last executing test programs:

4m30.271817035s ago: executing program 2 (id=20):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x181)
syz_mount_image$fuse(0x0, &(0x7f0000000180)='./bus\x00', 0x6088, 0x0, 0x1, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
add_key$fscrypt_v1(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeeb, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6(0xa, 0x80002, 0x0)
r4 = socket$igmp6(0xa, 0x3, 0x2)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
setsockopt$MRT6_ASSERT(r4, 0x29, 0x24, 0x0, 0x0)
setsockopt$sock_linger(r3, 0x1, 0x3c, &(0x7f0000000040)={0x200000000000001}, 0x8)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @dev, 0x5}, 0x1c)
setsockopt$inet6_IPV6_HOPOPTS(r3, 0x29, 0x36, &(0x7f0000001440)=ANY=[], 0xc0)
setsockopt$inet6_IPV6_HOPOPTS(r4, 0x29, 0x36, &(0x7f0000000080)={0x33, 0x0, '\x00', [@enc_lim={0x4, 0x1, 0x6}]}, 0x10)
sendmmsg$inet6(r3, &(0x7f0000003cc0)=[{{0x0, 0x0, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)
setsockopt$inet6_IPV6_RTHDR(r3, 0x29, 0x39, &(0x7f00000000c0)=ANY=[], 0x8)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './cgroup'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})

4m29.152966425s ago: executing program 2 (id=22):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f0000000980)={[{@noblock_validity}, {@journal_dev={'journal_dev', 0x3d, 0x7}}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x6}}, {@noinit_itable}, {@nogrpid}, {@nodiscard}, {@jqfmt_vfsv0}, {@noinit_itable}, {@mb_optimize_scan}, {@usrquota}, {@dioread_nolock}]}, 0x1, 0x5a3, &(0x7f00000002c0)="$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")
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe})
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000180)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)

4m28.806013938s ago: executing program 2 (id=24):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000680)='./file0\x00', 0x2148c5, &(0x7f0000000380), 0x0, 0x2c4, &(0x7f0000000a40)="$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")
r0 = syz_open_procfs(0x0, &(0x7f0000000540)='mounts\x00')
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000500)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1333406, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x11080, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005c48, 0x0)
read$FUSE(r0, &(0x7f0000004c40)={0x2020}, 0x2020)

4m28.320413806s ago: executing program 32 (id=25):
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
syz_io_uring_setup(0x5cb, 0x0, &(0x7f0000000040), 0x0)
sendmsg$OSF_MSG_ADD(0xffffffffffffffff, 0x0, 0x4004000)
connect$packet(r0, &(0x7f0000000200)={0x1f, 0xf8, 0x0, 0x1, 0x2}, 0x14)

4m28.307288937s ago: executing program 2 (id=28):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x1, 0x5, 0x0, 0x84, 0x105}, 0x50)
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
prctl$PR_SET_TSC(0x1a, 0x1)
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x8000, 0x0, 0x0)
syz_mount_image$erofs(&(0x7f0000000000), &(0x7f00000001c0)='./file1\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="00ea2eb34e7ea51c9446c55a2d1e0be39af9faf44ad59cb6ad1c94490d970e811439edddc71c9b18946b559ce53bee0a1abe562fc3f3898e5826eda1962cf6e3c4c0ade52151923a70b46eacfc1aaaebcf156e549e884bcabc1333f344f31cd30cd93cb2814e0dbc24a7a107e295e86e09283c825fe177c89c6385f68f2c843cffffffff15539bab6142ceed9265ba989d1a283fc4ffc83f3a7a6c746823e656ad78f3b5a336cdbd83dad59e0debb36b4ea5e658e253f01637cc03f704a08019f95b92fffffffff8dd21552d6967ab1b01e5d52a5793eb179deee4572770a5197127b090287bca2a4eaa1705b42c16968d0201d3ba3cc8000000657ea095f152b1b6a1e6ad8d24ad17f649ccc23d4ecbcdb5620cc48f95f563c2230f859d196e6c4f00b8e3a7b01fcb1d79dcc09b7a854ec8c31dd27ff9b4a2864e1dcaf719d20b56769d51228ecc1915fb8c8b598c11b3c296b05f9c5355fc6f19a7b28f5ae9a0d0804ccc5716cfac0246ddffa2f12077a02a959aa1b74373c38b2bcc90743b80666eae25dea73e127263b8fdbc64fe862b994ca8473d0000000000000000", @ANYRESHEX=0x0], 0x1, 0x194, &(0x7f0000000640)="$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")
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x80000, 0x0)
read(r3, &(0x7f0000000200)=""/189, 0xbd)
read$FUSE(r3, &(0x7f0000003f00)={0x2020, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}, 0x2020)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x4000, 0x0)
setregid(0xffffffffffffffff, 0x0)
ptrace$ARCH_SHSTK_ENABLE(0x1e, r4, 0x1, 0x5001)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
fcntl$lock(r5, 0x26, 0x0)
fcntl$lock(r5, 0x26, 0x0)

4m27.930238416s ago: executing program 2 (id=29):
syz_mount_image$ext4(&(0x7f0000000900)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f00000000c0)={[{@nouid32}, {@nodioread_nolock}, {@noquota}, {@delalloc}, {@journal_dev={'journal_dev', 0x3d, 0x9}}, {@commit}]}, 0x1, 0x5a4, &(0x7f0000000940)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, 0x0)

4m27.432605651s ago: executing program 33 (id=29):
syz_mount_image$ext4(&(0x7f0000000900)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f00000000c0)={[{@nouid32}, {@nodioread_nolock}, {@noquota}, {@delalloc}, {@journal_dev={'journal_dev', 0x3d, 0x9}}, {@commit}]}, 0x1, 0x5a4, &(0x7f0000000940)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, 0x0)

4m4.786122586s ago: executing program 6 (id=30):
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000000)='./file0\x00', 0x800092, &(0x7f0000000480)=ANY=[@ANYBLOB="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", @ANYRESDEC], 0x46, 0x2d8, &(0x7f0000000d80)="$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")
capset(0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x1, './file0\x00'}, 0x6e)

4m4.406846003s ago: executing program 6 (id=95):
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000000)=ANY=[@ANYBLOB="e00000027fa80a"], 0x57)
setsockopt$inet_mreqsrc(r0, 0x0, 0x28, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc)

4m4.085757743s ago: executing program 6 (id=97):
openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB='iocharset=cp857,time_offset=0x0000000000000003,errors=remount-ro,fmask=00000000000000000000006,iocharset=cp862,allow_utime=00000000000000000077777,namecase=1,dmask=00000000000000000000201,utf8,dmask=000000000000\x00'/224, @ANYRES32, @ANYRESOCT=0x0, @ANYRES16], 0x5, 0x1548, &(0x7f0000004240)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x400, 0x0)

4m3.692852568s ago: executing program 6 (id=101):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file2\x00', 0x8, &(0x7f0000000080)={[{@nodioread_nolock}, {@sb={'sb', 0x3d, 0x1}}]}, 0x4, 0x523, &(0x7f00000018c0)="$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")
open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0)
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000180)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='memory.current\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000800)={0x4, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='net_prio.prioidx\x00', 0x275a, 0x0)

4m2.420590931s ago: executing program 6 (id=107):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req={0x181, 0x0, 0x6, 0x100}, 0x10)
timer_create(0xfffffffd, 0x0, &(0x7f00000011c0))
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
timer_gettime(0x0, &(0x7f0000000200))
syz_emit_ethernet(0x7e, &(0x7f0000000240)=ANY=[], 0x0)
get_robust_list(0x0, &(0x7f0000000080)=0x0, &(0x7f0000000140))
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000240)={0x0, r0}, 0x8)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r3=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000b80)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x7, 0x1fffff2c, &(0x7f00000001c0)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000300)={r4, r3, 0x25, 0x0, @val=@tcx={@void, @value=r4}}, 0x1c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0xd, 0x6, 0x0, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x1a, '\x00', r3, 0x24}, 0x94)
unshare(0x4000800)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000002c0)={0x3, &(0x7f0000000200)=[{0x7, 0x3, 0xe, 0x3}, {0x2, 0x40, 0x9, 0x9}, {0x7a, 0x75, 0x5, 0x1}]})
bind$inet(r1, &(0x7f0000000100)={0x2, 0x0, @local}, 0x10)
setsockopt$sock_int(r1, 0x1, 0x6, &(0x7f0000000000)=0x4, 0x4)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r7 = dup(r6)
read$FUSE(r7, &(0x7f0000002780)={0x2020}, 0x2020)
unshare(0x60000000)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r5, 0x10e, 0x1, &(0x7f0000000400)=0x1, 0x4)
clock_nanosleep(0x8, 0x0, &(0x7f00000004c0)={0x0, 0x3938700}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=ANY=[@ANYBLOB="fc00000019000100000000000000000000000000000000000000000000000000fe8000000000000000000000000000bb00000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000700000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000440005002001000000000000000000000000000000000002320000000a000000fc0100000400"/163], 0xfc}}, 0x0)
sendmmsg$inet(r1, 0x0, 0x0, 0xf1c)

4m2.010822733s ago: executing program 34 (id=107):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req={0x181, 0x0, 0x6, 0x100}, 0x10)
timer_create(0xfffffffd, 0x0, &(0x7f00000011c0))
prctl$PR_SET_SECCOMP(0x16, 0x1, 0x0)
timer_gettime(0x0, &(0x7f0000000200))
syz_emit_ethernet(0x7e, &(0x7f0000000240)=ANY=[], 0x0)
get_robust_list(0x0, &(0x7f0000000080)=0x0, &(0x7f0000000140))
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000240)={0x0, r0}, 0x8)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r3=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000b80)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000018c0)={0x7, 0x1fffff2c, &(0x7f00000001c0)=ANY=[], &(0x7f0000000180)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000300)={r4, r3, 0x25, 0x0, @val=@tcx={@void, @value=r4}}, 0x1c)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0xd, 0x6, 0x0, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x1a, '\x00', r3, 0x24}, 0x94)
unshare(0x4000800)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000002c0)={0x3, &(0x7f0000000200)=[{0x7, 0x3, 0xe, 0x3}, {0x2, 0x40, 0x9, 0x9}, {0x7a, 0x75, 0x5, 0x1}]})
bind$inet(r1, &(0x7f0000000100)={0x2, 0x0, @local}, 0x10)
setsockopt$sock_int(r1, 0x1, 0x6, &(0x7f0000000000)=0x4, 0x4)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
r6 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r7 = dup(r6)
read$FUSE(r7, &(0x7f0000002780)={0x2020}, 0x2020)
unshare(0x60000000)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r5, 0x10e, 0x1, &(0x7f0000000400)=0x1, 0x4)
clock_nanosleep(0x8, 0x0, &(0x7f00000004c0)={0x0, 0x3938700}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=ANY=[@ANYBLOB="fc00000019000100000000000000000000000000000000000000000000000000fe8000000000000000000000000000bb00000000000000000200000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000000000000700000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000440005002001000000000000000000000000000000000002320000000a000000fc0100000400"/163], 0xfc}}, 0x0)
sendmmsg$inet(r1, 0x0, 0x0, 0xf1c)

2m53.463285319s ago: executing program 0 (id=335):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1b0000000000"], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x1f, 0x10, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000", @ANYRES64=r0, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000020000207b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000200000085000000a800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
syz_open_dev$usbfs(0x0, 0x6, 0x800)
socket$tipc(0x1e, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x1b, &(0x7f0000000200)={@remote, 0x8, 0x2, 0x2, 0x0, 0x0, 0x6}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x1b, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000080)='net/anycast6\x00')
preadv(r4, &(0x7f0000000340)=[{0x0}, {&(0x7f0000000700)=""/235, 0xeb}], 0x2, 0x2001, 0x2)

2m52.479606073s ago: executing program 0 (id=338):
io_pgetevents(0x0, 0x6, 0x0, 0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000380)={[0x1]}, 0x8})

2m52.352203371s ago: executing program 0 (id=339):
syz_mount_image$exfat(&(0x7f0000000100), &(0x7f0000000240)='./file0\x00', 0x402, &(0x7f0000000300)=ANY=[@ANYBLOB='iocharset=cp861,iocharset=cp932,errors=continue,errors=remount-ro,errors=continue,discard,allow_utime=00000000000000000000010,discard,allow_utime=00000000000000000000004,uid=', @ANYRESHEX=0x0, @ANYBLOB='\x00\x00'], 0x1, 0x151e, &(0x7f0000007640)="$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")
unlinkat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x200)

2m51.566643537s ago: executing program 0 (id=343):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000006c0)={[{@dioread_nolock}, {@noauto_da_alloc}, {@inlinecrypt}, {@i_version}, {@data_err_ignore}, {@barrier_val={'barrier', 0x3d, 0x9}}, {@data_err_ignore}, {@grpquota}, {@init_itable}, {@user_xattr}, {@resuid}, {@quota}]}, 0x1, 0x555, &(0x7f0000000780)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tKt9ccEH+aj6HCg7zO0d2U0WUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo++BK56U2XtUmbddnSmc8Hbjkn996c+82939NzcxISwNCayP4UIl6OiG+SiIMRkeTrRiNfObG63cqDazPZkkSj8elfSXO7rN56rtZ++/PKSxHx21cRxwsb260tLc+XyuV0Ia9P1iuXJ2tLyycuVkpz6Vx6aWp6+vTb01PvvftO32J949w/339y58PTXx9d+e6Xe4duJXEmDuTr2uN4AtfbKxMxkb8mY3Fm3Yan+tDYTpIM+gDYlpE8z8ci6wMOxkie9cD/35cR0QCGVCL/YUi1xgGte/s+3Qc/N+5/sHoDtDH+0dX3RmJP895o30ryyJ1Rdr873of2szZ+/fP2rWyJ/r0PAbCl6zci4uTo6Mb+L8n7v+072cM269vQ/8Gzcycb/7zZafxTWBv/RD7+2dO23/4OubsdW+d/4V4fmukqG/+933H8uzZpNT6S115ojvnGkgsXy2nWt70YEcdibHdW32w+5/TK3Ua3de3jv2zJ2m+NBfPjuDe6+9F9Zkv10pPE3O7+jYhXOo5/k7Xzn3QY/2avx7ke2ziS3n6t27qt43+6Gj9FvN7x/D+c0Uo2n5+cbF4Pk62rYqO/bx75vVv7g44/O//7No9/PGmfr609fhs/7vk37bbukfij9+t/V/JZs7wrf+xqqV5fOBWxK/l44+NTD/dt1VvbZ/EfO7p5/9fp+t8bEZ/3GP/Nwz+/2lP8Azr/s491/h+/cPejL37o1n5v/d9bzdKx/JFe+r9eD/BJXjsAAAAAAADYaQoRcSCSQnGtXCgUi6uf7zgc+wrlaq1+/EJ18dJsNL8rOx5jhdZM98F1n4Edb/t8xNS6+nREHIqIb0f2NuvFmWp5doBxAwAAAAAAAAAAAAAAAAAAwE6yv8v3/zN/jAz66ICnzk9+w/DaMv/78UtPwI7k/z8ML/kPw0v+w/CS/zC85D8ML/kPw0v+w/CS/wAAAAAAAAAAAAAAAAAAAAAAAAAAANBX586ezZbGyoNrM1l99srS4nz1yonZtDZfrCzOFGeqC5eLc9XqXDktzlQrWz1fuVq9fGoqFq9O1tNafbK2tHy+Ul28VD9/sVKaS8+nY88kKgAAAAAAAAAAAAAAAAAAAHi+1JaW50vlcrqgoLCtwujOOAyFPhcG3TMBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwEP/BQAA///bjjXe")
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000300)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f0000000040)='./bus\x00', 0x322020, &(0x7f0000000280)=ANY=[], 0x1, 0x0, 0x0)
lsetxattr$system_posix_acl(&(0x7f0000000140)='./file1\x00', &(0x7f0000000040)='system.posix_acl_access\x00', &(0x7f0000000000)=ANY=[@ANYBLOB="02000000010000000000f400040000000000000020"], 0x1c, 0x0)

2m50.796795543s ago: executing program 0 (id=348):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1b0000000000"], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000800)={0x1f, 0x10, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000", @ANYRES64=r0, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000020000207b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000200000085000000a800000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3}, 0x94)
syz_open_dev$usbfs(0x0, 0x6, 0x800)
socket$tipc(0x1e, 0x5, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x1b, &(0x7f0000000200)={@remote, 0x8, 0x2, 0x2, 0x0, 0x0, 0x6}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x1b, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000080)='net/anycast6\x00')
preadv(r4, &(0x7f0000000340)=[{0x0}, {&(0x7f0000000700)=""/235, 0xeb}], 0x2, 0x2001, 0x2)

2m50.188116083s ago: executing program 0 (id=352):
r0 = syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1800040, &(0x7f0000000200)={[{@barrier}, {@nodioread_nolock}, {@noquota}, {@barrier}, {@block_validity}, {@nodioread_nolock}, {@nodelalloc}, {@bh}]}, 0x1, 0x59c, &(0x7f0000001840)="$eJzs3U9oHGUbAPBnZrNN/+T70g++Dz6lh6JChdJN0j9aPbVXsVDoQfCiYbMNJZtsySbahIDpvYg9iEov9aYHj4oHD+LFo1cvimeh2KDQ9KArm51N03S3bmI2W7O/H0z2fWdm93nfmX3e7AwzTAB962j9TxrxVERcTCKGNywbiGzh0cZ6qytLxfsrS8UkarVLvySRRMS9laVic/0kez0UEcsR8f+I+CYfcTxd/8h9zUJ1YXFqvFwuzWb1kbnpqyPVhcUTV6bHJ0uTpZlTL7505uzpM2MnxzY2935tYy2/tb7e+PHmuze+e+X2zU8/O7JcfH88iXMxlC3b2I+d1Ngm+Ti3af7pbgTroaTXDWBbclme11PpfzEcuSzrW6ltHBwGd6V5QBfVBiNq6zYUgT6QSHroU83fAfXj3+a0m78/7pxvHIDU466uLBXfiWb8gca5idi/dmxy8NfkoSOT+vHm4d1sKHvS8vWIGB0YePT7n2Tfv+0b3YkG0lVfn2/sqEf3f7o+/kSL8Weoee70b2qOf6vZ+LfaIn6uzfh3scMYv7/+00dt418fjKdbxk/W4yct4qcR8WaH8W+99uXZdstqH0cci9bxm5LHnx8euXylXBpt/G0Z46tjR15u3/+Ig23iN87Z7l9ryMb+78valHbY/y++/fyZ5cfEf/7Zx+//Vtv/QES812H8/9z75NV2y+5cT+7WfwVsdf8nkY/bHcZ/4dzRH7Kis4YAAAAAAAAAALCD0rVr2ZK0sF5O00KhcQ/vf+NgWq5U545frszPTDSueTsc+bR5pdVwo57U62PZ9bjN+slN9VO5LGDuwFq9UKyUJ3rcdwAAAAAAAAAAAAAAAAAAAHhSHNp0//9vubX7/zc/rhrYq9o/8hvY6+Q/9K+H8z/pWTuA3ef/P/StmvyH/iX/oX/Jf+hf8h/6l/yH/iX/oX/JfwAAAAAAAAAAAAAAAAAAAAAAAAAA6IqLFy7Up9r9laVivT4xsDA/VXnrxESpOlWYni8WipXZq4XJSmWyXCoUK9N/9XlJpXJ1NGbmr43MlapzI9WFxTemK/MzzWeKlvJd7xEAAAAAAAAAAAAAAAAAAAD88wytTUlaiMg36mlaKET8KyIOJ5FcvlIujUbEvyPi+1x+sF4f63WjAQAAAAAAAAAAAAAAAAAAYI+pLixOjZfLpdnuFQayUF0M0XlhYCsrR8Tyzjaj/olbflc+24A93nR7o5B7Mr6HT36hh4MSAAAAAAAAAAAAAAAAAAD0qQc3/Xb6jj+62yAAAAAAAAAAAAAAAAAAAADoS+nPSUTUp2PDzw1tXrovWc2tvUbE27cufXBtfG5udqw+/+76/LkPs/kne9F+oFPNPE0jop7HAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwAPVhcWp8XK5NLvNwmAH6/S6jwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADb8WcAAAD//y4WzlE=")
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000003c0), 0x8)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000ec0)={0x18, 0x10, &(0x7f0000000cc0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x10001, 0x0, 0x0, 0x0, 0xcf}, {}, {}, [@jmp={0x5, 0x1, 0x1, 0x9, 0xa, 0x1, 0x8}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x3}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000180)='syzkaller\x00', 0xc14, 0x0, 0x0, 0x40f00, 0x42, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000d80)={0x1, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000e00)=[r0, r1, 0x1, 0x1], &(0x7f0000000e40)=[{0x5, 0x5, 0xb, 0x9}, {0x5, 0x3, 0xb, 0x2}, {0x4, 0x4, 0xb}, {0x0, 0x2, 0xb, 0x7}], 0x10, 0x80000001}, 0x94)
getdents64(0xffffffffffffffff, &(0x7f0000000040)=""/49, 0x31)
getdents64(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000fc0)={r2, 0xffffffffffffffff, 0x10, 0x0, @void}, 0x10)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
wait4(0xffffffffffffffff, &(0x7f0000000080), 0x8, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)
write$FUSE_LK(r3, &(0x7f0000000140)={0x28, 0x0, 0x0, {{0x80000000, 0xfff, 0x2}}}, 0x28)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)
fsopen(0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, r4}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x9)

2m49.835380444s ago: executing program 35 (id=352):
r0 = syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1800040, &(0x7f0000000200)={[{@barrier}, {@nodioread_nolock}, {@noquota}, {@barrier}, {@block_validity}, {@nodioread_nolock}, {@nodelalloc}, {@bh}]}, 0x1, 0x59c, &(0x7f0000001840)="$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")
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0)
bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f00000003c0), 0x8)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000ec0)={0x18, 0x10, &(0x7f0000000cc0)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x10001, 0x0, 0x0, 0x0, 0xcf}, {}, {}, [@jmp={0x5, 0x1, 0x1, 0x9, 0xa, 0x1, 0x8}], {{}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x3}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000180)='syzkaller\x00', 0xc14, 0x0, 0x0, 0x40f00, 0x42, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000d80)={0x1, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000e00)=[r0, r1, 0x1, 0x1], &(0x7f0000000e40)=[{0x5, 0x5, 0xb, 0x9}, {0x5, 0x3, 0xb, 0x2}, {0x4, 0x4, 0xb}, {0x0, 0x2, 0xb, 0x7}], 0x10, 0x80000001}, 0x94)
getdents64(0xffffffffffffffff, &(0x7f0000000040)=""/49, 0x31)
getdents64(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000fc0)={r2, 0xffffffffffffffff, 0x10, 0x0, @void}, 0x10)
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
wait4(0xffffffffffffffff, &(0x7f0000000080), 0x8, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)
write$FUSE_LK(r3, &(0x7f0000000140)={0x28, 0x0, 0x0, {{0x80000000, 0xfff, 0x2}}}, 0x28)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r3, 0x0)
fsopen(0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, r4}, 0x10)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x9)

2m47.720190455s ago: executing program 7 (id=369):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x802}, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c0000005e000100000000000000b16e89a2"], 0x1c}}, 0x0)

