad quota inode: 4, type: 1
[  117.459687][    C1] EXT4-fs (loop4): error count since last fsck: 1
[  117.488531][    C1] EXT4-fs (loop4): initial error at time 1773712209: ext4_ext_check_inode:521: inode 4
[  117.498379][    C1] EXT4-fs (loop4): last error at time 1773712209: ext4_ext_check_inode:521: inode 4
[  117.510951][ T5928] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 42530, setting to 1024
[  117.522449][ T5928] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  117.531780][ T5928] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  117.553136][ T5928] usb 1-1: config 0 descriptor??
[  117.559375][ T6090] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  117.561193][ T6096] loop4: lost filesystem error report for type 5 error -117
[  117.576030][ T5928] hub 1-1:0.0: USB hub found
[  117.606951][ T6096] EXT4-fs warning (device loop4): ext4_enable_quotas:7232: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  117.727095][ T6096] EXT4-fs (loop4): mount failed
[  117.814918][ T5928] hub 1-1:0.0: 1 port detected
[  117.991148][ T6105] netlink: 1688 bytes leftover after parsing attributes in process `syz.5.39'.
[  118.228662][ T5840] Bluetooth: hci2: command tx timeout
[  118.255667][ T5828] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.470473][ T6109] loop4: detected capacity change from 0 to 256
[  119.159425][ T6115] loop1: detected capacity change from 0 to 128
[  119.239253][ T5993] usb 1-1: reset high-speed USB device number 2 using dummy_hcd
[  119.360930][ T6115] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  119.426182][ T6115] ext4 filesystem being mounted at /4/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  119.648582][ T6115] fscrypt: AES-128-CBC-CTS using implementation "cts-cbc-aes-aesni"
[  119.694525][ T6065] chnl_net:caif_netlink_parms(): no params data found
[  119.934442][ T6115] fscrypt (loop1): Missing crypto API support for AES-128-CBC-ESSIV (API name: "essiv(cbc(aes),sha256)")
[  120.063164][ T5928] usb 1-1: USB disconnect, device number 2
[  120.072971][   T36] hsr_slave_0: left promiscuous mode
[  120.129274][   T36] hsr_slave_1: left promiscuous mode
[  120.178395][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  120.203284][   T36] batman_adv: batadv0: Removing interface: batadv_slave_0
[  120.208214][ T5825] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  120.234305][   T36] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  120.262106][   T36] batman_adv: batadv0: Removing interface: batadv_slave_1
[  120.294135][ T5840] Bluetooth: hci2: command tx timeout
[  120.309536][ T6140] loop4: detected capacity change from 0 to 256
[  120.333245][ T6140] exfat: Deprecated parameter 'namecase'
[  120.339719][ T6140] exfat: Bad value for 'gid'
[  120.373379][ T6140] exfat: Bad value for 'gid'
[  120.384503][   T36] veth1_macvtap: left promiscuous mode
[  120.390335][   T36] veth0_macvtap: left promiscuous mode
[  120.404689][   T36] veth1_vlan: left promiscuous mode
[  120.410317][   T36] veth0_vlan: left promiscuous mode
[  120.663009][ T5895] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  120.708403][ T6117] loop3: detected capacity change from 0 to 40427
[  120.773237][ T6117] F2FS-fs (loop3): invalid crc value
[  120.840132][ T5895] usb 5-1: config 1 has an invalid descriptor of length 242, skipping remainder of the config
[  120.886229][ T5895] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  120.926055][ T5895] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  120.937963][ T5895] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  120.977143][ T5895] usb 5-1: SerialNumber: syz
[  121.056831][ T6117] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  121.074559][ T6129] loop5: detected capacity change from 0 to 40427
[  121.105691][ T6117] F2FS-fs (loop3): Start checkpoint disabled!
[  121.112778][ T6129] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  121.143427][ T6129] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  121.152566][ T6117] F2FS-fs (loop3): f2fs_disable_checkpoint() finish, err:0
[  121.183785][ T6129] F2FS-fs (loop5): invalid crc value
[  121.198393][ T6117] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  121.221879][ T5895] usb 5-1: 0:2 : does not exist
[  121.433059][ T5895] usb 5-1: USB disconnect, device number 3
[  121.478092][ T6129] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  121.515221][ T6111] kworker/u8:12: attempt to access beyond end of device
[  121.515221][ T6111] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  121.542691][ T6151] netlink: 8 bytes leftover after parsing attributes in process `syz.1.47'.
[  121.577714][ T6111] CPU: 0 UID: 0 PID: 6111 Comm: kworker/u8:12 Not tainted syzkaller #0 PREEMPT(full) 
[  121.577764][ T6111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  121.577788][ T6111] Workqueue: writeback wb_workfn (flush-7:3)
[  121.577849][ T6111] Call Trace:
[  121.577860][ T6111]  <TASK>
[  121.577874][ T6111]  dump_stack_lvl+0x100/0x190
[  121.577932][ T6111]  f2fs_handle_critical_error+0x5d7/0x970
[  121.577976][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[  121.578023][ T6111]  ? f2fs_build_fault_attr+0x53/0x280
[  121.578089][ T6111]  f2fs_write_end_io+0xc3f/0xf30
[  121.578135][ T6111]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  121.578187][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[  121.578244][ T6111]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  121.578286][ T6111]  bio_endio+0x7a3/0x910
[  121.578326][ T6111]  submit_bio_noacct+0x64c/0x2010
[  121.578388][ T6111]  f2fs_submit_write_bio+0x133/0x350
[  121.578427][ T6111]  __submit_merged_bio+0x331/0x7b0
[  121.578476][ T6111]  __submit_merged_write_cond+0x3fe/0x510
[  121.578543][ T6111]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  121.578600][ T6111]  ? __pfx___might_resched+0x10/0x10
[  121.578639][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[  121.578699][ T6111]  f2fs_write_cache_pages+0x21c0/0x2720
[  121.578773][ T6111]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[  121.578824][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[  121.578878][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[  121.578922][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[  121.578969][ T6111]  ? find_held_lock+0x2b/0x80
[  121.579012][ T6111]  ? nr_blockdev_pages+0xde/0x120
[  121.579058][ T6111]  ? nr_blockdev_pages+0xde/0x120
[  121.579102][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[  121.579165][ T6111]  ? si_meminfo+0x118/0x230
[  121.579200][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[  121.579246][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[  121.579360][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[  121.579404][ T6111]  ? rcu_is_watching+0x12/0xc0
[  121.579450][ T6111]  f2fs_write_data_pages+0x799/0x16d0
[  121.579500][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[  121.579557][ T6111]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  121.579622][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[  121.579670][ T6111]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  121.579732][ T6111]  do_writepages+0x278/0x600
[  121.579793][ T6111]  ? __pfx_do_writepages+0x10/0x10
[  121.579850][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[  121.579901][ T6111]  __writeback_single_inode+0x164/0x13c0
[  121.579946][ T6111]  ? find_held_lock+0x2b/0x80
[  121.579992][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[  121.580039][ T6111]  ? __pfx___writeback_single_inode+0x10/0x10
[  121.580086][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[  121.580130][ T6111]  ? do_raw_spin_unlock+0x145/0x1e0
[  121.580169][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[  121.580220][ T6111]  writeback_sb_inodes+0x766/0x1c70
[  121.580288][ T6111]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  121.580333][ T6111]  ? do_raw_spin_lock+0x128/0x260
[  121.580372][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[  121.580474][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[  121.580518][ T6111]  ? rcu_is_watching+0x12/0xc0
[  121.580556][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[  121.580600][ T6111]  ? queue_io+0x287/0x550
[  121.580643][ T6111]  wb_writeback+0x1c0/0xbe0
[  121.580690][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[  121.580749][ T6111]  ? __pfx_wb_writeback+0x10/0x10
[  121.580807][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[  121.580851][ T6111]  ? mark_held_locks+0x40/0x70
[  121.580905][ T6111]  ? _raw_spin_unlock_irq+0x23/0x50
[  121.580959][ T6111]  wb_workfn+0x142/0xc00
[  121.581010][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[  121.581054][ T6111]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[  121.581105][ T6111]  ? __pfx_wb_workfn+0x10/0x10
[  121.581155][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[  121.581203][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[  121.581252][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[  121.581296][ T6111]  ? rcu_is_watching+0x12/0xc0
[  121.581342][ T6111]  process_one_work+0xa23/0x19a0
[  121.581398][ T6111]  ? __pfx_process_one_work+0x10/0x10
[  121.581434][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[  121.581494][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[  121.581546][ T6111]  worker_thread+0x5ef/0xe50
[  121.581593][ T6111]  ? __pfx_worker_thread+0x10/0x10
[  121.581630][ T6111]  ? kthread+0x13a/0x450
[  121.581688][ T6111]  ? __pfx_worker_thread+0x10/0x10
[  121.581720][ T6111]  kthread+0x370/0x450
[  121.581775][ T6111]  ? __pfx_kthread+0x10/0x10
[  121.581835][ T6111]  ret_from_fork+0x754/0xd80
[  121.581896][ T6111]  ? __pfx_ret_from_fork+0x10/0x10
[  121.581958][ T6111]  ? srso_alias_return_thunk+0x5/0xfbef5
[  121.582002][ T6111]  ? __switch_to+0x7b4/0x1120
[  121.582044][ T6111]  ? __pfx_kthread+0x10/0x10
[  121.582104][ T6111]  ret_from_fork_asm+0x1a/0x30
[  121.582167][ T6111]  </TASK>
[  121.992806][ T6111] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  122.067401][ T6129] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  122.083181][ T6129] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  122.113644][ T5824] udevd[5824]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  122.129960][ T6153] Zero length message leads to an empty skb
[  122.176286][   T36] team0 (unregistering): Port device team_slave_1 removed
[  122.223679][   T36] team0 (unregistering): Port device team_slave_0 removed
[  122.339399][ T6142] loop0: detected capacity change from 0 to 40427
[  122.347435][ T6142] f2fs: Bad value for 'resgid'
[  122.352518][ T6142] f2fs: Bad value for 'resgid'
[  122.373841][ T5840] Bluetooth: hci2: command tx timeout
[  122.674406][ T2229] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  122.816440][ T2229] usb 6-1: device descriptor read/64, error -71
[  123.133822][ T2229] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  123.422376][ T6161] loop3: detected capacity change from 0 to 256
[  123.452487][ T6161] exfat: Deprecated parameter 'namecase'
[  123.570434][ T6161] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xd8f5bb5e, utbl_chksum : 0xe619d30d)
[  123.723170][ T5895] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  125.452287][ T6174] syzkaller0: entered promiscuous mode
[  125.498905][ T6174] syzkaller0: entered allmulticast mode
[  125.595894][ T6191] syz.3.56 uses obsolete (PF_INET,SOCK_PACKET)
[  125.742341][ T6177] loop1: detected capacity change from 0 to 40427
[  125.774357][ T6177] F2FS-fs: heap/no_heap options were deprecated
[  125.806994][ T6177] F2FS-fs (loop1): invalid crc value
[  125.884822][ T6195] loop5: detected capacity change from 0 to 256
[  126.129732][ T6177] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  126.166808][ T6177] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  127.238931][ T6065] bridge0: port 1(bridge_slave_0) entered blocking state
[  127.251873][ T6065] bridge0: port 1(bridge_slave_0) entered disabled state
[  127.259794][ T6065] bridge_slave_0: entered allmulticast mode
[  127.267757][ T6065] bridge_slave_0: entered promiscuous mode
[  128.072473][ T6065] bridge0: port 2(bridge_slave_1) entered blocking state
[  128.091749][ T6065] bridge0: port 2(bridge_slave_1) entered disabled state
[  128.103226][ T6065] bridge_slave_1: entered allmulticast mode
[  128.157709][ T6065] bridge_slave_1: entered promiscuous mode
[  128.250187][ T6209] loop4: detected capacity change from 0 to 1024
[  128.278373][ T6209] EXT4-fs: Ignoring removed bh option
[  128.415282][ T6209] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  128.458626][ T6209] ext4 filesystem being mounted at /14/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  129.253699][ T6208] EXT4-fs error (device loop4): ext4_free_blocks:6723: comm syz.4.61: Freeing blocks not in datazone - block = 0, count = 16
[  129.410948][ T6065] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  129.442229][ T6208] EXT4-fs error (device loop4): ext4_validate_block_bitmap:440: comm syz.4.61: bg 0: block 112: padding at end of block bitmap is not set
[  129.466984][ T6218] loop3: detected capacity change from 0 to 256
[  129.477686][ T6218] exfat: Deprecated parameter 'utf8'
[  129.504094][ T6218] exfat: Deprecated parameter 'utf8'
[  129.509578][ T6218] exfat: Deprecated parameter 'utf8'
[  129.522489][ T6208] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6685: Corrupt filesystem
[  129.537621][ T6065] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  129.617754][ T6218] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011f3f, chksum : 0x96b62a4c, utbl_chksum : 0xe619d30d)
[  129.687053][ T6065] team0: Port device team_slave_0 added
[  129.717511][ T6065] team0: Port device team_slave_1 added
[  129.797658][ T5829] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  129.941992][ T6065] batman_adv: batadv0: Adding interface: batadv_slave_0
[  129.981133][ T6065] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  130.092048][ T6232] loop3: detected capacity change from 0 to 512
[  130.098585][ T6065] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  130.156982][ T6065] batman_adv: batadv0: Adding interface: batadv_slave_1
[  130.174393][ T6232] EXT4-fs: inline encryption not supported
[  130.213278][ T6065] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  130.275968][ T6234] binder: 6233:6234 ioctl c0306201 0 returned -14
[  130.286220][ T6232] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  130.321120][ T6065] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  130.379916][ T6232] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c119, mo2=0002]
[  130.479721][ T6241] overlayfs: failed to clone lowerpath
[  130.489959][ T6232] System zones: 1-12
[  131.348230][ T6232] EXT4-fs (loop3): 1 truncate cleaned up
[  131.409416][ T6232] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  131.519053][ T6065] hsr_slave_0: entered promiscuous mode
