80f tx timeout
[  303.781193] Bluetooth: hci0: command 0x080f tx timeout
[  309.483820] loop7: detected capacity change from 0 to 264192
00:49:22 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
openat(0xffffffffffffffff, &(0x7f00000002c0)='./file1\x00', 0x220000, 0x20)
r1 = open(&(0x7f0000000240)='./file1\x00', 0x30600, 0x100)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
pidfd_getfd(r1, r2, 0x0)
syz_io_uring_setup(0x6769, &(0x7f0000000140), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f00000001c0))
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000002, 0x13, r3, 0x0)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:49:22 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
ioctl$LOOP_SET_FD(r3, 0x4c00, r4)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:49:22 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
ioctl$LOOP_SET_FD(r3, 0x4c00, r4)

00:49:22 executing program 2:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x100088c, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:49:22 executing program 0:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x100088c, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:49:22 executing program 7:
syz_mount_image$msdos(&(0x7f0000000080), 0x0, 0xffffffffffff0001, 0x3, &(0x7f0000000280)=[{&(0x7f0000000100)="aa57f4b9e80b68f73ad8d37ed16b73f0f1e8f0ad977ae00b86ddd0d81c4ea752c874f3f2156e747cb1f3a6c6be2d1f8d59b61546a8c478fd36f40685b7183e956ad39d2da432328a0d22820edd93", 0x4e, 0x61}, {&(0x7f0000000180)="2d110d487613842e430ef6a0", 0xc, 0x9}, {&(0x7f00000001c0)="1fb5d9aa0c0d02d0d02b411ea5c0510452c3f5c2813c13f86e173b71c8a95b727331e78665733d2ae895babc2cf70f8d323c14a772db4aaa11d2d3bff2fd63d1a28279b27050c514a18a75e7955a539f4ff8d574dca341216511623805c18e277e0ff672ff67ceb9b51664c776aed1d7b8037d60ee4a2e591f7400e75cd2be93b38a7e653beb8521b28d890540573d73e1eaea70fa8d0945a7cd2a61275a394d331905908fc6bdaa3aec5ecdbddbc5bc7f2b0ba91a5e99c55bedfdf8", 0xbc, 0x100}], 0x100088c, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:49:22 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
openat(0xffffffffffffffff, &(0x7f00000002c0)='./file1\x00', 0x220000, 0x20)
r1 = open(&(0x7f0000000240)='./file1\x00', 0x30600, 0x100)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
pidfd_getfd(r1, r2, 0x0)
syz_io_uring_setup(0x6769, &(0x7f0000000140), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f00000001c0))
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x2000002, 0x13, r3, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:49:22 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
ioctl$LOOP_SET_FD(r3, 0x4c00, r4)

[  309.512394] loop5: detected capacity change from 0 to 4097
[  309.516616] loop6: detected capacity change from 0 to 4097
[  309.546953] FAT-fs (loop0): Unrecognized mount option "fsname=%:" or missing value
00:49:22 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
openat(0xffffffffffffffff, &(0x7f00000002c0)='./file1\x00', 0x220000, 0x20)
r1 = open(&(0x7f0000000240)='./file1\x00', 0x30600, 0x100)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
pidfd_getfd(r1, r2, 0x0)
syz_io_uring_setup(0x6769, &(0x7f0000000140), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f00000001c0))
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:49:22 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:49:22 executing program 2:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x100088c, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:49:22 executing program 7:
syz_mount_image$msdos(&(0x7f0000000080), 0x0, 0xffffffffffff0001, 0x3, &(0x7f0000000280)=[{&(0x7f0000000100)="aa57f4b9e80b68f73ad8d37ed16b73f0f1e8f0ad977ae00b86ddd0d81c4ea752c874f3f2156e747cb1f3a6c6be2d1f8d59b61546a8c478fd36f40685b7183e956ad39d2da432328a0d22820edd93", 0x4e, 0x61}, {&(0x7f0000000180)="2d110d487613842e430ef6a0", 0xc, 0x9}, {&(0x7f00000001c0)="1fb5d9aa0c0d02d0d02b411ea5c0510452c3f5c2813c13f86e173b71c8a95b727331e78665733d2ae895babc2cf70f8d323c14a772db4aaa11d2d3bff2fd63d1a28279b27050c514a18a75e7955a539f4ff8d574dca341216511623805c18e277e0ff672ff67ceb9b51664c776aed1d7b8037d60ee4a2e591f7400e75cd2be93b38a7e653beb8521b28d890540573d73e1eaea70fa8d0945a7cd2a61275a394d331905908fc6bdaa3aec5ecdbddbc5bc7f2b0ba91a5e99c55bedfdf8", 0xbc, 0x100}], 0x100088c, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:49:22 executing program 0:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:49:22 executing program 5:
r0 = creat(&(0x7f0000000840)='./file0\x00', 0x0)
mount$cgroup(0x0, &(0x7f0000000980)='./file0\x00', &(0x7f00000009c0), 0x1202c01, &(0x7f0000000000)={[{@none}, {}], [{@smackfsroot={'smackfsroot', 0x3d, 'all'}}]})
sendfile(r0, r0, &(0x7f0000000040)=0x800, 0x38d)

00:49:22 executing program 2:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000280)=[{&(0x7f0000000100)="aa57f4b9e80b68f73ad8d37ed16b73f0f1e8f0ad977ae00b86ddd0d81c4ea752c874f3f2156e747cb1f3a6c6be2d1f8d59b61546a8c478fd36f40685b7183e956ad39d2da432328a0d22820edd93", 0x4e, 0x61}, {&(0x7f0000000180)="2d110d487613842e430ef6a0", 0xc, 0x9}], 0x100088c, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

[  309.722716] loop7: detected capacity change from 0 to 264192
[  309.739019] loop6: detected capacity change from 0 to 4097
[  309.766302] FAT-fs (loop2): Unrecognized mount option "fsname=%:" or missing value
[  309.773621] FAT-fs (loop0): Unrecognized mount option "fsname=%:" or missing value
00:49:22 executing program 7:
syz_mount_image$msdos(&(0x7f0000000080), 0x0, 0xffffffffffff0001, 0x3, &(0x7f0000000280)=[{&(0x7f0000000100)="aa57f4b9e80b68f73ad8d37ed16b73f0f1e8f0ad977ae00b86ddd0d81c4ea752c874f3f2156e747cb1f3a6c6be2d1f8d59b61546a8c478fd36f40685b7183e956ad39d2da432328a0d22820edd93", 0x4e, 0x61}, {&(0x7f0000000180)="2d110d487613842e430ef6a0", 0xc, 0x9}, {&(0x7f00000001c0)="1fb5d9aa0c0d02d0d02b411ea5c0510452c3f5c2813c13f86e173b71c8a95b727331e78665733d2ae895babc2cf70f8d323c14a772db4aaa11d2d3bff2fd63d1a28279b27050c514a18a75e7955a539f4ff8d574dca341216511623805c18e277e0ff672ff67ceb9b51664c776aed1d7b8037d60ee4a2e591f7400e75cd2be93b38a7e653beb8521b28d890540573d73e1eaea70fa8d0945a7cd2a61275a394d331905908fc6bdaa3aec5ecdbddbc5bc7f2b0ba91a5e99c55bedfdf8", 0xbc, 0x100}], 0x100088c, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:49:22 executing program 0:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0)

00:49:22 executing program 2:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000280)=[{&(0x7f0000000100)="aa57f4b9e80b68f73ad8d37ed16b73f0f1e8f0ad977ae00b86ddd0d81c4ea752c874f3f2156e747cb1f3a6c6be2d1f8d59b61546a8c478fd36f40685b7183e956ad39d2da432328a0d22820edd93", 0x4e, 0x61}], 0x100088c, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

[  309.834997] loop7: detected capacity change from 0 to 264192
[  309.879637] FAT-fs (loop2): Unrecognized mount option "fsname=%:" or missing value
[  311.526185] Bluetooth: hci0: command 0x080f tx timeout
[  313.573174] Bluetooth: hci0: command 0x080f tx timeout
[  315.621169] Bluetooth: hci0: command 0x080f tx timeout
[  317.669172] Bluetooth: hci0: command 0x080f tx timeout
[  325.832411] loop7: detected capacity change from 0 to 1
00:49:38 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
ioctl$LOOP_SET_FD(r3, 0x4c00, r4)

00:49:38 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)

00:49:38 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000280)=[{&(0x7f0000000100)="aa57f4b9e80b68f73ad8d37ed16b73f0f1e8f0ad977ae00b86ddd0d81c4ea752c874f3f2156e747cb1f3a6c6be2d1f8d59b61546a8c478fd36f40685b7183e956ad39d2da432328a0d22820edd93", 0x4e, 0x61}, {&(0x7f0000000180)="2d110d487613842e430ef6a0", 0xc, 0x9}], 0x100088c, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:49:38 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
openat(0xffffffffffffffff, &(0x7f00000002c0)='./file1\x00', 0x220000, 0x20)
r1 = open(&(0x7f0000000240)='./file1\x00', 0x30600, 0x100)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
pidfd_getfd(r1, r2, 0x0)
syz_io_uring_setup(0x6769, &(0x7f0000000140), &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040), &(0x7f00000001c0))
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:49:38 executing program 7:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x3, &(0x7f0000000280)=[{&(0x7f0000000100)="aa57f4b9e80b68f73ad8d37ed16b73f0f1e8f0ad977ae00b86ddd0d81c4ea752c874f3f2156e747cb1f3a6c6be2d1f8d59b61546a8c478fd36f40685b7183e956ad39d2da432328a0d22820edd93", 0x4e, 0x61}, {&(0x7f0000000180)="2d110d487613842e430ef6a0", 0xc, 0x9}, {&(0x7f00000001c0)="1fb5d9aa0c0d02d0d02b411ea5c0510452c3f5c2813c13f86e173b71c8a95b727331e78665733d2ae895babc2cf70f8d323c14a772db4aaa11d2d3bff2fd63d1a28279b27050c514a18a75e7955a539f4ff8d574dca341216511623805c18e277e0ff672ff67ceb9b51664c776aed1d7b8037d60ee4a2e591f7400e75cd2be93b38a7e653beb8521b28d890540573d73e1eaea70fa8d0945a7cd2a61275a394d331905908fc6bdaa3aec5ecdbddbc5bc7f2b0ba91a5e99c55bedfdf8", 0xbc, 0x100}], 0x100088c, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:49:38 executing program 0:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0)

00:49:38 executing program 2:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x100088c, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:49:38 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

[  325.848504] FAT-fs (loop7): Unrecognized mount option "fsname=%:" or missing value
[  325.889805] FAT-fs (loop2): Unrecognized mount option "fsname=%:" or missing value
[  325.907514] FAT-fs (loop5): Unrecognized mount option "fsname=%:" or missing value
00:49:38 executing program 7:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x100088c, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

[  325.926412] loop6: detected capacity change from 0 to 4097
00:49:38 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000280)=[{&(0x7f0000000100)="aa57f4b9e80b68f73ad8d37ed16b73f0f1e8f0ad977ae00b86ddd0d81c4ea752c874f3f2156e747cb1f3a6c6be2d1f8d59b61546a8c478fd36f40685b7183e956ad39d2da432328a0d22820edd93", 0x4e, 0x61}, {&(0x7f0000000180)="2d110d487613842e430ef6a0", 0xc, 0x9}], 0x100088c, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:49:38 executing program 0:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0)

00:49:38 executing program 7:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x100088c, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:49:38 executing program 2:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

[  326.093430] FAT-fs (loop2): Unrecognized mount option "fsname=%:" or missing value
[  326.117320] FAT-fs (loop5): Unrecognized mount option "fsname=%:" or missing value
00:49:38 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:49:38 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)

00:49:38 executing program 2:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0)

[  327.910175] Bluetooth: hci0: command 0x080f tx timeout
[  329.957176] Bluetooth: hci0: command 0x080f tx timeout
[  332.005267] Bluetooth: hci0: command 0x080f tx timeout
[  334.054180] Bluetooth: hci0: command 0x080f tx timeout
[  336.102156] Bluetooth: hci0: command 0x080f tx timeout
00:49:52 executing program 0:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:49:52 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:49:52 executing program 7:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x100088c, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:49:52 executing program 2:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0)

00:49:52 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
openat(0xffffffffffffffff, &(0x7f00000002c0)='./file1\x00', 0x220000, 0x20)
r1 = open(&(0x7f0000000240)='./file1\x00', 0x30600, 0x100)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
pidfd_getfd(r1, r2, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:49:52 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000280)=[{&(0x7f0000000100)="aa57f4b9e80b68f73ad8d37ed16b73f0f1e8f0ad977ae00b86ddd0d81c4ea752c874f3f2156e747cb1f3a6c6be2d1f8d59b61546a8c478fd36f40685b7183e956ad39d2da432328a0d22820edd93", 0x4e, 0x61}, {&(0x7f0000000180)="2d110d487613842e430ef6a0", 0xc, 0x9}], 0x100088c, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:49:52 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:49:52 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

[  339.661813] FAT-fs (loop5): Unrecognized mount option "fsname=%:" or missing value
[  339.670172] FAT-fs (loop0): Unrecognized mount option "fsname=%:" or missing value
00:49:52 executing program 2:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0)

[  339.722901] loop6: detected capacity change from 0 to 4097
00:49:52 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)

00:49:52 executing program 7:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000280)=[{&(0x7f0000000100)="aa57f4b9e80b68f73ad8d37ed16b73f0f1e8f0ad977ae00b86ddd0d81c4ea752c874f3f2156e747cb1f3a6c6be2d1f8d59b61546a8c478fd36f40685b7183e956ad39d2da432328a0d22820edd93", 0x4e, 0x61}, {&(0x7f0000000180)="2d110d487613842e430ef6a0", 0xc, 0x9}], 0x100088c, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

[  339.846011] FAT-fs (loop7): Unrecognized mount option "fsname=%:" or missing value
[  341.733152] Bluetooth: hci0: command 0x080f tx timeout
[  343.782177] Bluetooth: hci0: command 0x080f tx timeout
[  345.829172] Bluetooth: hci0: command 0x080f tx timeout
[  347.877177] Bluetooth: hci0: command 0x080f tx timeout
00:50:08 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)

00:50:08 executing program 0:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:50:08 executing program 7:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000280)=[{&(0x7f0000000100)="aa57f4b9e80b68f73ad8d37ed16b73f0f1e8f0ad977ae00b86ddd0d81c4ea752c874f3f2156e747cb1f3a6c6be2d1f8d59b61546a8c478fd36f40685b7183e956ad39d2da432328a0d22820edd93", 0x4e, 0x61}], 0x100088c, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:50:08 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
openat(0xffffffffffffffff, &(0x7f00000002c0)='./file1\x00', 0x220000, 0x20)
open(&(0x7f0000000240)='./file1\x00', 0x30600, 0x100)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r1, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:50:08 executing program 5:
syz_mount_image$msdos(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000280)=[{&(0x7f0000000100)="aa57f4b9e80b68f73ad8d37ed16b73f0f1e8f0ad977ae00b86ddd0d81c4ea752c874f3f2156e747cb1f3a6c6be2d1f8d59b61546a8c478fd36f40685b7183e956ad39d2da432328a0d22820edd93", 0x4e, 0x61}, {&(0x7f0000000180)="2d110d487613842e430ef6a0", 0xc, 0x9}], 0x100088c, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:50:08 executing program 2:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:50:08 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:50:08 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

[  355.407820] FAT-fs (loop0): Unrecognized mount option "fsname=%:" or missing value
[  355.414613] FAT-fs (loop7): Unrecognized mount option "fsname=%:" or missing value
[  355.418451] loop6: detected capacity change from 0 to 4097
[  355.421543] FAT-fs (loop2): Unrecognized mount option "fsname=%:" or missing value
00:50:08 executing program 0:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[], [{@fsname={'fsname', 0x3d, '%:'}}]})

[  355.487690] FAT-fs (loop0): Unrecognized mount option "fsname=%:" or missing value
00:50:08 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
openat(0xffffffffffffffff, &(0x7f00000002c0)='./file1\x00', 0x220000, 0x20)
open(&(0x7f0000000240)='./file1\x00', 0x30600, 0x100)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

[  355.591811] loop6: detected capacity change from 0 to 4097
[  357.478176] Bluetooth: hci0: command 0x080f tx timeout
[  359.525279] Bluetooth: hci0: command 0x080f tx timeout
[  361.573171] Bluetooth: hci0: command 0x080f tx timeout
00:50:21 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:50:21 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
openat(0xffffffffffffffff, &(0x7f00000002c0)='./file1\x00', 0x220000, 0x20)
open(&(0x7f0000000240)='./file1\x00', 0x30600, 0x100)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:50:21 executing program 7:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x100088c, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:50:21 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:50:21 executing program 5:
syz_mount_image$msdos(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000280)=[{&(0x7f0000000100)="aa57f4b9e80b68f73ad8d37ed16b73f0f1e8f0ad977ae00b86ddd0d81c4ea752c874f3f2156e747cb1f3a6c6be2d1f8d59b61546a8c478fd36f40685b7183e956ad39d2da432328a0d22820edd93", 0x4e, 0x61}, {&(0x7f0000000180)="2d110d487613842e430ef6a0", 0xc, 0x9}], 0x100088c, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:50:21 executing program 0:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:50:21 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:50:21 executing program 2:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}], [{@fsname={'fsname', 0x3d, '%:'}}]})

[  369.016981] FAT-fs (loop7): Unrecognized mount option "fsname=%:" or missing value
[  369.017437] FAT-fs (loop0): Unrecognized mount option "fsname=%:" or missing value
00:50:21 executing program 5:
syz_mount_image$msdos(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000280)=[{&(0x7f0000000100)="aa57f4b9e80b68f73ad8d37ed16b73f0f1e8f0ad977ae00b86ddd0d81c4ea752c874f3f2156e747cb1f3a6c6be2d1f8d59b61546a8c478fd36f40685b7183e956ad39d2da432328a0d22820edd93", 0x4e, 0x61}, {&(0x7f0000000180)="2d110d487613842e430ef6a0", 0xc, 0x9}], 0x100088c, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:50:21 executing program 7:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:50:21 executing program 0:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[], [{@fsname={'fsname', 0x3d, '%:'}}]})

[  369.098417] loop6: detected capacity change from 0 to 4097
[  369.102978] FAT-fs (loop2): Unrecognized mount option "fsname=%:" or missing value
00:50:21 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[  369.153310] FAT-fs (loop0): Unrecognized mount option "fsname=%:" or missing value
00:50:21 executing program 0:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}], [{@fsname={'fsname', 0x3d, '%:'}}]})

[  369.197035] FAT-fs (loop7): Unrecognized mount option "fsname=%:" or missing value
[  369.220919] FAT-fs (loop0): Unrecognized mount option "fsname=%:" or missing value
00:50:21 executing program 2:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:50:21 executing program 0:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

00:50:22 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
openat(0xffffffffffffffff, &(0x7f00000002c0)='./file1\x00', 0x220000, 0x20)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:50:22 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), 0x0, 0x0, 0x2, &(0x7f0000000280)=[{&(0x7f0000000100)="aa57f4b9e80b68f73ad8d37ed16b73f0f1e8f0ad977ae00b86ddd0d81c4ea752c874f3f2156e747cb1f3a6c6be2d1f8d59b61546a8c478fd36f40685b7183e956ad39d2da432328a0d22820edd93", 0x4e, 0x61}, {&(0x7f0000000180)="2d110d487613842e430ef6a0", 0xc, 0x9}], 0x100088c, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

[  369.299573] FAT-fs (loop0): bogus number of reserved sectors
[  369.300295] FAT-fs (loop0): Can't find a valid FAT filesystem
[  369.309507] loop6: detected capacity change from 0 to 4097
00:50:22 executing program 7:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0)

[  369.343172] FAT-fs (loop2): Unrecognized mount option "fsname=%:" or missing value
00:50:22 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

[  369.420330] loop6: detected capacity change from 0 to 4097
[  371.046237] Bluetooth: hci0: command 0x080f tx timeout
[  373.093163] Bluetooth: hci0: command 0x080f tx timeout
[  375.141146] Bluetooth: hci0: command 0x080f tx timeout
[  377.189197] Bluetooth: hci0: command 0x080f tx timeout
00:50:37 executing program 2:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:50:37 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:50:37 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397f2b1bb3b5af60a2cfa1d88f4635990e7ea4590cd1c26ffcfeb5981e2f5f1558f4e45e978698f08952a3e594ee6c1a86605588755fc4527afc1793b6c63638d0208e496694f79f37830bc408e96605f2e568c54d9f1e30f6374f3488d9f0f9b0070f66111ba2d4206ae6269480d3e69960603062d921a91ac0e515e74868f3db09350af5e10d56aebcb7c83910db96583300feb7d08f7e892d3ac8560fc8a0e56cc4abce95c9e64d52845e07957ed95f516f04350"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:50:37 executing program 7:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0)

00:50:37 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), 0x0, 0x0, 0x2, &(0x7f0000000280)=[{&(0x7f0000000100)="aa57f4b9e80b68f73ad8d37ed16b73f0f1e8f0ad977ae00b86ddd0d81c4ea752c874f3f2156e747cb1f3a6c6be2d1f8d59b61546a8c478fd36f40685b7183e956ad39d2da432328a0d22820edd93", 0x4e, 0x61}, {&(0x7f0000000180)="2d110d487613842e430ef6a0", 0xc, 0x9}], 0x100088c, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:50:37 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:50:37 executing program 0:
syz_mount_image$msdos(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000280)=[{&(0x7f0000000100)="aa57f4b9e80b68f73ad8d37ed16b73f0f1e8f0ad977ae00b86ddd0d81c4ea752c874f3f2156e747cb1f3a6c6be2d1f8d59b61546a8c478fd36f40685b7183e956ad39d2da432328a0d22820edd93", 0x4e, 0x61}, {&(0x7f0000000180)="2d110d487613842e430ef6a0", 0xc, 0x9}], 0x100088c, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:50:37 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[  385.191422] FAT-fs (loop2): Unrecognized mount option "fsname=%:" or missing value
00:50:37 executing program 7:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0)

[  385.223949] loop6: detected capacity change from 0 to 4097
00:50:37 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397f2b1bb3b5af60a2cfa1d88f4635990e7ea4590cd1c26ffcfeb5981e2f5f1558f4e45e978698f08952a3e594ee6c1a86605588755fc4527afc1793b6c63638d0208e496694f79f37830bc408e96605f2e568c54d9f1e30f6374f3488d9f0f9b0070f66111ba2d4206ae6269480d3e69960603062d921a91ac0e515e74868f3db09350af5e10d56aebcb7c83910db96583300feb7d08f7e892d3ac8560fc8a0e56cc4abce95c9e64d52845e07957ed95f516f04350"], 0x1d)

00:50:37 executing program 0:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:50:38 executing program 2:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:50:38 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), 0x0, 0x0, 0x2, &(0x7f0000000280)=[{&(0x7f0000000100)="aa57f4b9e80b68f73ad8d37ed16b73f0f1e8f0ad977ae00b86ddd0d81c4ea752c874f3f2156e747cb1f3a6c6be2d1f8d59b61546a8c478fd36f40685b7183e956ad39d2da432328a0d22820edd93", 0x4e, 0x61}, {&(0x7f0000000180)="2d110d487613842e430ef6a0", 0xc, 0x9}], 0x100088c, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:50:38 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397f2b1bb3b5af60a2cfa1d88f4635990e7ea4590cd1c26ffcfeb5981e2f5f1558f4e45e978698f08952a3e594ee6c1a86605588755fc4527afc1793b6c63638d0208e496694f79f37830bc408e96605f2e568c54d9f1e30f6374f3488d9f0f9b0070f66111ba2d4206ae6269480d3e69960603062d921a91ac0e515e74868f3db09350af5e10d56aebcb7c83910db96583300feb7d08f7e892d3ac8560fc8a0e56cc4abce95c9e64d52845e07957ed95f516f04350"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[  385.317197] FAT-fs (loop2): Unrecognized mount option "fsname=%:" or missing value
00:50:38 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

[  385.400833] loop6: detected capacity change from 0 to 4097
[  387.173153] Bluetooth: hci0: command 0x080f tx timeout
[  389.221169] Bluetooth: hci0: command 0x080f tx timeout
[  391.270146] Bluetooth: hci0: command 0x080f tx timeout
[  393.317175] Bluetooth: hci0: command 0x080f tx timeout
[  395.365143] Bluetooth: hci0: command 0x080f tx timeout
[  397.413128] Bluetooth: hci0: command 0x080f tx timeout
00:50:51 executing program 0:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:50:51 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))

00:50:51 executing program 7:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:50:51 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:50:51 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x100088c, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:50:51 executing program 2:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:50:51 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:50:51 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[  399.111863] FAT-fs (loop2): Unrecognized mount option "fsname=%:" or missing value
00:50:51 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x100088c, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

[  399.150762] loop6: detected capacity change from 0 to 4097
00:50:51 executing program 2:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

[  399.157233] FAT-fs (loop7): Unrecognized mount option "fsname=%:" or missing value
00:50:51 executing program 0:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

[  399.205153] FAT-fs (loop2): bogus number of reserved sectors
[  399.205839] FAT-fs (loop2): Can't find a valid FAT filesystem
00:50:51 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
writev(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:50:51 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:50:51 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x100088c, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:50:51 executing program 7:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}], [{@fsname={'fsname', 0x3d, '%:'}}]})

[  399.284566] FAT-fs (loop7): Unrecognized mount option "fsname=%:" or missing value
[  401.126187] Bluetooth: hci0: command 0x080f tx timeout
[  403.173143] Bluetooth: hci0: command 0x080f tx timeout
[  405.221201] Bluetooth: hci0: command 0x080f tx timeout
[  407.269239] Bluetooth: hci0: command 0x080f tx timeout
[  409.317138] Bluetooth: hci0: command 0x080f tx timeout
[  411.365167] Bluetooth: hci0: command 0x080f tx timeout
00:51:07 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
writev(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:51:07 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:51:07 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:51:07 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000280)=[{&(0x7f0000000100)="aa57f4b9e80b68f73ad8d37ed16b73f0f1e8f0ad977ae00b86ddd0d81c4ea752c874f3f2156e747cb1f3a6c6be2d1f8d59b61546a8c478fd36f40685b7183e956ad39d2da432328a0d22820edd93", 0x4e, 0x61}], 0x100088c, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:51:07 executing program 7:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:51:07 executing program 0:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397f2b1bb3b5af60a2cfa1d88f4635990e7ea4590cd1c26ffcfeb5981e2f5f1558f4e45e978698f08952a3e594ee6c1a86605588755fc4527afc1793b6c63638d0208e496694f79f37830bc408e96605f2e568c54d9f1e30f6374f3488d9f0f9b0070f66111ba2d4206ae6269480d3e69960603062d921a91ac0e515e74868f3db09350af5e10d56aebcb7c83910db96583300feb7d08f7e892d3ac8560fc8a0e56cc4abce95c9e64d52845e07957ed95f516f04350"], 0x1d)

00:51:07 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))

00:51:07 executing program 2:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[  414.763956] FAT-fs (loop7): Unrecognized mount option "fsname=%:" or missing value
[  414.786163] FAT-fs (loop5): Unrecognized mount option "fsname=%:" or missing value
00:51:07 executing program 7:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:51:07 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:51:07 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x100088c, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

[  414.936323] FAT-fs (loop7): Unrecognized mount option "fsname=%:" or missing value
[  414.982042] FAT-fs (loop5): Unrecognized mount option "fsname=%:" or missing value
00:51:07 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:51:07 executing program 7:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[], [{@fsname={'fsname', 0x3d, '%:'}}]})

[  415.073835] loop6: detected capacity change from 0 to 4097
[  415.079314] FAT-fs (loop7): Unrecognized mount option "fsname=%:" or missing value
[  416.809872] Bluetooth: hci0: command 0x080f tx timeout
[  418.853152] Bluetooth: hci0: command 0x080f tx timeout
[  420.901128] Bluetooth: hci0: command 0x080f tx timeout
[  422.949330] Bluetooth: hci0: command 0x080f tx timeout
[  424.997138] Bluetooth: hci0: command 0x080f tx timeout
00:51:21 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:51:21 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
writev(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:51:21 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:51:21 executing program 0:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)

00:51:21 executing program 7:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}], [{@fsname={'fsname', 0x3d, '%:'}}]})

[  428.953571] loop6: detected capacity change from 0 to 4097
00:51:21 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

[  428.955435] FAT-fs (loop7): Unrecognized mount option "fsname=%:" or missing value
00:51:21 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))

00:51:21 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397f2b1bb3b5af60a2cfa1d88f4635990e7ea4590cd1c26ffcfeb5981e2f5f1558f4e45e978698f08952a3e594ee6c1a86605588755fc4527afc1793b6c63638d0208e496694f79f37830bc408e96605f2e568c54d9f1e30f6374f3488d9f0f9b0070f66111ba2d4206ae6269480d3e69960603062d921a91ac0e515e74868f3db09350af5e10d56aebcb7c83910db96583300feb7d08f7e892d3ac8560fc8a0e56cc4abce95c9e64d52845e07957ed95f516f04350"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:51:21 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))

[  428.992978] FAT-fs (loop5): Unrecognized mount option "fsname=%:" or missing value
[  429.010394] loop2: detected capacity change from 0 to 4097
00:51:21 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
writev(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:51:21 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:51:21 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0)

[  429.071575] loop6: detected capacity change from 0 to 4097
00:51:21 executing program 7:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

00:51:21 executing program 2:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397f2b1bb3b5af60a2cfa1d88f4635990e7ea4590cd1c26ffcfeb5981e2f5f1558f4e45e978698f08952a3e594ee6c1a86605588755fc4527afc1793b6c63638d0208e496694f79f37830bc408e96605f2e568c54d9f1e30f6374f3488d9f0f9b0070f66111ba2d4206ae6269480d3e69960603062d921a91ac0e515e74868f3db09350af5e10d56aebcb7c83910db96583300feb7d08f7e892d3ac8560fc8a0e56cc4abce95c9e64d52845e07957ed95f516f04350"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[  429.116938] FAT-fs (loop7): bogus number of reserved sectors
[  429.118314] FAT-fs (loop7): Can't find a valid FAT filesystem
00:51:21 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0)

00:51:21 executing program 6:
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:51:21 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0)

[  429.234744] loop6: detected capacity change from 0 to 4097
00:51:22 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:51:22 executing program 7:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:51:22 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:51:22 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))

[  429.868962] FAT-fs (loop5): Unrecognized mount option "fsname=%:" or missing value
00:51:22 executing program 6:
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:51:22 executing program 0:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)

00:51:22 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397f2b1bb3b5af60a2cfa1d88f4635990e7ea4590cd1c26ffcfeb5981e2f5f1558f4e45e978698f08952a3e594ee6c1a86605588755fc4527afc1793b6c63638d0208e496694f79f37830bc408e96605f2e568c54d9f1e30f6374f3488d9f0f9b0070f66111ba2d4206ae6269480d3e69960603062d921a91ac0e515e74868f3db09350af5e10d56aebcb7c83910db96583300feb7d08f7e892d3ac8560fc8a0e56cc4abce95c9e64d52845e07957ed95f516f04350"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
writev(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[  429.936528] loop6: detected capacity change from 0 to 4097
00:51:22 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))

00:51:22 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:51:22 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))

[  430.031971] FAT-fs (loop5): Unrecognized mount option "fsname=%:" or missing value
00:51:22 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))

00:51:22 executing program 6:
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

[  430.117398] loop6: detected capacity change from 0 to 4097
[  431.058805] Bluetooth: hci0: command 0x080f tx timeout
[  433.061144] Bluetooth: hci0: command 0x080f tx timeout
[  435.109128] Bluetooth: hci0: command 0x080f tx timeout
[  437.157366] Bluetooth: hci0: command 0x080f tx timeout
[  439.206172] Bluetooth: hci0: command 0x080f tx timeout
[  441.254148] Bluetooth: hci0: command 0x080f tx timeout
[  443.301162] Bluetooth: hci0: command 0x080f tx timeout
00:51:36 executing program 2:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:51:36 executing program 0:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:51:36 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:51:36 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
writev(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:51:36 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:51:36 executing program 6:
openat(0xffffffffffffff9c, 0x0, 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:51:36 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:51:36 executing program 3:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))

[  444.236994] FAT-fs (loop5): Unrecognized mount option "fsname=%:" or missing value
[  444.239426] loop6: detected capacity change from 0 to 4097
[  444.269643] loop7: detected capacity change from 0 to 4097
00:51:37 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:51:37 executing program 6:
openat(0xffffffffffffff9c, 0x0, 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

[  444.348442] FAT-fs (loop5): Unrecognized mount option "fsname=%:" or missing value
00:51:37 executing program 7:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:51:37 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[], [{@fsname={'fsname', 0x3d, '%:'}}]})

[  444.425511] FAT-fs (loop7): Unrecognized mount option "fsname=%:" or missing value
[  444.453458] FAT-fs (loop5): Unrecognized mount option "fsname=%:" or missing value
00:51:37 executing program 7:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)

00:51:37 executing program 6:
openat(0xffffffffffffff9c, 0x0, 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:51:37 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}], [{@fsname={'fsname', 0x3d, '%:'}}]})

[  444.585225] FAT-fs (loop5): Unrecognized mount option "fsname=%:" or missing value
[  444.586365] loop6: detected capacity change from 0 to 4097
00:51:37 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

[  444.668406] FAT-fs (loop5): bogus number of reserved sectors
[  444.669761] FAT-fs (loop5): Can't find a valid FAT filesystem
[  445.349356] Bluetooth: hci0: command 0x080f tx timeout
[  447.397220] Bluetooth: hci0: command 0x080f tx timeout
[  449.445160] Bluetooth: hci0: command 0x080f tx timeout
[  451.494184] Bluetooth: hci0: command 0x080f tx timeout
[  453.541206] Bluetooth: hci0: command 0x080f tx timeout
[  455.589222] Bluetooth: hci0: command 0x080f tx timeout
[  457.639968] Bluetooth: hci0: command 0x080f tx timeout
[  459.685126] Bluetooth: hci0: command 0x080f tx timeout
00:51:52 executing program 2:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:51:52 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:51:52 executing program 0:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:51:52 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:51:52 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:51:52 executing program 5:
openat(0xffffffffffffff9c, 0x0, 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:51:52 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))

00:51:52 executing program 7:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)

[  459.930602] loop6: detected capacity change from 0 to 4097
[  459.953327] loop5: detected capacity change from 0 to 4097
00:51:52 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:51:52 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x2, &(0x7f0000000280)=[{&(0x7f0000000100)="aa57f4b9e80b68f73ad8d37ed16b73f0f1e8f0ad977ae00b86ddd0d81c4ea752c874f3f2156e747cb1f3a6c6be2d1f8d59b61546a8c478fd36f40685b7183e956ad39d2da432328a0d22820edd93", 0x4e, 0x61}, {&(0x7f0000000180)="2d110d487613842e430ef6a0", 0xc, 0x9}], 0x100088c, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:51:52 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

[  460.047782] FAT-fs (loop5): Unrecognized mount option "fsname=%:" or missing value
[  460.101938] loop6: detected capacity change from 0 to 4097
00:51:52 executing program 5:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:51:52 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(0x0, &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:51:52 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(0x0, &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:51:53 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(0x0, &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:51:53 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), 0x0, 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

[  461.733105] Bluetooth: hci0: command 0x080f tx timeout
[  463.781143] Bluetooth: hci0: command 0x080f tx timeout
[  465.829173] Bluetooth: hci0: command 0x080f tx timeout
[  467.877176] Bluetooth: hci0: command 0x080f tx timeout
[  469.926162] Bluetooth: hci0: command 0x080f tx timeout
[  471.973137] Bluetooth: hci0: command 0x080f tx timeout
[  474.021141] Bluetooth: hci0: command 0x080f tx timeout
00:52:07 executing program 2:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)

00:52:07 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:52:07 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:52:07 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), 0x0, 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:52:07 executing program 7:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, 0x0)

00:52:07 executing program 0:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:52:07 executing program 5:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:52:07 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))

[  474.553269] loop6: detected capacity change from 0 to 4097
00:52:07 executing program 7:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:52:07 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), 0x0, 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

[  474.686071] loop6: detected capacity change from 0 to 4097
[  476.069188] Bluetooth: hci0: command 0x080f tx timeout
[  478.117194] Bluetooth: hci0: command 0x080f tx timeout
[  480.169493] Bluetooth: hci0: command 0x080f tx timeout
[  482.213291] Bluetooth: hci0: command 0x080f tx timeout
[  484.262125] Bluetooth: hci0: command 0x080f tx timeout
[  486.310967] Bluetooth: hci0: command 0x080f tx timeout
[  488.357199] Bluetooth: hci0: command 0x080f tx timeout
00:52:21 executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))

00:52:21 executing program 2:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397f2b1bb3b5af60a2cfa1d88f4635990e7ea4590cd1c26ffcfeb5981e2f5f1558f4e45e978698f08952a3e594ee6c1a86605588755fc4527afc1793b6c63638d0208e496694f79f37830bc408e96605f2e568c54d9f1e30f6374f3488d9f0f9b0070f66111ba2d4206ae6269480d3e69960603062d921a91ac0e515e74868f3db09350af5e10d56aebcb7c83910db96583300feb7d08f7e892d3ac8560fc8a0e56cc4abce95c9e64d52845e07957ed95f516f04350"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)

00:52:21 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:52:21 executing program 0:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:52:21 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, 0x0, 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:52:21 executing program 5:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:52:21 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:52:21 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), 0x0, 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

[  489.060730] loop6: detected capacity change from 0 to 4097
[  489.068517] loop7: detected capacity change from 0 to 4097
00:52:21 executing program 0:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:52:21 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, 0x0, 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:52:21 executing program 7:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[  489.193019] loop6: detected capacity change from 0 to 4097
00:52:22 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, 0x0, 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

[  489.329495] loop6: detected capacity change from 0 to 4097
00:52:22 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:52:22 executing program 0:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:52:22 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:52:22 executing program 0:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

[  490.406150] Bluetooth: hci0: command 0x080f tx timeout
[  492.453136] Bluetooth: hci0: command 0x080f tx timeout
[  494.501122] Bluetooth: hci0: command 0x080f tx timeout
[  496.689223] Bluetooth: hci0: command 0x080f tx timeout
[  498.725385] Bluetooth: hci0: command 0x080f tx timeout
[  500.773107] Bluetooth: hci0: command 0x080f tx timeout
[  502.821174] Bluetooth: hci0: command 0x080f tx timeout
00:52:37 executing program 2:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:52:37 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:52:37 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:52:37 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:52:37 executing program 3:
clone3(0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))

00:52:37 executing program 5:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:52:37 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:52:37 executing program 7:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397f2b1bb3b5af60a2cfa1d88f4635990e7ea4590cd1c26ffcfeb5981e2f5f1558f4e45e978698f08952a3e594ee6c1a86605588755fc4527afc1793b6c63638d0208e496694f79f37830bc408e96605f2e568c54d9f1e30f6374f3488d9f0f9b0070f66111ba2d4206ae6269480d3e69960603062d921a91ac0e515e74868f3db09350af5e10d56aebcb7c83910db96583300feb7d08f7e892d3ac8560fc8a0e56cc4abce95c9e64d52845e07957ed95f516f04350"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[  504.800798] loop6: detected capacity change from 0 to 4097
00:52:37 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, 0x0)
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

[  504.869096] Bluetooth: hci0: command 0x080f tx timeout
[  504.924118] I/O error, dev loop6, sector 3968 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  506.917098] Bluetooth: hci0: command 0x080f tx timeout
[  508.965096] Bluetooth: hci0: command 0x080f tx timeout
[  511.013201] Bluetooth: hci0: command 0x080f tx timeout
[  513.061275] Bluetooth: hci0: command 0x080f tx timeout
[  515.109131] Bluetooth: hci0: command 0x080f tx timeout
[  517.157112] Bluetooth: hci0: command 0x080f tx timeout
00:52:51 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:52:51 executing program 0:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:52:51 executing program 5:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:52:51 executing program 2:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397f2b1bb3b5af60a2cfa1d88f4635990e7ea4590cd1c26ffcfeb5981e2f5f1558f4e45e978698f08952a3e594ee6c1a86605588755fc4527afc1793b6c63638d0208e496694f79f37830bc408e96605f2e568c54d9f1e30f6374f3488d9f0f9b0070f66111ba2d4206ae6269480d3e69960603062d921a91ac0e515e74868f3db09350af5e10d56aebcb7c83910db96583300feb7d08f7e892d3ac8560fc8a0e56cc4abce95c9e64d52845e07957ed95f516f04350"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)

00:52:51 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:52:51 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, 0x0)
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:52:51 executing program 7:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:52:51 executing program 3:
clone3(0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))

00:52:51 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, 0x0)
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:52:51 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:52:51 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:52:51 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:52:51 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0), 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:52:51 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0), 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

[  519.205111] Bluetooth: hci0: command 0x080f tx timeout
[  521.253106] Bluetooth: hci0: command 0x080f tx timeout
[  523.301090] Bluetooth: hci0: command 0x080f tx timeout
[  525.349215] Bluetooth: hci0: command 0x080f tx timeout
[  527.397140] Bluetooth: hci0: command 0x080f tx timeout
[  529.445119] Bluetooth: hci0: command 0x080f tx timeout
[  531.493091] Bluetooth: hci0: command 0x080f tx timeout
00:53:06 executing program 7:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:53:06 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0), 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:53:06 executing program 3:
clone3(0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))

00:53:06 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:53:06 executing program 2:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397f2b1bb3b5af60a2cfa1d88f4635990e7ea4590cd1c26ffcfeb5981e2f5f1558f4e45e978698f08952a3e594ee6c1a86605588755fc4527afc1793b6c63638d0208e496694f79f37830bc408e96605f2e568c54d9f1e30f6374f3488d9f0f9b0070f66111ba2d4206ae6269480d3e69960603062d921a91ac0e515e74868f3db09350af5e10d56aebcb7c83910db96583300feb7d08f7e892d3ac8560fc8a0e56cc4abce95c9e64d52845e07957ed95f516f04350"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:53:06 executing program 0:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:53:06 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, 0x0)
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:53:06 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

[  533.545919] Bluetooth: hci0: command 0x080f tx timeout
00:53:06 executing program 5:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0), 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:53:06 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:53:06 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask={'dmask', 0x3d, 0x2c}}, {@dots}, {@fat=@check_strict}], [{@fsname={'fsname', 0x3d, '%:'}}]})

00:53:06 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

[  533.768491] FAT-fs (loop5): Unrecognized mount option "fsname=%:" or missing value
00:53:06 executing program 5:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
ioctl$LOOP_SET_FD(r3, 0x4c00, r4)

00:53:06 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:53:06 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, 0x0, 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

[  534.045548] loop6: detected capacity change from 0 to 4097
00:53:06 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, 0x0, 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

[  535.590750] Bluetooth: hci0: command 0x080f tx timeout
[  537.638833] Bluetooth: hci0: command 0x080f tx timeout
[  539.686728] Bluetooth: hci0: command 0x080f tx timeout
[  541.733292] Bluetooth: hci0: command 0x080f tx timeout
[  543.781120] Bluetooth: hci0: command 0x080f tx timeout
[  545.829185] Bluetooth: hci0: command 0x080f tx timeout
[  547.877091] Bluetooth: hci0: command 0x080f tx timeout
00:53:21 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, 0x0, 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:53:21 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:53:21 executing program 0:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:53:21 executing program 2:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:53:21 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:53:21 executing program 7:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:53:21 executing program 3:
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))

00:53:21 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 1)

[  548.344853] FAULT_INJECTION: forcing a failure.
[  548.344853] name failslab, interval 1, probability 0, space 0, times 1
[  548.347516] CPU: 0 PID: 6002 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  548.349335] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  548.352033] Call Trace:
[  548.352662]  <TASK>
[  548.353137]  dump_stack_lvl+0x8b/0xb3
[  548.354067]  should_fail.cold+0x5/0xa
[  548.355001]  ? __do_sys_memfd_create+0xac/0x4e0
[  548.356144]  should_failslab+0x5/0x10
[  548.356987]  __kmalloc+0x72/0x440
[  548.357872]  __do_sys_memfd_create+0xac/0x4e0
[  548.358857]  do_syscall_64+0x3b/0x90
[  548.359641]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  548.360903] RIP: 0033:0x7f0844aa7b19
[  548.361692] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  548.365915] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  548.367520] RAX: ffffffffffffffda RBX: 0000000020000280 RCX: 00007f0844aa7b19
[  548.369002] RDX: 00007f084201d000 RSI: 0000000000000000 RDI: 00007f0844b010fb
[  548.370501] RBP: 0000000000000000 R08: 00007f084201cff8 R09: ffffffffffffffff
[  548.372086] R10: 00007f084201cffc R11: 0000000000000246 R12: 0000000020000080
[  548.373719] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020000300
[  548.375448]  </TASK>
[  548.389497] loop6: detected capacity change from 0 to 4097
00:53:21 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 2)

[  548.417458] FAULT_INJECTION: forcing a failure.
[  548.417458] name failslab, interval 1, probability 0, space 0, times 0
[  548.418800] CPU: 1 PID: 6016 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  548.418815] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  548.418823] Call Trace:
[  548.418827]  <TASK>
[  548.418832]  dump_stack_lvl+0x8b/0xb3
[  548.422640]  should_fail.cold+0x5/0xa
[  548.422660]  ? create_object.isra.0+0x3a/0xa20
[  548.422678]  should_failslab+0x5/0x10
[  548.424357]  kmem_cache_alloc+0x5b/0x480
[  548.424380]  create_object.isra.0+0x3a/0xa20
[  548.424393]  ? kasan_unpoison+0x23/0x50
[  548.424409]  __kmalloc+0x25b/0x440
[  548.424428]  __do_sys_memfd_create+0xac/0x4e0
[  548.424446]  do_syscall_64+0x3b/0x90
[  548.424460]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  548.424475] RIP: 0033:0x7f0844aa7b19
00:53:21 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

[  548.424484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  548.424496] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  548.424509] RAX: ffffffffffffffda RBX: 0000000020000280 RCX: 00007f0844aa7b19
[  548.424517] RDX: 00007f084201d000 RSI: 0000000000000000 RDI: 00007f0844b010fb
[  548.424525] RBP: 0000000000000000 R08: 00007f084201cff8 R09: ffffffffffffffff
[  548.424533] R10: 00007f084201cffc R11: 0000000000000246 R12: 0000000020000080
[  548.424541] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020000300
[  548.424561]  </TASK>
[  548.465528] FAT-fs (loop5): bogus number of reserved sectors
[  548.465553] FAT-fs (loop5): Can't find a valid FAT filesystem
00:53:21 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:53:21 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 3)

00:53:21 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

[  548.628550] FAULT_INJECTION: forcing a failure.
[  548.628550] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  548.628573] CPU: 1 PID: 6032 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  548.628586] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  548.628595] Call Trace:
[  548.628599]  <TASK>
[  548.628604]  dump_stack_lvl+0x8b/0xb3
[  548.628630]  should_fail.cold+0x5/0xa
[  548.628652]  _copy_from_user+0x2a/0x170
[  548.628672]  __do_sys_memfd_create+0xff/0x4e0
[  548.628690]  do_syscall_64+0x3b/0x90
[  548.628704]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  548.628719] RIP: 0033:0x7f0844aa7b19
[  548.628728] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  548.628739] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  548.628752] RAX: ffffffffffffffda RBX: 0000000020000280 RCX: 00007f0844aa7b19
[  548.628761] RDX: 00007f084201d000 RSI: 0000000000000000 RDI: 00007f0844b010fb
[  548.628769] RBP: 0000000000000000 R08: 00007f084201cff8 R09: ffffffffffffffff
[  548.628777] R10: 00007f084201cffc R11: 0000000000000246 R12: 0000000020000080
[  548.628784] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020000300
[  548.628804]  </TASK>
[  548.646492] loop6: detected capacity change from 0 to 4097
00:53:21 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 4)

00:53:21 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

[  548.695750] FAULT_INJECTION: forcing a failure.
[  548.695750] name failslab, interval 1, probability 0, space 0, times 0
[  548.699313] CPU: 0 PID: 6034 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  548.701051] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  548.703535] Call Trace:
[  548.704096]  <TASK>
[  548.704584]  dump_stack_lvl+0x8b/0xb3
[  548.705446]  should_fail.cold+0x5/0xa
[  548.706304]  should_failslab+0x5/0x10
[  548.707170]  kmem_cache_alloc_lru+0x60/0x7c0
[  548.708131]  ? shmem_alloc_inode+0x23/0x50
[  548.709020]  ? lock_release+0x3b2/0x6f0
[  548.709867]  shmem_alloc_inode+0x23/0x50
[  548.710737]  ? shmem_destroy_inode+0x70/0x70
[  548.711654]  alloc_inode+0x63/0x240
[  548.712429]  new_inode+0x23/0x240
[  548.713166]  shmem_get_inode+0x18b/0xd20
[  548.714030]  __shmem_file_setup+0xb8/0x310
[  548.714945]  __do_sys_memfd_create+0x1c6/0x4e0
[  548.715914]  do_syscall_64+0x3b/0x90
[  548.716698]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  548.717783] RIP: 0033:0x7f0844aa7b19
[  548.718561] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  548.722403] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  548.723993] RAX: ffffffffffffffda RBX: 0000000020000280 RCX: 00007f0844aa7b19
[  548.725481] RDX: 00007f084201d000 RSI: 0000000000000000 RDI: 00007f0844b010fb
[  548.726981] RBP: 0000000000000000 R08: 00007f084201cff8 R09: ffffffffffffffff
00:53:21 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

[  548.728461] R10: 00007f084201cffc R11: 0000000000000246 R12: 0000000020000080
[  548.730039] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020000300
[  548.731557]  </TASK>
00:53:21 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 5)

[  548.826718] FAULT_INJECTION: forcing a failure.
[  548.826718] name failslab, interval 1, probability 0, space 0, times 0
[  548.828043] CPU: 1 PID: 6040 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  548.828916] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  548.830175] Call Trace:
[  548.830439]  <TASK>
[  548.830695]  dump_stack_lvl+0x8b/0xb3
[  548.831128]  should_fail.cold+0x5/0xa
[  548.831563]  ? create_object.isra.0+0x3a/0xa20
[  548.832088]  should_failslab+0x5/0x10
[  548.832519]  kmem_cache_alloc+0x5b/0x480
[  548.832983]  create_object.isra.0+0x3a/0xa20
[  548.833469]  ? kasan_unpoison+0x23/0x50
[  548.834475]  kmem_cache_alloc_lru+0x2d3/0x7c0
[  548.835691]  ? shmem_alloc_inode+0x23/0x50
[  548.836696]  shmem_alloc_inode+0x23/0x50
[  548.837647]  ? shmem_destroy_inode+0x70/0x70
[  548.838700]  alloc_inode+0x63/0x240
[  548.839491]  new_inode+0x23/0x240
[  548.840229]  shmem_get_inode+0x18b/0xd20
[  548.841094]  __shmem_file_setup+0xb8/0x310
[  548.841989]  __do_sys_memfd_create+0x1c6/0x4e0
[  548.842967]  do_syscall_64+0x3b/0x90
[  548.843702]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  548.844714] RIP: 0033:0x7f0844aa7b19
[  548.845467] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  548.849054] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  548.850535] RAX: ffffffffffffffda RBX: 0000000020000280 RCX: 00007f0844aa7b19
[  548.851945] RDX: 00007f084201d000 RSI: 0000000000000000 RDI: 00007f0844b010fb
[  548.853337] RBP: 0000000000000000 R08: 00007f084201cff8 R09: ffffffffffffffff
[  548.854727] R10: 00007f084201cffc R11: 0000000000000246 R12: 0000000020000080
[  548.856111] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020000300
[  548.857518]  </TASK>
[  548.886970] FAT-fs (loop5): bogus number of reserved sectors
[  548.888400] FAT-fs (loop5): Can't find a valid FAT filesystem
[  549.925216] Bluetooth: hci0: command 0x080f tx timeout
[  551.975330] Bluetooth: hci0: command 0x080f tx timeout
[  554.021125] Bluetooth: hci0: command 0x080f tx timeout
[  556.069296] Bluetooth: hci0: command 0x080f tx timeout
[  558.118921] Bluetooth: hci0: command 0x080f tx timeout
[  560.165124] Bluetooth: hci0: command 0x080f tx timeout
[  562.213095] Bluetooth: hci0: command 0x080f tx timeout
00:53:36 executing program 0:
clone3(0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:53:36 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:53:36 executing program 3:
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))

00:53:36 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:53:36 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 6)

00:53:36 executing program 7:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:53:36 executing program 2:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)