2m47.47416953s ago: executing program 7 (id=371):
sched_setattr(0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x188)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x1d7)
mkdirat(0xffffffffffffff9c, &(0x7f0000000240)='./file1/file0\x00', 0x0)
mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000080)='./file1/file0\x00', 0x0, 0x1085408, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0/file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ptrace(0x10, 0x0)
ptrace$getregset(0x4204, 0x0, 0x2, 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f00000003c0), 0x0, &(0x7f00000004c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1/file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f00000001c0)='./bus\x00')
unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108)
getdents64(r3, &(0x7f0000000f80)=""/4096, 0x1000)

2m46.404194056s ago: executing program 7 (id=373):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
prctl$PR_SET_TSC(0x1a, 0x1)
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x19, &(0x7f0000000000)=0x84, 0xfde1)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x200cc0c5, &(0x7f0000000080)={0xa, 0x4c20, 0x0, @mcast2}, 0x1c)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
sendto$inet6(0xffffffffffffffff, &(0x7f0000001cc0)="2501d77b330b7e73d6b1d1b8a473ff7420b4b43ce0861f000000714fa228ee1f5b", 0x21, 0x8000, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x40002003, 0x0)
syz_mount_image$erofs(&(0x7f0000000000), &(0x7f00000001c0)='./file1\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="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", @ANYRESHEX=0x0], 0x1, 0x194, &(0x7f0000000640)="$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")
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file2\x00', 0x80000, 0x0)
read(r3, &(0x7f0000000200)=""/189, 0xbd)
read$FUSE(r3, &(0x7f0000003f00)={0x2020}, 0x2020)
r4 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00')
preadv(r4, 0x0, 0x0, 0x4000, 0x0)
setregid(0xffffffffffffffff, 0x0)
setreuid(0xee01, 0x0)
pselect6(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
fcntl$lock(r5, 0x26, 0x0)
fcntl$lock(r5, 0x26, 0x0)

2m45.516035579s ago: executing program 7 (id=374):
syz_mount_image$exfat(&(0x7f00000005c0), &(0x7f0000000240)='./file1\x00', 0x3000050, &(0x7f0000000600)=ANY=[], 0x1, 0x14fe, &(0x7f00000020c0)="$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")
keyctl$restrict_keyring(0xa, 0x0, 0x0, &(0x7f0000000000)='id:cb2e')
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)

2m44.728335598s ago: executing program 7 (id=377):
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
epoll_create1(0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
getpid()
r1 = fsmount(r0, 0x0, 0x0)
fchdir(r1)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fchown(r2, 0x0, 0xee01)
fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0xfffffffb)
openat(0xffffffffffffff9c, &(0x7f0000001740)='.\x00', 0x511001, 0x408)

2m44.460056296s ago: executing program 7 (id=380):
r0 = syz_open_dev$vcsn(&(0x7f0000000080), 0x10002, 0x0)
ioctl$AUTOFS_IOC_EXPIRE(r0, 0x810c9365, &(0x7f0000000400)={{0x0, 0x9}, 0x100, './file0\x00'})
epoll_pwait2(r0, &(0x7f0000000280)=[{}], 0x1, 0x0, 0x0, 0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0, 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x1)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x183341, 0x0)
ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f00000000c0)={0x0, 0x2, 0x20, 0x2000003})
unlinkat(r1, &(0x7f00000011c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x14a600, 0x78e22799f4a46f8f)

2m29.05613703s ago: executing program 36 (id=380):
r0 = syz_open_dev$vcsn(&(0x7f0000000080), 0x10002, 0x0)
ioctl$AUTOFS_IOC_EXPIRE(r0, 0x810c9365, &(0x7f0000000400)={{0x0, 0x9}, 0x100, './file0\x00'})
epoll_pwait2(r0, &(0x7f0000000280)=[{}], 0x1, 0x0, 0x0, 0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0, 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x1)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x183341, 0x0)
ioctl$FS_IOC_RESVSP(r2, 0x40305828, &(0x7f00000000c0)={0x0, 0x2, 0x20, 0x2000003})
unlinkat(r1, &(0x7f00000011c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000300)='cgroup2\x00', 0x0, 0x0)
open(&(0x7f0000000000)='./file0\x00', 0x14a600, 0x78e22799f4a46f8f)

1m2.127358015s ago: executing program 9 (id=707):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f0000000040))
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f0000000000)={[0x35, 0x7, 0x2, 0x184, 0x2, 0x10, 0xf1, 0x100000001, 0x1, 0x5, 0x0, 0x29, 0x0, 0x2, 0x0, 0xbd9], 0xffff1001, 0x53101})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000006400)=[{{&(0x7f0000000300)=@generic={0x1e, "e8b08b8bd4bc1b6e3991e8c725da29abedd3c244bff8f0fddc1dda65603d91bcf29b12dd5c1489dcbd15b95efacdfdab37ced870ba8d1729645a074930f9cd0d6fdc68137c5d5805c18ad98544b0178e1d301cb27f5e3b37cae0aab77d6f5df2619e21f3eb54784010cdc87527c1467117eb26c07549cfc9546d745229c5"}, 0x80, &(0x7f0000000640)=[{&(0x7f0000000480)="7205601ba59561832ed899c2762d0b21820eeef7d39cb6e59bd81e15500906c2bfc2e857df6ceb5a3b9591846de55883d5b5a6f3f0bc40ab74af6f61c94c88594f5ee783b95718a84a14a90fb5b56940", 0x50}], 0x1}}], 0x1, 0x4000000)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x7, 0x1000000000, 0x0, 0x200000000000043, 0x2000004, 0x0, 0x2004cb, 0x0, 0xa7c, 0x68ff, 0x7, 0x8000000009, 0x803, 0x0, 0x9], 0xeeee8000, 0x202})
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0x3000, 0x1, 0x8, 0x8, 0xb, 0xe6, 0x40, 0x3, 0x0, 0x81, 0x80}, {0x200000, 0x3000, 0x3, 0x0, 0x1, 0x5, 0x75, 0x6, 0x36, 0x0, 0x2, 0x9}, {0x0, 0xdddd0000, 0xe, 0x5, 0x3, 0x7, 0x0, 0x9, 0x1, 0xa4, 0x5, 0x5}, {0x1, 0x8000000, 0x4, 0x2, 0x5, 0x7f, 0xb, 0xff, 0x8, 0x7, 0xe}, {0xf000, 0xd000, 0xf, 0x3, 0x13, 0x87, 0x7, 0x8, 0x9, 0x9, 0xf7, 0x97}, {0xeeefa000, 0x0, 0xe, 0xa0, 0xb1, 0x8, 0x1, 0xa0, 0x82, 0x2f, 0x1, 0x7}, {0x3000, 0x18227000, 0xf, 0x5, 0x7, 0x5, 0x7, 0x3, 0x8, 0x3, 0x42, 0x70}, {0xdddd0000, 0xa000, 0xa, 0x5, 0xcd, 0x7, 0x1, 0x9, 0x2, 0xc, 0xb0, 0x91}, {0xeeee0000, 0x30}, {0x8000000, 0x7}, 0x80000031, 0x0, 0x3000, 0x2024, 0x2, 0x0, 0x100000, [0x4, 0x4, 0x3, 0x8]})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1m1.592174757s ago: executing program 9 (id=710):
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
fchdir(r1)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fchown(r2, 0x0, 0xee01)
fchmodat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0xfffffffb)
openat(0xffffffffffffff9c, 0x0, 0x511001, 0x408)

1m1.287883892s ago: executing program 9 (id=712):
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x11, 0x3, &(0x7f0000000100)=ANY=[], &(0x7f0000000300)='syzkaller\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x3b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0/../file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r3 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r3, &(0x7f0000000040)={0x24, @long={0x3, 0x1}}, 0x14)

59.626758418s ago: executing program 9 (id=716):
syz_mount_image$f2fs(&(0x7f0000000040), &(0x7f0000000280)='./file1\x00', 0x280841e, &(0x7f00000004c0)=ANY=[@ANYBLOB="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", @ANYRESOCT], 0x1, 0x553b, &(0x7f00000024c0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
syz_clone(0x80020000, 0x0, 0xfffffffffffffe70, 0x0, 0x0, 0x0)
sendmsg$key(0xffffffffffffffff, 0x0, 0x0)
write$binfmt_script(r0, &(0x7f0000000240), 0x3af4701e)

57.626401156s ago: executing program 9 (id=720):
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101b01)
ioctl$USBDEVFS_BULK(r0, 0x5523, 0x0)

56.804278872s ago: executing program 8 (id=721):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x1010001, &(0x7f0000000080)={[{@errors_continue}, {@delalloc}, {@data_err_ignore}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x2}}, {@data_err_ignore}, {@nojournal_checksum}]}, 0x1, 0x4ef, &(0x7f0000000180)="$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")
mkdir(&(0x7f0000000180)='./bus\x00', 0x0)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x200a017, 0x0, 0x1, 0x0, 0x0)

56.492324114s ago: executing program 9 (id=723):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000001c0), 0x4b301, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000240)=0xd)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, 0x0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)=0x1a)

56.025389872s ago: executing program 37 (id=723):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000001c0), 0x4b301, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000240)=0xd)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r0, 0x0)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)=0x1a)

56.021163036s ago: executing program 8 (id=725):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x3000490, &(0x7f00000002c0), 0x45, 0x7b1, &(0x7f0000000c80)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x4)
prlimit64(0x0, 0x6, 0x0, &(0x7f0000000000))

54.915193378s ago: executing program 8 (id=731):
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
ioctl$KDGKBSENT(0xffffffffffffffff, 0x4b48, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r3, 0x0, 0xb, 0x0, 0x0)

48.478298235s ago: executing program 8 (id=743):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000002240)='./file0\x00', 0x0, &(0x7f0000001300)=ANY=[@ANYBLOB="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", @ANYRES16=0x0], 0x1, 0x2c2, &(0x7f00000006c0)="$eJzs3T+LI2UYAPBndpNJ7iySwkoEB7SwOm6vtckiOThMpaRQC128O5AkCHew4CkGK1sbSz+BINj5JWwEP4DgB7DzioNXJpkh2btJsoHLrX9+vyL77Lzv877POzPZPyzz7sevziZ3i7j/9Ze/R7ebxdEgBvE4i34cRS2llGJl8G0AAP9mj1OKP9PSJVMG5UsWEd3DlgYAHMje3/9/OnhJAMCBvff+B++cjkbDd4uiG7dn35yPy9/sy4/L9tP78WlM417cjF48Wf4toP5poXy9nVKat4pSP96Yzc/HZebso1+q8U/riU6iF/1FdDH/zmh4Uiyt5c/LOq5X8w/K+W9FL15umP/OaHirIT/Gebz5+lr9N6IXv34Sn8U07i6KWOV/dVIUb6fv/vriw7K8Mj+bn487i34r6fjFXRUAAAAAAAAAAAAAAAAAAAAAAP7rblR753RisX9Peajaf+f4SflJO4pa/+L+PMv8rB7oqf2B5im+T6nTihgNbxZFkaqOq/xWvNKK1tWsGgAAAAAAAAAAAAAAAAAAAP5ZHn7+aHI2nd570BD8dj1iQ9OGoN4NoH6sf0fW8aamwdqR1+LR5KyzecC1pqMq3DJpHNd9soity4lWux65v9dJ2D+4tqnmH37cd8Du7j7tbefn+QT13TU5y6KxTyfqI936mv683iePS86Vb2pKu2+/tSBvbOrtvfb8pUUw39Insm2FvfXH8sxVR7KnV5EvzmpjenttN47me6P5Wmx6pzwjW7yt8+f3xQcAAAAAAAAAAAAAAAAAALhg9dDvM03XdqQepc7BygIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAF2r1///3COZV8iU65/Hg4RUvEQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgP+BvwMAAP//QSRWPA==")
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = open(&(0x7f00000000c0)='./file0\x00', 0x1298c2, 0x0)
getsockname$packet(r0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000080)={0x2, &(0x7f0000000040)=[{0x30, 0x0, 0x0, 0xfffff038}, {0x6}]}, 0x10)
keyctl$restrict_keyring(0xa, 0x0, 0x0, &(0x7f0000000000)='id:cb2e')
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x222c00, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r2 = syz_clone(0x111, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r2)
wait4(r2, 0x0, 0x8, 0x0)
ptrace$setsig(0x4203, r2, 0x1, &(0x7f0000000140)={0x1b, 0x7, 0x7})
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f0000000180)={0x3000, 0x5000, 0x1})
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000340)='./file1aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1000000, &(0x7f0000000440)=ANY=[@ANYBLOB="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", @ANYRESOCT=0x0], 0x3, 0x286, &(0x7f00000009c0)="$eJzs2k1rXFUYB/DnxqSdSUkn4hstiAddqJuhyVqhRSKIAUWNUAXprZnomOtMyB0CI2Ky0q0fQXAhiEt3gnTpJhs/gQt32WRZQRyZt5rE0iodMxJ+v8Xl5OT87z3nnuHyzGUOXvjy482Nsr6Rd2Imy2LmauzF7SwWYybG9uL5Z6//9OSb19959drqamXUu5xSuvjUj+9++t3TtzoX3v7+4g/nY3/xvYPD5V/3H9+/dPDHWx82y9QsU6vdSXm62W538ptFI603y816Sq8XjbxspGarbGwf+/9G0d7a6qa8tb4wv7XdKMuUt7pps9FNnXbqbHdT/kHebKV6vZ4W5oMHsfbt7V4vDntzN6LX61W/igu3YuGXqEX2cMoeuZo9diN7Yi+7dNjr1U5Gq9OZMZM13P9z8a/3nzNh9FBfeSOlSsz2Hwk7axHFF/1jRCWubUQzimjElajG74OPyciw/fIrqytX0sBifF7s7gzzuztrDw3Ofye/lGX9v++WXxrm0zh/PiL6x/mj+eWoxaN3zc+NlpKOX78Szz1zJF+PWvz8frSjiPXBPGJ3lFv5bCmll15bPZG/PBgHAHDW1Iel11wM67d+0XasfquPBvy9vhvmj9SHtfvUhyfqq9m4PDvdtRNRdj/ZzIuisd3/gjdo3OmZQGNcmk/shP9B47eTPdXxbakevT/3aIxfhUx2YuP3bP2emWN7Nu07prF3uhf9+twUVhrx0ak+iZiGvzb9vkMrpzIhAAAAAAAAAAAA/pEH/KngNy8OT3PPwdNeIwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8P/2ZwAAAP//1a6yjQ==")
r3 = inotify_init1(0x0)
inotify_add_watch(r3, &(0x7f0000000200)='.\x00', 0x400)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x4, 0x80)
getdents64(r4, &(0x7f0000000400)=""/4096, 0xc00)
r5 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(0xffffffffffffffff, 0x4010ae67, &(0x7f0000000040)={0x2, 0x12000, 0x1})

48.114799117s ago: executing program 8 (id=744):
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000000)='./file0\x00', 0x492, &(0x7f0000000140)=ANY=[@ANYBLOB='showexec,shortname=winnt,shortname=lower,utf8=1,iocharset=cp865,shortname=win95,uni_xlate=1,shortname=win95,check=strict,shortname=winnt,utf8=0,iocharset=iso8859-5,codepage=874,shortname=mixed,shortname=win95,shortname=mixed,nonumtail=0,shortname=mixed,shortname=mixed,uni_xlate=1,rodir,nnonuni_xlate=1,shortname=win95,shortname=win95,utf8=0,nnonumtail=1,shortname=win95,shortname=win95,nnonumtail=1,uni_xlate=1,nfs=nostale_ro,\x00'/444], 0x6, 0x2d7, &(0x7f0000000340)="$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")
r0 = openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xe, 0x28011, r0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.current\x00', 0x275a, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x7bdb)

47.61157265s ago: executing program 8 (id=745):
pipe(0x0)
unshare(0x20000400)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, r1, {0x2, 0x4e24, @broadcast}, 0x2, 0x0, 0x3}}, 0x26)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r2, &(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x3, r0, {0x2, 0x4e21, @broadcast}, 0x2, 0x9800, 0xfffffffd}}, 0x2e)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r3, &(0x7f00000000c0)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x2, 0x3}}, 0x26)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
ioctl$PPPIOCATTCHAN(r4, 0x40047438, &(0x7f0000000500)=0x2)
ioctl$PPPIOCBRIDGECHAN(r4, 0x40047435, &(0x7f0000000200)=0x1)

47.041189043s ago: executing program 38 (id=745):
pipe(0x0)
unshare(0x20000400)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, r1, {0x2, 0x4e24, @broadcast}, 0x2, 0x0, 0x3}}, 0x26)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r2, &(0x7f0000000040)=@pppol2tpv3={0x18, 0x1, {0x3, r0, {0x2, 0x4e21, @broadcast}, 0x2, 0x9800, 0xfffffffd}}, 0x2e)
r3 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r3, &(0x7f00000000c0)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x2, 0x3}}, 0x26)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
ioctl$PPPIOCATTCHAN(r4, 0x40047438, &(0x7f0000000500)=0x2)
ioctl$PPPIOCBRIDGECHAN(r4, 0x40047435, &(0x7f0000000200)=0x1)

12.932468349s ago: executing program 4 (id=806):
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
bind$inet6(r0, 0x0, 0x0)

12.511986225s ago: executing program 4 (id=808):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x3, &(0x7f0000000380)=ANY=[], 0x0, 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
fsopen(0x0, 0x1)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r3, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r5 = socket$inet_tcp(0x2, 0x1, 0x0)
connect$inet(r5, &(0x7f0000000180)={0x2, 0x4e21, @dev={0xac, 0x14, 0x14, 0x1b}}, 0x10)
unshare(0x6a040000)
sendmmsg$unix(r1, &(0x7f00000019c0), 0x0, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000180)=ANY=[@ANYBLOB="2c0000001e00431b00000000000000", @ANYRES32, @ANYBLOB="000017000000000008000a00", @ANYRESHEX], 0x2c}}, 0x0)

11.97430617s ago: executing program 4 (id=810):
r0 = socket$inet(0x2, 0x2, 0x1)
sendmsg$inet(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000140)="08bce50b", 0x4}, {&(0x7f0000000040)="34040850", 0x4}], 0x2}, 0x24008004)

9.9641702s ago: executing program 4 (id=812):
futex(0x0, 0x5, 0x0, 0x0, &(0x7f0000004000), 0x82020000)

9.881399705s ago: executing program 4 (id=813):
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x3)

9.263058293s ago: executing program 4 (id=814):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0xa, 0x10001}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
ioctl$KDGKBSENT(0xffffffffffffffff, 0x4b48, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_int(r3, 0x0, 0xb, 0x0, 0x0)

9.030514897s ago: executing program 1 (id=816):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
ptrace$pokeuser(0x6, r3, 0x388, 0x41d9fda7)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000440)={[{@max_batch_time={'max_batch_time', 0x3d, 0x4}}, {@max_batch_time={'max_batch_time', 0x3d, 0x2}}, {@debug}, {@block_validity}, {@errors_remount}, {@debug}]}, 0x1, 0x44f, &(0x7f0000000640)="$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")
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='rdma.current\x00', 0x275a, 0x0)
fsetxattr(r4, &(0x7f0000000000)=@known='security.selinux\x00', &(0x7f0000000080)=':\x00', 0xffdf, 0x0)

8.805984913s ago: executing program 2 (id=747):
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x11, 0x3, &(0x7f0000000100)=ANY=[], &(0x7f0000000300)='syzkaller\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x3b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0/../file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r3 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
bind$802154_dgram(r3, &(0x7f0000000040)={0x24, @long={0x3, 0x1}}, 0x14)

7.930093926s ago: executing program 1 (id=820):
getpid()
sendmsg$ETHTOOL_MSG_PAUSE_GET(0xffffffffffffffff, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f0000000700)=ANY=[], 0x30}, 0x1, 0x0, 0x0, 0x2008040}, 0x880)
r0 = socket$inet(0x2, 0x3, 0x4)
setsockopt$inet_opts(r0, 0x0, 0x4, &(0x7f0000000400)="8907040400", 0x5)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000000c0)='xfrm0\x00', 0x10)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x4e20, @private=0xa010100}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000f40)=[{{&(0x7f0000000040)={0x2, 0x0, @broadcast}, 0x10, 0x0}}], 0x68000, 0x0)

7.112991484s ago: executing program 5 (id=821):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = socket$inet6_icmp(0xa, 0x2, 0x3a)
bind$inet6(r3, &(0x7f0000000240)={0xa, 0x4e26, 0x1000, @empty}, 0x1c)
pread64(0xffffffffffffffff, &(0x7f0000000580)=""/245, 0xf5, 0x3)
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000000)='./file0\x00', 0x1810882, &(0x7f0000000040)=ANY=[@ANYBLOB="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"], 0x0, 0x2b9, &(0x7f0000000280)="$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")

6.678570093s ago: executing program 3 (id=823):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file2\x00', 0x200801f, &(0x7f00000000c0), 0x2, 0x4fd, &(0x7f0000000d80)="$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")
syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000000)='.\x00', 0x18424bc, &(0x7f00000003c0)=ANY=[], 0x0, 0x0, &(0x7f0000000000))

5.637424535s ago: executing program 1 (id=824):
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x3)

5.192153675s ago: executing program 5 (id=825):
syz_extract_tcp_res$synack(0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
listen(0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x5c2, 0x0, 0x0, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_inet_SIOCADDRT(r3, 0x890b, &(0x7f0000000380)={0x0, {0x2, 0x4e23, @empty}, {0x2, 0xfffe, @dev={0xac, 0x14, 0x14, 0x20}}, {0x2, 0x4e23, @rand_addr=0x64010102}, 0x107, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000})
preadv(0xffffffffffffffff, &(0x7f0000000600)=[{&(0x7f0000000280)=""/215, 0xd7}], 0x1, 0x1006c, 0x0)

5.172478515s ago: executing program 1 (id=826):
r0 = syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000002c0)={0x24, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="00220f000000040b2100000095f5758483"], 0x0}, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./bus\x00', 0x0, &(0x7f0000000d40)=ANY=[@ANYBLOB="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"], 0x1, 0x2bc, &(0x7f00000015c0)="$eJzs3U9rY1UUAPDz0uQ1QxftwpUIvsUs3Fims3VhBqkgdqVk4R/QwZmBoQkDDQRGxTArP4ELF34Pd+4FN34DwYVLdw5SuPLeS5NMkkmmHdMO5ffb9HLuOe/em3fbFMK7+fKN/vG9R4MHT779I9rtLBqd6MTTLPaiEWfSWAAA18LTlOLvC72/NxubmhMAsFkz7/+t56RsL4be3fS0AIAN+viTTz+8c3R0+FFRtCP63w+7WdQ/6/47D+Jh9OJ+3IrdOJ1+FpBS3X7/g6PDaBalvbjZHw27ZWX/i98mqXlU9QexG3vL6w+K2kz9aNis/vPIsoiHnXIit2M3XluoL/sPby+pj24eb7XHiyzH34/d+P2reBS9uFd9pjEd/7s8ivfSD/9881mZXNZno2F3u8qbSluXfW8AAAAAAAAAAAAAAAAAAAAAALi+9ouJvbjZL0P1+TvdrdOqf/+Z/up8nUbVX9dnEXnVmDsfaJTip7PzdW4VRZGyOn9yvs+NZrzejOaVLRwAAAAAAAAAAAAAAAAAAABeIYPHXx/f7fXun/wvjfFD/pPH+i96nc5M5M1Ynbx9rrFia5xeznU+5+DXz/uTSLmIi0x+2CoiVs25tRC5Uc5n/ZX/TSmlLIt4udvUepGx1jR2VueUL/AvP+68fXw3W/cats9u3M+zXXmcDB7P3dPIVg96+kwknWv75Sty8vGOeaHr7LzkL9E7f9aDjSPZmlW0ZiKtcSOet/3a59rPl/c3CAAAAAAAAAAAAAAAAAAAqE0f+l3S+WRlaWNjkwIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACASzb9/v9pIxYic41R/FUVL89JKY0mkTxOBle9RgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAK6//wIAAP//qWdtxQ==")
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000500)=ANY=[], 0x0, 0x96}, 0x28)
openat(0xffffffffffffff9c, 0x0, 0x300000d, 0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
r4 = socket$inet(0x2, 0xa, 0x262)
r5 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000001c0), 0x4b301, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000240)=0xd)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, r5, 0x0)
ioctl$TIOCSTI(r5, 0x5412, &(0x7f0000000000)=0x1a)
ioctl$sock_inet_SIOCSARP(r4, 0x8955, &(0x7f0000000000)={{0x2, 0x0, @dev}, {0x1, @local}, 0x4a, {0x2, 0x0, @multicast2}})
ioctl$sock_inet_SIOCSARP(r4, 0x8953, &(0x7f0000000000)={{0x2, 0x4e22, @dev}, {0x0, @remote}, 0x38, {0x2, 0xfffe, @broadcast}, 'syz_tun\x00'})
socket$nl_xfrm(0x10, 0x3, 0x6)
bind$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x4e21, @broadcast}, 0x2f)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_BINDTODEVICE_wg(r6, 0x1, 0x19, &(0x7f0000000140)='wg0\x00', 0x4)
connect$inet(r6, &(0x7f00000001c0)={0x2, 0x2, @dev={0xac, 0x14, 0x14, 0x2a}}, 0x10)