[  131.572099][ T6245] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  131.664070][ T6065] hsr_slave_1: entered promiscuous mode
[  131.701170][ T6065] debugfs: 'hsr0' already exists in 'hsr'
[  131.782351][ T6065] Cannot create hsr debugfs directory
[  131.970014][ T5828] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.012524][ T6252] loop1: detected capacity change from 0 to 128
[  132.084913][ T6252] EXT4-fs (loop1): Test dummy encryption mode enabled
[  132.172434][ T6252] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  132.292225][ T6252] ext4 filesystem being mounted at /8/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  132.383547][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[  132.390162][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[  132.431880][ T6252] fscrypt: AES-256-XTS using implementation "xts-aes-vaes-avx2"
[  132.710343][ T6261] loop3: detected capacity change from 0 to 128
[  132.807349][ T6261] EXT4-fs (loop3): Test dummy encryption mode enabled
[  132.839764][ T6261] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  132.896863][ T6261] ext4 filesystem being mounted at /9/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  133.153413][ T6065] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  134.186555][ T6065] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  134.203081][ T5825] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  134.944648][ T6065] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  135.039350][ T6065] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  135.048410][ T5828] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  135.791886][ T6300] loop3: detected capacity change from 0 to 512
[  135.890881][ T6300] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  135.983252][ T6300] EXT4-fs (loop3): 1 truncate cleaned up
[  136.016384][ T6300] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  136.298921][ T6299] loop4: detected capacity change from 0 to 256
[  136.417022][ T6065] 8021q: adding VLAN 0 to HW filter on device bond0
[  136.441451][ T6065] 8021q: adding VLAN 0 to HW filter on device team0
[  136.557556][ T5828] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  136.594219][ T6001] bridge0: port 1(bridge_slave_0) entered blocking state
[  136.601454][ T6001] bridge0: port 1(bridge_slave_0) entered forwarding state
[  136.728612][ T6001] bridge0: port 2(bridge_slave_1) entered blocking state
[  136.735877][ T6001] bridge0: port 2(bridge_slave_1) entered forwarding state
[  137.067497][ T6309] binder: BINDER_SET_CONTEXT_MGR already set
[  137.133475][ T6309] binder: 6306:6309 ioctl 4018620d 200000000040 returned -16
[  137.135310][ T6311] binder: 6306:6311 ioctl c0306201 0 returned -14
[  137.251019][ T6317] loop4: detected capacity change from 0 to 512
[  137.326194][ T6317] EXT4-fs error (device loop4): ext4_iget_extra_inode:5024: inode #15: comm syz.4.85: corrupted in-inode xattr: invalid size in ea xattr
[  137.414421][ T6317] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  137.419790][ T6317] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.85: couldn't read orphan inode 15 (err -117)
[  137.429189][    C1] EXT4-fs (loop4): error count since last fsck: 1
[  137.429219][    C1] EXT4-fs (loop4): initial error at time 1773712229: ext4_iget_extra_inode:5024: inode 15
[  137.429272][    C1] EXT4-fs (loop4): last error at time 1773712229: ext4_iget_extra_inode:5024: inode 15
[  137.475158][ T6317] loop4: lost filesystem error report for type 5 error -117
[  137.477827][ T6317] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  137.763049][ T2229] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  137.912988][ T2229] usb 5-1: Using ep0 maxpacket: 16
[  137.924941][ T2229] usb 5-1: unable to get BOS descriptor or descriptor too short
[  137.934748][ T2229] usb 5-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 127, changing to 7
[  137.959633][ T6065] 8021q: adding VLAN 0 to HW filter on device batadv0
[  138.005335][ T2229] usb 5-1: New USB device found, idVendor=103d, idProduct=0100, bcdDevice= 0.40
[  138.054399][ T2229] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  138.086453][ T2229] usb 5-1: Product: syz
[  138.090747][ T2229] usb 5-1: Manufacturer: syz
[  138.102976][ T2229] usb 5-1: SerialNumber: syz
[  138.375492][ T2229] usb 5-1: Audio class v2/v3 interfaces need an interface association
[  138.433282][ T2229] snd-usb-audio 5-1:1.0: probe with driver snd-usb-audio failed with error -22
[  139.562183][ T2229] usb 5-1: 2:1 : bogus bTerminalLink 6
[  141.284485][ T6358] loop0: detected capacity change from 0 to 512
[  141.291867][ T6358] EXT4-fs: Ignoring removed mblk_io_submit option
[  141.371961][ T6358] EXT4-fs: inline encryption not supported
[  141.411867][ T6358] EXT4-fs (loop0): Test dummy encryption mode enabled
[  141.446969][ T2229] usb 5-1: USB disconnect, device number 4
[  141.462643][ T6358] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  141.550355][ T5851] udevd[5851]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.1/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  141.625320][ T5829] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  141.719803][ T6358] EXT4-fs (loop0): 1 truncate cleaned up
[  141.817634][ T6065] veth0_vlan: entered promiscuous mode
[  141.854857][ T6358] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  141.879081][ T6065] veth1_vlan: entered promiscuous mode
[  142.035867][ T6065] veth0_macvtap: entered promiscuous mode
[  142.088498][ T6065] veth1_macvtap: entered promiscuous mode
[  142.414173][ T6065] batman_adv: batadv0: Interface activated: batadv_slave_0
[  142.426584][ T5826] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  142.451645][ T6378] loop4: detected capacity change from 0 to 512
[  142.463596][ T6065] batman_adv: batadv0: Interface activated: batadv_slave_1
[  142.516166][ T6378] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended
[  142.535858][   T49] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  142.560478][   T49] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  142.612210][ T6378] EXT4-fs (loop4): 1 truncate cleaned up
[  142.673504][   T49] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  142.694532][ T6378] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  142.743022][   T49] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  142.845134][ T6378] EXT4-fs error (device loop4): ext4_validate_block_bitmap:440: comm syz.4.98: bg 0: block 465: padding at end of block bitmap is not set
[  143.174286][ T5829] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  143.245308][ T6387] binder: BINDER_SET_CONTEXT_MGR already set
[  143.251429][ T6387] binder: 6386:6387 ioctl 4018620d 200000000040 returned -16
[  143.399952][   T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  143.483714][ T6387] binder: 6386:6387 ioctl c0306201 200000000240 returned -11
[  143.501336][   T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  144.661360][   T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  144.701949][   T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  145.185275][ T6409] loop0: detected capacity change from 0 to 256
[  145.545310][ T6409] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x1d73664b, utbl_chksum : 0xe619d30d)
[  145.839031][ T6409] exFAT-fs (loop0): valid_size(150994954) is greater than size(10)
[  146.687665][ T6431] loop6: detected capacity change from 0 to 2048
[  146.743887][ T6433] loop4: detected capacity change from 0 to 512
[  146.794458][ T6433] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended
[  146.824661][ T6431] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  146.851593][ T6433] EXT4-fs (loop4): 1 truncate cleaned up
[  146.882275][ T6433] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  146.937219][   T30] audit: type=1804 audit(1773712239.071:4): pid=6431 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.109" name=2F6E6577726F6F742F312F66696C65302F02 dev="loop6" ino=18 res=1 errno=0
[  147.132294][ T6441] loop3: detected capacity change from 0 to 256
[  147.246321][   T30] audit: type=1800 audit(1773712239.331:5): pid=6433 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.110" name="file1" dev="loop4" ino=13 res=0 errno=0
[  148.474208][ T6444] loop0: detected capacity change from 0 to 16
[  148.553392][ T6444] erofs (device loop0): mounted with root inode @ nid 36.
[  148.618092][ T6444] erofs (device loop0): readahead error at folio 2 @ nid 89
[  149.334131][ T5840] erofs (device loop0): failed to decompress (lz4) corrupted compressed data @ pa 4096 size 4096 => 4868
[  149.340398][ T6444] syz.0.111 (6444) used greatest stack depth: 19864 bytes left
[  149.444993][   T30] audit: type=1800 audit(1773712241.471:6): pid=6444 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.111" name="file2" dev="loop0" ino=89 res=0 errno=0
[  149.870543][ T6065] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.963316][ T6364] EXT4-fs error (device loop4): ext4_validate_block_bitmap:440: comm ext4lazyinit: bg 0: block 465: padding at end of block bitmap is not set
[  150.390036][ T5829] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.409932][ T6450] netlink: 1752 bytes leftover after parsing attributes in process `syz.6.113'.
[  150.548321][ T6455] loop4: detected capacity change from 0 to 16
[  150.606293][ T6455] erofs (device loop4): invalid ishare xattr prefix id 0
[  150.733263][ T5837] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  151.115010][ T6464] syzkaller0: entered promiscuous mode
[  151.121360][ T6464] syzkaller0: entered allmulticast mode
[  151.153424][ T5837] usb 1-1: Using ep0 maxpacket: 16
[  151.235236][ T5837] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  151.274909][ T5837] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  151.321525][ T5837] usb 1-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00
[  151.381611][ T5837] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  151.421984][ T5837] usb 1-1: config 0 descriptor??
[  152.271940][ T6453] loop0: detected capacity change from 0 to 2048
[  152.312177][ T6475] loop6: detected capacity change from 0 to 8192
[  152.424967][ T6475] vfat: Unknown parameter 'syzkaller0'
[  152.627970][ T5837] hid-steam 0003:28DE:1142.0001: unknown main item tag 0x0
[  152.743296][ T5837] hid-steam 0003:28DE:1142.0001: unknown main item tag 0x0
[  152.750569][ T5837] hid-steam 0003:28DE:1142.0001: unknown main item tag 0x0
[  152.833511][ T5837] hid-steam 0003:28DE:1142.0001: unknown main item tag 0x0
[  152.854760][ T5837] hid-steam 0003:28DE:1142.0001: unknown main item tag 0x0
[  152.872333][ T5837] hid-steam 0003:28DE:1142.0001: unknown main item tag 0x0
[  152.903988][ T6483] loop3: detected capacity change from 0 to 2048
[  153.129189][ T5837] hid-steam 0003:28DE:1142.0001: unknown main item tag 0x4
[  153.137295][ T5837] hid-steam 0003:28DE:1142.0001: unbalanced collection at end of report description
[  153.147949][ T5837] hid-steam 0003:28DE:1142.0001: steam_probe:parse of hid interface failed
[  153.158182][ T5837] hid-steam 0003:28DE:1142.0001: probe with driver hid-steam failed with error -22
[  153.174615][ T5837] usb 1-1: USB disconnect, device number 4
[  153.225183][ T6483] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  153.286342][ T6490] loop4: detected capacity change from 0 to 256
[  153.533040][   T30] audit: type=1804 audit(1773712245.651:7): pid=6483 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.125" name=2F6E6577726F6F742F31392F66696C65302F02 dev="loop3" ino=18 res=1 errno=0
[  154.878816][ T5828] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.174573][ T6501] netlink: 1752 bytes leftover after parsing attributes in process `syz.0.130'.
[  156.534881][ T6516] syzkaller0: entered promiscuous mode
[  156.540992][ T6516] syzkaller0: entered allmulticast mode
[  156.735505][ T6526] binder: BINDER_SET_CONTEXT_MGR already set
[  156.741531][ T6526] binder: 6524:6526 ioctl 4018620d 200000000040 returned -16
[  156.798264][ T6526] binder: 6524:6526 ioctl c0306201 200000000240 returned -11
[  158.045047][ T6541] loop6: detected capacity change from 0 to 256
[  158.196142][ T6548] loop1: detected capacity change from 0 to 2048
[  158.415548][ T6548] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  158.548076][ T6556] loop3: detected capacity change from 0 to 256
[  158.666292][ T6557] No such timeout policy "syz0"
[  159.286268][   T30] audit: type=1804 audit(1773712251.421:8): pid=6561 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.143" name=2F6E6577726F6F742F31382F66696C65302F02 dev="loop1" ino=18 res=1 errno=0
[  159.741661][ T5825] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.474972][ T6571] loop4: detected capacity change from 0 to 2048
[  160.664043][ T6571] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.734860][ T6571] ext4 filesystem being mounted at /32/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  161.615353][ T5829] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.650458][ T6594] syzkaller0: entered promiscuous mode
[  161.671594][ T6594] syzkaller0: entered allmulticast mode
[  161.980688][ T6604] futex_wake_op: syz.4.157 tries to shift op by 32; fix this program
[  162.357345][ T6606] loop3: detected capacity change from 0 to 256
[  162.491382][ T6612] ip6gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[  164.882427][ T6606] FAT-fs (loop3): Directory bread(block 64) failed
[  164.891079][ T6635] loop6: detected capacity change from 0 to 256
[  164.914862][ T6635] exfat: Deprecated parameter 'utf8'
[  164.932990][ T6635] exfat: Deprecated parameter 'utf8'
[  164.947213][ T6606] FAT-fs (loop3): Directory bread(block 65) failed
[  164.980421][ T6606] FAT-fs (loop3): Directory bread(block 66) failed
[  164.984459][ T6635] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[  165.097886][ T6606] FAT-fs (loop3): Directory bread(block 67) failed
[  165.216912][ T6606] FAT-fs (loop3): Directory bread(block 68) failed
[  165.253489][ T6606] FAT-fs (loop3): Directory bread(block 69) failed
[  165.260122][ T6606] FAT-fs (loop3): Directory bread(block 70) failed
[  165.320095][ T6606] FAT-fs (loop3): Directory bread(block 71) failed
[  165.382202][ T6606] FAT-fs (loop3): Directory bread(block 72) failed
[  165.453100][ T6606] FAT-fs (loop3): Directory bread(block 73) failed
[  166.178999][ T6647] loop0: detected capacity change from 0 to 1024
[  166.493842][ T6647] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  166.543117][ T6647] ext4 filesystem being mounted at /30/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  166.681831][ T6662] loop4: detected capacity change from 0 to 512
[  166.698678][ T6662] EXT4-fs: Ignoring removed bh option
[  166.730778][ T6662] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  166.785398][ T6662] EXT4-fs (loop4): 1 truncate cleaned up
[  166.805207][ T6662] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  166.969248][ T6662] overlayfs: upper fs needs to support d_type.