00:53:36 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

[  563.426653] FAULT_INJECTION: forcing a failure.
[  563.426653] name failslab, interval 1, probability 0, space 0, times 0
[  563.428969] CPU: 1 PID: 6060 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  563.430475] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  563.432629] Call Trace:
[  563.433129]  <TASK>
[  563.433277] loop6: detected capacity change from 0 to 4097
[  563.433557]  dump_stack_lvl+0x8b/0xb3
[  563.435562]  should_fail.cold+0x5/0xa
[  563.436310]  ? security_inode_alloc+0x34/0x160
[  563.437196]  should_failslab+0x5/0x10
[  563.437935]  kmem_cache_alloc+0x5b/0x480
[  563.438739]  security_inode_alloc+0x34/0x160
[  563.439609]  inode_init_always+0x5d8/0xd20
[  563.440435]  alloc_inode+0x84/0x240
[  563.441146]  new_inode+0x23/0x240
[  563.441861]  shmem_get_inode+0x18b/0xd20
[  563.442686]  __shmem_file_setup+0xb8/0x310
[  563.443552]  __do_sys_memfd_create+0x1c6/0x4e0
[  563.444506]  do_syscall_64+0x3b/0x90
[  563.445268]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  563.446283] RIP: 0033:0x7f0844aa7b19
[  563.447073] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  563.450762] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  563.452285] RAX: ffffffffffffffda RBX: 0000000020000280 RCX: 00007f0844aa7b19
[  563.453656] RDX: 00007f084201d000 RSI: 0000000000000000 RDI: 00007f0844b010fb
[  563.455122] RBP: 0000000000000000 R08: 00007f084201cff8 R09: ffffffffffffffff
[  563.456586] R10: 00007f084201cffc R11: 0000000000000246 R12: 0000000020000080
[  563.458049] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020000300
[  563.459551]  </TASK>
00:53:36 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:53:36 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 7)

[  563.613741] FAULT_INJECTION: forcing a failure.
[  563.613741] name failslab, interval 1, probability 0, space 0, times 0
[  563.615880] CPU: 1 PID: 6075 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  563.617407] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  563.619479] Call Trace:
[  563.619954]  <TASK>
[  563.620370]  dump_stack_lvl+0x8b/0xb3
[  563.621106]  should_fail.cold+0x5/0xa
[  563.621823]  ? create_object.isra.0+0x3a/0xa20
[  563.622674]  should_failslab+0x5/0x10
[  563.623408]  kmem_cache_alloc+0x5b/0x480
[  563.624178]  create_object.isra.0+0x3a/0xa20
[  563.625001]  ? kasan_unpoison+0x23/0x50
[  563.625742]  kmem_cache_alloc+0x239/0x480
[  563.626526]  security_inode_alloc+0x34/0x160
[  563.627353]  inode_init_always+0x5d8/0xd20
[  563.628155]  alloc_inode+0x84/0x240
[  563.628838]  new_inode+0x23/0x240
[  563.629491]  shmem_get_inode+0x18b/0xd20
[  563.630245]  __shmem_file_setup+0xb8/0x310
[  563.631048]  __do_sys_memfd_create+0x1c6/0x4e0
[  563.631885]  do_syscall_64+0x3b/0x90
[  563.632586]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  563.633540] RIP: 0033:0x7f0844aa7b19
[  563.634273] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  563.637599] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  563.638977] RAX: ffffffffffffffda RBX: 0000000020000280 RCX: 00007f0844aa7b19
[  563.640263] RDX: 00007f084201d000 RSI: 0000000000000000 RDI: 00007f0844b010fb
[  563.641557] RBP: 0000000000000000 R08: 00007f084201cff8 R09: ffffffffffffffff
[  563.642866] R10: 00007f084201cffc R11: 0000000000000246 R12: 0000000020000080
[  563.644152] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020000300
[  563.645462]  </TASK>
[  563.656349] FAT-fs (loop5): bogus number of reserved sectors
[  563.657601] FAT-fs (loop5): Can't find a valid FAT filesystem
00:53:36 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 8)

[  563.792369] FAULT_INJECTION: forcing a failure.
[  563.792369] name failslab, interval 1, probability 0, space 0, times 0
[  563.794911] CPU: 0 PID: 6079 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  563.796595] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  563.799028] Call Trace:
[  563.799575]  <TASK>
[  563.800051]  dump_stack_lvl+0x8b/0xb3
[  563.800891]  should_fail.cold+0x5/0xa
[  563.801729]  should_failslab+0x5/0x10
[  563.802547]  kmem_cache_alloc_lru+0x60/0x7c0
[  563.803526]  ? __d_alloc+0x31/0x990
[  563.804317]  ? lockdep_hardirqs_on+0x79/0x100
[  563.805293]  __d_alloc+0x31/0x990
[  563.806053]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  563.807251]  d_alloc_pseudo+0x19/0x70
[  563.808069]  alloc_file_pseudo+0xce/0x250
[  563.808959]  ? alloc_file+0x580/0x580
[  563.809773]  ? __sanitizer_cov_trace_const_cmp2+0x22/0x80
[  563.810964]  ? shmem_get_inode+0x619/0xd20
[  563.811883]  __shmem_file_setup+0x144/0x310
[  563.812821]  __do_sys_memfd_create+0x1c6/0x4e0
[  563.813803]  do_syscall_64+0x3b/0x90
[  563.814598]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  563.815725] RIP: 0033:0x7f0844aa7b19
[  563.816514] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  563.820434] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  563.822056] RAX: ffffffffffffffda RBX: 0000000020000280 RCX: 00007f0844aa7b19
[  563.823569] RDX: 00007f084201d000 RSI: 0000000000000000 RDI: 00007f0844b010fb
[  563.825090] RBP: 0000000000000000 R08: 00007f084201cff8 R09: ffffffffffffffff
[  563.826607] R10: 00007f084201cffc R11: 0000000000000246 R12: 0000000020000080
[  563.828145] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020000300
[  563.829694]  </TASK>
00:53:36 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:53:36 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:53:36 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 9)

[  563.955823] FAULT_INJECTION: forcing a failure.
[  563.955823] name failslab, interval 1, probability 0, space 0, times 0
[  563.958288] CPU: 0 PID: 6085 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  563.959990] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  563.962393] Call Trace:
[  563.962949]  <TASK>
[  563.963423]  dump_stack_lvl+0x8b/0xb3
[  563.964257]  should_fail.cold+0x5/0xa
[  563.965081]  ? create_object.isra.0+0x3a/0xa20
[  563.966056]  should_failslab+0x5/0x10
[  563.966889]  kmem_cache_alloc+0x5b/0x480
[  563.967769]  create_object.isra.0+0x3a/0xa20
[  563.968705]  ? kasan_unpoison+0x23/0x50
[  563.969558]  kmem_cache_alloc_lru+0x2d3/0x7c0
[  563.970522]  ? __d_alloc+0x31/0x990
[  563.971326]  __d_alloc+0x31/0x990
[  563.972078]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  563.973277]  d_alloc_pseudo+0x19/0x70
[  563.974089]  alloc_file_pseudo+0xce/0x250
[  563.974979]  ? alloc_file+0x580/0x580
[  563.975793]  ? __sanitizer_cov_trace_const_cmp2+0x22/0x80
[  563.977023]  ? shmem_get_inode+0x619/0xd20
[  563.977934]  __shmem_file_setup+0x144/0x310
[  563.978878]  __do_sys_memfd_create+0x1c6/0x4e0
[  563.979856]  do_syscall_64+0x3b/0x90
[  563.980656]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  563.981743] RIP: 0033:0x7f0844aa7b19
[  563.982525] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  563.986378] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  563.988022] RAX: ffffffffffffffda RBX: 0000000020000280 RCX: 00007f0844aa7b19
[  563.989516] RDX: 00007f084201d000 RSI: 0000000000000000 RDI: 00007f0844b010fb
[  563.991008] RBP: 0000000000000000 R08: 00007f084201cff8 R09: ffffffffffffffff
[  563.992497] R10: 00007f084201cffc R11: 0000000000000246 R12: 0000000020000080
[  563.993983] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020000300
[  563.995507]  </TASK>
[  564.016446] FAT-fs (loop5): bogus number of reserved sectors
[  564.017864] FAT-fs (loop5): Can't find a valid FAT filesystem
00:53:36 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, 0x0, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000000100), 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:53:36 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 10)

[  564.102095] loop6: detected capacity change from 0 to 4097
[  564.104349] FAULT_INJECTION: forcing a failure.
[  564.104349] name failslab, interval 1, probability 0, space 0, times 0
[  564.106245] CPU: 1 PID: 6089 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  564.107496] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  564.109307] Call Trace:
[  564.109728]  <TASK>
[  564.110086]  dump_stack_lvl+0x8b/0xb3
[  564.110712]  should_fail.cold+0x5/0xa
[  564.111330]  ? __alloc_file+0x21/0x230
[  564.111950]  should_failslab+0x5/0x10
[  564.112538]  kmem_cache_alloc+0x5b/0x480
[  564.113184]  __alloc_file+0x21/0x230
[  564.113724]  alloc_empty_file+0x6d/0x170
[  564.114336]  alloc_file+0x59/0x580
[  564.114870]  alloc_file_pseudo+0x16a/0x250
[  564.115519]  ? alloc_file+0x580/0x580
[  564.116080]  ? __sanitizer_cov_trace_const_cmp2+0x22/0x80
[  564.116978]  ? shmem_get_inode+0x619/0xd20
[  564.117619]  __shmem_file_setup+0x144/0x310
[  564.118290]  __do_sys_memfd_create+0x1c6/0x4e0
[  564.118981]  do_syscall_64+0x3b/0x90
[  564.119569]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  564.120330] RIP: 0033:0x7f0844aa7b19
[  564.120910] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  564.123562] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  564.124718] RAX: ffffffffffffffda RBX: 0000000020000280 RCX: 00007f0844aa7b19
[  564.125856] RDX: 00007f084201d000 RSI: 0000000000000000 RDI: 00007f0844b010fb
[  564.126982] RBP: 0000000000000000 R08: 00007f084201cff8 R09: ffffffffffffffff
[  564.128128] R10: 00007f084201cffc R11: 0000000000000246 R12: 0000000020000080
[  564.129270] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020000300
[  564.130383]  </TASK>
[  564.261091] Bluetooth: hci0: command 0x080f tx timeout
[  566.309086] Bluetooth: hci0: command 0x080f tx timeout
[  568.358846] Bluetooth: hci0: command 0x080f tx timeout
[  570.405081] Bluetooth: hci0: command 0x080f tx timeout
[  572.771806] Bluetooth: hci0: command 0x080f tx timeout
[  574.821082] Bluetooth: hci0: command 0x080f tx timeout
[  576.869091] Bluetooth: hci0: command 0x080f tx timeout
[  579.188823] Bluetooth: hci0: command 0x080f tx timeout
00:53:52 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:53:52 executing program 7:
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))

00:53:52 executing program 3:
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))

00:53:52 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 11)

00:53:52 executing program 2:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))

00:53:52 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:53:52 executing program 0:
clone3(0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:53:52 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

[  579.989582] FAULT_INJECTION: forcing a failure.
[  579.989582] name failslab, interval 1, probability 0, space 0, times 0
[  579.991981] CPU: 1 PID: 6108 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  579.993567] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  579.995353] loop6: detected capacity change from 0 to 4097
[  579.995909] Call Trace:
[  579.995919]  <TASK>
[  579.995928]  dump_stack_lvl+0x8b/0xb3
[  579.998619]  should_fail.cold+0x5/0xa
[  579.999431]  ? create_object.isra.0+0x3a/0xa20
[  580.000352]  should_failslab+0x5/0x10
[  580.001152]  kmem_cache_alloc+0x5b/0x480
[  580.001993]  create_object.isra.0+0x3a/0xa20
[  580.003002]  ? kasan_unpoison+0x23/0x50
[  580.003827]  kmem_cache_alloc+0x239/0x480
[  580.004776]  __alloc_file+0x21/0x230
[  580.005544]  alloc_empty_file+0x6d/0x170
[  580.006498]  alloc_file+0x59/0x580
[  580.007349]  alloc_file_pseudo+0x16a/0x250
[  580.008197]  ? alloc_file+0x580/0x580
[  580.008985]  ? __sanitizer_cov_trace_const_cmp2+0x22/0x80
[  580.010091]  ? shmem_get_inode+0x619/0xd20
[  580.010943]  __shmem_file_setup+0x144/0x310
[  580.011822]  __do_sys_memfd_create+0x1c6/0x4e0
[  580.012738]  do_syscall_64+0x3b/0x90
[  580.013479]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  580.014616] RIP: 0033:0x7f0844aa7b19
[  580.015366] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  580.019320] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  580.020842] RAX: ffffffffffffffda RBX: 0000000020000280 RCX: 00007f0844aa7b19
[  580.022249] RDX: 00007f084201d000 RSI: 0000000000000000 RDI: 00007f0844b010fb
[  580.023664] RBP: 0000000000000000 R08: 00007f084201cff8 R09: ffffffffffffffff
[  580.025068] R10: 00007f084201cffc R11: 0000000000000246 R12: 0000000020000080
[  580.026605] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020000300
[  580.028186]  </TASK>
00:53:52 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

[  580.080562] FAT-fs (loop5): bogus number of reserved sectors
[  580.081736] FAT-fs (loop5): Can't find a valid FAT filesystem
00:53:52 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:53:52 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 12)

[  580.209093] FAULT_INJECTION: forcing a failure.
[  580.209093] name failslab, interval 1, probability 0, space 0, times 0
[  580.210926] CPU: 0 PID: 6125 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  580.212138] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  580.213863] Call Trace:
[  580.214251]  <TASK>
[  580.214587]  dump_stack_lvl+0x8b/0xb3
[  580.215195]  should_fail.cold+0x5/0xa
[  580.215798]  ? security_file_alloc+0x34/0x170
[  580.216482]  should_failslab+0x5/0x10
[  580.217066]  kmem_cache_alloc+0x5b/0x480
[  580.217683]  security_file_alloc+0x34/0x170
[  580.218328]  __alloc_file+0xb6/0x230
[  580.218899]  alloc_empty_file+0x6d/0x170
[  580.219544]  alloc_file+0x59/0x580
[  580.220095]  alloc_file_pseudo+0x16a/0x250
[  580.220749]  ? alloc_file+0x580/0x580
[  580.221323]  ? __sanitizer_cov_trace_const_cmp2+0x22/0x80
[  580.222180]  ? shmem_get_inode+0x619/0xd20
[  580.222846]  __shmem_file_setup+0x144/0x310
[  580.223509]  __do_sys_memfd_create+0x1c6/0x4e0
[  580.224215]  do_syscall_64+0x3b/0x90
[  580.224791]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  580.225578] RIP: 0033:0x7f0844aa7b19
[  580.226145] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  580.228922] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  580.230093] RAX: ffffffffffffffda RBX: 0000000020000280 RCX: 00007f0844aa7b19
[  580.231164] RDX: 00007f084201d000 RSI: 0000000000000000 RDI: 00007f0844b010fb
[  580.232223] RBP: 0000000000000000 R08: 00007f084201cff8 R09: ffffffffffffffff
[  580.233281] R10: 00007f084201cffc R11: 0000000000000246 R12: 0000000020000080
[  580.234338] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020000300
[  580.235441]  </TASK>
[  580.256962] loop6: detected capacity change from 0 to 4097
00:53:53 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 13)

00:53:53 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

[  580.332257] loop6: detected capacity change from 0 to 4097
[  580.335729] FAULT_INJECTION: forcing a failure.
[  580.335729] name failslab, interval 1, probability 0, space 0, times 0
[  580.338075] CPU: 1 PID: 6130 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  580.339715] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  580.342034] Call Trace:
[  580.342548]  <TASK>
[  580.342990]  dump_stack_lvl+0x8b/0xb3
[  580.343780]  should_fail.cold+0x5/0xa
[  580.344553]  ? create_object.isra.0+0x3a/0xa20
[  580.345467]  should_failslab+0x5/0x10
[  580.346230]  kmem_cache_alloc+0x5b/0x480
[  580.347066]  create_object.isra.0+0x3a/0xa20
[  580.347940]  ? kasan_unpoison+0x23/0x50
[  580.348737]  kmem_cache_alloc+0x239/0x480
[  580.349576]  security_file_alloc+0x34/0x170
[  580.350441]  __alloc_file+0xb6/0x230
[  580.351209]  alloc_empty_file+0x6d/0x170
[  580.352018]  alloc_file+0x59/0x580
[  580.352738]  alloc_file_pseudo+0x16a/0x250
[  580.353590]  ? alloc_file+0x580/0x580
[  580.354364]  ? __sanitizer_cov_trace_const_cmp2+0x22/0x80
[  580.355483]  ? shmem_get_inode+0x619/0xd20
[  580.356338]  __shmem_file_setup+0x144/0x310
[  580.357204]  __do_sys_memfd_create+0x1c6/0x4e0
[  580.358126]  do_syscall_64+0x3b/0x90
[  580.358867]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  580.359920] RIP: 0033:0x7f0844aa7b19
[  580.360660] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  580.364331] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 000000000000013f
[  580.365839] RAX: ffffffffffffffda RBX: 0000000020000280 RCX: 00007f0844aa7b19
[  580.367266] RDX: 00007f084201d000 RSI: 0000000000000000 RDI: 00007f0844b010fb
[  580.368680] RBP: 0000000000000000 R08: 00007f084201cff8 R09: ffffffffffffffff
[  580.370105] R10: 00007f084201cffc R11: 0000000000000246 R12: 0000000020000080
[  580.371561] R13: 00000000200000c0 R14: 0000000000000000 R15: 0000000020000300
[  580.373012]  </TASK>
[  580.390086] FAT-fs (loop5): bogus number of reserved sectors
[  580.391325] FAT-fs (loop5): Can't find a valid FAT filesystem
00:53:53 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, 0x0, 0x0, 0x0)

00:53:53 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 14)

[  580.457531] FAULT_INJECTION: forcing a failure.
[  580.457531] name failslab, interval 1, probability 0, space 0, times 0
[  580.459295] CPU: 0 PID: 6133 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  580.460474] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  580.462131] Call Trace:
[  580.462507]  <TASK>
[  580.462841]  dump_stack_lvl+0x8b/0xb3
[  580.463414]  should_fail.cold+0x5/0xa
[  580.463980]  ? getname_flags.part.0+0x50/0x4f0
[  580.464647]  should_failslab+0x5/0x10
[  580.465204]  kmem_cache_alloc+0x5b/0x480
[  580.465787]  ? lock_downgrade+0x6d0/0x6d0
[  580.466416]  getname_flags.part.0+0x50/0x4f0
[  580.467076]  getname+0x8e/0xd0
[  580.467573]  do_sys_openat2+0xf5/0x4c0
[  580.468158]  ? build_open_flags+0x6f0/0x6f0
[  580.468802]  ? find_held_lock+0x2c/0x110
[  580.469410]  ? lock_release+0x3b2/0x6f0
[  580.470029]  ? do_syscall_64+0x3b/0x90
[  580.470590]  __x64_sys_openat+0x13f/0x1f0
[  580.471230]  ? __x64_sys_open+0x1c0/0x1c0
[  580.471826]  ? syscall_enter_from_user_mode+0x1d/0x50
[  580.472607]  do_syscall_64+0x3b/0x90
[  580.473150]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  580.473922] RIP: 0033:0x7f0844a5aa04
[  580.474469] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  580.477163] RSP: 002b:00007f084201ced0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  580.478268] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844a5aa04
[  580.479350] RDX: 0000000000000002 RSI: 00007f084201d000 RDI: 00000000ffffff9c
[  580.480396] RBP: 00007f084201d000 R08: 0000000000000000 R09: ffffffffffffffff
[  580.481439] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  580.482498] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  580.483579]  </TASK>
[  580.492767] loop6: detected capacity change from 0 to 4097
[  582.053137] Bluetooth: hci0: command 0x080f tx timeout
[  584.102104] Bluetooth: hci0: command 0x080f tx timeout
[  586.150138] Bluetooth: hci0: command 0x080f tx timeout
[  588.198116] Bluetooth: hci0: command 0x080f tx timeout
[  590.246142] Bluetooth: hci0: command 0x080f tx timeout
[  592.294101] Bluetooth: hci0: command 0x080f tx timeout
00:54:09 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 15)

00:54:09 executing program 7:
clone3(0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:54:09 executing program 0:
clone3(0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:54:09 executing program 2:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))

00:54:09 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, 0x0, 0x0, 0x0)

00:54:09 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
dup(r1)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:54:09 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:54:09 executing program 3:
clone3(&(0x7f0000000640)={0x123363500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))

[  596.498851] FAULT_INJECTION: forcing a failure.
[  596.498851] name failslab, interval 1, probability 0, space 0, times 0
[  596.500090] CPU: 1 PID: 6155 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  596.500909] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  596.502088] Call Trace:
[  596.502362]  <TASK>
[  596.502600]  dump_stack_lvl+0x8b/0xb3
[  596.503021]  should_fail.cold+0x5/0xa
[  596.503441]  ? create_object.isra.0+0x3a/0xa20
[  596.503925]  should_failslab+0x5/0x10
[  596.504342]  kmem_cache_alloc+0x5b/0x480
[  596.504782]  create_object.isra.0+0x3a/0xa20
[  596.505241]  ? kasan_unpoison+0x23/0x50
[  596.505670]  kmem_cache_alloc+0x239/0x480
[  596.506108]  getname_flags.part.0+0x50/0x4f0
[  596.506567]  getname+0x8e/0xd0
[  596.506913]  do_sys_openat2+0xf5/0x4c0
[  596.507338]  ? build_open_flags+0x6f0/0x6f0
[  596.507787]  ? find_held_lock+0x2c/0x110
[  596.508222]  ? lock_release+0x3b2/0x6f0
[  596.508636]  ? do_syscall_64+0x3b/0x90
[  596.509053]  __x64_sys_openat+0x13f/0x1f0
[  596.509491]  ? __x64_sys_open+0x1c0/0x1c0
[  596.509935]  ? syscall_enter_from_user_mode+0x1d/0x50
[  596.510485]  do_syscall_64+0x3b/0x90
[  596.510881]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  596.511435] RIP: 0033:0x7f0844a5aa04
[  596.511827] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  596.513729] RSP: 002b:00007f084201ced0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  596.514536] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844a5aa04
[  596.515277] RDX: 0000000000000002 RSI: 00007f084201d000 RDI: 00000000ffffff9c
[  596.516041] RBP: 00007f084201d000 R08: 0000000000000000 R09: ffffffffffffffff
[  596.516794] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  596.517533] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  596.518282]  </TASK>
[  596.523160] loop6: detected capacity change from 0 to 4097
[  596.535913] FAT-fs (loop5): bogus number of reserved sectors
[  596.536588] FAT-fs (loop5): Can't find a valid FAT filesystem
00:54:09 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
dup(r1)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:54:09 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 16)

00:54:09 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, 0x0, 0x0, 0x0)

[  596.586131] FAULT_INJECTION: forcing a failure.
[  596.586131] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  596.587468] CPU: 1 PID: 6165 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  596.588294] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  596.589482] Call Trace:
[  596.589756]  <TASK>
[  596.590012]  dump_stack_lvl+0x8b/0xb3
[  596.590429]  should_fail.cold+0x5/0xa
[  596.590837]  strncpy_from_user+0x34/0x3d0
[  596.591280]  getname_flags.part.0+0x95/0x4f0
[  596.591754]  getname+0x8e/0xd0
[  596.592104]  do_sys_openat2+0xf5/0x4c0
[  596.592519]  ? build_open_flags+0x6f0/0x6f0
[  596.592978]  ? find_held_lock+0x2c/0x110
[  596.593410]  ? lock_release+0x3b2/0x6f0
[  596.593835]  ? do_syscall_64+0x3b/0x90
[  596.594259]  __x64_sys_openat+0x13f/0x1f0
[  596.594706]  ? __x64_sys_open+0x1c0/0x1c0
[  596.595152]  ? syscall_enter_from_user_mode+0x1d/0x50
[  596.595736]  do_syscall_64+0x3b/0x90
[  596.596130]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  596.596679] RIP: 0033:0x7f0844a5aa04
[  596.597073] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  596.598997] RSP: 002b:00007f084201ced0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  596.599801] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844a5aa04
[  596.600555] RDX: 0000000000000002 RSI: 00007f084201d000 RDI: 00000000ffffff9c
[  596.601317] RBP: 00007f084201d000 R08: 0000000000000000 R09: ffffffffffffffff
[  596.602071] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  596.602825] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  596.603610]  </TASK>
00:54:09 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 17)

[  596.664765] FAULT_INJECTION: forcing a failure.
[  596.664765] name fail_usercopy, interval 1, probability 0, space 0, times 0
00:54:09 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 18)

[  596.664785] CPU: 1 PID: 6173 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  596.664798] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
00:54:09 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000), 0x0, 0x0)

[  596.664807] Call Trace:
[  596.664811]  <TASK>
[  596.664815]  dump_stack_lvl+0x8b/0xb3
[  596.664841]  should_fail.cold+0x5/0xa
00:54:09 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 19)

[  596.664862]  strncpy_from_user+0x34/0x3d0
[  596.664880]  getname_flags.part.0+0x95/0x4f0
[  596.664897]  getname+0x8e/0xd0
[  596.664910]  do_sys_openat2+0xf5/0x4c0
[  596.664929]  ? build_open_flags+0x6f0/0x6f0
[  596.664944]  ? find_held_lock+0x2c/0x110
[  596.664961]  ? lock_release+0x3b2/0x6f0
[  596.664974]  ? do_syscall_64+0x3b/0x90
[  596.664991]  __x64_sys_openat+0x13f/0x1f0
[  596.665012]  ? __x64_sys_open+0x1c0/0x1c0
[  596.665032]  ? syscall_enter_from_user_mode+0x1d/0x50
[  596.665052]  do_syscall_64+0x3b/0x90
[  596.665064]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  596.665079] RIP: 0033:0x7f0844a5aa04
[  596.665088] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  596.665099] RSP: 002b:00007f084201ced0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  596.665111] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844a5aa04
[  596.665119] RDX: 0000000000000002 RSI: 00007f084201d000 RDI: 00000000ffffff9c
[  596.665127] RBP: 00007f084201d000 R08: 0000000000000000 R09: ffffffffffffffff
[  596.665135] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  596.665142] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  596.665161]  </TASK>
[  596.703897] FAULT_INJECTION: forcing a failure.
[  596.703897] name failslab, interval 1, probability 0, space 0, times 0
[  596.703915] CPU: 1 PID: 6175 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  596.703928] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  596.703937] Call Trace:
[  596.703940]  <TASK>
[  596.703944]  dump_stack_lvl+0x8b/0xb3
[  596.703966]  should_fail.cold+0x5/0xa
[  596.703985]  ? create_object.isra.0+0x3a/0xa20
[  596.704000]  should_failslab+0x5/0x10
[  596.704019]  kmem_cache_alloc+0x5b/0x480
[  596.704039]  create_object.isra.0+0x3a/0xa20
[  596.704052]  ? kasan_unpoison+0x23/0x50
[  596.704068]  kmem_cache_alloc+0x239/0x480
[  596.704088]  __alloc_file+0x21/0x230
[  596.704101]  alloc_empty_file+0x6d/0x170
[  596.704115]  path_openat+0xe1/0x2870
[  596.704136]  ? path_lookupat+0x850/0x850
[  596.704149]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  596.704169]  ? lock_is_held_type+0xd7/0x130
[  596.704188]  do_filp_open+0x1aa/0x400
[  596.704202]  ? may_open_dev+0xf0/0xf0
[  596.704217]  ? lock_release+0x3b2/0x6f0
[  596.704230]  ? alloc_fd+0x2f0/0x670
[  596.704246]  ? lock_downgrade+0x6d0/0x6d0
[  596.704263]  ? rwlock_bug.part.0+0x90/0x90
[  596.704279]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[  596.704297]  ? _find_next_bit+0x1e5/0x260
[  596.704314]  ? _raw_spin_unlock+0x24/0x40
[  596.704327]  ? alloc_fd+0x2f0/0x670
[  596.704349]  do_sys_openat2+0x16d/0x4c0
[  596.704368]  ? build_open_flags+0x6f0/0x6f0
[  596.704383]  ? find_held_lock+0x2c/0x110
[  596.704398]  ? lock_release+0x3b2/0x6f0
[  596.704411]  ? do_syscall_64+0x3b/0x90
[  596.704427]  __x64_sys_openat+0x13f/0x1f0
[  596.704444]  ? __x64_sys_open+0x1c0/0x1c0
[  596.704464]  ? syscall_enter_from_user_mode+0x1d/0x50
[  596.704484]  do_syscall_64+0x3b/0x90
[  596.704496]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  596.704510] RIP: 0033:0x7f0844a5aa04
[  596.704519] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  596.704530] RSP: 002b:00007f084201ced0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  596.704542] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844a5aa04
[  596.704550] RDX: 0000000000000002 RSI: 00007f084201d000 RDI: 00000000ffffff9c
[  596.704558] RBP: 00007f084201d000 R08: 0000000000000000 R09: ffffffffffffffff
[  596.704565] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  596.704572] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  596.704592]  </TASK>
[  596.711155] FAT-fs (loop5): bogus number of reserved sectors
[  596.711169] FAT-fs (loop5): Can't find a valid FAT filesystem
[  596.762657] loop6: detected capacity change from 0 to 4097
[  596.766455] FAULT_INJECTION: forcing a failure.
[  596.766455] name failslab, interval 1, probability 0, space 0, times 0
[  596.766475] CPU: 1 PID: 6180 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  596.766488] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  596.766497] Call Trace:
[  596.766501]  <TASK>
[  596.766506]  dump_stack_lvl+0x8b/0xb3
[  596.766534]  should_fail.cold+0x5/0xa
[  596.766553]  ? create_object.isra.0+0x3a/0xa20
[  596.766570]  should_failslab+0x5/0x10
[  596.766585]  kmem_cache_alloc+0x5b/0x480
[  596.766605]  create_object.isra.0+0x3a/0xa20
[  596.766618]  ? kasan_unpoison+0x23/0x50
[  596.766633]  kmem_cache_alloc+0x239/0x480
[  596.766657]  __alloc_file+0x21/0x230
[  596.766670]  alloc_empty_file+0x6d/0x170
[  596.766684]  path_openat+0xe1/0x2870
[  596.766706]  ? path_lookupat+0x850/0x850
[  596.766719]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  596.766740]  ? lock_is_held_type+0xd7/0x130
[  596.766760]  do_filp_open+0x1aa/0x400
[  596.766774]  ? may_open_dev+0xf0/0xf0
[  596.766789]  ? lock_release+0x3b2/0x6f0
[  596.766802]  ? alloc_fd+0x2f0/0x670
[  596.766818]  ? lock_downgrade+0x6d0/0x6d0
[  596.766834]  ? rwlock_bug.part.0+0x90/0x90
[  596.766850]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[  596.766868]  ? _find_next_bit+0x1e5/0x260
[  596.766887]  ? _raw_spin_unlock+0x24/0x40
[  596.766899]  ? alloc_fd+0x2f0/0x670
[  596.766922]  do_sys_openat2+0x16d/0x4c0
[  596.766940]  ? build_open_flags+0x6f0/0x6f0
[  596.766956]  ? find_held_lock+0x2c/0x110
[  596.766970]  ? lock_release+0x3b2/0x6f0
[  596.766984]  ? do_syscall_64+0x3b/0x90
[  596.767000]  __x64_sys_openat+0x13f/0x1f0
[  596.767017]  ? __x64_sys_open+0x1c0/0x1c0
[  596.767037]  ? syscall_enter_from_user_mode+0x1d/0x50
[  596.767057]  do_syscall_64+0x3b/0x90
[  596.767069]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  596.767083] RIP: 0033:0x7f0844a5aa04
[  596.767092] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  596.767104] RSP: 002b:00007f084201ced0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  596.767116] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844a5aa04
[  596.767124] RDX: 0000000000000002 RSI: 00007f084201d000 RDI: 00000000ffffff9c
[  596.767132] RBP: 00007f084201d000 R08: 0000000000000000 R09: ffffffffffffffff
[  596.767140] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  596.767147] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  596.767167]  </TASK>
[  596.774350] FAT-fs (loop5): bogus number of reserved sectors
[  596.835196] FAT-fs (loop5): Can't find a valid FAT filesystem
00:54:09 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
dup(r1)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:54:09 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000), 0x0, 0x0)

[  598.501077] Bluetooth: hci0: command 0x080f tx timeout
[  600.550073] Bluetooth: hci0: command 0x080f tx timeout
[  602.597060] Bluetooth: hci0: command 0x080f tx timeout
[  604.645084] Bluetooth: hci0: command 0x080f tx timeout
[  606.693075] Bluetooth: hci0: command 0x080f tx timeout
00:54:22 executing program 3:
clone3(&(0x7f0000000640)={0x123363500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))

00:54:22 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:54:22 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 20)

00:54:22 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000), 0x0, 0x0)

00:54:22 executing program 2:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))

00:54:22 executing program 0:
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:54:22 executing program 7:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
dup(r1)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:54:22 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

[  610.275642] FAULT_INJECTION: forcing a failure.
[  610.275642] name failslab, interval 1, probability 0, space 0, times 0
[  610.278054] CPU: 0 PID: 6211 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  610.279642] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  610.281895] Call Trace:
[  610.282406]  <TASK>
[  610.282852]  dump_stack_lvl+0x8b/0xb3
[  610.283654]  should_fail.cold+0x5/0xa
[  610.284436]  ? create_object.isra.0+0x3a/0xa20
[  610.285364]  should_failslab+0x5/0x10
[  610.286128]  kmem_cache_alloc+0x5b/0x480
[  610.286953]  create_object.isra.0+0x3a/0xa20
[  610.287854]  ? kasan_unpoison+0x23/0x50
[  610.288657]  kmem_cache_alloc+0x239/0x480
[  610.289498]  security_file_alloc+0x34/0x170
[  610.290368]  __alloc_file+0xb6/0x230
[  610.291110]  alloc_empty_file+0x6d/0x170
[  610.291928]  path_openat+0xe1/0x2870
[  610.292693]  ? path_lookupat+0x850/0x850
[  610.293507]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  610.294566]  ? lock_is_held_type+0xd7/0x130
[  610.295440]  do_filp_open+0x1aa/0x400
[  610.296220]  ? may_open_dev+0xf0/0xf0
[  610.296982]  ? lock_release+0x3b2/0x6f0
[  610.297773]  ? alloc_fd+0x2f0/0x670
[  610.298503]  ? lock_downgrade+0x6d0/0x6d0
[  610.299332]  ? rwlock_bug.part.0+0x90/0x90
[  610.300186]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[  610.301294]  ? _find_next_bit+0x1e5/0x260
[  610.302118]  ? _raw_spin_unlock+0x24/0x40
[  610.302946]  ? alloc_fd+0x2f0/0x670
[  610.303691]  do_sys_openat2+0x16d/0x4c0
[  610.304489]  ? build_open_flags+0x6f0/0x6f0
[  610.305343]  ? find_held_lock+0x2c/0x110
[  610.306150]  ? lock_release+0x3b2/0x6f0
[  610.306935]  ? do_syscall_64+0x3b/0x90
[  610.307724]  __x64_sys_openat+0x13f/0x1f0
[  610.308552]  ? __x64_sys_open+0x1c0/0x1c0
[  610.309384]  ? syscall_enter_from_user_mode+0x1d/0x50
[  610.310418]  do_syscall_64+0x3b/0x90
[  610.311155]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  610.312186] RIP: 0033:0x7f0844a5aa04
[  610.312919] Code: 84 00 00 00 00 00 44 89 54 24 0c e8 96 f9 ff ff 44 8b 54 24 0c 44 89 e2 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 89 44 24 0c e8 c8 f9 ff ff 8b 44
[  610.316545] RSP: 002b:00007f084201ced0 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  610.318043] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844a5aa04
[  610.319447] RDX: 0000000000000002 RSI: 00007f084201d000 RDI: 00000000ffffff9c
[  610.320863] RBP: 00007f084201d000 R08: 0000000000000000 R09: ffffffffffffffff
[  610.322274] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000002
[  610.323679] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  610.325115]  </TASK>
[  610.356658] loop6: detected capacity change from 0 to 4097
[  610.368963] FAT-fs (loop5): bogus number of reserved sectors
[  610.370114] FAT-fs (loop5): Can't find a valid FAT filesystem
[  610.379655] cgroup: fork rejected by pids controller in /syz4
00:54:23 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:54:23 executing program 6:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397f2b1bb3b5af60a2cfa1d88f4635990e7ea4590cd1c26ffcfeb5981e2f5f1558f4e45e978698f08952a3e594ee6c1a86605588755fc4527afc1793b6c63638d0208e496694f79f37830bc408e96605f2e568c54d9f1e30f6374f3488d9f0f9b0070f66111ba2d4206ae6269480d3e69960603062d921a91ac0e515e74868f3db09350af5e10d56aebcb7c83910db96583300feb7d08f7e892d3ac8560fc8a0e56cc4abce95c9e64d52845e07957ed95f516f04350"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:54:23 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 21)

00:54:23 executing program 7:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

[  610.502309] FAULT_INJECTION: forcing a failure.
[  610.502309] name failslab, interval 1, probability 0, space 0, times 0
[  610.504117] CPU: 1 PID: 6324 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  610.505303] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  610.506920] Call Trace:
[  610.507290]  <TASK>
[  610.507636]  dump_stack_lvl+0x8b/0xb3
[  610.508235]  should_fail.cold+0x5/0xa
[  610.508838]  ? alloc_workqueue+0x914/0xeb0
[  610.509509]  should_failslab+0x5/0x10
[  610.510055]  __kmalloc+0x72/0x440
[  610.510601]  alloc_workqueue+0x914/0xeb0
[  610.511178]  ? do_raw_spin_unlock+0x4f/0x210
[  610.511850]  ? _raw_spin_unlock+0x24/0x40
[  610.512449]  ? bd_prepare_to_claim+0x164/0x300
[  610.513173]  ? workqueue_sysfs_register+0x3e0/0x3e0
[  610.513988]  ? __fget_files+0x287/0x470
[  610.514652]  ? loop_configure+0x625/0x1940
[  610.515296]  loop_configure+0x6e6/0x1940
[  610.515929]  ? __sanitizer_cov_trace_cmp2+0x22/0x80
[  610.516758]  lo_ioctl+0x782/0x1850
[  610.517331]  ? __x64_sys_openat+0x13f/0x1f0
[  610.517985]  ? loop_set_status_old+0x1b0/0x1b0
[  610.518688]  ? avc_ss_reset+0x180/0x180
[  610.519330]  ? __lock_acquire+0xbac/0x6120
[  610.520050]  ? find_held_lock+0x2c/0x110
[  610.520671]  ? loop_set_status_old+0x1b0/0x1b0
[  610.521374]  blkdev_ioctl+0x356/0x7f0
[  610.521965]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  610.522700]  ? selinux_file_ioctl+0xb1/0x260
[  610.523384]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  610.524228]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  610.524956]  __x64_sys_ioctl+0x196/0x210
[  610.525586]  do_syscall_64+0x3b/0x90
[  610.526149]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  610.526930] RIP: 0033:0x7f0844aa78d7
[  610.527511] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  610.530464] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  610.531702] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  610.532862] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  610.534027] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  610.535181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  610.536342] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  610.537434]  </TASK>
00:54:23 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 22)

[  610.630567] FAULT_INJECTION: forcing a failure.
[  610.630567] name failslab, interval 1, probability 0, space 0, times 0
[  610.632351] CPU: 1 PID: 6332 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  610.633595] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  610.635363] Call Trace:
[  610.635761]  <TASK>
[  610.636106]  dump_stack_lvl+0x8b/0xb3
[  610.636699]  should_fail.cold+0x5/0xa
[  610.637286]  ? create_object.isra.0+0x3a/0xa20
[  610.638014]  should_failslab+0x5/0x10
[  610.638598]  kmem_cache_alloc+0x5b/0x480
[  610.639224]  create_object.isra.0+0x3a/0xa20
[  610.639956]  ? kasan_unpoison+0x23/0x50
[  610.640563]  __kmalloc+0x25b/0x440
[  610.641117]  alloc_workqueue+0x914/0xeb0
[  610.641741]  ? do_raw_spin_unlock+0x4f/0x210
[  610.642417]  ? _raw_spin_unlock+0x24/0x40
[  610.643057]  ? bd_prepare_to_claim+0x164/0x300
[  610.643770]  ? workqueue_sysfs_register+0x3e0/0x3e0
[  610.644549]  ? __fget_files+0x287/0x470
[  610.645168]  ? loop_configure+0x625/0x1940
[  610.645817]  loop_configure+0x6e6/0x1940
[  610.646451]  ? __sanitizer_cov_trace_cmp2+0x22/0x80
[  610.647227]  lo_ioctl+0x782/0x1850
[  610.647794]  ? __x64_sys_openat+0x13f/0x1f0
[  610.648468]  ? loop_set_status_old+0x1b0/0x1b0
[  610.649181]  ? avc_ss_reset+0x180/0x180
[  610.649810]  ? __lock_acquire+0xbac/0x6120
[  610.650509]  ? find_held_lock+0x2c/0x110
[  610.651134]  ? loop_set_status_old+0x1b0/0x1b0
[  610.651853]  blkdev_ioctl+0x356/0x7f0
[  610.652448]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  610.653183]  ? selinux_file_ioctl+0xb1/0x260
[  610.653857]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  610.654706]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  610.655437]  __x64_sys_ioctl+0x196/0x210
[  610.656096]  do_syscall_64+0x3b/0x90
[  610.656661]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  610.657447] RIP: 0033:0x7f0844aa78d7
[  610.658016] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  610.660820] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  610.661980] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  610.663064] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  610.664165] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  610.665246] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  610.666332] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  610.667435]  </TASK>
[  610.683735] FAT-fs (loop5): bogus number of reserved sectors
[  610.684669] FAT-fs (loop5): Can't find a valid FAT filesystem
00:54:23 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 23)

[  610.737559] FAULT_INJECTION: forcing a failure.
[  610.737559] name failslab, interval 1, probability 0, space 0, times 0
[  610.739385] CPU: 1 PID: 6334 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  610.740615] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  610.742368] Call Trace:
[  610.742766]  <TASK>
[  610.743110]  dump_stack_lvl+0x8b/0xb3
[  610.743733]  should_fail.cold+0x5/0xa
[  610.744333]  ? alloc_workqueue_attrs+0x38/0x80
[  610.745056]  should_failslab+0x5/0x10
[  610.745642]  kmem_cache_alloc_trace+0x55/0x3c0
[  610.746349]  alloc_workqueue_attrs+0x38/0x80
[  610.747041]  alloc_workqueue+0x939/0xeb0
[  610.747691]  ? do_raw_spin_unlock+0x4f/0x210
[  610.748374]  ? _raw_spin_unlock+0x24/0x40
[  610.748999]  ? bd_prepare_to_claim+0x164/0x300
[  610.749720]  ? workqueue_sysfs_register+0x3e0/0x3e0
[  610.750499]  ? __fget_files+0x287/0x470
[  610.751117]  ? loop_configure+0x625/0x1940
[  610.751788]  loop_configure+0x6e6/0x1940
[  610.752423]  ? __sanitizer_cov_trace_cmp2+0x22/0x80
[  610.753199]  lo_ioctl+0x782/0x1850
[  610.753745]  ? __x64_sys_openat+0x13f/0x1f0
[  610.754418]  ? loop_set_status_old+0x1b0/0x1b0
[  610.755123]  ? avc_ss_reset+0x180/0x180
[  610.755759]  ? __lock_acquire+0xbac/0x6120
[  610.756459]  ? find_held_lock+0x2c/0x110
[  610.757087]  ? loop_set_status_old+0x1b0/0x1b0
[  610.757787]  blkdev_ioctl+0x356/0x7f0
[  610.758380]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  610.759111]  ? selinux_file_ioctl+0xb1/0x260
[  610.759815]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  610.760658]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  610.761384]  __x64_sys_ioctl+0x196/0x210
[  610.762012]  do_syscall_64+0x3b/0x90
[  610.762578]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  610.763362] RIP: 0033:0x7f0844aa78d7
[  610.763935] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  610.766699] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  610.767867] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  610.768951] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  610.770032] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  610.771106] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  610.772195] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  610.773302]  </TASK>
00:54:23 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 24)

[  610.840605] FAULT_INJECTION: forcing a failure.
[  610.840605] name failslab, interval 1, probability 0, space 0, times 0
[  610.843127] CPU: 0 PID: 6337 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  610.844820] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  610.847228] Call Trace:
[  610.847796]  <TASK>
[  610.848273]  dump_stack_lvl+0x8b/0xb3
[  610.849110]  should_fail.cold+0x5/0xa
[  610.849935]  ? create_object.isra.0+0x3a/0xa20
[  610.850917]  should_failslab+0x5/0x10
[  610.851742]  kmem_cache_alloc+0x5b/0x480
[  610.852621]  create_object.isra.0+0x3a/0xa20
[  610.853551]  ? kasan_unpoison+0x23/0x50
[  610.854397]  kmem_cache_alloc_trace+0x22e/0x3c0
[  610.855395]  alloc_workqueue_attrs+0x38/0x80
[  610.856345]  alloc_workqueue+0x939/0xeb0
[  610.857208]  ? do_raw_spin_unlock+0x4f/0x210
[  610.858145]  ? _raw_spin_unlock+0x24/0x40
[  610.859020]  ? bd_prepare_to_claim+0x164/0x300
[  610.860015]  ? workqueue_sysfs_register+0x3e0/0x3e0
[  610.861089]  ? __fget_files+0x287/0x470
[  610.861942]  ? loop_configure+0x625/0x1940
[  610.862844]  loop_configure+0x6e6/0x1940
[  610.863721]  ? __sanitizer_cov_trace_cmp2+0x22/0x80
[  610.864793]  lo_ioctl+0x782/0x1850
[  610.865547]  ? __x64_sys_openat+0x13f/0x1f0
[  610.866469]  ? loop_set_status_old+0x1b0/0x1b0
[  610.867428]  ? avc_ss_reset+0x180/0x180
[  610.868314]  ? __lock_acquire+0xbac/0x6120
[  610.869282]  ? find_held_lock+0x2c/0x110
[  610.870147]  ? loop_set_status_old+0x1b0/0x1b0
[  610.871118]  blkdev_ioctl+0x356/0x7f0
[  610.871932]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  610.872929]  ? selinux_file_ioctl+0xb1/0x260
[  610.873851]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  610.875005]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  610.876016]  __x64_sys_ioctl+0x196/0x210
[  610.876877]  do_syscall_64+0x3b/0x90
[  610.877656]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  610.878729] RIP: 0033:0x7f0844aa78d7
[  610.879519] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  610.883338] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  610.884919] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  610.886398] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  610.887881] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  610.889356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  610.890822] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  610.892331]  </TASK>
[  610.903509] FAT-fs (loop5): bogus number of reserved sectors
[  610.904510] FAT-fs (loop5): Can't find a valid FAT filesystem
[  612.261099] Bluetooth: hci0: command 0x080f tx timeout
[  614.309119] Bluetooth: hci0: command 0x080f tx timeout
[  616.357088] Bluetooth: hci0: command 0x080f tx timeout
[  618.405120] Bluetooth: hci0: command 0x080f tx timeout
[  620.453110] Bluetooth: hci0: command 0x080f tx timeout
[  622.501165] Bluetooth: hci0: command 0x080f tx timeout
00:54:36 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 25)

00:54:36 executing program 2:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))

00:54:36 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
dup(r1)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397f2b1bb3b5af60a2cfa1d88f4635990e7ea4590cd1c26ffcfeb5981e2f5f1558f4e45e978698f08952a3e594ee6c1a86605588755fc4527afc1793b6c63638d0208e496694f79f37830bc408e96605f2e568c54d9f1e30f6374f3488d9f0f9b0070f66111ba2d4206ae6269480d3e69960603062d921a91ac0e515e74868f3db09350af5e10d56aebcb7c83910db96583300feb7d08f7e892d3ac8560fc8a0e56cc4abce95c9e64d52845e07957ed95f516f04350"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:54:36 executing program 7:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:54:36 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:54:36 executing program 3:
clone3(&(0x7f0000000640)={0x123363500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))

00:54:36 executing program 6:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:54:36 executing program 0:
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

[  623.883044] FAULT_INJECTION: forcing a failure.
[  623.883044] name failslab, interval 1, probability 0, space 0, times 0
[  623.883083] CPU: 0 PID: 6356 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  623.883111] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  623.883129] Call Trace:
[  623.883137]  <TASK>
[  623.883147]  dump_stack_lvl+0x8b/0xb3
[  623.883199]  should_fail.cold+0x5/0xa
[  623.883246]  should_failslab+0x5/0x10
[  623.883276]  __kmalloc_track_caller+0x79/0x430
[  623.883312]  ? kasprintf+0xbb/0xf0
[  623.883359]  kvasprintf+0xb5/0x150
[  623.883397]  ? bust_spinlocks+0xe0/0xe0
[  623.883440]  ? preempt_count_add+0x74/0x140
[  623.883479]  ? __is_module_percpu_address+0x237/0x300
[  623.883530]  kasprintf+0xbb/0xf0
[  623.883568]  ? kvasprintf_const+0x190/0x190
[  623.883614]  ? save_trace+0xd00/0xd00
[  623.883644]  ? lockdep_init_map_type+0x21a/0x7e0
[  623.883703]  alloc_workqueue+0x408/0xeb0
[  623.883741]  ? do_raw_spin_unlock+0x4f/0x210
[  623.883777]  ? _raw_spin_unlock+0x24/0x40
[  623.883813]  ? workqueue_sysfs_register+0x3e0/0x3e0
[  623.883866]  ? __fget_files+0x287/0x470
[  623.883909]  ? loop_configure+0x625/0x1940
[  623.883948]  loop_configure+0x6e6/0x1940
[  623.883988]  ? __sanitizer_cov_trace_cmp2+0x22/0x80
[  623.884044]  lo_ioctl+0x782/0x1850
[  623.884076]  ? __x64_sys_openat+0x13f/0x1f0
[  623.884121]  ? loop_set_status_old+0x1b0/0x1b0
[  623.884152]  ? avc_ss_reset+0x180/0x180
[  623.884212]  ? __lock_acquire+0xbac/0x6120
[  623.884321]  ? find_held_lock+0x2c/0x110
[  623.884358]  ? loop_set_status_old+0x1b0/0x1b0
[  623.884397]  blkdev_ioctl+0x356/0x7f0
[  623.884435]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  623.884474]  ? selinux_file_ioctl+0xb1/0x260
[  623.884514]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  623.884551]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  623.884595]  __x64_sys_ioctl+0x196/0x210
[  623.884636]  do_syscall_64+0x3b/0x90
[  623.884664]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  623.884695] RIP: 0033:0x7f0844aa78d7
[  623.884715] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  623.884739] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  623.884766] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  623.884785] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  623.884801] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  623.884817] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  623.884833] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  623.884878]  </TASK>
[  623.912430] FAT-fs (loop5): bogus number of reserved sectors
[  623.949454] FAT-fs (loop5): Can't find a valid FAT filesystem
00:54:36 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 26)

[  624.003660] FAULT_INJECTION: forcing a failure.
[  624.003660] name failslab, interval 1, probability 0, space 0, times 0
[  624.004925] CPU: 1 PID: 6370 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  624.004940] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  624.004951] Call Trace:
[  624.004955]  <TASK>
[  624.004961]  dump_stack_lvl+0x8b/0xb3
00:54:36 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
dup(r1)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[  624.004988]  should_fail.cold+0x5/0xa
00:54:36 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 27)

[  624.005011]  ? create_object.isra.0+0x3a/0xa20
[  624.005032]  should_failslab+0x5/0x10
[  624.005052]  kmem_cache_alloc+0x5b/0x480
[  624.005077]  create_object.isra.0+0x3a/0xa20
[  624.005093]  ? kasan_unpoison+0x23/0x50
[  624.005114]  __kmalloc_track_caller+0x25e/0x430
[  624.005136]  ? kasprintf+0xbb/0xf0
[  624.005162]  kvasprintf+0xb5/0x150
[  624.005184]  ? bust_spinlocks+0xe0/0xe0
[  624.005212]  ? preempt_count_add+0x74/0x140
[  624.005232]  ? __is_module_percpu_address+0x237/0x300
[  624.005261]  kasprintf+0xbb/0xf0
[  624.005279]  ? kvasprintf_const+0x190/0x190
00:54:36 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 28)