3.780946034s ago: executing program 3 (id=827):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)

3.735949066s ago: executing program 5 (id=828):
syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./file2\x00', 0x0, &(0x7f00000018c0)=ANY=[], 0xfd, 0x1501, &(0x7f00000002c0)="$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")
truncate(&(0x7f0000000080)='./file2\x00', 0x6000)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
futex(0x0, 0xc, 0x1, 0x0, 0x0, 0x0)
listxattr(0x0, 0x0, 0x0)
openat$dir(0xffffffffffffff9c, 0x0, 0x40, 0x83)

1.788691949s ago: executing program 3 (id=829):
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x1, 0x8b)
fchdir(r1)
rename(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000780)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

1.739257481s ago: executing program 1 (id=830):
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000640)={[{@fat=@errors_remount}, {@dots}, {@fat=@dmask={'dmask', 0x3d, 0x4}}, {@fat=@uid={'uid', 0x3d, 0xee00}}, {@dots}, {@nodots}, {@fat=@gid={'gid', 0x3d, 0xee00}}, {@nodots}, {@nodots}, {@fat=@dos1xfloppy}, {@dots}, {@nodots}, {@nodots}, {@fat=@showexec}, {@fat=@codepage={'codepage', 0x3d, '874'}}, {@fat=@sys_immutable}, {@nodots}, {@dots}, {@dots}, {@dots}, {@fat=@dmask={'dmask', 0x3d, 0xfffffffffffffffc}}, {@nodots}]}, 0x1, 0x20e, &(0x7f0000000400)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x189800, 0x9b)
lstat(&(0x7f0000000140)='./file0\x00', &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
setreuid(0x0, r1)
ioctl$FAT_IOCTL_GET_ATTRIBUTES(r0, 0x40047211, &(0x7f00000000c0))

1.592685666s ago: executing program 5 (id=831):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
ptrace$pokeuser(0x6, r3, 0x388, 0x41d9fda7)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f0000000440)={[{@max_batch_time={'max_batch_time', 0x3d, 0x4}}, {@max_batch_time={'max_batch_time', 0x3d, 0x2}}, {@debug}, {@block_validity}, {@errors_remount}, {@debug}]}, 0x1, 0x44f, &(0x7f0000000640)="$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")
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='rdma.current\x00', 0x275a, 0x0)
fsetxattr(r4, &(0x7f0000000000)=@known='security.selinux\x00', &(0x7f0000000080)=':\x00', 0xffdf, 0x0)

1.513054481s ago: executing program 3 (id=832):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000001880)='./file0\x00', 0x814, &(0x7f0000001d00)={[{@errors_continue}, {@iocharset={'iocharset', 0x3d, 'ascii'}}, {@iocharset={'iocharset', 0x3d, 'koi8-u'}}, {@sys_tz}, {@gid}, {@discard}, {@keep_last_dots}, {@sys_tz}, {@discard}, {@errors_continue}]}, 0x1, 0x152f, &(0x7f0000000280)="$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")
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000000000)={0xc, {"a2e3ad214fc752f91b25060987f70e06d038e7ff7fc6e5539b325d078b089b3b08386e090890e0878f0e1ac6e7049b334d959b429a240d5b67f3988f7ef319520100ffe8d178708c523c921b1b5b31303b305d0936cd3b78130daa61d8e809ea882f5802b77f07227227b7ba67e0e78669a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000002335875271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1fe90a56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617601000000be70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d595a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9980000000b3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6c82fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce3803f465e41e610c2021d653a5520000008213b704a5000000000000008ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710a80000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4e38a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d97b9a6d6d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2bed9e53803edf1a4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034e00000000ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c478b095b68441a34cb51682a8ae4d24ad92f243941ed274549b79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdbe6c4579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93ae62fccfcbb2b75a2183c46eb65ca8124e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43e4fb1a5fb135c0c7dcee8fe6516a328032f88c0428918246d9e9e01feffffffffffff83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369d75f2e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aa01b20f7694a00f16e2d0174035a2c22656dc00880acebdbe8ddbd75c2f998d8ac2dfad2ba3a50200000045a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff13d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40426db6fe2907ac0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf463661c953fcad6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7cd419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaeecf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afae5136651b1b9bd522d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a37684f4113c48859465c3b415c3432f81db8719539d5bf372aaaea1ccab2689bee59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02dae17b118e5d6787463183b4b87c105000000302a808d7f5251440613d17ca51055f2f416a44fe180d2d50c312cca7cb14a20dc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb40100000006376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7ceec7dc808bf653639d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7348663a52190202c7af288a4510de03dab19d26285eda89156d50dd385a602000000000000007007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4908b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf6529006c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6522fb5f6ffcdd56fed88935fcb75912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae23034202210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a5bd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08008897fb411a94b3c2fc5d5f0db42c0456ecdf5e08e5247d33ae2d35603ff8454c16f8342856935125102bb6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b80c1c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c98ad90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe360500000000000000b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1062dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1df0d07b3d5bd3b01faffd0addbed2881a9700af561ac8c7e36bb2fc4c40e9c766c06817bb903729a7db6ff957697c9ede7885d94ffb0759be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c1484d2f9c55f4901203a9a8a2c3e90f39c3dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000600", 0x1000}}, 0x1006)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file7\x00', 0x1c0)

1.36747746s ago: executing program 1 (id=833):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x2, 0x7fff7ffc}]})
socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000680)='./binderfs/binder1\x00', 0x2, 0x0)
getsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, &(0x7f00000006c0))
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file2\x00'}, 0x69)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r3, 0x89f0, &(0x7f00000001c0)={'sit0\x00', &(0x7f0000000340)={'sit0\x00', 0x0, 0x8, 0x11, 0x1, 0x94, {{0x5, 0x4, 0x0, 0x1, 0x14, 0x64, 0x0, 0x1, 0x2f, 0x0, @empty, @empty}}}})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_generic(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000002100)={0x18, 0x43, 0x107, 0x2, 0x25dfdbfc, {0x1, 0x7c}, [@nested={0x4, 0x1}]}, 0x18}, 0x1, 0x0, 0x0, 0xc004}, 0xc000)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x207, &(0x7f0000000000), 0x1, 0x469, &(0x7f0000000100)="$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")
close_range(r0, r0, 0x200000000000000)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000300)='ns/net\x00')
r5 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000005c0)={r5, 0x0, 0x24, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0xa)
syz_open_procfs$namespace(0x0, &(0x7f0000000580)='ns/time_for_children\x00')
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000640)={@cgroup, 0x24, 0x0, 0xfffb, &(0x7f0000000000)=[0x0], 0x1, 0x0, 0x0, 0x0, 0x0}, 0x40)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
sendto$inet(r6, 0x0, 0x0, 0x1, 0x0, 0x0)

555.793836ms ago: executing program 5 (id=834):
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b40000000000002061114c0000000000850000006c0000009500000000000000"], &(0x7f0000000080)='syzkaller\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x48)

300.247123ms ago: executing program 3 (id=835):
r0 = socket(0xa, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f0000000a00)=@raw={'raw\x00', 0xc08, 0x3, 0x440, 0x310, 0x5002004a, 0xb, 0x310, 0xea13, 0x3a8, 0x3c8, 0x3c8, 0x3a8, 0x3c8, 0x3, 0x0, {[{{@ip={@multicast2, @private=0xa010101, 0xff, 0xffffffff, 'bridge0\x00', 'veth0_macvtap\x00', {}, {0xff}, 0x5c, 0x3, 0x2}, 0x0, 0x2c8, 0x310, 0x0, {}, [@common=@unspec=@bpf1={{0x230}, @bytecode={0x0, 0x2, 0x0, [{0x11}, {0x16}, {0x4}, {}, {}, {0x0, 0x0, 0x5e}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x6}, {0x0, 0x0, 0x4}, {}, {0x4, 0x8}, {}, {}, {0x1}, {0x0, 0x0, 0x0, 0x7f}, {0x0, 0x4}, {}, {}, {}, {0xfffc}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x4}, {}, {0x0, 0x0, 0x40}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x80}, {}, {}, {}, {}, {}, {0x0, 0x0, 0xfd}]}}, @common=@inet=@socket3={{0x28}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'pptp\x00'}}}, {{@uncond, 0x0, 0x70, 0x98}, @common=@unspec=@NFQUEUE2={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x4a0)

127.608338ms ago: executing program 5 (id=836):
r0 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000ac0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, &(0x7f0000000380)='asymmetric\x00', &(0x7f0000000180))
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x3)

0s ago: executing program 3 (id=837):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f00000003c0)=ANY=[@ANYBLOB="12010000090024206d041cc340000000000109022400010000a00009040000010301010009210008000122010009058103"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000b40)={0x24, &(0x7f0000000980)={0x0, 0xf, 0x9, {0x9, 0x31, "78f154391948c2"}}, 0x0, 0x0, 0x0}, 0x0)

kernel console output (not intermixed with test programs):