[  167.005325][ T6668] EXT4-fs error (device loop4): ext4_lookup:1785: inode #14: comm syz.4.176: invalid fast symlink length 39
[  167.204586][ T6676] loop6: detected capacity change from 0 to 256
[  167.566280][ T5829] EXT4-fs error (device loop4): ext4_lookup:1785: inode #14: comm syz-executor: invalid fast symlink length 39
[  167.689079][ T5829] EXT4-fs error (device loop4): ext4_lookup:1785: inode #14: comm syz-executor: invalid fast symlink length 39
[  167.739556][ T6652] EXT4-fs error (device loop0): ext4_validate_block_bitmap:440: comm ext4lazyinit: bg 0: block 32: padding at end of block bitmap is not set
[  167.872549][ T1099] EXT4-fs error (device loop0): ext4_map_blocks:818: inode #15: comm kworker/u8:7: lblock 0 mapped to illegal pblock 0 (length 4)
[  167.997525][ T1099] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 4 with error 117
[  168.093019][ T1099] EXT4-fs (loop0): This should not happen!! Data will be lost
[  168.093019][ T1099] 
[  168.152340][ T3463] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 36 with max blocks 1900 with error 28
[  168.365770][ T3463] EXT4-fs (loop0): This should not happen!! Data will be lost
[  168.365770][ T3463] 
[  168.460277][ T6690] loop6: detected capacity change from 0 to 512
[  169.300701][ T3463] EXT4-fs (loop0): Total free blocks count 0
[  169.333496][ T3463] EXT4-fs (loop0): Free/Dirty block details
[  169.343316][ T6690] EXT4-fs error (device loop6): ext4_orphan_get:1391: inode #15: comm syz.6.183: inode has both inline data and extents flags
[  169.353262][ T3463] EXT4-fs (loop0): free_blocks=0
[  169.356535][ T6690] loop6: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  169.361377][ T3463] EXT4-fs (loop0): dirty_blocks=1904
[  169.372936][    C1] EXT4-fs (loop6): error count since last fsck: 1
[  169.382406][    C1] EXT4-fs (loop6): initial error at time 1773712261: ext4_orphan_get:1391: inode 15
[  169.391886][    C1] EXT4-fs (loop6): last error at time 1773712261: ext4_orphan_get:1391: inode 15
[  169.401521][ T6690] EXT4-fs error (device loop6): ext4_orphan_get:1394: comm syz.6.183: couldn't read orphan inode 15 (err -117)
[  169.415917][ T6690] loop6: lost filesystem error report for type 5 error -117
[  169.455241][ T6690] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.481456][ T3463] EXT4-fs (loop0): Block reservation details
[  169.536756][ T6700] loop1: detected capacity change from 0 to 128
[  169.650785][ T6700] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  169.747064][ T6700] ext4 filesystem being mounted at /25/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  169.972864][ T5825] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  169.997144][ T6065] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.022754][ T5829] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  170.153044][ T5837] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  170.325311][ T5837] usb 1-1: Using ep0 maxpacket: 32
[  170.364571][ T5837] usb 1-1: config 0 has an invalid interface number: 184 but max is 0
[  170.393047][ T5837] usb 1-1: config 0 has no interface number 0
[  170.399214][ T5837] usb 1-1: config 0 interface 184 has no altsetting 0
[  170.452808][ T5837] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  170.464558][ T1099] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  170.473104][ T5837] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  170.493861][ T5837] usb 1-1: Product: syz
[  170.498048][ T5837] usb 1-1: Manufacturer: syz
[  170.513339][ T5837] usb 1-1: SerialNumber: syz
[  170.549757][ T5837] usb 1-1: config 0 descriptor??
[  170.627148][ T1099] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  170.751853][ T1099] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  170.934311][ T1099] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  171.055444][ T6731] syzkaller0: entered promiscuous mode
[  171.060963][ T6731] syzkaller0: entered allmulticast mode
[  171.215629][ T5837] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[  171.275280][ T5837] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  172.363666][ T5841] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  172.372875][ T5841] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  172.381387][ T5841] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  172.389664][ T5841] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  172.506430][ T5841] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  172.720221][ T5837] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000118: -71
[  172.807102][ T5837] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to write RX_ADDRH: -71
[  172.915053][ T5837] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to set mac address
[  173.003688][ T5837] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[  173.073968][ T5837] smsc75xx 1-1:0.184: probe with driver smsc75xx failed with error -71
[  173.140399][ T1099] bridge_slave_1: left allmulticast mode
[  173.153459][ T5837] usb 1-1: USB disconnect, device number 5
[  173.159412][ T1099] bridge_slave_1: left promiscuous mode
[  173.200893][ T1099] bridge0: port 2(bridge_slave_1) entered disabled state
[  173.265695][ T1099] bridge_slave_0: left allmulticast mode
[  173.271401][ T1099] bridge_slave_0: left promiscuous mode
[  173.323364][ T1099] bridge0: port 1(bridge_slave_0) entered disabled state
[  174.544997][ T5840] Bluetooth: hci4: command tx timeout
[  176.394938][ T6777] loop6: detected capacity change from 0 to 16
[  176.555173][ T6777] erofs (device loop6): mounted with root inode @ nid 36.
[  176.947189][ T5840] Bluetooth: hci4: command tx timeout
[  177.150777][ T1099] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  177.266728][ T1099] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  177.289360][ T6781] loop1: detected capacity change from 0 to 256
[  177.335634][ T1099] bond0 (unregistering): Released all slaves
[  177.447378][ T6781] FAT-fs (loop1): Directory bread(block 64) failed
[  177.511235][ T6781] FAT-fs (loop1): Directory bread(block 65) failed
[  177.571461][ T6781] FAT-fs (loop1): Directory bread(block 66) failed
[  177.646522][ T6781] FAT-fs (loop1): Directory bread(block 67) failed
[  177.699333][ T6781] FAT-fs (loop1): Directory bread(block 68) failed
[  177.773389][ T6781] FAT-fs (loop1): Directory bread(block 69) failed
[  177.829376][ T6781] FAT-fs (loop1): Directory bread(block 70) failed
[  177.898768][ T6781] FAT-fs (loop1): Directory bread(block 71) failed
[  177.921509][ T6781] FAT-fs (loop1): Directory bread(block 72) failed
[  177.930427][ T6781] FAT-fs (loop1): Directory bread(block 73) failed
[  178.047143][   T30] audit: type=1326 audit(1773712526.174:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6786 comm="syz.5.209" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fc87499c799 code=0x0
[  178.393318][ T5928] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  178.555078][ T5928] usb 4-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  178.575298][ T5928] usb 4-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  178.596497][ T5928] usb 4-1: config 1 has no interface number 1
[  178.620763][ T5928] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  178.741516][ T5928] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  178.752346][ T5928] usb 4-1: Product: syz
[  178.756877][ T5928] usb 4-1: Manufacturer: syz
[  178.761485][ T5928] usb 4-1: SerialNumber: syz
[  179.013456][ T5840] Bluetooth: hci4: command tx timeout
[  179.044023][ T5928] usb 4-1: 2:1: invalid format type 0x1022 is detected, processed as PCM
[  179.074452][ T5928] usb 4-1: 2:1 : sample bitwidth 43 in over sample bytes 4
[  179.091059][ T5928] usb 4-1: failed to enable PITCH for EP 0x82
[  179.346399][ T6816] loop1: detected capacity change from 0 to 128
[  179.416801][ T6816] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  179.459535][ T6816] ext4 filesystem being mounted at /30/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  179.554480][ T5928] usb 4-1: USB disconnect, device number 3
[  180.365880][ T5835] udevd[5835]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  180.518142][ T5825] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  180.534518][ T1099] hsr_slave_0: left promiscuous mode
[  180.550568][ T1099] hsr_slave_1: left promiscuous mode
[  180.576860][ T1099] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  180.622970][ T1099] batman_adv: batadv0: Removing interface: batadv_slave_0
[  180.694711][ T1099] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  180.702155][ T1099] batman_adv: batadv0: Removing interface: batadv_slave_1
[  180.726291][ T6838] capability: warning: `syz.5.222' uses deprecated v2 capabilities in a way that may be insecure
[  180.809000][ T1099] veth1_macvtap: left promiscuous mode
[  180.814747][ T1099] veth0_macvtap: left promiscuous mode
[  180.860821][ T1099] veth1_vlan: left promiscuous mode
[  180.873291][ T1099] veth0_vlan: left promiscuous mode
[  181.093296][ T5840] Bluetooth: hci4: command tx timeout
[  181.401363][ T6845] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  181.995467][ T6841] loop1: detected capacity change from 0 to 2048
[  183.327048][ T6841] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  183.505704][ T6841] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1312: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  183.589957][ T6841] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 65537 with max blocks 33 with error 28
[  183.657961][ T6841] EXT4-fs (loop1): This should not happen!! Data will be lost
[  183.657961][ T6841] 
[  183.734083][ T6841] EXT4-fs (loop1): Total free blocks count 0
[  183.774165][ T6841] EXT4-fs (loop1): Free/Dirty block details
[  183.799965][ T6841] EXT4-fs (loop1): free_blocks=2415919504
[  183.874338][ T6841] EXT4-fs (loop1): dirty_blocks=64
[  183.902743][ T6841] EXT4-fs (loop1): Block reservation details
[  183.938161][ T6841] EXT4-fs (loop1): i_reserved_data_blocks=4
[  183.979367][ T6841] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  184.018941][ T1099] team0 (unregistering): Port device team_slave_1 removed
[  184.103565][ T1099] team0 (unregistering): Port device team_slave_0 removed
[  184.422132][ T6858] loop6: detected capacity change from 0 to 256
[  185.018632][ T6749] chnl_net:caif_netlink_parms(): no params data found
[  185.474345][ T6872] loop3: detected capacity change from 0 to 2048
[  186.194309][ T6872] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  186.283064][ T6872] ext4 filesystem being mounted at /35/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  186.414556][ T6749] bridge0: port 1(bridge_slave_0) entered blocking state
[  186.429602][ T6749] bridge0: port 1(bridge_slave_0) entered disabled state
[  186.453972][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  186.462867][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  186.471782][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  186.480448][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  186.489016][ T6749] bridge_slave_0: entered allmulticast mode
[  186.588388][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  186.711929][ T6749] bridge_slave_0: entered promiscuous mode
[  186.733955][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  186.793304][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  186.854667][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[  186.858338][ T6749] bridge0: port 2(bridge_slave_1) entered blocking state
[  187.037309][ T6749] bridge0: port 2(bridge_slave_1) entered disabled state
[  187.098264][ T6749] bridge_slave_1: entered allmulticast mode
[  187.124844][ T6749] bridge_slave_1: entered promiscuous mode
[  187.174392][ T6899] input: syz1 as /devices/virtual/input/input5
[  187.217431][ T5828] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  187.401315][ T6749] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  187.499240][ T6749] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  187.564319][ T5837] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  187.594708][ T6904] loop6: detected capacity change from 0 to 4096
[  187.953151][ T5837] usb 2-1: Using ep0 maxpacket: 16
[  188.012437][ T6917] loop0: detected capacity change from 0 to 16
[  188.137565][ T5837] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  188.187283][ T6917] erofs (device loop0): mounted with root inode @ nid 36.
[  188.581966][ T6904] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  188.606748][ T5837] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  188.716653][ T6749] team0: Port device team_slave_0 added
[  188.733259][ T5837] usb 2-1: New USB device found, idVendor=28bd, idProduct=0042, bcdDevice= 0.00
[  188.799516][ T6749] team0: Port device team_slave_1 added
[  188.807062][ T5837] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  188.817494][ T6904] EXT4-fs error (device loop6): ext4_do_update_inode:5569: inode #15: comm syz.6.238: corrupted inode contents
[  188.873081][ T5837] usb 2-1: config 0 descriptor??