[  624.005300]  ? save_trace+0xd00/0xd00
[  624.005314]  ? lockdep_init_map_type+0x21a/0x7e0
[  624.005336]  alloc_workqueue+0x408/0xeb0
[  624.005353]  ? do_raw_spin_unlock+0x4f/0x210
[  624.005369]  ? _raw_spin_unlock+0x24/0x40
[  624.005386]  ? workqueue_sysfs_register+0x3e0/0x3e0
[  624.005410]  ? __fget_files+0x287/0x470
[  624.005430]  ? loop_configure+0x625/0x1940
[  624.005449]  loop_configure+0x6e6/0x1940
[  624.005467]  ? __sanitizer_cov_trace_cmp2+0x22/0x80
[  624.005492]  lo_ioctl+0x782/0x1850
[  624.005507]  ? __x64_sys_openat+0x13f/0x1f0
[  624.005528]  ? loop_set_status_old+0x1b0/0x1b0
[  624.005542]  ? avc_ss_reset+0x180/0x180
[  624.005570]  ? __lock_acquire+0xbac/0x6120
[  624.005620]  ? find_held_lock+0x2c/0x110
[  624.005637]  ? loop_set_status_old+0x1b0/0x1b0
[  624.005655]  blkdev_ioctl+0x356/0x7f0
[  624.005673]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  624.005690]  ? selinux_file_ioctl+0xb1/0x260
[  624.005707]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  624.005724]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  624.005744]  __x64_sys_ioctl+0x196/0x210
[  624.005764]  do_syscall_64+0x3b/0x90
[  624.005777]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  624.005791] RIP: 0033:0x7f0844aa78d7
[  624.005801] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  624.005812] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  624.005825] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  624.005833] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  624.005841] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  624.005848] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  624.005855] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  624.005876]  </TASK>
[  624.022127] FAT-fs (loop5): bogus number of reserved sectors
[  624.022140] FAT-fs (loop5): Can't find a valid FAT filesystem
[  624.070435] FAULT_INJECTION: forcing a failure.
[  624.070435] name failslab, interval 1, probability 0, space 0, times 0
[  624.070502] CPU: 1 PID: 6424 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  624.070516] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  624.070525] Call Trace:
[  624.070529]  <TASK>
[  624.070535]  dump_stack_lvl+0x8b/0xb3
[  624.070562]  should_fail.cold+0x5/0xa
[  624.070581]  ? apply_wqattrs_prepare+0xab/0x880
[  624.070602]  should_failslab+0x5/0x10
[  624.070616]  __kmalloc+0x72/0x440
[  624.070632]  ? lock_is_held_type+0xd7/0x130
[  624.070651]  apply_wqattrs_prepare+0xab/0x880
[  624.070679]  apply_workqueue_attrs_locked+0xc1/0x140
[  624.070699]  alloc_workqueue+0xb1a/0xeb0
[  624.070715]  ? do_raw_spin_unlock+0x4f/0x210
[  624.070734]  ? _raw_spin_unlock+0x24/0x40
[  624.070750]  ? workqueue_sysfs_register+0x3e0/0x3e0
[  624.070775]  ? __fget_files+0x287/0x470
[  624.070796]  ? loop_configure+0x625/0x1940
[  624.070815]  loop_configure+0x6e6/0x1940
[  624.070834]  ? __sanitizer_cov_trace_cmp2+0x22/0x80
[  624.070859]  lo_ioctl+0x782/0x1850
[  624.070877]  ? lock_downgrade+0x6d0/0x6d0
[  624.070892]  ? loop_set_status_old+0x1b0/0x1b0
[  624.070907]  ? avc_ss_reset+0x180/0x180
[  624.070933]  ? finish_task_switch.isra.0+0x226/0x870
[  624.070956]  ? finish_task_switch.isra.0+0x2b7/0x870
[  624.070979]  ? __schedule+0x895/0x2450
[  624.071033]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[  624.071054]  ? selinux_file_ioctl+0x58/0x260
[  624.071068]  ? loop_set_status_old+0x1b0/0x1b0
[  624.071086]  blkdev_ioctl+0x356/0x7f0
[  624.071105]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  624.071123]  ? selinux_file_ioctl+0xb1/0x260
[  624.071139]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  624.071156]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  624.071177]  __x64_sys_ioctl+0x196/0x210
[  624.071196]  do_syscall_64+0x3b/0x90
[  624.071209]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  624.071224] RIP: 0033:0x7f0844aa78d7
[  624.071233] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  624.071245] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  624.071258] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  624.071266] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  624.071274] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  624.071281] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  624.071288] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  624.071311]  </TASK>
[  624.117497] FAULT_INJECTION: forcing a failure.
[  624.117497] name failslab, interval 1, probability 0, space 0, times 0
[  624.117518] CPU: 1 PID: 6478 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  624.117532] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  624.117541] Call Trace:
[  624.117545]  <TASK>
[  624.117550]  dump_stack_lvl+0x8b/0xb3
[  624.117575]  should_fail.cold+0x5/0xa
[  624.117594]  ? create_object.isra.0+0x3a/0xa20
[  624.117611]  should_failslab+0x5/0x10
[  624.117625]  kmem_cache_alloc+0x5b/0x480
[  624.117647]  create_object.isra.0+0x3a/0xa20
[  624.117660]  ? kasan_unpoison+0x23/0x50
[  624.117676]  __kmalloc+0x25b/0x440
[  624.117696]  apply_wqattrs_prepare+0xab/0x880
[  624.117725]  apply_workqueue_attrs_locked+0xc1/0x140
[  624.117745]  alloc_workqueue+0xb1a/0xeb0
[  624.117765]  ? do_raw_spin_unlock+0x4f/0x210
[  624.117784]  ? _raw_spin_unlock+0x24/0x40
[  624.117800]  ? workqueue_sysfs_register+0x3e0/0x3e0
[  624.117825]  ? __fget_files+0x287/0x470
[  624.117845]  ? loop_configure+0x625/0x1940
[  624.117864]  loop_configure+0x6e6/0x1940
[  624.117882]  ? __sanitizer_cov_trace_cmp2+0x22/0x80
[  624.117906]  lo_ioctl+0x782/0x1850
[  624.117921]  ? __x64_sys_openat+0x13f/0x1f0
[  624.117942]  ? loop_set_status_old+0x1b0/0x1b0
[  624.117957]  ? avc_ss_reset+0x180/0x180
[  624.117986]  ? __lock_acquire+0xbac/0x6120
[  624.118043]  ? sched_ttwu_pending+0x254/0x420
[  624.118058]  ? loop_set_status_old+0x1b0/0x1b0
[  624.118076]  blkdev_ioctl+0x356/0x7f0
[  624.118094]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  624.118112]  ? selinux_file_ioctl+0xb1/0x260
[  624.118129]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  624.118146]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  624.118167]  __x64_sys_ioctl+0x196/0x210
[  624.118186]  do_syscall_64+0x3b/0x90
[  624.118199]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  624.118214] RIP: 0033:0x7f0844aa78d7
[  624.118223] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  624.118234] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  624.118247] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  624.118255] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  624.118263] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  624.118270] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  624.118277] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  624.118300]  </TASK>
[  624.123869] FAT-fs (loop5): bogus number of reserved sectors
[  624.193112] FAT-fs (loop5): Can't find a valid FAT filesystem
00:54:36 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 29)

[  624.276598] FAULT_INJECTION: forcing a failure.
[  624.276598] name failslab, interval 1, probability 0, space 0, times 0
[  624.279237] CPU: 0 PID: 6482 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  624.280851] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  624.283111] Call Trace:
[  624.283627]  <TASK>
[  624.284086]  dump_stack_lvl+0x8b/0xb3
[  624.284934]  should_fail.cold+0x5/0xa
[  624.285728]  ? alloc_workqueue_attrs+0x38/0x80
[  624.286673]  should_failslab+0x5/0x10
[  624.287453]  kmem_cache_alloc_trace+0x55/0x3c0
[  624.288428]  alloc_workqueue_attrs+0x38/0x80
[  624.289334]  apply_wqattrs_prepare+0xb3/0x880
[  624.290310]  apply_workqueue_attrs_locked+0xc1/0x140
[  624.291378]  alloc_workqueue+0xb1a/0xeb0
[  624.292238]  ? do_raw_spin_unlock+0x4f/0x210
[  624.293149]  ? _raw_spin_unlock+0x24/0x40
[  624.294004]  ? workqueue_sysfs_register+0x3e0/0x3e0
[  624.295058]  ? __fget_files+0x287/0x470
[  624.295901]  ? loop_configure+0x625/0x1940
[  624.296779]  loop_configure+0x6e6/0x1940
[  624.297614]  ? __sanitizer_cov_trace_cmp2+0x22/0x80
[  624.298650]  lo_ioctl+0x782/0x1850
[  624.299375]  ? __x64_sys_openat+0x13f/0x1f0
[  624.300296]  ? loop_set_status_old+0x1b0/0x1b0
[  624.301253]  ? avc_ss_reset+0x180/0x180
[  624.302113]  ? __lock_acquire+0xbac/0x6120
[  624.303090]  ? find_held_lock+0x2c/0x110
[  624.303953]  ? loop_set_status_old+0x1b0/0x1b0
[  624.304917]  blkdev_ioctl+0x356/0x7f0
[  624.305726]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  624.306724]  ? selinux_file_ioctl+0xb1/0x260
[  624.307642]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  624.308831]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  624.309826]  __x64_sys_ioctl+0x196/0x210
[  624.310690]  do_syscall_64+0x3b/0x90
[  624.311466]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  624.312531] RIP: 0033:0x7f0844aa78d7
[  624.313285] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  624.317032] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  624.318618] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  624.320087] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  624.321541] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  624.322982] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  624.324432] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  624.325913]  </TASK>
00:54:37 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
dup(r1)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397f2b1bb3b5af60a2cfa1d88f4635990e7ea4590cd1c26ffcfeb5981e2f5f1558f4e45e978698f08952a3e594ee6c1a86605588755fc4527afc1793b6c63638d0208e496694f79f37830bc408e96605f2e568c54d9f1e30f6374f3488d9f0f9b0070f66111ba2d4206ae6269480d3e69960603062d921a91ac0e515e74868f3db09350af5e10d56aebcb7c83910db96583300feb7d08f7e892d3ac8560fc8a0e56cc4abce95c9e64d52845e07957ed95f516f04350"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:54:37 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 30)

[  624.418825] FAULT_INJECTION: forcing a failure.
[  624.418825] name failslab, interval 1, probability 0, space 0, times 0
[  624.420137] CPU: 1 PID: 6487 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  624.421007] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  624.422219] Call Trace:
[  624.422503]  <TASK>
[  624.422744]  dump_stack_lvl+0x8b/0xb3
[  624.423205]  should_fail.cold+0x5/0xa
[  624.423654]  ? create_object.isra.0+0x3a/0xa20
[  624.424172]  should_failslab+0x5/0x10
[  624.424612]  kmem_cache_alloc+0x5b/0x480
[  624.425077]  create_object.isra.0+0x3a/0xa20
[  624.425564]  ? kasan_unpoison+0x23/0x50
[  624.426013]  kmem_cache_alloc_trace+0x22e/0x3c0
[  624.426532]  alloc_workqueue_attrs+0x38/0x80
[  624.427051]  apply_wqattrs_prepare+0xb3/0x880
[  624.427573]  apply_workqueue_attrs_locked+0xc1/0x140
[  624.428158]  alloc_workqueue+0xb1a/0xeb0
[  624.428602]  ? do_raw_spin_unlock+0x4f/0x210
[  624.429111]  ? _raw_spin_unlock+0x24/0x40
[  624.429590]  ? workqueue_sysfs_register+0x3e0/0x3e0
[  624.430177]  ? __fget_files+0x287/0x470
[  624.430648]  ? loop_configure+0x625/0x1940
[  624.431128]  loop_configure+0x6e6/0x1940
[  624.431585]  ? __sanitizer_cov_trace_cmp2+0x22/0x80
[  624.432164]  lo_ioctl+0x782/0x1850
[  624.432568]  ? __x64_sys_openat+0x13f/0x1f0
[  624.433099]  ? loop_set_status_old+0x1b0/0x1b0
[  624.433625]  ? avc_ss_reset+0x180/0x180
[  624.434111]  ? __lock_acquire+0xbac/0x6120
[  624.434647]  ? find_held_lock+0x2c/0x110
[  624.435129]  ? loop_set_status_old+0x1b0/0x1b0
[  624.435670]  blkdev_ioctl+0x356/0x7f0
[  624.436133]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  624.436696]  ? selinux_file_ioctl+0xb1/0x260
[  624.437195]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  624.437831]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  624.438371]  __x64_sys_ioctl+0x196/0x210
[  624.438835]  do_syscall_64+0x3b/0x90
[  624.439248]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  624.439824] RIP: 0033:0x7f0844aa78d7
[  624.440224] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  624.442256] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  624.443090] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  624.443881] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  624.444659] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  624.445434] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  624.446214] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  624.447025]  </TASK>
[  624.456086] FAT-fs (loop5): bogus number of reserved sectors
[  624.456732] FAT-fs (loop5): Can't find a valid FAT filesystem
00:54:37 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:54:37 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 31)

[  624.505902] FAULT_INJECTION: forcing a failure.
[  624.505902] name failslab, interval 1, probability 0, space 0, times 0
[  624.508223] CPU: 0 PID: 6492 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  624.509821] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  624.512108] Call Trace:
[  624.512632]  <TASK>
[  624.513115]  dump_stack_lvl+0x8b/0xb3
[  624.513922]  should_fail.cold+0x5/0xa
[  624.514713]  ? alloc_workqueue_attrs+0x38/0x80
[  624.515640]  should_failslab+0x5/0x10
[  624.516410]  kmem_cache_alloc_trace+0x55/0x3c0
[  624.517384]  alloc_workqueue_attrs+0x38/0x80
[  624.518303]  apply_wqattrs_prepare+0xbb/0x880
[  624.519239]  apply_workqueue_attrs_locked+0xc1/0x140
[  624.520281]  alloc_workqueue+0xb1a/0xeb0
[  624.521112]  ? do_raw_spin_unlock+0x4f/0x210
[  624.522010]  ? _raw_spin_unlock+0x24/0x40
[  624.522856]  ? workqueue_sysfs_register+0x3e0/0x3e0
[  624.523903]  ? __fget_files+0x287/0x470
[  624.524711]  ? loop_configure+0x625/0x1940
[  624.525567]  loop_configure+0x6e6/0x1940
[  624.526397]  ? __sanitizer_cov_trace_cmp2+0x22/0x80
[  624.527421]  lo_ioctl+0x782/0x1850
[  624.528141]  ? __x64_sys_openat+0x13f/0x1f0
[  624.529022]  ? loop_set_status_old+0x1b0/0x1b0
[  624.529948]  ? avc_ss_reset+0x180/0x180
[  624.530781]  ? __lock_acquire+0xbac/0x6120
[  624.531739]  ? find_held_lock+0x2c/0x110
[  624.532568]  ? loop_set_status_old+0x1b0/0x1b0
[  624.533501]  blkdev_ioctl+0x356/0x7f0
[  624.534284]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  624.535254]  ? selinux_file_ioctl+0xb1/0x260
[  624.536162]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  624.537250]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  624.538221]  __x64_sys_ioctl+0x196/0x210
[  624.539060]  do_syscall_64+0x3b/0x90
[  624.539815]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  624.540854] RIP: 0033:0x7f0844aa78d7
[  624.541598] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  624.545303] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  624.546829] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  624.548274] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  624.549691] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  624.551116] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  624.552545] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  624.553984]  </TASK>
[  624.554790] Bluetooth: hci0: command 0x080f tx timeout
00:54:37 executing program 2:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))

00:54:37 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 32)

00:54:37 executing program 6:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[  624.748926] FAULT_INJECTION: forcing a failure.
[  624.748926] name failslab, interval 1, probability 0, space 0, times 0
[  624.750487] CPU: 1 PID: 6498 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  624.751493] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  624.752719] Call Trace:
[  624.752978]  <TASK>
[  624.753202]  dump_stack_lvl+0x8b/0xb3
[  624.753599]  should_fail.cold+0x5/0xa
[  624.753995]  ? alloc_workqueue_attrs+0x38/0x80
[  624.754461]  should_failslab+0x5/0x10
[  624.754848]  kmem_cache_alloc_trace+0x55/0x3c0
[  624.755316]  alloc_workqueue_attrs+0x38/0x80
[  624.755783]  apply_wqattrs_prepare+0xbb/0x880
[  624.756262]  apply_workqueue_attrs_locked+0xc1/0x140
[  624.756782]  alloc_workqueue+0xb1a/0xeb0
[  624.757200]  ? do_raw_spin_unlock+0x4f/0x210
[  624.757650]  ? _raw_spin_unlock+0x24/0x40
[  624.758082]  ? workqueue_sysfs_register+0x3e0/0x3e0
[  624.758597]  ? __fget_files+0x287/0x470
[  624.759030]  ? loop_configure+0x625/0x1940
[  624.759500]  loop_configure+0x6e6/0x1940
[  624.759956]  ? __sanitizer_cov_trace_cmp2+0x22/0x80
[  624.760479]  lo_ioctl+0x782/0x1850
[  624.760871]  ? __x64_sys_openat+0x13f/0x1f0
[  624.761360]  ? loop_set_status_old+0x1b0/0x1b0
[  624.761856]  ? avc_ss_reset+0x180/0x180
[  624.762313]  ? __lock_acquire+0xbac/0x6120
[  624.762810]  ? find_held_lock+0x2c/0x110
[  624.763242]  ? loop_set_status_old+0x1b0/0x1b0
[  624.763751]  blkdev_ioctl+0x356/0x7f0
[  624.764180]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  624.764696]  ? selinux_file_ioctl+0xb1/0x260
[  624.765183]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  624.765772]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  624.766286]  __x64_sys_ioctl+0x196/0x210
[  624.766720]  do_syscall_64+0x3b/0x90
[  624.767127]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  624.767678] RIP: 0033:0x7f0844aa78d7
[  624.768090] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  624.770061] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  624.770873] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  624.771642] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  624.772416] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  624.773184] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  624.773941] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  624.774725]  </TASK>
[  626.598133] Bluetooth: hci0: command 0x080f tx timeout
[  628.646101] Bluetooth: hci0: command 0x080f tx timeout
[  630.693064] Bluetooth: hci0: command 0x080f tx timeout
[  632.741181] Bluetooth: hci0: command 0x080f tx timeout
[  634.790080] Bluetooth: hci0: command 0x080f tx timeout
[  636.837161] Bluetooth: hci0: command 0x080f tx timeout
[  638.886130] Bluetooth: hci0: command 0x080f tx timeout
00:54:53 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:54:53 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 33)

00:54:53 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:54:53 executing program 6:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)

00:54:53 executing program 7:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
dup(r1)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:54:53 executing program 3:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))

00:54:53 executing program 0:
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:54:53 executing program 2:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))

[  640.502368] FAULT_INJECTION: forcing a failure.
[  640.502368] name failslab, interval 1, probability 0, space 0, times 0
[  640.504806] CPU: 0 PID: 6513 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  640.506496] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  640.508914] Call Trace:
[  640.509455]  <TASK>
[  640.509927]  dump_stack_lvl+0x8b/0xb3
[  640.510759]  should_fail.cold+0x5/0xa
[  640.511593]  ? alloc_unbound_pwq+0x4ad/0xd70
[  640.512540]  should_failslab+0x5/0x10
[  640.513351]  kmem_cache_alloc_node+0x55/0x490
[  640.514302]  ? lock_is_held_type+0xd7/0x130
[  640.515258]  alloc_unbound_pwq+0x4ad/0xd70
[  640.516204]  apply_wqattrs_prepare+0x2a4/0x880
[  640.517210]  apply_workqueue_attrs_locked+0xc1/0x140
[  640.518294]  alloc_workqueue+0xb1a/0xeb0
[  640.519193]  ? do_raw_spin_unlock+0x4f/0x210
[  640.520158]  ? _raw_spin_unlock+0x24/0x40
[  640.521061]  ? workqueue_sysfs_register+0x3e0/0x3e0
00:54:53 executing program 3:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))

[  640.522143]  ? __fget_files+0x287/0x470
[  640.523121]  ? loop_configure+0x625/0x1940
[  640.524041]  loop_configure+0x6e6/0x1940
[  640.524917]  ? __sanitizer_cov_trace_cmp2+0x22/0x80
[  640.525987]  lo_ioctl+0x782/0x1850
[  640.526739]  ? __x64_sys_openat+0x13f/0x1f0
[  640.527681]  ? loop_set_status_old+0x1b0/0x1b0
[  640.528649]  ? avc_ss_reset+0x180/0x180
[  640.529528]  ? __lock_acquire+0xbac/0x6120
[  640.530508]  ? find_held_lock+0x2c/0x110
[  640.531373]  ? loop_set_status_old+0x1b0/0x1b0
[  640.532368]  blkdev_ioctl+0x356/0x7f0
[  640.533194]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  640.534221]  ? selinux_file_ioctl+0xb1/0x260
[  640.535158]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  640.536342]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  640.537353]  __x64_sys_ioctl+0x196/0x210
[  640.538236]  do_syscall_64+0x3b/0x90
[  640.539024]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  640.540114] RIP: 0033:0x7f0844aa78d7
[  640.540909] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  640.544794] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  640.546582] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  640.546601] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  640.546617] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  640.546632] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  640.551988] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  640.552036]  </TASK>
00:54:53 executing program 3:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))

00:54:53 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 34)

00:54:53 executing program 3:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x0, &(0x7f0000000000))

00:54:53 executing program 2:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))

[  640.647562] FAULT_INJECTION: forcing a failure.
[  640.647562] name failslab, interval 1, probability 0, space 0, times 0
00:54:53 executing program 2:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))

[  640.647584] CPU: 1 PID: 6542 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  640.647598] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  640.647607] Call Trace:
[  640.647611]  <TASK>
[  640.647617]  dump_stack_lvl+0x8b/0xb3
[  640.647644]  should_fail.cold+0x5/0xa
[  640.647664]  ? alloc_unbound_pwq+0x4ad/0xd70
[  640.647684]  should_failslab+0x5/0x10
[  640.647700]  kmem_cache_alloc_node+0x55/0x490
[  640.647718]  ? lock_is_held_type+0xd7/0x130
[  640.647738]  alloc_unbound_pwq+0x4ad/0xd70
[  640.647764]  apply_wqattrs_prepare+0x2a4/0x880
[  640.647793]  apply_workqueue_attrs_locked+0xc1/0x140
[  640.647813]  alloc_workqueue+0xb1a/0xeb0
[  640.647830]  ? do_raw_spin_unlock+0x4f/0x210
[  640.647849]  ? _raw_spin_unlock+0x24/0x40
[  640.647866]  ? workqueue_sysfs_register+0x3e0/0x3e0
[  640.647892]  ? __fget_files+0x287/0x470
[  640.647914]  ? loop_configure+0x625/0x1940
[  640.647933]  loop_configure+0x6e6/0x1940
[  640.647970]  ? __sanitizer_cov_trace_cmp2+0x22/0x80
[  640.647999]  lo_ioctl+0x782/0x1850
[  640.648014]  ? __x64_sys_openat+0x13f/0x1f0
[  640.648037]  ? loop_set_status_old+0x1b0/0x1b0
[  640.648052]  ? avc_ss_reset+0x180/0x180
[  640.648083]  ? __lock_acquire+0xbac/0x6120
[  640.648137]  ? find_held_lock+0x2c/0x110
[  640.648155]  ? loop_set_status_old+0x1b0/0x1b0
[  640.648174]  blkdev_ioctl+0x356/0x7f0
[  640.648193]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  640.648212]  ? selinux_file_ioctl+0xb1/0x260
[  640.648230]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  640.648248]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  640.648269]  __x64_sys_ioctl+0x196/0x210
[  640.648290]  do_syscall_64+0x3b/0x90
[  640.648303]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  640.648318] RIP: 0033:0x7f0844aa78d7
[  640.648328] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  640.648340] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  640.648354] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  640.648363] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  640.648370] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  640.648378] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  640.648386] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  640.648408]  </TASK>
[  640.934222] Bluetooth: hci0: command 0x080f tx timeout
[  642.981195] Bluetooth: hci0: command 0x080f tx timeout
[  645.029034] Bluetooth: hci0: command 0x080f tx timeout
[  647.226125] Bluetooth: hci0: command 0x080f tx timeout
[  649.253132] Bluetooth: hci0: command 0x080f tx timeout
[  651.301048] Bluetooth: hci0: command 0x080f tx timeout
[  653.349083] Bluetooth: hci0: command 0x080f tx timeout
00:55:07 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:55:07 executing program 3:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x0, &(0x7f0000000000))

00:55:07 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))

00:55:07 executing program 6:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397f2b1bb3b5af60a2cfa1d88f4635990e7ea4590cd1c26ffcfeb5981e2f5f1558f4e45e978698f08952a3e594ee6c1a86605588755fc4527afc1793b6c63638d0208e496694f79f37830bc408e96605f2e568c54d9f1e30f6374f3488d9f0f9b0070f66111ba2d4206ae6269480d3e69960603062d921a91ac0e515e74868f3db09350af5e10d56aebcb7c83910db96583300feb7d08f7e892d3ac8560fc8a0e56cc4abce95c9e64d52845e07957ed95f516f04350"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)

00:55:07 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 35)

00:55:07 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0) (fail_nth: 1)

00:55:07 executing program 4:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:55:07 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

[  654.526432] loop7: detected capacity change from 0 to 4097
[  654.531889] FAULT_INJECTION: forcing a failure.
[  654.531889] name failslab, interval 1, probability 0, space 0, times 0
[  654.533188] CPU: 0 PID: 6570 Comm: syz-executor.7 Not tainted 5.17.0-next-20220329 #1
[  654.534036] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  654.535266] Call Trace:
[  654.535548]  <TASK>
[  654.535791]  dump_stack_lvl+0x8b/0xb3
[  654.536230]  should_fail.cold+0x5/0xa
[  654.536652]  ? mempool_alloc+0x148/0x360
[  654.537109]  ? mempool_free+0x3b0/0x3b0
[  654.537557]  should_failslab+0x5/0x10
[  654.537977]  kmem_cache_alloc+0x5b/0x480
[  654.538444]  ? mempool_free+0x3b0/0x3b0
[  654.538898]  mempool_alloc+0x148/0x360
[  654.539338]  ? __lock_acquire+0x164e/0x6120
[  654.539825]  ? mempool_resize+0x7d0/0x7d0
[  654.539963] FAULT_INJECTION: forcing a failure.
[  654.539963] name failslab, interval 1, probability 0, space 0, times 0
[  654.540269]  ? __lock_acquire+0x164e/0x6120
[  654.542897]  bio_alloc_bioset+0x314/0x4f0
[  654.543364]  ? bvec_alloc+0x200/0x200
[  654.543778]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  654.544359]  ? find_held_lock+0x2c/0x110
[  654.544804]  ? invalidate_inode_pages2_range+0x935/0xbb0
[  654.545410]  bio_alloc_kiocb+0x98/0x390
[  654.545859]  __blkdev_direct_IO+0x27a/0xc80
[  654.546339]  ? __mnt_want_write+0x3b/0x2e0
[  654.546817]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[  654.547375]  ? filemap_check_errors+0xa5/0x150
[  654.547881]  ? blkdev_bio_end_io_async+0x250/0x250
[  654.548434]  ? filemap_fdatawait_keep_errors+0xe0/0xe0
[  654.549014]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[  654.549617]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[  654.550163]  ? __mark_inode_dirty+0x4c4/0xeb0
[  654.550658]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[  654.551264]  ? __sanitizer_cov_trace_cmp4+0x1c/0x70
[  654.551817]  ? iov_iter_npages+0x2c1/0x690
[  654.552307]  blkdev_direct_IO+0x13e/0x170
[  654.552770]  generic_file_direct_write+0x1ed/0x540
[  654.553320]  __generic_file_write_iter+0x19e/0x4b0
[  654.553864]  blkdev_write_iter+0x3f4/0x690
[  654.554334]  ? blkdev_open+0x2c0/0x2c0
[  654.554765]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  654.555350]  ? lock_is_held_type+0xd7/0x130
[  654.555833]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  654.556456]  new_sync_write+0x390/0x560
[  654.556906]  ? new_sync_read+0x5f0/0x5f0
[  654.557368]  ? inode_security+0x105/0x130
[  654.557791]  ? avc_policy_seqno+0x9/0x70
[  654.558243]  ? __sanitizer_cov_trace_cmp4+0x1c/0x70
[  654.558802]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  654.559408]  ? security_file_permission+0xb1/0xd0
[  654.559952]  vfs_write+0x7b9/0xac0
[  654.560378]  __x64_sys_pwrite64+0x1f7/0x250
[  654.560861]  ? vfs_write+0xac0/0xac0
[  654.561277]  ? syscall_enter_from_user_mode+0x1d/0x50
[  654.561855]  do_syscall_64+0x3b/0x90
[  654.562267]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  654.562836] RIP: 0033:0x7fde6bde4b19
[  654.563245] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  654.565285] RSP: 002b:00007fde6935a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[  654.566119] RAX: ffffffffffffffda RBX: 00007fde6bef7f60 RCX: 00007fde6bde4b19
[  654.566904] RDX: 00000000fffffe5f RSI: 0000000020000000 RDI: 0000000000000006
[  654.567690] RBP: 00007fde6935a1d0 R08: 0000000000000000 R09: 0000000000000000
[  654.568489] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  654.569272] R13: 00007ffce3cf32ff R14: 00007fde6935a300 R15: 0000000000022000
[  654.570084]  </TASK>
[  654.570344] CPU: 1 PID: 6577 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  654.571935] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  654.574174] Call Trace:
[  654.574693]  <TASK>
[  654.574704]  dump_stack_lvl+0x8b/0xb3
[  654.575717]  should_fail.cold+0x5/0xa
[  654.575756]  ? kobject_uevent_env+0x236/0xfa0
[  654.575783]  should_failslab+0x5/0x10
[  654.575810]  kmem_cache_alloc_trace+0x55/0x3c0
[  654.575842]  ? lock_is_held_type+0xd7/0x130
[  654.575877]  kobject_uevent_env+0x236/0xfa0
[  654.575900]  ? dev_uevent_filter+0xd0/0xd0
[  654.575931]  ? _raw_spin_unlock+0x24/0x40
[  654.575964]  disk_event_uevent+0x17b/0x1e0
[  654.575992]  ? disk_events_async_show+0x10/0x10
[  654.576023]  ? __fget_files+0x287/0x470
[  654.576063]  disk_force_media_change+0x1e/0xc0
[  654.576092]  loop_configure+0x755/0x1940
[  654.576128]  ? __sanitizer_cov_trace_cmp2+0x22/0x80
[  654.576195]  lo_ioctl+0x782/0x1850
[  654.576224]  ? __x64_sys_openat+0x13f/0x1f0
[  654.576263]  ? loop_set_status_old+0x1b0/0x1b0
[  654.576291]  ? avc_ss_reset+0x180/0x180
00:55:07 executing program 3:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x0, &(0x7f0000000000))

[  654.576343]  ? __lock_acquire+0xbac/0x6120
[  654.576438]  ? find_held_lock+0x2c/0x110
[  654.576471]  ? loop_set_status_old+0x1b0/0x1b0
[  654.576505]  blkdev_ioctl+0x356/0x7f0
[  654.576539]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  654.576572]  ? selinux_file_ioctl+0xb1/0x260
[  654.576604]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  654.576637]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  654.576675]  __x64_sys_ioctl+0x196/0x210
[  654.576712]  do_syscall_64+0x3b/0x90
[  654.576735]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  654.576763] RIP: 0033:0x7f0844aa78d7
[  654.576781] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  654.576802] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  654.576826] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  654.576842] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  654.576856] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  654.576870] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  654.576884] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  654.576923]  </TASK>
[  654.683059] FAT-fs (loop5): bogus number of reserved sectors
[  654.683755] FAT-fs (loop5): Can't find a valid FAT filesystem
00:55:07 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0) (fail_nth: 2)

00:55:07 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 36)

[  654.741285] FAULT_INJECTION: forcing a failure.
[  654.741285] name failslab, interval 1, probability 0, space 0, times 0
[  654.742501] CPU: 0 PID: 6683 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  654.743281] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  654.744416] Call Trace:
[  654.744675]  <TASK>
[  654.744900]  dump_stack_lvl+0x8b/0xb3
[  654.745298]  should_fail.cold+0x5/0xa
[  654.745687]  ? create_object.isra.0+0x3a/0xa20
[  654.746149]  should_failslab+0x5/0x10
[  654.746534]  kmem_cache_alloc+0x5b/0x480
[  654.746955]  create_object.isra.0+0x3a/0xa20
[  654.747394]  ? kasan_unpoison+0x23/0x50
[  654.747807]  kmem_cache_alloc_trace+0x22e/0x3c0
[  654.748296]  kobject_uevent_env+0x236/0xfa0
[  654.748725]  ? dev_uevent_filter+0xd0/0xd0
[  654.749163]  ? _raw_spin_unlock+0x24/0x40
[  654.749583]  disk_event_uevent+0x17b/0x1e0
[  654.750013]  ? disk_events_async_show+0x10/0x10
[  654.750483]  ? __fget_files+0x287/0x470
[  654.750891]  disk_force_media_change+0x1e/0xc0
[  654.751352]  loop_configure+0x755/0x1940
[  654.751785]  ? __sanitizer_cov_trace_cmp2+0x22/0x80
[  654.752347]  lo_ioctl+0x782/0x1850
[  654.752735]  ? __x64_sys_openat+0x13f/0x1f0
[  654.753196]  ? loop_set_status_old+0x1b0/0x1b0
[  654.753652]  ? avc_ss_reset+0x180/0x180
[  654.754086]  ? __lock_acquire+0xbac/0x6120
[  654.754570]  ? find_held_lock+0x2c/0x110
[  654.755016]  ? loop_set_status_old+0x1b0/0x1b0
[  654.755516]  blkdev_ioctl+0x356/0x7f0
[  654.755929]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  654.756420]  ? selinux_file_ioctl+0xb1/0x260
[  654.756910]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  654.757508]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  654.758034]  __x64_sys_ioctl+0x196/0x210
[  654.758474]  do_syscall_64+0x3b/0x90
[  654.759550]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  654.760898] RIP: 0033:0x7f0844aa78d7
[  654.761951] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  654.766629] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  654.768794] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  654.770409] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  654.772000] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  654.773705] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  654.775228] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  654.776979]  </TASK>
[  654.801960] loop7: detected capacity change from 0 to 4097
00:55:07 executing program 3:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, 0x0)

[  654.822126] FAULT_INJECTION: forcing a failure.
[  654.822126] name failslab, interval 1, probability 0, space 0, times 0
[  654.825175] CPU: 0 PID: 6693 Comm: syz-executor.7 Not tainted 5.17.0-next-20220329 #1
[  654.826877] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  654.829603] Call Trace:
[  654.830160]  <TASK>
[  654.830694]  dump_stack_lvl+0x8b/0xb3
[  654.831537]  should_fail.cold+0x5/0xa
[  654.832439]  ? create_object.isra.0+0x3a/0xa20
[  654.833388]  should_failslab+0x5/0x10
[  654.834201]  kmem_cache_alloc+0x5b/0x480
[  654.835071]  create_object.isra.0+0x3a/0xa20
[  654.836004]  ? kasan_unpoison+0x23/0x50
[  654.836859]  kmem_cache_alloc+0x239/0x480
[  654.837743]  ? mempool_free+0x3b0/0x3b0
[  654.838591]  mempool_alloc+0x148/0x360
[  654.839430]  ? __lock_acquire+0x164e/0x6120
[  654.840361]  ? mempool_resize+0x7d0/0x7d0
[  654.841265]  ? __lock_acquire+0x164e/0x6120
[  654.842190]  bio_alloc_bioset+0x314/0x4f0
[  654.843096]  ? bvec_alloc+0x200/0x200
[  654.843909]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  654.845048]  ? find_held_lock+0x2c/0x110
[  654.845897]  ? invalidate_inode_pages2_range+0x935/0xbb0
[  654.847062]  bio_alloc_kiocb+0x98/0x390
[  654.847906]  __blkdev_direct_IO+0x27a/0xc80
[  654.848841]  ? __mnt_want_write+0x3b/0x2e0
[  654.849745]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[  654.850916]  ? filemap_check_errors+0xa5/0x150
[  654.851883]  ? blkdev_bio_end_io_async+0x250/0x250
[  654.852920]  ? filemap_fdatawait_keep_errors+0xe0/0xe0
[  654.854028]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[  654.855174]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[  654.856244]  ? __mark_inode_dirty+0x4c4/0xeb0
[  654.857179]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[  654.858330]  ? __sanitizer_cov_trace_cmp4+0x1c/0x70
[  654.859375]  ? iov_iter_npages+0x2c1/0x690
[  654.860281]  blkdev_direct_IO+0x13e/0x170
[  654.861156]  generic_file_direct_write+0x1ed/0x540
[  654.862203]  __generic_file_write_iter+0x19e/0x4b0
[  654.863247]  blkdev_write_iter+0x3f4/0x690
[  654.864142]  ? blkdev_open+0x2c0/0x2c0
[  654.865001]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  654.866237]  ? lock_is_held_type+0xd7/0x130
[  654.867254]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  654.868574]  new_sync_write+0x390/0x560
[  654.869516]  ? new_sync_read+0x5f0/0x5f0
[  654.870483]  ? inode_security+0x105/0x130
[  654.871454]  ? avc_policy_seqno+0x9/0x70
[  654.872418]  ? __sanitizer_cov_trace_cmp4+0x1c/0x70
[  654.873598]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  654.874889]  ? security_file_permission+0xb1/0xd0
[  654.876020]  vfs_write+0x7b9/0xac0
[  654.876895]  __x64_sys_pwrite64+0x1f7/0x250
[  654.877826]  ? vfs_write+0xac0/0xac0
[  654.878632]  ? syscall_enter_from_user_mode+0x1d/0x50
[  654.879753]  do_syscall_64+0x3b/0x90
[  654.880567]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  654.881673] RIP: 0033:0x7fde6bde4b19
[  654.882466] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  654.886566] RSP: 002b:00007fde6935a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[  654.888512] RAX: ffffffffffffffda RBX: 00007fde6bef7f60 RCX: 00007fde6bde4b19
[  654.890200] RDX: 00000000fffffe5f RSI: 0000000020000000 RDI: 0000000000000006
[  654.891887] RBP: 00007fde6935a1d0 R08: 0000000000000000 R09: 0000000000000000
[  654.893598] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  654.895276] R13: 00007ffce3cf32ff R14: 00007fde6935a300 R15: 0000000000022000
[  654.896999]  </TASK>
[  654.925742] FAT-fs (loop5): bogus number of reserved sectors
[  654.927294] FAT-fs (loop5): Can't find a valid FAT filesystem
00:55:07 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 37)

00:55:07 executing program 3:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, 0x0)

[  655.033542] FAULT_INJECTION: forcing a failure.
[  655.033542] name failslab, interval 1, probability 0, space 0, times 0
[  655.036024] CPU: 0 PID: 6699 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  655.037576] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  655.039784] Call Trace:
[  655.040297]  <TASK>
[  655.040736]  dump_stack_lvl+0x8b/0xb3
[  655.041500]  should_fail.cold+0x5/0xa
[  655.042260]  ? create_object.isra.0+0x3a/0xa20
[  655.043157]  should_failslab+0x5/0x10
[  655.043992]  kmem_cache_alloc+0x5b/0x480
[  655.044916]  create_object.isra.0+0x3a/0xa20
[  655.045881]  ? kasan_unpoison+0x23/0x50
[  655.046761]  __kmalloc+0x25b/0x440
[  655.047554]  kobject_get_path+0xc0/0x1d0
[  655.048478]  kobject_uevent_env+0x25c/0xfa0
[  655.049420]  ? __mutex_unlock_slowpath+0x15c/0x5e0
[  655.050500]  disk_event_uevent+0x17b/0x1e0
[  655.051398]  ? disk_events_async_show+0x10/0x10
[  655.052338]  disk_force_media_change+0x1e/0xc0
[  655.053226]  __loop_clr_fd+0x750/0xda0
[  655.054002]  ? __loop_clr_fd+0xda0/0xda0
[  655.054795]  lo_release+0x1ac/0x1f0
[  655.055513]  blkdev_put+0x2e8/0x9a0
[  655.056252]  blkdev_close+0x64/0x80
[  655.056968]  __fput+0x272/0x9d0
[  655.057611]  ? blkdev_fsync+0xa0/0xa0
[  655.058376]  task_work_run+0xe2/0x1a0
[  655.059135]  exit_to_user_mode_prepare+0x199/0x1a0
[  655.060097]  syscall_exit_to_user_mode+0x19/0x50
[  655.061038]  do_syscall_64+0x48/0x90
[  655.061833]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  655.062953] RIP: 0033:0x7f0844a5a72b
[  655.063756] Code: 0f 05 48 3d 00 f0 ff ff 77 45 c3 0f 1f 40 00 48 83 ec 18 89 7c 24 0c e8 63 fc ff ff 8b 7c 24 0c 41 89 c0 b8 03 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 35 44 89 c7 89 44 24 0c e8 a1 fc ff ff 8b 44
[  655.067754] RSP: 002b:00007f084201cf30 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  655.069411] RAX: 0000000000000000 RBX: 00007f084201d6bc RCX: 00007f0844a5a72b
[  655.070954] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  655.072507] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  655.074050] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000010
[  655.075593] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  655.077182]  </TASK>
[  656.549049] Bluetooth: hci0: command 0x080f tx timeout
[  658.598056] Bluetooth: hci0: command 0x080f tx timeout
[  660.645086] Bluetooth: hci0: command 0x080f tx timeout
[  662.693056] Bluetooth: hci0: command 0x080f tx timeout
[  664.741048] Bluetooth: hci0: command 0x080f tx timeout
00:55:20 executing program 3:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, 0x0)

00:55:20 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:55:20 executing program 4:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:55:20 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))

[  668.032761] loop7: detected capacity change from 0 to 4097
[  668.035720] FAULT_INJECTION: forcing a failure.
[  668.035720] name failslab, interval 1, probability 0, space 0, times 0
[  668.037004] CPU: 1 PID: 6714 Comm: syz-executor.7 Not tainted 5.17.0-next-20220329 #1
[  668.037826] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  668.038995] Call Trace:
[  668.039260]  <TASK>
[  668.039493]  dump_stack_lvl+0x8b/0xb3
[  668.039907]  should_fail.cold+0x5/0xa
[  668.040317]  ? mempool_alloc+0x148/0x360
[  668.040756]  ? mempool_free+0x3b0/0x3b0
[  668.041175]  should_failslab+0x5/0x10
[  668.041573]  kmem_cache_alloc+0x5b/0x480
[  668.042009]  ? mempool_free+0x3b0/0x3b0
[  668.042429]  mempool_alloc+0x148/0x360
[  668.042854]  ? mempool_resize+0x7d0/0x7d0
[  668.043301]  ? __lock_acquire+0x164e/0x6120
[  668.043762]  ? mempool_resize+0x7d0/0x7d0
[  668.044214]  bvec_alloc+0x16b/0x200
00:55:20 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0) (fail_nth: 3)

00:55:20 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 38)

00:55:20 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:55:20 executing program 6:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

[  668.044617]  bio_alloc_bioset+0x39e/0x4f0
[  668.045236]  ? bvec_alloc+0x200/0x200
[  668.045669]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  668.046223]  ? find_held_lock+0x2c/0x110
[  668.046233] FAULT_INJECTION: forcing a failure.
[  668.046233] name failslab, interval 1, probability 0, space 0, times 0
[  668.046661]  ? invalidate_inode_pages2_range+0x935/0xbb0
[  668.049097]  bio_alloc_kiocb+0x98/0x390
[  668.049524]  __blkdev_direct_IO+0x27a/0xc80
[  668.049979]  ? __mnt_want_write+0x3b/0x2e0
[  668.050433]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[  668.051026]  ? filemap_check_errors+0xa5/0x150
[  668.051521]  ? blkdev_bio_end_io_async+0x250/0x250
[  668.052039]  ? filemap_fdatawait_keep_errors+0xe0/0xe0
[  668.052588]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[  668.053181]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[  668.053722]  ? __mark_inode_dirty+0x4c4/0xeb0
[  668.054197]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[  668.054769]  ? __sanitizer_cov_trace_cmp4+0x1c/0x70
[  668.055284]  ? iov_iter_npages+0x2c1/0x690
[  668.055726]  blkdev_direct_IO+0x13e/0x170
[  668.056177]  generic_file_direct_write+0x1ed/0x540
[  668.056707]  __generic_file_write_iter+0x19e/0x4b0
[  668.057249]  blkdev_write_iter+0x3f4/0x690
[  668.057699]  ? blkdev_open+0x2c0/0x2c0
[  668.058108]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  668.058653]  ? lock_is_held_type+0xd7/0x130
[  668.059126]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  668.059701]  new_sync_write+0x390/0x560
[  668.060120]  ? new_sync_read+0x5f0/0x5f0
[  668.060584]  ? inode_security+0x105/0x130
[  668.061020]  ? avc_policy_seqno+0x9/0x70
[  668.061441]  ? __sanitizer_cov_trace_cmp4+0x1c/0x70
[  668.061960]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  668.062530]  ? security_file_permission+0xb1/0xd0
[  668.063065]  vfs_write+0x7b9/0xac0
[  668.063467]  __x64_sys_pwrite64+0x1f7/0x250
[  668.063930]  ? vfs_write+0xac0/0xac0
[  668.064332]  ? syscall_enter_from_user_mode+0x1d/0x50
[  668.064881]  do_syscall_64+0x3b/0x90
[  668.065265]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  668.065805] RIP: 0033:0x7fde6bde4b19
[  668.066188] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  668.068091] RSP: 002b:00007fde6935a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[  668.068889] RAX: ffffffffffffffda RBX: 00007fde6bef7f60 RCX: 00007fde6bde4b19
[  668.069649] RDX: 00000000fffffe5f RSI: 0000000020000000 RDI: 0000000000000006
[  668.070412] RBP: 00007fde6935a1d0 R08: 0000000000000000 R09: 0000000000000000
[  668.071173] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  668.071926] R13: 00007ffce3cf32ff R14: 00007fde6935a300 R15: 0000000000022000
[  668.072687]  </TASK>
[  668.072937] CPU: 0 PID: 6719 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  668.074300] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  668.076238] Call Trace:
[  668.076706]  <TASK>
[  668.077072]  dump_stack_lvl+0x8b/0xb3
[  668.077748]  should_fail.cold+0x5/0xa
[  668.078418]  ? create_object.isra.0+0x3a/0xa20
[  668.079237]  should_failslab+0x5/0x10
[  668.079838]  kmem_cache_alloc+0x5b/0x480
[  668.080592]  create_object.isra.0+0x3a/0xa20
[  668.081283]  ? kasan_unpoison+0x23/0x50
[  668.081869]  __kmalloc+0x25b/0x440
[  668.082421]  kobject_get_path+0xc0/0x1d0
[  668.083078]  kobject_uevent_env+0x25c/0xfa0
[  668.083754]  ? _raw_spin_unlock+0x24/0x40
[  668.084465]  disk_event_uevent+0x17b/0x1e0
[  668.085213]  ? disk_events_async_show+0x10/0x10
[  668.086026]  ? __fget_files+0x287/0x470
[  668.086696]  disk_force_media_change+0x1e/0xc0
[  668.087485]  loop_configure+0x755/0x1940
[  668.088204]  ? __sanitizer_cov_trace_cmp2+0x22/0x80
[  668.089103]  lo_ioctl+0x782/0x1850
[  668.089735]  ? __x64_sys_openat+0x13f/0x1f0
[  668.090514]  ? loop_set_status_old+0x1b0/0x1b0
[  668.091261]  ? avc_ss_reset+0x180/0x180
[  668.091967]  ? __lock_acquire+0xbac/0x6120
[  668.092789]  ? find_held_lock+0x2c/0x110
[  668.093452]  ? loop_set_status_old+0x1b0/0x1b0
[  668.094162]  blkdev_ioctl+0x356/0x7f0
[  668.094748]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  668.095518]  ? selinux_file_ioctl+0xb1/0x260
[  668.096259]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  668.097218]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  668.098068]  __x64_sys_ioctl+0x196/0x210
[  668.098775]  do_syscall_64+0x3b/0x90
[  668.099393]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  668.100303] RIP: 0033:0x7f0844aa78d7
[  668.100945] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  668.104111] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  668.105371] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  668.106550] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  668.107767] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  668.108952] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  668.110121] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  668.111257]  </TASK>
00:55:20 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0) (fail_nth: 4)

[  668.163318] FAT-fs (loop5): bogus number of reserved sectors
[  668.164339] FAT-fs (loop5): Can't find a valid FAT filesystem
[  668.183504] FAULT_INJECTION: forcing a failure.
[  668.183504] name failslab, interval 1, probability 0, space 0, times 0
[  668.185121] CPU: 1 PID: 6829 Comm: syz-executor.7 Not tainted 5.17.0-next-20220329 #1
[  668.185937] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  668.187120] Call Trace:
[  668.187388]  <TASK>
[  668.187622]  dump_stack_lvl+0x8b/0xb3
[  668.188038]  should_fail.cold+0x5/0xa
[  668.188449]  ? create_object.isra.0+0x3a/0xa20
[  668.188929]  should_failslab+0x5/0x10
[  668.189327]  kmem_cache_alloc+0x5b/0x480
[  668.189762]  create_object.isra.0+0x3a/0xa20
[  668.190224]  ? kasan_unpoison+0x23/0x50
[  668.190643]  kmem_cache_alloc+0x239/0x480
[  668.191089]  jbd2__journal_start+0x18c/0x8d0
[  668.191557]  __ext4_journal_start_sb+0x392/0x470
[  668.192070]  ext4_file_write_iter+0xce8/0x1800
[  668.192560]  ? ext4_file_read_iter+0x3f0/0x3f0
[  668.193049]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  668.193601]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  668.194178]  new_sync_write+0x390/0x560
[  668.194597]  ? new_sync_read+0x5f0/0x5f0
[  668.195026]  ? x86_pmu_enable+0xc10/0xd90
[  668.195458]  ? lock_release+0x6f0/0x6f0
[  668.195873]  ? avc_policy_seqno+0x9/0x70
[  668.196296]  ? __sanitizer_cov_trace_cmp4+0x1c/0x70
[  668.196838]  ? lock_is_held_type+0xd7/0x130
[  668.197304]  vfs_write+0x7b9/0xac0
[  668.197686]  __x64_sys_pwrite64+0x1f7/0x250
[  668.198146]  ? vfs_write+0xac0/0xac0
[  668.198545]  ? syscall_enter_from_user_mode+0x1d/0x50
[  668.199100]  do_syscall_64+0x3b/0x90
[  668.199489]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  668.200027] RIP: 0033:0x7fde6bde4b19
[  668.200410] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  668.202299] RSP: 002b:00007fde6935a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[  668.203086] RAX: ffffffffffffffda RBX: 00007fde6bef7f60 RCX: 00007fde6bde4b19
[  668.203821] RDX: 00000000fffffe5f RSI: 0000000020000000 RDI: 0000000000000004
[  668.204573] RBP: 00007fde6935a1d0 R08: 0000000000000000 R09: 0000000000000000
[  668.205312] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  668.206041] R13: 00007ffce3cf32ff R14: 00007fde6935a300 R15: 0000000000022000
[  668.206789]  </TASK>
00:55:20 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 39)

00:55:20 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397f2b1bb3b5af60a2cfa1d88f4635990e7ea4590cd1c26ffcfeb5981e2f5f1558f4e45e978698f08952a3e594ee6c1a86605588755fc4527afc1793b6c63638d0208e496694f79f37830bc408e96605f2e568c54d9f1e30f6374f3488d9f0f9b0070f66111ba2d4206ae6269480d3e69960603062d921a91ac0e515e74868f3db09350af5e10d56aebcb7c83910db96583300feb7d08f7e892d3ac8560fc8a0e56cc4abce95c9e64d52845e07957ed95f516f04350"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[  668.235941] FAULT_INJECTION: forcing a failure.
[  668.235941] name failslab, interval 1, probability 0, space 0, times 0
[  668.238187] CPU: 0 PID: 6836 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  668.239570] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  668.241697] Call Trace:
[  668.242110]  <TASK>
[  668.242477]  dump_stack_lvl+0x8b/0xb3
[  668.243104]  should_fail.cold+0x5/0xa
[  668.243786]  ? __alloc_skb+0x211/0x340
[  668.244443]  should_failslab+0x5/0x10
[  668.245116]  kmem_cache_alloc_node+0x55/0x490
[  668.245921]  __alloc_skb+0x211/0x340
[  668.246580]  alloc_uevent_skb+0x7b/0x210
[  668.247283]  kobject_uevent_env+0xaa4/0xfa0
[  668.248040]  ? _raw_spin_unlock+0x24/0x40
[  668.248783]  disk_event_uevent+0x17b/0x1e0
[  668.249539]  ? disk_events_async_show+0x10/0x10
[  668.250335]  ? __fget_files+0x287/0x470
[  668.251014]  disk_force_media_change+0x1e/0xc0
[  668.251832]  loop_configure+0x755/0x1940
[  668.252543]  ? __sanitizer_cov_trace_cmp2+0x22/0x80
[  668.253419]  lo_ioctl+0x782/0x1850
[  668.253982]  ? __x64_sys_openat+0x13f/0x1f0
[  668.254703]  ? loop_set_status_old+0x1b0/0x1b0
[  668.255471]  ? avc_ss_reset+0x180/0x180
[  668.256144]  ? __lock_acquire+0xbac/0x6120
[  668.256944]  ? find_held_lock+0x2c/0x110
[  668.257614]  ? loop_set_status_old+0x1b0/0x1b0
[  668.258434]  blkdev_ioctl+0x356/0x7f0
[  668.259042]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  668.259813]  ? selinux_file_ioctl+0xb1/0x260
[  668.260450]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  668.261422]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  668.262235]  __x64_sys_ioctl+0x196/0x210
[  668.262889]  do_syscall_64+0x3b/0x90
[  668.263488]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  668.264305] RIP: 0033:0x7f0844aa78d7
[  668.264938] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  668.267863] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  668.269119] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  668.270274] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  668.271417] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  668.272612] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  668.273759] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  668.274932]  </TASK>
00:55:21 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0) (fail_nth: 5)

[  668.304236] FAT-fs (loop5): bogus number of reserved sectors
[  668.305435] FAT-fs (loop5): Can't find a valid FAT filesystem
[  668.329840] loop7: detected capacity change from 0 to 4097
00:55:21 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 40)