15.324374][ T8059] tracefs: Unknown parameter '³('
[  215.369714][ T8055] FAT-fs (loop4): Directory bread(block 72) failed
[  215.396240][ T8055] FAT-fs (loop4): Directory bread(block 73) failed
[  215.498091][ T7867] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  216.380466][ T6048] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  217.468502][ T8096] loop4: detected capacity change from 0 to 256
[  217.498441][ T8098] overlayfs: failed to resolve './file0': -2
[  217.569252][ T8096] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x246f1341, utbl_chksum : 0xe619d30d)
[  217.668127][ T8101] loop3: detected capacity change from 0 to 2048
[  217.670128][ T7867] 8021q: adding VLAN 0 to HW filter on device batadv0
[  217.741949][ T8101] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  217.803970][ T8101] ext4 filesystem being mounted at /116/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  217.862017][ T8101] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  218.231565][ T8119] loop4: detected capacity change from 0 to 512
[  218.246989][ T8119] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #15: comm syz.4.484: inode has both inline data and extents flags
[  218.260919][ T8119] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  218.261435][ T8119] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.484: couldn't read orphan inode 15 (err -117)
[  218.271032][    C1] EXT4-fs (loop4): error count since last fsck: 1
[  218.271054][    C1] EXT4-fs (loop4): initial error at time 1773884479: ext4_orphan_get:1391: inode 15
[  218.271077][    C1] EXT4-fs (loop4): last error at time 1773884479: ext4_orphan_get:1391: inode 15
[  218.309039][ T8119] loop4: lost filesystem error report for type 5 error -117
[  218.317574][ T8119] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  218.343834][ T8119] tracefs: Unknown parameter '³('
[  218.774827][ T7867] veth0_vlan: entered promiscuous mode
[  218.832545][ T7867] veth1_vlan: entered promiscuous mode
[  218.946581][ T5841] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  218.971269][ T8124] loop3: detected capacity change from 0 to 40427
[  218.993795][ T8124] F2FS-fs (loop3): invalid crc value
[  219.012232][ T8131] netlink: 16 bytes leftover after parsing attributes in process `syz.5.487'.
[  219.066443][ T7867] veth0_macvtap: entered promiscuous mode
[  219.158313][ T7867] veth1_macvtap: entered promiscuous mode
[  219.282370][ T8124] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  219.321769][ T7867] batman_adv: batadv0: Interface activated: batadv_slave_0
[  219.333723][ T8124] F2FS-fs (loop3): Start checkpoint disabled!
[  219.803138][ T8124] F2FS-fs (loop3): f2fs_disable_checkpoint() finish, err:0
[  220.051370][ T8124] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  220.254278][ T5980] hid-generic 0000:0000:0000.0003: unknown main item tag 0x0
[  220.380013][ T7867] batman_adv: batadv0: Interface activated: batadv_slave_1
[  220.469155][ T5980] hid-generic 0000:0000:0000.0003: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  220.487978][ T6014] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  220.533821][ T6014] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  220.600638][ T6014] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  220.637823][ T6014] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  221.067827][ T8143] loop4: detected capacity change from 0 to 1024
[  221.085614][ T8143] EXT4-fs: Ignoring removed i_version option
[  221.120660][ T8143] EXT4-fs (loop4): Test dummy encryption mode enabled
[  221.209280][ T8143] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  221.336674][ T8143] /dev/loop4: Can't open blockdev
[  221.403041][ T5841] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.463184][ T6903] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  221.487016][ T8147] loop3: detected capacity change from 0 to 512
[  221.501431][ T6903] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  221.559203][ T8147] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  221.615912][ T1105] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  221.645727][ T8147] ext4 filesystem being mounted at /119/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  221.646412][ T1105] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  221.679086][ T8147] EXT4-fs warning (device loop3): ext4_group_extend:1885: will only finish group (16384 blocks, 16256 new)
[  221.693366][ T8147] EXT4-fs warning (device loop3): ext4_group_extend:1890: can't read last block, resize aborted
[  221.748194][ T5837] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  221.851551][ T8152] netem: change failed
[  222.101958][ T5980] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  222.182893][ T8163] loop8: detected capacity change from 0 to 256
[  222.373956][ T8164] loop4: detected capacity change from 0 to 512
[  222.473034][ T8164] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem
[  222.590455][ T8164] EXT4-fs (loop4): 1 truncate cleaned up
[  222.610451][ T8164] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  222.640300][ T5980] usb 6-1: Using ep0 maxpacket: 16
[  222.685392][ T5980] usb 6-1: config 0 has an invalid interface number: 251 but max is 0
[  222.714758][ T5980] usb 6-1: config 0 has no interface number 0
[  222.731658][ T5980] usb 6-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16
[  222.758036][ T5980] usb 6-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[  222.783556][ T5980] usb 6-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4
[  222.803454][ T5980] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  222.933810][ T5980] usb 6-1: Product: syz
[  222.933838][ T5841] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  222.938156][ T5980] usb 6-1: Manufacturer: syz
[  223.435753][ T5980] usb 6-1: SerialNumber: syz
[  223.468249][ T5980] usb 6-1: config 0 descriptor??
[  223.480853][ T8154] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  223.492734][ T8154] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  223.690997][ T8176] loop4: detected capacity change from 0 to 512
[  223.726288][ T8154] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  223.749362][ T8154] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  223.758419][ T8176] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  223.807619][ T8176] ext4 filesystem being mounted at /135/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  224.016555][ T5841] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.197129][ T5980] asix 6-1:0.251 (unnamed net_device) (uninitialized): Interface mode not supported by driver
[  224.229642][ T5980] asix 6-1:0.251: probe with driver asix failed with error -524
[  224.250271][ T8182] loop4: detected capacity change from 0 to 512
[  224.280381][ T8182] ext4: Unknown parameter 'obj_role'
[  224.373082][ T8168] loop9: detected capacity change from 0 to 40427
[  224.479837][ T8168] F2FS-fs (loop9): Invalid SB checksum offset: 0
[  224.491936][   T24] usb 6-1: USB disconnect, device number 3
[  224.508913][ T8168] F2FS-fs (loop9): Can't find valid F2FS filesystem in 2th superblock
[  224.527097][ T8168] F2FS-fs (loop9): invalid crc value
[  225.424243][ T8189] loop5: detected capacity change from 0 to 1024
[  225.462225][ T8189] EXT4-fs: Ignoring removed oldalloc option
[  225.494347][ T8189] EXT4-fs: Ignoring removed bh option
[  225.528398][ T8168] F2FS-fs (loop9): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  225.667304][ T8168] F2FS-fs (loop9): Try to recover 2th superblock, ret: 0
[  225.710098][ T8168] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[  225.743848][ T8189] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  225.950198][ T6048] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  226.106817][ T8195] loop3: detected capacity change from 0 to 256
[  226.159925][ T8195] FAT-fs (loop3): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  226.201156][ T8195] FAT-fs (loop3): Filesystem has been set read-only
[  226.222931][ T8195] FAT-fs (loop3): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  226.245143][ T8195] FAT-fs (loop3): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  226.268189][   T30] audit: type=1800 audit(1773884487.542:164): pid=8195 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.506" name="file1" dev="loop3" ino=1048707 res=0 errno=0
[  226.301213][ T8195] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000001)
[  226.564065][ T8204] loop5: detected capacity change from 0 to 512
[  226.610532][ T8204] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  226.674312][ T8204] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  226.802671][ T8204] EXT4-fs error (device loop5): ext4_readdir:265: inode #2: block 3: comm syz.5.508: path /91/file0: bad entry in directory: directory entry overrun - offset=12, inode=514, rec_len=2048, size=2048 fake=0
[  226.864222][ T8204] EXT4-fs error (device loop5): ext4_readdir:265: inode #2: block 12: comm syz.5.508: path /91/file0: bad entry in directory: directory entry overrun - offset=0, inode=5066064, rec_len=65536, size=2048 fake=0
[  226.897005][ T8204] EXT4-fs error (device loop5): ext4_readdir:265: inode #2: block 13: comm syz.5.508: path /91/file0: bad entry in directory: directory entry overrun - offset=0, inode=3653246737, rec_len=65536, size=2048 fake=0
[  227.045403][ T6048] EXT4-fs warning (device loop5): ext4_update_dynamic_rev:1142: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  227.106039][ T6048] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  227.911285][ T5975] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  228.525599][ T8229] loop9: detected capacity change from 0 to 512
[  228.713604][ T8229] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  228.821456][ T8229] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c028, mo2=0002]
[  228.831106][ T8229] System zones: 1-12
[  228.836645][ T8229] EXT4-fs (loop9): 1 truncate cleaned up
[  228.843954][ T8229] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  228.915245][ T5975] usb 6-1: unable to get BOS descriptor or descriptor too short
[  228.930510][ T5975] usb 6-1: Duplicate descriptor for config 1 interface 0 altsetting 0, skipping
[  228.939646][ T5975] usb 6-1: config 1 interface 2 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  228.963204][ T5975] usb 6-1: New USB device found, idVendor=0a4e, idProduct=2040, bcdDevice= 0.40
[  228.973693][ T5975] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  228.991879][ T5975] usb 6-1: Product: syz
[  228.996954][ T8233] loop3: detected capacity change from 0 to 1024
[  229.006043][ T5975] usb 6-1: Manufacturer: syz
[  229.012960][ T5975] usb 6-1: SerialNumber: syz
[  229.118146][ T8233] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  229.136875][ T7867] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.215391][   T30] audit: type=1800 audit(1773884490.492:165): pid=8233 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.515" name="file1" dev="loop3" ino=15 res=0 errno=0
[  229.313726][ T5837] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  229.341592][ T5975] usb 6-1: unit 9 not found!
[  229.367806][ T5975] usb 6-1: unit 5 not found!
[  229.386263][ T8237] loop9: detected capacity change from 0 to 512
[  229.426416][ T8237] EXT4-fs: Ignoring removed bh option
[  229.493027][ T8237] EXT4-fs: Mount option(s) incompatible with ext2
[  229.575919][ T5975] usb 6-1: USB disconnect, device number 4
[  230.075276][ T8247] loop9: detected capacity change from 0 to 256
[  230.101280][ T8247] exfat: Deprecated parameter 'utf8'
[  230.127057][ T8247] exfat: Deprecated parameter 'namecase'
[  230.145556][ T8247] exfat: Deprecated parameter 'namecase'
[  230.176983][ T8247] exfat: Deprecated parameter 'utf8'
[  230.255768][ T8247] exFAT-fs (loop9): failed to load upcase table (idx : 0x00012153, chksum : 0x6a70c931, utbl_chksum : 0xe619d30d)
[  230.313413][ T8247] exFAT-fs (loop9): failed to test first cluster bit of root dir(5)
[  230.386374][ T8247] exFAT-fs (loop9): start_clu is invalid cluster(0x400)
[  230.548140][ T8254] loop5: detected capacity change from 0 to 512
[  230.584780][ T8254] EXT4-fs error (device loop5): ext4_orphan_get:1391: inode #15: comm syz.5.521: inode has both inline data and extents flags
[  230.599817][ T8254] loop5: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  230.600969][ T8254] EXT4-fs error (device loop5): ext4_orphan_get:1396: comm syz.5.521: couldn't read orphan inode 15 (err -117)
[  230.610518][    C1] EXT4-fs (loop5): error count since last fsck: 1
[  230.610538][    C1] EXT4-fs (loop5): initial error at time 1773884491: ext4_orphan_get:1391: inode 15
[  230.610574][    C1] EXT4-fs (loop5): last error at time 1773884491: ext4_orphan_get:1391: inode 15
[  230.647576][ T8254] loop5: lost filesystem error report for type 5 error -117
[  230.650248][ T8254] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  230.683408][ T8254] tracefs: Unknown parameter '³('
[  230.694671][ T8253] loop8: detected capacity change from 0 to 8192
[  230.845344][ T5981]  loop8: p1 p2 < > p3
[  230.857532][ T5981] loop8: partition table partially beyond EOD, truncated
[  230.865746][ T5981] loop8: p1 size 1342439424 extends beyond EOD, truncated
[  230.879644][ T5981] loop8: p2 start 4059840512 is beyond EOD, truncated
[  230.898839][ T5981] loop8: p3 start 67108864 is beyond EOD, truncated
[  231.096140][ T8261] netlink: 64 bytes leftover after parsing attributes in process `syz.8.522'.
[  231.424367][ T8253]  loop8: p1 p2 < > p3
[  231.442120][ T8253] loop8: partition table partially beyond EOD, truncated
[  231.462941][ T6048] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  231.484385][ T8253] loop8: p1 size 1342439424 extends beyond EOD, truncated
[  231.540636][ T8253] loop8: p2 start 4059840512 is beyond EOD, truncated
[  231.566253][ T8253] loop8: p3 start 67108864 is beyond EOD, truncated
[  231.819037][ T5975] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  231.996222][ T5975] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  232.025805][ T5910] udevd[5910]: inotify_add_watch(7, /dev/loop8p1, 10) failed: No such file or directory
[  232.035802][ T5975] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  232.035829][ T5975] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  232.035866][ T5975] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  232.035882][ T5975] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  232.056038][ T5975] usb 6-1: config 0 descriptor??
[  232.171967][ T5910] udevd[5910]: inotify_add_watch(7, /dev/loop8p1, 10) failed: No such file or directory
[  232.673990][ T5975] plantronics 0003:047F:FFFF.0004: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0
[  232.827447][ T8265] loop8: detected capacity change from 0 to 40427
[  232.854015][ T8265] F2FS-fs (loop8): Invalid log_blocksize (268), supports only 12
[  232.875428][ T8265] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[  232.900886][ T8265] F2FS-fs (loop8): invalid crc value
[  233.066038][ T8265] F2FS-fs (loop8): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  233.097711][ T8265] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[  233.112515][ T8265] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  233.400585][   T24] usb 6-1: USB disconnect, device number 5
[  233.744230][ T8281] loop3: detected capacity change from 0 to 16
[  233.809173][ T8281] erofs (device loop3): mounted with root inode @ nid 36.
[  233.829401][ T8281] syz.3.529: attempt to access beyond end of device
[  233.829401][ T8281] loop3: rw=524288, sector=1056, nr_sectors = 16 limit=16
[  233.864258][ T8281] syz.3.529: attempt to access beyond end of device
[  233.864258][ T8281] loop3: rw=524288, sector=16, nr_sectors = 40 limit=16
[  233.882158][ T8281] erofs (device loop3): failed to decompress (lz4) corrupted compressed data @ pa 4096 size 4096 => 8192
[  233.894897][ T8281] erofs (device loop3): read error -117 @ 1 of nid 89
[  233.914904][ T8281] erofs (device loop3): failed to decompress (lz4) corrupted compressed data @ pa 4096 size 4096 => 8192
[  233.926505][ T8281] erofs (device loop3): read error -117 @ 1 of nid 89
[  233.939110][   T30] audit: type=1800 audit(1773884495.182:166): pid=8281 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.529" name="file2" dev="loop3" ino=89 res=0 errno=0
[  235.474043][ T8297] netlink: 4 bytes leftover after parsing attributes in process `syz.8.528'.
[  235.488363][ T8297] netlink: 12 bytes leftover after parsing attributes in process `syz.8.528'.
[  235.856933][ T8303] loop8: detected capacity change from 0 to 1024
[  235.902039][ T8303] EXT4-fs: inline encryption not supported
[  235.938383][ T8303] EXT4-fs: Ignoring removed i_version option
[  236.000281][ T8304] loop5: detected capacity change from 0 to 256
[  236.029673][   T30] audit: type=1804 audit(1773884497.292:167): pid=8304 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.533" name="/newroot/97/file0/file0" dev="loop5" ino=1048709 res=1 errno=0
[  236.124642][ T8303] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  236.378058][ T7572] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  236.938473][ T8325] loop9: detected capacity change from 0 to 512
[  236.957020][ T8325] EXT4-fs: Ignoring removed mblk_io_submit option
[  236.985401][ T8325] EXT4-fs (loop9): Test dummy encryption mode enabled
[  237.026009][ T8325] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  237.083238][ T8325] EXT4-fs (loop9): 1 truncate cleaned up
[  237.100467][ T8325] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  237.168687][ T8330] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  237.204297][ T8330] batadv_slave_0: entered promiscuous mode
[  237.406616][ T8335] loop5: detected capacity change from 0 to 512
[  237.474259][ T8335] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  237.489130][ T8335] ext4 filesystem being mounted at /98/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  238.251412][ T6048] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  238.556597][ T8341] loop8: detected capacity change from 0 to 40427
[  238.597914][ T8341] F2FS-fs (loop8): Invalid log_blocksize (268), supports only 12
[  238.627672][ T8341] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[  238.867163][ T8341] F2FS-fs (loop8): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  238.915432][ T8341] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[  238.933155][ T8341] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  239.009014][   T30] audit: type=1804 audit(1773884500.282:168): pid=8341 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.8.544" name="/newroot/26/file1/bus" dev="loop8" ino=10 res=1 errno=0
[  239.544312][ T8351] loop4: detected capacity change from 0 to 40427
[  239.570983][ T8351] F2FS-fs (loop4): invalid crc value
[  239.734225][ T8358] loop3: detected capacity change from 0 to 256
[  239.742952][ T8351] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  239.762968][ T8358] exfat: Deprecated parameter 'utf8'
[  239.772458][ T8351] F2FS-fs (loop4): Start checkpoint disabled!
[  239.789111][ T8358] exfat: Deprecated parameter 'utf8'
[  239.795963][ T8351] F2FS-fs (loop4): f2fs_disable_checkpoint() finish, err:0
[  239.811307][ T8351] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  239.842302][ T8358] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x114608e0, utbl_chksum : 0xe619d30d)
[  239.901820][ T1105] kworker/u8:8: attempt to access beyond end of device
[  239.901820][ T1105] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  239.955029][ T1105] CPU: 0 UID: 0 PID: 1105 Comm: kworker/u8:8 Not tainted syzkaller #0 PREEMPT(full) 
[  239.955054][ T1105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  239.955065][ T1105] Workqueue: writeback wb_workfn (flush-7:4)
[  239.955106][ T1105] Call Trace:
[  239.955113][ T1105]  <TASK>
[  239.955120][ T1105]  dump_stack_lvl+0xe8/0x150
[  239.955151][ T1105]  f2fs_handle_critical_error+0x37c/0x540
[  239.955179][ T1105]  f2fs_write_end_io+0x1274/0x1740
[  239.955217][ T1105]  __submit_merged_bio+0x256/0x700
[  239.955244][ T1105]  __submit_merged_write_cond+0x3c9/0x4e0
[  239.955273][ T1105]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  239.955319][ T1105]  f2fs_write_data_pages+0x287e/0x34f0
[  239.955373][ T1105]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  239.955406][ T1105]  ? __lock_acquire+0x6b5/0x2cf0
[  239.955462][ T1105]  ? do_raw_spin_lock+0x12b/0x2f0
[  239.955495][ T1105]  ? trace_hrtimer_start+0x82/0x230
[  239.955532][ T1105]  ? finish_task_switch+0x41f/0xbe0
[  239.955555][ T1105]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  239.955578][ T1105]  do_writepages+0x32e/0x550
[  239.955604][ T1105]  ? reacquire_held_locks+0x104/0x190
[  239.955620][ T1105]  ? writeback_sb_inodes+0x477/0x1a20
[  239.955648][ T1105]  __writeback_single_inode+0x133/0x11a0
[  239.955675][ T1105]  ? do_raw_spin_unlock+0xf5/0x210
[  239.955698][ T1105]  writeback_sb_inodes+0x992/0x1a20
[  239.955745][ T1105]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  239.955763][ T1105]  ? do_raw_spin_lock+0x12b/0x2f0
[  239.955823][ T1105]  ? rcu_is_watching+0x15/0xb0
[  239.955848][ T1105]  wb_writeback+0x456/0xb70
[  239.955871][ T1105]  ? queue_io+0x1d1/0x4a0
[  239.955898][ T1105]  ? __pfx_wb_writeback+0x10/0x10
[  239.955914][ T1105]  ? do_raw_spin_lock+0x12b/0x2f0
[  239.955949][ T1105]  wb_workfn+0x414/0xf50
[  239.955967][ T1105]  ? look_up_lock_class+0x57/0x110
[  239.956003][ T1105]  ? __pfx_wb_workfn+0x10/0x10
[  239.956024][ T1105]  ? do_raw_spin_lock+0x12b/0x2f0
[  239.956045][ T1105]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  239.956088][ T1105]  ? process_one_work+0x8bb/0x1780
[  239.956110][ T1105]  process_one_work+0x9ab/0x1780
[  239.956152][ T1105]  ? __pfx_process_one_work+0x10/0x10
[  239.956245][ T1105]  ? do_raw_spin_lock+0x26c/0x2f0
[  239.956286][ T1105]  worker_thread+0xba8/0x11e0
[  239.956327][ T1105]  kthread+0x388/0x470
[  239.956348][ T1105]  ? __pfx_worker_thread+0x10/0x10
[  239.956363][ T1105]  ? __pfx_kthread+0x10/0x10
[  239.956384][ T1105]  ret_from_fork+0x51e/0xb90
[  239.956409][ T1105]  ? __pfx_ret_from_fork+0x10/0x10
[  239.956445][ T1105]  ? __switch_to+0xc7d/0x1450
[  239.956493][ T1105]  ? __pfx_kthread+0x10/0x10
[  239.956514][ T1105]  ret_from_fork_asm+0x1a/0x30
[  239.956547][ T1105]  </TASK>
[  240.217882][ T1105] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  240.357621][ T7867] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  240.484388][ T8355] loop8: detected capacity change from 0 to 40427
[  240.498917][ T8355] F2FS-fs (loop8): Invalid log_blocksize (268), supports only 12
[  240.506963][ T8363] loop5: detected capacity change from 0 to 512
[  240.509586][ T8362] loop3: detected capacity change from 0 to 512
[  240.521263][ T8355] F2FS-fs (loop8): Can't find valid F2FS filesystem in 1th superblock
[  240.542778][ T8363] fscrypt (loop5, inode 2): Error -61 getting encryption context
[  240.560005][ T8355] F2FS-fs (loop8): invalid crc value
[  240.631492][ T8362] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  240.657505][ T8363] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -61
[  240.679327][ T8362] ext4 filesystem being mounted at /131/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  240.702504][ T8363] EXT4-fs error (device loop5): ext4_orphan_get:1391: inode #13: comm syz.5.552: iget: bogus i_mode (0)
[  240.753941][ T8363] loop5: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[  240.758760][    C1] EXT4-fs (loop5): error count since last fsck: 1
[  240.774609][    C1] EXT4-fs (loop5): initial error at time 1773884502: ext4_orphan_get:1391: inode 13
[  240.776635][ T8355] F2FS-fs (loop8): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  240.784078][    C1] EXT4-fs (loop5): last error at time 1773884502: ext4_orphan_get:1391: inode 13
[  240.811503][ T8363] EXT4-fs error (device loop5): ext4_orphan_get:1396: comm syz.5.552: couldn't read orphan inode 13 (err -117)
[  240.823540][ T8363] loop5: lost filesystem error report for type 5 error -117
[  240.843332][ T8363] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  240.873827][ T5837] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  240.895938][ T8355] F2FS-fs (loop8): Try to recover 1th superblock, ret: 0
[  240.929660][ T8355] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  241.065549][   T30] audit: type=1800 audit(1773884502.342:169): pid=8355 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.547" name="bus" dev="loop8" ino=10 res=0 errno=0
[  241.120638][ T6048] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  241.288558][   T30] audit: type=1804 audit(1773884502.372:170): pid=8355 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.8.547" name="/newroot/27/file7/bus" dev="loop8" ino=10 res=1 errno=0
[  241.462131][ T8384] loop4: detected capacity change from 0 to 512
[  241.498857][ T8384] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  241.605960][ T8384] EXT4-fs (loop4): orphan cleanup on readonly fs
[  241.620317][ T8384] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:517: comm syz.4.555: Block bitmap for bg 0 marked uninitialized
[  241.634053][ T8384] loop4: lost filesystem error report for type 5 error -117
[  241.638735][    C1] EXT4-fs (loop4): error count since last fsck: 1
[  241.652795][    C1] EXT4-fs (loop4): initial error at time 1773884502: ext4_read_block_bitmap_nowait:517
[  241.662474][    C1] EXT4-fs (loop4): last error at time 1773884502: ext4_read_block_bitmap_nowait:517
[  241.699068][ T8384] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6685: Corrupt filesystem
[  241.707877][ T8384] loop4: lost filesystem error report for type 5 error -117
[  241.709792][ T8384] EXT4-fs (loop4): 1 orphan inode deleted
[  241.745258][ T8384] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  242.043277][ T5841] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  242.442061][ T5858] Bluetooth: hci3: command 0x0405 tx timeout
[  244.256435][ T8401] loop4: detected capacity change from 0 to 1024