[  188.948872][ T6904] EXT4-fs error (device loop6): ext4_dirty_inode:6450: inode #15: comm syz.6.238: mark_inode_dirty error
[  189.151663][ T6749] batman_adv: batadv0: Adding interface: batadv_slave_0
[  189.169662][ T6904] EXT4-fs error (device loop6): ext4_do_update_inode:5569: inode #15: comm syz.6.238: corrupted inode contents
[  189.222974][ T6749] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  189.313520][ T6904] EXT4-fs error (device loop6): __ext4_ext_dirty:207: inode #15: comm syz.6.238: mark_inode_dirty error
[  189.374088][ T6904] EXT4-fs error (device loop6): ext4_do_update_inode:5569: inode #15: comm syz.6.238: corrupted inode contents
[  189.403921][ T6749] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  189.424062][ T5837] usbhid 2-1:0.0: can't add hid device: -71
[  189.464714][ T5837] usbhid 2-1:0.0: probe with driver usbhid failed with error -71
[  189.486041][ T6904] EXT4-fs error (device loop6): __ext4_ext_dirty:207: inode #15: comm syz.6.238: mark_inode_dirty error
[  189.531040][ T6749] batman_adv: batadv0: Adding interface: batadv_slave_1
[  189.560778][ T5837] usb 2-1: USB disconnect, device number 2
[  189.605657][ T6749] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  189.648068][ T6904] EXT4-fs error (device loop6): ext4_do_update_inode:5569: inode #15: comm syz.6.238: corrupted inode contents
[  189.710659][ T6904] EXT4-fs error (device loop6): ext4_truncate:4587: inode #15: comm syz.6.238: mark_inode_dirty error
[  189.747038][ T6749] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  189.768580][ T6904] EXT4-fs error (device loop6) in ext4_setattr:5983: Corrupt filesystem
[  190.012585][ T6065] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  190.055284][ T6749] hsr_slave_0: entered promiscuous mode
[  190.062649][ T6749] hsr_slave_1: entered promiscuous mode
[  190.143719][ T6749] debugfs: 'hsr0' already exists in 'hsr'
[  190.149513][ T6749] Cannot create hsr debugfs directory
[  190.377950][ T6927] loop0: detected capacity change from 0 to 128
[  190.432340][ T6927] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  190.458463][ T6930] loop6: detected capacity change from 0 to 256
[  190.494454][ T6931] loop1: detected capacity change from 0 to 256
[  190.544439][ T6927] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  190.619121][ T6931] exFAT-fs (loop1): failed to load upcase table (idx : 0x00012153, chksum : 0xc3dffc2e, utbl_chksum : 0xe619d30d)
[  190.721741][ T6931] exFAT-fs (loop1): failed to test first cluster bit of root dir(5)
[  191.411369][ T6749] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  191.436049][ T6948] loop6: detected capacity change from 0 to 2048
[  191.481390][ T6749] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  191.557202][ T6749] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  191.595632][ T6948] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  191.609451][ T6749] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  191.619572][ T6948] ext4 filesystem being mounted at /29/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  191.793728][ T2229] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  191.963282][ T2229] usb 2-1: Using ep0 maxpacket: 16
[  192.066063][ T2229] usb 2-1: config index 0 descriptor too short (expected 51443, got 18)
[  192.118180][    T0] NOHZ tick-stop error: local softirq work is pending, handler #300!!!
[  192.252348][ T2229] usb 2-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  192.323045][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  192.353751][ T2229] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  192.361793][ T2229] usb 2-1: Product: syz
[  192.374305][ T2229] usb 2-1: Manufacturer: syz
[  192.384279][ T2229] usb 2-1: SerialNumber: syz
[  192.385258][ T6971] netlink: 20 bytes leftover after parsing attributes in process `syz.0.251'.
[  192.411410][ T2229] r8152-cfgselector 2-1: Unknown version 0x0000
[  192.416805][ T6065] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.421193][ T2229] r8152-cfgselector 2-1: config 0 descriptor??
[  192.782824][ T6749] 8021q: adding VLAN 0 to HW filter on device bond0
[  192.970274][ T6749] 8021q: adding VLAN 0 to HW filter on device team0
[  193.055281][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[  193.062473][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[  193.119699][  T162] bridge0: port 2(bridge_slave_1) entered blocking state
[  193.126931][  T162] bridge0: port 2(bridge_slave_1) entered forwarding state
[  193.129808][ T6991] loop6: detected capacity change from 0 to 16
[  193.151773][ T6991] erofs (device loop6): invalid ishare xattr prefix id 0
[  193.828768][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[  193.838585][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[  194.588275][ T1203] r8152-cfgselector 2-1: USB disconnect, device number 3
[  194.862720][ T7014] loop6: detected capacity change from 0 to 512
[  194.881530][ T7014] EXT4-fs: Ignoring removed i_version option
[  194.905677][ T7014] EXT4-fs (loop6): blocks per group (95) and clusters per group (32768) inconsistent
[  195.013042][ T6749] 8021q: adding VLAN 0 to HW filter on device batadv0
[  195.149750][ T7018] loop0: detected capacity change from 0 to 2048
[  195.305166][ T7018] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  195.433157][ T7018] ext4 filesystem being mounted at /46/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  196.064600][ T5826] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.456856][ T6749] veth0_vlan: entered promiscuous mode
[  196.518268][ T6749] veth1_vlan: entered promiscuous mode
[  196.634450][ T6749] veth0_macvtap: entered promiscuous mode
[  196.655830][ T6749] veth1_macvtap: entered promiscuous mode
[  196.743886][ T6749] batman_adv: batadv0: Interface activated: batadv_slave_0
[  196.789854][ T7009] loop1: detected capacity change from 0 to 40427
[  196.800628][ T6749] batman_adv: batadv0: Interface activated: batadv_slave_1
[  196.854140][ T6111] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  196.864084][ T7009] F2FS-fs (loop1): invalid crc value
[  196.893843][ T6111] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  196.902616][ T6111] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  197.000325][ T6111] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  197.347922][ T7009] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  197.368744][ T7023] loop6: detected capacity change from 0 to 40427
[  197.393884][ T7009] F2FS-fs (loop1): Start checkpoint disabled!
[  197.412296][ T6111] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  197.432802][ T7023] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  197.440610][ T6111] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  197.447636][ T7009] F2FS-fs (loop1): f2fs_disable_checkpoint() finish, err:0
[  197.522377][ T7023] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  197.533243][ T7009] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[  197.591179][   T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  197.628059][   T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  197.908218][ T7038] loop0: detected capacity change from 0 to 40427
[  197.972531][ T7038] F2FS-fs (loop0): Small segment_count (9 < 1 * 24)
[  198.000226][ T7038] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  198.081451][ T7023] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  198.104383][ T7064] loop7: detected capacity change from 0 to 512
[  198.121539][ T7023] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  198.178753][ T7064] EXT4-fs: Ignoring removed mblk_io_submit option
[  198.184526][ T7023] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  198.243400][ T7064] EXT4-fs: inline encryption not supported
[  198.274433][ T7064] EXT4-fs: Ignoring removed mblk_io_submit option
[  198.302310][ T7064] EXT4-fs (loop7): Test dummy encryption mode enabled
[  198.302993][ T5928] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  198.332947][ T7064] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  198.432124][ T7064] EXT4-fs (loop7): 1 truncate cleaned up
[  198.533287][ T5928] usb 4-1: Using ep0 maxpacket: 16
[  198.538644][ T7038] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  198.551025][ T5928] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  198.555322][ T7064] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  198.572299][ T5928] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  198.593079][ T5928] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  198.620800][ T5928] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  198.637068][ T7038] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  198.645115][ T7038] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  198.709416][ T5928] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  198.770119][ T5928] usb 4-1: config 0 descriptor??
[  198.801075][ T7074] syzkaller0: entered promiscuous mode
[  198.816441][ T7074] syzkaller0: entered allmulticast mode
[  198.946232][ T6749] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  199.012656][ T5826] syz-executor: attempt to access beyond end of device
[  199.012656][ T5826] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  199.066626][ T5826] CPU: 0 UID: 0 PID: 5826 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  199.066674][ T5826] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  199.066695][ T5826] Call Trace:
[  199.066706][ T5826]  <TASK>
[  199.066719][ T5826]  dump_stack_lvl+0x100/0x190
[  199.066786][ T5826]  f2fs_handle_critical_error+0x5d7/0x970
[  199.066827][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  199.066871][ T5826]  ? f2fs_build_fault_attr+0x53/0x280
[  199.066937][ T5826]  f2fs_write_end_io+0xc3f/0xf30
[  199.066983][ T5826]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  199.067031][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  199.067085][ T5826]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  199.067127][ T5826]  bio_endio+0x7a3/0x910
[  199.067166][ T5826]  submit_bio_noacct+0x64c/0x2010
[  199.067226][ T5826]  f2fs_submit_write_bio+0x133/0x350
[  199.067265][ T5826]  __submit_merged_bio+0x331/0x7b0
[  199.067313][ T5826]  __submit_merged_write_cond+0x3fe/0x510
[  199.067365][ T5826]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  199.067419][ T5826]  ? __pfx___might_resched+0x10/0x10
[  199.067458][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  199.067513][ T5826]  f2fs_write_cache_pages+0x21c0/0x2720
[  199.067588][ T5826]  ? __pfx_f2fs_write_cache_pages+0x10/0x10
[  199.067646][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  199.067695][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  199.067750][ T5826]  ? find_held_lock+0x2b/0x80
[  199.067793][ T5826]  ? is_bpf_text_address+0x8a/0x1a0
[  199.067837][ T5826]  ? is_bpf_text_address+0x8a/0x1a0
[  199.067919][ T5826]  ? check_irq_usage+0xe5/0x810
[  199.068011][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  199.068062][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  199.068107][ T5826]  ? rcu_is_watching+0x12/0xc0
[  199.068153][ T5826]  f2fs_write_data_pages+0x799/0x16d0
[  199.068217][ T5826]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  199.068282][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  199.068328][ T5826]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  199.068382][ T5826]  do_writepages+0x278/0x600
[  199.068442][ T5826]  ? __pfx_do_writepages+0x10/0x10
[  199.068494][ T5826]  ? do_raw_spin_unlock+0x145/0x1e0
[  199.068533][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  199.068577][ T5826]  ? _raw_spin_unlock+0x28/0x50
[  199.068628][ T5826]  filemap_writeback+0x22d/0x2e0
[  199.068689][ T5826]  ? __pfx_filemap_writeback+0x10/0x10
[  199.068805][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  199.068850][ T5826]  ? find_held_lock+0x2b/0x80
[  199.068892][ T5826]  ? f2fs_sync_dirty_inodes+0x38f/0x990
[  199.068945][ T5826]  ? f2fs_sync_dirty_inodes+0x38f/0x990
[  199.068995][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  199.069051][ T5826]  f2fs_sync_dirty_inodes+0x452/0x990
[  199.069120][ T5826]  block_operations+0x2a6/0xfc0
[  199.069182][ T5826]  ? __pfx_block_operations+0x10/0x10
[  199.069285][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  199.069333][ T5826]  ? ktime_get+0x200/0x300
[  199.069378][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  199.069424][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  199.069469][ T5826]  ? rcu_is_watching+0x12/0xc0
[  199.069515][ T5826]  f2fs_write_checkpoint+0x582/0x5550
[  199.069575][ T5826]  ? kasan_save_stack+0x3f/0x50
[  199.069617][ T5826]  ? kasan_save_stack+0x30/0x50
[  199.069658][ T5826]  ? kasan_record_aux_stack+0xa7/0xc0
[  199.069718][ T5826]  ? __call_rcu_common.constprop.0+0xa5/0x9b0
[  199.069782][ T5826]  ? shrinker_free+0xfe/0x440
[  199.069826][ T5826]  ? deactivate_locked_super+0x94/0x1b0
[  199.069868][ T5826]  ? deactivate_super+0xe7/0x110
[  199.069907][ T5826]  ? cleanup_mnt+0x21f/0x450
[  199.069956][ T5826]  ? task_work_run+0x150/0x240
[  199.069988][ T5826]  ? exit_to_user_mode_loop+0x100/0x4a0
[  199.070044][ T5826]  ? do_syscall_64+0x67c/0xf80
[  199.070096][ T5826]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  199.070142][ T5826]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  199.070220][ T5826]  kill_f2fs_super+0x3e5/0x490
[  199.070272][ T5826]  ? __pfx_kill_f2fs_super+0x10/0x10
[  199.070345][ T5826]  ? lockdep_hardirqs_on+0x78/0x100
[  199.070398][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  199.070443][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  199.070502][ T5826]  deactivate_locked_super+0xc1/0x1b0
[  199.070548][ T5826]  deactivate_super+0xe7/0x110
[  199.070594][ T5826]  cleanup_mnt+0x21f/0x450
[  199.070648][ T5826]  task_work_run+0x150/0x240
[  199.070684][ T5826]  ? __pfx_task_work_run+0x10/0x10
[  199.070721][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  199.070774][ T5826]  ? srso_alias_return_thunk+0x5/0xfbef5
[  199.070826][ T5826]  exit_to_user_mode_loop+0x100/0x4a0
[  199.070889][ T5826]  do_syscall_64+0x67c/0xf80
[  199.070941][ T5826]  ? irqentry_exit+0x138/0x670
[  199.070998][ T5826]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  199.071036][ T5826] RIP: 0033:0x7f1c42f9d9d7
[  199.071065][ T5826] Code: a2 c7 05 1c fd 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  199.071100][ T5826] RSP: 002b:00007fff109ceae8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  199.071135][ T5826] RAX: 0000000000000000 RBX: 00007f1c43032050 RCX: 00007f1c42f9d9d7
[  199.071158][ T5826] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff109ceba0
[  199.071180][ T5826] RBP: 00007fff109ceba0 R08: 00007fff109cfba0 R09: 00000000ffffffff
[  199.071203][ T5826] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff109cfc30
[  199.071226][ T5826] R13: 00007f1c43032050 R14: 000000000003089c R15: 00007fff109cfc70
[  199.071274][ T5826]  </TASK>
[  199.071288][ T5826] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  199.293925][ T5928] microsoft 0003:045E:07DA.0002: ignoring exceeding usage max
[  199.309755][ T7082] binder: BINDER_SET_CONTEXT_MGR already set
[  199.496235][ T5928] microsoft 0003:045E:07DA.0002: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0
[  199.508855][ T7082] binder: 7081:7082 ioctl 4018620d 200000000040 returned -16
[  199.624815][ T5928] microsoft 0003:045E:07DA.0002: no inputs found
[  199.819273][ T5928] microsoft 0003:045E:07DA.0002: could not initialize ff, continuing anyway
[  199.894966][ T5928] usb 4-1: USB disconnect, device number 4
[  199.916115][ T7094] loop6: detected capacity change from 0 to 512
[  200.066094][ T7094] EXT4-fs error (device loop6): ext4_free_branches:1020: inode #11: comm syz.6.274: invalid indirect mapped block 4294967295 (level 1)
[  200.093765][ T7094] loop6: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  200.094271][ T7094] EXT4-fs error (device loop6): ext4_free_branches:1020: inode #11: comm syz.6.274: invalid indirect mapped block 4294967295 (level 1)
[  200.103512][    C1] EXT4-fs (loop6): error count since last fsck: 1
[  200.103543][    C1] EXT4-fs (loop6): initial error at time 1773712548: ext4_free_branches:1020: inode 11
[  200.103596][    C1] EXT4-fs (loop6): last error at time 1773712548: ext4_free_branches:1020: inode 11
[  200.242161][ T7094] loop6: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  200.243624][ T7094] EXT4-fs (loop6): 2 truncates cleaned up
[  200.365134][ T7094] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  200.424411][ T7105] loop7: detected capacity change from 0 to 16
[  200.469286][ T7105] erofs (device loop7): mounted with root inode @ nid 36.