[  668.339707] FAULT_INJECTION: forcing a failure.
[  668.339707] name failslab, interval 1, probability 0, space 0, times 0
[  668.341719] CPU: 0 PID: 6840 Comm: syz-executor.7 Not tainted 5.17.0-next-20220329 #1
[  668.343003] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  668.344797] Call Trace:
[  668.345219]  <TASK>
[  668.345560]  dump_stack_lvl+0x8b/0xb3
[  668.346197]  should_fail.cold+0x5/0xa
[  668.346883]  ? mempool_alloc+0x148/0x360
[  668.347536]  ? mempool_free+0x3b0/0x3b0
[  668.348190]  should_failslab+0x5/0x10
[  668.348865]  kmem_cache_alloc+0x5b/0x480
[  668.349540]  ? mempool_free+0x3b0/0x3b0
[  668.350206]  mempool_alloc+0x148/0x360
[  668.350909]  ? mempool_resize+0x7d0/0x7d0
[  668.351562]  ? lock_is_held_type+0xd7/0x130
[  668.352277]  ? find_held_lock+0x2c/0x110
[  668.352982]  ? lock_release+0x3b2/0x6f0
[  668.353715]  bio_alloc_bioset+0x314/0x4f0
[  668.354445]  ? bvec_alloc+0x200/0x200
[  668.355132]  ? mark_lock.part.0+0xef/0x2f60
[  668.355905]  ? get_user_pages_unlocked+0x4a2/0x760
[  668.356728]  bio_split+0xfe/0x650
[  668.357381]  __blk_queue_split+0x82d/0x1210
[  668.358081]  ? bio_attempt_discard_merge+0x8d0/0x8d0
[  668.359012]  ? __lock_acquire+0x164e/0x6120
[  668.359782]  blk_mq_submit_bio+0x1ba/0x1e90
[  668.360531]  ? blk_mq_try_issue_list_directly+0x510/0x510
[  668.361517]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  668.362419]  ? lock_downgrade+0x6d0/0x6d0
[  668.363136]  ? lock_is_held_type+0xd7/0x130
[  668.363891]  ? find_held_lock+0x2c/0x110
[  668.364548]  __submit_bio+0x1c7/0x230
[  668.365172]  submit_bio_noacct_nocheck+0x6c5/0x8a0
[  668.365946]  ? should_fail_request+0x80/0x80
[  668.366691]  ? lock_is_held_type+0xd7/0x130
[  668.367399]  submit_bio_noacct+0x7d9/0x13a0
[  668.368110]  submit_bio+0x157/0x2b0
[  668.368727]  __blkdev_direct_IO+0x5d4/0xc80
[  668.369431]  ? blkdev_bio_end_io_async+0x250/0x250
[  668.370236]  ? filemap_fdatawait_keep_errors+0xe0/0xe0
[  668.371132]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[  668.372061]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[  668.372917]  ? __mark_inode_dirty+0x4c4/0xeb0
[  668.373674]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[  668.374590]  ? __sanitizer_cov_trace_cmp4+0x1c/0x70
[  668.375426]  ? iov_iter_npages+0x2c1/0x690
[  668.376130]  blkdev_direct_IO+0x13e/0x170
[  668.376827]  generic_file_direct_write+0x1ed/0x540
[  668.377674]  __generic_file_write_iter+0x19e/0x4b0
[  668.378487]  blkdev_write_iter+0x3f4/0x690
[  668.379243]  ? blkdev_open+0x2c0/0x2c0
[  668.379871]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  668.380823]  ? lock_is_held_type+0xd7/0x130
[  668.381496]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  668.382370]  new_sync_write+0x390/0x560
[  668.383081]  ? new_sync_read+0x5f0/0x5f0
[  668.383789]  ? inode_security+0x105/0x130
[  668.384499]  ? avc_policy_seqno+0x9/0x70
[  668.385197]  ? __sanitizer_cov_trace_cmp4+0x1c/0x70
[  668.386096]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  668.387071]  ? security_file_permission+0xb1/0xd0
[  668.387843]  vfs_write+0x7b9/0xac0
[  668.388505]  __x64_sys_pwrite64+0x1f7/0x250
[  668.389240]  ? vfs_write+0xac0/0xac0
[  668.389910]  ? syscall_enter_from_user_mode+0x1d/0x50
[  668.390829]  do_syscall_64+0x3b/0x90
[  668.391426]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  668.392289] RIP: 0033:0x7fde6bde4b19
[  668.392918] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  668.395699] RSP: 002b:00007fde6935a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[  668.397018] RAX: ffffffffffffffda RBX: 00007fde6bef7f60 RCX: 00007fde6bde4b19
[  668.398218] RDX: 00000000fffffe5f RSI: 0000000020000000 RDI: 0000000000000006
[  668.399474] RBP: 00007fde6935a1d0 R08: 0000000000000000 R09: 0000000000000000
[  668.400712] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  668.401946] R13: 00007ffce3cf32ff R14: 00007fde6935a300 R15: 0000000000022000
[  668.403222]  </TASK>
[  668.415426] FAULT_INJECTION: forcing a failure.
[  668.415426] name failslab, interval 1, probability 0, space 0, times 0
[  668.416700] CPU: 1 PID: 6843 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  668.417563] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  668.418729] Call Trace:
[  668.419005]  <TASK>
[  668.419234]  dump_stack_lvl+0x8b/0xb3
[  668.419647]  should_fail.cold+0x5/0xa
[  668.420050]  ? create_object.isra.0+0x3a/0xa20
[  668.420538]  should_failslab+0x5/0x10
[  668.420937]  kmem_cache_alloc+0x5b/0x480
[  668.421373]  create_object.isra.0+0x3a/0xa20
[  668.421824]  ? kasan_unpoison+0x23/0x50
[  668.422245]  kmem_cache_alloc_node+0x248/0x490
[  668.422733]  __alloc_skb+0x211/0x340
[  668.423128]  alloc_uevent_skb+0x7b/0x210
[  668.423560]  kobject_uevent_env+0xaa4/0xfa0
[  668.424013]  ? _raw_spin_unlock+0x24/0x40
[  668.424473]  disk_event_uevent+0x17b/0x1e0
[  668.424919]  ? disk_events_async_show+0x10/0x10
[  668.425411]  ? __fget_files+0x287/0x470
[  668.425831]  disk_force_media_change+0x1e/0xc0
[  668.426307]  loop_configure+0x755/0x1940
[  668.426746]  ? __sanitizer_cov_trace_cmp2+0x22/0x80
[  668.427281]  lo_ioctl+0x782/0x1850
[  668.427652]  ? __x64_sys_openat+0x13f/0x1f0
[  668.428103]  ? loop_set_status_old+0x1b0/0x1b0
[  668.428589]  ? avc_ss_reset+0x180/0x180
[  668.429029]  ? __lock_acquire+0xbac/0x6120
[  668.429513]  ? find_held_lock+0x2c/0x110
[  668.429937]  ? loop_set_status_old+0x1b0/0x1b0
[  668.430424]  blkdev_ioctl+0x356/0x7f0
[  668.430826]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  668.431330]  ? selinux_file_ioctl+0xb1/0x260
[  668.431800]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  668.432412]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  668.432926]  __x64_sys_ioctl+0x196/0x210
[  668.433368]  do_syscall_64+0x3b/0x90
[  668.433756]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  668.434296] RIP: 0033:0x7f0844aa78d7
[  668.434688] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  668.436584] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  668.437387] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  668.438142] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  668.438885] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  668.439647] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  668.440398] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  668.441175]  </TASK>
[  668.450560] FAT-fs (loop5): bogus number of reserved sectors
[  668.451420] FAT-fs (loop5): Can't find a valid FAT filesystem
00:55:21 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0) (fail_nth: 6)

00:55:21 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 41)

[  668.525855] FAULT_INJECTION: forcing a failure.
[  668.525855] name failslab, interval 1, probability 0, space 0, times 0
[  668.528181] CPU: 0 PID: 6845 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  668.529718] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  668.531909] Call Trace:
[  668.532414]  <TASK>
[  668.532850]  dump_stack_lvl+0x8b/0xb3
[  668.533613]  should_fail.cold+0x5/0xa
[  668.534371]  should_failslab+0x5/0x10
[  668.535116]  __kmalloc_node_track_caller+0x7e/0x440
[  668.536096]  ? alloc_uevent_skb+0x7b/0x210
[  668.536943]  __alloc_skb+0xe3/0x340
[  668.537657]  alloc_uevent_skb+0x7b/0x210
[  668.538452]  kobject_uevent_env+0xaa4/0xfa0
[  668.539292]  ? _raw_spin_unlock+0x24/0x40
[  668.540110]  disk_event_uevent+0x17b/0x1e0
[  668.540942]  ? disk_events_async_show+0x10/0x10
[  668.541848]  ? __fget_files+0x287/0x470
[  668.542637]  disk_force_media_change+0x1e/0xc0
[  668.543527]  loop_configure+0x755/0x1940
[  668.544330]  ? __sanitizer_cov_trace_cmp2+0x22/0x80
[  668.545339]  lo_ioctl+0x782/0x1850
[  668.546036]  ? __x64_sys_openat+0x13f/0x1f0
[  668.546886]  ? loop_set_status_old+0x1b0/0x1b0
[  668.547776]  ? avc_ss_reset+0x180/0x180
[  668.548594]  ? __lock_acquire+0xbac/0x6120
[  668.549501]  ? find_held_lock+0x2c/0x110
[  668.550306]  ? loop_set_status_old+0x1b0/0x1b0
[  668.551204]  blkdev_ioctl+0x356/0x7f0
[  668.551959]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  668.552952]  ? selinux_file_ioctl+0xb1/0x260
[  668.553922]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  668.555127]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  668.556177]  __x64_sys_ioctl+0x196/0x210
[  668.557088]  do_syscall_64+0x3b/0x90
[  668.557902]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  668.559026] RIP: 0033:0x7f0844aa78d7
[  668.559834] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  668.563904] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  668.565999] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  668.567817] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  668.569333] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  668.570733] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  668.572162] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  668.573599]  </TASK>
[  668.582896] FAT-fs (loop5): bogus number of reserved sectors
[  668.584103] FAT-fs (loop5): Can't find a valid FAT filesystem
[  668.589531] loop7: detected capacity change from 0 to 4097
[  668.596963] FAULT_INJECTION: forcing a failure.
[  668.596963] name failslab, interval 1, probability 0, space 0, times 0
[  668.598717] CPU: 1 PID: 6847 Comm: syz-executor.7 Not tainted 5.17.0-next-20220329 #1
[  668.599920] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  668.601618] Call Trace:
[  668.602012]  <TASK>
[  668.602356]  dump_stack_lvl+0x8b/0xb3
[  668.602944]  should_fail.cold+0x5/0xa
[  668.603520]  ? create_object.isra.0+0x3a/0xa20
[  668.604205]  should_failslab+0x5/0x10
[  668.604790]  kmem_cache_alloc+0x5b/0x480
[  668.605403]  create_object.isra.0+0x3a/0xa20
[  668.606060]  ? kasan_unpoison+0x23/0x50
[  668.606662]  kmem_cache_alloc+0x239/0x480
[  668.607295]  ? mempool_free+0x3b0/0x3b0
[  668.607889]  mempool_alloc+0x148/0x360
[  668.608489]  ? mempool_resize+0x7d0/0x7d0
[  668.609110]  ? lock_is_held_type+0xd7/0x130
[  668.609747]  ? find_held_lock+0x2c/0x110
[  668.610354]  ? lock_release+0x3b2/0x6f0
[  668.610971]  bio_alloc_bioset+0x314/0x4f0
[  668.611635]  ? bvec_alloc+0x200/0x200
[  668.612228]  ? mark_lock.part.0+0xef/0x2f60
[  668.612916]  ? get_user_pages_unlocked+0x4a2/0x760
[  668.613687]  bio_split+0xfe/0x650
[  668.614239]  __blk_queue_split+0x82d/0x1210
[  668.614911]  ? bio_attempt_discard_merge+0x8d0/0x8d0
[  668.615689]  ? __lock_acquire+0x164e/0x6120
[  668.616342]  blk_mq_submit_bio+0x1ba/0x1e90
[  668.617007]  ? blk_mq_try_issue_list_directly+0x510/0x510
[  668.617848]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  668.618648]  ? lock_downgrade+0x6d0/0x6d0
[  668.619299]  ? lock_is_held_type+0xd7/0x130
[  668.619950]  ? find_held_lock+0x2c/0x110
[  668.620575]  __submit_bio+0x1c7/0x230
[  668.621156]  submit_bio_noacct_nocheck+0x6c5/0x8a0
[  668.621893]  ? should_fail_request+0x80/0x80
[  668.622563]  ? lock_is_held_type+0xd7/0x130
[  668.623224]  submit_bio_noacct+0x7d9/0x13a0
[  668.623887]  submit_bio+0x157/0x2b0
[  668.624448]  __blkdev_direct_IO+0x5d4/0xc80
[  668.625141]  ? blkdev_bio_end_io_async+0x250/0x250
[  668.625876]  ? filemap_fdatawait_keep_errors+0xe0/0xe0
[  668.626681]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[  668.627521]  ? __sanitizer_cov_trace_cmp8+0x1d/0x70
[  668.628275]  ? __mark_inode_dirty+0x4c4/0xeb0
[  668.628956]  ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[  668.629781]  ? __sanitizer_cov_trace_cmp4+0x1c/0x70
[  668.630525]  ? iov_iter_npages+0x2c1/0x690
[  668.631160]  blkdev_direct_IO+0x13e/0x170
[  668.631804]  generic_file_direct_write+0x1ed/0x540
[  668.632574]  __generic_file_write_iter+0x19e/0x4b0
[  668.633322]  blkdev_write_iter+0x3f4/0x690
[  668.633978]  ? blkdev_open+0x2c0/0x2c0
[  668.634559]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  668.635354]  ? lock_is_held_type+0xd7/0x130
[  668.635999]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  668.636852]  new_sync_write+0x390/0x560
[  668.637459]  ? new_sync_read+0x5f0/0x5f0
[  668.638082]  ? inode_security+0x105/0x130
[  668.638706]  ? avc_policy_seqno+0x9/0x70
[  668.639323]  ? __sanitizer_cov_trace_cmp4+0x1c/0x70
[  668.640074]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  668.640900]  ? security_file_permission+0xb1/0xd0
[  668.641620]  vfs_write+0x7b9/0xac0
[  668.642172]  __x64_sys_pwrite64+0x1f7/0x250
[  668.642812]  ? vfs_write+0xac0/0xac0
[  668.643396]  ? syscall_enter_from_user_mode+0x1d/0x50
[  668.644192]  do_syscall_64+0x3b/0x90
[  668.644767]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  668.645578] RIP: 0033:0x7fde6bde4b19
[  668.646145] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  668.648920] RSP: 002b:00007fde6935a188 EFLAGS: 00000246 ORIG_RAX: 0000000000000012
[  668.650057] RAX: ffffffffffffffda RBX: 00007fde6bef7f60 RCX: 00007fde6bde4b19
[  668.651116] RDX: 00000000fffffe5f RSI: 0000000020000000 RDI: 0000000000000006
[  668.652174] RBP: 00007fde6935a1d0 R08: 0000000000000000 R09: 0000000000000000
[  668.653266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  668.654347] R13: 00007ffce3cf32ff R14: 00007fde6935a300 R15: 0000000000022000
[  668.655442]  </TASK>
00:55:21 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 42)

[  668.724700] FAULT_INJECTION: forcing a failure.
[  668.724700] name failslab, interval 1, probability 0, space 0, times 0
[  668.727314] CPU: 0 PID: 6849 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  668.729122] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  668.731692] Call Trace:
[  668.732282]  <TASK>
[  668.732820]  dump_stack_lvl+0x8b/0xb3
[  668.733727]  should_fail.cold+0x5/0xa
[  668.734634]  should_failslab+0x5/0x10
[  668.735530]  __kmalloc_node_track_caller+0x7e/0x440
[  668.736703]  ? alloc_uevent_skb+0x7b/0x210
[  668.737676]  __alloc_skb+0xe3/0x340
[  668.738523]  alloc_uevent_skb+0x7b/0x210
[  668.739455]  kobject_uevent_env+0xaa4/0xfa0
[  668.740452]  ? _raw_spin_unlock+0x24/0x40
[  668.741405]  disk_event_uevent+0x17b/0x1e0
[  668.742375]  ? disk_events_async_show+0x10/0x10
[  668.743444]  ? __fget_files+0x287/0x470
[  668.744392]  disk_force_media_change+0x1e/0xc0
[  668.745439]  loop_configure+0x755/0x1940
[  668.746384]  ? __sanitizer_cov_trace_cmp2+0x22/0x80
[  668.747552]  lo_ioctl+0x782/0x1850
[  668.748386]  ? __x64_sys_openat+0x13f/0x1f0
[  668.749426]  ? loop_set_status_old+0x1b0/0x1b0
[  668.750534]  ? avc_ss_reset+0x180/0x180
[  668.751501]  ? __lock_acquire+0xbac/0x6120
[  668.752536]  ? find_held_lock+0x2c/0x110
[  668.753519]  ? loop_set_status_old+0x1b0/0x1b0
[  668.754539]  blkdev_ioctl+0x356/0x7f0
[  668.755467]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  668.756596]  ? selinux_file_ioctl+0xb1/0x260
[  668.757775]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  668.758990]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  668.760105]  __x64_sys_ioctl+0x196/0x210
[  668.761035]  do_syscall_64+0x3b/0x90
[  668.762021]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  668.763214] RIP: 0033:0x7f0844aa78d7
[  668.764033] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  668.768219] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  668.769897] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  668.771655] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  668.773219] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  668.774838] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  668.776395] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  668.778048]  </TASK>
00:55:21 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0) (fail_nth: 7)

[  668.825265] FAT-fs (loop5): bogus number of reserved sectors
[  668.826689] FAT-fs (loop5): Can't find a valid FAT filesystem
[  670.053050] Bluetooth: hci0: command 0x080f tx timeout
[  672.102032] Bluetooth: hci0: command 0x080f tx timeout
[  674.149044] Bluetooth: hci0: command 0x080f tx timeout
[  676.198025] Bluetooth: hci0: command 0x080f tx timeout
[  678.245126] Bluetooth: hci0: command 0x080f tx timeout
[  680.294027] Bluetooth: hci0: command 0x080f tx timeout
00:55:39 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 43)

00:55:39 executing program 6:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397f2b1bb3b5af60a2cfa1d88f4635990e7ea4590cd1c26ffcfeb5981e2f5f1558f4e45e978698f08952a3e594ee6c1a86605588755fc4527afc1793b6c63638d0208e496694f79f37830bc408e96605f2e568c54d9f1e30f6374f3488d9f0f9b0070f66111ba2d4206ae6269480d3e69960603062d921a91ac0e515e74868f3db09350af5e10d56aebcb7c83910db96583300feb7d08f7e892d3ac8560fc8a0e56cc4abce95c9e64d52845e07957ed95f516f04350"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:55:39 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[  686.432910] FAULT_INJECTION: forcing a failure.
[  686.432910] name failslab, interval 1, probability 0, space 0, times 0
[  686.435507] CPU: 0 PID: 6859 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  686.437226] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  686.439683] Call Trace:
[  686.440239]  <TASK>
[  686.440735]  dump_stack_lvl+0x8b/0xb3
[  686.441590]  should_fail.cold+0x5/0xa
[  686.442427]  ? create_object.isra.0+0x3a/0xa20
[  686.443421]  should_failslab+0x5/0x10
[  686.444247]  kmem_cache_alloc+0x5b/0x480
[  686.445162]  create_object.isra.0+0x3a/0xa20
[  686.446112]  ? kasan_unpoison+0x23/0x50
[  686.446978]  __kmalloc_node_track_caller+0x269/0x440
[  686.448080]  ? alloc_uevent_skb+0x7b/0x210
[  686.449010]  __alloc_skb+0xe3/0x340
[  686.449812]  alloc_uevent_skb+0x7b/0x210
[  686.450695]  kobject_uevent_env+0xaa4/0xfa0
[  686.451633]  ? _raw_spin_unlock+0x24/0x40
[  686.452540]  disk_event_uevent+0x17b/0x1e0
[  686.453464]  ? disk_events_async_show+0x10/0x10
[  686.454471]  ? __fget_files+0x287/0x470
[  686.455344]  disk_force_media_change+0x1e/0xc0
[  686.456326]  loop_configure+0x755/0x1940
[  686.457250]  ? __sanitizer_cov_trace_cmp2+0x22/0x80
[  686.458403]  lo_ioctl+0x782/0x1850
00:55:39 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))

00:55:39 executing program 4:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:55:39 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:55:39 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

00:55:39 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[  686.459219]  ? __x64_sys_openat+0x13f/0x1f0
[  686.460260]  ? loop_set_status_old+0x1b0/0x1b0
[  686.461268]  ? avc_ss_reset+0x180/0x180
[  686.462160]  ? __lock_acquire+0xbac/0x6120
[  686.463152]  ? find_held_lock+0x2c/0x110
[  686.464044]  ? loop_set_status_old+0x1b0/0x1b0
[  686.465051]  blkdev_ioctl+0x356/0x7f0
[  686.465877]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  686.466896]  ? selinux_file_ioctl+0xb1/0x260
[  686.467841]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  686.469021]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  686.470044]  __x64_sys_ioctl+0x196/0x210
[  686.470917]  do_syscall_64+0x3b/0x90
[  686.471706]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  686.472816] RIP: 0033:0x7f0844aa78d7
[  686.473602] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  686.477484] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  686.479078] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  686.480578] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  686.482075] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  686.483568] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  686.485079] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  686.486604]  </TASK>
[  686.499500] loop7: detected capacity change from 0 to 4097
[  686.501470] FAT-fs (loop5): bogus number of reserved sectors
[  686.502257] FAT-fs (loop5): Can't find a valid FAT filesystem
00:55:39 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:55:39 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 44)

00:55:39 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0x7ffffffff000, 0x0)

[  686.662371] FAULT_INJECTION: forcing a failure.
[  686.662371] name failslab, interval 1, probability 0, space 0, times 0
[  686.663699] CPU: 1 PID: 6989 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  686.664527] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  686.665717] Call Trace:
[  686.665997]  <TASK>
[  686.666231]  dump_stack_lvl+0x8b/0xb3
[  686.666645]  should_fail.cold+0x5/0xa
[  686.667055]  ? create_object.isra.0+0x3a/0xa20
[  686.667540]  should_failslab+0x5/0x10
[  686.667941]  kmem_cache_alloc+0x5b/0x480
[  686.668376]  create_object.isra.0+0x3a/0xa20
[  686.668864]  ? kasan_unpoison+0x23/0x50
[  686.669287]  kmem_cache_alloc+0x239/0x480
[  686.669728]  skb_clone+0x170/0x3c0
[  686.670111]  netlink_broadcast+0x9b1/0xd70
[  686.670564]  ? alloc_uevent_skb+0x1c2/0x210
[  686.671023]  kobject_uevent_env+0xa6b/0xfa0
[  686.671477]  ? _raw_spin_unlock+0x24/0x40
[  686.671919]  disk_event_uevent+0x17b/0x1e0
[  686.672369]  ? disk_events_async_show+0x10/0x10
[  686.672880]  ? __fget_files+0x287/0x470
[  686.673324]  disk_force_media_change+0x1e/0xc0
[  686.673827]  loop_configure+0x755/0x1940
[  686.674281]  ? __sanitizer_cov_trace_cmp2+0x22/0x80
[  686.674839]  lo_ioctl+0x782/0x1850
[  686.675233]  ? __x64_sys_openat+0x13f/0x1f0
[  686.675744]  ? loop_set_status_old+0x1b0/0x1b0
[  686.676249]  ? avc_ss_reset+0x180/0x180
[  686.676718]  ? __lock_acquire+0xbac/0x6120
[  686.677226]  ? find_held_lock+0x2c/0x110
[  686.677675]  ? loop_set_status_old+0x1b0/0x1b0
[  686.678183]  blkdev_ioctl+0x356/0x7f0
[  686.678602]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  686.679127]  ? selinux_file_ioctl+0xb1/0x260
[  686.679609]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  686.680210]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  686.680739]  __x64_sys_ioctl+0x196/0x210
[  686.681187]  do_syscall_64+0x3b/0x90
[  686.681591]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  686.682158] RIP: 0033:0x7f0844aa78d7
[  686.682560] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  686.684541] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  686.685394] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  686.686169] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  686.686937] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  686.687711] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  686.688480] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  686.689269]  </TASK>
[  686.695487] loop7: detected capacity change from 0 to 4097
[  686.709536] FAT-fs (loop5): bogus number of reserved sectors
[  686.710289] FAT-fs (loop5): Can't find a valid FAT filesystem
00:55:39 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x2)

00:55:39 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 45)

[  686.780442] FAULT_INJECTION: forcing a failure.
[  686.780442] name failslab, interval 1, probability 0, space 0, times 0
[  686.781718] CPU: 1 PID: 6997 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  686.782530] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  686.783697] Call Trace:
[  686.783964]  <TASK>
[  686.784201]  dump_stack_lvl+0x8b/0xb3
[  686.784609]  should_fail.cold+0x5/0xa
[  686.785030]  ? __kernfs_new_node+0xd4/0x8b0
[  686.785478]  should_failslab+0x5/0x10
[  686.785872]  kmem_cache_alloc+0x5b/0x480
[  686.786303]  __kernfs_new_node+0xd4/0x8b0
[  686.786736]  ? kernfs_path_from_node+0x60/0x60
[  686.787207]  ? selinux_sb_statfs+0x1ba/0x250
[  686.787658]  ? mark_held_locks+0x9e/0xe0
[  686.788093]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[  686.788668]  ? shmem_statfs+0x1b3/0x3e0
[  686.789081]  kernfs_create_dir_ns+0x9c/0x220
[  686.789541]  internal_create_group+0x782/0xb20
[  686.790059]  ? sysfs_remove_group+0x170/0x170
[  686.790560]  ? loop_configure+0x1940/0x1940
[  686.791073]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[  686.791621]  ? __loop_update_dio+0x2a3/0x620
[  686.792108]  loop_configure+0xe81/0x1940
[  686.792557]  lo_ioctl+0x782/0x1850
[  686.792982]  ? __x64_sys_openat+0x13f/0x1f0
[  686.793460]  ? loop_set_status_old+0x1b0/0x1b0
[  686.793956]  ? avc_ss_reset+0x180/0x180
[  686.794403]  ? __lock_acquire+0xbac/0x6120
[  686.794907]  ? find_held_lock+0x2c/0x110
[  686.795356]  ? loop_set_status_old+0x1b0/0x1b0
[  686.795856]  blkdev_ioctl+0x356/0x7f0
[  686.796278]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  686.796805]  ? selinux_file_ioctl+0xb1/0x260
[  686.797286]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  686.797887]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  686.798411]  __x64_sys_ioctl+0x196/0x210
[  686.798861]  do_syscall_64+0x3b/0x90
[  686.799267]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  686.799831] RIP: 0033:0x7f0844aa78d7
[  686.800218] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  686.802231] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  686.803054] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  686.803828] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  686.804603] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  686.805393] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  686.806168] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  686.806950]  </TASK>
[  686.828665] FAT-fs (loop5): bogus number of reserved sectors
[  686.829652] FAT-fs (loop5): Can't find a valid FAT filesystem
00:55:39 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x3)

00:55:39 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 46)

[  686.910703] FAULT_INJECTION: forcing a failure.
[  686.910703] name failslab, interval 1, probability 0, space 0, times 0
[  686.912004] CPU: 1 PID: 7003 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  686.912842] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  686.914005] Call Trace:
[  686.914266]  <TASK>
[  686.914494]  dump_stack_lvl+0x8b/0xb3
[  686.914903]  should_fail.cold+0x5/0xa
[  686.915302]  ? create_object.isra.0+0x3a/0xa20
[  686.915783]  should_failslab+0x5/0x10
[  686.916179]  kmem_cache_alloc+0x5b/0x480
[  686.916605]  create_object.isra.0+0x3a/0xa20
[  686.917077]  ? kasan_unpoison+0x23/0x50
[  686.917498]  kmem_cache_alloc+0x239/0x480
[  686.917934]  __kernfs_new_node+0xd4/0x8b0
[  686.918376]  ? kernfs_path_from_node+0x60/0x60
[  686.918846]  ? selinux_sb_statfs+0x1ba/0x250
[  686.919306]  ? mark_held_locks+0x9e/0xe0
[  686.919742]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[  686.920317]  ? shmem_statfs+0x1b3/0x3e0
[  686.920764]  kernfs_create_dir_ns+0x9c/0x220
[  686.921249]  internal_create_group+0x782/0xb20
[  686.921759]  ? sysfs_remove_group+0x170/0x170
[  686.922248]  ? loop_configure+0x1940/0x1940
[  686.922721]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[  686.923265]  ? __loop_update_dio+0x2a3/0x620
[  686.923747]  loop_configure+0xe81/0x1940
[  686.924201]  lo_ioctl+0x782/0x1850
[  686.924588]  ? __x64_sys_openat+0x13f/0x1f0
[  686.925052]  ? loop_set_status_old+0x1b0/0x1b0
[  686.925551]  ? avc_ss_reset+0x180/0x180
[  686.925977]  ? __lock_acquire+0xbac/0x6120
[  686.926471]  ? find_held_lock+0x2c/0x110
[  686.926917]  ? loop_set_status_old+0x1b0/0x1b0
[  686.927414]  blkdev_ioctl+0x356/0x7f0
[  686.927838]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  686.928349]  ? selinux_file_ioctl+0xb1/0x260
[  686.928817]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  686.929414]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  686.929937]  __x64_sys_ioctl+0x196/0x210
[  686.930383]  do_syscall_64+0x3b/0x90
[  686.930789]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  686.931326] RIP: 0033:0x7f0844aa78d7
[  686.931725] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  686.933629] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  686.934444] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  686.935212] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  686.935980] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  686.936759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  686.937528] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  686.938306]  </TASK>
[  686.957441] FAT-fs (loop5): bogus number of reserved sectors
[  686.958182] FAT-fs (loop5): Can't find a valid FAT filesystem
[  688.549056] Bluetooth: hci0: command 0x080f tx timeout
[  690.597106] Bluetooth: hci0: command 0x080f tx timeout
[  692.646093] Bluetooth: hci0: command 0x080f tx timeout
[  694.693122] Bluetooth: hci0: command 0x080f tx timeout
[  696.742116] Bluetooth: hci0: command 0x080f tx timeout
[  698.789056] Bluetooth: hci0: command 0x080f tx timeout
[  700.837060] Bluetooth: hci0: command 0x080f tx timeout
00:55:54 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 47)

00:55:54 executing program 1:
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(0xffffffffffffffff)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r1=>0xffffffffffffffff}, 0x4400)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:55:54 executing program 6:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397f2b1bb3b5af60a2cfa1d88f4635990e7ea4590cd1c26ffcfeb5981e2f5f1558f4e45e978698f08952a3e594ee6c1a86605588755fc4527afc1793b6c63638d0208e496694f79f37830bc408e96605f2e568c54d9f1e30f6374f3488d9f0f9b0070f66111ba2d4206ae6269480d3e69960603062d921a91ac0e515e74868f3db09350af5e10d56aebcb7c83910db96583300feb7d08f7e892d3ac8560fc8a0e56cc4abce95c9e64d52845e07957ed95f516f04350"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:55:54 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:55:54 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

00:55:54 executing program 2:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))

00:55:54 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:55:54 executing program 4:
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(0xffffffffffffffff)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r1, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

[  702.285101] FAULT_INJECTION: forcing a failure.
[  702.285101] name failslab, interval 1, probability 0, space 0, times 0
[  702.287492] CPU: 1 PID: 7020 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  702.289091] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  702.291341] Call Trace:
[  702.291845]  <TASK>
[  702.292291]  dump_stack_lvl+0x8b/0xb3
[  702.293083]  should_fail.cold+0x5/0xa
[  702.293868]  ? __kernfs_new_node+0xd4/0x8b0
[  702.294751]  should_failslab+0x5/0x10
[  702.295524]  kmem_cache_alloc+0x5b/0x480
[  702.296332]  ? __down_killable+0x360/0x360
[  702.297200]  __kernfs_new_node+0xd4/0x8b0
[  702.298025]  ? kernfs_path_from_node+0x60/0x60
[  702.298945]  ? find_held_lock+0x2c/0x110
[  702.299749]  ? lock_release+0x3b2/0x6f0
[  702.300539]  ? kernfs_add_one+0x3c6/0x550
[  702.301403]  ? lock_downgrade+0x6d0/0x6d0
[  702.302234]  ? lock_is_held_type+0xd7/0x130
[  702.303131]  kernfs_new_node+0x93/0x120
[  702.303942]  __kernfs_create_file+0x51/0x350
[  702.304838]  sysfs_add_file_mode_ns+0x218/0x430
[  702.305794]  ? component_del+0x4c0/0x4c0
[  702.306609]  internal_create_group+0x322/0xb20
[  702.307534]  ? sysfs_remove_group+0x170/0x170
[  702.308444]  ? loop_configure+0x1940/0x1940
[  702.309324]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[  702.310330]  ? __loop_update_dio+0x2a3/0x620
[  702.311215]  loop_configure+0xe81/0x1940
[  702.312053]  lo_ioctl+0x782/0x1850
[  702.312784]  ? __x64_sys_openat+0x13f/0x1f0
[  702.313663]  ? loop_set_status_old+0x1b0/0x1b0
[  702.314577]  ? avc_ss_reset+0x180/0x180
[  702.315398]  ? __lock_acquire+0xbac/0x6120
[  702.316307]  ? find_held_lock+0x2c/0x110
[  702.317141]  ? loop_set_status_old+0x1b0/0x1b0
[  702.318049]  blkdev_ioctl+0x356/0x7f0
[  702.318834]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  702.319777]  ? selinux_file_ioctl+0xb1/0x260
[  702.320667]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  702.321777]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  702.322735]  __x64_sys_ioctl+0x196/0x210
[  702.323551]  do_syscall_64+0x3b/0x90
[  702.324307]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  702.325342] RIP: 0033:0x7f0844aa78d7
[  702.326097] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  702.329771] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  702.331295] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  702.332719] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  702.334145] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  702.335561] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  702.336987] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  702.338429]  </TASK>
[  702.355011] loop7: detected capacity change from 0 to 4097
[  702.366562] FAT-fs (loop5): bogus number of reserved sectors
[  702.367802] FAT-fs (loop5): Can't find a valid FAT filesystem
00:55:55 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 48)

00:55:55 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:55:55 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x5)

[  702.518922] FAULT_INJECTION: forcing a failure.
[  702.518922] name failslab, interval 1, probability 0, space 0, times 0
[  702.521585] CPU: 0 PID: 7138 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  702.523126] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  702.525349] Call Trace:
[  702.525862]  <TASK>
[  702.526307]  dump_stack_lvl+0x8b/0xb3
[  702.527084]  should_fail.cold+0x5/0xa
[  702.527847]  ? radix_tree_node_alloc.constprop.0+0x1df/0x330
[  702.528994]  should_failslab+0x5/0x10
[  702.529754]  kmem_cache_alloc+0x5b/0x480
[  702.530578]  radix_tree_node_alloc.constprop.0+0x1df/0x330
[  702.531694]  idr_get_free+0x4b5/0x8f0
[  702.532476]  idr_alloc_u32+0x170/0x2d0
[  702.533286]  ? __fprop_add_percpu_max+0x1a0/0x1a0
[  702.534353]  ? lock_acquire+0x1b2/0x4d0
[  702.535158]  idr_alloc_cyclic+0x102/0x230
[  702.536142]  ? idr_alloc+0x130/0x130
[  702.536891]  ? rwlock_bug.part.0+0x90/0x90
[  702.537909]  __kernfs_new_node+0x117/0x8b0
[  702.538756]  ? kernfs_path_from_node+0x60/0x60
[  702.539830]  ? selinux_sb_statfs+0x1ba/0x250
[  702.540706]  ? mark_held_locks+0x9e/0xe0
[  702.541705]  ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[  702.542799]  ? shmem_statfs+0x1b3/0x3e0
[  702.543614]  kernfs_create_dir_ns+0x9c/0x220
[  702.544658]  internal_create_group+0x782/0xb20
[  702.545597]  ? sysfs_remove_group+0x170/0x170
[  702.546676]  ? loop_configure+0x1940/0x1940
[  702.547544]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[  702.548718]  ? __loop_update_dio+0x2a3/0x620
[  702.549628]  loop_configure+0xe81/0x1940
[  702.550625]  lo_ioctl+0x782/0x1850
[  702.551330]  ? __x64_sys_openat+0x13f/0x1f0
[  702.552363]  ? loop_set_status_old+0x1b0/0x1b0
[  702.553284]  ? avc_ss_reset+0x180/0x180
[  702.554255]  ? __lock_acquire+0xbac/0x6120
[  702.555174]  ? find_held_lock+0x2c/0x110
[  702.556142]  ? loop_set_status_old+0x1b0/0x1b0
[  702.557067]  blkdev_ioctl+0x356/0x7f0
[  702.557979]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  702.559107]  ? selinux_file_ioctl+0xb1/0x260
[  702.559982]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  702.561294]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  702.562249]  __x64_sys_ioctl+0x196/0x210
[  702.563212]  do_syscall_64+0x3b/0x90
[  702.563949]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  702.565173] RIP: 0033:0x7f0844aa78d7
[  702.565900] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  702.570074] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  702.571556] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  702.572959] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  702.574337] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  702.575719] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  702.577107] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  702.578511]  </TASK>
[  702.614315] FAT-fs (loop5): bogus number of reserved sectors
[  702.615590] FAT-fs (loop5): Can't find a valid FAT filesystem
[  702.630942] loop7: detected capacity change from 0 to 4097
00:55:55 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:55:55 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 49)

00:55:55 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0xa)

[  702.742822] FAULT_INJECTION: forcing a failure.
[  702.742822] name failslab, interval 1, probability 0, space 0, times 0
[  702.745229] CPU: 1 PID: 7148 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  702.746772] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  702.749007] Call Trace:
[  702.749506]  <TASK>
[  702.749949]  dump_stack_lvl+0x8b/0xb3
[  702.750713]  should_fail.cold+0x5/0xa
[  702.751471]  ? create_object.isra.0+0x3a/0xa20
[  702.752371]  should_failslab+0x5/0x10
[  702.753144]  kmem_cache_alloc+0x5b/0x480
[  702.753958]  create_object.isra.0+0x3a/0xa20
[  702.754815]  ? kasan_unpoison+0x23/0x50
[  702.755603]  kmem_cache_alloc+0x239/0x480
[  702.756434]  __kernfs_new_node+0xd4/0x8b0
[  702.757266]  ? kernfs_path_from_node+0x60/0x60
[  702.758170]  ? find_held_lock+0x2c/0x110
[  702.758974]  ? lock_release+0x3b2/0x6f0
[  702.759756]  ? kernfs_add_one+0x3c6/0x550
[  702.760570]  ? lock_downgrade+0x6d0/0x6d0
[  702.761406]  ? lock_is_held_type+0xd7/0x130
[  702.762262]  kernfs_new_node+0x93/0x120
[  702.763050]  __kernfs_create_file+0x51/0x350
[  702.763920]  sysfs_add_file_mode_ns+0x218/0x430
[  702.764846]  ? component_del+0x4c0/0x4c0
[  702.765664]  internal_create_group+0x322/0xb20
[  702.766571]  ? sysfs_remove_group+0x170/0x170
[  702.767460]  ? loop_configure+0x1940/0x1940
[  702.768305]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[  702.769294]  ? __loop_update_dio+0x2a3/0x620
[  702.770158]  loop_configure+0xe81/0x1940
[  702.770979]  lo_ioctl+0x782/0x1850
[  702.771677]  ? __x64_sys_openat+0x13f/0x1f0
[  702.772536]  ? loop_set_status_old+0x1b0/0x1b0
[  702.773439]  ? avc_ss_reset+0x180/0x180
[  702.774253]  ? __lock_acquire+0xbac/0x6120
[  702.775144]  ? find_held_lock+0x2c/0x110
[  702.775949]  ? loop_set_status_old+0x1b0/0x1b0
[  702.776843]  blkdev_ioctl+0x356/0x7f0
[  702.777607]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  702.778537]  ? selinux_file_ioctl+0xb1/0x260
[  702.779407]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  702.780483]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  702.781433]  __x64_sys_ioctl+0x196/0x210
[  702.782242]  do_syscall_64+0x3b/0x90
[  702.782970]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  702.783985] RIP: 0033:0x7f0844aa78d7
[  702.784709] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  702.788305] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  702.789785] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  702.791178] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  702.792566] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  702.793958] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  702.795341] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  702.796752]  </TASK>
00:55:55 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x60)

[  702.806186] FAT-fs (loop5): bogus number of reserved sectors
[  702.807507] FAT-fs (loop5): Can't find a valid FAT filesystem
00:55:55 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x0, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

[  702.871725] loop7: detected capacity change from 0 to 4097
00:55:55 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 50)

[  702.916062] FAULT_INJECTION: forcing a failure.
[  702.916062] name failslab, interval 1, probability 0, space 0, times 0
[  702.918289] CPU: 1 PID: 7158 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  702.919819] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  702.922066] Call Trace:
[  702.922564]  <TASK>
[  702.922998]  dump_stack_lvl+0x8b/0xb3
[  702.923759]  should_fail.cold+0x5/0xa
[  702.924511]  ? create_object.isra.0+0x3a/0xa20
[  702.925414]  should_failslab+0x5/0x10
[  702.926159]  kmem_cache_alloc+0x5b/0x480
[  702.926966]  create_object.isra.0+0x3a/0xa20
[  702.927819]  ? kasan_unpoison+0x23/0x50
[  702.928602]  kmem_cache_alloc+0x239/0x480
[  702.929446]  __kernfs_new_node+0xd4/0x8b0
[  702.930258]  ? mark_held_locks+0x9e/0xe0
[  702.931051]  ? down_read_trylock+0x380/0x380
[  702.931908]  ? kernfs_path_from_node+0x60/0x60
[  702.932804]  ? wake_up_q+0x8b/0xf0
[  702.933511]  ? rwsem_wake.isra.0+0xc3/0x110
[  702.934349]  ? downgrade_write+0x3a0/0x3a0
[  702.935176]  ? up_write+0x148/0x460
[  702.935880]  ? kernfs_activate+0x1c4/0x240
[  702.936725]  kernfs_new_node+0x93/0x120
[  702.937532]  __kernfs_create_file+0x51/0x350
[  702.938404]  sysfs_add_file_mode_ns+0x218/0x430
[  702.939327]  ? component_del+0x4c0/0x4c0
[  702.940122]  internal_create_group+0x322/0xb20
[  702.941042]  ? sysfs_remove_group+0x170/0x170
[  702.941931]  ? loop_configure+0x1940/0x1940
[  702.942777]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[  702.943753]  ? __loop_update_dio+0x2a3/0x620
[  702.944617]  loop_configure+0xe81/0x1940
[  702.945457]  lo_ioctl+0x782/0x1850
[  702.946155]  ? __x64_sys_openat+0x13f/0x1f0
[  702.947006]  ? loop_set_status_old+0x1b0/0x1b0
[  702.947895]  ? avc_ss_reset+0x180/0x180
[  702.948696]  ? __lock_acquire+0xbac/0x6120
[  702.949596]  ? find_held_lock+0x2c/0x110
[  702.950394]  ? loop_set_status_old+0x1b0/0x1b0
[  702.951283]  blkdev_ioctl+0x356/0x7f0
[  702.952027]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  702.952954]  ? selinux_file_ioctl+0xb1/0x260
[  702.953811]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  702.954876]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  702.955799]  __x64_sys_ioctl+0x196/0x210
[  702.956591]  do_syscall_64+0x3b/0x90
[  702.957325]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  702.958323] RIP: 0033:0x7f0844aa78d7
[  702.959034] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  702.962573] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  702.964035] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  702.965422] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  702.966792] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  702.968163] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  702.969539] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  702.970927]  </TASK>
[  702.984020] FAT-fs (loop5): bogus number of reserved sectors
[  702.985686] FAT-fs (loop5): Can't find a valid FAT filesystem
[  704.293017] Bluetooth: hci0: command 0x080f tx timeout
[  706.341027] Bluetooth: hci0: command 0x080f tx timeout
[  708.389040] Bluetooth: hci0: command 0x080f tx timeout
[  710.437126] Bluetooth: hci0: command 0x080f tx timeout
[  712.485184] Bluetooth: hci0: command 0x080f tx timeout
00:56:10 executing program 1:
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(0xffffffffffffffff)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397f2b1bb3b5af60a2cfa1d88f4635990e7ea4590cd1c26ffcfeb5981e2f5f1558f4e45e978698f08952a3e594ee6c1a86605588755fc4527afc1793b6c63638d0208e496694f79f37830bc408e96605f2e568c54d9f1e30f6374f3488d9f0f9b0070f66111ba2d4206ae6269480d3e69960603062d921a91ac0e515e74868f3db09350af5e10d56aebcb7c83910db96583300feb7d08f7e892d3ac8560fc8a0e56cc4abce95c9e64d52845e07957ed95f516f04350"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r1=>0xffffffffffffffff}, 0x4400)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:56:10 executing program 2:
clone3(0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))

00:56:10 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x0, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:56:10 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x10b)

00:56:10 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 51)

00:56:10 executing program 6:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)

00:56:10 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

00:56:10 executing program 4:
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(0xffffffffffffffff)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r1, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

[  717.340272] FAULT_INJECTION: forcing a failure.
[  717.340272] name failslab, interval 1, probability 0, space 0, times 0
[  717.342036] CPU: 0 PID: 7175 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  717.343196] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  717.344817] Call Trace:
[  717.345205]  <TASK>
[  717.345527]  dump_stack_lvl+0x8b/0xb3
[  717.346121]  should_fail.cold+0x5/0xa
[  717.346691]  ? __kernfs_new_node+0xd4/0x8b0
[  717.347359]  should_failslab+0x5/0x10
[  717.347932]  kmem_cache_alloc+0x5b/0x480
[  717.348560]  __kernfs_new_node+0xd4/0x8b0
[  717.349196]  ? kernfs_add_one+0x3c6/0x550
[  717.349815]  ? kernfs_path_from_node+0x60/0x60
[  717.350493]  ? lock_is_held_type+0xd7/0x130
[  717.351134]  ? up_write+0x148/0x460
[  717.351664]  ? kernfs_activate+0x1c4/0x240
[  717.352289]  kernfs_new_node+0x93/0x120
[  717.352872]  __kernfs_create_file+0x51/0x350
[  717.353550]  sysfs_add_file_mode_ns+0x218/0x430
[  717.354088]  ? component_del+0x4c0/0x4c0
[  717.354487]  internal_create_group+0x322/0xb20
[  717.354970]  ? sysfs_remove_group+0x170/0x170
[  717.355432]  ? loop_configure+0x1940/0x1940
[  717.355879]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[  717.356401]  ? __loop_update_dio+0x2a3/0x620
[  717.356862]  loop_configure+0xe81/0x1940
[  717.357277]  lo_ioctl+0x782/0x1850
[  717.357645]  ? __x64_sys_openat+0x13f/0x1f0
[  717.358100]  ? loop_set_status_old+0x1b0/0x1b0
[  717.358569]  ? avc_ss_reset+0x180/0x180
[  717.358979]  ? __lock_acquire+0xbac/0x6120
[  717.359457]  ? find_held_lock+0x2c/0x110
[  717.359856]  ? loop_set_status_old+0x1b0/0x1b0
[  717.360329]  blkdev_ioctl+0x356/0x7f0
[  717.360709]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  717.361208]  ? selinux_file_ioctl+0xb1/0x260
[  717.361668]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  717.362237]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  717.362736]  __x64_sys_ioctl+0x196/0x210
[  717.363160]  do_syscall_64+0x3b/0x90
[  717.363541]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  717.364081] RIP: 0033:0x7f0844aa78d7
[  717.364460] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  717.366345] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  717.367105] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  717.367834] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  717.368529] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  717.369266] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  717.369957] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  717.370724]  </TASK>
[  717.390306] FAT-fs (loop5): bogus number of reserved sectors
[  717.390922] FAT-fs (loop5): Can't find a valid FAT filesystem
[  717.396910] loop7: detected capacity change from 0 to 4097
[  717.402252] loop3: detected capacity change from 0 to 4097
00:56:10 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x300)

00:56:10 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

00:56:10 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 52)

[  717.524839] FAULT_INJECTION: forcing a failure.
[  717.524839] name failslab, interval 1, probability 0, space 0, times 0
[  717.526177] CPU: 0 PID: 7291 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  717.527200] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  717.528647] Call Trace:
[  717.528980]  <TASK>
[  717.529277]  dump_stack_lvl+0x8b/0xb3
[  717.529779]  should_fail.cold+0x5/0xa
[  717.530279]  ? create_object.isra.0+0x3a/0xa20
[  717.530866]  should_failslab+0x5/0x10
[  717.531362]  kmem_cache_alloc+0x5b/0x480
[  717.531890]  create_object.isra.0+0x3a/0xa20
[  717.532454]  ? kasan_unpoison+0x23/0x50
[  717.532962]  kmem_cache_alloc+0x239/0x480
[  717.533515]  __kernfs_new_node+0xd4/0x8b0
[  717.534047]  ? kernfs_add_one+0x3c6/0x550
[  717.534584]  ? kernfs_path_from_node+0x60/0x60
[  717.535176]  ? lock_is_held_type+0xd7/0x130
[  717.535737]  ? up_write+0x148/0x460
[  717.536195]  ? kernfs_activate+0x1c4/0x240
[  717.536746]  kernfs_new_node+0x93/0x120
[  717.537267]  __kernfs_create_file+0x51/0x350
[  717.537839]  sysfs_add_file_mode_ns+0x218/0x430
[  717.538441]  ? component_del+0x4c0/0x4c0
[  717.538961]  internal_create_group+0x322/0xb20
[  717.539553]  ? sysfs_remove_group+0x170/0x170
[  717.540135]  ? loop_configure+0x1940/0x1940
[  717.540683]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[  717.541335]  ? __loop_update_dio+0x2a3/0x620
[  717.541902]  loop_configure+0xe81/0x1940
[  717.542437]  lo_ioctl+0x782/0x1850
[  717.542892]  ? __x64_sys_openat+0x13f/0x1f0
[  717.543348]  ? loop_set_status_old+0x1b0/0x1b0
[  717.543828]  ? avc_ss_reset+0x180/0x180
[  717.544259]  ? __lock_acquire+0xbac/0x6120
[  717.544750]  ? find_held_lock+0x2c/0x110
[  717.545189]  ? loop_set_status_old+0x1b0/0x1b0
[  717.545667]  blkdev_ioctl+0x356/0x7f0
[  717.546073]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  717.546560]  ? selinux_file_ioctl+0xb1/0x260
[  717.546998]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  717.547586]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  717.548082]  __x64_sys_ioctl+0x196/0x210
[  717.548509]  do_syscall_64+0x3b/0x90
[  717.548889]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  717.549455] RIP: 0033:0x7f0844aa78d7
[  717.549818] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  717.551703] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  717.552501] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  717.553238] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  717.553926] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  717.554617] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  717.555349] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  717.556091]  </TASK>
00:56:10 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x0, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:56:10 executing program 4:
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(0xffffffffffffffff)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r1, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

[  717.626633] FAT-fs (loop5): bogus number of reserved sectors
[  717.627261] FAT-fs (loop5): Can't find a valid FAT filesystem
[  717.636914] loop3: detected capacity change from 0 to 4097
00:56:10 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x500)

00:56:10 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 53)

00:56:10 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

[  717.707643] FAULT_INJECTION: forcing a failure.
[  717.707643] name failslab, interval 1, probability 0, space 0, times 0
[  717.708816] CPU: 0 PID: 7407 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  717.709590] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  717.710686] Call Trace:
[  717.710949]  <TASK>
[  717.711171]  dump_stack_lvl+0x8b/0xb3
[  717.711556]  should_fail.cold+0x5/0xa
[  717.711933]  ? __kernfs_new_node+0xd4/0x8b0
[  717.712361]  should_failslab+0x5/0x10
[  717.712733]  kmem_cache_alloc+0x5b/0x480
[  717.713153]  __kernfs_new_node+0xd4/0x8b0
[  717.713556]  ? kernfs_add_one+0x3c6/0x550
[  717.713959]  ? kernfs_path_from_node+0x60/0x60
[  717.714442]  ? lock_is_held_type+0xd7/0x130
[  717.714868]  ? up_write+0x148/0x460
[  717.715243]  ? kernfs_activate+0x1c4/0x240
[  717.715661]  kernfs_new_node+0x93/0x120
[  717.716052]  __kernfs_create_file+0x51/0x350
[  717.716485]  sysfs_add_file_mode_ns+0x218/0x430
[  717.716942]  ? component_del+0x4c0/0x4c0
[  717.717345]  internal_create_group+0x322/0xb20
[  717.717825]  ? sysfs_remove_group+0x170/0x170
[  717.718284]  ? loop_configure+0x1940/0x1940
[  717.718727]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[  717.719243]  ? __loop_update_dio+0x2a3/0x620
[  717.719704]  loop_configure+0xe81/0x1940
[  717.720131]  lo_ioctl+0x782/0x1850
[  717.720493]  ? __x64_sys_openat+0x13f/0x1f0
[  717.720939]  ? loop_set_status_old+0x1b0/0x1b0
[  717.721421]  ? avc_ss_reset+0x180/0x180
[  717.721846]  ? __lock_acquire+0xbac/0x6120
[  717.722313]  ? find_held_lock+0x2c/0x110
[  717.722724]  ? loop_set_status_old+0x1b0/0x1b0
[  717.723199]  blkdev_ioctl+0x356/0x7f0
[  717.723590]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  717.724072]  ? selinux_file_ioctl+0xb1/0x260
[  717.724528]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  717.725106]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  717.725598]  __x64_sys_ioctl+0x196/0x210
[  717.726021]  do_syscall_64+0x3b/0x90
[  717.726398]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  717.726921] RIP: 0033:0x7f0844aa78d7
[  717.727292] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  717.729146] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  717.729924] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  717.730647] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  717.731378] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  717.732097] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  717.732817] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  717.733570]  </TASK>
[  717.748856] FAT-fs (loop5): bogus number of reserved sectors
[  717.749489] FAT-fs (loop5): Can't find a valid FAT filesystem
[  717.751598] loop7: detected capacity change from 0 to 4097
[  719.398591] Bluetooth: hci0: command 0x080f tx timeout
[  721.446850] Bluetooth: hci0: command 0x080f tx timeout
[  723.493047] Bluetooth: hci0: command 0x080f tx timeout
[  725.541220] Bluetooth: hci0: command 0x080f tx timeout
[  727.589047] Bluetooth: hci0: command 0x080f tx timeout
00:56:33 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 54)