[  244.308288][ T8401] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  244.427882][ T8401] ext4 filesystem being mounted at /145/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  244.538483][ T5841] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  244.819745][ T8414] loop8: detected capacity change from 0 to 16
[  244.864838][ T8414] erofs (device loop8): invalid ishare xattr prefix id 0
[  245.551510][ T8419] loop8: detected capacity change from 0 to 128
[  245.595608][ T8419] msdos: Bad value for 'gid'
[  245.620133][ T8419] msdos: Bad value for 'gid'
[  246.140925][ T8429] loop8: detected capacity change from 0 to 512
[  247.034402][ T8429] EXT4-fs (loop8): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  247.048079][ T8429] EXT4-fs (loop8): orphan cleanup on readonly fs
[  247.055888][ T8429] EXT4-fs error (device loop8): ext4_read_block_bitmap_nowait:517: comm syz.8.568: Block bitmap for bg 0 marked uninitialized
[  247.069508][ T8429] loop8: lost filesystem error report for type 5 error -117
[  247.072129][ T8429] EXT4-fs error (device loop8) in ext4_mb_clear_bb:6685: Corrupt filesystem
[  247.079501][    C0] EXT4-fs (loop8): error count since last fsck: 1
[  247.079528][    C0] EXT4-fs (loop8): initial error at time 1773884508: ext4_read_block_bitmap_nowait:517
[  247.079554][    C0] EXT4-fs (loop8): last error at time 1773884508: ext4_read_block_bitmap_nowait:517
[  247.116012][ T8429] loop8: lost filesystem error report for type 5 error -117
[  247.116529][ T8429] EXT4-fs (loop8): 1 orphan inode deleted
[  247.132419][ T8429] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  248.378077][ T7572] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  248.831059][ T8442] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only
[  248.858901][ T8442] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  248.862313][ T8443] loop8: detected capacity change from 0 to 1024
[  248.947315][ T8443] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  249.155485][ T7572] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  249.428456][ T8422] loop3: detected capacity change from 0 to 40427
[  249.446675][ T8422] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  249.457989][ T8422] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  249.698065][ T8466] loop9: detected capacity change from 0 to 512
[  249.704860][ T8422] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  249.716600][ T8466] EXT4-fs (loop9): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  249.742810][ T8466] EXT4-fs (loop9): orphan cleanup on readonly fs
[  249.749659][ T8466] EXT4-fs error (device loop9): ext4_read_block_bitmap_nowait:517: comm syz.9.581: Block bitmap for bg 0 marked uninitialized
[  249.762895][ T8466] loop9: lost filesystem error report for type 5 error -117
[  249.763463][ T8466] EXT4-fs error (device loop9) in ext4_mb_clear_bb:6685: Corrupt filesystem
[  249.770823][    C1] EXT4-fs (loop9): error count since last fsck: 1
[  249.770851][    C1] EXT4-fs (loop9): initial error at time 1773884511: ext4_read_block_bitmap_nowait:517
[  249.770877][    C1] EXT4-fs (loop9): last error at time 1773884511: ext4_read_block_bitmap_nowait:517
[  249.806038][ T8466] loop9: lost filesystem error report for type 5 error -117
[  249.806253][   T29] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  249.821885][ T8466] EXT4-fs (loop9): 1 orphan inode deleted
[  249.829281][ T8466] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  250.789231][ T7867] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  250.936918][ T8474] loop8: detected capacity change from 0 to 16
[  250.975186][ T8474] erofs (device loop8): mounted with root inode @ nid 36.
[  251.010460][ T8474] syz.8.585: attempt to access beyond end of device
[  251.010460][ T8474] loop8: rw=0, sector=1936876908, nr_sectors = 1 limit=16
[  251.032034][ T8474] syz.8.585: attempt to access beyond end of device
[  251.032034][ T8474] loop8: rw=0, sector=3955228672, nr_sectors = 1 limit=16
[  251.127533][   T29] usb 5-1: config 9 has an invalid interface number: 182 but max is 0
[  251.136157][   T29] usb 5-1: config 9 has no interface number 0
[  251.145326][   T29] usb 5-1: New USB device found, idVendor=0eb1, idProduct=7007, bcdDevice= 2.10
[  251.157144][   T29] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  251.165269][   T29] usb 5-1: Product: syz
[  251.169590][   T29] usb 5-1: Manufacturer: syz
[  251.175821][   T29] usb 5-1: SerialNumber: syz
[  251.210443][ T1225] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  251.400155][ T1225] usb 4-1: Using ep0 maxpacket: 32
[  251.424878][ T1225] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  251.465848][ T1225] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 16
[  251.505285][ T1225] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 576
[  251.538837][ T1225] usb 4-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 23
[  251.589890][ T1225] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  251.614568][ T1225] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  251.657867][ T1225] usb 4-1: SerialNumber: syz
[  251.674008][ T8476] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  251.674136][ T8476] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  251.675664][ T1225] hub 4-1:1.0: bad descriptor, ignoring hub
[  251.675689][ T1225] hub 4-1:1.0: probe with driver hub failed with error -5
[  251.685360][ T1225] cdc_acm 4-1:1.0: Control and data interfaces are not separated!
[  251.778249][ T8485] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  251.909768][ T1225] cdc_acm 4-1:1.0: ttyACM0: USB ACM device
[  251.949832][ T8458] tipc: Started in network mode
[  251.961762][ T1225] usb 4-1: USB disconnect, device number 10
[  251.969248][ T8458] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[  252.011197][ T8458] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  252.070664][ T8458] tipc: Enabled bearer <udp:syz0>, priority 10
[  252.157969][ T8482] loop9: detected capacity change from 0 to 40427
[  252.179238][ T8482] f2fs: Bad value for 'background_gc'
[  252.569972][ T8497] loop3: detected capacity change from 0 to 512
[  252.620128][ T8497] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  252.688567][ T8497] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  252.982458][ T5837] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  253.041535][   T29] go7007 5-1:9.182: probe with driver go7007 failed with error -12
[  253.086442][   T29] usb 5-1: USB disconnect, device number 8
[  253.170179][ T5975] tipc: Node number set to 1
[  253.349498][ T8482] loop9: detected capacity change from 0 to 40427
[  253.406580][ T8482] F2FS-fs (loop9): invalid crc value
[  253.421310][ T8508] loop5: detected capacity change from 0 to 128
[  253.435044][ T8507] loop3: detected capacity change from 0 to 512
[  253.443465][ T8507] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  253.470123][ T8507] EXT4-fs (loop3): orphan cleanup on readonly fs
[  253.477275][ T8507] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:517: comm syz.3.594: Block bitmap for bg 0 marked uninitialized
[  253.480763][ T8508] EXT4-fs (loop5): Test dummy encryption mode enabled
[  253.490975][ T8507] loop3: lost filesystem error report for type 5 error -117
[  253.498738][    C1] EXT4-fs (loop3): error count since last fsck: 1
[  253.512547][    C1] EXT4-fs (loop3): initial error at time 1773884514: ext4_read_block_bitmap_nowait:517
[  253.522411][    C1] EXT4-fs (loop3): last error at time 1773884514: ext4_read_block_bitmap_nowait:517
[  253.532920][ T8507] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6685: Corrupt filesystem
[  253.542436][ T8507] loop3: lost filesystem error report for type 5 error -117
[  253.544857][ T8507] EXT4-fs (loop3): 1 orphan inode deleted
[  253.560300][ T8507] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  253.562668][ T8514] overlayfs: failed to resolve './file1/file0': -2
[  253.630588][ T8508] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  253.720323][ T8508] ext4 filesystem being mounted at /106/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  253.803277][ T8482] F2FS-fs (loop9): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  253.827502][ T8482] F2FS-fs (loop9): Start checkpoint disabled!
[  253.845078][ T8482] F2FS-fs (loop9): f2fs_disable_checkpoint() finish, err:0
[  253.855024][ T8482] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e6
[  253.974082][ T6048] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  254.090240][ T5837] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  254.395340][ T8528] loop3: detected capacity change from 0 to 128
[  255.604475][ T8541] loop5: detected capacity change from 0 to 256
[  256.073500][ T1316] ieee802154 phy1 wpan1: encryption failed: -22
[  256.127204][ T8541] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x25fbf2c1, utbl_chksum : 0xe619d30d)
[  256.212144][ T8546] loop9: detected capacity change from 0 to 512
[  256.279650][ T8546] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode
[  256.337414][ T8546] EXT4-fs (loop9): 1 truncate cleaned up
[  256.412305][ T8546] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  256.486886][ T8550] overlayfs: failed to resolve './file1/file0': -2
[  256.527946][   T30] audit: type=1804 audit(1773884517.802:171): pid=8546 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.9.606" name="/newroot/26/file1/bus" dev="loop9" ino=18 res=1 errno=0
[  256.566065][ T8546] EXT4-fs error (device loop9): ext4_validate_block_bitmap:441: comm syz.9.606: bg 0: block 290: padding at end of block bitmap is not set
[  256.817265][ T7867] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.196959][ T8561] loop9: detected capacity change from 0 to 512
[  257.207556][ T8561] EXT4-fs (loop9): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  257.232050][ T8565] loop3: detected capacity change from 0 to 128
[  257.234198][ T8561] EXT4-fs (loop9): orphan cleanup on readonly fs
[  257.245725][ T8561] EXT4-fs error (device loop9): ext4_read_block_bitmap_nowait:517: comm syz.9.611: Block bitmap for bg 0 marked uninitialized
[  257.258875][ T8561] loop9: lost filesystem error report for type 5 error -117
[  257.263180][ T8561] EXT4-fs error (device loop9) in ext4_mb_clear_bb:6685: Corrupt filesystem
[  257.270636][    C1] EXT4-fs (loop9): error count since last fsck: 1
[  257.270657][    C1] EXT4-fs (loop9): initial error at time 1773884518: ext4_read_block_bitmap_nowait:517
[  257.270680][    C1] EXT4-fs (loop9): last error at time 1773884518: ext4_read_block_bitmap_nowait:517
[  257.305545][ T8561] loop9: lost filesystem error report for type 5 error -117
[  257.307653][ T8561] EXT4-fs (loop9): 1 orphan inode deleted
[  257.356285][ T8561] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  257.906111][ T7867] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  257.987770][ T8577] overlayfs: failed to resolve './file1/file0': -2
[  258.017440][   T30] audit: type=1326 audit(1773884519.292:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8578 comm="syz.9.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf2f39c799 code=0x7ffc0000
[  258.109645][   T30] audit: type=1326 audit(1773884519.292:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8578 comm="syz.9.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf2f39c799 code=0x7ffc0000
[  258.216128][   T30] audit: type=1326 audit(1773884519.302:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8578 comm="syz.9.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf2f39c799 code=0x7ffc0000
[  258.288912][   T30] audit: type=1326 audit(1773884519.302:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8578 comm="syz.9.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdf2f39c799 code=0x7ffc0000
[  258.323689][ T8589] loop8: detected capacity change from 0 to 256
[  258.367164][ T8589] exfat: Deprecated parameter 'utf8'
[  258.381072][   T30] audit: type=1326 audit(1773884519.302:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8578 comm="syz.9.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fdf2f35cfce code=0x7ffc0000
[  258.435027][ T8586] loop9: detected capacity change from 0 to 4096
[  258.465545][   T30] audit: type=1326 audit(1773884519.302:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8578 comm="syz.9.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7fdf2f39da97 code=0x7ffc0000
[  258.515445][ T8589] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0xe3908169, utbl_chksum : 0xe619d30d)
[  258.532443][ T8592] loop5: detected capacity change from 0 to 2048
[  258.544589][ T8586] EXT4-fs (loop9): Test dummy encryption mode enabled
[  258.563940][   T30] audit: type=1326 audit(1773884519.302:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8578 comm="syz.9.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fdf2f39c799 code=0x7ffc0000
[  258.634370][   T30] audit: type=1326 audit(1773884519.302:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8578 comm="syz.9.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7fdf2f39da97 code=0x7ffc0000
[  258.658574][   T30] audit: type=1326 audit(1773884519.302:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8578 comm="syz.9.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7fdf2f35cfce code=0x7ffc0000
[  258.663900][ T6016]  loop5: p1 < > p3 p4 < >
[  258.697206][ T8586] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  258.712725][ T6016] loop5: p3 start 4284289 is beyond EOD, truncated
[  258.809845][ T8592]  loop5: p1 < > p3 p4 < >
[  258.831064][ T8592] loop5: p3 start 4284289 is beyond EOD, truncated
[  259.071424][   T24] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  259.238847][   T24] usb 10-1: Using ep0 maxpacket: 16
[  259.258439][   T24] usb 10-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  259.292205][   T24] usb 10-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0
[  259.326549][   T24] usb 10-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 28
[  259.370350][   T24] usb 10-1: config 0 interface 0 has no altsetting 0
[  259.391214][   T24] usb 10-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  259.421939][   T24] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  259.444486][   T24] usb 10-1: config 0 descriptor??
[  259.539942][ T5902] usb 5-1: new full-speed USB device number 9 using dummy_hcd
[  259.886093][   T24] hid (null): unknown global tag 0xe
[  259.903728][   T24] hid (null): unknown global tag 0xe
[  259.910489][ T8613] loop8: detected capacity change from 0 to 40427
[  259.917152][   T24] hid (null): unknown global tag 0xc
[  259.926316][ T8613] F2FS-fs (loop8): Invalid SB checksum offset: 0
[  259.937559][   T24] hid (null): unknown global tag 0xe
[  259.956909][ T8613] F2FS-fs (loop8): Can't find valid F2FS filesystem in 2th superblock
[  259.974589][   T24] hid (null): unknown global tag 0xe
[  260.024056][ T8613] F2FS-fs (loop8): invalid crc value
[  260.106360][   T24] usb 10-1: USB disconnect, device number 2
[  260.314507][ T8613] F2FS-fs (loop8): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  260.337438][ T8613] F2FS-fs (loop8): Try to recover 2th superblock, ret: 0
[  260.347081][ T8613] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  260.402831][ T7572] syz-executor: attempt to access beyond end of device
[  260.402831][ T7572] loop8: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  260.423616][ T7572] CPU: 1 UID: 0 PID: 7572 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  260.423640][ T7572] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  260.423649][ T7572] Call Trace:
[  260.423656][ T7572]  <TASK>
[  260.423663][ T7572]  dump_stack_lvl+0xe8/0x150
[  260.423691][ T7572]  f2fs_handle_critical_error+0x37c/0x540
[  260.423719][ T7572]  f2fs_write_end_io+0x1274/0x1740
[  260.423753][ T7572]  __submit_merged_bio+0x256/0x700
[  260.423780][ T7572]  __submit_merged_write_cond+0x3c9/0x4e0
[  260.423812][ T7572]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  260.423854][ T7572]  f2fs_write_data_pages+0x287e/0x34f0
[  260.423875][ T7572]  ? is_bpf_text_address+0x26/0x2b0
[  260.423931][ T7572]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  260.423966][ T7572]  ? __perf_event_task_sched_in+0x1606/0x1800
[  260.424012][ T7572]  ? finish_task_switch+0x41f/0xbe0
[  260.424036][ T7572]  ? __lock_acquire+0x6b5/0x2cf0
[  260.424072][ T7572]  ? __lock_acquire+0x6b5/0x2cf0
[  260.424099][ T7572]  ? do_raw_spin_lock+0x12b/0x2f0
[  260.424128][ T7572]  ? do_raw_spin_unlock+0xf5/0x210
[  260.424154][ T7572]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  260.424178][ T7572]  do_writepages+0x32e/0x550
[  260.424207][ T7572]  ? do_raw_spin_unlock+0xf5/0x210
[  260.424230][ T7572]  filemap_fdatawrite+0x1e9/0x2f0
[  260.424253][ T7572]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  260.424312][ T7572]  ? do_raw_spin_unlock+0xf5/0x210
[  260.424335][ T7572]  f2fs_sync_dirty_inodes+0x30e/0x860
[  260.424366][ T7572]  f2fs_write_checkpoint+0x9df/0x26a0
[  260.424413][ T7572]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  260.424479][ T7572]  kill_f2fs_super+0x314/0x720
[  260.424507][ T7572]  ? __pfx_kill_f2fs_super+0x10/0x10
[  260.424541][ T7572]  ? lockdep_hardirqs_on+0x7a/0x110
[  260.424571][ T7572]  deactivate_locked_super+0xbc/0x130
[  260.424596][ T7572]  cleanup_mnt+0x437/0x4d0
[  260.424612][ T7572]  ? _raw_spin_unlock_irq+0x23/0x50
[  260.424634][ T7572]  task_work_run+0x1d9/0x270
[  260.424657][ T7572]  ? __pfx_task_work_run+0x10/0x10
[  260.424686][ T7572]  exit_to_user_mode_loop+0xed/0x480
[  260.424706][ T7572]  ? rcu_is_watching+0x15/0xb0
[  260.424727][ T7572]  do_syscall_64+0x32d/0xf80
[  260.424745][ T7572]  ? trace_irq_disable+0x3b/0x150
[  260.424763][ T7572]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  260.424779][ T7572]  ? clear_bhb_loop+0x40/0x90
[  260.424799][ T7572]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  260.424815][ T7572] RIP: 0033:0x7fdac339d9d7
[  260.424842][ T7572] Code: a2 c7 05 1c fd 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  260.424855][ T7572] RSP: 002b:00007fff78c983d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  260.424872][ T7572] RAX: 0000000000000000 RBX: 00007fdac3432050 RCX: 00007fdac339d9d7
[  260.424882][ T7572] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff78c98490
[  260.424892][ T7572] RBP: 00007fff78c98490 R08: 00007fff78c99490 R09: 00000000ffffffff
[  260.424903][ T7572] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff78c99520
[  260.424913][ T7572] R13: 00007fdac3432050 R14: 000000000003f8ff R15: 00007fff78c99560
[  260.424941][ T7572]  </TASK>
[  260.425022][ T7572] F2FS-fs (loop8): Stopped filesystem due to reason: 3
[  260.652262][ T5902] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 127, changing to 4
[  260.665366][ T8620] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  260.666721][ T5902] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid maxpacket 1024, setting to 1023
[  260.691404][ T8620] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  260.873998][ T7867] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  260.920877][ T5902] usb 5-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 130, changing to 4
[  260.979529][ T5902] usb 5-1: New USB device found, idVendor=18d1, idProduct=2d05, bcdDevice= 1.06
[  261.005204][ T8620] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  261.025612][ T5902] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  261.040429][ T8620] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  261.059725][ T5902] usb 5-1: Product: syz
[  261.073336][ T5902] usb 5-1: Manufacturer: syz
[  261.079811][ T8620] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  261.086417][ T5902] usb 5-1: SerialNumber: syz
[  261.097444][ T8620] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  261.127288][ T8620] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  261.151026][ T8620] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  261.175751][ T8620] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  261.181999][ T8620] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  261.195346][ T8620] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  261.216822][ T8620] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  261.226741][ T8620] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  261.242901][ T8620] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  261.328026][ T5902] usb 5-1: 1:1 : invalid UAC_FORMAT_TYPE desc
[  261.374725][ T5902] usb 5-1: 2:1 : UAC_AS_GENERAL descriptor not found
[  261.409099][ T8632] loop5: detected capacity change from 0 to 256
[  261.510928][ T5902] usb 5-1: USB disconnect, device number 9
[  261.958881][ T5849] Bluetooth: hci0: command 0x0406 tx timeout
[  262.018283][ T8644] loop4: detected capacity change from 0 to 128
[  262.051823][ T8644] EXT4-fs: inline encryption not supported
[  262.073778][ T8644] EXT4-fs (loop4): Test dummy encryption mode enabled
[  262.115571][ T8644] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  262.136211][ T8644] ext4 filesystem being mounted at /154/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  262.514677][ T5841] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  262.851366][ T8654] loop4: detected capacity change from 0 to 256
[  262.958207][ T8654] FAT-fs (loop4): Directory bread(block 64) failed
[  262.989040][ T8654] FAT-fs (loop4): Directory bread(block 65) failed
[  263.014123][ T8654] FAT-fs (loop4): Directory bread(block 66) failed
[  263.014481][ T8656] loop5: detected capacity change from 0 to 16
[  263.043719][ T8654] FAT-fs (loop4): Directory bread(block 67) failed
[  263.071877][ T5849] Bluetooth: hci4: command 0x0406 tx timeout
[  263.078682][ T8654] FAT-fs (loop4): Directory bread(block 68) failed
[  263.098952][ T8656] erofs (device loop5): mounted with root inode @ nid 36.
[  263.118006][ T8654] FAT-fs (loop4): Directory bread(block 69) failed
[  263.148936][ T5849] Bluetooth: hci3: command 0x0405 tx timeout
[  263.148949][ T5858] Bluetooth: hci2: command 0x0406 tx timeout
[  263.160199][ T8654] FAT-fs (loop4): Directory bread(block 70) failed
[  263.176604][ T8656] erofs (device loop5): compressed inode (nid 89) is invalid in a plain filesystem
[  263.217247][ T8654] FAT-fs (loop4): Directory bread(block 71) failed
[  263.238883][ T5849] Bluetooth: hci5: command 0x0c1a tx timeout
[  263.239804][ T8654] FAT-fs (loop4): Directory bread(block 72) failed
[  263.245070][ T5858] Bluetooth: hci1: command 0x0c1a tx timeout
[  263.269093][ T8627] loop3: detected capacity change from 0 to 131072
[  263.275795][ T8654] FAT-fs (loop4): Directory bread(block 73) failed
[  263.343833][ T8654] syz.4.646: attempt to access beyond end of device
[  263.343833][ T8654] loop4: rw=524288, sector=1192, nr_sectors = 4 limit=256
[  263.402472][ T8654] syz.4.646: attempt to access beyond end of device
[  263.402472][ T8654] loop4: rw=0, sector=1192, nr_sectors = 4 limit=256
[  263.463054][   T30] kauditd_printk_skb: 7 callbacks suppressed
[  263.463071][   T30] audit: type=1800 audit(1773884524.732:188): pid=8654 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.646" name="file1" dev="loop4" ino=1048718 res=0 errno=0
[  263.491004][ T8662] syz.4.646: attempt to access beyond end of device
[  263.491004][ T8662] loop4: rw=0, sector=1192, nr_sectors = 4 limit=256
[  263.557728][ T8627] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  263.588820][   T30] audit: type=1800 audit(1773884524.812:189): pid=8662 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.646" name="file1" dev="loop4" ino=1048718 res=0 errno=0
[  263.618497][ T8627] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  263.930496][ T8667] loop4: detected capacity change from 0 to 8192
[  263.957475][ T8667] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  264.041165][ T5858] Bluetooth: hci0: command 0x0406 tx timeout
[  265.079072][ T8675] loop4: detected capacity change from 0 to 256
[  265.117475][ T8675] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  265.150896][ T5858] Bluetooth: hci4: command 0x0406 tx timeout
[  265.228951][ T5849] Bluetooth: hci3: command 0x0405 tx timeout
[  265.235157][ T5858] Bluetooth: hci2: command 0x0406 tx timeout
[  265.309178][ T5849] Bluetooth: hci5: command 0x0c1a tx timeout
[  265.315608][ T5858] Bluetooth: hci1: command 0x0c1a tx timeout
[  267.388988][ T5858] Bluetooth: hci1: command 0x0c1a tx timeout
[  267.389270][ T5849] Bluetooth: hci5: command 0x0c1a tx timeout
[  268.042679][ T8681] loop8: detected capacity change from 0 to 256
[  268.073558][ T8681] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  270.447719][ T8686] loop4: detected capacity change from 0 to 256
[  270.508886][   T30] audit: type=1804 audit(1773884531.772:190): pid=8686 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.655" name="/newroot/160/file0/bus" dev="loop4" ino=1048719 res=1 errno=0
[  270.821341][ T8692] netlink: 16 bytes leftover after parsing attributes in process `syz.3.650'.
[  272.079182][ T8703] hub 9-0:1.0: USB hub found
[  272.178900][ T8703] hub 9-0:1.0: 1 port detected
[  272.745368][ T8706] loop3: detected capacity change from 0 to 1024
[  272.777266][ T8706] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  272.804008][ T8706] System zones: 0-1, 3-36
[  272.816163][ T8706] EXT4-fs error (device loop3): ext4_orphan_get:1417: comm syz.3.659: bad orphan inode 134217728
[  272.818668][ T8709] loop4: detected capacity change from 0 to 512
[  272.847199][ T8712] loop8: detected capacity change from 0 to 512
[  272.850323][ T8706] loop3: lost filesystem error report for type 5 error -117
[  272.858748][    C0] EXT4-fs (loop3): error count since last fsck: 1
[  272.872694][    C0] EXT4-fs (loop3): initial error at time 1773884534: ext4_orphan_get:1417
[  272.881330][    C0] EXT4-fs (loop3): last error at time 1773884534: ext4_orphan_get:1417
[  272.890978][ T8706] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  272.966656][ T8709] EXT4-fs (loop4): 1 truncate cleaned up
[  272.982992][ T8712] EXT4-fs (loop8): 1 truncate cleaned up
[  273.010786][ T8709] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  273.011297][ T8712] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  273.046006][ T8713] overlayfs: missing 'lowerdir'
[  273.069489][ T8712] EXT4-fs error (device loop8): htree_dirblock_to_tree:1080: inode #2: block 13: comm syz.8.661: bad entry in directory: inode out of bounds - offset=0, inode=1538, rec_len=12, size=1024 fake=1