[  200.540931][ T7105] erofs (device loop7): readahead error at folio 2 @ nid 89
[  200.569938][ T5840] erofs (device loop7): failed to decompress (lz4) corrupted compressed data @ pa 4096 size 4096 => 4868
[  200.590734][ T7108] loop3: detected capacity change from 0 to 1024
[  200.598694][ T7105] erofs (device loop7): failed to decompress (lz4) corrupted compressed data @ pa 4096 size 4096 => 4096
[  200.631854][ T7108] EXT4-fs: Ignoring removed oldalloc option
[  200.682184][ T7105] erofs (device loop7): read error -117 @ 0 of nid 89
[  200.693288][ T7108] EXT4-fs: Ignoring removed bh option
[  200.723592][ T6065] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  200.814740][   T30] audit: type=1800 audit(1773712548.874:10): pid=7105 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.283" name="file2" dev="loop7" ino=89 res=0 errno=0
[  200.971133][ T7108] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  201.414180][ T7120] loop7: detected capacity change from 0 to 512
[  201.544762][ T7125] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[  201.554258][ T7125] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  202.180860][ T5828] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.314077][ T7120] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  202.372015][ T7120] ext4 filesystem being mounted at /4/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  202.458402][ T7133] loop0: detected capacity change from 0 to 512
[  202.511076][ T7133] EXT4-fs: Ignoring removed nobh option
[  202.517264][ T7120] EXT4-fs (loop7): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  202.592526][ T7135] netlink: 8 bytes leftover after parsing attributes in process `syz.3.287'.
[  202.627410][ T7133] EXT4-fs error (device loop0): __ext4_iget:5378: inode #11: block 1: comm syz.0.288: invalid block
[  202.657349][ T7133] loop0: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  202.662937][    C1] EXT4-fs (loop0): error count since last fsck: 1
[  202.678610][    C1] EXT4-fs (loop0): initial error at time 1773712550: __ext4_iget:5378: inode 11: block 1
[  202.688529][    C1] EXT4-fs (loop0): last error at time 1773712550: __ext4_iget:5378: inode 11: block 1
[  202.721088][ T7133] EXT4-fs (loop0): Remounting filesystem read-only
[  202.774178][ T7133] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  202.828091][ T6749] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.862787][ T7138] loop6: detected capacity change from 0 to 1024
[  202.910137][ T7138] EXT4-fs: Ignoring removed nomblk_io_submit option
[  203.010564][ T7138] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  203.035367][ T5826] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.091383][ T7144] loop7: detected capacity change from 0 to 256
[  203.114554][ T7144] exfat: Deprecated parameter 'utf8'
[  203.119922][ T7144] exfat: Deprecated parameter 'utf8'
[  203.166035][ T7142] syzkaller0: entered promiscuous mode
[  203.171596][ T7142] syzkaller0: entered allmulticast mode
[  203.250615][ T7144] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[  203.282739][ T6065] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  203.349497][ T7148] loop0: detected capacity change from 0 to 256
[  203.653449][ T7153] loop6: detected capacity change from 0 to 256
[  203.729258][   T30] audit: type=1804 audit(1773712551.854:11): pid=7153 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.6.293" name="/newroot/38/file0/bus" dev="loop6" ino=1048667 res=1 errno=0
[  203.916578][ T7159] loop0: detected capacity change from 0 to 512
[  203.962254][ T7159] ext4: Unknown parameter 'context'
[  204.566473][ T7167] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  204.701739][ T7165] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  204.763143][ T7167] ext4 filesystem being mounted at /42/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  204.882244][ T7165] EXT4-fs (loop0): shut down requested (2)
[  204.928530][ T6111] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.035674][ T5826] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  205.216944][ T7155] netlink: 16 bytes leftover after parsing attributes in process `syz.3.297'.
[  205.238016][ T6111] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.438862][ T6111] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  205.933092][ T5895] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  206.019590][ T7183] netlink: 48 bytes leftover after parsing attributes in process `syz.6.304'.
[  206.113095][ T5895] usb 1-1: Using ep0 maxpacket: 32
[  206.131002][ T5895] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  206.170279][ T7184] xt_hashlimit: size too large, truncated to 1048576
[  206.200300][ T5895] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  206.223949][ T6111] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  206.231181][ T5841] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  206.244880][ T5841] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  206.254864][ T5841] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  206.263079][ T5841] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  206.282993][ T5841] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  206.886056][ T5895] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  206.903681][ T5895] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  206.974697][ T5895] usb 1-1: config 0 descriptor??
[  206.984585][ T5895] hub 1-1:0.0: USB hub found
[  207.186828][ T7192] set_capacity_and_notify: 2 callbacks suppressed
[  207.186854][ T7192] loop3: detected capacity change from 0 to 128
[  207.189924][ T5895] hub 1-1:0.0: 1 port detected
[  207.403186][ T5895] hub 1-1:0.0: hub_hub_status failed (err = -71)
[  207.439067][ T5895] hub 1-1:0.0: config failed, can't get hub status (err -71)
[  207.534581][ T5895] usbhid 1-1:0.0: can't add hid device: -71
[  207.584174][ T5895] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  208.373469][ T5895] usb 1-1: USB disconnect, device number 6
[  208.443208][ T5825] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  208.463186][ T5841] Bluetooth: hci4: command tx timeout
[  210.375557][ T6111] bridge_slave_1: left allmulticast mode
[  210.381246][ T6111] bridge_slave_1: left promiscuous mode
[  210.396540][ T7220] loop1: detected capacity change from 0 to 128
[  210.425987][ T6111] bridge0: port 2(bridge_slave_1) entered disabled state
[  210.502740][ T7220] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  210.506182][ T7222] loop3: detected capacity change from 0 to 1024
[  210.527393][ T7222] EXT4-fs: Ignoring removed bh option
[  210.532878][ T7222] ext4: Unknown parameter 'noacl'
[  210.533128][ T5841] Bluetooth: hci4: command tx timeout
[  210.566389][ T6111] bridge_slave_0: left allmulticast mode
[  210.589949][ T6111] bridge_slave_0: left promiscuous mode
[  210.611807][ T7220] ext4 filesystem being mounted at /44/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  210.645543][ T6111] bridge0: port 1(bridge_slave_0) entered disabled state
[  210.697645][ T7232] netlink: 16 bytes leftover after parsing attributes in process `syz.5.316'.
[  211.035091][ T5825] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  212.141449][ T7245] loop0: detected capacity change from 0 to 128
[  212.237853][ T7245] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  212.316860][ T7245] ext4 filesystem being mounted at /58/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  212.450213][ T6111] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  212.469899][ T5826] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  212.547630][ T6111] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  212.585455][ T6111] bond0 (unregistering): Released all slaves
[  212.613121][ T5841] Bluetooth: hci4: command tx timeout
[  212.688395][ T7252] loop0: detected capacity change from 0 to 1024
[  212.750113][ T7252] EXT4-fs: Ignoring removed oldalloc option
[  212.764011][ T7252] EXT4-fs: Ignoring removed bh option
[  212.786802][ T7255] loop1: detected capacity change from 0 to 128
[  212.830780][ T7255] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  212.866527][ T7255] ext4 filesystem being mounted at /46/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  212.936774][ T7186] chnl_net:caif_netlink_parms(): no params data found
[  213.056465][ T7252] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  213.153081][   T30] audit: type=1804 audit(1773712561.284:12): pid=7252 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.322" name="/newroot/59/file1/bus" dev="loop0" ino=18 res=1 errno=0
[  213.271723][ T5825] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  213.283600][ T5826] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  213.701683][ T7277] overlayfs: failed to clone lowerpath
[  213.723094][   T30] audit: type=1326 audit(1773712561.854:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="syz.3.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5d79c799 code=0x7ffc0000
[  214.623053][   T30] audit: type=1326 audit(1773712561.854:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="syz.3.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5d79c799 code=0x7ffc0000
[  215.602980][ T5831] Bluetooth: hci4: command tx timeout
[  216.173037][   T30] audit: type=1326 audit(1773712562.054:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="syz.3.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5d79c799 code=0x7ffc0000
[  216.205397][   T30] audit: type=1326 audit(1773712562.064:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="syz.3.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=195 compat=0 ip=0x7fed5d79c799 code=0x7ffc0000
[  216.294324][   T30] audit: type=1326 audit(1773712562.064:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="syz.3.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5d79c799 code=0x7ffc0000
[  216.346513][ T7186] bridge0: port 1(bridge_slave_0) entered blocking state
[  216.355107][ T7284] loop1: detected capacity change from 0 to 4096
[  216.372760][ T7284] EXT4-fs: inline encryption not supported
[  216.373101][   T30] audit: type=1326 audit(1773712562.064:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="syz.3.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5d79c799 code=0x7ffc0000
[  216.382877][ T7186] bridge0: port 1(bridge_slave_0) entered disabled state
[  216.426495][ T7284] EXT4-fs: Ignoring removed i_version option
[  216.472550][ T7284] EXT4-fs: Ignoring removed oldalloc option
[  216.473231][   T30] audit: type=1326 audit(1773712562.064:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="syz.3.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5d79c799 code=0x7ffc0000
[  216.507560][ T7284] EXT4-fs (loop1): Test dummy encryption mode enabled
[  216.555833][ T7186] bridge_slave_0: entered allmulticast mode
[  216.576097][ T7284] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  216.598623][   T30] audit: type=1326 audit(1773712562.144:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="syz.3.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fed5d79c799 code=0x7ffc0000
[  216.616170][ T5831] Bluetooth: hci1: command 0x0406 tx timeout
[  216.627185][   T51] Bluetooth: hci0: command 0x0406 tx timeout
[  216.629428][ T7186] bridge_slave_0: entered promiscuous mode
[  216.633388][   T51] Bluetooth: hci3: command 0x0406 tx timeout
[  216.645239][   T51] Bluetooth: hci5: command 0x0406 tx timeout
[  216.677976][ T7284] System zones: 0-5
[  216.692949][ T7186] bridge0: port 2(bridge_slave_1) entered blocking state
[  216.707072][ T7296] loop0: detected capacity change from 0 to 512
[  216.717645][ T7186] bridge0: port 2(bridge_slave_1) entered disabled state
[  216.728002][   T30] audit: type=1326 audit(1773712562.144:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7275 comm="syz.3.328" exe="/root/syz-executor" sig=0 arch=c000003e syscall=203 compat=0 ip=0x7fed5d79c799 code=0x7ffc0000
[  216.743497][ T7186] bridge_slave_1: entered allmulticast mode
[  216.845715][ T7284] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  216.888418][ T7296] EXT4-fs (loop0): blocks per group (95) and clusters per group (32768) inconsistent
[  216.915354][ T7186] bridge_slave_1: entered promiscuous mode
[  217.020184][ T7284] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-aesni"
[  217.247220][ T6111] hsr_slave_0: left promiscuous mode
[  217.275180][ T6111] hsr_slave_1: left promiscuous mode
[  217.281318][ T6111] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  217.312662][ T5825] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  217.342951][ T6111] batman_adv: batadv0: Removing interface: batadv_slave_0
[  217.361298][ T6111] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  217.385408][ T6111] batman_adv: batadv0: Removing interface: batadv_slave_1
[  217.429283][ T7309] loop0: detected capacity change from 0 to 2048
[  217.437820][ T6111] veth1_macvtap: left promiscuous mode
[  217.463466][ T6111] veth0_macvtap: left promiscuous mode
[  217.488322][ T6111] veth1_vlan: left promiscuous mode
[  217.515226][ T6111] veth0_vlan: left promiscuous mode
[  217.548664][ T7309] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  217.651052][ T7316] loop1: detected capacity change from 0 to 256
[  217.673548][ T7316] exfat: Bad value for 'umask'
[  219.139966][ T7320] loop1: detected capacity change from 0 to 128
[  219.234090][ T7320] EXT4-fs (loop1): Test dummy encryption mode enabled
[  219.570015][ T5826] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.672038][ T7320] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  219.845826][ T7320] ext4 filesystem being mounted at /48/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  221.437511][ T7324] netlink: 104 bytes leftover after parsing attributes in process `syz.5.338'.