00:56:33 executing program 1:
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(0xffffffffffffffff)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r1=>0xffffffffffffffff}, 0x4400)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:56:33 executing program 2:
clone3(0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))

00:56:33 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

00:56:33 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0xa00)

00:56:33 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:56:33 executing program 4:
r0 = clone3(0x0, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(0xffffffffffffffff)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:56:33 executing program 6:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

[  740.540776] loop7: detected capacity change from 0 to 4097
[  740.549609] loop3: detected capacity change from 0 to 4097
[  740.549825] FAULT_INJECTION: forcing a failure.
[  740.549825] name failslab, interval 1, probability 0, space 0, times 0
[  740.553064] CPU: 0 PID: 7429 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  740.554651] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  740.556939] Call Trace:
[  740.557452]  <TASK>
[  740.557906]  dump_stack_lvl+0x8b/0xb3
[  740.558693]  should_fail.cold+0x5/0xa
[  740.559471]  ? __kernfs_new_node+0xd4/0x8b0
[  740.560346]  should_failslab+0x5/0x10
[  740.561113]  kmem_cache_alloc+0x5b/0x480
[  740.561968]  __kernfs_new_node+0xd4/0x8b0
[  740.562806]  ? kernfs_add_one+0x3c6/0x550
[  740.563645]  ? kernfs_path_from_node+0x60/0x60
[  740.564573]  ? lock_is_held_type+0xd7/0x130
[  740.565459]  ? up_write+0x148/0x460
[  740.566186]  ? kernfs_activate+0x1c4/0x240
[  740.567050]  kernfs_new_node+0x93/0x120
[  740.567861]  __kernfs_create_file+0x51/0x350
[  740.568757]  sysfs_add_file_mode_ns+0x218/0x430
[  740.569711]  ? component_del+0x4c0/0x4c0
[  740.570530]  internal_create_group+0x322/0xb20
[  740.571467]  ? sysfs_remove_group+0x170/0x170
[  740.572383]  ? loop_configure+0x1940/0x1940
[  740.573252]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[  740.574274]  ? __loop_update_dio+0x2a3/0x620
[  740.575162]  loop_configure+0xe81/0x1940
[  740.575994]  lo_ioctl+0x782/0x1850
[  740.576707]  ? __x64_sys_openat+0x13f/0x1f0
[  740.577590]  ? loop_set_status_old+0x1b0/0x1b0
[  740.578504]  ? avc_ss_reset+0x180/0x180
[  740.579325]  ? __lock_acquire+0xbac/0x6120
[  740.580238]  ? find_held_lock+0x2c/0x110
[  740.581056]  ? loop_set_status_old+0x1b0/0x1b0
[  740.581999]  blkdev_ioctl+0x356/0x7f0
[  740.582769]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  740.583735]  ? selinux_file_ioctl+0xb1/0x260
[  740.584615]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  740.585721]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  740.586714]  __x64_sys_ioctl+0x196/0x210
[  740.587555]  do_syscall_64+0x3b/0x90
[  740.588306]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  740.589340] RIP: 0033:0x7f0844aa78d7
[  740.590117] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  740.593781] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  740.595310] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  740.596722] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  740.598169] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  740.599587] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  740.601010] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  740.602460]  </TASK>
[  740.633745] FAT-fs (loop5): bogus number of reserved sectors
[  740.635032] FAT-fs (loop5): Can't find a valid FAT filesystem
00:56:33 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

00:56:33 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 55)

00:56:33 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0xb01)

[  740.763729] loop3: detected capacity change from 0 to 4097
[  740.806049] FAULT_INJECTION: forcing a failure.
[  740.806049] name failslab, interval 1, probability 0, space 0, times 0
[  740.808407] CPU: 0 PID: 7541 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  740.809998] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  740.812249] Call Trace:
[  740.812777]  <TASK>
[  740.813219]  dump_stack_lvl+0x8b/0xb3
[  740.814024]  should_fail.cold+0x5/0xa
[  740.814801]  ? __kernfs_new_node+0xd4/0x8b0
[  740.815692]  should_failslab+0x5/0x10
[  740.816453]  kmem_cache_alloc+0x5b/0x480
[  740.817279]  __kernfs_new_node+0xd4/0x8b0
[  740.818123]  ? kernfs_add_one+0x3c6/0x550
00:56:33 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

[  740.818956]  ? kernfs_path_from_node+0x60/0x60
[  740.820028]  ? lock_is_held_type+0xd7/0x130
[  740.820903]  ? up_write+0x148/0x460
[  740.821652]  ? kernfs_activate+0x1c4/0x240
[  740.822503]  kernfs_new_node+0x93/0x120
[  740.823309]  __kernfs_create_file+0x51/0x350
[  740.824207]  sysfs_add_file_mode_ns+0x218/0x430
[  740.825151]  ? component_del+0x4c0/0x4c0
[  740.825972]  internal_create_group+0x322/0xb20
[  740.826905]  ? sysfs_remove_group+0x170/0x170
[  740.827820]  ? loop_configure+0x1940/0x1940
[  740.828686]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[  740.829698]  ? __loop_update_dio+0x2a3/0x620
[  740.830585]  loop_configure+0xe81/0x1940
[  740.831421]  lo_ioctl+0x782/0x1850
[  740.832135]  ? __x64_sys_openat+0x13f/0x1f0
[  740.833010]  ? loop_set_status_old+0x1b0/0x1b0
[  740.833943]  ? avc_ss_reset+0x180/0x180
[  740.834765]  ? __lock_acquire+0xbac/0x6120
[  740.835684]  ? find_held_lock+0x2c/0x110
[  740.836505]  ? loop_set_status_old+0x1b0/0x1b0
[  740.837437]  blkdev_ioctl+0x356/0x7f0
[  740.838217]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  740.839171]  ? selinux_file_ioctl+0xb1/0x260
[  740.840056]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  740.841164]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  740.842138]  __x64_sys_ioctl+0x196/0x210
[  740.842969]  do_syscall_64+0x3b/0x90
[  740.843711]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  740.844741] RIP: 0033:0x7f0844aa78d7
[  740.845488] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  740.849141] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  740.850674] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  740.852093] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  740.853581] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  740.855021] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  740.856473] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  740.857940]  </TASK>
00:56:33 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

[  740.913029] FAT-fs (loop5): bogus number of reserved sectors
[  740.914299] FAT-fs (loop5): Can't find a valid FAT filesystem
00:56:33 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x82100, 0x0)

[  740.953542] loop3: detected capacity change from 0 to 4097
00:56:33 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x2000)

00:56:33 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 56)

00:56:33 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

[  741.026828] FAULT_INJECTION: forcing a failure.
[  741.026828] name failslab, interval 1, probability 0, space 0, times 0
[  741.029237] CPU: 0 PID: 7555 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  741.030839] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  741.033109] Call Trace:
[  741.033641]  <TASK>
[  741.034082]  dump_stack_lvl+0x8b/0xb3
[  741.034872]  should_fail.cold+0x5/0xa
[  741.035642]  ? create_object.isra.0+0x3a/0xa20
[  741.036578]  should_failslab+0x5/0x10
[  741.037345]  kmem_cache_alloc+0x5b/0x480
[  741.038186]  create_object.isra.0+0x3a/0xa20
[  741.039069]  ? kasan_unpoison+0x23/0x50
[  741.039871]  kmem_cache_alloc+0x239/0x480
[  741.040716]  __kernfs_new_node+0xd4/0x8b0
[  741.041573]  ? kernfs_add_one+0x3c6/0x550
[  741.042418]  ? kernfs_path_from_node+0x60/0x60
[  741.043340]  ? lock_is_held_type+0xd7/0x130
[  741.044220]  ? up_write+0x148/0x460
[  741.044952]  ? kernfs_activate+0x1c4/0x240
[  741.045823]  kernfs_new_node+0x93/0x120
[  741.046638]  __kernfs_create_file+0x51/0x350
[  741.047533]  sysfs_add_file_mode_ns+0x218/0x430
[  741.048483]  ? component_del+0x4c0/0x4c0
[  741.049301]  internal_create_group+0x322/0xb20
[  741.050259]  ? sysfs_remove_group+0x170/0x170
[  741.051174]  ? loop_configure+0x1940/0x1940
[  741.052042]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[  741.053047]  ? __loop_update_dio+0x2a3/0x620
[  741.053949]  loop_configure+0xe81/0x1940
[  741.054789]  lo_ioctl+0x782/0x1850
[  741.055508]  ? __x64_sys_openat+0x13f/0x1f0
[  741.056386]  ? loop_set_status_old+0x1b0/0x1b0
[  741.057302]  ? avc_ss_reset+0x180/0x180
[  741.058138]  ? __lock_acquire+0xbac/0x6120
[  741.059056]  ? find_held_lock+0x2c/0x110
[  741.059878]  ? loop_set_status_old+0x1b0/0x1b0
[  741.060810]  blkdev_ioctl+0x356/0x7f0
[  741.061601]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  741.062599]  ? selinux_file_ioctl+0xb1/0x260
[  741.063490]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  741.064640]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  741.065620]  __x64_sys_ioctl+0x196/0x210
[  741.066464]  do_syscall_64+0x3b/0x90
[  741.067221]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  741.068276] RIP: 0033:0x7f0844aa78d7
[  741.069016] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  741.072764] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  741.074292] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  741.075718] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  741.077137] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  741.078571] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  741.079991] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  741.081444]  </TASK>
[  741.090570] loop7: detected capacity change from 0 to 4097
[  741.099419] FAT-fs (loop5): bogus number of reserved sectors
[  741.100641] FAT-fs (loop5): Can't find a valid FAT filesystem
[  741.178221] loop3: detected capacity change from 0 to 4097
[  742.565068] Bluetooth: hci0: command 0x080f tx timeout
[  744.612984] Bluetooth: hci0: command 0x080f tx timeout
[  746.774539] Bluetooth: hci0: command 0x080f tx timeout
[  748.837262] Bluetooth: hci0: command 0x080f tx timeout
[  750.885014] Bluetooth: hci0: command 0x080f tx timeout
00:56:46 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4000)

00:56:46 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

00:56:46 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 57)

00:56:46 executing program 1:
r0 = clone3(0x0, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(0xffffffffffffffff)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:56:46 executing program 2:
clone3(0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))

00:56:46 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

00:56:46 executing program 6:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)

00:56:46 executing program 4:
r0 = clone3(0x0, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(0xffffffffffffffff)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

[  754.218601] FAULT_INJECTION: forcing a failure.
[  754.218601] name failslab, interval 1, probability 0, space 0, times 0
[  754.219839] CPU: 0 PID: 7571 Comm: syz-executor.5 Not tainted 5.17.0-next-20220329 #1
[  754.220675] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  754.221868] Call Trace:
[  754.222138]  <TASK>
[  754.222374]  dump_stack_lvl+0x8b/0xb3
[  754.222787]  should_fail.cold+0x5/0xa
[  754.223189]  ? __kernfs_new_node+0xd4/0x8b0
[  754.223649]  should_failslab+0x5/0x10
[  754.224051]  kmem_cache_alloc+0x5b/0x480
[  754.224489]  __kernfs_new_node+0xd4/0x8b0
[  754.224931]  ? kernfs_add_one+0x3c6/0x550
[  754.225379]  ? kernfs_path_from_node+0x60/0x60
[  754.225878]  ? lock_is_held_type+0xd7/0x130
[  754.226339]  ? up_write+0x148/0x460
[  754.226720]  ? kernfs_activate+0x1c4/0x240
[  754.227172]  kernfs_new_node+0x93/0x120
[  754.227592]  __kernfs_create_file+0x51/0x350
[  754.228063]  sysfs_add_file_mode_ns+0x218/0x430
[  754.228552]  ? component_del+0x4c0/0x4c0
[  754.228979]  internal_create_group+0x322/0xb20
[  754.229463]  ? sysfs_remove_group+0x170/0x170
[  754.229958]  ? loop_configure+0x1940/0x1940
[  754.230412]  ? __sanitizer_cov_trace_cmp1+0x22/0x80
[  754.230941]  ? __loop_update_dio+0x2a3/0x620
[  754.231403]  loop_configure+0xe81/0x1940
[  754.231839]  lo_ioctl+0x782/0x1850
[  754.232208]  ? __x64_sys_openat+0x13f/0x1f0
[  754.232667]  ? loop_set_status_old+0x1b0/0x1b0
[  754.233139]  ? avc_ss_reset+0x180/0x180
[  754.233568]  ? __lock_acquire+0xbac/0x6120
[  754.234070]  ? find_held_lock+0x2c/0x110
[  754.234501]  ? loop_set_status_old+0x1b0/0x1b0
[  754.234979]  blkdev_ioctl+0x356/0x7f0
[  754.235385]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  754.235877]  ? selinux_file_ioctl+0xb1/0x260
[  754.236348]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  754.236917]  ? blkdev_common_ioctl+0x16d0/0x16d0
[  754.237422]  __x64_sys_ioctl+0x196/0x210
[  754.237873]  do_syscall_64+0x3b/0x90
[  754.238261]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  754.238805] RIP: 0033:0x7f0844aa78d7
[  754.239195] Code: 3c 1c 48 f7 d8 49 39 c4 72 b8 e8 a4 54 02 00 85 c0 78 bd 48 83 c4 08 4c 89 e0 5b 41 5c c3 0f 1f 44 00 00 b8 10 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  754.241119] RSP: 002b:00007f084201cf48 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  754.241930] RAX: ffffffffffffffda RBX: 00007f0844af1970 RCX: 00007f0844aa78d7
[  754.242671] RDX: 0000000000000004 RSI: 0000000000004c00 RDI: 0000000000000005
[  754.243431] RBP: 0000000000000005 R08: 0000000000000000 R09: ffffffffffffffff
[  754.244169] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[  754.244910] R13: 0000000000000004 R14: 0000000020000280 R15: 0000000000000000
[  754.245676]  </TASK>
[  754.262885] loop7: detected capacity change from 0 to 4097
[  754.275855] FAT-fs (loop5): bogus number of reserved sectors
[  754.276523] FAT-fs (loop5): Can't find a valid FAT filesystem
00:56:47 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]}) (fail_nth: 58)

00:56:47 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

00:56:47 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

00:56:47 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x6000)

[  754.408261] FAT-fs (loop5): bogus number of reserved sectors
[  754.408897] FAT-fs (loop5): Can't find a valid FAT filesystem
[  754.428299] loop7: detected capacity change from 0 to 4097
00:56:47 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x2, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

[  754.457335] FAT-fs (loop5): bogus number of reserved sectors
[  754.458080] FAT-fs (loop5): Can't find a valid FAT filesystem
00:56:47 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

00:56:47 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x3, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

[  754.505168] FAT-fs (loop5): bogus number of reserved sectors
[  754.505860] FAT-fs (loop5): Can't find a valid FAT filesystem
[  754.516020] FAT-fs (loop5): bogus number of reserved sectors
[  754.516630] FAT-fs (loop5): Can't find a valid FAT filesystem
00:56:47 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x22000)

00:56:47 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x4, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

[  754.638483] FAT-fs (loop5): bogus number of reserved sectors
[  754.639894] FAT-fs (loop5): Can't find a valid FAT filesystem
[  756.197033] Bluetooth: hci0: command 0x080f tx timeout
[  758.245019] Bluetooth: hci0: command 0x080f tx timeout
[  760.293025] Bluetooth: hci0: command 0x080f tx timeout
[  762.341036] Bluetooth: hci0: command 0x080f tx timeout
[  764.390021] Bluetooth: hci0: command 0x080f tx timeout
[  770.260518] FAT-fs (loop5): bogus number of reserved sectors
[  770.262019] FAT-fs (loop5): Can't find a valid FAT filesystem
00:57:02 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

00:57:02 executing program 1:
r0 = clone3(0x0, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(0xffffffffffffffff)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397f2b1bb3b5af60a2cfa1d88f4635990e7ea4590cd1c26ffcfeb5981e2f5f1558f4e45e978698f08952a3e594ee6c1a86605588755fc4527afc1793b6c63638d0208e496694f79f37830bc408e96605f2e568c54d9f1e30f6374f3488d9f0f9b0070f66111ba2d4206ae6269480d3e69960603062d921a91ac0e515e74868f3db09350af5e10d56aebcb7c83910db96583300feb7d08f7e892d3ac8560fc8a0e56cc4abce95c9e64d52845e07957ed95f516f04350"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:57:02 executing program 6:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)

00:57:02 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0xa0000)

00:57:02 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x5, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

00:57:02 executing program 2:
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))

00:57:02 executing program 0:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4000)

00:57:02 executing program 4:
r0 = clone3(0x0, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(0xffffffffffffffff)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

[  770.298737] loop7: detected capacity change from 0 to 4097
[  770.302906] loop0: detected capacity change from 0 to 4097
[  770.312600] FAT-fs (loop5): bogus number of reserved sectors
[  770.314110] FAT-fs (loop5): Can't find a valid FAT filesystem
00:57:03 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

00:57:03 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x6, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

00:57:03 executing program 0:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4000)

[  770.441185] loop3: detected capacity change from 0 to 4097
00:57:03 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x200200)

00:57:03 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

[  770.490346] FAT-fs (loop5): bogus number of reserved sectors
[  770.491607] FAT-fs (loop5): Can't find a valid FAT filesystem
[  770.519600] FAT-fs (loop5): bogus number of reserved sectors
[  770.520910] FAT-fs (loop5): Can't find a valid FAT filesystem
00:57:03 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

[  770.555756] loop0: detected capacity change from 0 to 4097
[  770.562885] loop7: detected capacity change from 0 to 4097
[  770.616172] loop3: detected capacity change from 0 to 4097
00:57:03 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x7, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

00:57:03 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x1000000)

[  770.692500] FAT-fs (loop5): bogus number of reserved sectors
[  770.693767] FAT-fs (loop5): Can't find a valid FAT filesystem
00:57:03 executing program 0:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

00:57:03 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

[  770.730104] FAT-fs (loop5): bogus number of reserved sectors
[  770.731342] FAT-fs (loop5): Can't find a valid FAT filesystem
[  770.767221] loop7: detected capacity change from 0 to 4097
[  770.776929] loop3: detected capacity change from 0 to 4097
[  770.786737] loop0: detected capacity change from 0 to 4097
[  772.325001] Bluetooth: hci0: command 0x080f tx timeout
[  774.373022] Bluetooth: hci0: command 0x080f tx timeout
[  776.421135] Bluetooth: hci0: command 0x080f tx timeout
[  778.469016] Bluetooth: hci0: command 0x080f tx timeout
00:57:20 executing program 0:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x2000)

00:57:20 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x8, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

00:57:20 executing program 6:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)

00:57:20 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:57:20 executing program 3:
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

00:57:20 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x10b0000)

00:57:20 executing program 2:
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))

[  787.784044] FAT-fs (loop5): bogus number of reserved sectors
[  787.785614] FAT-fs (loop5): Can't find a valid FAT filesystem
[  787.786523] loop0: detected capacity change from 0 to 4097
[  787.792772] loop7: detected capacity change from 0 to 4097
[  787.816661] loop3: detected capacity change from 0 to 4097
00:57:20 executing program 1:
r0 = clone3(0x0, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(0xffffffffffffffff)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[  787.849360] FAT-fs (loop5): bogus number of reserved sectors
[  787.850708] FAT-fs (loop5): Can't find a valid FAT filesystem
00:57:20 executing program 0:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x2000)

00:57:20 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x2000000)

[  787.934770] loop0: detected capacity change from 0 to 4097
[  787.948413] loop7: detected capacity change from 0 to 4097
00:57:20 executing program 3:
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

00:57:20 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x9, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

00:57:20 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x3000000)

[  788.029195] FAT-fs (loop5): bogus number of reserved sectors
[  788.029886] FAT-fs (loop5): Can't find a valid FAT filesystem
[  788.034616] loop3: detected capacity change from 0 to 4097
[  788.044374] FAT-fs (loop5): bogus number of reserved sectors
[  788.045053] FAT-fs (loop5): Can't find a valid FAT filesystem
00:57:20 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:57:20 executing program 0:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

[  788.081281] loop7: detected capacity change from 0 to 4097
00:57:20 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xa, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

[  788.110101] loop0: detected capacity change from 0 to 4097
[  788.140391] FAT-fs (loop5): bogus number of reserved sectors
[  788.141383] FAT-fs (loop5): Can't find a valid FAT filesystem
[  788.156055] FAT-fs (loop5): bogus number of reserved sectors
[  788.156757] FAT-fs (loop5): Can't find a valid FAT filesystem
[  789.797054] Bluetooth: hci0: command 0x080f tx timeout
[  791.845003] Bluetooth: hci0: command 0x080f tx timeout
[  793.892975] Bluetooth: hci0: command 0x080f tx timeout
00:57:35 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:57:35 executing program 6:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:57:35 executing program 3:
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

00:57:35 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xb, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

00:57:35 executing program 0:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x300)

00:57:35 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4000000)

00:57:35 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(0xffffffffffffffff)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:57:35 executing program 2:
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))

[  802.561096] FAT-fs (loop5): bogus number of reserved sectors
[  802.562551] FAT-fs (loop5): Can't find a valid FAT filesystem
[  802.577408] loop7: detected capacity change from 0 to 4097
[  802.600174] FAT-fs (loop5): bogus number of reserved sectors
[  802.601828] FAT-fs (loop5): Can't find a valid FAT filesystem
[  802.602790] loop3: detected capacity change from 0 to 4097
[  802.610635] loop0: detected capacity change from 0 to 4097
00:57:35 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xd, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

00:57:35 executing program 3:
openat(0xffffffffffffff9c, 0x0, 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

00:57:35 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x5000000)

00:57:35 executing program 0:
r0 = clone3(0x0, 0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(0xffffffffffffffff)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[  802.776593] FAT-fs (loop5): bogus number of reserved sectors
[  802.777798] FAT-fs (loop5): Can't find a valid FAT filesystem
[  802.801484] FAT-fs (loop5): bogus number of reserved sectors
[  802.802840] FAT-fs (loop5): Can't find a valid FAT filesystem
[  802.810575] loop3: detected capacity change from 0 to 4097
[  804.581007] Bluetooth: hci0: command 0x080f tx timeout
[  806.629023] Bluetooth: hci0: command 0x080f tx timeout
[  808.677000] Bluetooth: hci0: command 0x080f tx timeout
[  810.725095] Bluetooth: hci0: command 0x080f tx timeout
[  812.773029] Bluetooth: hci0: command 0x080f tx timeout
00:57:53 executing program 0:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x3)

00:57:53 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:57:53 executing program 6:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:57:53 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xe, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

00:57:53 executing program 3:
openat(0xffffffffffffff9c, 0x0, 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

00:57:53 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(0xffffffffffffffff)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:57:53 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))

00:57:53 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x20000000)

[  820.523679] FAT-fs (loop5): bogus number of reserved sectors
[  820.525076] FAT-fs (loop5): Can't find a valid FAT filesystem
[  820.536799] loop7: detected capacity change from 0 to 4097
[  820.584861] FAT-fs (loop5): bogus number of reserved sectors
[  820.585146] loop3: detected capacity change from 0 to 4097
[  820.586169] FAT-fs (loop5): Can't find a valid FAT filesystem
[  820.594317] loop0: detected capacity change from 0 to 4097
00:57:53 executing program 6:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:57:53 executing program 3:
openat(0xffffffffffffff9c, 0x0, 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

00:57:53 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x40000000)

00:57:53 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xf, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

00:57:53 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(0xffffffffffffffff)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:57:53 executing program 0:
openat(0xffffffffffffff9c, 0x0, 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

[  820.783163] FAT-fs (loop5): bogus number of reserved sectors
[  820.784576] FAT-fs (loop5): Can't find a valid FAT filesystem
[  820.808452] FAT-fs (loop5): bogus number of reserved sectors
[  820.809671] FAT-fs (loop5): Can't find a valid FAT filesystem
[  820.810736] loop7: detected capacity change from 0 to 4097
00:57:53 executing program 6:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

[  820.836251] loop3: detected capacity change from 0 to 4097
[  820.882067] loop0: detected capacity change from 0 to 4097
00:57:53 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x10, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

00:57:53 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x60000000)

[  820.992313] FAT-fs (loop5): bogus number of reserved sectors
[  820.993747] FAT-fs (loop5): Can't find a valid FAT filesystem
[  821.003874] loop7: detected capacity change from 0 to 4097
[  821.018862] FAT-fs (loop5): bogus number of reserved sectors
[  821.020309] FAT-fs (loop5): Can't find a valid FAT filesystem
[  822.502069] Bluetooth: hci0: command 0x080f tx timeout
[  824.549094] Bluetooth: hci0: command 0x080f tx timeout
[  826.597014] Bluetooth: hci0: command 0x080f tx timeout
[  828.644996] Bluetooth: hci0: command 0x080f tx timeout
[  830.693959] Bluetooth: hci0: command 0x080f tx timeout
00:58:11 executing program 6:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:58:11 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:58:11 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:58:11 executing program 0:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:58:11 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x11, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

00:58:11 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

00:58:11 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0xf5ffffff)

00:58:11 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))

[  839.064748] loop3: detected capacity change from 0 to 4097
00:58:11 executing program 6:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

[  839.076437] FAT-fs (loop5): bogus number of reserved sectors
[  839.077845] FAT-fs (loop5): Can't find a valid FAT filesystem
[  839.088678] loop7: detected capacity change from 0 to 4097
00:58:11 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

[  839.108704] FAT-fs (loop5): bogus number of reserved sectors
[  839.110031] FAT-fs (loop5): Can't find a valid FAT filesystem
00:58:11 executing program 0:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:58:11 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:58:11 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

00:58:11 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0xffefffff)

00:58:11 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x48, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

[  839.262786] loop7: detected capacity change from 0 to 4097
00:58:12 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(0x0, &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

[  839.270702] FAT-fs (loop5): bogus number of reserved sectors
[  839.272085] FAT-fs (loop5): Can't find a valid FAT filesystem
[  839.310784] FAT-fs (loop5): bogus number of reserved sectors
[  839.312207] FAT-fs (loop5): Can't find a valid FAT filesystem
00:58:12 executing program 0:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

[  841.060974] Bluetooth: hci0: command 0x080f tx timeout
[  843.109987] Bluetooth: hci0: command 0x080f tx timeout
[  845.157968] Bluetooth: hci0: command 0x080f tx timeout
[  847.205003] Bluetooth: hci0: command 0x080f tx timeout
[  849.252970] Bluetooth: hci0: command 0x080f tx timeout
00:58:29 executing program 6:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:58:29 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0xffffefff)

00:58:29 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:58:29 executing program 0:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:58:29 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(0x0, &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

00:58:29 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x4c, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

00:58:29 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(0xffffffffffffffff)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:58:29 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))

[  856.867718] loop7: detected capacity change from 0 to 4097
[  856.902677] FAT-fs (loop5): bogus number of reserved sectors
[  856.904012] FAT-fs (loop5): Can't find a valid FAT filesystem
00:58:29 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

[  856.933644] FAT-fs (loop5): bogus number of reserved sectors
[  856.934937] FAT-fs (loop5): Can't find a valid FAT filesystem
00:58:29 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(0x0, &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

00:58:29 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0xfffffff5)

00:58:29 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), 0x0, 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

[  857.014613] loop7: detected capacity change from 0 to 4097
[  857.038435] loop3: detected capacity change from 0 to 4097
00:58:29 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x68, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

00:58:29 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:58:29 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), 0x0, 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

00:58:29 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x1000000000000)

[  857.117224] FAT-fs (loop5): bogus number of reserved sectors
[  857.118564] FAT-fs (loop5): Can't find a valid FAT filesystem
[  857.122969] loop3: detected capacity change from 0 to 4097
[  857.138502] loop7: detected capacity change from 0 to 4097
[  857.143654] FAT-fs (loop5): bogus number of reserved sectors
[  857.144890] FAT-fs (loop5): Can't find a valid FAT filesystem
00:58:29 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), 0x0, 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

[  857.197889] loop3: detected capacity change from 0 to 4097
[  858.852982] Bluetooth: hci0: command 0x080f tx timeout
[  860.901011] Bluetooth: hci0: command 0x080f tx timeout
[  862.948977] Bluetooth: hci0: command 0x080f tx timeout
[  864.997038] Bluetooth: hci0: command 0x080f tx timeout
[  867.045976] Bluetooth: hci0: command 0x080f tx timeout
[  869.093999] Bluetooth: hci0: command 0x080f tx timeout
00:58:46 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:58:46 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x6c, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

00:58:46 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000)) (fail_nth: 1)
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

00:58:46 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))

00:58:46 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x2200000000000)

00:58:46 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, 0x0, 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

00:58:46 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x0, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:58:46 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(0xffffffffffffffff)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397f2b1bb3b5af60a2cfa1d88f4635990e7ea4590cd1c26ffcfeb5981e2f5f1558f4e45e978698f08952a3e594ee6c1a86605588755fc4527afc1793b6c63638d0208e496694f79f37830bc408e96605f2e568c54d9f1e30f6374f3488d9f0f9b0070f66111ba2d4206ae6269480d3e69960603062d921a91ac0e515e74868f3db09350af5e10d56aebcb7c83910db96583300feb7d08f7e892d3ac8560fc8a0e56cc4abce95c9e64d52845e07957ed95f516f04350"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[  874.011834] FAULT_INJECTION: forcing a failure.
[  874.011834] name failslab, interval 1, probability 0, space 0, times 0
[  874.013503] CPU: 1 PID: 9026 Comm: syz-executor.0 Not tainted 5.17.0-next-20220329 #1
[  874.014409] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  874.015736] Call Trace:
[  874.016046]  <TASK>
[  874.016302]  dump_stack_lvl+0x8b/0xb3
[  874.016761]  should_fail.cold+0x5/0xa
[  874.017204]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  874.017854]  ? __alloc_skb+0x211/0x340
[  874.018303]  should_failslab+0x5/0x10
[  874.018746]  kmem_cache_alloc_node+0x55/0x490
[  874.019272]  __alloc_skb+0x211/0x340
[  874.019702]  create_monitor_ctrl_open+0x16c/0x790
[  874.020262]  ? hci_sock_release+0x400/0x400
[  874.020759]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  874.021382]  ? security_capable+0x95/0xc0
[  874.021874]  hci_sock_ioctl+0x394/0x910
[  874.022336]  ? hci_sock_sendmsg+0x22e0/0x22e0
[  874.022858]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  874.023518]  sock_do_ioctl+0xd2/0x230
[  874.023962]  ? put_user_ifreq+0xb0/0xb0
[  874.024443]  ? vfs_fileattr_set+0xb80/0xb80
[  874.024944]  ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x400
[  874.025632]  ? ioctl_has_perm.constprop.0.isra.0+0x2a4/0x400
[  874.026306]  ? selinux_inode_getsecctx+0x90/0x90
[  874.026883]  sock_ioctl+0x41c/0x670
[  874.027300]  ? lock_is_held_type+0xd7/0x130
[  874.027823]  ? br_ioctl_call+0xb0/0xb0
[  874.028283]  ? selinux_file_ioctl+0xb1/0x260
[  874.028805]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  874.029456]  ? br_ioctl_call+0xb0/0xb0
[  874.029924]  __x64_sys_ioctl+0x196/0x210
[  874.030421]  do_syscall_64+0x3b/0x90
[  874.030863]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  874.031486] RIP: 0033:0x7fb00ebc3b19
[  874.031922] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  874.034083] RSP: 002b:00007fb00c139188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  874.034981] RAX: ffffffffffffffda RBX: 00007fb00ecd6f60 RCX: 00007fb00ebc3b19
[  874.035850] RDX: 0000000020000000 RSI: 00000000400448e1 RDI: 0000000000000005
[  874.036703] RBP: 00007fb00c1391d0 R08: 0000000000000000 R09: 0000000000000000
[  874.037536] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  874.038385] R13: 00007ffea9a03e7f R14: 00007fb00c139300 R15: 0000000000022000
[  874.039236]  </TASK>
[  874.049677] loop3: detected capacity change from 0 to 4097
[  874.067065] FAT-fs (loop5): bogus number of reserved sectors
[  874.067741] FAT-fs (loop5): Can't find a valid FAT filesystem
00:58:46 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000)) (fail_nth: 2)
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

[  874.085580] FAT-fs (loop5): bogus number of reserved sectors
[  874.086360] FAT-fs (loop5): Can't find a valid FAT filesystem
[  874.091649] loop7: detected capacity change from 0 to 4097
00:58:46 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, 0x0, 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

00:58:46 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x74, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

[  874.140051] FAULT_INJECTION: forcing a failure.
[  874.140051] name failslab, interval 1, probability 0, space 0, times 0
[  874.141267] CPU: 1 PID: 9085 Comm: syz-executor.0 Not tainted 5.17.0-next-20220329 #1
[  874.142123] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  874.143313] Call Trace:
[  874.143596]  <TASK>
[  874.143833]  dump_stack_lvl+0x8b/0xb3
[  874.144245]  should_fail.cold+0x5/0xa
[  874.144663]  ? __alloc_skb+0x211/0x340
[  874.145074]  ? create_object.isra.0+0x3a/0xa20
[  874.145578]  should_failslab+0x5/0x10
[  874.145988]  kmem_cache_alloc+0x5b/0x480
[  874.146441]  create_object.isra.0+0x3a/0xa20
[  874.146956]  ? kasan_unpoison+0x23/0x50
[  874.147394]  kmem_cache_alloc_node+0x248/0x490
[  874.147884]  __alloc_skb+0x211/0x340
[  874.148292]  create_monitor_ctrl_open+0x16c/0x790
[  874.148820]  ? hci_sock_release+0x400/0x400
[  874.149296]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  874.149892]  ? security_capable+0x95/0xc0
[  874.150354]  hci_sock_ioctl+0x394/0x910
[  874.150795]  ? hci_sock_sendmsg+0x22e0/0x22e0
[  874.151286]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  874.151876]  sock_do_ioctl+0xd2/0x230
[  874.152295]  ? put_user_ifreq+0xb0/0xb0
[  874.152730]  ? vfs_fileattr_set+0xb80/0xb80
[  874.153204]  ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x400
[  874.153819]  ? ioctl_has_perm.constprop.0.isra.0+0x2a4/0x400
[  874.154449]  ? selinux_inode_getsecctx+0x90/0x90
[  874.154963]  sock_ioctl+0x41c/0x670
[  874.155362]  ? lock_is_held_type+0xd7/0x130
[  874.155829]  ? br_ioctl_call+0xb0/0xb0
[  874.156258]  ? selinux_file_ioctl+0xb1/0x260
[  874.156733]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  874.157330]  ? br_ioctl_call+0xb0/0xb0
[  874.157742]  __x64_sys_ioctl+0x196/0x210
[  874.158186]  do_syscall_64+0x3b/0x90
[  874.158594]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  874.159147] RIP: 0033:0x7fb00ebc3b19
[  874.159556] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  874.161517] RSP: 002b:00007fb00c139188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  874.162318] RAX: ffffffffffffffda RBX: 00007fb00ecd6f60 RCX: 00007fb00ebc3b19
[  874.163081] RDX: 0000000020000000 RSI: 00000000400448e1 RDI: 0000000000000005
[  874.163849] RBP: 00007fb00c1391d0 R08: 0000000000000000 R09: 0000000000000000
[  874.164618] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  874.165380] R13: 00007ffea9a03e7f R14: 00007fb00c139300 R15: 0000000000022000
[  874.166152]  </TASK>
00:58:46 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))

[  874.198633] FAT-fs (loop5): bogus number of reserved sectors
00:58:46 executing program 6:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:58:46 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0xa000000000000)

00:58:47 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x7a, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

00:58:47 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x0, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

[  874.198647] FAT-fs (loop5): Can't find a valid FAT filesystem
[  874.222735] FAT-fs (loop5): bogus number of reserved sectors
[  874.222757] FAT-fs (loop5): Can't find a valid FAT filesystem
[  874.257632] loop3: detected capacity change from 0 to 4097
[  874.270811] loop7: detected capacity change from 0 to 4097
[  874.326666] FAT-fs (loop5): bogus number of reserved sectors
[  874.327926] FAT-fs (loop5): Can't find a valid FAT filesystem
[  874.360318] FAT-fs (loop5): bogus number of reserved sectors
[  874.361602] FAT-fs (loop5): Can't find a valid FAT filesystem
[  876.069016] Bluetooth: hci0: command 0x080f tx timeout
[  878.116980] Bluetooth: hci0: command 0x080f tx timeout
[  880.165011] Bluetooth: hci0: command 0x080f tx timeout
[  882.213014] Bluetooth: hci0: command 0x080f tx timeout
[  884.333630] Bluetooth: hci0: command 0x080f tx timeout
[  886.372965] Bluetooth: hci0: command 0x080f tx timeout
[  888.421008] Bluetooth: hci0: command 0x080f tx timeout
00:59:04 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x0, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:59:04 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))

00:59:04 executing program 6:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:59:04 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xfe, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

00:59:04 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, 0x0, 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

00:59:04 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x100000000000000)

00:59:04 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000)) (fail_nth: 3)
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

00:59:04 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(0xffffffffffffffff)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[  891.448119] FAT-fs (loop5): bogus number of reserved sectors
[  891.448759] FAT-fs (loop5): Can't find a valid FAT filesystem
[  891.453649] loop7: detected capacity change from 0 to 4097
[  891.464844] FAT-fs (loop5): bogus number of reserved sectors
[  891.465542] FAT-fs (loop5): Can't find a valid FAT filesystem
[  891.483892] loop3: detected capacity change from 0 to 4097
[  891.496805] FAULT_INJECTION: forcing a failure.
[  891.496805] name failslab, interval 1, probability 0, space 0, times 0
[  891.499156] CPU: 1 PID: 9293 Comm: syz-executor.0 Not tainted 5.17.0-next-20220329 #1
[  891.500781] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  891.503040] Call Trace:
[  891.503553]  <TASK>
[  891.504025]  dump_stack_lvl+0x8b/0xb3
[  891.504807]  should_fail.cold+0x5/0xa
[  891.505585]  ? lock_is_held_type+0xd7/0x130
[  891.506479]  should_failslab+0x5/0x10
[  891.507243]  __kmalloc_node_track_caller+0x7e/0x440
[  891.508266]  ? create_monitor_ctrl_open+0x16c/0x790
[  891.509288]  __alloc_skb+0xe3/0x340
[  891.510019]  create_monitor_ctrl_open+0x16c/0x790
00:59:04 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x112, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

[  891.510994]  ? hci_sock_release+0x400/0x400
00:59:04 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x10b000000000000)

[  891.512090]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  891.513259]  ? security_capable+0x95/0xc0
[  891.514119]  hci_sock_ioctl+0x394/0x910
[  891.514937]  ? hci_sock_sendmsg+0x22e0/0x22e0
[  891.515876]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  891.516947]  sock_do_ioctl+0xd2/0x230
[  891.517754]  ? put_user_ifreq+0xb0/0xb0
[  891.518578]  ? vfs_fileattr_set+0xb80/0xb80
[  891.519471]  ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x400
[  891.520648]  ? ioctl_has_perm.constprop.0.isra.0+0x2a4/0x400
[  891.521821]  ? selinux_inode_getsecctx+0x90/0x90
[  891.522796]  sock_ioctl+0x41c/0x670
[  891.523519]  ? lock_is_held_type+0xd7/0x130
[  891.524407]  ? br_ioctl_call+0xb0/0xb0
[  891.525208]  ? selinux_file_ioctl+0xb1/0x260
[  891.526097]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  891.527212]  ? br_ioctl_call+0xb0/0xb0
[  891.528000]  __x64_sys_ioctl+0x196/0x210
[  891.528833]  do_syscall_64+0x3b/0x90
[  891.529576]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  891.530608] RIP: 0033:0x7fb00ebc3b19
[  891.531351] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  891.535020] RSP: 002b:00007fb00c139188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  891.536547] RAX: ffffffffffffffda RBX: 00007fb00ecd6f60 RCX: 00007fb00ebc3b19
[  891.537970] RDX: 0000000020000000 RSI: 00000000400448e1 RDI: 0000000000000005
[  891.539388] RBP: 00007fb00c1391d0 R08: 0000000000000000 R09: 0000000000000000
[  891.540817] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  891.542242] R13: 00007ffea9a03e7f R14: 00007fb00c139300 R15: 0000000000022000
[  891.543709]  </TASK>
[  891.548878] FAT-fs (loop5): bogus number of reserved sectors
[  891.549683] FAT-fs (loop5): Can't find a valid FAT filesystem
[  891.570548] FAT-fs (loop5): bogus number of reserved sectors
[  891.571279] FAT-fs (loop5): Can't find a valid FAT filesystem
00:59:04 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x0, &(0x7f0000000000))

00:59:04 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x300, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

00:59:04 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x0, &(0x7f0000000000))

00:59:04 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

[  891.658379] loop5: detected capacity change from 0 to 1
[  891.664659] FAT-fs (loop5): bogus number of reserved sectors
[  891.665482] FAT-fs (loop5): Can't find a valid FAT filesystem
[  891.679751] loop5: detected capacity change from 0 to 1
[  891.684375] FAT-fs (loop5): bogus number of reserved sectors
[  891.685024] FAT-fs (loop5): Can't find a valid FAT filesystem
[  891.698264] loop3: detected capacity change from 0 to 4097
00:59:04 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x200000000000000)

00:59:04 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x0, &(0x7f0000000000))

[  893.477049] Bluetooth: hci0: command 0x080f tx timeout
[  895.526488] Bluetooth: hci0: command 0x080f tx timeout
[  897.572977] Bluetooth: hci0: command 0x080f tx timeout
[  899.621075] Bluetooth: hci0: command 0x080f tx timeout
00:59:20 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:59:20 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

00:59:20 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x500, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

00:59:20 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, 0x0)

00:59:20 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

00:59:20 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x300000000000000)

00:59:20 executing program 6:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:59:20 executing program 4:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x5, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:59:20 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, 0x0)

[  907.574613] loop3: detected capacity change from 0 to 4097
[  907.583539] loop5: detected capacity change from 0 to 2
[  907.597823] FAT-fs (loop5): bogus number of reserved sectors
[  907.598638] FAT-fs (loop5): Can't find a valid FAT filesystem
[  907.619327] loop7: detected capacity change from 0 to 4097
[  907.627460] loop5: detected capacity change from 0 to 2
00:59:20 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, 0x0)

00:59:20 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

[  907.641677] FAT-fs (loop5): bogus number of reserved sectors
[  907.642349] FAT-fs (loop5): Can't find a valid FAT filesystem
00:59:20 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x400000000000000)

00:59:20 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x506, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

00:59:20 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, 0x0)
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

00:59:20 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x0, &(0x7f0000000000))

00:59:20 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, 0x0)
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

[  907.820414] loop7: detected capacity change from 0 to 4097
[  907.825099] loop5: detected capacity change from 0 to 2
[  907.832643] FAT-fs (loop5): bogus number of reserved sectors
[  907.833279] FAT-fs (loop5): Can't find a valid FAT filesystem
[  907.854842] loop5: detected capacity change from 0 to 2
[  907.858665] FAT-fs (loop5): bogus number of reserved sectors
[  907.859351] FAT-fs (loop5): Can't find a valid FAT filesystem
[  909.604961] Bluetooth: hci0: command 0x080f tx timeout
[  911.652973] Bluetooth: hci0: command 0x080f tx timeout
[  913.700982] Bluetooth: hci0: command 0x080f tx timeout
[  915.749010] Bluetooth: hci0: command 0x080f tx timeout
00:59:33 executing program 6:
clone3(0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:59:33 executing program 4:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x5, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:59:33 executing program 2:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, 0x0, 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

00:59:33 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x500000000000000)

00:59:33 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x507, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

00:59:33 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, 0x0)
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

00:59:33 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397f2b1bb3b5af60a2cfa1d88f4635990e7ea4590cd1c26ffcfeb5981e2f5f1558f4e45e978698f08952a3e594ee6c1a86605588755fc4527afc1793b6c63638d0208e496694f79f37830bc408e96605f2e568c54d9f1e30f6374f3488d9f0f9b0070f66111ba2d4206ae6269480d3e69960603062d921a91ac0e515e74868f3db09350af5e10d56aebcb7c83910db96583300feb7d08f7e892d3ac8560fc8a0e56cc4abce95c9e64d52845e07957ed95f516f04350"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:59:33 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x2, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

[  920.733129] loop5: detected capacity change from 0 to 2
[  920.742747] FAT-fs (loop5): bogus number of reserved sectors
[  920.743521] FAT-fs (loop5): Can't find a valid FAT filesystem
[  920.754073] loop2: detected capacity change from 0 to 4097
[  920.754980] loop7: detected capacity change from 0 to 4097
[  920.762325] loop5: detected capacity change from 0 to 2
[  920.766181] FAT-fs (loop5): bogus number of reserved sectors
[  920.766808] FAT-fs (loop5): Can't find a valid FAT filesystem
00:59:33 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x50c, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

00:59:33 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x4b47, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

[  920.835516] loop5: detected capacity change from 0 to 2
00:59:33 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x4b49, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

00:59:33 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x2000000000000000)

[  920.863652] FAT-fs (loop5): bogus number of reserved sectors
[  920.865012] FAT-fs (loop5): Can't find a valid FAT filesystem
00:59:33 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

00:59:33 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x4b47, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

00:59:33 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000)) (fail_nth: 1)

[  920.955043] loop7: detected capacity change from 0 to 4097
[  920.964831] FAULT_INJECTION: forcing a failure.
[  920.964831] name failslab, interval 1, probability 0, space 0, times 0
[  920.966104] CPU: 0 PID: 9726 Comm: syz-executor.2 Not tainted 5.17.0-next-20220329 #1
[  920.966935] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  920.968145] Call Trace:
[  920.968417]  <TASK>
[  920.968648]  dump_stack_lvl+0x8b/0xb3
[  920.969055]  should_fail.cold+0x5/0xa
[  920.969459]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  920.970045]  ? __alloc_skb+0x211/0x340
[  920.970451]  should_failslab+0x5/0x10
[  920.970847]  kmem_cache_alloc_node+0x55/0x490
[  920.971323]  __alloc_skb+0x211/0x340
[  920.971709]  create_monitor_ctrl_open+0x16c/0x790
[  920.972229]  ? hci_sock_release+0x400/0x400
[  920.972693]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  920.973268]  ? security_capable+0x95/0xc0
[  920.973715]  hci_sock_ioctl+0x394/0x910
[  920.974150]  ? hci_sock_sendmsg+0x22e0/0x22e0
[  920.974615]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  920.975186]  sock_do_ioctl+0xd2/0x230
[  920.975585]  ? put_user_ifreq+0xb0/0xb0
[  920.976010]  ? vfs_fileattr_set+0xb80/0xb80
[  920.976469]  ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x400
[  920.977089]  ? ioctl_has_perm.constprop.0.isra.0+0x2a4/0x400
[  920.977712]  ? selinux_inode_getsecctx+0x90/0x90
[  920.978215]  sock_ioctl+0x41c/0x670
[  920.978599]  ? lock_is_held_type+0xd7/0x130
[  920.979051]  ? br_ioctl_call+0xb0/0xb0
[  920.979467]  ? selinux_file_ioctl+0xb1/0x260
[  920.979944]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  920.980544]  ? br_ioctl_call+0xb0/0xb0
[  920.980961]  __x64_sys_ioctl+0x196/0x210
[  920.981402]  do_syscall_64+0x3b/0x90
[  920.981803]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  920.982344] RIP: 0033:0x7fc0a7c91b19
[  920.982740] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  920.984695] RSP: 002b:00007fc0a5207188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  920.985504] RAX: ffffffffffffffda RBX: 00007fc0a7da4f60 RCX: 00007fc0a7c91b19
[  920.986258] RDX: 0000000020000000 RSI: 00000000400448e1 RDI: 0000000000000005
[  920.987010] RBP: 00007fc0a52071d0 R08: 0000000000000000 R09: 0000000000000000
[  920.987759] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  920.988534] R13: 00007ffc4cb8eb8f R14: 00007fc0a5207300 R15: 0000000000022000
[  920.989300]  </TASK>
00:59:33 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x50e, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

[  921.011572] loop5: detected capacity change from 0 to 2
[  921.015848] FAT-fs (loop5): bogus number of reserved sectors
[  921.016541] FAT-fs (loop5): Can't find a valid FAT filesystem
[  921.026538] loop5: detected capacity change from 0 to 2
[  921.029272] FAT-fs (loop5): bogus number of reserved sectors
[  921.029996] FAT-fs (loop5): Can't find a valid FAT filesystem
[  922.788928] Bluetooth: hci0: command 0x080f tx timeout
[  924.836974] Bluetooth: hci0: command 0x080f tx timeout
[  926.884945] Bluetooth: hci0: command 0x080f tx timeout
[  928.933037] Bluetooth: hci0: command 0x080f tx timeout
00:59:47 executing program 4:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x5, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

00:59:47 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4000000000000000)

00:59:47 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

00:59:47 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x50f, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

00:59:47 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

00:59:47 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x541b, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

00:59:47 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000)) (fail_nth: 2)

00:59:47 executing program 6:
clone3(0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

00:59:47 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x5421, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

[  934.588817] loop5: detected capacity change from 0 to 2
[  934.597912] FAT-fs (loop5): bogus number of reserved sectors
[  934.598554] FAT-fs (loop5): Can't find a valid FAT filesystem
[  934.606678] FAULT_INJECTION: forcing a failure.
[  934.606678] name failslab, interval 1, probability 0, space 0, times 0
[  934.609134] CPU: 1 PID: 9743 Comm: syz-executor.2 Not tainted 5.17.0-next-20220329 #1
[  934.610820] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[  934.613255] Call Trace:
[  934.613800]  <TASK>
[  934.614278]  dump_stack_lvl+0x8b/0xb3
[  934.615157]  should_fail.cold+0x5/0xa
[  934.616038]  ? create_object.isra.0+0x3a/0xa20
[  934.617044]  should_failslab+0x5/0x10
[  934.617842]  kmem_cache_alloc+0x5b/0x480
[  934.618732]  create_object.isra.0+0x3a/0xa20
[  934.619694]  ? kasan_unpoison+0x23/0x50
[  934.620564]  kmem_cache_alloc_node+0x248/0x490
[  934.621544]  __alloc_skb+0x211/0x340
[  934.622327]  create_monitor_ctrl_open+0x16c/0x790
[  934.623412]  ? hci_sock_release+0x400/0x400
[  934.624370]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  934.625584]  ? security_capable+0x95/0xc0
[  934.626492]  hci_sock_ioctl+0x394/0x910
[  934.627364]  ? hci_sock_sendmsg+0x22e0/0x22e0
[  934.628354]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  934.629528]  sock_do_ioctl+0xd2/0x230
[  934.630341]  ? put_user_ifreq+0xb0/0xb0
[  934.631244]  ? vfs_fileattr_set+0xb80/0xb80
[  934.632192]  ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x400
[  934.633443]  ? ioctl_has_perm.constprop.0.isra.0+0x2a4/0x400
[  934.634620]  ? selinux_inode_getsecctx+0x90/0x90
[  934.635616]  sock_ioctl+0x41c/0x670
[  934.636364]  ? lock_is_held_type+0xd7/0x130
[  934.637275]  ? br_ioctl_call+0xb0/0xb0
[  934.638075]  ? selinux_file_ioctl+0xb1/0x260
[  934.638981]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  934.640114]  ? br_ioctl_call+0xb0/0xb0
[  934.640935]  __x64_sys_ioctl+0x196/0x210
[  934.641780]  do_syscall_64+0x3b/0x90
[  934.642554]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[  934.643618] RIP: 0033:0x7fc0a7c91b19
[  934.644443] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[  934.649243] RSP: 002b:00007fc0a5207188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  934.650977] RAX: ffffffffffffffda RBX: 00007fc0a7da4f60 RCX: 00007fc0a7c91b19
[  934.652483] RDX: 0000000020000000 RSI: 00000000400448e1 RDI: 0000000000000005
[  934.653932] RBP: 00007fc0a52071d0 R08: 0000000000000000 R09: 0000000000000000
[  934.655402] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  934.656882] R13: 00007ffc4cb8eb8f R14: 00007fc0a5207300 R15: 0000000000022000
[  934.658359]  </TASK>
[  934.680550] loop5: detected capacity change from 0 to 2
[  934.681799] FAT-fs (loop5): bogus number of reserved sectors
[  934.682450] FAT-fs (loop5): Can't find a valid FAT filesystem
[  934.682675] loop7: detected capacity change from 0 to 4097
00:59:47 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x5450, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

00:59:47 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

00:59:47 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x510, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

00:59:47 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x6000000000000000)

00:59:47 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x5451, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

[  934.870500] loop7: detected capacity change from 0 to 4097
[  936.676972] Bluetooth: hci0: command 0x080f tx timeout
[  938.724956] Bluetooth: hci0: command 0x080f tx timeout
[  940.772966] Bluetooth: hci0: command 0x080f tx timeout
[  942.821039] Bluetooth: hci0: command 0x080f tx timeout
01:00:01 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x511, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:00:01 executing program 6:
clone3(0x0, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