[  273.155028][   T30] audit: type=1800 audit(1773884534.402:191): pid=8709 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.660" name="file1" dev="loop4" ino=13 res=0 errno=0
[  273.205376][ T5837] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  273.226443][ T5841] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  273.301344][ T7572] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  273.590757][ T8723] loop4: detected capacity change from 0 to 256
[  273.605315][ T8723] exFAT-fs (loop4): Medium has reported failures. Some data may be lost.
[  273.625983][ T8723] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x7f1fc68d, utbl_chksum : 0xe619d30d)
[  273.740418][ T8726] loop8: detected capacity change from 0 to 256
[  273.783836][ T8726] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  276.054008][ T8734] loop5: detected capacity change from 0 to 256
[  276.210171][ T8734] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  276.275244][ T8734] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[  276.346636][ T8734] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  276.417996][ T8734] exFAT-fs (loop5): failed to load alloc-bitmap
[  276.445319][ T8734] exFAT-fs (loop5): failed to recognize exfat type
[  277.136768][ T8737] loop5: detected capacity change from 0 to 512
[  277.211430][ T8737] EXT4-fs error (device loop5): ext4_orphan_get:1391: inode #15: comm syz.5.668: inode has both inline data and extents flags
[  277.225008][ T8737] loop5: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  277.225316][ T8737] EXT4-fs error (device loop5): ext4_orphan_get:1396: comm syz.5.668: couldn't read orphan inode 15 (err -117)
[  277.234626][    C1] EXT4-fs (loop5): error count since last fsck: 1
[  277.234655][    C1] EXT4-fs (loop5): initial error at time 1773884538: ext4_orphan_get:1391: inode 15
[  277.234687][    C1] EXT4-fs (loop5): last error at time 1773884538: ext4_orphan_get:1391: inode 15
[  277.274262][ T8737] loop5: lost filesystem error report for type 5 error -117
[  277.293658][ T8737] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  277.324894][ T8737] tracefs: Unknown parameter '³('
[  277.471496][ T6048] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  277.500497][ T8748] loop3: detected capacity change from 0 to 256
[  277.527536][ T8748] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000e8a2, chksum : 0xd7c774f0, utbl_chksum : 0xe619d30d)
[  277.701212][ T1225] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  277.840042][ T8759] netlink: 4 bytes leftover after parsing attributes in process `syz.8.671'.
[  277.868849][ T8759] netlink: 12 bytes leftover after parsing attributes in process `syz.8.671'.
[  278.295749][ T1225] usb 5-1: New USB device found, idVendor=200c, idProduct=100b, bcdDevice= 0.40
[  278.320614][ T1225] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  278.351554][ T1225] usb 5-1: Product: syz
[  278.363590][ T1225] usb 5-1: Manufacturer: syz
[  278.378105][ T1225] usb 5-1: SerialNumber: syz
[  278.641229][ T1225] usb 5-1: unit 5 not found!
[  278.670875][ T1225] usb 5-1: unit 102 not found!
[  279.197349][ T1225] usb 5-1: USB disconnect, device number 10
[  279.251342][ T5910] udevd[5910]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  279.364595][ T8776] loop4: detected capacity change from 0 to 256
[  279.397656][ T8776] exfat: Deprecated parameter 'utf8'
[  279.443694][ T8776] exfat: Deprecated parameter 'namecase'
[  279.449644][ T8776] exfat: Deprecated parameter 'utf8'
[  279.476190][ T8776] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[  279.583664][ T8782] loop8: detected capacity change from 0 to 256
[  279.845934][ T8782] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  282.351587][ T8792] loop4: detected capacity change from 0 to 512
[  282.458997][ T8792] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #15: comm syz.4.684: inode has both inline data and extents flags
[  282.472842][ T8792] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  282.473250][ T8792] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.684: couldn't read orphan inode 15 (err -117)
[  282.482444][    C1] EXT4-fs (loop4): error count since last fsck: 1
[  282.482470][    C1] EXT4-fs (loop4): initial error at time 1773884543: ext4_orphan_get:1391: inode 15
[  282.482503][    C1] EXT4-fs (loop4): last error at time 1773884543: ext4_orphan_get:1391: inode 15
[  282.521436][ T8792] loop4: lost filesystem error report for type 5 error -117
[  282.523437][ T8792] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  282.553373][ T8792] tracefs: Unknown parameter '³('
[  282.687621][ T5841] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  283.131649][ T8796] loop9: detected capacity change from 0 to 512
[  283.157449][ T8796] EXT4-fs (loop9): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  283.239841][ T8796] EXT4-fs (loop9): orphan cleanup on readonly fs
[  283.271390][ T8796] EXT4-fs error (device loop9): ext4_read_block_bitmap_nowait:517: comm syz.9.685: Block bitmap for bg 0 marked uninitialized
[  283.298341][ T8796] loop9: lost filesystem error report for type 5 error -117
[  283.314290][ T8796] EXT4-fs error (device loop9) in ext4_mb_clear_bb:6685: Corrupt filesystem
[  283.321711][    C0] EXT4-fs (loop9): error count since last fsck: 1
[  283.321737][    C0] EXT4-fs (loop9): initial error at time 1773884544: ext4_read_block_bitmap_nowait:517
[  283.321764][    C0] EXT4-fs (loop9): last error at time 1773884544: ext4_read_block_bitmap_nowait:517
[  283.361131][ T8796] loop9: lost filesystem error report for type 5 error -117
[  283.362752][ T8796] EXT4-fs (loop9): 1 orphan inode deleted
[  283.380648][ T8796] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  283.771056][ T8807] input: syz1 as /devices/virtual/input/input10
[  283.832829][ T7867] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  284.462981][ T8812] loop5: detected capacity change from 0 to 40427
[  284.492170][ T8812] F2FS-fs (loop5): build fault injection rate: 771
[  284.512069][ T8812] F2FS-fs (loop5): invalid crc value
[  284.773716][ T8812] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  284.812891][ T8812] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  284.917113][   T30] audit: type=1800 audit(1773884546.192:192): pid=8812 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.690" name="file1" dev="loop5" ino=10 res=0 errno=0
[  284.972314][ T8812] syz.5.690: attempt to access beyond end of device
[  284.972314][ T8812] loop5: rw=2049, sector=45096, nr_sectors = 24 limit=40427
[  285.092414][ T6048] syz-executor: attempt to access beyond end of device
[  285.092414][ T6048] loop5: rw=2049, sector=45120, nr_sectors = 8 limit=40427
[  285.118954][ T6048] CPU: 0 UID: 0 PID: 6048 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  285.118978][ T6048] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  285.118987][ T6048] Call Trace:
[  285.118994][ T6048]  <TASK>
[  285.119001][ T6048]  dump_stack_lvl+0xe8/0x150
[  285.119042][ T6048]  f2fs_handle_critical_error+0x37c/0x540
[  285.119070][ T6048]  f2fs_write_end_io+0x1274/0x1740
[  285.119104][ T6048]  __submit_merged_bio+0x256/0x700
[  285.119131][ T6048]  __submit_merged_write_cond+0x3c9/0x4e0
[  285.119159][ T6048]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  285.119201][ T6048]  f2fs_write_data_pages+0x287e/0x34f0
[  285.119256][ T6048]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  285.119289][ T6048]  ? __pfx_css_rstat_updated+0x10/0x10
[  285.119335][ T6048]  ? mod_memcg_lruvec_state+0x208/0x220
[  285.119357][ T6048]  ? lru_gen_update_size+0x7c7/0xd10
[  285.119386][ T6048]  ? __lock_acquire+0x6b5/0x2cf0
[  285.119426][ T6048]  ? filemap_get_folios_tag+0x118/0x720
[  285.119448][ T6048]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  285.119471][ T6048]  do_writepages+0x32e/0x550
[  285.119497][ T6048]  ? do_raw_spin_unlock+0xf5/0x210
[  285.119521][ T6048]  filemap_fdatawrite+0x1e9/0x2f0
[  285.119542][ T6048]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  285.119602][ T6048]  ? do_raw_spin_unlock+0xf5/0x210
[  285.119625][ T6048]  f2fs_sync_dirty_inodes+0x30e/0x860
[  285.119654][ T6048]  f2fs_write_checkpoint+0x9df/0x26a0
[  285.119697][ T6048]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  285.119751][ T6048]  ? kfree+0x1c5/0x650
[  285.119771][ T6048]  ? f2fs_stop_gc_thread+0x7f/0xb0
[  285.119797][ T6048]  kill_f2fs_super+0x314/0x720
[  285.119833][ T6048]  ? __pfx_kill_f2fs_super+0x10/0x10
[  285.119866][ T6048]  ? lockdep_hardirqs_on+0x7a/0x110
[  285.119898][ T6048]  deactivate_locked_super+0xbc/0x130
[  285.119924][ T6048]  cleanup_mnt+0x437/0x4d0
[  285.119940][ T6048]  ? _raw_spin_unlock_irq+0x23/0x50
[  285.119960][ T6048]  task_work_run+0x1d9/0x270
[  285.119983][ T6048]  ? __pfx_task_work_run+0x10/0x10
[  285.120012][ T6048]  exit_to_user_mode_loop+0xed/0x480
[  285.120032][ T6048]  ? rcu_is_watching+0x15/0xb0
[  285.120053][ T6048]  do_syscall_64+0x32d/0xf80
[  285.120070][ T6048]  ? trace_irq_disable+0x3b/0x150
[  285.120087][ T6048]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  285.120103][ T6048]  ? clear_bhb_loop+0x40/0x90
[  285.120122][ T6048]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  285.120138][ T6048] RIP: 0033:0x7fd4c2d9d9d7
[  285.120154][ T6048] Code: a2 c7 05 1c fd 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  285.120168][ T6048] RSP: 002b:00007ffe4892f3c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  285.120184][ T6048] RAX: 0000000000000000 RBX: 00007fd4c2e32050 RCX: 00007fd4c2d9d9d7
[  285.120193][ T6048] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffe4892f480
[  285.120202][ T6048] RBP: 00007ffe4892f480 R08: 00007ffe48930480 R09: 00000000ffffffff
[  285.120212][ T6048] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffe48930510
[  285.120221][ T6048] R13: 00007fd4c2e32050 R14: 000000000004595b R15: 00007ffe48930550
[  285.120250][ T6048]  </TASK>
[  285.120494][ T6048] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  285.893735][ T1225] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  286.061997][ T8830] loop4: detected capacity change from 0 to 40427
[  286.096642][ T1225] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  286.115484][ T8830] F2FS-fs: heap/no_heap options were deprecated
[  286.168179][ T1225] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  286.208817][ T8830] F2FS-fs (loop4): Wrong secs_per_zone / total_sections (4285726721, 24)
[  286.231238][ T1225] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  286.258381][ T8830] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  286.308952][ T8830] F2FS-fs (loop4): invalid crc value
[  286.316397][ T1225] usb 10-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  286.388028][ T1225] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  286.457683][ T1225] usb 10-1: config 0 descriptor??
[  286.780341][ T8830] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  286.844919][ T8830] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  286.867850][ T8830] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  286.932659][ T8841] loop3: detected capacity change from 0 to 512
[  286.949922][ T8841] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  286.964033][ T8841] EXT4-fs (loop3): orphan cleanup on readonly fs
[  286.971256][ T8841] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:517: comm syz.3.701: Block bitmap for bg 0 marked uninitialized
[  286.984786][ T8841] loop3: lost filesystem error report for type 5 error -117
[  286.985237][ T8841] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6685: Corrupt filesystem
[  286.993229][    C1] EXT4-fs (loop3): error count since last fsck: 1
[  286.993251][    C1] EXT4-fs (loop3): initial error at time 1773884548: ext4_read_block_bitmap_nowait:517
[  286.993273][    C1] EXT4-fs (loop3): last error at time 1773884548: ext4_read_block_bitmap_nowait:517
[  287.003243][ T8830] F2FS-fs (loop4): Corrupted max_depth of 3: 127
[  287.009017][ T8841] loop3: lost filesystem error report for type 5 error -117
[  287.009789][ T8841] EXT4-fs (loop3): 1 orphan inode deleted
[  287.051995][ T8841] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  287.205784][ T5837] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  287.208808][ T1225] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  287.239349][ T1225] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  287.263784][ T1225] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  287.295160][ T1225] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  287.319874][ T1225] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  287.376967][ T8834] loop9: detected capacity change from 0 to 256
[  287.417895][ T8834] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  287.445545][ T8858] loop3: detected capacity change from 0 to 512
[  287.520095][ T1225] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.9-1/input0
[  287.684481][ T8858] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.705: inode has both inline data and extents flags
[  287.740842][ T8858] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  287.758728][    C1] EXT4-fs (loop3): error count since last fsck: 1
[  287.774817][    C1] EXT4-fs (loop3): initial error at time 1773884549: ext4_orphan_get:1391: inode 15
[  287.784688][    C1] EXT4-fs (loop3): last error at time 1773884549: ext4_orphan_get:1391: inode 15
[  287.868264][ T8858] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.705: couldn't read orphan inode 15 (err -117)
[  288.376946][ T8858] loop3: lost filesystem error report for type 5 error -117
[  288.671332][ T8858] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  289.030157][   T24] usb 10-1: reset high-speed USB device number 3 using dummy_hcd
[  289.543551][ T8866] overlayfs: missing 'lowerdir'
[  289.570359][ T5837] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  289.740373][ T8870] loop3: detected capacity change from 0 to 512
[  289.763624][ T8870] EXT4-fs: Ignoring removed bh option
[  289.813005][ T8870] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  289.884639][ T8870] ext4 filesystem being mounted at /164/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  290.112243][ T5837] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  290.136690][ T5917] usb 10-1: USB disconnect, device number 3
[  290.490590][ T8888] loop3: detected capacity change from 0 to 512
[  290.521822][ T8888] EXT4-fs: Ignoring removed orlov option
[  290.574470][ T8888] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  290.629075][ T8888] EXT4-fs (loop3): orphan cleanup on readonly fs
[  290.671278][ T8888] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.713: bg 0: block 248: padding at end of block bitmap is not set
[  290.698977][ T8888] loop3: lost filesystem error report for type 5 error -117
[  290.708734][    C1] EXT4-fs (loop3): error count since last fsck: 1
[  290.722698][    C1] EXT4-fs (loop3): last error at time 1773884551: ext4_validate_block_bitmap:441
[  290.741785][ T8888] Quota error (device loop3): write_blk: dquota write failed
[  290.770846][ T8888] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  290.798892][ T8888] EXT4-fs error (device loop3): ext4_acquire_dquot:7001: comm syz.3.713: Failed to acquire dquot type 1
[  290.830744][ T8888] loop3: lost filesystem error report for type 5 error -117
[  290.834146][ T8888] EXT4-fs (loop3): 1 truncate cleaned up
[  290.884789][ T8888] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  291.020589][ T5837] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  291.343802][ T8896] No such timeout policy "syz0"
[  292.948347][ T8903] loop9: detected capacity change from 0 to 40427
[  292.978890][ T8903] F2FS-fs (loop9): Invalid log_blocksize (268), supports only 12
[  293.018589][ T8903] F2FS-fs (loop9): Can't find valid F2FS filesystem in 1th superblock
[  293.265289][ T8903] F2FS-fs (loop9): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  293.469534][ T8903] F2FS-fs (loop9): Try to recover 1th superblock, ret: 0
[  293.483864][ T8903] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[  293.777370][ T8903] syz.9.716: attempt to access beyond end of device
[  293.777370][ T8903] loop9: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  293.963679][ T7867] F2FS-fs (loop9): invalid namelen(0), ino:0, run fsck to fix.
[  293.978899][ T7867] F2FS-fs (loop9): invalid namelen(0), ino:0, run fsck to fix.
[  294.025821][ T7867] F2FS-fs (loop9): invalid namelen(0), ino:0, run fsck to fix.
[  294.066460][ T7867] F2FS-fs (loop9): invalid namelen(0), ino:0, run fsck to fix.
[  294.108478][ T7867] F2FS-fs (loop9): invalid namelen(0), ino:0, run fsck to fix.
[  294.162845][ T7867] F2FS-fs (loop9): invalid namelen(0), ino:0, run fsck to fix.
[  294.190294][ T7867] F2FS-fs (loop9): invalid namelen(0), ino:0, run fsck to fix.
[  294.833477][ T8915] loop8: detected capacity change from 0 to 512
[  294.902144][ T8915] EXT4-fs (loop8): orphan cleanup on readonly fs
[  294.937748][ T8915] EXT4-fs error (device loop8): ext4_orphan_get:1391: inode #15: comm syz.8.721: iget: bad i_size value: 38620345925642
[  294.996605][ T8904] loop3: detected capacity change from 0 to 131072
[  295.007687][ T8915] loop8: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  295.008219][ T8915] EXT4-fs error (device loop8): ext4_orphan_get:1396: comm syz.8.721: couldn't read orphan inode 15 (err -117)
[  295.017497][    C0] EXT4-fs (loop8): error count since last fsck: 1
[  295.017521][    C0] EXT4-fs (loop8): initial error at time 1773884556: ext4_orphan_get:1391: inode 15
[  295.017552][    C0] EXT4-fs (loop8): last error at time 1773884556: ext4_orphan_get:1391: inode 15
[  295.049949][ T8912] syz.9.716 (8912) used greatest stack depth: 18032 bytes left
[  295.063576][ T8904] F2FS-fs (loop3): invalid crc value
[  295.073196][ T8915] loop8: lost filesystem error report for type 5 error -117
[  295.087248][ T1011] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  295.122109][ T8904] F2FS-fs (loop3): Failed to start F2FS issue_checkpoint_thread (-4)
[  295.130836][ T8915] EXT4-fs (loop8): mounted filesystem 00000000-0000-00a1-0000-000000000000 ro without journal. Quota mode: writeback.
[  295.365188][ T7572] EXT4-fs (loop8): unmounting filesystem 00000000-0000-00a1-0000-000000000000.
[  295.445567][ T1011] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  295.695489][ T1011] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  295.700007][ T8925] loop8: detected capacity change from 0 to 2048
[  295.810147][ T8925] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  295.883005][ T8931] loop3: detected capacity change from 0 to 256
[  296.035744][ T8925] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm syz.8.725: bg 0: block 234: padding at end of block bitmap is not set
[  296.067229][ T1011] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  296.162424][ T5858] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  296.175604][ T5858] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  296.177604][ T8925] EXT4-fs (loop8): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 54 with error 28
[  296.200839][ T5858] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  296.216973][ T5858] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  296.231530][ T5858] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  296.278219][ T8937] loop3: detected capacity change from 0 to 256
[  296.294624][ T8925] EXT4-fs (loop8): This should not happen!! Data will be lost
[  296.294624][ T8925] 
[  296.337214][ T8925] EXT4-fs (loop8): Total free blocks count 0
[  296.396706][ T8925] EXT4-fs (loop8): Free/Dirty block details
[  296.405325][ T8925] EXT4-fs (loop8): free_blocks=0
[  296.428883][ T8925] EXT4-fs (loop8): dirty_blocks=64
[  296.452644][ T8925] EXT4-fs (loop8): Block reservation details
[  296.482073][ T8925] EXT4-fs (loop8): i_reserved_data_blocks=4
[  296.600888][ T8940] loop3: detected capacity change from 0 to 1024
[  296.633697][ T8940] EXT4-fs: Ignoring removed bh option
[  296.680571][ T7572] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  296.754428][ T8940] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  296.942884][ T8940] EXT4-fs error (device loop3): mb_free_blocks:2047: group 0, inode 15: block 129:freeing already freed block (bit 8); block bitmap corrupt.
[  297.147683][ T5837] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  297.421827][ T1011] bridge_slave_1: left allmulticast mode
[  297.453997][ T1011] bridge_slave_1: left promiscuous mode
[  297.493785][ T1011] bridge0: port 2(bridge_slave_1) entered disabled state
[  297.556002][ T1011] bridge_slave_0: left allmulticast mode
[  297.575944][ T1011] bridge_slave_0: left promiscuous mode
[  297.593396][ T1011] bridge0: port 1(bridge_slave_0) entered disabled state
[  298.066995][ T1011] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  298.105217][ T1011] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  298.126729][ T1011] bond0 (unregistering): Released all slaves
[  298.270687][ T5858] Bluetooth: hci5: command tx timeout
[  298.416150][ T8933] chnl_net:caif_netlink_parms(): no params data found
[  298.910903][ T8967] loop4: detected capacity change from 0 to 1024
[  298.943163][ T8967] EXT4-fs: Ignoring removed bh option
[  298.984467][ T8967] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  299.054875][ T1011] hsr_slave_0: left promiscuous mode
[  299.107786][ T1011] hsr_slave_1: left promiscuous mode
[  299.136382][ T8967] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  299.162021][ T1011] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  299.222301][ T1011] batman_adv: batadv0: Removing interface: batadv_slave_0
[  299.277657][ T1011] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  299.310234][ T1011] batman_adv: batadv0: Removing interface: batadv_slave_1
[  299.348042][ T1011] veth1_macvtap: left promiscuous mode
[  299.363562][ T1011] veth0_macvtap: left promiscuous mode
[  299.374301][ T5841] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  299.391669][ T1011] veth1_vlan: left promiscuous mode
[  299.408047][ T1011] veth0_vlan: left promiscuous mode
[  300.001430][ T8990] loop5: detected capacity change from 0 to 256
[  300.021871][ T5902] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  300.031516][ T8990] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  300.192008][ T5902] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  300.225401][ T5902] usb 5-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  300.266891][ T5902] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  300.376528][ T5858] Bluetooth: hci5: command tx timeout
[  301.260193][ T5902] usb 5-1: config 0 descriptor??
[  302.262798][ T5902] keytouch 0003:0926:3333.0007: fixing up Keytouch IEC report descriptor
[  302.350086][ T5902] input: HID 0926:3333 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:0926:3333.0007/input/input11
[  302.430927][ T1011] team0 (unregistering): Port device team_slave_1 removed
[  302.441100][ T5858] Bluetooth: hci5: command tx timeout
[  302.478838][ T5917] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  302.495334][ T1011] team0 (unregistering): Port device team_slave_0 removed
[  302.645404][ T5902] keytouch 0003:0926:3333.0007: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.4-1/input0
[  302.662274][ T5917] usb 4-1: Using ep0 maxpacket: 32
[  302.695956][ T5917] usb 4-1: config 0 has no interfaces?
[  302.701018][ T5902] usb 5-1: USB disconnect, device number 11
[  302.722559][ T5917] usb 4-1: New USB device found, idVendor=0ccd, idProduct=10af, bcdDevice=38.4a
[  302.752979][ T5917] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  302.776672][ T5917] usb 4-1: Product: syz
[  302.794500][ T5917] usb 4-1: Manufacturer: syz
[  302.808264][ T5917] usb 4-1: SerialNumber: syz
[  302.824344][ T5917] usb 4-1: config 0 descriptor??
[  302.864944][ T8999] fido_id[8999]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/5-1/report_descriptor': No such file or directory
[  303.172235][ T9008] loop8: detected capacity change from 0 to 256
[  303.180202][ T9008] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  303.204488][ T8933] bridge0: port 1(bridge_slave_0) entered blocking state
[  303.212186][ T8933] bridge0: port 1(bridge_slave_0) entered disabled state
[  303.220741][ T9008] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  303.238663][ T8933] bridge_slave_0: entered allmulticast mode
[  303.258052][ T8933] bridge_slave_0: entered promiscuous mode
[  303.284492][ T8933] bridge0: port 2(bridge_slave_1) entered blocking state
[  303.302566][ T8933] bridge0: port 2(bridge_slave_1) entered disabled state
[  303.324720][ T8933] bridge_slave_1: entered allmulticast mode
[  303.343450][ T8933] bridge_slave_1: entered promiscuous mode
[  303.461602][ T7572] FAT-fs (loop8): error, corrupted directory (invalid entries)
[  303.482006][ T7572] FAT-fs (loop8): Filesystem has been set read-only
[  303.495880][ T8933] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  303.522485][ T8933] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  303.538026][ T7572] FAT-fs (loop8): error, corrupted directory (invalid entries)
[  303.650868][ T8933] team0: Port device team_slave_0 added
[  303.673797][ T8933] team0: Port device team_slave_1 added
[  303.820721][ T8933] batman_adv: batadv0: Adding interface: batadv_slave_0
[  303.833239][ T8933] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  303.861728][ T8933] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  303.896899][ T8933] batman_adv: batadv0: Adding interface: batadv_slave_1
[  303.916735][ T8933] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  303.976325][ T8933] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  304.392503][ T5917] usb 4-1: USB disconnect, device number 11
[  304.413298][ T1011] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  304.508823][ T5858] Bluetooth: hci5: command tx timeout
[  305.378068][ T1011] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  305.456206][ T5849] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  305.487013][ T8933] hsr_slave_0: entered promiscuous mode