[  223.607053][ T7365] loop3: detected capacity change from 0 to 512
[  223.621228][ T6111] team0 (unregistering): Port device team_slave_1 removed
[  223.693676][ T6111] team0 (unregistering): Port device team_slave_0 removed
[  223.742096][ T7365] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  223.783112][ T7365] ext4 filesystem being mounted at /59/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  224.044535][ T7186] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  224.202329][ T5828] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.265448][ T5825] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  224.282668][ T7186] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  224.369880][ T7186] team0: Port device team_slave_0 added
[  224.436693][ T7186] team0: Port device team_slave_1 added
[  224.553325][ T7186] batman_adv: batadv0: Adding interface: batadv_slave_0
[  224.560321][ T7186] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  224.642856][ T7373] loop1: detected capacity change from 0 to 512
[  224.692294][ T7373] EXT4-fs (loop1): blocks per group (95) and clusters per group (32768) inconsistent
[  224.705546][ T7186] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  224.794978][ T7186] batman_adv: batadv0: Adding interface: batadv_slave_1
[  224.814025][ T7379] tmpfs: Unexpected value for 'inode32'
[  224.822332][ T7186] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  224.942722][ T7186] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  225.176396][ T7388] loop3: detected capacity change from 0 to 512
[  225.188476][ T7388] EXT4-fs: Ignoring removed i_version option
[  225.195724][ T7388] EXT4-fs: Ignoring removed oldalloc option
[  225.338365][ T7388] EXT4-fs (loop3): 1 truncate cleaned up
[  225.357011][ T7388] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  227.009643][ T5828] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.386355][ T7186] hsr_slave_0: entered promiscuous mode
[  227.427439][ T7186] hsr_slave_1: entered promiscuous mode
[  227.458899][ T7186] debugfs: 'hsr0' already exists in 'hsr'
[  227.475769][ T7186] Cannot create hsr debugfs directory
[  227.514632][ T7407] loop1: detected capacity change from 0 to 512
[  227.565661][ T7407] EXT4-fs: Ignoring removed i_version option
[  227.673120][ T7407] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  228.025538][ T7407] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ee02c, mo2=0002]
[  228.544914][ T5840] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  228.623127][ T5840] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  228.640489][ T5840] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  228.651507][ T5840] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  228.659316][ T5840] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  228.663575][ T7407] System zones: 1-12
[  228.670799][ T7407] EXT4-fs (loop1): orphan cleanup on readonly fs
[  228.681690][ T7407] EXT4-fs error (device loop1): ext4_get_branch:178: inode #11: block 33619980: comm syz.1.354: invalid block
[  228.721176][ T7407] loop1: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  228.723494][    C1] EXT4-fs (loop1): error count since last fsck: 1
[  228.739132][    C1] EXT4-fs (loop1): initial error at time 1773712576: ext4_get_branch:178: inode 11: block 33619980
[  228.749908][    C1] EXT4-fs (loop1): last error at time 1773712576: ext4_get_branch:178: inode 11: block 33619980
[  228.844338][ T7407] EXT4-fs (loop1): Remounting filesystem read-only
[  228.851269][ T7407] EXT4-fs (loop1): 1 truncate cleaned up
[  228.978252][ T7407] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: writeback.
[  230.569168][ T7407] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000007.
[  230.638832][ T5825] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  230.813044][ T5840] Bluetooth: hci6: command tx timeout
[  231.776041][ T7439] loop3: detected capacity change from 0 to 512
[  231.895241][ T7439] EXT4-fs (loop3): blocks per group (95) and clusters per group (32768) inconsistent
[  232.866909][ T5840] Bluetooth: hci6: command tx timeout
[  233.091433][ T7428] syzkaller0: entered promiscuous mode
[  233.100019][ T7428] syzkaller0: entered allmulticast mode
[  233.739963][ T3540] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  233.885898][ T7468] loop0: detected capacity change from 0 to 256
[  234.093233][   T10] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  234.199207][ T3540] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  234.309265][   T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  234.358785][   T10] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  234.431916][   T10] usb 2-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.80
[  234.498172][   T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  234.554629][   T10] usb 2-1: config 0 descriptor??
[  234.629131][ T3540] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  234.953465][ T7480] block device autoloading is deprecated and will be removed.
[  235.049922][ T5841] Bluetooth: hci6: command tx timeout
[  235.587225][ T7477] bridge0: port 2(bridge_slave_1) entered disabled state
[  235.595739][ T7477] bridge0: port 1(bridge_slave_0) entered disabled state
[  235.727613][   T10] cp2112 0003:10C4:EA90.0003: unknown main item tag 0x0
[  235.752877][   T10] cp2112 0003:10C4:EA90.0003: unknown main item tag 0x0
[  235.761392][   T10] cp2112 0003:10C4:EA90.0003: unknown main item tag 0x0
[  235.768634][   T10] cp2112 0003:10C4:EA90.0003: unknown main item tag 0x0
[  235.780755][   T10] cp2112 0003:10C4:EA90.0003: unknown main item tag 0x0
[  235.791526][   T10] cp2112 0003:10C4:EA90.0003: unknown main item tag 0x0
[  235.820911][   T10] cp2112 0003:10C4:EA90.0003: unknown main item tag 0x0
[  235.860492][ T7477] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  235.874019][ T7477] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  235.884284][   T10] cp2112 0003:10C4:EA90.0003: hidraw0: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.1-1/input0
[  235.981275][   T10] cp2112 0003:10C4:EA90.0003: error requesting version
[  236.031106][   T10] cp2112 0003:10C4:EA90.0003: probe with driver cp2112 failed with error -71
[  236.098480][   T10] usb 2-1: USB disconnect, device number 4
[  236.190056][ T7501] loop0: detected capacity change from 0 to 16
[  236.344897][ T7501] erofs (device loop0): mounted with root inode @ nid 36.
[  236.386359][ T7501] erofs (device loop0): readahead error at folio 2 @ nid 89
[  236.399831][ T5841] erofs (device loop0): failed to decompress (lz4) corrupted compressed data @ pa 4096 size 4096 => 4868
[  236.415043][ T7501] erofs (device loop0): failed to decompress (lz4) corrupted compressed data @ pa 4096 size 4096 => 4096
[  236.426490][ T7501] erofs (device loop0): read error -117 @ 0 of nid 89
[  236.648427][   T30] kauditd_printk_skb: 62 callbacks suppressed
[  236.648478][   T30] audit: type=1800 audit(1773712584.574:84): pid=7501 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.370" name="file2" dev="loop0" ino=89 res=0 errno=0
[  237.011443][ T7498] fido_id[7498]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/2-1/report_descriptor': No such file or directory
[  237.094660][ T5841] Bluetooth: hci6: command tx timeout
[  237.153159][ T7477] bridge1: left promiscuous mode
[  237.158184][ T7477] bridge1: left allmulticast mode
[  238.648077][ T3540] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  239.080004][   T60] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  239.722681][ T7515] syz.1.372 (7515) used greatest stack depth: 19392 bytes left
[  239.795580][   T60] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  240.066870][   T60] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  240.087984][ T7186] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  240.907609][   T60] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  240.953336][ T7186] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  241.020733][ T7186] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  241.154803][ T7186] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  241.407106][ T7532] loop0: detected capacity change from 0 to 40427
[  241.462964][ T7532] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  241.470937][ T7532] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  241.610446][ T7532] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  241.804711][ T7411] chnl_net:caif_netlink_parms(): no params data found
[  242.317116][ T7532] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  242.324540][ T7532] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  243.277649][ T7548] loop1: detected capacity change from 0 to 512
[  243.461468][ T7548] EXT4-fs error (device loop1): ext4_free_branches:1020: inode #11: comm syz.1.380: invalid indirect mapped block 4294967295 (level 1)
[  243.492469][ T7548] loop1: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  243.492953][    C1] EXT4-fs (loop1): error count since last fsck: 1
[  243.508653][    C1] EXT4-fs (loop1): initial error at time 1773712591: ext4_free_branches:1020: inode 11
[  243.518454][    C1] EXT4-fs (loop1): last error at time 1773712591: ext4_free_branches:1020: inode 11
[  243.528425][ T7548] EXT4-fs error (device loop1): ext4_free_branches:1020: inode #11: comm syz.1.380: invalid indirect mapped block 4294967295 (level 1)
[  243.561748][ T7548] loop1: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[  243.750018][ T7548] EXT4-fs (loop1): 2 truncates cleaned up
[  244.233511][ T7548] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  244.266233][ T7548] EXT4-fs error (device loop1): ext4_validate_block_bitmap:431: comm syz.1.380: bg 0: block 5: invalid block bitmap
[  244.285461][ T7548] overlayfs: failed to verify upper root origin
[  244.434061][ T5825] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  244.482035][ T3540] bridge_slave_1: left allmulticast mode
[  244.504814][ T3540] bridge_slave_1: left promiscuous mode
[  244.510676][ T3540] bridge0: port 2(bridge_slave_1) entered disabled state
[  244.585384][ T3540] bridge_slave_0: left allmulticast mode
[  244.591092][ T3540] bridge_slave_0: left promiscuous mode
[  244.644325][ T3540] bridge0: port 1(bridge_slave_0) entered disabled state
[  246.410494][ T7579] tipc: Failed to remove unknown binding: 66,1,1/0:1573450298/1573450300
[  246.419519][ T7579] tipc: Failed to remove unknown binding: 66,1,1/0:1573450298/1573450300
[  246.830780][ T3540] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  246.873571][ T3540] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  246.927871][ T3540] bond0 (unregistering): Released all slaves
[  248.088735][ T7411] bridge0: port 1(bridge_slave_0) entered blocking state
[  248.137302][ T7411] bridge0: port 1(bridge_slave_0) entered disabled state
[  248.166510][ T7411] bridge_slave_0: entered allmulticast mode
[  248.196334][ T7411] bridge_slave_0: entered promiscuous mode
[  248.563976][ T7411] bridge0: port 2(bridge_slave_1) entered blocking state
[  248.607554][ T7411] bridge0: port 2(bridge_slave_1) entered disabled state
[  248.623468][ T7411] bridge_slave_1: entered allmulticast mode
[  248.635525][ T7411] bridge_slave_1: entered promiscuous mode
[  249.599004][ T7411] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  249.688715][ T7411] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  249.773043][ T3540] hsr_slave_0: left promiscuous mode
[  249.782444][ T7619] overlayfs: failed to resolve './file0': -2
[  249.792936][ T3540] hsr_slave_1: left promiscuous mode
[  249.799174][ T3540] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  249.822978][ T3540] batman_adv: batadv0: Removing interface: batadv_slave_0
[  249.831192][ T3540] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  249.852977][ T3540] batman_adv: batadv0: Removing interface: batadv_slave_1
[  250.271796][ T3540] veth1_macvtap: left promiscuous mode
[  250.317258][ T3540] veth0_macvtap: left promiscuous mode
[  250.405080][ T3540] veth1_vlan: left promiscuous mode
[  250.516097][ T3540] veth0_vlan: left promiscuous mode
[  250.776201][ T7627] loop0: detected capacity change from 0 to 512
[  250.803088][ T7627] EXT4-fs (loop0): Test dummy encryption mode enabled
[  250.832854][ T7627] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 not in group (block 259)!
[  250.873042][ T7627] EXT4-fs (loop0): group descriptors corrupted!
[  251.320146][ T7630] netlink: 24 bytes leftover after parsing attributes in process `syz.0.399'.
[  251.937221][ T7633] loop1: detected capacity change from 0 to 512
[  251.945566][ T7633] EXT4-fs: Ignoring removed nobh option
[  252.028449][ T7633] 
[  252.030819][ T7633] ======================================================
[  252.038011][ T7633] WARNING: possible circular locking dependency detected
[  252.045028][ T7633] syzkaller #0 Not tainted
[  252.049448][ T7633] ------------------------------------------------------
[  252.056459][ T7633] syz.1.400/7633 is trying to acquire lock:
[  252.062348][ T7633] ffff8880790b6b98 (&sbi->s_writepages_rwsem){++++}-{0:0}, at: do_writepages+0x278/0x600
[  252.072251][ T7633] 
[  252.072251][ T7633] but task is already holding lock:
[  252.079784][ T7633] ffff888058c1d720 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x606/0x8b0
[  252.089637][ T7633] 
[  252.089637][ T7633] which lock already depends on the new lock.