[  949.084061] loop5: detected capacity change from 0 to 2
01:00:01 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x0, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:00:01 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x5452, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:00:01 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))

01:00:01 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x8000000000000000)

01:00:01 executing program 1:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x0, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:00:01 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0), 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

[  949.096046] FAT-fs (loop5): bogus number of reserved sectors
[  949.096667] FAT-fs (loop5): Can't find a valid FAT filesystem
[  949.106816] loop5: detected capacity change from 0 to 2
[  949.109170] FAT-fs (loop5): bogus number of reserved sectors
[  949.109807] FAT-fs (loop5): Can't find a valid FAT filesystem
[  949.133541] loop7: detected capacity change from 0 to 4097
01:00:01 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x5460, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:00:01 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x600, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:00:01 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[  949.209269] loop5: detected capacity change from 0 to 3
01:00:01 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0xf5ffffff00000000)

[  949.224540] FAT-fs (loop5): bogus number of reserved sectors
[  949.225174] FAT-fs (loop5): Can't find a valid FAT filesystem
01:00:01 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0), 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

[  949.250544] loop5: detected capacity change from 0 to 3
[  949.253424] FAT-fs (loop5): bogus number of reserved sectors
[  949.254054] FAT-fs (loop5): Can't find a valid FAT filesystem
01:00:01 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x0, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:00:02 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x605, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

[  949.305085] loop7: detected capacity change from 0 to 4097
01:00:02 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8901, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

[  949.337088] loop5: detected capacity change from 0 to 3
01:00:02 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8902, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

[  949.357078] FAT-fs (loop5): bogus number of reserved sectors
[  949.357093] FAT-fs (loop5): Can't find a valid FAT filesystem
[  949.371159] loop5: detected capacity change from 0 to 3
[  949.373093] FAT-fs (loop5): bogus number of reserved sectors
[  949.373104] FAT-fs (loop5): Can't find a valid FAT filesystem
[  949.979355] loop5: detected capacity change from 0 to 3
01:00:02 executing program 6:
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

01:00:02 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x700, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:00:02 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0xffefffff00000000)

[  949.999199] FAT-fs (loop5): bogus number of reserved sectors
[  950.001332] FAT-fs (loop5): Can't find a valid FAT filesystem
[  951.140942] Bluetooth: hci0: command 0x080f tx timeout
[  953.188954] Bluetooth: hci0: command 0x080f tx timeout
[  955.237924] Bluetooth: hci0: command 0x080f tx timeout
[  957.284936] Bluetooth: hci0: command 0x080f tx timeout
[  959.332958] Bluetooth: hci0: command 0x080f tx timeout
[  961.381983] Bluetooth: hci0: command 0x080f tx timeout
[  963.428918] Bluetooth: hci0: command 0x080f tx timeout
01:00:18 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x705, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:00:18 executing program 6:
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

01:00:18 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8903, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:00:18 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0), 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

01:00:18 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:00:18 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x2, &(0x7f0000000000))

[  966.046736] loop5: detected capacity change from 0 to 3
01:00:18 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
fallocate(0xffffffffffffffff, 0x74, 0x3f, 0x5)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_mount_image$nfs(&(0x7f0000000140), &(0x7f0000000180)='./file1\x00', 0x1, 0x3, &(0x7f0000001380)=[{&(0x7f0000001480)="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", 0x102, 0x5}, {&(0x7f00000002c0)="442c0a4a6a176b0f1ad9f93c27a3397770eac4fa84108fbb838630b09af8b4464c93cbc975a9a20e78c176cc835e34656d283555ec3383fc461bbbcd53fe5733cc7d7e3413c42e2456ee0abd207a8161ebf0dfaa4389a43d1e8fba400be85f6f55d7265bbe15c279cf43781a505b358825ad4f6945bef6757f9ad14bba31cd8d1cfc6e85ffa5289d9e9564c618cfccef46c9682794aabc19859e796a736d15eeb75c2fe9", 0xa4, 0x7}, {&(0x7f0000000380)="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", 0x1000, 0xffffffff}], 0x0, &(0x7f0000001400)={[{':\xb7\xac'}, {'&.'}], [{@obj_type={'obj_type', 0x3d, '\x00'}}, {@subj_type={'subj_type', 0x3d, '\x00'}}, {@fsmagic}, {@seclabel}, {@obj_user={'obj_user', 0x3d, 'nfs\x00'}}, {@obj_type={'obj_type', 0x3d, '!\xfe'}}]})
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

01:00:18 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x0, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

[  966.085080] FAT-fs (loop5): bogus number of reserved sectors
[  966.085717] FAT-fs (loop5): Can't find a valid FAT filesystem
[  966.094005] loop5: detected capacity change from 0 to 3
[  966.098148] FAT-fs (loop5): bogus number of reserved sectors
[  966.098754] FAT-fs (loop5): Can't find a valid FAT filesystem
01:00:18 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x4b47, &(0x7f0000000000))

01:00:18 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

[  966.145459] loop7: detected capacity change from 0 to 4097
01:00:18 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x900, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

[  966.215128] loop5: detected capacity change from 0 to 4
01:00:18 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8904, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:00:18 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x4b49, &(0x7f0000000000))

[  966.281218] FAT-fs (loop5): bogus number of reserved sectors
[  966.282614] FAT-fs (loop5): Can't find a valid FAT filesystem
01:00:19 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8906, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

[  966.321041] loop5: detected capacity change from 0 to 4
[  966.332746] FAT-fs (loop5): bogus number of reserved sectors
[  966.334075] FAT-fs (loop5): Can't find a valid FAT filesystem
01:00:19 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x501142, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000800)=0x40000)
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x9a, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
pwrite64(r1, &(0x7f0000000000)='\x00', 0x1, 0x0)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat(r2, &(0x7f0000000840)='./file1/file0\x00', 0x0, 0x110)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
fallocate(r3, 0x60, 0x2, 0x5fd)
syz_mount_image$nfs(&(0x7f0000000140), &(0x7f0000000180)='./file1\x00', 0x37, 0x8, &(0x7f00000006c0)=[{&(0x7f00000001c0)="35252cbe064f63ae9118bda097b6a696fba8ed037da578dae147fc0d94196270e5e08a28f35db54e871baa274443031a3fcde431825a7bffd5721ebd0a477114c9e36d030dcb329e808ffd127ab75d3563b43f7def7b3dac446d46d981b056746fe6c2e30645358bab69a1e0baae4d54bab70fd8e847357013233c8f6fb3585381b19ac9c65d7db67e55d71e232f1fc57aad6228c5c98ff57d10b62672cdbf26e1d69932e1a4e8487b8ea2d76a11c0a513e40793b358aca7cc74317f444f3a6af238f515401e2724d107101ef9a4b13584d0d1fafeb6d6d5b01b84cb39e46638f4f8c18bee8f00242abb44e50f2eded6eab437ae1d726828", 0xf8}, {&(0x7f00000002c0)="80a844e1dcdfafde1c589ee63d0762fccfa32554ab5278f4ea2802944ef8e81dba04292732bcca8043d67f5528622360441ff7bb118e01f4077bcfc1e8c898ececad0a7829d35a0c266a75e084ff8f006fd1889e9e7ff7fdd001e74e5eaa4e55007dad53fa0c1a37e08a782c132f97fab65939d3466fe776211a03bf525957002c28fee81bf980f7f9ce657895e5f7fe15e17c3c526524090d589bef84fd8feac20523963f9767dd", 0xa8, 0x8}, {&(0x7f0000000380)="c6e3fd86229b988c776cf232045edaec0c201d67beee4b56727753fa8c17ff49b66acbe0d96539f8f577543545639e731b24d3ee7a2caaac36d6a10b3caa0095c6db16fc648d2e2fe4749e39c5d30250132548511b466ff54ee6567fc786f3f54af5a11c2a6d632c57f8d74349a66799f85c738a747f951f0cb4eaa803b116cafb5331013f308cbdd83fc35c626c53eb1b311949", 0x94, 0x3000000000000000}, {&(0x7f0000000440)="7c37089590d512b3b7cfb098ee669e32ff31a8873694fd47a4eee2a58ee9be88e51450e551a86bb1d09f84f519288785c12d9108df97e462c6a32535fd3dc42b04965d713ff90c306b757480cd6ced2282dc570bc7f94e804a1e97c2899c56ae6a3b5bc54e7644a085bad514225bb43f58d1090835cac06a28e0cd1823d69313bf0d2741c6d82c40a6", 0x89, 0x9591}, {&(0x7f0000000500)="381b66a99fc2b6ae74cd2b536992bd3896d2361740f539a2b3e65832ae77c0bca8b1af2f46321777600241102fe4c2f626094fe5ce9f1b9c1b5b88ff0cd62d603c2d96326a8c8b512900e862424b19ce7c2d458573356cf5bccf6f743d967c03ef4bf28d2dbf8ce103fb0842719a31c106e551f7355ca29bdb3b5529ddafdf893ed5b6ef9267adccf18c4ddc3a622d772b5be9a89a1ce2cdce917e0c", 0x9c, 0xe1}, {&(0x7f00000005c0)="9b20c7cb997dafe8e48dd627d753f6f0c7982cb0cdfeadf39d83491e4a723603c5829bea424d712211ddc7dd4f97edff411b68c471eab458b9915b43fcc93eaca0f1b69e9b87c76fefcbc0616f9d07d90f57ef332795e66c160d5469c5c1483a272d7a95eb12266ff4c96e7eb4", 0x6d, 0x8}, {&(0x7f0000000640)="0fbdaf51f87d", 0x6, 0x836c}, {&(0x7f0000000680)="bd79e5423da4ba2fd44bc7d3aa836993079feb1bf1e3138ec8", 0x19, 0x49a1}], 0x4800, &(0x7f0000000780)=ANY=[@ANYBLOB="28257b2a2e2c646f6e745f686173682c6d61736b3d4d41595f415050454e442c6673757569643d38306236373862352d036438322d626138342d66646230ff00353937373965642c00"])

[  966.425576] loop7: detected capacity change from 0 to 4097
[  968.101098] Bluetooth: hci0: command 0x080f tx timeout
[  970.149007] Bluetooth: hci0: command 0x080f tx timeout
[  972.348821] Bluetooth: hci0: command 0x080f tx timeout
01:00:34 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

01:00:34 executing program 6:
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

01:00:34 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x0, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:00:34 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8907, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:00:34 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xa00, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:00:34 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x541b, &(0x7f0000000000))

01:00:34 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000280)='./file1\x00', 0x1, 0x1, &(0x7f00000003c0)=[{&(0x7f00000002c0)="6b1d34ccc195518d7db7712d95a270de30f7bf729d140b7a98f59e587bc7f7b396f472c7012da160fd736e44b00023dad10e0f04ada35a7aee4dc702f9b8fd054f78f38d2fde4c99dd491c5d89b4d7cba4b947b34704c2f383795157b63d8c243f891590d6c46ed13b2ddc7d913a69b6a63e5b12d4e74a4158a23a31886c06016169222f125f3a2245435cc1996c1aec42a702e06057bfb84f037ba75e12134dd5cef2899520916d631f529d656b77e2e566e8bd7d14483e757f050db9746f4d840fd21d993f98341128cf9cef555c906b165725581249fd1b75dadb28f5b7ab7a", 0xe1, 0x10001}], 0x200010, &(0x7f0000000400)={[{@nonumtail}, {@shortname_win95}, {@utf8no}], [{@context={'context', 0x3d, 'root'}}, {@seclabel}, {@appraise}, {@audit}, {@smackfsfloor={'smackfsfloor', 0x3d, ',{,'}}, {@subj_role}, {@appraise}, {@euid_eq={'euid', 0x3d, 0xffffffffffffffff}}]})
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x3, &(0x7f00000005c0)=[{&(0x7f0000001400)="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", 0x1000, 0x8}, {&(0x7f00000004c0)="9b2386fc98b6ff5f4ec20d0368b34a79dcf02e8031e40b486f5ace2b803dd8d2dc14cd5b58b8fb55191679cf686fc9b1962e993169b5d2dd72f3d7e63a4972fca2a118ebe5e3bea076e9b4ff0e957646f0107a9c37a195a9230cf7defb844d4b4957a4233eec3da71a68fb795f3487aceadcf0b384e7e27a5785d802f9fb7bc646699f5d5017b59140465ccf0a7a1932ef82c26873", 0x95, 0x1}, {&(0x7f0000000640)="425bed9edc2c4c5838d871d44258d55cf0318efed02ec0df256ea9452839c5fb28758cc07df1c82bea03bc1a181254902c03", 0x32, 0x4}], 0x208082, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r1, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
syz_io_uring_submit(0x0, 0x0, &(0x7f00000001c0)=@IORING_OP_OPENAT2={0x1c, 0x2, 0x0, r1, &(0x7f0000000140)={0x422081}, &(0x7f0000000180)='./file1\x00', 0x18, 0x0, 0x31713}, 0xfffffffd)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

01:00:34 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[  982.285225] loop5: detected capacity change from 0 to 5
[  982.296701] loop7: detected capacity change from 0 to 256
[  982.299470] SELinux: security_context_str_to_sid (root) failed with errno=-22
[  982.316821] loop7: detected capacity change from 0 to 8
[  982.320388] FAT-fs (loop5): bogus number of reserved sectors
[  982.321761] FAT-fs (loop5): Can't find a valid FAT filesystem
[  982.322160] cgroup: fork rejected by pids controller in /syz1
01:00:35 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8912, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

[  982.370048] loop5: detected capacity change from 0 to 5
01:00:35 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(0xffffffffffffffff)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[  982.401183] FAT-fs (loop5): bogus number of reserved sectors
[  982.401211] FAT-fs (loop5): Can't find a valid FAT filesystem
[  982.472453] cgroup: fork rejected by pids controller in /syz0
01:00:35 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8940, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:00:35 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xb00, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:00:35 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

01:00:35 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x5421, &(0x7f0000000000))

01:00:35 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000140)='./file1\x00', 0x8002, 0x24)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000140), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
r2 = socket$inet6(0xa, 0x80809, 0xb0e)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r0, 0xc0189373, &(0x7f0000000180)={{0x1, 0x1, 0x18, r2, {0xffffff37}}, './file1\x00'})
pwrite64(r1, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

[  982.563059] loop5: detected capacity change from 0 to 5
[  982.585079] FAT-fs (loop5): bogus number of reserved sectors
[  982.585981] FAT-fs (loop5): Can't find a valid FAT filesystem
[  982.598208] loop7: detected capacity change from 0 to 4097
[  982.611593] loop5: detected capacity change from 0 to 5
[  982.622728] FAT-fs (loop5): bogus number of reserved sectors
[  982.623669] FAT-fs (loop5): Can't find a valid FAT filesystem
01:00:35 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x0, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:00:35 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x5450, &(0x7f0000000000))

[  984.292970] Bluetooth: hci0: command 0x080f tx timeout
[  986.340946] Bluetooth: hci0: command 0x080f tx timeout
[  988.389935] Bluetooth: hci0: command 0x080f tx timeout
[  990.437122] Bluetooth: hci0: command 0x080f tx timeout
[  992.484966] Bluetooth: hci0: command 0x080f tx timeout
01:00:49 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(0xffffffffffffffff)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:00:49 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8941, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:00:49 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xc05, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:00:49 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, 0x0, 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

01:00:49 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r1, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000007c0)={{{@in6=@loopback, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in6=@mcast2}, 0x0, @in=@remote}}, &(0x7f00000008c0)=0xe8)
syz_mount_image$nfs(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x7, 0x8, &(0x7f0000000700)=[{&(0x7f0000000240)="9b80697cb1772ec94ccafb98bcbdd69c6211390227dff361fe0a2454267130396cfc05017af6d72e71e1423fc91dd1bdab486bad5eb08f1c62a6201a1ad71166e5ba34e9205fa5c5bd14aca24ef9dd8f2b0371ba10bff6e688f6c6f64a197a5bb9dfacfb25bf749b2ed8cc4197c5be46a9b78ddadd56bcc495354d90d6e2d2590f9ba6d5e7e7241a2c0294333ce386a157", 0x91, 0xffff}, {&(0x7f0000000300)="239288df38e597ebc330304bd0c96fbfe065e8ed037a12c1a7bccb7c60b281cc22ef458badaabf1b08550ca9a2da74cf04c906c61a9926844ecd079092a43a5e9bd4650e2bc0cb3fc9047d17d893aaf923d8d3a0c3ec9a1ae1dca36b35c9516c842d454e34abaa690e2ae430d174943966c32fefc3835cf640288a2fff3ddf0abb2e60836eae89df25a091a2ebf312c01f67b4010ef7280d5e5eee9d3ac5d6796dd7d1e124c408d257c546fab3f70fee3e69430e981133db919b9ed17a668082ebeecc942133813463d2e92ef35edc09cc2e180d7e4aff2d9809002cadbdddcf8664a7f046a36a48f32a7d188d2689c741eab7ed6c713891", 0xf8, 0xef}, {&(0x7f0000000400)="88715e4f49b3e1b24f5a20af745a277b9e8e71c1170d768f110827c05157793287f059d1f9953d52d142ca702377335f821c90ca4801565107bf14e7f9cc8c98525fbec83049746563b431e4f6ff0c8d19e7a79ce3884076f216784b7139b8d7c4d43035f4806ee02b9341217af50860793c9fb0d0691814daa56181eba9c1ec4c0d42632875b66787", 0x89, 0x80000000}, {&(0x7f00000004c0)="9a8952e86376ce06569179b4d320ea0d", 0x10, 0x100000001}, {&(0x7f0000000500)="b3b93ee89f14b01820dc071a1409fef76694b3e331f8da18a034929d584212cc9ac731", 0x23, 0x7}, {&(0x7f0000000540)="45ba378bb2dc90f168015df2a04846ea46042f13ffd85a1f9e1f0e508279adf2ecd5f651db0c34efcca9e25cc1c853512c6c7a4b9c02b4c3c63620d7814fee7a4c249bc20f5107376b211ec5b708cd7bf7b972b5d07cc2ef2a23bbca4caea07bb122182f28fe8f0659c5c33665eeead9e4a82c39efe32f14fc61bfd435e5601f9c8cd0be", 0x84, 0x381}, {&(0x7f0000000600)="8d33cf4c70a63de641bb301a1ebfb2d7ab47b5272baba7f3f3a34717f8a605e9", 0x20}, {&(0x7f0000000640)="473bf6baad8bf31227dc89adc3836f17aa71dfdf5f6d92443c5b5592b168f4e6dee93c72d7acf38ad0d478c279153b4e09ec0425c216e463e5c4cb461544f839cf6cfbce1aa660e89d9bfd2ad2c5e272120a79d1ecab7b2c1951b9646b5bc82d9dcfa3b2876812f4ae3f6ff8a5621eb13a9d30980bf7df32a63db6c4449b3d4c8f0443de", 0x84, 0x8}], 0x1208004, &(0x7f0000000900)={[{'/dev/vcsa\x00'}, {'\x00'}, {'!'}, {'\xba'}, {'nfs\x00'}, {'/dev/vcsa\x00'}, {}, {'*'}], [{@mask={'mask', 0x3d, 'MAY_APPEND'}}, {@dont_measure}, {@uid_eq={'uid', 0x3d, r2}}]})
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x400074a1, 0x0, 0x0, 0x0, 0x0, r1}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

01:00:49 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x0, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:00:49 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

01:00:49 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x5451, &(0x7f0000000000))

[  996.865173] loop7: detected capacity change from 0 to 4097
[  996.878556] loop3: detected capacity change from 0 to 4097
[  996.888697] loop5: detected capacity change from 0 to 6
[  996.894795] FAT-fs (loop5): bogus number of reserved sectors
[  996.895439] FAT-fs (loop5): Can't find a valid FAT filesystem
[  996.912683] loop5: detected capacity change from 0 to 6
[  996.926519] FAT-fs (loop5): bogus number of reserved sectors
[  996.927341] FAT-fs (loop5): Can't find a valid FAT filesystem
01:00:49 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x5452, &(0x7f0000000000))

01:00:49 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, 0x0, 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

01:00:49 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(0xffffffffffffffff)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:00:49 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xd00, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:00:49 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x894c, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:00:49 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x5460, &(0x7f0000000000))

[  997.082278] loop3: detected capacity change from 0 to 4097
[  997.119274] loop5: detected capacity change from 0 to 6
[  997.131953] FAT-fs (loop5): bogus number of reserved sectors
[  997.133292] FAT-fs (loop5): Can't find a valid FAT filesystem
01:00:49 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r1 = syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x4, 0x0, &(0x7f0000000b80), 0x21414d0, &(0x7f0000000180)=ANY=[])
syz_mount_image$ext4(&(0x7f0000001a40)='ext4\x00', &(0x7f0000001a80)='./file1\x00', 0x7, 0x7, &(0x7f0000002ec0)=[{&(0x7f0000001ac0)="179096805a99eef9d52824ee050a618911da24742dfca7a6e7ce686a71b5aa21f5d4b330e6fd0d3fa90f3716517ddea1916ff4", 0x33, 0x3}, {&(0x7f0000001b00)="5566f9259d245c75f1dec4d8587ab40d055d031cdb5718c559df592ea0224508987164f431b08320af4e11b28a70faa37231d50382678725c541ea4e679375dcff8af83b007161ee9209ef65d8d5d2317cf566082b685e36537f8d919f878746ecba736881832d29ce03942abe158bc3570f32f49c933349c34dc4fbc88e742b4f9458d05154cd202e59", 0x8a, 0x1}, {&(0x7f0000001bc0)="c448aa890f636ea914bf69c36306f161aca3aa981771c1e739797b0d954cdacc3634003c06befa6328c703803992a4219bc4a6e944594fd779a066758e2a4e2774e1350a73b768e421bc857af07c1357c3586e3b6c2d6f40346e717c58997ab10797f87a7aac0f0b105d81d387641d5eb670a2a3ad59fcc1", 0x78, 0x9}, {&(0x7f0000001c40)="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", 0x1000, 0x81}, {&(0x7f0000002c40)="c06f27a7e05baa02e260047253494350fc8842cee05e622c64b24a75712a9381001632dab553b5ba236ff7cc7153aa9f7ae77aa2f092b88de06158dda30e54e001f6ea2a24e30103f03c3aa0f7f9101dff5e06ec6692aa008b8b2ae5129b08d9864e9dd18a085cbee0672f4ca4790796ab8db6a8bc7b3f9d09e5d12233422daf7f7b90", 0x83, 0x3}, {&(0x7f0000002d00)="589f7f3b9fa79e6400f68ef99af8b99af6a1c32342ee0b5a790247a24910e3cb13e347b0842dfd065bc5044a57e2bea220caeb4e6fe473c73224b86b15f362c7dba79c46efb1904fba2fb26e50717ab530db31a58a0bd43ac0fa022f107bd2e9247988452e191ddf2b5cc547e11d1b294bb19fdc7acae27ef4b26da5c3d529536d204af53a74ea41001c0bb7ebe38d3250b7eaf60ee01f182c923a98732647b9798d3d499ed41b12649c6ec70f07e161726023fc26d28130237210ef3e18163c16aeedc8b6cb779eb3290df8b057d18e", 0xd0, 0xfa0d}, {&(0x7f0000002e00)="80b694afc797e2f43d0f20b17d4efa4a88b0630c7cfc406203d2390ebf4ea1f5525acd6bd14b1a37c1d4b2bd826ed78567b8dbcebe465b36a8e740a1db618a1d25ecc9a4abfb9e5b43ee1cdacf20d51b8de34fa95d69c8fba1b4398f8998957fa7344638bda92d39ab457d714799ec5d01c2b7c861d2fa213d49de67bd7601bbbbd9b747b90a69e4c4c71cd395a4e33a5e328ba68e61fb14b1cd55f14d", 0x9d, 0x96}], 0x1, &(0x7f0000002f80)=ANY=[@ANYBLOB='block_validity,nombcache,journal_async_commit,bsdgroups,hash,obj_user=@./,dont_hash,rootcontext=sysadm_u,obj_type=audit,fsmagic=0x0000000000000002,euid<', @ANYRESDEC=0xee01, @ANYBLOB=',has`,@'])
r2 = dup3(r0, r1, 0x0)
openat(r2, &(0x7f0000003040)='./file1\x00', 0x220000, 0x190)
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x1000}], 0x0, 0x0)
r3 = syz_mount_image$nfs(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x7, 0xa, &(0x7f0000001880)=[{&(0x7f0000000200)="9508a47e6d324f22f5499c8024bfc454e7a2a4a87d6f84e10d863c528314b52de35af0ea5ababa15bcbb67b4a24bc610b49159deaf1794ce13fe22bb15b56c3a1ddb3a611fbf178476d27175fad256d7a89088374164f3db193720a8f7528345d1d84d9934b223b7270f03ee3d0c8e6d2485001ae5b7de9ab1615ad0909c27c92ae63caa6081f318e59e2af07e19209ad1d9a3c24b3c9dd8bfcd010adc68853ee0bbf628a27ba5f1c2aff7714378238c90e65b818bdcb95befb25d6a8121ff7b399c11eb7ce6e0464ce230793555362f541d132ef591ed62bcef2dedbcb9ff82629d3721", 0xe4}, {&(0x7f0000000300)="000321a916f4f377671063803e6a422835d013faf4b2ced1209e719991948b837275c714ef3005afe265aeed803d13094f58cf077a7c124e4c9c7013cbf9052c413ccd85a19e507b743196b175c247af79db7fd473d43700718820f7742e819067f7710afeeb85cf203f08fc895b22c6fc46ce4b1951bdccd6402e69199e301c848dbb1dc95a15d18668a0adf2d2cd6feb8bd809b83fea67722def31af875cdd86eae2558b3486af69473024a5a04db11e9fbe89193f34f754fde96d35e3b7ad33b11a1e49827bf842b7a6bf83fcd5d462cc1eff4f4a98ff7998f411ff", 0xdd, 0x1}, {&(0x7f0000000400)="ae2c312102ed2dca227e9d1803af8921dfbf1791f5ac2e31ac134452e8800fc4c427af337ed7911dec0be01501d163451427d97c9f5da51d12c453735bbaff27fa438efab0c9799d5dfc56b80c2dad62be4e8e7e7de09d4721e3de2122d32a0f8d827580c465b3dbea72941a63116e194ddf177dafe0739f33c8c232615433a5d286fc6ea06d2a91e3e1a7d6cb481755a0", 0x91, 0x8}, {&(0x7f00000004c0)="f1d3f8a2eabc0b2332bcf5664946c410769fdb829f9843e901234a002c4122b66aae3982123752e9bd4a99", 0x2b, 0xfab}, {&(0x7f0000000500)="3b561c73666ee7ce295eb49a7812c3acf1f69631aac76b39b8f1c4866d045fa486345fef22d0152df5db5ee692ffc4126e5a8b24d54bb2e430768fc36167e4306534cebb9568db8283e145afc0a98d971dd023f3b863dadc314907f07a154f2e51064ea57f1dd8d6fa7d83e09c0251597af4f0d5fa825a087b16010cc522bdf57dba7b6097557a7796aac0ea402ccfee6163dcb6db61bd730ece00041111ccdedbd3ac722ab997edc984240b844f941e85bb850d41567e8e1360b10976f0f702744e2858a1581c0d1206bb266f651a4b935c0685a5b6726aeb3f0f6804dc48fbbac385a0450a4202b9598f0a7ccc1cbf6d1ee5", 0xf3, 0x2}, {&(0x7f0000000600)="9879b25db35d910cc6bef54b0a52378236ecc53e100f64465508f8368e27d625e810bc3e0f097b3c10e7ef769eab68210a63b78988ed60a4feb905f3567dcea3cd31b401eb4feb7813cb0f3cbddfd46126161f3eedce12bbc0024144d222b2a887e6fd72c82d55a7e96227b0b8d8c69f7feba8274900496f4fd12177608f7dba007fb671641e7879443b6df9fcf3fc8d160f2065ebcbfa0e68a891b95867a460cc3f8759307e7783429cce6c5769a23f7b144964fa4ded9f98d4225e386f7fe77130ec9a516682cad0ace6bdf5dc343073755dea4cb1029c496ce79b08e687af64b77c287247f8f51b5414233353073361f3", 0xf2, 0x2}, {&(0x7f0000000700)="0816c6cea7b69543019f962f2e2e866bc49fcf4ea0a56226603be4be089137de4cba64eb787cc96618939c095826b9e65c98fd73e0b70116bc095f29cb159f6fccdc55c0e5707998aa3e3928213049a5", 0x50, 0xffffffffffffffff}, {&(0x7f0000000780)="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", 0x1000, 0x8}, {&(0x7f0000001780)="81d29f1afab28776caec1aa0c84d47e180ac5b5a551f231cfea6f39d", 0x1c, 0x6000000}, {&(0x7f00000017c0)="d97a41fe914970f487dc96308c9bca5500be13fa140f85f9e4ea49c3a0ed08b7266b868a2ff15c5a4bbf7834c35d4eba4b5a4a8c05371007cafc9ad2917f65f0d087591eb4b3f34e2b1cc3bff601db41c0d6b5b3a053610e27d1778e26b4c5e1ae84cdab28b2a706b79281b88a36897a136ea013b68beab3cea2c4a0fb09c5475411665ff0d0806e", 0x88, 0x1}], 0x884, &(0x7f0000001980)={[{'nfs\x00'}, {}, {'\x00'}, {'nfs\x00'}, {'nfs\x00'}, {}, {'@./'}], [{@audit}, {@fsuuid={'fsuuid', 0x3d, {[0x38, 0x61, 0x34, 0x37, 0x61, 0x35, 0x39, 0x35], 0x2d, [0x32, 0x61, 0x37, 0x65], 0x2d, [0x38, 0x37, 0x33, 0x32], 0x2d, [0x64, 0x38, 0x61, 0x35], 0x2d, [0x62, 0x33, 0x30, 0x30, 0x36, 0xe, 0x62, 0xf6]}}}, {@fsname={'fsname', 0x3d, '\x00'}}, {@dont_appraise}]})
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000003080)='./file1\x00', 0x20a000, 0x100)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r0, 0xc018937e, &(0x7f0000001a00)={{0x1, 0x1, 0x18, r3, @out_args}, './file1\x00'})
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0xb915, 0x8, 0x0, 0x0, 0x0, r0}, &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000140)='./file1\x00', 0x8000, 0x200)
pwrite64(r4, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

01:00:49 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8901, &(0x7f0000000000))

[  997.175745] loop5: detected capacity change from 0 to 6
[  997.180410] loop7: detected capacity change from 0 to 250
[  997.182921] SELinux: security_context_str_to_sid (sysadm_u) failed with errno=-22
[  997.190072] loop7: detected capacity change from 0 to 16
[  997.196315] FAT-fs (loop5): bogus number of reserved sectors
[  997.197698] FAT-fs (loop5): Can't find a valid FAT filesystem
[  998.884928] Bluetooth: hci0: command 0x080f tx timeout
[ 1000.932933] Bluetooth: hci0: command 0x080f tx timeout
[ 1002.980915] Bluetooth: hci0: command 0x080f tx timeout
[ 1005.028940] Bluetooth: hci0: command 0x080f tx timeout
01:01:05 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

01:01:05 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, 0x0, 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

01:01:05 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r1=>0xffffffffffffffff}, 0x4400)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:01:05 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xe00, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:01:05 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8902, &(0x7f0000000000))

01:01:05 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x81, 0x0, &(0x7f00000000c0), 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r1, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
dup3(r0, r2, 0x0)

01:01:05 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8982, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:01:05 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x0, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

[ 1012.517416] loop5: detected capacity change from 0 to 7
[ 1012.532953] FAT-fs (loop5): bogus number of reserved sectors
[ 1012.534362] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1012.561049] loop5: detected capacity change from 0 to 7
[ 1012.567065] loop3: detected capacity change from 0 to 4097
[ 1012.567994] FAT-fs (loop5): bogus number of reserved sectors
[ 1012.570319] FAT-fs (loop5): Can't find a valid FAT filesystem
01:01:05 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8903, &(0x7f0000000000))

01:01:05 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

01:01:05 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8983, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

[ 1012.800663] loop3: detected capacity change from 0 to 4097
01:01:05 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8904, &(0x7f0000000000))

01:01:05 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xe05, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:01:05 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
setxattr$security_capability(&(0x7f0000000140)='./file1\x00', &(0x7f0000000180), &(0x7f00000001c0)=@v3={0x3000000, [{0x101, 0x9}, {0x40, 0x10000}], 0xee00}, 0x18, 0x1)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

01:01:05 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r1=>0xffffffffffffffff}, 0x4400)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[ 1012.854761] loop7: detected capacity change from 0 to 4097
[ 1012.890088] loop5: detected capacity change from 0 to 7
[ 1012.923309] FAT-fs (loop5): bogus number of reserved sectors
[ 1012.924541] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1012.963823] loop5: detected capacity change from 0 to 7
[ 1012.997663] FAT-fs (loop5): bogus number of reserved sectors
[ 1012.999015] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1014.564900] Bluetooth: hci0: command 0x080f tx timeout
[ 1016.612961] Bluetooth: hci0: command 0x080f tx timeout
01:01:19 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x0, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:01:19 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

01:01:19 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r1=>0xffffffffffffffff}, 0x4400)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r1, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:01:19 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8906, &(0x7f0000000000))

01:01:19 executing program 7:
r0 = socket(0x18, 0xa, 0xfff)
setsockopt$bt_BT_CHANNEL_POLICY(r0, 0x112, 0xa, &(0x7f0000000140)=0x5, 0x4)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r1, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

01:01:19 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xf00, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:01:19 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x89a0, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:01:19 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

01:01:19 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8907, &(0x7f0000000000))

[ 1027.040994] loop5: detected capacity change from 0 to 7
[ 1027.045363] loop3: detected capacity change from 0 to 4097
[ 1027.057482] FAT-fs (loop5): bogus number of reserved sectors
[ 1027.058821] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1027.059172] cgroup: fork rejected by pids controller in /syz2
[ 1027.111224] loop5: detected capacity change from 0 to 7
[ 1027.115945] FAT-fs (loop5): bogus number of reserved sectors
[ 1027.116567] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1027.126396] loop7: detected capacity change from 0 to 4097
01:01:19 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

01:01:19 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8912, &(0x7f0000000000))

01:01:19 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x0, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:01:19 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x89a1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:01:19 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xf05, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

[ 1027.303445] loop5: detected capacity change from 0 to 7
[ 1027.329108] FAT-fs (loop5): bogus number of reserved sectors
[ 1027.329741] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1027.342676] loop5: detected capacity change from 0 to 7
[ 1027.345521] FAT-fs (loop5): bogus number of reserved sectors
[ 1027.346168] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1029.028916] Bluetooth: hci0: command 0x080f tx timeout
[ 1031.077010] Bluetooth: hci0: command 0x080f tx timeout
01:01:35 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8940, &(0x7f0000000000))

01:01:35 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

01:01:35 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x0, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

[ 1042.719146] loop5: detected capacity change from 0 to 8
01:01:35 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x0, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397f2b1bb3b5af60a2cfa1d88f4635990e7ea4590cd1c26ffcfeb5981e2f5f1558f4e45e978698f08952a3e594ee6c1a86605588755fc4527afc1793b6c63638d0208e496694f79f37830bc408e96605f2e568c54d9f1e30f6374f3488d9f0f9b0070f66111ba2d4206ae6269480d3e69960603062d921a91ac0e515e74868f3db09350af5e10d56aebcb7c83910db96583300feb7d08f7e892d3ac8560fc8a0e56cc4abce95c9e64d52845e07957ed95f516f04350"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:01:35 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

01:01:35 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r0 = syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r1, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)
r2 = openat$random(0xffffffffffffff9c, &(0x7f0000000140), 0x101000, 0x0)
ioctl$FIDEDUPERANGE(r2, 0xc0189436, &(0x7f0000000180)={0x4, 0x4, 0x1, 0x0, 0x0, [{{r0}, 0xffff}]})

01:01:35 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448c9, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:01:35 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x1005, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

[ 1042.731236] FAT-fs (loop5): bogus number of reserved sectors
[ 1042.732224] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1042.738586] loop3: detected capacity change from 0 to 4097
[ 1042.760128] loop5: detected capacity change from 0 to 8
[ 1042.765963] FAT-fs (loop5): bogus number of reserved sectors
[ 1042.766836] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1042.780758] loop7: detected capacity change from 0 to 4097
01:01:35 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x1020, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:01:35 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

01:01:35 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

[ 1042.919500] loop5: detected capacity change from 0 to 8
[ 1042.932275] loop3: detected capacity change from 0 to 4097
[ 1042.933261] FAT-fs (loop5): bogus number of reserved sectors
[ 1042.934105] FAT-fs (loop5): Can't find a valid FAT filesystem
01:01:35 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r0 = syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
r2 = fcntl$getown(r0, 0x9)
syz_open_procfs(r2, &(0x7f0000000140)='mountstats\x00')
pwrite64(r1, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

01:01:35 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0x0, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:01:35 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x104b, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:01:35 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

[ 1043.028823] loop7: detected capacity change from 0 to 4097
[ 1043.057183] loop5: detected capacity change from 0 to 8
[ 1043.070132] loop3: detected capacity change from 0 to 4097
[ 1043.075746] FAT-fs (loop5): bogus number of reserved sectors
[ 1043.077066] FAT-fs (loop5): Can't find a valid FAT filesystem
01:01:35 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x0, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[ 1043.103070] loop5: detected capacity change from 0 to 8
01:01:35 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8941, &(0x7f0000000000))

01:01:35 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448ca, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:01:35 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

[ 1043.119827] FAT-fs (loop5): bogus number of reserved sectors
[ 1043.121192] FAT-fs (loop5): Can't find a valid FAT filesystem
01:01:35 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x1, 0x0, &(0x7f0000000b80), 0x15cc0, &(0x7f0000000140)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x8010001, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

01:01:35 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, 0x0, 0x0, 0x4)

[ 1043.189776] loop7: detected capacity change from 0 to 262272
[ 1043.202354] loop3: detected capacity change from 0 to 4097
01:01:49 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448cb, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:01:49 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0x0, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:01:49 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:01:49 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x104c, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:01:49 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, 0x0, 0x0, 0x4)

01:01:49 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r0 = syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r1, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)
openat(r1, &(0x7f0000000180)='./file1\x00', 0x323000, 0x84)
sendfile(0xffffffffffffffff, r0, &(0x7f0000000140)=0xfffffffffffffffb, 0x7ff)

01:01:49 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x894c, &(0x7f0000000000))

01:01:49 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x0, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

[ 1057.156811] loop5: detected capacity change from 0 to 8
[ 1057.165437] FAT-fs (loop5): bogus number of reserved sectors
[ 1057.166128] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1057.180134] loop5: detected capacity change from 0 to 8
[ 1057.183323] loop7: detected capacity change from 0 to 4097
[ 1057.187155] loop3: detected capacity change from 0 to 4097
[ 1057.198216] FAT-fs (loop5): bogus number of reserved sectors
[ 1057.198921] FAT-fs (loop5): Can't find a valid FAT filesystem
01:01:49 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0x0, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:02:06 executing program 4:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:02:06 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x0, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

01:02:06 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0}, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

01:02:06 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397f2b1bb3b5af60a2cfa1d88f4635990e7ea4590cd1c26ffcfeb5981e2f5f1558f4e45e978698f08952a3e594ee6c1a86605588755fc4527afc1793b6c63638d0208e496694f79f37830bc408e96605f2e568c54d9f1e30f6374f3488d9f0f9b0070f66111ba2d4206ae6269480d3e69960603062d921a91ac0e515e74868f3db09350af5e10d56aebcb7c83910db96583300feb7d08f7e892d3ac8560fc8a0e56cc4abce95c9e64d52845e07957ed95f516f04350"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:02:06 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, 0x0, 0x0, 0x4)

01:02:06 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x1100, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:02:06 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8982, &(0x7f0000000000))

01:02:06 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448cc, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

[ 1073.616413] loop3: detected capacity change from 0 to 4097
[ 1073.620359] loop7: detected capacity change from 0 to 4097
[ 1073.630064] loop5: detected capacity change from 0 to 8
[ 1073.642327] FAT-fs (loop5): bogus number of reserved sectors
[ 1073.642989] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1073.658139] loop5: detected capacity change from 0 to 8
[ 1073.669300] FAT-fs (loop5): bogus number of reserved sectors
[ 1073.670660] FAT-fs (loop5): Can't find a valid FAT filesystem
01:02:06 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000), 0x0, 0x4)

01:02:06 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x0, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

01:02:06 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:02:06 executing program 4:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:02:06 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x1105, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:02:06 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
ioctl$FS_IOC_GETFSLABEL(r1, 0x81009431, &(0x7f0000000140))
syz_io_uring_setup(0x3, &(0x7f0000000080)={0x0, 0x400, 0x0, 0x2, 0x2000, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x1000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

01:02:06 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8983, &(0x7f0000000000))

01:02:06 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, 0x0)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:02:06 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000), 0x0, 0x4)

[ 1073.887891] loop7: detected capacity change from 0 to 4097
[ 1073.930797] loop5: detected capacity change from 0 to 8
01:02:06 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448de, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

[ 1073.956598] FAT-fs (loop5): bogus number of reserved sectors
[ 1073.957995] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1073.971605] loop5: detected capacity change from 0 to 8
[ 1073.984422] FAT-fs (loop5): bogus number of reserved sectors
[ 1073.985520] FAT-fs (loop5): Can't find a valid FAT filesystem
01:02:06 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

[ 1074.040027] loop3: detected capacity change from 0 to 4097
01:02:06 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r0 = syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r1 = signalfd(r0, &(0x7f0000000140)={[0x330]}, 0x8)
mkdirat(r1, &(0x7f0000000180)='./file1\x00', 0x100)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r2, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

01:02:06 executing program 4:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:02:06 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x1201, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:02:06 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000), 0x0, 0x4)

01:02:06 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

[ 1074.186590] loop7: detected capacity change from 0 to 4097
[ 1074.244809] loop5: detected capacity change from 0 to 9
[ 1074.270500] FAT-fs (loop5): bogus number of reserved sectors
[ 1074.271873] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1074.287671] loop5: detected capacity change from 0 to 9
[ 1074.292772] FAT-fs (loop5): bogus number of reserved sectors
[ 1074.294094] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1074.314617] loop3: detected capacity change from 0 to 4097
01:02:24 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

01:02:24 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x89a0, &(0x7f0000000000))

01:02:24 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
syz_mount_image$nfs(&(0x7f0000000140), &(0x7f0000000180)='./file1\x00', 0xfffffffffffffff9, 0xa, &(0x7f0000001740)=[{&(0x7f00000001c0)="cb266dbc0b2e27478258a80a1d91c375ff86769180e0b2b4b99edf583697867b7dd0337055ff658318e321bcaa9df9567222702777ddf564eecc2d9ad7aec57e57332649c014fbf9d23f06317e289093cd176a7537b75fde35b197b065781ae07ab3c534c264ea0e046c03825632dbad18d9759a0fbdd415145435b9ba8bcd2e8891b2fc01c67b0bf87edcf1601336bca85a27db845a70cee5fff08317af54c6869031b3f22b2e5d3b8ed3bb8e1ca3dada5d9e71c639f7ef70b5020d989998455e163cd5e8d11ff2", 0xc8, 0x200}, {&(0x7f00000002c0)="17a50d014f6a7cb9914a663f6794bf1898edbc060af382292baf6572959f18de062d43d8c2323ef79598eaa3d7a62064c670d3026b984e51a642c8dfd38c8112bb2ecbda232892a29e1e0a6cfd1d48fd9763da60f42c50761f2077c6d2a311f843f3eabfb749913f9cdf8ae95eef3c640d000beef265e6391fc75033041ba493207d7a4f9e", 0x85, 0x80000000}, {&(0x7f0000000380)="dd280c9017a5bf8745951654bdd11733d25f8e0868b290d653a25cfdf6fca10776f011b80b0792", 0x27, 0x2}, {&(0x7f00000003c0)="38604b2b8cca14dc2af2de7efed0000b24012b192bc5e5f74ad7a36fb56747457207d5328b9f5fc52582922a66d84d6105dbfc2751e68e298dfdfbad9c27ae4919e4a19795e16c92138109318d6542d1bf841bae8fba705787fbb054f3fdfeec9d5c6693cc2fe4d230e6bf15ccce7073580d9bb73c62e0", 0x77, 0xfffffffffffff816}, {&(0x7f0000000440)="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", 0x1000, 0x80000001}, {&(0x7f0000001440)="abf54e165bd38766b8f934dde552c22e3f035afc8c3c82ad7953d5e858bcf2560a2a8fc64270a38ee4afc531d9d702e70629828d", 0x34, 0x2}, {&(0x7f0000001480)="31c5d94b721f372a9e2a935b3d70bad9c8fa6488b7d0001bc400e370dae337bff8b430304f5fe105de995d27f3", 0x2d, 0x5}, {&(0x7f00000014c0)="20409e26c3e060ae9ecd349a67de049ee64d519628015d79ecfe62126bec8c72542f5547a82c1c077dabf5ede136246cc4dd4607d687c5d3cfa35fea7c390e32199bd4a22c6f61918b50e753946a9e0908191f813f42a39cc40ce298b9a3b0c049", 0x61, 0x7ff}, {&(0x7f0000001540)="047a855fa878e9080849a807c12061a7871a8a798563fd9c840e42643bdb1fc9c22c3482b60789125b01d47e8dc99836fe20d2d1942a1640d72ffc3e11319547c8b566012cf76966bb805e0064367705b7d14514132f8100508cd65c7c813d24ae65fe93408caafcbf94f1fd6bb9b83fb69c3cd85e07f4ed1172a700db3839558f104fdecc7ff177441366812a819bdf7ad278ba06d9102f39afe777ff9ca94dfe83e62e6bb2aa397141b7f9eb73d2eff8a2848b33e14f822810dece434c945229b69365b67d369b28077ac0ab7b3a0427913b7f", 0xd4, 0x4}, {&(0x7f0000001640)="56f4c6c3c7616e178a34501798d0ef7e9a4393113e6b1ec0954efd74b9933f9950670b46bb1a8e533a796714974a6fe72e23a48f2b4fbae73e6e2a886395a797d8d2e8071dddec0f583b5c3d1fe9d1a2db42c24aca70ed6b7b48f2f243a51523343dd855f7b68fb7ed529ff56100b73ad2da9e4621a014a0dd1589da67d475e43e52984e6fdf6cecb3843bc3db1e0e8e628f294fc77e28d67b35cdebad9988dd7619d2dcc90153ffee0f93b3e93b28ce7b8842f032896cf5a1a1fbbff5d141a0a204d8faefb5622a34ad5de33abffff2581b8e8158", 0xd5, 0x1}], 0x410, &(0x7f0000001840)={[{'/\xa5\xad'}, {'!+(7'}, {'('}, {'k'}], [{@fsmagic}, {@fowner_eq}]})
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
epoll_ctl$EPOLL_CTL_DEL(r0, 0x2, r0)
syz_io_uring_setup(0x20ed, &(0x7f0000000080)={0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

01:02:24 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448df, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:02:24 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, 0x0, 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:02:24 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(0xffffffffffffffff)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:02:24 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x2000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:02:24 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0x1, 0x0)

[ 1091.432477] loop5: detected capacity change from 0 to 16
[ 1091.449428] FAT-fs (loop5): bogus number of reserved sectors
[ 1091.449594] loop3: detected capacity change from 0 to 4097
[ 1091.450295] FAT-fs (loop5): Can't find a valid FAT filesystem
01:02:24 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x82100, 0x0)

[ 1091.470271] loop5: detected capacity change from 0 to 16
[ 1091.476016] loop7: detected capacity change from 0 to 4097
[ 1091.480583] FAT-fs (loop5): bogus number of reserved sectors
[ 1091.481321] FAT-fs (loop5): Can't find a valid FAT filesystem
01:02:38 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(0xffffffffffffffff)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:02:38 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000140)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000100}], 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x20b00, 0xe4)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r1, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
sendfile(r0, r1, &(0x7f0000000180)=0x6, 0x6)

01:02:38 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x2010, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:02:38 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0x1, 0x0)

01:02:38 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x82100, 0x0)

01:02:38 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x89a1, &(0x7f0000000000))

01:02:38 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e0, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:02:38 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, 0x0, 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[ 1106.175574] loop5: detected capacity change from 0 to 16
[ 1106.180865] FAT-fs (loop5): bogus number of reserved sectors
[ 1106.181784] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1106.205946] loop5: detected capacity change from 0 to 16
[ 1106.208130] loop3: detected capacity change from 0 to 4097
[ 1106.211385] FAT-fs (loop5): bogus number of reserved sectors
[ 1106.212035] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1106.241180] loop7: detected capacity change from 0 to 4097
01:02:38 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0x1, 0x0)

01:02:39 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x2fe9, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

[ 1106.288074] loop3: detected capacity change from 0 to 4097
01:02:39 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x82100, 0x0)

[ 1106.316691] loop5: detected capacity change from 0 to 23
01:02:39 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x2ff2, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

[ 1106.326145] FAT-fs (loop5): bogus number of reserved sectors
[ 1106.326159] FAT-fs (loop5): Can't find a valid FAT filesystem
01:02:39 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:02:39 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(0xffffffffffffffff)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:02:39 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(0xffffffffffffffff)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:02:39 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e2, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:02:39 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, 0x0, 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[ 1106.520544] loop5: detected capacity change from 0 to 23
[ 1106.531229] FAT-fs (loop5): bogus number of reserved sectors
[ 1106.531255] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1106.559700] loop5: detected capacity change from 0 to 23
[ 1106.563471] FAT-fs (loop5): bogus number of reserved sectors
[ 1106.563491] FAT-fs (loop5): Can't find a valid FAT filesystem
01:02:39 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:02:39 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448c9, &(0x7f0000000000))

01:02:39 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x3045, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:02:39 executing program 3:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x1201, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