[  305.500598][ T8933] hsr_slave_1: entered promiscuous mode
[  305.512697][ T5849] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  305.533039][ T8933] debugfs: 'hsr0' already exists in 'hsr'
[  305.546128][ T8933] Cannot create hsr debugfs directory
[  305.563446][ T5849] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  305.582476][ T5849] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  305.590681][ T5849] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  305.684888][ T1011] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  305.864785][ T1011] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  306.525754][ T9051] loop4: detected capacity change from 0 to 40427
[  306.534854][ T9051] F2FS-fs (loop4): build fault injection rate: 174
[  306.541952][ T9051] F2FS-fs (loop4): build fault injection type: 0x3bfe8c
[  306.559296][ T9051] F2FS-fs (loop4): invalid crc value
[  306.769014][ T9051] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  306.799306][ T9051] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  307.439325][ T1011] bridge_slave_1: left allmulticast mode
[  307.452768][ T1011] bridge_slave_1: left promiscuous mode
[  307.459071][ T1011] bridge0: port 2(bridge_slave_1) entered disabled state
[  307.470127][ T1011] bridge_slave_0: left allmulticast mode
[  307.481188][ T1011] bridge_slave_0: left promiscuous mode
[  307.499509][ T1011] bridge0: port 1(bridge_slave_0) entered disabled state
[  307.603494][ T9038] loop3: detected capacity change from 0 to 131072
[  307.633782][ T5849] Bluetooth: hci1: command tx timeout
[  309.748936][ T5849] Bluetooth: hci1: command tx timeout
[  310.194318][ T1011] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  310.217980][ T1011] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  310.250768][ T1011] bond0 (unregistering): Released all slaves
[  310.285255][ T9078] loop4: detected capacity change from 0 to 40427
[  310.330981][ T9078] F2FS-fs (loop4): Invalid SB checksum offset: 0
[  310.363791][ T9078] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock
[  310.398619][ T9078] F2FS-fs (loop4): invalid crc value
[  310.618083][ T9078] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  310.642639][ T9078] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0
[  310.662427][ T9078] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  310.853902][ T9043] chnl_net:caif_netlink_parms(): no params data found
[  311.116855][ T9090] syz.4.756: attempt to access beyond end of device
[  311.116855][ T9090] loop4: rw=2049, sector=53248, nr_sectors = 8 limit=40427
[  311.604199][ T5841] syz-executor: attempt to access beyond end of device
[  311.604199][ T5841] loop4: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  311.650532][ T5841] CPU: 0 UID: 0 PID: 5841 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  311.650557][ T5841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  311.650567][ T5841] Call Trace:
[  311.650574][ T5841]  <TASK>
[  311.650581][ T5841]  dump_stack_lvl+0xe8/0x150
[  311.650609][ T5841]  f2fs_handle_critical_error+0x37c/0x540
[  311.650637][ T5841]  f2fs_write_end_io+0x1274/0x1740
[  311.650670][ T5841]  __submit_merged_bio+0x256/0x700
[  311.650698][ T5841]  __submit_merged_write_cond+0x3c9/0x4e0
[  311.650727][ T5841]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  311.650780][ T5841]  f2fs_write_data_pages+0x287e/0x34f0
[  311.650836][ T5841]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  311.650870][ T5841]  ? __pfx_css_rstat_updated+0x10/0x10
[  311.650917][ T5841]  ? mod_memcg_lruvec_state+0x208/0x220
[  311.650940][ T5841]  ? lru_gen_update_size+0x7c7/0xd10
[  311.650973][ T5841]  ? __lock_acquire+0x6b5/0x2cf0
[  311.651013][ T5841]  ? filemap_get_folios_tag+0x118/0x720
[  311.651039][ T5841]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  311.651062][ T5841]  do_writepages+0x32e/0x550
[  311.651091][ T5841]  ? do_raw_spin_unlock+0xf5/0x210
[  311.651115][ T5841]  filemap_fdatawrite+0x1e9/0x2f0
[  311.651137][ T5841]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  311.651196][ T5841]  ? do_raw_spin_unlock+0xf5/0x210
[  311.651218][ T5841]  f2fs_sync_dirty_inodes+0x30e/0x860
[  311.651248][ T5841]  f2fs_write_checkpoint+0x9df/0x26a0
[  311.651300][ T5841]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  311.651366][ T5841]  kill_f2fs_super+0x314/0x720
[  311.651395][ T5841]  ? __pfx_kill_f2fs_super+0x10/0x10
[  311.651429][ T5841]  ? lockdep_hardirqs_on+0x7a/0x110
[  311.651461][ T5841]  deactivate_locked_super+0xbc/0x130
[  311.651484][ T5841]  cleanup_mnt+0x437/0x4d0
[  311.651500][ T5841]  ? _raw_spin_unlock_irq+0x23/0x50
[  311.651521][ T5841]  task_work_run+0x1d9/0x270
[  311.651544][ T5841]  ? __pfx_task_work_run+0x10/0x10
[  311.651573][ T5841]  exit_to_user_mode_loop+0xed/0x480
[  311.651592][ T5841]  ? rcu_is_watching+0x15/0xb0
[  311.651613][ T5841]  do_syscall_64+0x32d/0xf80
[  311.651631][ T5841]  ? trace_irq_disable+0x3b/0x150
[  311.651650][ T5841]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  311.651666][ T5841]  ? clear_bhb_loop+0x40/0x90
[  311.651687][ T5841]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  311.651702][ T5841] RIP: 0033:0x7fe39bd9d9d7
[  311.651717][ T5841] Code: a2 c7 05 1c fd 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  311.651731][ T5841] RSP: 002b:00007ffeecbff888 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  311.651748][ T5841] RAX: 0000000000000000 RBX: 00007fe39be32050 RCX: 00007fe39bd9d9d7
[  311.651766][ T5841] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffeecbff940
[  311.651776][ T5841] RBP: 00007ffeecbff940 R08: 00007ffeecc00940 R09: 00000000ffffffff
[  311.651786][ T5841] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffeecc009d0
[  311.651795][ T5841] R13: 00007fe39be32050 R14: 000000000004c0f4 R15: 00007ffeecc00a10
[  311.651822][ T5841]  </TASK>
[  311.651841][ T5841] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  311.798836][ T5849] Bluetooth: hci1: command tx timeout
[  311.805229][ T5841] CPU: 0 UID: 0 PID: 5841 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  311.805253][ T5841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  311.805263][ T5841] Call Trace:
[  311.805270][ T5841]  <TASK>
[  311.805276][ T5841]  dump_stack_lvl+0xe8/0x150
[  311.805317][ T5841]  f2fs_handle_critical_error+0x37c/0x540
[  311.805346][ T5841]  f2fs_write_end_io+0x1274/0x1740
[  311.805383][ T5841]  __submit_merged_bio+0x256/0x700
[  311.805411][ T5841]  __submit_merged_write_cond+0x3c9/0x4e0
[  311.805441][ T5841]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  311.805485][ T5841]  f2fs_write_data_pages+0x287e/0x34f0
[  311.805543][ T5841]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  311.805581][ T5841]  ? __pfx_css_rstat_updated+0x10/0x10
[  311.805632][ T5841]  ? mod_memcg_lruvec_state+0x208/0x220
[  311.805656][ T5841]  ? lru_gen_update_size+0x7c7/0xd10
[  311.805689][ T5841]  ? __lock_acquire+0x6b5/0x2cf0
[  311.805731][ T5841]  ? filemap_get_folios_tag+0x118/0x720
[  311.805753][ T5841]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  311.805777][ T5841]  do_writepages+0x32e/0x550
[  311.805814][ T5841]  ? do_raw_spin_unlock+0xf5/0x210
[  311.805838][ T5841]  filemap_fdatawrite+0x1e9/0x2f0
[  311.805860][ T5841]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  311.805924][ T5841]  ? do_raw_spin_unlock+0xf5/0x210
[  311.805947][ T5841]  f2fs_sync_dirty_inodes+0x30e/0x860
[  311.805982][ T5841]  f2fs_write_checkpoint+0x9df/0x26a0
[  311.806031][ T5841]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  311.806100][ T5841]  kill_f2fs_super+0x314/0x720
[  311.806128][ T5841]  ? __pfx_kill_f2fs_super+0x10/0x10
[  311.806163][ T5841]  ? lockdep_hardirqs_on+0x7a/0x110
[  311.806203][ T5841]  deactivate_locked_super+0xbc/0x130
[  311.806227][ T5841]  cleanup_mnt+0x437/0x4d0
[  311.806243][ T5841]  ? _raw_spin_unlock_irq+0x23/0x50
[  311.806265][ T5841]  task_work_run+0x1d9/0x270
[  311.806295][ T5841]  ? __pfx_task_work_run+0x10/0x10
[  311.806325][ T5841]  exit_to_user_mode_loop+0xed/0x480
[  311.806345][ T5841]  ? rcu_is_watching+0x15/0xb0
[  311.806365][ T5841]  do_syscall_64+0x32d/0xf80
[  311.806382][ T5841]  ? trace_irq_disable+0x3b/0x150
[  311.806400][ T5841]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  311.806416][ T5841]  ? clear_bhb_loop+0x40/0x90
[  311.806435][ T5841]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  311.806450][ T5841] RIP: 0033:0x7fe39bd9d9d7
[  311.806467][ T5841] Code: a2 c7 05 1c fd 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  311.806479][ T5841] RSP: 002b:00007ffeecbff888 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  311.806496][ T5841] RAX: 0000000000000000 RBX: 00007fe39be32050 RCX: 00007fe39bd9d9d7
[  311.806505][ T5841] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffeecbff940
[  311.806515][ T5841] RBP: 00007ffeecbff940 R08: 00007ffeecc00940 R09: 00000000ffffffff
[  311.806524][ T5841] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffeecc009d0
[  311.806534][ T5841] R13: 00007fe39be32050 R14: 000000000004c0f4 R15: 00007ffeecc00a10
[  311.806563][ T5841]  </TASK>
[  311.806614][ T5841] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  313.868906][ T5849] Bluetooth: hci1: command tx timeout
[  313.890614][ T1011] hsr_slave_0: left promiscuous mode
[  313.903807][ T1011] hsr_slave_1: left promiscuous mode
[  313.903979][ T9120] loop4: detected capacity change from 0 to 256
[  313.917783][ T1011] batman_adv: batadv0: Removing interface: batadv_slave_0
[  313.925834][ T9120] exfat: Deprecated parameter 'utf8'
[  313.936911][ T1011] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  313.949856][ T9120] exfat: Deprecated parameter 'utf8'
[  313.955398][ T1011] batman_adv: batadv0: Removing interface: batadv_slave_1
[  313.973901][ T9120] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x114608e0, utbl_chksum : 0xe619d30d)
[  314.086918][ T1011] veth1_macvtap: left promiscuous mode
[  314.130771][ T1011] veth0_macvtap: left promiscuous mode
[  314.172051][ T1011] veth1_vlan: left promiscuous mode
[  314.194425][ T1011] veth0_vlan: left promiscuous mode
[  314.953748][ T9129] netlink: 4 bytes leftover after parsing attributes in process `syz.5.766'.
[  315.003981][ T9132] netlink: 12 bytes leftover after parsing attributes in process `syz.5.766'.
[  315.302049][ T9128] loop4: detected capacity change from 0 to 40427
[  315.315126][ T9128] F2FS-fs (loop4): Invalid SB checksum offset: 0
[  315.323912][ T9128] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock
[  315.343619][ T9128] F2FS-fs (loop4): invalid crc value
[  315.494114][ T9128] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  315.526062][ T9128] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0
[  315.543858][ T9128] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  315.577592][ T1011] team0 (unregistering): Port device team_slave_1 removed
[  315.608476][ T1011] team0 (unregistering): Port device team_slave_0 removed
[  315.917166][ T9143] syz.4.768: attempt to access beyond end of device
[  315.917166][ T9143] loop4: rw=2049, sector=53248, nr_sectors = 8 limit=40427
[  316.303823][ T5841] syz-executor: attempt to access beyond end of device
[  316.303823][ T5841] loop4: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  316.342410][ T5841] CPU: 0 UID: 0 PID: 5841 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  316.342453][ T5841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  316.342462][ T5841] Call Trace:
[  316.342469][ T5841]  <TASK>
[  316.342476][ T5841]  dump_stack_lvl+0xe8/0x150
[  316.342503][ T5841]  f2fs_handle_critical_error+0x37c/0x540
[  316.342537][ T5841]  f2fs_write_end_io+0x1274/0x1740
[  316.342572][ T5841]  __submit_merged_bio+0x256/0x700
[  316.342598][ T5841]  __submit_merged_write_cond+0x3c9/0x4e0
[  316.342626][ T5841]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  316.342664][ T5841]  f2fs_write_data_pages+0x287e/0x34f0
[  316.342716][ T5841]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  316.342782][ T5841]  ? read_node_folio+0x255/0x410
[  316.342815][ T5841]  ? __lock_acquire+0x6b5/0x2cf0
[  316.342840][ T5841]  ? __get_node_folio+0x8b5/0xe90
[  316.342869][ T5841]  ? filemap_get_folios_tag+0x118/0x720
[  316.342891][ T5841]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  316.342913][ T5841]  do_writepages+0x32e/0x550
[  316.342941][ T5841]  ? do_raw_spin_unlock+0xf5/0x210
[  316.342964][ T5841]  filemap_fdatawrite+0x1e9/0x2f0
[  316.342985][ T5841]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  316.343043][ T5841]  ? do_raw_spin_unlock+0xf5/0x210
[  316.343065][ T5841]  f2fs_sync_dirty_inodes+0x30e/0x860
[  316.343093][ T5841]  f2fs_write_checkpoint+0x9df/0x26a0
[  316.343139][ T5841]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  316.343204][ T5841]  kill_f2fs_super+0x314/0x720
[  316.343232][ T5841]  ? __pfx_kill_f2fs_super+0x10/0x10
[  316.343266][ T5841]  ? lockdep_hardirqs_on+0x7a/0x110
[  316.343297][ T5841]  deactivate_locked_super+0xbc/0x130
[  316.343322][ T5841]  cleanup_mnt+0x437/0x4d0
[  316.343337][ T5841]  ? _raw_spin_unlock_irq+0x23/0x50
[  316.343358][ T5841]  task_work_run+0x1d9/0x270
[  316.343381][ T5841]  ? __pfx_task_work_run+0x10/0x10
[  316.343410][ T5841]  exit_to_user_mode_loop+0xed/0x480
[  316.343430][ T5841]  ? rcu_is_watching+0x15/0xb0
[  316.343457][ T5841]  do_syscall_64+0x32d/0xf80
[  316.343475][ T5841]  ? trace_irq_disable+0x3b/0x150
[  316.343498][ T5841]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  316.343514][ T5841]  ? clear_bhb_loop+0x40/0x90
[  316.343533][ T5841]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  316.343548][ T5841] RIP: 0033:0x7fe39bd9d9d7
[  316.343568][ T5841] Code: a2 c7 05 1c fd 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  316.343580][ T5841] RSP: 002b:00007ffeecbff888 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  316.343597][ T5841] RAX: 0000000000000000 RBX: 00007fe39be32050 RCX: 00007fe39bd9d9d7
[  316.343607][ T5841] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffeecbff940
[  316.343617][ T5841] RBP: 00007ffeecbff940 R08: 00007ffeecc00940 R09: 00000000ffffffff
[  316.343627][ T5841] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffeecc009d0
[  316.343637][ T5841] R13: 00007fe39be32050 R14: 000000000004d2c8 R15: 00007ffeecc00a10
[  316.343664][ T5841]  </TASK>
[  316.344682][ T5841] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  316.651929][ T5841] CPU: 0 UID: 0 PID: 5841 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  316.651953][ T5841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  316.651963][ T5841] Call Trace:
[  316.651969][ T5841]  <TASK>
[  316.651976][ T5841]  dump_stack_lvl+0xe8/0x150
[  316.652006][ T5841]  f2fs_handle_critical_error+0x37c/0x540
[  316.652036][ T5841]  f2fs_write_end_io+0x1274/0x1740
[  316.652093][ T5841]  __submit_merged_bio+0x256/0x700
[  316.652124][ T5841]  __submit_merged_write_cond+0x3c9/0x4e0
[  316.652158][ T5841]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  316.652204][ T5841]  f2fs_write_data_pages+0x287e/0x34f0
[  316.652269][ T5841]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  316.652353][ T5841]  ? read_node_folio+0x255/0x410
[  316.652399][ T5841]  ? __lock_acquire+0x6b5/0x2cf0
[  316.652428][ T5841]  ? __get_node_folio+0x8b5/0xe90
[  316.652459][ T5841]  ? filemap_get_folios_tag+0x118/0x720
[  316.652483][ T5841]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  316.652510][ T5841]  do_writepages+0x32e/0x550
[  316.652542][ T5841]  ? do_raw_spin_unlock+0xf5/0x210
[  316.652566][ T5841]  filemap_fdatawrite+0x1e9/0x2f0
[  316.652589][ T5841]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  316.652656][ T5841]  ? do_raw_spin_unlock+0xf5/0x210
[  316.652680][ T5841]  f2fs_sync_dirty_inodes+0x30e/0x860
[  316.652712][ T5841]  f2fs_write_checkpoint+0x9df/0x26a0
[  316.652764][ T5841]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  316.652850][ T5841]  kill_f2fs_super+0x314/0x720
[  316.652879][ T5841]  ? __pfx_kill_f2fs_super+0x10/0x10
[  316.652916][ T5841]  ? lockdep_hardirqs_on+0x7a/0x110
[  316.652950][ T5841]  deactivate_locked_super+0xbc/0x130
[  316.652977][ T5841]  cleanup_mnt+0x437/0x4d0
[  316.652993][ T5841]  ? _raw_spin_unlock_irq+0x23/0x50
[  316.653015][ T5841]  task_work_run+0x1d9/0x270
[  316.653039][ T5841]  ? __pfx_task_work_run+0x10/0x10
[  316.653070][ T5841]  exit_to_user_mode_loop+0xed/0x480
[  316.653090][ T5841]  ? rcu_is_watching+0x15/0xb0
[  316.653111][ T5841]  do_syscall_64+0x32d/0xf80
[  316.653130][ T5841]  ? trace_irq_disable+0x3b/0x150
[  316.653147][ T5841]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  316.653163][ T5841]  ? clear_bhb_loop+0x40/0x90
[  316.653186][ T5841]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  316.653201][ T5841] RIP: 0033:0x7fe39bd9d9d7
[  316.653215][ T5841] Code: a2 c7 05 1c fd 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  316.653240][ T5841] RSP: 002b:00007ffeecbff888 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  316.653261][ T5841] RAX: 0000000000000000 RBX: 00007fe39be32050 RCX: 00007fe39bd9d9d7
[  316.653269][ T5841] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffeecbff940
[  316.653277][ T5841] RBP: 00007ffeecbff940 R08: 00007ffeecc00940 R09: 00000000ffffffff
[  316.653287][ T5841] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffeecc009d0
[  316.653294][ T5841] R13: 00007fe39be32050 R14: 000000000004d2c8 R15: 00007ffeecc00a10
[  316.653320][ T5841]  </TASK>
[  316.653693][ T5841] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  317.182855][ T1316] ieee802154 phy1 wpan1: encryption failed: -22
[  317.282460][ T9043] bridge0: port 1(bridge_slave_0) entered blocking state
[  317.333560][ T9043] bridge0: port 1(bridge_slave_0) entered disabled state
[  317.346764][ T9043] bridge_slave_0: entered allmulticast mode
[  317.375161][ T9043] bridge_slave_0: entered promiscuous mode
[  317.429089][ T9043] bridge0: port 2(bridge_slave_1) entered blocking state
[  317.445376][ T9043] bridge0: port 2(bridge_slave_1) entered disabled state
[  317.465131][ T9043] bridge_slave_1: entered allmulticast mode
[  317.494754][ T9043] bridge_slave_1: entered promiscuous mode
[  317.713793][ T9043] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  317.765549][ T9043] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  317.927750][ T9154] loop4: detected capacity change from 0 to 256
[  317.971018][ T9154] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  320.521723][ T9166] loop3: detected capacity change from 0 to 512
[  320.556422][ T9043] team0: Port device team_slave_0 added
[  320.571889][ T9166] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  320.599877][ T9043] team0: Port device team_slave_1 added
[  320.625879][ T9166] ext4 filesystem being mounted at /182/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  320.784081][ T9043] batman_adv: batadv0: Adding interface: batadv_slave_0
[  320.806788][ T9043] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  320.861051][ T9043] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  320.893387][ T9043] batman_adv: batadv0: Adding interface: batadv_slave_1
[  320.900483][ T9043] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  320.971257][ T9043] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  320.988428][ T8933] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  321.015342][ T8933] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  321.052713][ T8933] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  321.062457][ T9182] EXT4-fs error (device loop3): ext4_do_update_inode:5572: inode #2: comm syz.3.772: corrupted inode contents
[  321.191451][ T9182] EXT4-fs error (device loop3): ext4_dirty_inode:6453: inode #2: comm syz.3.772: mark_inode_dirty error
[  321.209833][ T9182] EXT4-fs error (device loop3): ext4_do_update_inode:5572: inode #2: comm syz.3.772: corrupted inode contents
[  321.226742][ T9182] EXT4-fs error (device loop3): __ext4_ext_dirty:207: inode #2: comm syz.3.772: mark_inode_dirty error
[  321.251255][ T9178] EXT4-fs warning (device loop3): ext4_es_cache_extent:1082: inode #2: comm syz.3.772: ES cache extent failed: add [0,1,20,0x1] conflict with existing [0,8,576460752303423487,0x18]
[  321.251255][ T9178] 
[  321.311134][ T8933] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  321.900332][ T9043] hsr_slave_0: entered promiscuous mode
[  321.907689][ T9043] hsr_slave_1: entered promiscuous mode
[  321.919535][ T9043] debugfs: 'hsr0' already exists in 'hsr'
[  321.927698][ T5837] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  321.940130][ T9043] Cannot create hsr debugfs directory
[  322.468920][ T9206] loop5: detected capacity change from 0 to 512
[  322.526077][ T9206] EXT4-fs error (device loop5): ext4_orphan_get:1391: inode #15: comm syz.5.777: inode has both inline data and extents flags
[  322.586330][ T9206] loop5: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  322.587648][ T9206] EXT4-fs error (device loop5): ext4_orphan_get:1396: comm syz.5.777: couldn't read orphan inode 15 (err -117)
[  322.597297][    C1] EXT4-fs (loop5): error count since last fsck: 1
[  322.597321][    C1] EXT4-fs (loop5): initial error at time 1773884583: ext4_orphan_get:1391: inode 15
[  322.597353][    C1] EXT4-fs (loop5): last error at time 1773884583: ext4_orphan_get:1391: inode 15
[  322.635586][ T9206] loop5: lost filesystem error report for type 5 error -117
[  322.643635][ T9206] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  322.650940][ T9210] loop4: detected capacity change from 0 to 256
[  322.680220][ T9210] exfat: Bad value for 'umask'
[  322.710208][ T9205] tracefs: Unknown parameter '³('
[  322.874880][ T8933] 8021q: adding VLAN 0 to HW filter on device bond0
[  322.922470][ T8933] 8021q: adding VLAN 0 to HW filter on device team0
[  322.938701][ T6814] bridge0: port 1(bridge_slave_0) entered blocking state
[  322.946123][ T6814] bridge0: port 1(bridge_slave_0) entered forwarding state
[  323.174423][ T6048] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  323.213681][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[  323.221010][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[  324.136691][ T9043] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  324.202512][ T9043] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  324.276975][ T9043] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  324.305267][ T9043] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  325.371800][ T8933] 8021q: adding VLAN 0 to HW filter on device batadv0
[  325.431388][ T8933] veth0_vlan: entered promiscuous mode
[  325.447453][ T8933] veth1_vlan: entered promiscuous mode
[  326.068311][ T8933] veth0_macvtap: entered promiscuous mode
[  326.133510][ T8933] veth1_macvtap: entered promiscuous mode
[  326.325386][ T8933] batman_adv: batadv0: Interface activated: batadv_slave_0
[  326.398409][ T8933] batman_adv: batadv0: Interface activated: batadv_slave_1
[  326.490874][ T1105] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  326.524252][ T1105] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  326.577286][ T1105] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  326.604811][ T1105] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  326.751650][ T9043] 8021q: adding VLAN 0 to HW filter on device bond0
[  326.907122][ T9043] 8021q: adding VLAN 0 to HW filter on device team0
[  326.984595][ T1105] bridge0: port 1(bridge_slave_0) entered blocking state
[  326.992114][ T1105] bridge0: port 1(bridge_slave_0) entered forwarding state
[  327.074424][ T9262] loop4: detected capacity change from 0 to 40427
[  327.089357][ T1105] bridge0: port 2(bridge_slave_1) entered blocking state
[  327.096790][ T1105] bridge0: port 2(bridge_slave_1) entered forwarding state
[  327.118384][ T9262] F2FS-fs (loop4): invalid crc value
[  327.141875][ T6814] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  327.172715][ T6814] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  327.363961][ T1105] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  327.399361][ T1105] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  327.409907][ T9262] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  327.426389][ T9043] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  327.473188][ T9262] F2FS-fs (loop4): Start checkpoint disabled!
[  327.504753][ T9262] F2FS-fs (loop4): f2fs_disable_checkpoint() finish, err:0
[  327.553494][ T9262] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  327.625186][ T9285] loop5: detected capacity change from 0 to 256
[  327.691055][ T9285] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  327.790383][   T36] kworker/u8:2: attempt to access beyond end of device
[  327.790383][   T36] loop4: rw=1, sector=45096, nr_sectors = 8 limit=40427
[  327.845751][   T36] kworker/u8:2: attempt to access beyond end of device
[  327.845751][   T36] loop4: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  327.899399][   T36] CPU: 0 UID: 0 PID: 36 Comm: kworker/u8:2 Not tainted syzkaller #0 PREEMPT(full) 
[  327.899423][   T36] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  327.899433][   T36] Workqueue: writeback wb_workfn (flush-7:4)
[  327.899462][   T36] Call Trace:
[  327.899468][   T36]  <TASK>
[  327.899476][   T36]  dump_stack_lvl+0xe8/0x150
[  327.899502][   T36]  f2fs_handle_critical_error+0x37c/0x540
[  327.899532][   T36]  f2fs_write_end_io+0x1274/0x1740
[  327.899569][   T36]  __submit_merged_bio+0x256/0x700
[  327.899598][   T36]  __submit_merged_write_cond+0x3c9/0x4e0
[  327.899628][   T36]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  327.899673][   T36]  f2fs_write_data_pages+0x287e/0x34f0
[  327.899742][   T36]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  327.899780][   T36]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[  327.899832][   T36]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[  327.899877][   T36]  ? __lock_acquire+0x6b5/0x2cf0
[  327.899918][   T36]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  327.899942][   T36]  do_writepages+0x32e/0x550
[  327.899969][   T36]  ? reacquire_held_locks+0x104/0x190
[  327.899986][   T36]  ? writeback_sb_inodes+0x477/0x1a20