[  252.089637][ T7633] 
[  252.100026][ T7633] 
[  252.100026][ T7633] the existing dependency chain (in reverse order) is:
[  252.109635][ T7633] 
[  252.109635][ T7633] -> #1 (&ei->xattr_sem){++++}-{4:4}:
[  252.117222][ T7633]        down_write+0x8b/0x1f0
[  252.122005][ T7633]        ext4_destroy_inline_data+0x2d/0xe0
[  252.128002][ T7633]        ext4_do_writepages+0x1185/0x3f50
[  252.133739][ T7633]        ext4_writepages+0x347/0x790
[  252.139034][ T7633]        do_writepages+0x278/0x600
[  252.144154][ T7633]        filemap_writeback+0x22d/0x2e0
[  252.149624][ T7633]        file_write_and_wait_range+0xcd/0x140
[  252.155685][ T7633]        generic_buffers_fsync_noflush+0x77/0x490
[  252.162330][ T7633]        ext4_sync_file+0x63e/0xf10
[  252.167531][ T7633]        vfs_fsync_range+0x9b/0x190
[  252.172750][ T7633]        ext4_buffered_write_iter+0x2e2/0x440
[  252.178815][ T7633]        ext4_file_write_iter+0xa2f/0x1d40
[  252.184618][ T7633]        vfs_write+0x6ac/0x1070
[  252.189473][ T7633]        __x64_sys_pwrite64+0x1eb/0x250
[  252.195026][ T7633]        do_syscall_64+0x106/0xf80
[  252.200147][ T7633]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  252.206560][ T7633] 
[  252.206560][ T7633] -> #0 (&sbi->s_writepages_rwsem){++++}-{0:0}:
[  252.215008][ T7633]        __lock_acquire+0x14b8/0x2630
[  252.220401][ T7633]        lock_acquire+0x1cf/0x380
[  252.225440][ T7633]        ext4_writepages+0x21d/0x790
[  252.230738][ T7633]        do_writepages+0x278/0x600
[  252.235864][ T7633]        __writeback_single_inode+0x164/0x13c0
[  252.242136][ T7633]        writeback_single_inode+0x4d3/0xf30
[  252.248036][ T7633]        write_inode_now+0x174/0x1f0
[  252.253327][ T7633]        iput.part.0+0x7f3/0xf50
[  252.258353][ T7633]        iput+0x35/0x40
[  252.262512][ T7633]        ext4_xattr_block_set+0x6f7/0x3660
[  252.268334][ T7633]        ext4_expand_extra_isize_ea+0x17c6/0x1d70
[  252.274776][ T7633]        __ext4_expand_extra_isize+0x346/0x480
[  252.281148][ T7633]        __ext4_mark_inode_dirty+0x693/0x8b0
[  252.287134][ T7633]        ext4_evict_inode+0x860/0x17c0
[  252.292637][ T7633]        evict+0x3c2/0xad0
[  252.297137][ T7633]        iput.part.0+0x605/0xf50
[  252.302070][ T7633]        iput+0x35/0x40
[  252.306222][ T7633]        ext4_orphan_cleanup+0x71e/0x11e0
[  252.311950][ T7633]        ext4_fill_super+0x9009/0xb470
[  252.317424][ T7633]        get_tree_bdev_flags+0x38c/0x620
[  252.323077][ T7633]        vfs_get_tree+0x92/0x320
[  252.328039][ T7633]        path_mount+0x7d0/0x23d0
[  252.333063][ T7633]        __x64_sys_mount+0x293/0x310
[  252.338434][ T7633]        do_syscall_64+0x106/0xf80
[  252.343558][ T7633]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  252.349973][ T7633] 
[  252.349973][ T7633] other info that might help us debug this:
[  252.349973][ T7633] 
[  252.360723][ T7633]  Possible unsafe locking scenario:
[  252.360723][ T7633] 
[  252.368253][ T7633]        CPU0                    CPU1
[  252.373611][ T7633]        ----                    ----
[  252.378976][ T7633]   lock(&ei->xattr_sem);
[  252.383306][ T7633]                                lock(&sbi->s_writepages_rwsem);
[  252.391019][ T7633]                                lock(&ei->xattr_sem);
[  252.397861][ T7633]   rlock(&sbi->s_writepages_rwsem);
[  252.403190][ T7633] 
[  252.403190][ T7633]  *** DEADLOCK ***
[  252.403190][ T7633] 
[  252.411405][ T7633] 3 locks held by syz.1.400/7633:
[  252.416414][ T7633]  #0: ffff8880790b00e0 (&type->s_umount_key#28/1){+.+.}-{4:4}, at: alloc_super+0x244/0xd20
[  252.426584][ T7633]  #1: ffff8880790b0610 (sb_internal){.+.+}-{0:0}, at: evict+0x3c2/0xad0
[  252.435047][ T7633]  #2: ffff888058c1d720 (&ei->xattr_sem){++++}-{4:4}, at: __ext4_mark_inode_dirty+0x606/0x8b0
[  252.445342][ T7633] 
[  252.445342][ T7633] stack backtrace:
[  252.451217][ T7633] CPU: 0 UID: 0 PID: 7633 Comm: syz.1.400 Not tainted syzkaller #0 PREEMPT(full) 
[  252.451250][ T7633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  252.451268][ T7633] Call Trace:
[  252.451277][ T7633]  <TASK>
[  252.451288][ T7633]  dump_stack_lvl+0x100/0x190
[  252.451330][ T7633]  print_circular_bug.cold+0x178/0x1c7
[  252.451377][ T7633]  check_noncircular+0x146/0x160
[  252.451423][ T7633]  __lock_acquire+0x14b8/0x2630
[  252.451469][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.451507][ T7633]  lock_acquire+0x1cf/0x380
[  252.451548][ T7633]  ? do_writepages+0x278/0x600
[  252.451592][ T7633]  ? __pfx___might_resched+0x10/0x10
[  252.451624][ T7633]  ext4_writepages+0x21d/0x790
[  252.451658][ T7633]  ? do_writepages+0x278/0x600
[  252.451697][ T7633]  ? set_next_entity+0x11e/0x9c0
[  252.451747][ T7633]  ? __pfx_ext4_writepages+0x10/0x10
[  252.451787][ T7633]  ? do_writepages+0x4b5/0x600
[  252.451828][ T7633]  ? do_writepages+0x4b5/0x600
[  252.451867][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.451903][ T7633]  ? __pfx_ext4_writepages+0x10/0x10
[  252.451939][ T7633]  do_writepages+0x278/0x600
[  252.451981][ T7633]  ? __pfx_do_writepages+0x10/0x10
[  252.452029][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.452078][ T7633]  ? mark_held_locks+0x40/0x70
[  252.452130][ T7633]  __writeback_single_inode+0x164/0x13c0
[  252.452166][ T7633]  ? find_held_lock+0x2b/0x80
[  252.452199][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.452234][ T7633]  ? __pfx___writeback_single_inode+0x10/0x10
[  252.452269][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.452303][ T7633]  ? do_raw_spin_unlock+0x145/0x1e0
[  252.452332][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.452368][ T7633]  writeback_single_inode+0x4d3/0xf30
[  252.452408][ T7633]  write_inode_now+0x174/0x1f0
[  252.452443][ T7633]  ? __pfx_write_inode_now+0x10/0x10
[  252.452499][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.452544][ T7633]  ? find_held_lock+0x2b/0x80
[  252.452592][ T7633]  ? iput.part.0+0x7e6/0xf50
[  252.452627][ T7633]  ? iput.part.0+0x7e6/0xf50
[  252.452653][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.452693][ T7633]  iput.part.0+0x7f3/0xf50
[  252.452720][ T7633]  ? __pfx_ext4_drop_inode+0x10/0x10
[  252.452758][ T7633]  iput+0x35/0x40
[  252.452786][ T7633]  ext4_xattr_block_set+0x6f7/0x3660
[  252.452815][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.452851][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.452891][ T7633]  ? __pfx_ext4_xattr_block_set+0x10/0x10
[  252.452935][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.452983][ T7633]  ? xattr_find_entry+0x240/0x2e0
[  252.453068][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.453117][ T7633]  ? ext4_xattr_block_find+0x59/0x430
[  252.453192][ T7633]  ext4_expand_extra_isize_ea+0x17c6/0x1d70
[  252.453253][ T7633]  ? __pfx_ext4_expand_extra_isize_ea+0x10/0x10
[  252.453297][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.453350][ T7633]  ? dquot_initialize_needed+0x183/0x2a0
[  252.453411][ T7633]  __ext4_expand_extra_isize+0x346/0x480
[  252.453493][ T7633]  __ext4_mark_inode_dirty+0x693/0x8b0
[  252.453558][ T7633]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  252.453622][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.453666][ T7633]  ? __ext4_journal_start_sb+0x1ce/0x6a0
[  252.453700][ T7633]  ? ext4_evict_inode+0x6e2/0x17c0
[  252.453737][ T7633]  ext4_evict_inode+0x860/0x17c0
[  252.453777][ T7633]  ? __pfx_ext4_evict_inode+0x10/0x10
[  252.453810][ T7633]  ? evict+0x37e/0xad0
[  252.453836][ T7633]  ? evict+0x37e/0xad0
[  252.453860][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.453897][ T7633]  ? __pfx_ext4_evict_inode+0x10/0x10
[  252.453931][ T7633]  evict+0x3c2/0xad0
[  252.453960][ T7633]  ? __pfx_evict+0x10/0x10
[  252.453985][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.454027][ T7633]  ? iput.part.0+0x5fd/0xf50
[  252.454053][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.454092][ T7633]  iput.part.0+0x605/0xf50
[  252.454119][ T7633]  ? __pfx_ext4_drop_inode+0x10/0x10
[  252.454154][ T7633]  iput+0x35/0x40
[  252.454179][ T7633]  ext4_orphan_cleanup+0x71e/0x11e0
[  252.454222][ T7633]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[  252.454261][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.454306][ T7633]  ? ext4_register_li_request+0xef/0xa00
[  252.454359][ T7633]  ext4_fill_super+0x9009/0xb470
[  252.454414][ T7633]  ? __pfx_ext4_fill_super+0x10/0x10
[  252.454454][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.454492][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.454525][ T7633]  ? sb_set_blocksize+0x1fe/0x290
[  252.454560][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.454593][ T7633]  ? setup_bdev_super+0x425/0x730
[  252.454626][ T7633]  get_tree_bdev_flags+0x38c/0x620
[  252.454666][ T7633]  ? __pfx_ext4_fill_super+0x10/0x10
[  252.454708][ T7633]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  252.454744][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.454782][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.454815][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.454849][ T7633]  ? security_capable+0x80/0x260
[  252.454892][ T7633]  vfs_get_tree+0x92/0x320
[  252.454920][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.454959][ T7633]  path_mount+0x7d0/0x23d0
[  252.454988][ T7633]  ? __pfx_path_mount+0x10/0x10
[  252.455016][ T7633]  ? lockdep_hardirqs_on+0x78/0x100
[  252.455057][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.455093][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.455126][ T7633]  ? kmem_cache_free+0x124/0x6a0
[  252.455160][ T7633]  ? __x64_sys_mount+0x293/0x310
[  252.455185][ T7633]  __x64_sys_mount+0x293/0x310
[  252.455212][ T7633]  ? __pfx___x64_sys_mount+0x10/0x10
[  252.455239][ T7633]  ? do_user_addr_fault+0x8d6/0x12f0
[  252.455267][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  252.455305][ T7633]  do_syscall_64+0x106/0xf80
[  252.455345][ T7633]  ? irqentry_exit+0x138/0x670
[  252.455394][ T7633]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  252.455434][ T7633] RIP: 0033:0x7f159079da0a
[  252.455456][ T7633] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  252.455483][ T7633] RSP: 002b:00007f159167be58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  252.455509][ T7633] RAX: ffffffffffffffda RBX: 00007f159167bee0 RCX: 00007f159079da0a
[  252.455527][ T7633] RDX: 0000200000000180 RSI: 0000200000000140 RDI: 00007f159167bea0
[  252.455545][ T7633] RBP: 0000200000000180 R08: 00007f159167bee0 R09: 0000000000800718
[  252.455575][ T7633] R10: 0000000000800718 R11: 0000000000000246 R12: 0000200000000140
[  252.455593][ T7633] R13: 00007f159167bea0 R14: 00000000000004a3 R15: 00002000000003c0
[  252.455621][ T7633]  </TASK>
[  253.116400][ T3540] team0 (unregistering): Port device team_slave_1 removed
[  253.131087][ T7633] ------------[ cut here ]------------
[  253.136633][ T7633] EA inode 11 i_nlink=1026
[  253.136657][ T7633] WARNING: fs/ext4/xattr.c:1057 at ext4_xattr_inode_update_ref+0x477/0x590, CPU#0: syz.1.400/7633
[  253.151909][ T7633] Modules linked in:
[  253.155955][ T7633] CPU: 0 UID: 0 PID: 7633 Comm: syz.1.400 Not tainted syzkaller #0 PREEMPT(full) 
[  253.165209][ T7633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  253.176112][ T7633] RIP: 0010:ext4_xattr_inode_update_ref+0x47e/0x590
[  253.182733][ T7633] Code: 40 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 0a 01 00 00 48 8d 3d b9 39 fe 0d 48 8b 73 40 44 89 e2 <67> 48 0f b9 3a eb a6 e8 a6 95 26 ff 48 8d 7b 40 48 b8 00 00 00 00
[  253.202987][ T7633] RSP: 0018:ffffc90003307188 EFLAGS: 00010246
[  253.209364][ T7633] RAX: dffffc0000000000 RBX: ffff888077d9f5b8 RCX: ffffc90005a5a000
[  253.218059][ T7633] RDX: 0000000000000402 RSI: 000000000000000b RDI: ffffffff90e04f60
[  253.226397][ T7633] RBP: ffffc90003307250 R08: 0000000000000005 R09: 0000000000000001