[ 1106.757618] loop5: detected capacity change from 0 to 24
[ 1106.765801] loop3: detected capacity change from 0 to 9
[ 1106.775134] FAT-fs (loop5): bogus number of reserved sectors
[ 1106.776349] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1106.784976] FAT-fs (loop3): bogus number of reserved sectors
[ 1106.786305] FAT-fs (loop3): Can't find a valid FAT filesystem
01:02:39 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = syz_open_dev$vcsa(&(0x7f0000000600), 0x61d4, 0x0)
r2 = openat2$dir(0xffffffffffffff9c, &(0x7f00000008c0)='./file1\x00', &(0x7f0000000900)={0x4180, 0x8, 0x4}, 0x18)
openat(r2, &(0x7f0000000a00)='./file0\x00', 0x108100, 0x1b7)
syz_io_uring_setup(0x4236, &(0x7f0000000580)={0x0, 0x0, 0x8, 0x0, 0x0, 0x0, r1}, &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x2000)=nil, 0x0, 0x0)
r3 = geteuid()
syz_mount_image$nfs(&(0x7f0000000140), &(0x7f0000000180)='./file1\x00', 0x7, 0x4, &(0x7f0000000840)=[{&(0x7f00000001c0)="7f352ab5c3d2e23d350632d01497603f79a54144f5cdde31a98f030f8c2f8bcd714dbd8566b3ccbb53fdeb337d25ac6ccc4136bcdcf5c21b202a58b344d58e466ee7842e3ee89733cb8f160948d7f61d7855465e01f046c197211ad720f22c0f4cb4f12eba69640f1b644f191d45068b23ab87ba1a2753f919c465c0", 0x7c, 0x3}, {&(0x7f0000000240)="d7664ff03ad9a2bd0b59c061b440074867fd1cb0ad7ba5bbd3eda8ec6241d36ed2ceecf70db79bf9d474962ef3bfd108372af8d16b0a592de50ec7b17e0bba4c04e6e7bb2fae9caabf05e18b36e18c36214e55816ec06696971632b777de63a318fbd2ec5e59de1fdaf9885f159f2cbda7ce276974dd2e2ef0d82d2d0d103b0c46cb1f0cd9a41ecc556d857e8369c98104a705a5def2c299d4b04c417f34253479e0ade3dda5336a8c9925b0c27ad1ef946862c4dd8f725d5d01895b350a09ac1206bec7efae3b581e4cb3139b6de9a96fb68fe2a11b09c24dba", 0xda, 0x7fff}, {&(0x7f0000000340)="bd4d4b6d157fe9c03ec9fd79cb811333249a4d19cf79c7d496cd00e87f4ab735dd6ab5f337ed6cdb036b5607e9bd0ef1ef6c6c1af25ee0986c5308e6b9a8e5879d8016d8ea810355687a69db5c4585fb9ae40cb70d7aa530d55e8de61a9559fb66b3caf80b4cee5ad5c1a452a89137e82827e3b5d2ed6b9f3551bc957e07c76a931f", 0x82, 0x8}, {&(0x7f0000000400)="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", 0xfb, 0x8e4e}], 0x48000, &(0x7f0000000940)={[{}, {'^'}, {}, {'\x00'}, {'\x1c#'}, {'nfs\x00'}, {}, {'\x00'}, {'nfs\x00'}, {'nfs\x00'}], [{@fsname={'fsname', 0x3d, '\xa1\xb7\xb0\x99\xcb\xb1\xf9b.\xfa\xdc\x1cJ\xd2\x84X\xcf\x18\xd6\x99\xffUy\xbc\xe0\x8a_Wj\x99\x17\xa9s\xaf\x1d%[/\xb8j\x93\x83<9\x00\xd0\x94\x8f\x1c\xbb\xff\xa1\xc4\x1a \\]\x13\xad'}}, {@uid_lt={'uid<', r3}}, {@hash}, {@fowner_gt={'fowner>', r3}}, {@fsmagic={'fsmagic', 0x3d, 0xbd70}}]})
execveat(r0, &(0x7f0000000640)='./file1\x00', &(0x7f0000000700)=[&(0x7f0000000680)='smackfshat', &(0x7f00000006c0)='nfs\x00'], &(0x7f0000000800)=[&(0x7f0000000740)='!\x00', &(0x7f0000000780)='\x00', &(0x7f00000007c0)='\x1c#'], 0x1000)
r4 = syz_open_dev$mouse(&(0x7f0000000500), 0x7, 0x2a5240)
r5 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r6 = syz_mount_image$vfat(&(0x7f0000000a40), &(0x7f0000000a80)='./file0\x00', 0x1, 0x6, &(0x7f0000000f80)=[{&(0x7f0000000ac0)="14acbf82d233a1bb771e097bd9e95f793b952fe231e9ad3b5ad019493cfec28bb42758fd3c9ad08ffbfd0487a58b95b00f9a56f72378c271699c84acc9cf7e0877ec0817d3d8939cc40b0cf1b47ae764b380a0a6afdd8152eb863d6ff78d8e7f785e6a4258aec1e63eef4108a9aba74ae8c1bfff342772f4", 0x78, 0xed8a}, {&(0x7f0000000b40)="cd452222b23f338f04c47c559a77e43aaac389ced07c098c4549e88b8ea852727279d011e603ad42866e774aca025cb55313bee4c93b77a739a1b679e13ca3df475fe546162ea8351a6a09dd03643bd0b3400f10a9d4ec1f2f0d9233f5c715024d8b418c5a7a3af8a73012eda36b334d642bd7ef1700931e119af5eb74cab02fc78ecc10f92f64648d993101ab533cfb34feab8e3f4bdf69f0908da4a6aef9ed5695f86987c9090c86b22ff3e2df51c31de7b14e4801de3699a85a77d429940a6054a071da66bf520a5b2af55a82074e7aa531c4cf3a1bda16dd6d5cf1bef8c8dd65708b9ed0a995aeb0b7dfae7944edc643c8c48d15c71ac2226823", 0xfc, 0x6}, {&(0x7f0000000c40)="5f8c89769be5b2824585b64187bfa4f4f6e7f020493fbb529bb95f57fe7413d6845bc9fbd3aac95408b0f0e1d4014d2818ece3374434635bbf3859bbb51175c1c31ed4ef0787d7010df50f798864380598e6e99e99f712181b10a034994fec5ab12b0f0cbcdc9c8e33c4316c9b575fb76e9c63a382a1063b4fc5400569a19267f3d4f46f59d10e90222a587adca54033ea1d283620a0cff72b681cc1ccaa263df3ef0f9d7f61fa26004349c6d293ca4c7ef1133c734b31e9bad1acbc066e815f307e958992165da591d6cc72b093669994aa0783f4fd16f1a30a07418a20ad46ed3bed4496b400", 0xe7, 0x9}, {&(0x7f0000000d40)="c613ace66fe9f3d1ac734293d6d14229601457c08a194fbf4db81932e92f76d4b8d558c9290d2264b5318abc72bf595a983891bbf2fc12fdbaa2b64e3a00feae51942970e2066bcb3857d4810e5b242cb00e0e57db243feedf0aa5a8fa18bbe938e7b5e698ef9631c9400ed0d00c46cd875bb8d81978a35d7367b292f4dadf5cd8ba2a2d349c5106c4281ddc16a4df1527709d7149a62af11851055122f6597d5f77312f4c9ba8fb8788715ecd38c13c8a874a19c65d518aaaadfb90a3ec750db937e7c8db2fcd8cf32e1bc8594b135dd556a6f82b0ce4a35e1e8d2605f921314671773011b39b2d0b481a5c87fb393e607692c30e6c118e2e", 0xf9, 0x3}, {&(0x7f0000000e40)="cc3b86391a57342741a4e39491744470f2309a75ef7b70a600a05622e59aef29dbaf5c599fc0b3f719c48c43c7f48fcb752aafbf887c187e8faa8c0cc3c039fe8c5d07ccd6cd13ef6a1694754702dd631edd33f91a78b51c8217064dc6fc2168f4749c231ef6e66256025a7e28ab59ced098743f5c33d449b30ec6c51257ccebc27d42a8f863b85e", 0x88, 0x1}, {&(0x7f0000000f00)="f2335d16f32908461b5bcdd80ebdeaa52d3d405d80a98eda8d4cd8895e0dd708ce3e2395051f53237ffd957d81d7569cfa41236e33b85f5463a2c5bd9bc43c3c61676a62f6d4980c6a1b26f24d34", 0x4e, 0x1}], 0x1000001, &(0x7f0000001040)={[], [{@audit}, {@defcontext={'defcontext', 0x3d, 'sysadm_u'}}, {@audit}, {@subj_type={'subj_type', 0x3d, 'hash'}}]})
openat(r6, &(0x7f0000001080)='./file0\x00', 0x80000, 0x85)
writev(r5, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r4, 0xc018937b, &(0x7f0000000540)={{0x1, 0x1, 0x18, r5, {r3, 0xffffffffffffffff}}, './file1\x00'})
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

[ 1106.812181] loop5: detected capacity change from 0 to 24
[ 1106.823422] FAT-fs (loop5): bogus number of reserved sectors
[ 1106.824635] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1106.868044] loop7: detected capacity change from 0 to 4097
[ 1107.630500] Bluetooth: hci0: Opcode 0x c03 failed: -4
01:02:55 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:02:55 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:02:55 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448ca, &(0x7f0000000000))

01:02:55 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000140)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000100}], 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x20b00, 0xe4)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r1, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
sendfile(r0, r1, &(0x7f0000000180)=0x6, 0x6)

01:02:55 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e3, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:02:55 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:02:55 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x304a, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:02:55 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4802, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

[ 1122.427029] loop7: detected capacity change from 0 to 4097
[ 1122.456691] loop5: detected capacity change from 0 to 24
[ 1122.464471] FAT-fs (loop5): bogus number of reserved sectors
[ 1122.465185] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1122.499776] loop5: detected capacity change from 0 to 24
[ 1122.513051] FAT-fs (loop5): bogus number of reserved sectors
[ 1122.513321] loop3: detected capacity change from 0 to 4097
[ 1122.513686] FAT-fs (loop5): Can't find a valid FAT filesystem
01:03:09 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:03:09 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448cb, &(0x7f0000000000))

01:03:09 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e3, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:03:09 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e4, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:03:09 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[ 1136.535157] loop5: detected capacity change from 0 to 24
01:03:09 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x305f, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:03:09 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0xb6b7, 0x4, 0x0, 0xec, 0x0, r0}, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffb000/0x4000)=nil, 0x0, 0x0)
pwrite64(r1, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

01:03:09 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(0xffffffffffffffff)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:03:09 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

[ 1136.572519] FAT-fs (loop5): bogus number of reserved sectors
[ 1136.573892] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1136.613042] loop5: detected capacity change from 0 to 24
[ 1136.618273] FAT-fs (loop5): bogus number of reserved sectors
01:03:09 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x40049409, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

[ 1136.618293] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1136.624530] loop7: detected capacity change from 0 to 4097
01:03:09 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:03:09 executing program 3:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x0, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

01:03:09 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x3060, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

[ 1136.802364] loop5: detected capacity change from 0 to 24
01:03:09 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r0 = syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r1, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)
r2 = openat$random(0xffffffffffffff9c, &(0x7f0000000140), 0x101000, 0x0)
ioctl$FIDEDUPERANGE(r2, 0xc0189436, &(0x7f0000000180)={0x4, 0x4, 0x1, 0x0, 0x0, [{{r0}, 0xffff}]})

[ 1136.810424] FAT-fs (loop5): bogus number of reserved sectors
[ 1136.811065] FAT-fs (loop5): Can't find a valid FAT filesystem
01:03:09 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x40086602, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:03:09 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448cc, &(0x7f0000000000))

[ 1136.850336] loop6: detected capacity change from 0 to 4097
01:03:09 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:03:09 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
openat(r0, &(0x7f0000000140)='./file1\x00', 0x40000, 0x90)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r2 = openat$cgroup_ro(r1, &(0x7f0000000180)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x0, 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
sendfile(r2, r3, &(0x7f00000001c0)=0x754, 0x6)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r1, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

01:03:09 executing program 3:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xf05, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:03:09 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x3077, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:03:09 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[ 1136.921565] loop3: detected capacity change from 0 to 7
[ 1136.932777] FAT-fs (loop3): bogus number of reserved sectors
[ 1136.933548] FAT-fs (loop3): Can't find a valid FAT filesystem
01:03:09 executing program 3:
r0 = socket(0x18, 0xa, 0xfff)
setsockopt$bt_BT_CHANNEL_POLICY(r0, 0x112, 0xa, &(0x7f0000000140)=0x5, 0x4)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r1, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

[ 1137.004369] loop7: detected capacity change from 0 to 4097
01:03:09 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x40087602, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

[ 1137.019653] loop5: detected capacity change from 0 to 24
[ 1137.037671] FAT-fs (loop5): bogus number of reserved sectors
[ 1137.037685] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1137.055154] loop5: detected capacity change from 0 to 24
[ 1137.059129] FAT-fs (loop5): bogus number of reserved sectors
[ 1137.059142] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1137.116563] loop3: detected capacity change from 0 to 4097
01:03:22 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448dd, &(0x7f0000000000))

01:03:22 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:03:22 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(0xffffffffffffffff)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:03:22 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r1, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000007c0)={{{@in6=@loopback, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in6=@mcast2}, 0x0, @in=@remote}}, &(0x7f00000008c0)=0xe8)
syz_mount_image$nfs(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x7, 0x8, &(0x7f0000000700)=[{&(0x7f0000000240)="9b80697cb1772ec94ccafb98bcbdd69c6211390227dff361fe0a2454267130396cfc05017af6d72e71e1423fc91dd1bdab486bad5eb08f1c62a6201a1ad71166e5ba34e9205fa5c5bd14aca24ef9dd8f2b0371ba10bff6e688f6c6f64a197a5bb9dfacfb25bf749b2ed8cc4197c5be46a9b78ddadd56bcc495354d90d6e2d2590f9ba6d5e7e7241a2c0294333ce386a157", 0x91, 0xffff}, {&(0x7f0000000300)="239288df38e597ebc330304bd0c96fbfe065e8ed037a12c1a7bccb7c60b281cc22ef458badaabf1b08550ca9a2da74cf04c906c61a9926844ecd079092a43a5e9bd4650e2bc0cb3fc9047d17d893aaf923d8d3a0c3ec9a1ae1dca36b35c9516c842d454e34abaa690e2ae430d174943966c32fefc3835cf640288a2fff3ddf0abb2e60836eae89df25a091a2ebf312c01f67b4010ef7280d5e5eee9d3ac5d6796dd7d1e124c408d257c546fab3f70fee3e69430e981133db919b9ed17a668082ebeecc942133813463d2e92ef35edc09cc2e180d7e4aff2d9809002cadbdddcf8664a7f046a36a48f32a7d188d2689c741eab7ed6c713891", 0xf8, 0xef}, {&(0x7f0000000400)="88715e4f49b3e1b24f5a20af745a277b9e8e71c1170d768f110827c05157793287f059d1f9953d52d142ca702377335f821c90ca4801565107bf14e7f9cc8c98525fbec83049746563b431e4f6ff0c8d19e7a79ce3884076f216784b7139b8d7c4d43035f4806ee02b9341217af50860793c9fb0d0691814daa56181eba9c1ec4c0d42632875b66787", 0x89, 0x80000000}, {&(0x7f00000004c0)="9a8952e86376ce06569179b4d320ea0d", 0x10, 0x100000001}, {&(0x7f0000000500)="b3b93ee89f14b01820dc071a1409fef76694b3e331f8da18a034929d584212cc9ac731", 0x23, 0x7}, {&(0x7f0000000540)="45ba378bb2dc90f168015df2a04846ea46042f13ffd85a1f9e1f0e508279adf2ecd5f651db0c34efcca9e25cc1c853512c6c7a4b9c02b4c3c63620d7814fee7a4c249bc20f5107376b211ec5b708cd7bf7b972b5d07cc2ef2a23bbca4caea07bb122182f28fe8f0659c5c33665eeead9e4a82c39efe32f14fc61bfd435e5601f9c8cd0be", 0x84, 0x381}, {&(0x7f0000000600)="8d33cf4c70a63de641bb301a1ebfb2d7ab47b5272baba7f3f3a34717f8a605e9", 0x20}, {&(0x7f0000000640)="473bf6baad8bf31227dc89adc3836f17aa71dfdf5f6d92443c5b5592b168f4e6dee93c72d7acf38ad0d478c279153b4e09ec0425c216e463e5c4cb461544f839cf6cfbce1aa660e89d9bfd2ad2c5e272120a79d1ecab7b2c1951b9646b5bc82d9dcfa3b2876812f4ae3f6ff8a5621eb13a9d30980bf7df32a63db6c4449b3d4c8f0443de", 0x84, 0x8}], 0x1208004, &(0x7f0000000900)={[{'/dev/vcsa\x00'}, {'\x00'}, {'!'}, {'\xba'}, {'nfs\x00'}, {'/dev/vcsa\x00'}, {}, {'*'}], [{@mask={'mask', 0x3d, 'MAY_APPEND'}}, {@dont_measure}, {@uid_eq={'uid', 0x3d, r2}}]})
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x400074a1, 0x0, 0x0, 0x0, 0x0, r1}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

01:03:22 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(0xffffffffffffffff)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[ 1150.207734] loop3: detected capacity change from 0 to 4097
01:03:22 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x3f00, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:03:22 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x0, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

[ 1150.273452] loop5: detected capacity change from 0 to 31
[ 1150.277847] FAT-fs (loop5): bogus number of reserved sectors
[ 1150.278454] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1150.288194] loop5: detected capacity change from 0 to 31
[ 1150.291195] FAT-fs (loop5): bogus number of reserved sectors
[ 1150.291939] FAT-fs (loop5): Can't find a valid FAT filesystem
01:03:22 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x401c5820, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:03:22 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
syz_io_uring_setup(0xf33, &(0x7f0000000080)={0x0, 0x7f70, 0x0, 0x0, 0x88, 0x0, 0x0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r0, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
r1 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd)
add_key(&(0x7f0000000000)='user\x00', &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000080)="fd", 0x1, r1)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
fallocate(r2, 0x4, 0x2ec4, 0xffff)
r3 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r3, &(0x7f0000000180)='asymmetric\x00', &(0x7f0000000080)=@secondary)
r4 = add_key$user(&(0x7f00000001c0), &(0x7f0000000200)={'syz', 0x3}, &(0x7f0000000240)="ed", 0x1, 0xfffffffffffffffe)
keyctl$read(0xb, r4, 0x0, 0x0)
keyctl$KEYCTL_MOVE(0x1e, r4, r1, r3, 0x0)
sendfile(0xffffffffffffffff, r0, &(0x7f0000000140)=0x5, 0x0)

01:03:23 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x4530, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:03:23 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448de, &(0x7f0000000000))

[ 1150.430654] loop5: detected capacity change from 0 to 34
[ 1150.437371] FAT-fs (loop5): bogus number of reserved sectors
[ 1150.438783] FAT-fs (loop5): Can't find a valid FAT filesystem
01:03:23 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
openat(r0, &(0x7f0000000140)='./file1\x00', 0x40000, 0x90)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r2 = openat$cgroup_ro(r1, &(0x7f0000000180)='hugetlb.2MB.rsvd.usage_in_bytes\x00', 0x0, 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
sendfile(r2, r3, &(0x7f00000001c0)=0x754, 0x6)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r1, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

[ 1150.455634] loop7: detected capacity change from 0 to 4097
01:03:23 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:03:23 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x4800, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

[ 1150.625338] loop5: detected capacity change from 0 to 36
[ 1150.639251] FAT-fs (loop5): bogus number of reserved sectors
[ 1150.639274] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1150.655719] loop5: detected capacity change from 0 to 36
[ 1150.663585] FAT-fs (loop5): bogus number of reserved sectors
[ 1150.663606] FAT-fs (loop5): Can't find a valid FAT filesystem
01:03:23 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r1, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f00000007c0)={{{@in6=@loopback, @in6=@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r2=>0x0}}, {{@in6=@mcast2}, 0x0, @in=@remote}}, &(0x7f00000008c0)=0xe8)
syz_mount_image$nfs(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', 0x7, 0x8, &(0x7f0000000700)=[{&(0x7f0000000240)="9b80697cb1772ec94ccafb98bcbdd69c6211390227dff361fe0a2454267130396cfc05017af6d72e71e1423fc91dd1bdab486bad5eb08f1c62a6201a1ad71166e5ba34e9205fa5c5bd14aca24ef9dd8f2b0371ba10bff6e688f6c6f64a197a5bb9dfacfb25bf749b2ed8cc4197c5be46a9b78ddadd56bcc495354d90d6e2d2590f9ba6d5e7e7241a2c0294333ce386a157", 0x91, 0xffff}, {&(0x7f0000000300)="239288df38e597ebc330304bd0c96fbfe065e8ed037a12c1a7bccb7c60b281cc22ef458badaabf1b08550ca9a2da74cf04c906c61a9926844ecd079092a43a5e9bd4650e2bc0cb3fc9047d17d893aaf923d8d3a0c3ec9a1ae1dca36b35c9516c842d454e34abaa690e2ae430d174943966c32fefc3835cf640288a2fff3ddf0abb2e60836eae89df25a091a2ebf312c01f67b4010ef7280d5e5eee9d3ac5d6796dd7d1e124c408d257c546fab3f70fee3e69430e981133db919b9ed17a668082ebeecc942133813463d2e92ef35edc09cc2e180d7e4aff2d9809002cadbdddcf8664a7f046a36a48f32a7d188d2689c741eab7ed6c713891", 0xf8, 0xef}, {&(0x7f0000000400)="88715e4f49b3e1b24f5a20af745a277b9e8e71c1170d768f110827c05157793287f059d1f9953d52d142ca702377335f821c90ca4801565107bf14e7f9cc8c98525fbec83049746563b431e4f6ff0c8d19e7a79ce3884076f216784b7139b8d7c4d43035f4806ee02b9341217af50860793c9fb0d0691814daa56181eba9c1ec4c0d42632875b66787", 0x89, 0x80000000}, {&(0x7f00000004c0)="9a8952e86376ce06569179b4d320ea0d", 0x10, 0x100000001}, {&(0x7f0000000500)="b3b93ee89f14b01820dc071a1409fef76694b3e331f8da18a034929d584212cc9ac731", 0x23, 0x7}, {&(0x7f0000000540)="45ba378bb2dc90f168015df2a04846ea46042f13ffd85a1f9e1f0e508279adf2ecd5f651db0c34efcca9e25cc1c853512c6c7a4b9c02b4c3c63620d7814fee7a4c249bc20f5107376b211ec5b708cd7bf7b972b5d07cc2ef2a23bbca4caea07bb122182f28fe8f0659c5c33665eeead9e4a82c39efe32f14fc61bfd435e5601f9c8cd0be", 0x84, 0x381}, {&(0x7f0000000600)="8d33cf4c70a63de641bb301a1ebfb2d7ab47b5272baba7f3f3a34717f8a605e9", 0x20}, {&(0x7f0000000640)="473bf6baad8bf31227dc89adc3836f17aa71dfdf5f6d92443c5b5592b168f4e6dee93c72d7acf38ad0d478c279153b4e09ec0425c216e463e5c4cb461544f839cf6cfbce1aa660e89d9bfd2ad2c5e272120a79d1ecab7b2c1951b9646b5bc82d9dcfa3b2876812f4ae3f6ff8a5621eb13a9d30980bf7df32a63db6c4449b3d4c8f0443de", 0x84, 0x8}], 0x1208004, &(0x7f0000000900)={[{'/dev/vcsa\x00'}, {'\x00'}, {'!'}, {'\xba'}, {'nfs\x00'}, {'/dev/vcsa\x00'}, {}, {'*'}], [{@mask={'mask', 0x3d, 'MAY_APPEND'}}, {@dont_measure}, {@uid_eq={'uid', 0x3d, r2}}]})
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x400074a1, 0x0, 0x0, 0x0, 0x0, r1}, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

01:03:23 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x0, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:03:23 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x4020940d, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:03:23 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x4a30, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

[ 1150.861219] loop6: detected capacity change from 0 to 4097
[ 1150.901464] loop5: detected capacity change from 0 to 37
[ 1150.914786] FAT-fs (loop5): bogus number of reserved sectors
[ 1150.915309] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1150.926715] loop5: detected capacity change from 0 to 37
[ 1150.930644] FAT-fs (loop5): bogus number of reserved sectors
[ 1150.930663] FAT-fs (loop5): Can't find a valid FAT filesystem
01:03:38 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x800448d2, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:03:38 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

01:03:38 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:03:38 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448df, &(0x7f0000000000))

01:03:38 executing program 3:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8907, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:03:38 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x0, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:03:38 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x4b10, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:03:38 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000140)='./file1\x00', 0x10000, 0x40)

[ 1165.814413] loop5: detected capacity change from 0 to 37
[ 1165.834773] FAT-fs (loop5): bogus number of reserved sectors
[ 1165.835729] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1165.860429] loop5: detected capacity change from 0 to 37
[ 1165.880159] loop7: detected capacity change from 0 to 4097
[ 1165.881458] FAT-fs (loop5): bogus number of reserved sectors
[ 1165.882461] FAT-fs (loop5): Can't find a valid FAT filesystem
01:03:38 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
syz_io_uring_setup(0xf33, &(0x7f0000000080)={0x0, 0x7f70, 0x0, 0x0, 0x88, 0x0, 0x0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(0xffffffffffffffff, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r0, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
r1 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000280)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffd)
add_key(&(0x7f0000000000)='user\x00', &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000080)="fd", 0x1, r1)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
fallocate(r2, 0x4, 0x2ec4, 0xffff)
r3 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r3, &(0x7f0000000180)='asymmetric\x00', &(0x7f0000000080)=@secondary)
r4 = add_key$user(&(0x7f00000001c0), &(0x7f0000000200)={'syz', 0x3}, &(0x7f0000000240)="ed", 0x1, 0xfffffffffffffffe)
keyctl$read(0xb, r4, 0x0, 0x0)
keyctl$KEYCTL_MOVE(0x1e, r4, r1, r3, 0x0)
sendfile(0xffffffffffffffff, r0, &(0x7f0000000140)=0x5, 0x0)

[ 1166.112284] loop6: detected capacity change from 0 to 4097
[ 1166.614925] I/O error, dev loop6, sector 3968 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
01:03:54 executing program 6:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000140)='./file1\x00', 0x10000, 0x40)

01:03:54 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x4c00, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:03:54 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x800448d3, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:03:54 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x501142, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000800)=0x40000)
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x9a, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffe000/0x1000)=nil, 0x0, 0x0)
pwrite64(r1, &(0x7f0000000000)='\x00', 0x1, 0x0)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat(r2, &(0x7f0000000840)='./file1/file0\x00', 0x0, 0x110)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
fallocate(r3, 0x60, 0x2, 0x5fd)
syz_mount_image$nfs(&(0x7f0000000140), &(0x7f0000000180)='./file1\x00', 0x37, 0x8, &(0x7f00000006c0)=[{&(0x7f00000001c0)="35252cbe064f63ae9118bda097b6a696fba8ed037da578dae147fc0d94196270e5e08a28f35db54e871baa274443031a3fcde431825a7bffd5721ebd0a477114c9e36d030dcb329e808ffd127ab75d3563b43f7def7b3dac446d46d981b056746fe6c2e30645358bab69a1e0baae4d54bab70fd8e847357013233c8f6fb3585381b19ac9c65d7db67e55d71e232f1fc57aad6228c5c98ff57d10b62672cdbf26e1d69932e1a4e8487b8ea2d76a11c0a513e40793b358aca7cc74317f444f3a6af238f515401e2724d107101ef9a4b13584d0d1fafeb6d6d5b01b84cb39e46638f4f8c18bee8f00242abb44e50f2eded6eab437ae1d726828", 0xf8}, {&(0x7f00000002c0)="80a844e1dcdfafde1c589ee63d0762fccfa32554ab5278f4ea2802944ef8e81dba04292732bcca8043d67f5528622360441ff7bb118e01f4077bcfc1e8c898ececad0a7829d35a0c266a75e084ff8f006fd1889e9e7ff7fdd001e74e5eaa4e55007dad53fa0c1a37e08a782c132f97fab65939d3466fe776211a03bf525957002c28fee81bf980f7f9ce657895e5f7fe15e17c3c526524090d589bef84fd8feac20523963f9767dd", 0xa8, 0x8}, {&(0x7f0000000380)="c6e3fd86229b988c776cf232045edaec0c201d67beee4b56727753fa8c17ff49b66acbe0d96539f8f577543545639e731b24d3ee7a2caaac36d6a10b3caa0095c6db16fc648d2e2fe4749e39c5d30250132548511b466ff54ee6567fc786f3f54af5a11c2a6d632c57f8d74349a66799f85c738a747f951f0cb4eaa803b116cafb5331013f308cbdd83fc35c626c53eb1b311949", 0x94, 0x3000000000000000}, {&(0x7f0000000440)="7c37089590d512b3b7cfb098ee669e32ff31a8873694fd47a4eee2a58ee9be88e51450e551a86bb1d09f84f519288785c12d9108df97e462c6a32535fd3dc42b04965d713ff90c306b757480cd6ced2282dc570bc7f94e804a1e97c2899c56ae6a3b5bc54e7644a085bad514225bb43f58d1090835cac06a28e0cd1823d69313bf0d2741c6d82c40a6", 0x89, 0x9591}, {&(0x7f0000000500)="381b66a99fc2b6ae74cd2b536992bd3896d2361740f539a2b3e65832ae77c0bca8b1af2f46321777600241102fe4c2f626094fe5ce9f1b9c1b5b88ff0cd62d603c2d96326a8c8b512900e862424b19ce7c2d458573356cf5bccf6f743d967c03ef4bf28d2dbf8ce103fb0842719a31c106e551f7355ca29bdb3b5529ddafdf893ed5b6ef9267adccf18c4ddc3a622d772b5be9a89a1ce2cdce917e0c", 0x9c, 0xe1}, {&(0x7f00000005c0)="9b20c7cb997dafe8e48dd627d753f6f0c7982cb0cdfeadf39d83491e4a723603c5829bea424d712211ddc7dd4f97edff411b68c471eab458b9915b43fcc93eaca0f1b69e9b87c76fefcbc0616f9d07d90f57ef332795e66c160d5469c5c1483a272d7a95eb12266ff4c96e7eb4", 0x6d, 0x8}, {&(0x7f0000000640)="0fbdaf51f87d", 0x6, 0x836c}, {&(0x7f0000000680)="bd79e5423da4ba2fd44bc7d3aa836993079feb1bf1e3138ec8", 0x19, 0x49a1}], 0x4800, &(0x7f0000000780)=ANY=[@ANYBLOB="28257b2a2e2c646f6e745f686173682c6d61736b3d4d41595f415050454e442c6673757569643d38306236373862352d036438322d626138342d66646230ff00353937373965642c00"])

01:03:54 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:03:54 executing program 7:
openat(0xffffffffffffffff, &(0x7f0000000140)='./file1\x00', 0x109042, 0xe8)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r1, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
syz_io_uring_setup(0x2d4a, &(0x7f0000000080)={0x0, 0x200000, 0x0, 0x0, 0x0, 0x0, r1}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)
lchown(&(0x7f0000000180)='./file1\x00', 0x0, 0x0)

01:03:54 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:03:54 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e0, &(0x7f0000000000))

[ 1181.886936] loop5: detected capacity change from 0 to 38
[ 1181.889561] FAT-fs (loop5): bogus number of reserved sectors
[ 1181.890231] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1181.898083] loop5: detected capacity change from 0 to 38
[ 1181.908079] FAT-fs (loop5): bogus number of reserved sectors
[ 1181.908666] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1181.950001] loop3: detected capacity change from 0 to 4097
01:03:54 executing program 6:
clone3(&(0x7f0000000640)={0x0, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)

01:03:54 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x4c10, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

[ 1182.024258] loop5: detected capacity change from 0 to 38
[ 1182.033460] FAT-fs (loop5): bogus number of reserved sectors
[ 1182.034108] FAT-fs (loop5): Can't find a valid FAT filesystem
01:03:54 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x8, 0x4000010, 0xffffffffffffffff, 0xa7b04000)
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000380), 0x10800, 0x0)
fallocate(r0, 0x8, 0x2, 0x100000001)
r1 = syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
openat(0xffffffffffffffff, &(0x7f0000000340)='./file1\x00', 0x70881, 0x1c)
mount$9p_tcp(&(0x7f0000000180), &(0x7f00000001c0)='./file1\x00', &(0x7f0000000200), 0x0, &(0x7f0000000240)={'trans=tcp,', {'port', 0x3d, 0x4e21}, 0x2c, {[{@cache_mmap}, {@cache_loose}, {@loose}, {@posixacl}, {@noextend}]}})
r3 = openat(0xffffffffffffffff, &(0x7f0000000140)='./file1\x00', 0x40240, 0x40)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r2, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r3, 0xc018937c, &(0x7f00000002c0)={{0x1, 0x1, 0x18, <r4=>r1}, './file1\x00'})
write$P9_RREADLINK(r4, &(0x7f0000000300)={0x10, 0x17, 0x2, {0x7, './file1'}}, 0x10)

01:03:54 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e2, &(0x7f0000000000))

01:03:54 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x5f30, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:03:54 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x800448d4, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

[ 1182.156301] loop7: detected capacity change from 0 to 4097
01:03:54 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[ 1182.192019] 9pnet_fd: p9_fd_create_tcp (19490): problem connecting socket to 127.0.0.1
01:03:54 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:03:54 executing program 3:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:03:54 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x6030, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

[ 1182.244759] 9pnet_fd: p9_fd_create_tcp (19552): problem connecting socket to 127.0.0.1
01:03:54 executing program 6:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x4c10, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

[ 1182.297246] loop5: detected capacity change from 0 to 48
[ 1182.307076] FAT-fs (loop5): bogus number of reserved sectors
[ 1182.307700] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1182.330573] loop5: detected capacity change from 0 to 48
[ 1182.333479] loop6: detected capacity change from 0 to 38
01:03:55 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e3, &(0x7f0000000000))

[ 1182.345063] FAT-fs (loop6): bogus number of reserved sectors
[ 1182.345087] FAT-fs (loop6): Can't find a valid FAT filesystem
[ 1182.351542] FAT-fs (loop5): bogus number of reserved sectors
[ 1182.351555] FAT-fs (loop5): Can't find a valid FAT filesystem
01:04:09 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x800448f0, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:04:09 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0), 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

01:04:09 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e4, &(0x7f0000000000))

01:04:09 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:04:09 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x6800, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:04:09 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = memfd_secret(0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x14, 0x0, 0x0, 0x0, r1}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
chown(&(0x7f0000000140)='./file1\x00', 0xffffffffffffffff, 0xee01)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

01:04:09 executing program 6:
openat(0xffffffffffffffff, &(0x7f0000000140)='./file1\x00', 0x109042, 0xe8)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r1, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
syz_io_uring_setup(0x2d4a, &(0x7f0000000080)={0x0, 0x200000, 0x0, 0x0, 0x0, 0x0, r1}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)
lchown(&(0x7f0000000180)='./file1\x00', 0x0, 0x0)

01:04:09 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, 0x0)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

[ 1196.692609] loop5: detected capacity change from 0 to 52
[ 1196.696634] loop6: detected capacity change from 0 to 4097
[ 1196.713060] FAT-fs (loop5): bogus number of reserved sectors
[ 1196.714344] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1196.716635] loop7: detected capacity change from 0 to 4097
01:04:09 executing program 3:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x4400)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r3, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:04:09 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397f2b1bb3b5af60a2cfa1d88f4635990e7ea4590cd1c26ffcfeb5981e2f5f1558f4e45e978698f08952a3e594ee6c1a86605588755fc4527afc1793b6c63638d0208e496694f79f37830bc408e96605f2e568c54d9f1e30f6374f3"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:04:09 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x40049409, &(0x7f0000000000))

[ 1196.775693] loop5: detected capacity change from 0 to 52
[ 1196.777632] FAT-fs (loop5): bogus number of reserved sectors
[ 1196.778305] FAT-fs (loop5): Can't find a valid FAT filesystem
01:04:09 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x80086601, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:04:09 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x6c00, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

[ 1196.882704] loop5: detected capacity change from 0 to 54
[ 1196.896939] FAT-fs (loop5): bogus number of reserved sectors
[ 1196.897538] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1196.925439] loop5: detected capacity change from 0 to 54
01:04:09 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:04:09 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000)) (fail_nth: 1)
openat$sr(0xffffffffffffff9c, 0x0, 0x82100, 0x0)

01:04:09 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
r0 = syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
openat(r0, &(0x7f00000001c0)='./file1/../file0\x00', 0x20c000, 0x47)
syz_io_uring_setup(0x1, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
mount_setattr(0xffffffffffffffff, &(0x7f0000000140)='./file1/../file0\x00', 0x8000, &(0x7f0000000180)={0x100002, 0x0, 0x100000, {r2}}, 0x20)
pwrite64(r1, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

[ 1196.932966] FAT-fs (loop5): bogus number of reserved sectors
01:04:09 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x7400, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:04:09 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000)) (fail_nth: 2)
openat$sr(0xffffffffffffff9c, 0x0, 0x82100, 0x0)

01:04:09 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x80087601, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

[ 1196.932980] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1197.009485] FAULT_INJECTION: forcing a failure.
[ 1197.009485] name failslab, interval 1, probability 0, space 0, times 0
[ 1197.009533] CPU: 1 PID: 20598 Comm: syz-executor.6 Not tainted 5.17.0-next-20220329 #1
[ 1197.009546] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1197.009555] Call Trace:
[ 1197.009559]  <TASK>
[ 1197.009565]  dump_stack_lvl+0x8b/0xb3
[ 1197.009592]  should_fail.cold+0x5/0xa
[ 1197.009609]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1197.009629]  ? __alloc_skb+0x211/0x340
[ 1197.009643]  should_failslab+0x5/0x10
[ 1197.009658]  kmem_cache_alloc_node+0x55/0x490
[ 1197.009679]  __alloc_skb+0x211/0x340
[ 1197.009695]  create_monitor_ctrl_open+0x16c/0x790
[ 1197.009716]  ? hci_sock_release+0x400/0x400
[ 1197.009738]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1197.009754]  ? security_capable+0x95/0xc0
[ 1197.009780]  hci_sock_ioctl+0x394/0x910
[ 1197.009800]  ? hci_sock_sendmsg+0x22e0/0x22e0
[ 1197.009819]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 1197.009842]  sock_do_ioctl+0xd2/0x230
[ 1197.009861]  ? put_user_ifreq+0xb0/0xb0
[ 1197.009881]  ? vfs_fileattr_set+0xb80/0xb80
[ 1197.009900]  ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x400
[ 1197.009916]  ? ioctl_has_perm.constprop.0.isra.0+0x2a4/0x400
[ 1197.009934]  ? selinux_inode_getsecctx+0x90/0x90
[ 1197.009954]  sock_ioctl+0x41c/0x670
[ 1197.009964]  ? lock_is_held_type+0xd7/0x130
[ 1197.009980]  ? br_ioctl_call+0xb0/0xb0
[ 1197.009999]  ? selinux_file_ioctl+0xb1/0x260
[ 1197.010015]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1197.010032]  ? br_ioctl_call+0xb0/0xb0
[ 1197.010046]  __x64_sys_ioctl+0x196/0x210
[ 1197.010065]  do_syscall_64+0x3b/0x90
[ 1197.010077]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1197.010092] RIP: 0033:0x7fc7437adb19
[ 1197.010102] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1197.010114] RSP: 002b:00007fc740d23188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1197.010127] RAX: ffffffffffffffda RBX: 00007fc7438c0f60 RCX: 00007fc7437adb19
[ 1197.010136] RDX: 0000000020000000 RSI: 00000000400448e1 RDI: 0000000000000005
[ 1197.010143] RBP: 00007fc740d231d0 R08: 0000000000000000 R09: 0000000000000000
[ 1197.010151] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1197.010158] R13: 00007ffdc8ee71cf R14: 00007fc740d23300 R15: 0000000000022000
[ 1197.010180]  </TASK>
[ 1197.042187] loop5: detected capacity change from 0 to 58
[ 1197.048516] FAT-fs (loop5): bogus number of reserved sectors
[ 1197.048528] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1197.059724] loop5: detected capacity change from 0 to 58
[ 1197.060856] FAT-fs (loop5): bogus number of reserved sectors
[ 1197.087679] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1197.120868] loop7: detected capacity change from 0 to 4097
[ 1197.134517] cgroup: fork rejected by pids controller in /syz6
[ 1197.141572] FAULT_INJECTION: forcing a failure.
[ 1197.141572] name failslab, interval 1, probability 0, space 0, times 0
[ 1197.141592] CPU: 1 PID: 20705 Comm: syz-executor.6 Not tainted 5.17.0-next-20220329 #1
[ 1197.141606] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1197.141615] Call Trace:
[ 1197.141620]  <TASK>
[ 1197.141624]  dump_stack_lvl+0x8b/0xb3
[ 1197.141651]  should_fail.cold+0x5/0xa
[ 1197.141670]  ? create_object.isra.0+0x3a/0xa20
[ 1197.141687]  should_failslab+0x5/0x10
[ 1197.141701]  kmem_cache_alloc+0x5b/0x480
[ 1197.141723]  create_object.isra.0+0x3a/0xa20
[ 1197.141736]  ? kasan_unpoison+0x23/0x50
[ 1197.141751]  kmem_cache_alloc_node+0x248/0x490
[ 1197.141772]  __alloc_skb+0x211/0x340
[ 1197.141792]  create_monitor_ctrl_open+0x16c/0x790
[ 1197.141813]  ? hci_sock_release+0x400/0x400
[ 1197.141831]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1197.141849]  ? security_capable+0x95/0xc0
[ 1197.141876]  hci_sock_ioctl+0x394/0x910
[ 1197.141895]  ? hci_sock_sendmsg+0x22e0/0x22e0
[ 1197.141914]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 1197.141937]  sock_do_ioctl+0xd2/0x230
[ 1197.141956]  ? put_user_ifreq+0xb0/0xb0
[ 1197.141976]  ? vfs_fileattr_set+0xb80/0xb80
[ 1197.141995]  ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x400
[ 1197.142011]  ? ioctl_has_perm.constprop.0.isra.0+0x2a4/0x400
[ 1197.142028]  ? selinux_inode_getsecctx+0x90/0x90
[ 1197.142048]  sock_ioctl+0x41c/0x670
[ 1197.142059]  ? lock_is_held_type+0xd7/0x130
[ 1197.142075]  ? br_ioctl_call+0xb0/0xb0
[ 1197.142094]  ? selinux_file_ioctl+0xb1/0x260
[ 1197.142111]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1197.142128]  ? br_ioctl_call+0xb0/0xb0
[ 1197.142142]  __x64_sys_ioctl+0x196/0x210
[ 1197.142161]  do_syscall_64+0x3b/0x90
[ 1197.142173]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1197.142189] RIP: 0033:0x7fc7437adb19
[ 1197.142198] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1197.142211] RSP: 002b:00007fc740d23188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1197.142224] RAX: ffffffffffffffda RBX: 00007fc7438c0f60 RCX: 00007fc7437adb19
[ 1197.142233] RDX: 0000000020000000 RSI: 00000000400448e1 RDI: 0000000000000004
[ 1197.142240] RBP: 00007fc740d231d0 R08: 0000000000000000 R09: 0000000000000000
[ 1197.142248] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1197.142255] R13: 00007ffdc8ee71cf R14: 00007fc740d23300 R15: 0000000000022000
[ 1197.142277]  </TASK>
01:04:27 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000)) (fail_nth: 3)
openat$sr(0xffffffffffffff9c, 0x0, 0x82100, 0x0)

01:04:27 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:04:27 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x40086602, &(0x7f0000000000))

01:04:27 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:04:27 executing program 3:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x6c00, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:04:27 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x80108906, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:04:27 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x7730, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:04:27 executing program 7:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000080), r0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r1)
sendmsg$NLBL_MGMT_C_ADDDEF(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000300)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000002311000000000000e8974d9bafd61ac170eb040000000800020000000048ec000500fe880000000000000000000000002001"], 0x30}}, 0x0)
sendmsg$NLBL_MGMT_C_PROTOCOLS(r0, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)={0x58, r3, 0x12, 0x70bd25, 0x25dfdbfb, {}, [@NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @dev={0xac, 0x14, 0x14, 0x11}}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @ipv4={'\x00', '\xff\xff', @empty}}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x1}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x26}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x1}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @multicast1}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x3}]}, 0x58}, 0x1, 0x0, 0x0, 0x80}, 0x10)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
sendmsg$NLBL_MGMT_C_LISTALL(r2, &(0x7f0000000380)={&(0x7f0000000280)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000340)={&(0x7f00000003c0)=ANY=[@ANYBLOB="32c953a2ff537c5ee06701df98", @ANYRES16=r3, @ANYBLOB="02002bbd7000fddbdf25030000000800020007000000080001006e667300080002000500000006000b0002000000"], 0x34}}, 0xf824b8a42e9038ec)
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000300), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wpan1\x00', <r7=>0x0})
sendmsg$NL802154_CMD_SET_TX_POWER(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000240)={0x24, r6, 0xc2cf92a51d6d6c85, 0x0, 0x0, {}, [@NL802154_ATTR_WPAN_PHY={0x8, 0x1, 0x1}, @NL802154_ATTR_IFINDEX={0x8, 0x3, r7}]}, 0x24}}, 0x0)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000400)={'wpan4\x00', <r8=>0x0})
sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f0000000480)={&(0x7f0000000440)={0x34, 0x0, 0x400, 0x70bd2d, 0x25dfdbfc, {}, [@IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r7}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x1}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r8}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x81}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000000}, 0x40000)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x370, 0x0, 0x0}, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0)
pwrite64(r4, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

[ 1214.367138] loop5: detected capacity change from 0 to 59
[ 1214.402307] loop3: detected capacity change from 0 to 54
[ 1214.404200] loop7: detected capacity change from 0 to 4097
[ 1214.411713] FAT-fs (loop5): bogus number of reserved sectors
[ 1214.412853] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1214.413967] FAT-fs (loop3): bogus number of reserved sectors
[ 1214.415107] FAT-fs (loop3): Can't find a valid FAT filesystem
[ 1214.420611] FAULT_INJECTION: forcing a failure.
[ 1214.420611] name failslab, interval 1, probability 0, space 0, times 0
[ 1214.421902] CPU: 0 PID: 20913 Comm: syz-executor.6 Not tainted 5.17.0-next-20220329 #1
[ 1214.422702] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1214.423891] Call Trace:
[ 1214.424155]  <TASK>
[ 1214.424399]  dump_stack_lvl+0x8b/0xb3
[ 1214.424859]  should_fail.cold+0x5/0xa
[ 1214.424878]  ? lock_is_held_type+0xd7/0x130
[ 1214.424898]  should_failslab+0x5/0x10
[ 1214.424913]  __kmalloc_node_track_caller+0x7e/0x440
[ 1214.424931]  ? create_monitor_ctrl_open+0x16c/0x790
[ 1214.424955]  __alloc_skb+0xe3/0x340
[ 1214.424972]  create_monitor_ctrl_open+0x16c/0x790
[ 1214.424991]  ? hci_sock_release+0x400/0x400
[ 1214.425008]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1214.425027]  ? security_capable+0x95/0xc0
[ 1214.425053]  hci_sock_ioctl+0x394/0x910
[ 1214.425073]  ? hci_sock_sendmsg+0x22e0/0x22e0
[ 1214.425092]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 1214.425115]  sock_do_ioctl+0xd2/0x230
[ 1214.425135]  ? put_user_ifreq+0xb0/0xb0
[ 1214.425154]  ? vfs_fileattr_set+0xb80/0xb80
01:04:27 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000)) (fail_nth: 4)
openat$sr(0xffffffffffffff9c, 0x0, 0x82100, 0x0)

[ 1214.425174]  ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x400
01:04:27 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x80108907, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:04:27 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[ 1214.425192]  ? ioctl_has_perm.constprop.0.isra.0+0x2a4/0x400
[ 1214.425209]  ? selinux_inode_getsecctx+0x90/0x90
[ 1214.425229]  sock_ioctl+0x41c/0x670
[ 1214.425240]  ? lock_is_held_type+0xd7/0x130
[ 1214.425255]  ? br_ioctl_call+0xb0/0xb0
[ 1214.425274]  ? selinux_file_ioctl+0xb1/0x260
[ 1214.425290]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1214.425307]  ? br_ioctl_call+0xb0/0xb0
[ 1214.425321]  __x64_sys_ioctl+0x196/0x210
[ 1214.425340]  do_syscall_64+0x3b/0x90
[ 1214.425352]  entry_SYSCALL_64_after_hwframe+0x44/0xae
01:04:27 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4) (fail_nth: 1)

[ 1214.425368] RIP: 0033:0x7fc7437adb19
[ 1214.425378] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1214.425390] RSP: 002b:00007fc740d23188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1214.425404] RAX: ffffffffffffffda RBX: 00007fc7438c0f60 RCX: 00007fc7437adb19
[ 1214.425413] RDX: 0000000020000000 RSI: 00000000400448e1 RDI: 0000000000000004
[ 1214.425420] RBP: 00007fc740d231d0 R08: 0000000000000000 R09: 0000000000000000
[ 1214.425428] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1214.425435] R13: 00007ffdc8ee71cf R14: 00007fc740d23300 R15: 0000000000022000
[ 1214.425457]  </TASK>
[ 1214.456502] loop5: detected capacity change from 0 to 59
[ 1214.476319] FAT-fs (loop5): bogus number of reserved sectors
[ 1214.476339] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1214.648174] loop3: detected capacity change from 0 to 4097
[ 1214.650167] FAULT_INJECTION: forcing a failure.
[ 1214.650167] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1214.650225] CPU: 0 PID: 21289 Comm: syz-executor.3 Not tainted 5.17.0-next-20220329 #1
[ 1214.650239] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1214.650248] Call Trace:
[ 1214.650252]  <TASK>
[ 1214.650257]  dump_stack_lvl+0x8b/0xb3
[ 1214.650284]  should_fail.cold+0x5/0xa
[ 1214.650306]  _copy_to_user+0x2a/0x140
[ 1214.650326]  simple_read_from_buffer+0xcc/0x160
[ 1214.650348]  proc_fail_nth_read+0x194/0x220
[ 1214.650366]  ? proc_exe_link+0x1d0/0x1d0
[ 1214.650381]  ? security_file_permission+0xb1/0xd0
[ 1214.650399]  ? proc_exe_link+0x1d0/0x1d0
[ 1214.650414]  vfs_read+0x1ea/0x5d0
[ 1214.650415] FAULT_INJECTION: forcing a failure.
[ 1214.650415] name failslab, interval 1, probability 0, space 0, times 0
[ 1214.650437]  ksys_read+0x127/0x250
[ 1214.650449]  ? __ia32_sys_pwrite64+0x220/0x220
[ 1214.650465]  ? syscall_enter_from_user_mode+0x1d/0x50
[ 1214.650487]  do_syscall_64+0x3b/0x90
[ 1214.650500]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1214.650516] RIP: 0033:0x7fccfcdf769c
[ 1214.650525] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 fc ff ff 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 2f fd ff ff 48
[ 1214.650538] RSP: 002b:00007fccfa3ba170 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 1214.650551] RAX: ffffffffffffffda RBX: ffffffffffffffff RCX: 00007fccfcdf769c
[ 1214.650560] RDX: 000000000000000f RSI: 00007fccfa3ba1e0 RDI: 0000000000000007
[ 1214.650568] RBP: 00007fccfa3ba1d0 R08: 0000000000000000 R09: 0000000000000000
[ 1214.650575] R10: 0000000000000004 R11: 0000000000000246 R12: 0000000000000001
[ 1214.650583] R13: 00007ffdfcd2a12f R14: 00007fccfa3ba300 R15: 0000000000022000
[ 1214.650604]  </TASK>
[ 1214.650611] CPU: 1 PID: 21292 Comm: syz-executor.6 Not tainted 5.17.0-next-20220329 #1
[ 1214.650634] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1214.650649] Call Trace:
[ 1214.650655]  <TASK>
[ 1214.650663]  dump_stack_lvl+0x8b/0xb3
[ 1214.650704]  should_fail.cold+0x5/0xa
[ 1214.650733]  ? lock_release+0x3b2/0x6f0
[ 1214.650758]  ? create_object.isra.0+0x3a/0xa20
[ 1214.650789]  should_failslab+0x5/0x10
[ 1214.650813]  kmem_cache_alloc+0x5b/0x480
[ 1214.650847]  create_object.isra.0+0x3a/0xa20
[ 1214.650868]  ? kasan_unpoison+0x23/0x50
[ 1214.650893]  __kmalloc_node_track_caller+0x269/0x440
[ 1214.650920]  ? create_monitor_ctrl_open+0x16c/0x790
[ 1214.650958]  __alloc_skb+0xe3/0x340
[ 1214.650985]  create_monitor_ctrl_open+0x16c/0x790
[ 1214.651016]  ? hci_sock_release+0x400/0x400
[ 1214.651044]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1214.651073]  ? security_capable+0x95/0xc0
[ 1214.651114]  hci_sock_ioctl+0x394/0x910
[ 1214.651146]  ? hci_sock_sendmsg+0x22e0/0x22e0
[ 1214.651177]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 1214.651211]  sock_do_ioctl+0xd2/0x230
[ 1214.651242]  ? put_user_ifreq+0xb0/0xb0
[ 1214.651273]  ? vfs_fileattr_set+0xb80/0xb80
[ 1214.651304]  ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x400
[ 1214.651330]  ? ioctl_has_perm.constprop.0.isra.0+0x2a4/0x400
[ 1214.651358]  ? selinux_inode_getsecctx+0x90/0x90
[ 1214.651390]  sock_ioctl+0x41c/0x670
[ 1214.651407]  ? lock_is_held_type+0xd7/0x130
[ 1214.651432]  ? br_ioctl_call+0xb0/0xb0
[ 1214.651463]  ? selinux_file_ioctl+0xb1/0x260
[ 1214.651490]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1214.651517]  ? br_ioctl_call+0xb0/0xb0
[ 1214.651540]  __x64_sys_ioctl+0x196/0x210
[ 1214.651571]  do_syscall_64+0x3b/0x90
[ 1214.651590]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1214.651614] RIP: 0033:0x7fc7437adb19
[ 1214.651630] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1214.651650] RSP: 002b:00007fc740d23188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1214.651671] RAX: ffffffffffffffda RBX: 00007fc7438c0f60 RCX: 00007fc7437adb19
[ 1214.651685] RDX: 0000000020000000 RSI: 00000000400448e1 RDI: 0000000000000004
[ 1214.651697] RBP: 00007fc740d231d0 R08: 0000000000000000 R09: 0000000000000000
[ 1214.651709] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1214.651721] R13: 00007ffdc8ee71cf R14: 00007fc740d23300 R15: 0000000000022000
[ 1214.651756]  </TASK>
01:04:42 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x7a00, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:04:42 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:04:42 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

01:04:42 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
r0 = syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
openat(r0, &(0x7f0000000140)='./file1\x00', 0xec101, 0x95)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
ioctl$EXT4_IOC_GET_ES_CACHE(r2, 0xc020662a, &(0x7f00000001c0)={0x8, 0xfff, 0x7, 0x200, 0x6, [{0x8, 0x1, 0x100, '\x00', 0x108}, {0x9, 0x7, 0x6}, {0x6, 0xffffffffffffff2f, 0x9, '\x00', 0x402}, {0x1, 0x1, 0x9, '\x00', 0x1a98}, {0xfffffffffffffffc, 0x1, 0xffffffffffff0001}, {0x80, 0x20, 0xfffffffffffffffc, '\x00', 0x2108}]})
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r1, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, &(0x7f0000000180)={{0x1, 0x1, 0x18, r1, {0x100}}, './file1/file0\x00'})

01:04:42 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x40087602, &(0x7f0000000000))

01:04:42 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x801c581f, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:04:42 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000)) (fail_nth: 5)
openat$sr(0xffffffffffffff9c, 0x0, 0x82100, 0x0)