[  327.900012][   T36]  __writeback_single_inode+0x133/0x11a0
[  327.900033][   T36]  ? do_raw_spin_unlock+0xf5/0x210
[  327.900058][   T36]  writeback_sb_inodes+0x992/0x1a20
[  327.900108][   T36]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  327.900126][   T36]  ? do_raw_spin_lock+0x12b/0x2f0
[  327.900187][   T36]  ? rcu_is_watching+0x15/0xb0
[  327.900214][   T36]  wb_writeback+0x456/0xb70
[  327.900238][   T36]  ? queue_io+0x1d1/0x4a0
[  327.900267][   T36]  ? __pfx_wb_writeback+0x10/0x10
[  327.900284][   T36]  ? do_raw_spin_lock+0x12b/0x2f0
[  327.900320][   T36]  wb_workfn+0x414/0xf50
[  327.900340][   T36]  ? look_up_lock_class+0x57/0x110
[  327.900373][   T36]  ? __pfx_wb_workfn+0x10/0x10
[  327.900394][   T36]  ? do_raw_spin_lock+0x12b/0x2f0
[  327.900416][   T36]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  327.900458][   T36]  ? process_one_work+0x8bb/0x1780
[  327.900484][   T36]  process_one_work+0x9ab/0x1780
[  327.900530][   T36]  ? __pfx_process_one_work+0x10/0x10
[  327.900550][   T36]  ? do_raw_spin_lock+0x12b/0x2f0
[  327.900587][   T36]  worker_thread+0xba8/0x11e0
[  327.900634][   T36]  kthread+0x388/0x470
[  327.900654][   T36]  ? __pfx_worker_thread+0x10/0x10
[  327.900668][   T36]  ? __pfx_kthread+0x10/0x10
[  327.900695][   T36]  ret_from_fork+0x51e/0xb90
[  327.900719][   T36]  ? __pfx_ret_from_fork+0x10/0x10
[  327.900739][   T36]  ? __switch_to+0xc7d/0x1450
[  327.900762][   T36]  ? __pfx_kthread+0x10/0x10
[  327.900783][   T36]  ret_from_fork_asm+0x1a/0x30
[  327.900816][   T36]  </TASK>
[  327.907213][   T36] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  328.251371][ T9295] netlink: 16 bytes leftover after parsing attributes in process `syz.1.724'.
[  328.615914][ T9043] 8021q: adding VLAN 0 to HW filter on device batadv0
[  329.000727][ T9299] syzkaller0: entered promiscuous mode
[  329.031725][ T9299] syzkaller0: entered allmulticast mode
[  329.247840][ T9308] loop3: detected capacity change from 0 to 512
[  329.275952][ T9308] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  329.340776][ T9308] EXT4-fs (loop3): orphan cleanup on readonly fs
[  329.381478][ T9308] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:517: comm syz.3.789: Block bitmap for bg 0 marked uninitialized
[  329.426096][ T9308] loop3: lost filesystem error report for type 5 error -117
[  329.429922][    C0] EXT4-fs (loop3): error count since last fsck: 1
[  329.444260][    C0] EXT4-fs (loop3): initial error at time 1773884590: ext4_read_block_bitmap_nowait:517
[  329.454120][    C0] EXT4-fs (loop3): last error at time 1773884590: ext4_read_block_bitmap_nowait:517
[  329.490048][ T9308] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6685: Corrupt filesystem
[  329.509946][ T9308] loop3: lost filesystem error report for type 5 error -117
[  329.511068][ T9308] EXT4-fs (loop3): 1 orphan inode deleted
[  329.542769][ T9308] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  329.633121][ T9311] loop4: detected capacity change from 0 to 256
[  329.741071][ T9308] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  329.788849][ T9308] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  329.873081][ T9308] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:517: comm syz.3.789: Block bitmap for bg 0 marked uninitialized
[  329.959288][ T9308] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:517: comm syz.3.789: Block bitmap for bg 0 marked uninitialized
[  330.011839][ T9308] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:517: comm syz.3.789: Block bitmap for bg 0 marked uninitialized
[  330.124847][ T5837] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  330.183631][ T5902] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  330.358989][ T5902] usb 5-1: Using ep0 maxpacket: 16
[  330.380460][ T5902] usb 5-1: config 1 has an invalid interface association descriptor of length 5, skipping
[  330.397121][ T5902] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  330.442421][ T5902] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x9 has invalid maxpacket 14609, setting to 1024
[  330.454189][ T5902] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x9 has invalid maxpacket 1024
[  330.464962][ T5902] usb 5-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4
[  330.751496][ T9326] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci1/hci1:200/input12
[  331.477140][ T5902] usb 5-1: New USB device found, idVendor=1235, idProduct=8213, bcdDevice= 0.40
[  331.486298][ T5902] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  331.975038][ T5902] usb 5-1: Product: syz
[  331.979361][ T5902] usb 5-1: Manufacturer: syz
[  331.983972][ T5902] usb 5-1: SerialNumber: syz
[  332.008487][ T9316] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  332.237240][ T5902] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[  332.250380][ T5902] usb 5-1: MIDIStreaming interface descriptor not found
[  332.598427][ T5902] usb 5-1: USB disconnect, device number 12
[  332.906787][ T6017] udevd[6017]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  334.972186][ T9341] fuse: fd is not a fuse device
[  335.065528][ T9343] loop4: detected capacity change from 0 to 128
[  335.092442][ T9343] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  335.120094][ T9343] ext4 filesystem being mounted at /205/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  335.239957][ T5841] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  335.601047][ T9348] netlink: 16 bytes leftover after parsing attributes in process `syz.4.797'.
[  335.833738][ T9327] netlink: 4 bytes leftover after parsing attributes in process `syz.3.791'.
[  336.223288][ T9357] loop4: detected capacity change from 0 to 256
[  336.260445][ T9357] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  336.324636][ T9357] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  336.415601][ T9043] veth0_vlan: entered promiscuous mode
[  336.522598][ T9043] veth1_vlan: entered promiscuous mode
[  336.658535][ T9043] veth0_macvtap: entered promiscuous mode
[  336.750273][ T9043] veth1_macvtap: entered promiscuous mode
[  336.811471][ T9043] batman_adv: batadv0: Interface activated: batadv_slave_0
[  336.876124][ T9043] batman_adv: batadv0: Interface activated: batadv_slave_1
[  337.051713][ T1105] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  337.128841][ T1105] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  337.237351][ T1105] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  337.286712][ T1105] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  338.117474][ T9382] loop4: detected capacity change from 0 to 512
[  338.159843][ T9382] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  338.346203][ T9382] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c028, mo2=0002]
[  338.356027][ T9382] System zones: 1-12
[  338.374564][ T9382] EXT4-fs (loop4): 1 truncate cleaned up
[  338.388299][ T9382] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  338.703068][ T5841] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  338.905719][ T9392] loop5: detected capacity change from 0 to 256
[  339.171038][ T9399] netlink: 16 bytes leftover after parsing attributes in process `syz.4.808'.
[  339.192887][ T9392] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  339.320816][ T6814] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  339.330946][ T6814] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  342.345799][   T58] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  342.379148][   T58] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  342.481967][ T9431] loop3: detected capacity change from 0 to 1024
[  342.558839][ T9431] EXT4-fs (loop3): bad geometry: first data block 0 is beyond end of filesystem (0)
[  343.020188][ T9438] loop1: detected capacity change from 0 to 512
[  343.156864][ T9438] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  343.285491][ T9438] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c028, mo2=0002]
[  343.294183][ T9438] System zones: 1-12
[  343.348039][ T9438] EXT4-fs (loop1): 1 truncate cleaned up
[  343.361341][ T9438] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  343.761517][ T8933] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  343.876614][ T9451] loop3: detected capacity change from 0 to 512
[  344.028473][ T9451] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  344.141185][ T9451] EXT4-fs (loop3): orphan cleanup on readonly fs
[  344.151153][ T9451] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:517: comm syz.3.819: Block bitmap for bg 0 marked uninitialized
[  344.164768][ T9451] loop3: lost filesystem error report for type 5 error -117
[  344.168696][    C0] EXT4-fs (loop3): error count since last fsck: 1
[  344.182947][    C0] EXT4-fs (loop3): initial error at time 1773884605: ext4_read_block_bitmap_nowait:517
[  344.192870][ T9451] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6685: Corrupt filesystem
[  344.192894][ T9451] loop3: lost filesystem error report for type 5 error -117
[  344.193480][ T9451] EXT4-fs (loop3): 1 orphan inode deleted
[  344.201952][    C0] EXT4-fs (loop3): last error at time 1773884605: ext4_mb_clear_bb:6685
[  344.232697][ T9451] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  344.522786][ T5837] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  344.909510][ T9467] loop5: detected capacity change from 0 to 256
[  345.658565][ T9456] raw_sendmsg: syz.1.820 forgot to set AF_INET. Fix it!
[  345.711583][ T9471] loop3: detected capacity change from 0 to 512
[  345.783793][ T9471] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  345.832485][ T9471] EXT4-fs (loop3): orphan cleanup on readonly fs
[  345.981393][ T9471] Quota error (device loop3): dq_insert_tree: Quota tree root isn't allocated!
[  346.057051][ T9471] Quota error (device loop3): qtree_write_dquot: Error -5 occurred while creating quota
[  346.156467][ T9471] EXT4-fs error (device loop3): ext4_acquire_dquot:7001: comm syz.3.823: Failed to acquire dquot type 1
[  346.255883][ T9471] loop3: lost filesystem error report for type 5 error -5
[  346.258719][    C1] EXT4-fs (loop3): error count since last fsck: 1
[  346.272592][    C1] EXT4-fs (loop3): initial error at time 1773884607: ext4_acquire_dquot:7001
[  346.281405][    C1] EXT4-fs (loop3): last error at time 1773884607: ext4_acquire_dquot:7001
[  346.295104][ T9471] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.823: bg 0: block 40: padding at end of block bitmap is not set
[  346.346773][ T9471] loop3: lost filesystem error report for type 5 error -117
[  346.349260][ T9471] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6685: Corrupt filesystem
[  346.396375][ T9471] loop3: lost filesystem error report for type 5 error -117
[  346.401932][ T9471] EXT4-fs (loop3): 1 truncate cleaned up
[  346.481093][ T9471] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  346.546642][ T9486] loop1: detected capacity change from 0 to 256
[  346.622349][ T9486] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  346.674255][ T9471] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  347.846405][ T5837] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  349.000659][ T9494] loop5: detected capacity change from 0 to 256
[  349.033298][ T9494] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  350.070197][ T9510] loop1: detected capacity change from 0 to 256
[  350.330614][ T9517] loop5: detected capacity change from 0 to 512
[  350.390247][ T9517] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  350.573239][ T9517] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c028, mo2=0002]
[  350.582013][ T9517] System zones: 1-12
[  350.632689][ T9517] EXT4-fs (loop5): 1 truncate cleaned up
[  350.655030][ T9517] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  350.844459][ T9520] loop3: detected capacity change from 0 to 256
[  350.948270][ T9520] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xfe5fe6b3, utbl_chksum : 0xe619d30d)
[  351.185894][ T6048] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  351.413022][ T9530] loop1: detected capacity change from 0 to 512
[  351.433037][ T9532] xt_bpf: check failed: parse error
[  351.486662][ T9530] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  351.583937][ T9530] EXT4-fs (loop1): orphan cleanup on readonly fs
[  351.641812][ T9530] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:517: comm syz.1.833: Block bitmap for bg 0 marked uninitialized
[  351.710415][   T31] INFO: task syz.7.380:7654 blocked for more than 144 seconds.
[  351.744201][   T31]       Not tainted syzkaller #0
[  351.767793][ T9530] loop1: lost filesystem error report for type 5 error -117
[  351.768433][ T9530] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6685: Corrupt filesystem
[  351.775960][    C0] EXT4-fs (loop1): error count since last fsck: 1
[  351.775985][    C0] EXT4-fs (loop1): initial error at time 1773884613: ext4_read_block_bitmap_nowait:517
[  351.776009][    C0] EXT4-fs (loop1): last error at time 1773884613: ext4_read_block_bitmap_nowait:517
[  351.813946][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  351.882511][   T31] task:syz.7.380       state:D stack:28800 pid:7654  tgid:7652  ppid:6486   task_flags:0x400040 flags:0x00080002
[  352.025780][ T9530] loop1: lost filesystem error report for type 5 error -117
[  352.361652][   T31] Call Trace:
[  352.372887][   T31]  <TASK>
[  352.375922][   T31]  __schedule+0x1665/0x5590
[  352.380741][   T31]  ? check_path+0x21/0x40
[  352.385434][   T31]  ? __pfx___schedule+0x10/0x10
[  352.390335][ T9530] EXT4-fs (loop1): 1 orphan inode deleted
[  352.394803][   T31]  ? schedule+0x90/0x360
[  352.406934][   T31]  schedule+0x164/0x360
[  352.415565][   T31]  schedule_preempt_disabled+0x13/0x30
[  352.426969][   T31]  rwsem_down_write_slowpath+0x883/0x1080
[  352.428768][ T5925] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  352.439245][   T31]  ? rwsem_down_write_slowpath+0x4a3/0x1080
[  352.463580][   T31]  ? __pfx_rwsem_down_write_slowpath+0x10/0x10
[  352.478569][   T31]  down_write+0x1bc/0x200
[  352.484822][   T31]  ? __pfx_down_write+0x10/0x10
[  352.520224][   T31]  vfs_unlink+0xed/0x6c0
[  352.537626][   T31]  filename_unlinkat+0x3cd/0x610
[  352.554066][ T9530] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  352.584092][   T31]  ? __pfx_filename_unlinkat+0x10/0x10
[  352.589942][   T31]  ? do_getname+0x151/0x250
[  352.601680][   T31]  __se_sys_unlinkat+0x83/0x1a0
[  352.614097][   T31]  do_syscall_64+0x14d/0xf80
[  352.627638][   T31]  ? trace_irq_disable+0x3b/0x150
[  352.641854][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  352.664037][   T31]  ? clear_bhb_loop+0x40/0x90
[  352.684082][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  352.702442][   T31] RIP: 0033:0x7f5915b9c799
[  352.717997][   T31] RSP: 002b:00007f59169b4028 EFLAGS: 00000246 ORIG_RAX: 0000000000000107
[  352.734424][ T5925] usb 4-1: Using ep0 maxpacket: 32
[  352.754855][ T5925] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  352.768830][   T31] RAX: ffffffffffffffda RBX: 00007f5915e16090 RCX: 00007f5915b9c799
[  352.798738][ T5925] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  352.808922][   T31] RDX: 0000000000000000 RSI: 00002000000011c0 RDI: 0000000000000003
[  352.816933][   T31] RBP: 00007f5915c32c99 R08: 0000000000000000 R09: 0000000000000000
[  352.825023][ T5925] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  352.841726][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  352.855447][ T5925] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  352.865758][   T31] R13: 00007f5915e16128 R14: 00007f5915e16090 R15: 00007ffd5497abd8
[  352.883647][ T5925] usb 4-1: config 0 descriptor??
[  352.899099][   T31]  </TASK>
[  352.911857][ T5925] hub 4-1:0.0: USB hub found
[  352.916910][   T31] INFO: task syz.7.380:7656 blocked for more than 145 seconds.
[  352.940355][   T31]       Not tainted syzkaller #0
[  352.958715][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  352.978774][   T31] task:syz.7.380       state:D stack:28800 pid:7656  tgid:7652  ppid:6486   task_flags:0x400140 flags:0x00080002
[  353.008757][   T31] Call Trace:
[  353.013964][   T31]  <TASK>
[  353.020769][   T31]  __schedule+0x1665/0x5590
[  353.031333][   T31]  ? check_path+0x21/0x40
[  353.040617][   T31]  ? __pfx___schedule+0x10/0x10
[  353.064878][   T31]  ? schedule+0x90/0x360
[  353.072924][   T31]  schedule+0x164/0x360
[  353.081832][   T31]  schedule_preempt_disabled+0x13/0x30
[  353.094208][   T31]  rwsem_down_write_slowpath+0x883/0x1080
[  353.112389][   T31]  ? rwsem_down_write_slowpath+0x4a3/0x1080
[  353.124545][ T5925] hub 4-1:0.0: config failed, can't read hub descriptor (err -90)
[  353.136058][   T31]  ? __pfx_rwsem_down_write_slowpath+0x10/0x10
[  353.153525][   T31]  ? __lock_acquire+0x6b5/0x2cf0
[  353.168051][   T31]  ? __lock_acquire+0x6b5/0x2cf0
[  353.182787][   T31]  down_write+0x1bc/0x200
[  353.192819][   T31]  ? __pfx_down_write+0x10/0x10
[  353.203496][   T31]  ? do_raw_spin_unlock+0xf5/0x210
[  353.223406][   T31]  do_lock_mount+0x2b3/0x960
[  353.231726][   T31]  do_new_mount+0x483/0xd30
[  353.242919][   T31]  ? apparmor_capable+0x126/0x170
[  353.259026][   T31]  ? __pfx_do_new_mount+0x10/0x10
[  353.269038][   T31]  ? path_mount+0x690/0x10e0
[  353.281157][   T31]  ? user_path_at+0xd4/0x160
[  353.292703][   T31]  __se_sys_mount+0x31d/0x420
[  353.305357][   T31]  ? __pfx___se_sys_mount+0x10/0x10
[  353.326414][ T5925] usbhid 4-1:0.0: can't add hid device: -71
[  353.344134][   T31]  ? __x64_sys_mount+0x20/0xc0
[  353.361261][ T5925] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  353.373356][   T31]  do_syscall_64+0x14d/0xf80
[  353.383717][   T31]  ? trace_irq_disable+0x3b/0x150
[  353.402185][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  353.428873][   T31]  ? clear_bhb_loop+0x40/0x90
[  353.433930][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  353.446458][ T5925] usb 4-1: USB disconnect, device number 12
[  353.456453][   T31] RIP: 0033:0x7f5915b9c799
[  353.467681][   T31] RSP: 002b:00007f5916993028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  353.491763][   T31] RAX: ffffffffffffffda RBX: 00007f5915e16180 RCX: 00007f5915b9c799
[  353.510877][   T31] RDX: 0000200000000300 RSI: 00002000000001c0 RDI: 0000000000000000
[  353.528933][   T31] RBP: 00007f5915c32c99 R08: 0000000000000000 R09: 0000000000000000
[  353.548815][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  353.575108][   T31] R13: 00007f5915e16218 R14: 00007f5915e16180 R15: 00007ffd5497abd8
[  353.598743][   T31]  </TASK>
[  353.601950][   T31] 
[  353.601950][   T31] Showing all locks held in the system:
[  353.628871][   T31] 1 lock held by khungtaskd/31:
[  353.640148][   T31]  #0: ffffffff8e75d6a0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[  353.684700][   T31] 2 locks held by getty/5598:
[  353.689652][   T31]  #0: ffff888037e9f0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  353.699673][   T31]  #1: ffffc900032332e8 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x45c/0x13c0
[  353.710093][   T31] 3 locks held by syz.7.380/7654:
[  353.715285][   T31]  #0: ffff888036a6a410 (sb_writers#5){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90
[  353.725481][   T31]  #1: ffff88803228a120 (&type->i_mutex_dir_key#5/1){+.+.}-{4:4}, at: filename_unlinkat+0x2a7/0x610
[  353.737966][   T31]  #2: ffff88807c89cc00 (&sb->s_type->i_mutex_key#15){+.+.}-{4:4}, at: vfs_unlink+0xed/0x6c0
[  353.749166][   T31] 1 lock held by syz.7.380/7656:
[  353.754627][   T31]  #0: ffff88807c89cc00 (&sb->s_type->i_mutex_key#15){+.+.}-{4:4}, at: do_lock_mount+0x2b3/0x960
[  353.765420][   T31] 1 lock held by syz-executor/8933:
[  353.770972][   T31]  #0: ffffffff8e7638e8 (rcu_state.exp_mutex){+.+.}-{4:4}, at: synchronize_rcu_expedited+0x2d0/0x770
[  353.800681][   T31] 1 lock held by syz.4.814/9427:
[  353.808715][   T31] 4 locks held by dhcpcd-run-hook/9557:
[  353.828803][   T31] 
[  353.832023][   T31] =============================================
[  353.832023][   T31] 
[  353.832111][ T8933] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  353.842014][   T31] NMI backtrace for cpu 1
[  353.842033][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT(full) 
[  353.842050][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  353.842059][   T31] Call Trace:
[  353.842065][   T31]  <TASK>
[  353.842072][   T31]  dump_stack_lvl+0xe8/0x150
[  353.842100][   T31]  nmi_cpu_backtrace+0x274/0x2d0
[  353.842122][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  353.842145][   T31]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[  353.842169][   T31]  sys_info+0x135/0x170
[  353.842187][   T31]  watchdog+0x1002/0x1060
[  353.842211][   T31]  ? watchdog+0x1da/0x1060
[  353.842234][   T31]  kthread+0x388/0x470
[  353.842252][   T31]  ? __pfx_watchdog+0x10/0x10
[  353.842268][   T31]  ? __pfx_kthread+0x10/0x10
[  353.842286][   T31]  ret_from_fork+0x51e/0xb90
[  353.842308][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  353.842327][   T31]  ? __switch_to+0xc7d/0x1450
[  353.842348][   T31]  ? __pfx_kthread+0x10/0x10
[  353.842366][   T31]  ret_from_fork_asm+0x1a/0x30
[  353.842394][   T31]  </TASK>
[  353.842400][   T31] Sending NMI from CPU 1 to CPUs 0:
[  353.964293][    C0] NMI backtrace for cpu 0
[  353.964310][    C0] CPU: 0 UID: 0 PID: 9472 Comm: syz.2.747 Not tainted syzkaller #0 PREEMPT(full) 
[  353.964328][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  353.964337][    C0] RIP: 0010:kasan_check_range+0x253/0x2c0
[  353.964362][    C0] Code: ef 30 bb 07 00 00 00 45 84 ff 75 7d 4d 01 f3 49 01 db 4d 89 dc 4d 85 db 74 84 4d 01 d1 4d 39 cc 75 11 41 83 e0 07 45 0f be 09 <45> 39 c8 0f 8c 6b ff ff ff 0f b6 d2 e8 3c f0 ff ff 34 01 e9 5c ff
[  353.964375][    C0] RSP: 0018:ffffc9000456f508 EFLAGS: 00000006
[  353.964389][    C0] RAX: 00000000ffffff01 RBX: ffffffffffffffff RCX: ffffffff81a3447b
[  353.964400][    C0] RDX: 0000000000000001 RSI: 0000000000000004 RDI: ffffc9000456f580
[  353.964410][    C0] RBP: ffffc9000456f600 R08: 0000000000000003 R09: 0000000000000004
[  353.964420][    C0] R10: dffffc0000000000 R11: fffff520008adeb0 R12: fffff520008adeb0
[  353.964431][    C0] R13: ffff88807a89ab88 R14: fffff520008adeb1 R15: 1ffff920008adeb0
[  353.964442][    C0] FS:  00007ff915afc6c0(0000) GS:ffff888125436000(0000) knlGS:0000000000000000
[  353.964456][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  353.964466][    C0] CR2: 0000200000e0e030 CR3: 000000003504a000 CR4: 00000000003526f0
[  353.964480][    C0] Call Trace:
[  353.964485][    C0]  <TASK>
[  353.964494][    C0]  do_raw_spin_lock+0x12b/0x2f0
[  353.964516][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  353.964537][    C0]  ? rcu_is_watching+0x15/0xb0
[  353.964554][    C0]  _raw_spin_lock_irqsave+0x4c/0x60
[  353.964571][    C0]  __skb_try_recv_datagram+0x14a/0x4d0
[  353.964599][    C0]  ? __pfx_sk_busy_loop_end+0x10/0x10
[  353.964620][    C0]  __unix_dgram_recvmsg+0x2e3/0xd60
[  353.964644][    C0]  ? __pfx___unix_dgram_recvmsg+0x10/0x10
[  353.964664][    C0]  ? irqentry_exit+0x61a/0x700
[  353.964681][    C0]  ? trace_irq_disable+0x3b/0x150
[  353.964705][    C0]  ? unix_dgram_recvmsg+0xae/0xd0
[  353.964727][    C0]  ? __pfx_unix_dgram_recvmsg+0x10/0x10
[  353.964750][    C0]  sock_recvmsg_nosec+0x10c/0x140
[  353.964767][    C0]  ____sys_recvmsg+0x245/0x510
[  353.964791][    C0]  ? __pfx_____sys_recvmsg+0x10/0x10
[  353.964818][    C0]  ? import_iovec+0x73/0xa0
[  353.964837][    C0]  ___sys_recvmsg+0x215/0x590
[  353.964857][    C0]  ? __lock_acquire+0x6b5/0x2cf0
[  353.964886][    C0]  ? __pfx____sys_recvmsg+0x10/0x10
[  353.964923][    C0]  do_recvmmsg+0x334/0x800
[  353.964947][    C0]  ? __pfx_do_recvmmsg+0x10/0x10
[  353.964967][    C0]  ? file_init_path+0x3b/0x590
[  353.964992][    C0]  ? __pfx_do_futex+0x10/0x10
[  353.965014][    C0]  __x64_sys_recvmmsg+0x198/0x250
[  353.965036][    C0]  ? __pfx___x64_sys_recvmmsg+0x10/0x10
[  353.965063][    C0]  do_syscall_64+0x14d/0xf80
[  353.965081][    C0]  ? trace_irq_disable+0x3b/0x150
[  353.965104][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  353.965120][    C0]  ? clear_bhb_loop+0x40/0x90
[  353.965137][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  353.965152][    C0] RIP: 0033:0x7ff914b9c799
[  353.965165][    C0] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  353.965177][    C0] RSP: 002b:00007ff915afc028 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  353.965191][    C0] RAX: ffffffffffffffda RBX: 00007ff914e16090 RCX: 00007ff914b9c799
[  353.965202][    C0] RDX: 00000000080002c1 RSI: 0000200000000040 RDI: 0000000000000003
[  353.965212][    C0] RBP: 00007ff914c32c99 R08: 0000000000000000 R09: 0000000000000000
[  353.965222][    C0] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  353.965231][    C0] R13: 00007ff914e16128 R14: 00007ff914e16090 R15: 00007ffc24e01288
[  353.965249][    C0]  </TASK>
[  354.333024][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[  354.339911][   T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT(full) 
[  354.349046][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  354.359125][   T31] Call Trace:
[  354.362476][   T31]  <TASK>
[  354.365475][   T31]  vpanic+0x56c/0xa60
[  354.369527][   T31]  ? __pfx___schedule+0x10/0x10
[  354.374427][   T31]  ? __pfx_vpanic+0x10/0x10
[  354.379048][   T31]  ? nmi_trigger_cpumask_backtrace+0x1f4/0x300
[  354.385402][   T31]  panic+0xc5/0xd0
[  354.389144][   T31]  ? __pfx_panic+0x10/0x10
[  354.393587][   T31]  ? preempt_schedule_thunk+0x16/0x30
[  354.399156][   T31]  ? nmi_trigger_cpumask_backtrace+0x2bb/0x300
[  354.405594][   T31]  watchdog+0x105b/0x1060
[  354.410023][   T31]  ? watchdog+0x1da/0x1060
[  354.414449][   T31]  kthread+0x388/0x470
[  354.418602][   T31]  ? __pfx_watchdog+0x10/0x10
[  354.423295][   T31]  ? __pfx_kthread+0x10/0x10
[  354.427905][   T31]  ret_from_fork+0x51e/0xb90
[  354.432490][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[  354.437597][   T31]  ? __switch_to+0xc7d/0x1450
[  354.442278][   T31]  ? __pfx_kthread+0x10/0x10
[  354.446855][   T31]  ret_from_fork_asm+0x1a/0x30
[  354.451805][   T31]  </TASK>
[  354.455991][   T31] Kernel Offset: disabled
[  354.460314][   T31] Rebooting in 86400 seconds..