[  253.234459][ T7633] R10: 0000000000000402 R11: 0000000000000000 R12: 0000000000000402
[  253.242447][ T7633] R13: 1ffff92000660e34 R14: 00000000ffffffff R15: 0000000000000000
[  253.251074][ T7633] FS:  00007f159167c6c0(0000) GS:ffff888124343000(0000) knlGS:0000000000000000
[  253.260185][ T7633] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  253.266833][ T7633] CR2: 00007fbf97674000 CR3: 0000000038704000 CR4: 0000000000350ef0
[  253.274854][ T7633] Call Trace:
[  253.278145][ T7633]  <TASK>
[  253.281083][ T7633]  ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[  253.287484][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.293178][ T7633]  ? ext4_xattr_inode_iget+0x1ee/0x400
[  253.298661][ T7633]  ext4_xattr_set_entry+0x185b/0x20b0
[  253.304137][ T7633]  ? __pfx_ext4_xattr_set_entry+0x10/0x10
[  253.310134][ T7633]  ? xattr_find_entry+0x240/0x2e0
[  253.315229][ T7633]  ext4_xattr_ibody_set+0x3d3/0x5d0
[  253.320472][ T7633]  ext4_expand_extra_isize_ea+0x180d/0x1d70
[  253.326430][ T7633]  ? __pfx_ext4_expand_extra_isize_ea+0x10/0x10
[  253.332739][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.338671][ T7633]  ? dquot_initialize_needed+0x183/0x2a0
[  253.344390][ T7633]  __ext4_expand_extra_isize+0x346/0x480
[  253.350094][ T7633]  __ext4_mark_inode_dirty+0x693/0x8b0
[  253.355790][ T7633]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  253.361835][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.367683][ T7633]  ? __ext4_journal_start_sb+0x1ce/0x6a0
[  253.373397][ T7633]  ? ext4_evict_inode+0x6e2/0x17c0
[  253.378565][ T7633]  ext4_evict_inode+0x860/0x17c0
[  253.383558][ T7633]  ? __pfx_ext4_evict_inode+0x10/0x10
[  253.389069][ T7633]  ? evict+0x37e/0xad0
[  253.393166][ T7633]  ? evict+0x37e/0xad0
[  253.397255][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.402950][ T7633]  ? __pfx_ext4_evict_inode+0x10/0x10
[  253.408409][ T7633]  evict+0x3c2/0xad0
[  253.412323][ T7633]  ? __pfx_evict+0x10/0x10
[  253.417132][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.422792][ T7633]  ? iput.part.0+0x5fd/0xf50
[  253.427491][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.433171][ T7633]  iput.part.0+0x605/0xf50
[  253.437592][ T7633]  ? __pfx_ext4_drop_inode+0x10/0x10
[  253.442929][ T7633]  iput+0x35/0x40
[  253.446618][ T7633]  ext4_orphan_cleanup+0x71e/0x11e0
[  253.451947][ T7633]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[  253.457826][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.463669][ T7633]  ? ext4_register_li_request+0xef/0xa00
[  253.469374][ T7633]  ext4_fill_super+0x9009/0xb470
[  253.474425][ T7633]  ? __pfx_ext4_fill_super+0x10/0x10
[  253.479859][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.485563][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.491232][ T7633]  ? sb_set_blocksize+0x1fe/0x290
[  253.496532][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.502173][ T7633]  ? setup_bdev_super+0x425/0x730
[  253.507352][ T7633]  get_tree_bdev_flags+0x38c/0x620
[  253.512520][ T7633]  ? __pfx_ext4_fill_super+0x10/0x10
[  253.517864][ T7633]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  253.523586][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.529255][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.534941][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.540644][ T7633]  ? security_capable+0x80/0x260
[  253.545636][ T7633]  vfs_get_tree+0x92/0x320
[  253.550090][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.555780][ T7633]  path_mount+0x7d0/0x23d0
[  253.560360][ T7633]  ? __pfx_path_mount+0x10/0x10
[  253.565390][ T7633]  ? lockdep_hardirqs_on+0x78/0x100
[  253.570648][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.576443][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.582122][ T7633]  ? kmem_cache_free+0x124/0x6a0
[  253.587127][ T7633]  ? __x64_sys_mount+0x293/0x310
[  253.592099][ T7633]  __x64_sys_mount+0x293/0x310
[  253.597018][ T7633]  ? __pfx___x64_sys_mount+0x10/0x10
[  253.602339][ T7633]  ? do_user_addr_fault+0x8d6/0x12f0
[  253.607753][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.613552][ T7633]  do_syscall_64+0x106/0xf80
[  253.618179][ T7633]  ? irqentry_exit+0x138/0x670
[  253.623013][ T7633]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  253.628938][ T7633] RIP: 0033:0x7f159079da0a
[  253.633453][ T7633] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  253.653143][ T7633] RSP: 002b:00007f159167be58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  253.661729][ T7633] RAX: ffffffffffffffda RBX: 00007f159167bee0 RCX: 00007f159079da0a
[  253.669913][ T7633] RDX: 0000200000000180 RSI: 0000200000000140 RDI: 00007f159167bea0
[  253.678031][ T7633] RBP: 0000200000000180 R08: 00007f159167bee0 R09: 0000000000800718
[  253.686042][ T7633] R10: 0000000000800718 R11: 0000000000000246 R12: 0000200000000140
[  253.694143][ T7633] R13: 00007f159167bea0 R14: 00000000000004a3 R15: 00002000000003c0
[  253.702155][ T7633]  </TASK>
[  253.705203][ T7633] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  253.712497][ T7633] CPU: 0 UID: 0 PID: 7633 Comm: syz.1.400 Not tainted syzkaller #0 PREEMPT(full) 
[  253.721704][ T7633] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  253.731769][ T7633] Call Trace:
[  253.735046][ T7633]  <TASK>
[  253.737973][ T7633]  dump_stack_lvl+0x100/0x190
[  253.742681][ T7633]  vpanic+0x552/0x970
[  253.746679][ T7633]  ? __pfx_vpanic+0x10/0x10
[  253.751193][ T7633]  ? lock_release+0x263/0x320
[  253.755902][ T7633]  panic+0xd1/0xe0
[  253.759628][ T7633]  ? __pfx_panic+0x10/0x10
[  253.764060][ T7633]  check_panic_on_warn.cold+0x19/0x34
[  253.769445][ T7633]  ? ext4_xattr_inode_update_ref+0x477/0x590
[  253.775543][ T7633]  __warn.cold+0x191/0x348
[  253.779972][ T7633]  __report_bug+0x296/0x3d0
[  253.784507][ T7633]  ? ext4_xattr_inode_update_ref+0x477/0x590
[  253.790520][ T7633]  ? __pfx___report_bug+0x10/0x10
[  253.795573][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.801219][ T7633]  ? rcu_is_watching+0x12/0xc0
[  253.806012][ T7633]  report_bug_entry+0xe1/0x290
[  253.810793][ T7633]  ? ext4_xattr_inode_update_ref+0x47e/0x590
[  253.816807][ T7633]  handle_bug+0x1cd/0x2a0
[  253.821142][ T7633]  exc_invalid_op+0x17/0x50
[  253.825647][ T7633]  asm_exc_invalid_op+0x1a/0x20
[  253.830679][ T7633] RIP: 0010:ext4_xattr_inode_update_ref+0x47e/0x590
[  253.837298][ T7633] Code: 40 48 b8 00 00 00 00 00 fc ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 0a 01 00 00 48 8d 3d b9 39 fe 0d 48 8b 73 40 44 89 e2 <67> 48 0f b9 3a eb a6 e8 a6 95 26 ff 48 8d 7b 40 48 b8 00 00 00 00
[  253.856923][ T7633] RSP: 0018:ffffc90003307188 EFLAGS: 00010246
[  253.863026][ T7633] RAX: dffffc0000000000 RBX: ffff888077d9f5b8 RCX: ffffc90005a5a000
[  253.871011][ T7633] RDX: 0000000000000402 RSI: 000000000000000b RDI: ffffffff90e04f60
[  253.879001][ T7633] RBP: ffffc90003307250 R08: 0000000000000005 R09: 0000000000000001
[  253.887161][ T7633] R10: 0000000000000402 R11: 0000000000000000 R12: 0000000000000402
[  253.895131][ T7633] R13: 1ffff92000660e34 R14: 00000000ffffffff R15: 0000000000000000
[  253.903121][ T7633]  ? ext4_xattr_inode_update_ref+0x451/0x590
[  253.909138][ T7633]  ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[  253.915498][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.921145][ T7633]  ? ext4_xattr_inode_iget+0x1ee/0x400
[  253.926638][ T7633]  ext4_xattr_set_entry+0x185b/0x20b0
[  253.932050][ T7633]  ? __pfx_ext4_xattr_set_entry+0x10/0x10
[  253.937797][ T7633]  ? xattr_find_entry+0x240/0x2e0
[  253.942942][ T7633]  ext4_xattr_ibody_set+0x3d3/0x5d0
[  253.948237][ T7633]  ext4_expand_extra_isize_ea+0x180d/0x1d70
[  253.954153][ T7633]  ? __pfx_ext4_expand_extra_isize_ea+0x10/0x10
[  253.960404][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.966050][ T7633]  ? dquot_initialize_needed+0x183/0x2a0
[  253.971711][ T7633]  __ext4_expand_extra_isize+0x346/0x480
[  253.977389][ T7633]  __ext4_mark_inode_dirty+0x693/0x8b0
[  253.982870][ T7633]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  253.988886][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  253.994539][ T7633]  ? __ext4_journal_start_sb+0x1ce/0x6a0
[  254.000185][ T7633]  ? ext4_evict_inode+0x6e2/0x17c0
[  254.005315][ T7633]  ext4_evict_inode+0x860/0x17c0
[  254.010271][ T7633]  ? __pfx_ext4_evict_inode+0x10/0x10
[  254.015667][ T7633]  ? evict+0x37e/0xad0
[  254.019747][ T7633]  ? evict+0x37e/0xad0
[  254.023819][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  254.029473][ T7633]  ? __pfx_ext4_evict_inode+0x10/0x10
[  254.034862][ T7633]  evict+0x3c2/0xad0
[  254.038769][ T7633]  ? __pfx_evict+0x10/0x10
[  254.043188][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  254.048841][ T7633]  ? iput.part.0+0x5fd/0xf50
[  254.053437][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  254.059090][ T7633]  iput.part.0+0x605/0xf50
[  254.063511][ T7633]  ? __pfx_ext4_drop_inode+0x10/0x10
[  254.068815][ T7633]  iput+0x35/0x40
[  254.072456][ T7633]  ext4_orphan_cleanup+0x71e/0x11e0
[  254.077708][ T7633]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[  254.083370][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  254.089018][ T7633]  ? ext4_register_li_request+0xef/0xa00
[  254.094763][ T7633]  ext4_fill_super+0x9009/0xb470
[  254.099748][ T7633]  ? __pfx_ext4_fill_super+0x10/0x10
[  254.105057][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  254.110710][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  254.116361][ T7633]  ? sb_set_blocksize+0x1fe/0x290
[  254.121401][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  254.127046][ T7633]  ? setup_bdev_super+0x425/0x730
[  254.132084][ T7633]  get_tree_bdev_flags+0x38c/0x620
[  254.137212][ T7633]  ? __pfx_ext4_fill_super+0x10/0x10
[  254.142531][ T7633]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  254.148178][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  254.153834][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  254.159481][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  254.165127][ T7633]  ? security_capable+0x80/0x260
[  254.170097][ T7633]  vfs_get_tree+0x92/0x320
[  254.174521][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  254.180173][ T7633]  path_mount+0x7d0/0x23d0
[  254.184606][ T7633]  ? __pfx_path_mount+0x10/0x10
[  254.189466][ T7633]  ? lockdep_hardirqs_on+0x78/0x100
[  254.194685][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  254.200346][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  254.205992][ T7633]  ? kmem_cache_free+0x124/0x6a0
[  254.210951][ T7633]  ? __x64_sys_mount+0x293/0x310
[  254.215892][ T7633]  __x64_sys_mount+0x293/0x310
[  254.220668][ T7633]  ? __pfx___x64_sys_mount+0x10/0x10
[  254.225964][ T7633]  ? do_user_addr_fault+0x8d6/0x12f0
[  254.231259][ T7633]  ? srso_alias_return_thunk+0x5/0xfbef5
[  254.237087][ T7633]  do_syscall_64+0x106/0xf80
[  254.241706][ T7633]  ? irqentry_exit+0x138/0x670
[  254.246511][ T7633]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  254.252507][ T7633] RIP: 0033:0x7f159079da0a
[  254.256923][ T7633] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  254.276583][ T7633] RSP: 002b:00007f159167be58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  254.285009][ T7633] RAX: ffffffffffffffda RBX: 00007f159167bee0 RCX: 00007f159079da0a
[  254.293241][ T7633] RDX: 0000200000000180 RSI: 0000200000000140 RDI: 00007f159167bea0
[  254.301213][ T7633] RBP: 0000200000000180 R08: 00007f159167bee0 R09: 0000000000800718
[  254.309181][ T7633] R10: 0000000000800718 R11: 0000000000000246 R12: 0000200000000140
[  254.317150][ T7633] R13: 00007f159167bea0 R14: 00000000000004a3 R15: 00002000000003c0
[  254.325136][ T7633]  </TASK>
[  254.328433][ T7633] Kernel Offset: disabled
[  254.332751][ T7633] Rebooting in 86400 seconds..