01:04:42 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

[ 1229.348865] FAULT_INJECTION: forcing a failure.
[ 1229.348865] name fail_usercopy, interval 1, probability 0, space 0, times 0
[ 1229.350998] CPU: 1 PID: 21552 Comm: syz-executor.6 Not tainted 5.17.0-next-20220329 #1
[ 1229.351849] Hardware name: QEMU Standard PC (i440FX + PIIX, 1996), BIOS rel-1.14.0-0-g155821a1990b-prebuilt.qemu.org 04/01/2014
[ 1229.353039] Call Trace:
[ 1229.353307]  <TASK>
[ 1229.353546]  dump_stack_lvl+0x8b/0xb3
[ 1229.353954]  should_fail.cold+0x5/0xa
[ 1229.354365]  _copy_from_user+0x2a/0x170
[ 1229.354783]  hci_dev_cmd+0x7a/0x9a0
[ 1229.355167]  ? hci_dev_reset_stat+0x200/0x200
[ 1229.355640]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1229.356184]  ? security_capable+0x95/0xc0
[ 1229.356648]  hci_sock_ioctl+0x413/0x910
[ 1229.357064]  ? hci_sock_sendmsg+0x22e0/0x22e0
[ 1229.357543]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 1229.358112]  sock_do_ioctl+0xd2/0x230
[ 1229.358519]  ? put_user_ifreq+0xb0/0xb0
[ 1229.358920]  ? vfs_fileattr_set+0xb80/0xb80
[ 1229.359377]  ? ioctl_has_perm.constprop.0.isra.0+0x29a/0x400
[ 1229.359979]  ? ioctl_has_perm.constprop.0.isra.0+0x2a4/0x400
[ 1229.360582]  ? selinux_inode_getsecctx+0x90/0x90
[ 1229.361059]  sock_ioctl+0x41c/0x670
[ 1229.361444]  ? lock_is_held_type+0xd7/0x130
[ 1229.361905]  ? br_ioctl_call+0xb0/0xb0
[ 1229.362332]  ? selinux_file_ioctl+0xb1/0x260
[ 1229.362797]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1229.363376]  ? br_ioctl_call+0xb0/0xb0
[ 1229.363759]  __x64_sys_ioctl+0x196/0x210
[ 1229.364196]  do_syscall_64+0x3b/0x90
[ 1229.364591]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1229.365109] RIP: 0033:0x7fc7437adb19
[ 1229.365503] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 64 89 01 48
[ 1229.367415] RSP: 002b:00007fc740d23188 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1229.368204] RAX: ffffffffffffffda RBX: 00007fc7438c0f60 RCX: 00007fc7437adb19
[ 1229.368944] RDX: 0000000020000000 RSI: 00000000400448e1 RDI: 0000000000000004
[ 1229.369700] RBP: 00007fc740d231d0 R08: 0000000000000000 R09: 0000000000000000
[ 1229.370433] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 1229.371174] R13: 00007ffdc8ee71cf R14: 00007fc740d23300 R15: 0000000000022000
[ 1229.371918]  </TASK>
[ 1229.407365] loop5: detected capacity change from 0 to 61
01:04:42 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

[ 1229.426620] FAT-fs (loop5): bogus number of reserved sectors
[ 1229.427523] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1229.439198] loop7: detected capacity change from 0 to 4097
[ 1229.444067] loop3: detected capacity change from 0 to 4097
[ 1229.488198] loop5: detected capacity change from 0 to 61
[ 1229.493484] FAT-fs (loop5): bogus number of reserved sectors
[ 1229.494118] FAT-fs (loop5): Can't find a valid FAT filesystem
01:04:42 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x82100, 0x0)

01:04:42 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0x7ffffffff000, 0x4)

01:04:42 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0xc0045878, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:04:42 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xe92f, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:04:42 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:04:42 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

[ 1229.654635] loop5: detected capacity change from 0 to 116
01:04:42 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x2, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x82100, 0x0)

[ 1229.682210] FAT-fs (loop5): bogus number of reserved sectors
[ 1229.683510] FAT-fs (loop5): Can't find a valid FAT filesystem
01:04:42 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x401c5820, &(0x7f0000000000))

[ 1229.714868] loop3: detected capacity change from 0 to 4097
01:04:42 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r1, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)
r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x4, 0x110, r0, 0x10000000)
r3 = syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(0xffffffffffffffff, 0xa, 0x0, r4)
syz_io_uring_submit(0x0, r2, &(0x7f0000000240)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x4, 0x0, 0xfffffffe, 0x0, &(0x7f0000000140)="682caab16c3411ad986f651b3969ee3d4a094a4b444c1dfb740dbdfc0f0213a04d421b1b26777e3ca2a8e3b024d6d0d9c19ad659e15bf911b414a2972101bd18936c277f6ccce7224e4c8e123d03652fcee138a1219b88339fb370c2c847636e700139eba1601f09d14ac97517f072186a6bbc8d7be52ed8f7f9da16aa12338b9da5a3751ee9912fcbba811c56cad006cd050a2aeb28bf7f1d7274d733d24bd25fc736c1c2c8bebf7006d2f8b0e69d9ca1d9f10c3c08dfba16ead544274f4c1c84cb", 0x9, 0x0, 0x0, {0x1, r4}}, 0x5)

01:04:42 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397f2b1bb3b5af60a2cfa1d88f4635990e7ea4590cd1c26ffcfeb5981e2f5f1558f4e45e978698f08952a3e594ee6c1a86605588755fc4527afc1793b6c63638d0208e496694f79f37830bc408e96605f2e568c54d9f1e30f6374f3488d9f0f9b0070f66111ba2d4206ae6269480d3e69960603062d921a91ac0e515e74868f3db09350af5e10d56aebcb7c83910db96583300feb7d08f7e892d3ac8560fc8a"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[ 1229.816491] loop7: detected capacity change from 0 to 4097
01:04:42 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xedc0, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

[ 1229.911166] loop5: detected capacity change from 0 to 118
[ 1229.917533] FAT-fs (loop5): bogus number of reserved sectors
[ 1229.918220] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1229.942056] loop5: detected capacity change from 0 to 118
[ 1229.948295] FAT-fs (loop5): bogus number of reserved sectors
[ 1229.948959] FAT-fs (loop5): Can't find a valid FAT filesystem
01:04:56 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r1 = syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000180)='./file1\x00', 0xa1ec, 0x2, &(0x7f0000000300)=[{&(0x7f00000001c0)="98e8fa11f252f4a4b5d0fa4f3f591273b0e65ddb29a50223288f13293e4f65a4d534", 0x22, 0x7}, {&(0x7f0000000200)="327dc046ca55794e6dc5a668aa52e75753578261d46d9eae4c5839776b0cf93215ee2abea9e9e01a833692a97f5dd4a34c7155e8149b2626e7ea11862363c0eca7165ee2326dd585b4a224f9fe0c3d682197411050aa9e41c94a3de7c556b46e13c0b0b8729b609fd3c6ea9dbb5fcd2a4b90ee2ca765e373693391a2cc3ef275a2780a6c9aded765d0f27d00e065f1a554420a5a6b552a86bc90df99105c6172e2007592c408476810286a48aacdfd20adfb54f9a99765cadfbc9b121fbc1a9c572f71", 0xc3, 0x53}], 0x22, &(0x7f0000000340)={[{@shortname_mixed}, {@fat=@check_normal}], [{@smackfsfloor={'smackfsfloor', 0x3d, '{:#\xa4'}}, {@obj_user}, {@fscontext={'fscontext', 0x3d, 'unconfined_u'}}, {@euid_gt={'euid>', 0xee00}}, {@uid_eq={'uid', 0x3d, 0xee01}}, {@mask={'mask', 0x3d, 'MAY_READ'}}, {@audit}, {@dont_hash}]})
ioctl$AUTOFS_DEV_IOCTL_FAIL(r0, 0xc0189377, &(0x7f0000000400)={{0x1, 0x1, 0x18, <r2=>r0, {0x33, 0xa79}}, './file1\x00'})
sendfile(r1, r2, &(0x7f0000000440)=0x5, 0x3ff)
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r3, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)
lsetxattr$security_capability(&(0x7f0000000480)='./file1\x00', &(0x7f00000004c0), &(0x7f0000000500)=@v1={0x1000000, [{0x1, 0x9}]}, 0xc, 0x1)

01:04:56 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:04:56 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0xc0045878, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:04:56 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:04:56 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x4b47, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x82100, 0x0)

01:04:56 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x4020940d, &(0x7f0000000000))

01:04:56 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xf22f, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:04:56 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x200200)

[ 1243.525131] loop7: detected capacity change from 0 to 80
[ 1243.527202] SELinux: security_context_str_to_sid (unconfined_u) failed with errno=-22
[ 1243.532131] loop5: detected capacity change from 0 to 121
[ 1243.541547] loop3: detected capacity change from 0 to 4097
[ 1243.550896] FAT-fs (loop5): bogus number of reserved sectors
[ 1243.552311] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1243.554941] loop7: detected capacity change from 0 to 4097
[ 1243.620732] loop5: detected capacity change from 0 to 121
[ 1243.637308] FAT-fs (loop5): bogus number of reserved sectors
[ 1243.638485] FAT-fs (loop5): Can't find a valid FAT filesystem
01:04:56 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:04:56 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0xc0189436, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:04:56 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(0x0, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:05:09 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x4b49, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x82100, 0x0)

01:05:09 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(0x0, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:05:09 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0xc020660b, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:05:09 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r0 = syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r1, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x101100, 0x80)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r2, 0x6, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)=[r0, r1, r3, 0xffffffffffffffff]}, 0x4)
signalfd4(r3, 0xfffffffffffffffd, 0x0, 0x80000)

01:05:09 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x800448d2, &(0x7f0000000000))

01:05:09 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:05:09 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
lgetxattr(&(0x7f00000002c0)='./file1\x00', &(0x7f0000000300)=@known='trusted.overlay.impure\x00', &(0x7f0000000340)=""/215, 0xd7)
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
syz_mount_image$nfs(&(0x7f0000000140), &(0x7f0000000180)='./file1\x00', 0x3f, 0x2, &(0x7f0000000240)=[{&(0x7f00000001c0)="f8d534190378688726124f5d4605ffd125bcb9f17c1f24bcdf55cdaaf4deceff4b7d", 0x22, 0xfff}, {&(0x7f0000000200)="813660ac74d085edda62ca09b704f913b53b255c9e7aeb3743306ed3a318610e2b91", 0x22}], 0x0, &(0x7f0000000280)={[{}, {'nfs\x00'}, {'\\'}, {']'}], [{@measure}, {@uid_eq={'uid', 0x3d, 0xee00}}]})
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

01:05:09 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xfeff, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

[ 1256.932242] loop5: detected capacity change from 0 to 127
[ 1256.943186] FAT-fs (loop5): bogus number of reserved sectors
[ 1256.944468] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1256.969259] loop5: detected capacity change from 0 to 127
[ 1256.973650] loop3: detected capacity change from 0 to 4097
[ 1256.979644] FAT-fs (loop5): bogus number of reserved sectors
[ 1256.981026] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1256.997060] loop7: detected capacity change from 0 to 4097
01:05:09 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xff0f, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

[ 1257.192444] loop5: detected capacity change from 0 to 127
[ 1257.207733] FAT-fs (loop5): bogus number of reserved sectors
[ 1257.209056] FAT-fs (loop5): Can't find a valid FAT filesystem
01:05:09 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x541b, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x82100, 0x0)

01:05:09 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(0x0, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:05:09 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:05:09 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x800448d3, &(0x7f0000000000))

01:05:09 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0xaaaad92, &(0x7f0000000180), 0x2281cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x2)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

01:05:10 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
fcntl$F_SET_FILE_RW_HINT(r0, 0x40e, &(0x7f0000000000)=0x4)
r1 = openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(r1, 0xc018937d, &(0x7f0000000040)=ANY=[@ANYBLOB="010100000102000018000000", @ANYRES32=<r2=>r0, @ANYBLOB="01000000000000002e2f66696c653000"])
accept4(r1, &(0x7f0000000180)=@l2tp6={0xa, 0x0, 0x0, @local}, &(0x7f0000000240)=0x80, 0x800)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$tun(r3, &(0x7f0000000100)={@void, @void, @arp=@generic={0x204, 0x17, 0x6, 0x4, 0x8, @broadcast, "255c4088", @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, "2bf7eef59970c825a0cae5c6fa7e96"}}, 0x27)
dup2(r2, r3)

01:05:10 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xfffe, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:05:10 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000001440), &(0x7f0000000080)='./file1\x00', 0x0, 0x4, &(0x7f00000013c0)=[{&(0x7f0000000140)="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", 0x1000, 0x1}, {&(0x7f0000001140)="0945929d9def139fa138bd22ea0c57075088d1e1bdaba15f09f4b5ec3e5b4eeb385e5bc2620c71cc17ef19940f81624dbbd0833fb1ac2617d85bc22ca5b333c2a786b8cf54eda5da6bf5a357ab09fc17963777bdcdb9a34a2739e4eaba2b35a869ed7116fef8165690923e042b387bfe7740b34bff1f7d390240c1bdd7b874b89823736252f3ff4cf7e4b342ec15569daf8b2d41bf4a5dd68272ebfffe78312d84cb5734baafcaf2a8e6d61418bed69f5333187282175e1b59abbbd13115537f82e0cab07f4b7be63c249ce02833e5477a0adc708b07751fd6df1af5e103c2037729a867fc996a77147ec03ef6cabe996e", 0xf1, 0x1c0}, {&(0x7f0000001480)="90b78e235c4de212a1a48e3e550c09c48a9dcc88c6a5021b9e594dcb3723b6d72d180a5b032863fa9be944195de3553ca51d0c57801d208b23581e1444ec9dafa9504bb43fd21bbcf77daef2d27ec7e62ae7d3d5735ae6212998d3644f8e5d4cbdd1ef434e40b2df704c8c3c037bcedc3282994c0bc2b68d28cb302c8efa86becd563621989f2a2c41217823e54e1dc2ae4beb27c9d11c60513db0ed05bd9a9a1e43d7f13caa76bbb2", 0xa9, 0x21}, {&(0x7f0000001300)="a77f8a2342b2ec442f5e153ff6e68cff28380ea3ef30d4a3e0d618e7327b9ffdb2089026dbe2a5389febe9821d7f6c188e878126709d8964a6935a12ea7e1024b8d57184cc0988d6708cab4b9f47a4f261102f180f5a36be916b91846ccdfe0897d8ec53c3f1f4493af68cb93254c2a9e7b99466757f2c8fc8bab559621714d0fe33dc48050b8968a2bd13b84eb21410983259b83edea13755babed0ab60ee895441b5ab7196b8e1", 0xa8, 0x80000000}], 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

[ 1257.424947] loop7: detected capacity change from 0 to 264192
[ 1257.431376] loop3: detected capacity change from 0 to 4097
01:05:10 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xe0000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

[ 1257.501364] loop7: detected capacity change from 0 to 4097
01:05:10 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = creat(&(0x7f0000000080)='./file0\x00', 0x38)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
perf_event_open$cgroup(&(0x7f0000000000)={0x4, 0x80, 0x7, 0x21, 0x2, 0x5, 0x0, 0x39, 0x10824, 0x0, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1, 0x1, 0x0, 0x4, 0x1, @perf_config_ext={0x5, 0x7ff}, 0x11014, 0x40, 0x8, 0x9, 0x101, 0x5, 0x800, 0x0, 0xfffffff7, 0x0, 0x38b}, r1, 0x1, r2, 0xc)

[ 1257.610958] loop5: detected capacity change from 0 to 1792
01:05:10 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x5421, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x82100, 0x0)

[ 1257.644681] FAT-fs (loop5): bogus number of reserved sectors
[ 1257.645697] FAT-fs (loop5): Can't find a valid FAT filesystem
01:05:10 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

[ 1258.162432] loop3: detected capacity change from 0 to 4097
01:05:25 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x731a, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

01:05:25 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397f2b1bb3b5af60a2cfa1d88f4635990e7ea4590cd1c26ffcfeb5981e2f5f1558f4e45e978698f08952a3e594ee6c1a86605588755fc4527afc1793b6c63638d0208e496694f79f37830bc408e96605f2e568c54d9f1e30f6374f3488d9f0f9b0070f66111ba2d4206ae6269480d3e69960603062d921a91ac0e515e74868f3db09350af5e10d56aebcb7c83910db96583300feb7d08f7e892d3ac8560fc8a0e56cc4abce95c9e64d528"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:05:25 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:05:25 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xe0ffff, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:05:25 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x5450, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x82100, 0x0)

01:05:25 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r0, &(0x7f0000000000)={0x1, @read_stored_link_key={{0xc0d, 0x7}, {@any, 0x70}}}, 0xb)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:05:25 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x800448d4, &(0x7f0000000000))

01:05:25 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000140), &(0x7f0000000080)='./file1\x00', 0x0, 0xaaaaaaaaaaaaaf4, &(0x7f0000000540)=[{&(0x7f0000000600)="aac1544b17b583e816211596bac6fe838412f19acd40678793141f00e3cd2d443b2dfb42704e569d0f61a4579d95e6d25f1b75cddabe29823b178d7b3a4fef7dc88999d7b21be2321774c383de507509259cc40000010000004457be7027d22d436944d220cf2ddefc8e2bae95fee1b71a0051942f84eadb853490b56c941b4035fd4eddad000f68", 0x17, 0x33}, {&(0x7f0000000180)="acf021c3ba6604c8bbedfca22c2c38533503602033fec5a5f30e7a636480573bdd73bfdbc60dd376a0d5c2423feedbd0c31ae2198bb9d10400659fe7496902baf8e5b09a03f45a047f43bdfaca03bbed3db3ad76dada258098ebe7eeb1480f515820d07d9c773ebe48bf387ef7d1a0e34496c71b350df7cd0246f32e30c7029e422071e0311e95c388cf20bb6f51e56cde53034e6db1138a74624f57bb547456ad9f9af4f86195f7fb9ebd20bd1311a8ccfd16cd6a5bb67908", 0xb9, 0x6}, {&(0x7f0000000480)="fa7c3c00010000664af5ecb8bafc000000000000000000000000a31a10e69825", 0x20, 0x48000000000000}, {&(0x7f0000000280)="8c8cf020df215b9b629a58c0165f224ee1c542274d2ea0b45c090800000000000000ba86180de73b3f12a4c4666aa77fb11326c0902216a5a595bf794753be6739fe96cbafc86be084a4131b334069cfa4dbd3c11e8b07c085ff551fdb3c6450ec6546723f537a491373babff1f966d52850f97e6a7b012a39d65e069fc2d8084ede05d406aae591f137379c158d1abb2c867a", 0x93, 0x3}, {&(0x7f0000000340)="7ae6d9f125ba0bd673c4cc324ef01c1303a0abd50c3fab9a2b1c602fb69a77b7a5bab6d494b25761799be03adaed5b6a0f0ef9200a1cab8802343b5a3d13aa69ae79386536714a823025d98c417d17c73b70936a5388b0dac631f46c8962a3ec966b34f5805c4bbf9ebd6c625b25cc74b3b1487f403bdf7f167a096bf58642f434d5f63281d36c", 0x87}, {&(0x7f00000004c0)="b37ab8f3d60ce85145d8009ab0196eda5afab95665f559672dae6fd7d8f96483cfec22fcacc22fde77bc815b69d1c26cb9510fb48eae4440539b44691884761807bc097fb6095be1739b721e74639552afdcda470fcae96e8362326fd534000dc31db09a", 0x64, 0x3}], 0x91c80, &(0x7f0000000240)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000102}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x22542, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)
r1 = ioctl$TUNGETDEVNETNS(r0, 0x54e3, 0x0)
fcntl$addseals(r1, 0x409, 0x5)

[ 1272.997629] loop7: detected capacity change from 0 to 4097
[ 1273.032935] loop5: detected capacity change from 0 to 28799
[ 1273.059115] FAT-fs (loop5): bogus number of reserved sectors
[ 1273.060566] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1273.101180] loop5: detected capacity change from 0 to 28799
[ 1273.106956] FAT-fs (loop5): bogus number of reserved sectors
[ 1273.108292] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1273.159075] loop3: detected capacity change from 0 to 4097
01:05:25 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
syz_io_uring_setup(0x5b4a, &(0x7f0000000140)={0x0, 0xafae, 0x8, 0x0, 0x6e, 0x0, r0}, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000200))
r2 = mmap$IORING_OFF_SQES(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1000000, 0x10010, 0xffffffffffffffff, 0x10000000)
r3 = openat$cdrom(0xffffffffffffff9c, &(0x7f0000000240), 0x20000, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000280)=@IORING_OP_WRITE_FIXED={0x5, 0x1, 0x4004, @fd=r3, 0xb5e9, 0x54fa, 0x5, 0x3, 0x0, {0x2}}, 0x7f)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r4, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

01:05:26 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x5451, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x82100, 0x0)

01:05:26 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x1000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

[ 1273.356260] loop7: detected capacity change from 0 to 4097
[ 1273.367154] loop5: detected capacity change from 0 to 32768
[ 1273.385427] FAT-fs (loop5): bogus number of reserved sectors
[ 1273.386822] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1273.412158] loop5: detected capacity change from 0 to 32768
[ 1273.422710] FAT-fs (loop5): bogus number of reserved sectors
[ 1273.423952] FAT-fs (loop5): Can't find a valid FAT filesystem
01:05:39 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:05:39 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x3, 0x0, r1, &(0x7f0000000140)=0x80, &(0x7f0000000180)=@sco}, 0x2)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

01:05:39 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r1 = syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000180)='./file1\x00', 0x7, 0x8, &(0x7f0000001680)=[{&(0x7f00000001c0)="f0f326120b1ae361609075d40a7e41e26512f853a95a86d680c99471e2514eb523916be1d58bdd0ce5e296bb5f799741242c1ef7d1ad7de1354bcf9c34d6d727e650a2a5f541d10e4981eae02ebd6c1902f956f9251ae78de01a0ec2273c303b36f3", 0x62, 0x100}, {&(0x7f0000000240)="b5471ec3356b8e2e3a53927f15a8f90de67fc4a2fb1ec0f543bd", 0x1a, 0x5}, {&(0x7f0000000280)="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", 0x1000, 0x73202c09}, {&(0x7f0000001280)="a868d9597788269a5f5e631e72d5606818387fecdf275460454520e6e468b3ac504b0f5a679b6336fe009efef971003697b9421ca073fd3716dc91c8af03cfd315ebd9166c8a09580d21b8", 0x4b, 0xffff}, {&(0x7f0000001300)="f5fbffadfd75103ce98e8e4b4e4f2028fbe4063d775101d01fa184949c9f0a318cad322dd74ed8f31a581b484a0101cd84d0a3c4c595292e7e4f1628906e3f3c4de8eda39a3ea62c321510708d7e5f5e04b56e1aa9a6d0e12dc0fd0c4aee7344b816b59c6aa7dcc53d5d7d32c3ece1d6587160cc44731db96433b00218c8127c18087b8a6481b547fc1dd28fdcb8848b3e9846f22ffc7e7b2e891f64060a2e3953f90e28c56b763117a7c7a97ca784241e680021c403cd84d77b86867da96fcaa242e943c68286d85561fa42b39e5c460dbbe9c9173d8d172f7ed64343a02446d5e795e9bc6ecc14945d87f28c2ed2ed2cf01f63", 0xf4, 0x3}, {&(0x7f0000001400)="c59f6c76b1a2d65fe4908506c1e454e28bf702e3ea6e0b372f17843dcaea88f56ca1a826ed8b091f7c0ccf3fdd5543bfb953edee6783a177513d48d1b7ad16db32d2f6d81e8d861ba61dfae4c6c40fd41422802e16a87e9a12a0bbda82acb1c092828ae8621d4226a8812a9e25636c48d91e508366e9e6f17bb8799970a3b3a3fddf47474dd1ed9d29e9147f600657cdbb1f5f6e91388ff137f7c129a43aebf18f190c0b5e48761f7923dae97ddc50a12031ce839085bebbcc31ad827e99733176f0f992e1097acfe667db21323a8816976786f179546e357e024541848d65e61a980d9749974c90265a", 0xea, 0x6}, {&(0x7f0000001500)="a0273e0f183cc20ce7d9731326c4c2fc44a5c379fba6ff5593ab8d4b8ae86f932d79c6ee3ac871be43f3a3799745bdfac476eec212c36b7c74386b22339e3445b7b0038e88ef3f1d7dabcd384f567a57739509", 0x53, 0x3}, {&(0x7f0000001580)="1081ba7deaf01eac0d44a996de28c7d6213c6e9ffe2e6af5742312a72c9788b1f8c3113bfd0ee2a2b2e44724809dfa83fabdc7e700e478288210131c14c8c9906cb4c9bffbeefee014cc1d74b162be1243fdb01c805d295e9cbc7926338c759ded5cb94b5b7e0e786a0f14b790c820f3bb163eda5deb0fa4133ba63a5a26740d73c0db17a6f463d1cfea526946135985958566ea8a2e607a030a81d0f89affb78c3ea160f5c2d21d98d6e2dd3fc023d9410db7dd24455ecf619208266587785d0a8abaee6e3fa3c8cae1e2fbc8c3", 0xce, 0x8}], 0x160cc, &(0x7f0000001740)={[{@iocharset={'iocharset', 0x3d, 'iso8859-6'}}, {@shortname_win95}], [{@fowner_eq={'fowner', 0x3d, 0xffffffffffffffff}}, {@smackfshat={'smackfshat', 0x3d, 'nfs\x00'}}]})
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_TIMEOUT(r0, 0xc018937a, &(0x7f00000017c0)={{0x1, 0x1, 0x18, <r3=>r1, {0x7}}, './file1\x00'})
statx(r3, &(0x7f0000001800)='./file1\x00', 0x6000, 0x80, &(0x7f0000001840))
pwrite64(r2, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$binfmt_aout(r4, &(0x7f0000001940)={{0x108, 0x33, 0xfa, 0x58, 0x67, 0x2, 0x2be, 0x800}, "0aeadc2d375da32eae8a8fa4bfc89a152a76e43aa7410c03db0396783029175ab163195061b59ba7c9fae53842baf28c6a2c5e2d42cb2571f67604ca2c0f8839422eee0ac836a1a723e34d106912f6268033a52ca0dd2e44abb0e4617bb3e80618b53f7047a3bc2779227c65f9d2299f522080ce7f9d098bf7bec8c84a4ed19526181f7327e03357de6ca1d0284e15e366c5c7f07ea9d95ceda500aea6fad733fa4379d96462362d98a21c44690df8614415ce96182a036591c1a05124b6b444d36f4ef46c611046ae72b791c73b9fbe59c095bc02503c9b", ['\x00', '\x00', '\x00', '\x00', '\x00']}, 0x5f8)

01:05:39 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397f2b1bb3b5af60a2cfa1d88f4635990e7ea4590cd1c26ffcfeb5981e2f5f1558f4e45e978698f08952a3e594ee6c1a86605588755fc4527afc1793b6c63638d0208e496694f79f37830bc408e96605f2e568c54d9f1e30f6374f3488d9f0f9b0070f66111ba2d4206ae6269480d3e69960603062d921a91ac0e515e74868f3db09350af5e10d56aebcb7c83910db96583300feb7d08f7e892d3ac8560fc8a0e56cc4abce95c9e64d52845e07957ed95"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:05:39 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x1010000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:05:39 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x5452, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x82100, 0x0)

01:05:39 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x800448f0, &(0x7f0000000000))

01:05:39 executing program 0:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
listen(0xffffffffffffffff, 0x1)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000240)={<r1=>0x0}, &(0x7f0000000280)=0xc)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f00000002c0))
r2 = getpgid(r0)
r3 = clone3(&(0x7f0000000380)={0x80000000, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x39}, &(0x7f0000000100)=""/8, 0x8, &(0x7f0000000140)=""/248, &(0x7f0000000340)=[r1, r2, r0], 0x3}, 0x58)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r5 = fork()
ptrace$peeksig(0x4209, r5, &(0x7f0000000000)={0xed05, 0x1, 0x8}, &(0x7f0000000040)=[{}, {}, {}, {}, {}, {}, {}, {}])
r6 = gettid()
ioctl$sock_SIOCGPGRP(r4, 0x8904, &(0x7f00000005c0)=<r7=>0x0)
r8 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000780), 0x200200, 0x0)
clone3(&(0x7f00000007c0)={0x20000, &(0x7f0000000400), &(0x7f0000000440), &(0x7f0000000480), {0xb}, &(0x7f00000004c0)=""/194, 0xc2, &(0x7f00000006c0)=""/177, &(0x7f0000000600)=[r5, r0, r2, 0xffffffffffffffff, r3, r3, r6, r7], 0x8, {r8}}, 0x58)
ioctl$sock_bt_hci(r4, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r9 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r9, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r9, 0xc0502100, &(0x7f0000000840))

[ 1286.896755] loop5: detected capacity change from 0 to 32896
[ 1286.946356] loop7: detected capacity change from 0 to 4097
[ 1286.959330] FAT-fs (loop5): bogus number of reserved sectors
[ 1286.960795] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1286.987233] loop3: detected capacity change from 0 to 4097
[ 1286.993417] loop5: detected capacity change from 0 to 32896
[ 1287.050815] FAT-fs (loop5): bogus number of reserved sectors
01:05:39 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x5460, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x82100, 0x0)

[ 1287.050840] FAT-fs (loop5): Can't find a valid FAT filesystem
01:05:39 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:05:39 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x2000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:05:39 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, 0x0, 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:05:39 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x80086601, &(0x7f0000000000))

01:05:39 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x4042, 0xd0)
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0xffffffffffffff7f, 0x1, &(0x7f0000000240)=[{&(0x7f0000000200)="0bc3ff6a8770cc51462f52a057544c", 0xf, 0x7f}], 0xc3049, &(0x7f0000000280)=ANY=[@ANYBLOB="73686f72746e616d653d6c6f7765722c73686f72746eea6d653d6c6f7765722c64656275672c73686f72746e616d653d77696e6e742c6e6f6e756d7461696c3d302c756e695f786c6174653d302c73696f72746e616d653d77696e6e742c757466383d302c736d61636b66736465663d2c736d61636b6673666c6f6f723d6e6673002c666f776e65723c", @ANYRESDEC=0xee01, @ANYBLOB=',subj_type=^(@,appraise,\x00'])
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

[ 1287.256616] loop5: detected capacity change from 0 to 65536
[ 1287.269555] FAT-fs (loop5): bogus number of reserved sectors
[ 1287.270952] FAT-fs (loop5): Can't find a valid FAT filesystem
01:05:40 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000040)={0x1f, 0x4, 0x3}, 0x6)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))

01:05:40 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x3000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

[ 1287.403327] loop3: detected capacity change from 0 to 4097
01:05:40 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000000180), 0x2200, 0x0)
mount_setattr(0xffffffffffffffff, &(0x7f0000000140)='./file1\x00', 0x8800, &(0x7f00000001c0)={0x80, 0x8, 0x0, {r2}}, 0x20)
pwrite64(r1, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_PROTOSUBVER(r3, 0xc0189373, &(0x7f0000000780)={{0x1, 0x1, 0x18, r1, {0x40}}, './file0\x00'})
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
pwritev(r3, &(0x7f0000000680)=[{&(0x7f0000000200)="884e94499672f920109d8432ffbd4039187fd171b1ed51d14b9de3d10b3ac47432565adc515553e33ec8ff9076adbadd8574da24bb0ecdb2aa4249f50d7a0ca251dbbe0169757eaa37b1c95a84952855e2dea985bc8238307f2a9d83dc6866feb8282052ca75062a6d720a3946a5ab174dd6aefb119189d10918107183a15e59f144feb2c5779a3b30538bf894795a3e5e758fa8b1a96be35034c4ead469e95f53af8996900ff7d78852171e528c1b7aaa176a839f643767513f1cc0e050fbfaa9678a3b59a2f30d8190b4c04782c1f607059917eb414094d8fd6d5f4c10205b5de43fc3249c", 0xe6}, {&(0x7f0000000300)="c94ee1caf904623a32bd7bd0e826d33ccc3bb7a6800999fc9954bba988ac90e3b805c746caebae5cdb324ee8c29024fb9faf1f1afeace8fa1fb84ed6bd036d149a553cc5aa0338583b75f2a09107b0b6ab83f2186b192a7cb064506c38d97eb4a7dbe989adc442c510a24105b269b5014f4e9dc32d0f0bf09b6fbe7a86a76c49cba4be8e1cb4ffba0edc2f675f7a8d8564e7e4b2419b7617c272d43a926e8e86a2b5a8bc1c315df41961cfbd423053c86c63f4d64f48b92abea82abf47a07b4bfd5e6e0ae26389e156afbc9040da9fe9549699bd82cd7db19307309b9b039cc1be2fb07e1720a9dc3d", 0xe9}, {&(0x7f0000000400)="96dc1060397e875abc76a99c87ccf1820788ca66cf869cfe2d153dfa1857801d4057450376954960e419439570e37a829b92936c4a47031638bcf31856167d5610a3be319ad82a78c1c477bdca24064ff3d4513792ff2ceb734483d87b9f6c5d0388720c8b5d1b644f1f0568bab7d361f8f8a118bff381931e12367365da94e279ed4b78c34d036ebb934c91595a38b4fed37a5386814e5b0466288ac10d20accb58f30a2d9db0f95391e65615eb2e84bb42b95684f45e916d1e20ebf1e72de2074518d0d097c322c9bf8339b21bca443bec680491c6e7", 0xd7}, {&(0x7f0000000500)="2b98d44465acf7771fa5e9813ad770e11bb202a97a31976b4712f48edd3e689a1a54608f18c1256c0db5d12fb351dd7011eedaeff8d171d10c64ec311300b4fbd41f2c307d9aedebd9fe2ab95b06e78c68ec84afe78f1518df981a94e7d67b5ec45b00f483dfba03e4d2890b27541233655ba2927020491d254fe65a20ad39b7cb7d56e10f478f87ad4fa4f24c3c0ccfa168183fc3093da4723c5a6c281568b25a382536", 0xa4}, {&(0x7f00000005c0)="cb356d53769a029cb80fd0c820831d8e09d0047d8a93cd5a69f028c3a842fb4422cf1a02a69c4d07ec6148430fe3deb0396d8d5f69635afc8be922cb078cbf8b6bf964da770cc9aa979bd04f425365bc85f9c0acba2170e60b8494dbf4207dadf1eeb7532f8915990a95c60792beeb5463c1eb49a710578c709c2a8e3110d9ac24f0abfad9401eda", 0x88}], 0x5, 0x3, 0x9)
ioctl$AUTOFS_DEV_IOCTL_VERSION(r2, 0xc0189371, &(0x7f0000000700)={{0x1, 0x1, 0x18, <r4=>r0}, './file1\x00'})
stat(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r5=>0x0})
setresuid(0x0, r5, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r4, 0xc018937b, &(0x7f0000000740)={{0x1, 0x1, 0x18, r2, {r5, 0xee00}}, './file1\x00'})

01:05:40 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8901, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x82100, 0x0)

01:05:40 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[ 1287.518184] loop5: detected capacity change from 0 to 98304
[ 1287.537866] FAT-fs (loop5): bogus number of reserved sectors
[ 1287.539135] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1287.564250] loop7: detected capacity change from 0 to 4097
[ 1287.566500] loop5: detected capacity change from 0 to 98304
[ 1287.582905] FAT-fs (loop5): bogus number of reserved sectors
[ 1287.584208] FAT-fs (loop5): Can't find a valid FAT filesystem
01:05:54 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, 0x0, 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:05:54 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r1, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)
recvmsg$unix(r0, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000140)=""/7, 0x7}, {&(0x7f0000000180)=""/155, 0x9b}, {&(0x7f0000000240)=""/235, 0xeb}, {&(0x7f0000000340)=""/200, 0xc8}, {&(0x7f0000000440)=""/33, 0x21}], 0x5, &(0x7f0000000500)=[@cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, <r2=>0xffffffffffffffff]}}], 0x158}, 0x40000122)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r2, 0x40106614, &(0x7f00000006c0))

01:05:54 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:05:54 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r0, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
r1 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000000)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
vmsplice(r1, &(0x7f0000000300)=[{&(0x7f0000000040)="3832d139307cc9f103d8fa568a689be2917100e255eb641e4ee2201cf93f", 0x1e}, {&(0x7f0000000240)="d6fac4ec04d2d43d240006699a7550d9d954e66d623878a117f63b67a7840dc9e5c9034637a280625f47a785f3478b24849b69edc35e7eba6af356c78fe6f1d31969f178ef399e4a2977b081548fc45b2a0eec95fff54fdc178e38f2686f13a9bbe7a26a12632b740b8ba39925cbc7e948298049e89c40bf889b515f7815508a0ea47091dc2040c2184331db1bb047604e7d45f629394046ac3c6ff27db07bfe9453cea6331c31", 0xa7}, {&(0x7f0000000180)="32bd69f1703a011414b268369125b63a5b6d5bd9104ae9449dfb797be68410e95afd093b50856920102d85ca1aa81ac59984b340b6b65fd8e9bb3cc7e1bd90ead33edf92fbb2ccf98ad9b9", 0x4b}, {&(0x7f0000000540)="e4f884fda95f5cb6e629f9951f308dc09f7b914ea879c085ee023f9dac968fd27b57b86b068086f219c3cbbbf1d2154f27721a5c456f1a41886090af9d5d9d0ad72681a3edb70cc4131d2e477f577961ec5b239dad930bf953a44e5d405bb238614981b10959726442ac9422007a71cc5047045884d398c3248fa12271f9e016a1234c352cbd9bf982acab38c9a0fd3e001b39d6e40070aa587b1eebc3d3cadf070e33c15d557572199b1b561f43c6d697598c9dfece60aab92199da6a7d75ecbacd575238dd298a0b5735255e1faa46c8fa63b961c6e108e13f55b878939cdb7e75aa6af9c88d409e", 0xe9}, {&(0x7f00000006c0)="0f6037c5595dcb8e0234d76d4cd376c0636d72b54aaf53fd392a9f3d0d2930d8288a798b92d5e60dda3fd1bc9ce73e715850613339d03f43f501d91821e09b64f4ff80f9ff374281ff64e0cefe4ab8bc6c15501b771788f47364a74c13c2900d798e6076052db1ea3ed0487ec5f67219ab9ea55c8209556381e33ae2f4189153301498d63967b21c2659334bb9291af65b781b88c28cafacdd929c7e8c27d6d8c5f25b3f5d48a93f7db7e11f94eb996f97485b673156e2c9bcd6d48a1449f40e24611df457b790875121b1a08005301b4b6e20de64cf4cf50c11771b915b8cab3d95f180785d667d1effc771b38ca0", 0xef}], 0x5, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x800448d5, &(0x7f0000000380)="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")
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:05:54 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x80087601, &(0x7f0000000000))

01:05:54 executing program 3:
openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x101042, 0x0)
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r1, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
fsetxattr$trusted_overlay_origin(r1, &(0x7f0000001440), &(0x7f0000001480), 0x2, 0x1)
writev(r0, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
preadv(r3, &(0x7f0000001400)=[{&(0x7f00000003c0)=""/4096, 0x1000}, {&(0x7f0000000240)=""/103, 0x67}, {&(0x7f00000002c0)=""/44, 0x2c}], 0x3, 0x200004, 0x1f)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000180)="bf", 0x1}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
r4 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r4, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
r5 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r5, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat(r5, &(0x7f00000014c0)='./file1\x00', 0x10181, 0xa)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000300)=ANY=[@ANYRES16=r0, @ANYRES64=r4, @ANYBLOB="fba6e59ceef91b361019871d1a2193eda4926cca42282bc6a56f5d173a89afaf2512aa4b26e7eb08f5e7b44f83082d2a88edc33e8f60efccc2faab88dd197828899e6f40b3a8c7dbb6e8ff97c361e99db69fd6aa", @ANYRES16=r0, @ANYRES64=r3, @ANYRESOCT=r3, @ANYRESDEC=r3, @ANYRES16])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r6, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

01:05:54 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x4000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:05:54 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8902, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x82100, 0x0)

[ 1301.553424] loop5: detected capacity change from 0 to 131072
[ 1301.568244] FAT-fs (loop5): bogus number of reserved sectors
[ 1301.568268] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1301.589934] loop5: detected capacity change from 0 to 131072
[ 1301.605277] loop7: detected capacity change from 0 to 4097
[ 1301.641181] FAT-fs (loop5): bogus number of reserved sectors
[ 1301.642434] FAT-fs (loop5): Can't find a valid FAT filesystem
01:05:54 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8903, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x82100, 0x0)

01:05:54 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:05:54 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x80108906, &(0x7f0000000000))

[ 1301.783247] loop3: detected capacity change from 0 to 4097
01:05:54 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x5000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:05:54 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

01:05:54 executing program 0:
clone3(&(0x7f0000000640)={0x16b363c00, &(0x7f00000000c0), 0x0, 0x0, {0xc}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448e1, &(0x7f0000000000))
r1 = openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)
pread64(r1, &(0x7f00000004c0)=""/241, 0xf1, 0x7)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r2, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
ioctl$sock_SIOCGIFCONF(r2, 0x8912, &(0x7f0000000040)=@req={0x28, &(0x7f0000000000)={'syzkaller1\x00', @ifru_addrs=@qipcrtr}})
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000100)={{0xcc, 0xc7, 0x4, 0x113, 0x2b9, 0x8, 0x3df, 0xffff3106}, "28e533b63de9bfe6142ef2d3b99dac4c4d0f85e40bc870c843fbdce8f51bf7d325de1dd6733663fc3266dfeb96f6897bf53cc33319c711a948c255f48f5cc8cf282e62a73469d79a7e3ed96899e1c386f44d15283095bc3a70266928d1c8a5d49cab337efda51eab92", ['\x00', '\x00', '\x00']}, 0x389)

[ 1301.886619] loop5: detected capacity change from 0 to 163840
01:05:54 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, 0x0, 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

[ 1301.895854] FAT-fs (loop5): bogus number of reserved sectors
[ 1301.896449] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1301.915509] loop5: detected capacity change from 0 to 163840
01:05:54 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x80108907, &(0x7f0000000000))

[ 1301.934954] FAT-fs (loop5): bogus number of reserved sectors
[ 1301.935526] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1301.986258] loop7: detected capacity change from 0 to 4097
01:05:54 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x6000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:05:54 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r0 = syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
read(r0, &(0x7f0000001400)=""/87, 0x57)
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r1, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)
pwritev(r1, &(0x7f0000001380)=[{&(0x7f0000000140)="cb2c85fea50d05a83845cbc7078c7587abb39ea131afd79280c36b9827ebfaa13cfedb9e3f8d6fdd4192be37f9230d9a9520b236acbe5cce469e388d8d3481db87890a1564f63491e5bfdb1763f48db8027ce3e1e1bbb90327b8d7f9c6c72caca66c9e4fc22bc40ac1d4a3dce39499cb7d4a256c7c3d2784f45aaef118", 0x7d}, {&(0x7f00000001c0)}, {&(0x7f0000000200)="a09d47bad425b4b344600ed54d83e4f1d6577f860ea6b2578e6f186ed74321164d2e16c44c5d35cea32b0221b06d6f693940e9bed5b9ce8ded9dd7b4bb4880ff7adc5738cad83546af5917fe822ea3f19ff3f32675da61a24807d5ab66703c91799d20bd3e743e758b80b30ac9baa8674af304aca31015f54d13af2cc151ebe3b4af76a94752687c5d59b1a0f459831d2583ae5dd65b6fe86a5a06af8477874d7504ac42be68973192816560c02f7028a61e843c67d12ed862c7d441da1dabe0a446f4b05aa4cdf1edc17d6a", 0xcc}, {&(0x7f0000000300)="1ebae912cf450ae404709d9aab87da6cd259", 0x12}, {&(0x7f0000000340)="8efa1d16d805e8174af535ff172c", 0xe}, {&(0x7f0000000380)="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", 0x1000}], 0x6, 0xf5, 0x9)

[ 1302.088359] loop3: detected capacity change from 0 to 4097
01:05:54 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x801c581f, &(0x7f0000000000))

01:05:54 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:06:10 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:06:10 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x4042, 0x51)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

01:06:10 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8904, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x82100, 0x0)

01:06:10 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0xc0045878, &(0x7f0000000000))

01:06:10 executing program 0:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
r2 = openat$sr(0xffffffffffffff9c, 0x0, 0x444100, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x210182, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
ioctl$sock_bt_hci(r3, 0x400448cc, &(0x7f0000000300)="3173f309765916055a0d1476326d79359afe8ff7af92b60a7f08c791e486683f3ed0365ab722a0b9b8f2b6edc7c278a4e9066b51552e89392c78ced4aa30b9ce07166c53eec33d13032e56c7c36b685ecbda96c53616314c22a0b03f8840d73bd01a97732c8ecf15206c3105eca0f4846e4cf468da2491f5dec8db26cb87bf5cb86acdcca0c1157573542a3dd60a8f2f785b6df103e0b215961404292322f06dff12045c3f0133ca425f1331ee67585bf2f094ce")
clone3(&(0x7f0000000280)={0x10200, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x36}, &(0x7f0000000100)=""/159, 0x9f, &(0x7f00000001c0)=""/112, &(0x7f0000000240)=[r0], 0x1, {r2}}, 0x58)

01:06:10 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

01:06:10 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x6050000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:06:10 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[ 1318.117162] loop3: detected capacity change from 0 to 4097
[ 1318.134578] loop5: detected capacity change from 0 to 197248
[ 1318.157811] FAT-fs (loop5): bogus number of reserved sectors
[ 1318.159082] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1318.163457] loop7: detected capacity change from 0 to 4097
[ 1318.197914] loop5: detected capacity change from 0 to 197248
[ 1318.200908] FAT-fs (loop5): bogus number of reserved sectors
[ 1318.201490] FAT-fs (loop5): Can't find a valid FAT filesystem
01:06:10 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r0 = syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r1, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat(r1, &(0x7f0000000200)='./file1\x00', 0x800, 0x30)
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
openat2(r0, &(0x7f0000000180)='./file1\x00', &(0x7f00000001c0)={0x80300, 0x1e4}, 0x18)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x3059c2, 0x0)
pwrite64(r2, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000240)={0x0, r3, 0x1000, 0x8000, 0x6, 0x7})

01:06:10 executing program 0:
clone3(&(0x7f0000000640)={0x1a136b700, &(0x7f0000000000)=<r0=>0xffffffffffffffff, 0x0, 0x0, {0xfffffffe}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_SIOCBRADDBR(r1, 0x89a0, &(0x7f0000000080)='veth0_virt_wifi\x00')
r2 = openat(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x200000, 0xa)
process_mrelease(r2, 0x0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(r1, &(0x7f0000000040)={0x1, @read_rssi={{0x1405, 0x2}, {0xc8}}}, 0x6)
r3 = fcntl$getown(0xffffffffffffffff, 0x9)
waitid(0x2, r3, &(0x7f0000000440), 0x20000000, &(0x7f00000004c0))
creat(&(0x7f00000002c0)='./file0/file0\x00', 0x0)
clone3(&(0x7f00000003c0)={0x200858a00, &(0x7f0000000100), &(0x7f0000000140), &(0x7f0000000380), {0x10003e}, &(0x7f00000001c0)=""/41, 0x29, &(0x7f0000000200)=""/122, &(0x7f0000000280), 0x0, {r2}}, 0x58)
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)
dup3(r0, r2, 0x80000)

01:06:11 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:06:11 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x7000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:06:11 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

[ 1318.333924] loop5: detected capacity change from 0 to 229376
[ 1318.345632] FAT-fs (loop5): bogus number of reserved sectors
[ 1318.346290] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1318.385229] loop5: detected capacity change from 0 to 229376
[ 1318.390527] FAT-fs (loop5): bogus number of reserved sectors
[ 1318.391162] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1318.417675] loop3: detected capacity change from 0 to 4097
01:06:25 executing program 7:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r1, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
io_cancel(0x0, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x1, 0x1, 0xffffffffffffffff, &(0x7f0000000440)="292f6f30be302a48cccc2c77db00637ca7cb834a1ac800c21783c05d3e11daa29062f10f950852969ac08d0721c8c8e0bb02903e124c4f7a98ebff492a0c49614b5a67a6da7c44b62b62b512acae3f67b25e4cd8b7bbef323992450e81941248eed9d6599bf7cda8355c0dec956393150e515aeb167291470590e6993b60beb2e8d49b3b717226d054628e5fdcc4e35a4acf6219f9f697265e8a48387a808c28a3f25b48ca9d4dad88357b9f241ba44ecc23efdf0f76d345a6", 0xb9, 0xcd, 0x0, 0x1, r1}, &(0x7f0000000540))
getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000680)={{{@in6=@mcast1}}, {{@in=@dev}, 0x0, @in6=@initdev}}, &(0x7f0000000780)=0xe8)
ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000002000)={0x1, 0x3617, 0x40d7, 0x8000, 0x1000, 0xbc9})
clock_gettime(0x0, &(0x7f0000003680)={<r2=>0x0, <r3=>0x0})
recvmmsg$unix(r0, &(0x7f0000003580)=[{{&(0x7f00000007c0), 0x6e, &(0x7f0000000940)=[{&(0x7f0000000840)=""/250, 0xfa}], 0x1}}, {{&(0x7f0000000980)=@abs, 0x6e, &(0x7f0000001f40)=[{&(0x7f0000000a00)=""/219, 0xdb}, {&(0x7f0000000b00)=""/111, 0x6f}, {&(0x7f0000000b80)=""/221, 0xdd}, {&(0x7f0000000c80)=""/233, 0xe9}, {&(0x7f0000000d80)=""/130, 0x82}, {&(0x7f0000000e40)=""/4096, 0x1000}, {&(0x7f0000001e40)=""/30, 0x1e}, {&(0x7f0000001e80)=""/161, 0xa1}], 0x8, &(0x7f0000003b00)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=<r4=>0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000003800743f008815038aa62761ca0001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=<r5=>0xffffffffffffffff, @ANYRES32], 0x98}}, {{0x0, 0x0, &(0x7f0000003280)=[{&(0x7f0000002080)=""/96, 0x60}, {&(0x7f0000002100)=""/166, 0xa6}, {&(0x7f00000021c0)=""/1, 0x1}, {&(0x7f0000002200)=""/56, 0x38}, {&(0x7f0000002240)=""/41, 0x29}, {&(0x7f0000002280)=""/4096, 0x1000}], 0x6, &(0x7f0000003300)=[@rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}], 0x58}}, {{&(0x7f0000003380), 0x6e, &(0x7f0000003480)=[{&(0x7f0000003400)=""/47, 0x2f}, {&(0x7f0000003440)=""/51, 0x33}], 0x2, &(0x7f00000034c0)=[@rights={{0x18, 0x1, 0x1, [<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff]}}, @cred={{0x1c}}, @cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x24, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, <r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff]}}], 0xc0}}], 0x4, 0x2001, &(0x7f00000036c0)={r2, r3+10000000})
syz_mount_image$vfat(&(0x7f0000000180), &(0x7f00000001c0)='\x00', 0x8, 0x5, &(0x7f0000000600)=[{&(0x7f0000000200)="e0eb6e2f9edeef67e3ecf900ee6e0c4c79dc0c4faa0d8f5dce774b0c9d943603f8a9433b7b7f3f8716f0fce951fea6ee1d4ae7e99fcaa59cd099f50a303bacaf0ad7158f08ecfb967ac7a5a6e121f4fa48e6fdf0d3344016f9f34943e25b0150d32bc35ebc8193b10d767b91dd7e9bde97e11c38ba44c39aa0bd370d891ebc876498c184f3b8c51434833c706436937a7171e3a9f749b19b317d6aab6b0f6967f0e970a7b9a2258abc13455aaaafe5cf5550a568399f8909711648bf14eef9c665b4c8a1a4e5842fea47992e4b57f8fd7caa7af12ca70dd5f4308027e6bedd5e361ee24eacb9a49eedb0378053ca69a0cd9772e2", 0xf4, 0x400}, {&(0x7f0000000300)="ff230dfe0fe31edbc97ee8a228f353c8935b3e1496db6e0a1590301d62944cd588c21b0c1afb7e14a5547178305fe170fb87c8136fceeb36aa7bbae2d81b723d63db0b0a1f7fa04c0b232fd30c6748fb8d5529059a1ff13c2143a3a99bdc41e6fb33d507d18a2580339aded849d4890af347d84b429544b70bab5db0521d557f659c593baa5661d82d630d79bc8f7acc5f1a2e10e2b32cdcb8ca5aa483722a43bb49df20079a0363bec87a9eb88497", 0xaf, 0x2}, {&(0x7f00000003c0)="39d792c31450e063eb4ad0569963baf49ebe3b4fedce12ca961b1b60417b327f71fb89a0685fd3a229b9566f69d58635d3bc2c48814052a93f7effd9166a9f7f1efa06a0d40106f1f4199a4e3a79da7fb5635a3c8d3980adaca5", 0x5a}, {&(0x7f0000003800)="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", 0x1d9, 0x3ff}, {&(0x7f0000003700)="9ed5ec9c43065f4dd1e0dbb82f2c1c6ec87afeabfd154ee767caffdb4739c120915ce846619ba4fe6aa38b1e42b955ed64ada4823fc29a9e6d5e5611c0634a90f64b52eee7c37fc25497ffd5f042f3862ce3b74ab8a6947e972354198b1488dd11293ee5c93d3a4ef0b75388afef6f91f5d791866813476a02100896df429d50787c46d2bce7072f0596cdf0e2d4d3605ca68a24ef7153720e54c6ae9235d987810999b505c66ea5090aaf4f7ab4bb3eb1769a692079d22f315ed924c2e0014f93cd359d43525787c6b86db198bf3345", 0xd0, 0x100000000}], 0x18c8025, &(0x7f0000003a00)=ANY=[@ANYBLOB="756e695f786c6174653d312c73686f72746e616d653d6d697865642c73686f72746e616d653d6c6f7765722c73686f72746e616d653d6c6f7765722c6673757569643d66313035013930382d386466642d313b39352d636164f12d35623800386138622c646f6e745f61707072616973652c6f626a5f747970653d002c6d61736b3d4d41595f524541442c657569643d", @ANYRESDEC=0x0, @ANYBLOB=',fowner>', @ANYRESDEC=0xee00, @ANYBLOB=',uid>', @ANYRESDEC=r4, @ANYBLOB=',mask=MAY_EXEC,seclabel,dont_easure,\x00'])
close_range(r5, r0, 0x0)
r10 = accept(r6, &(0x7f0000000580)=@in={0x2, 0x0, @initdev}, &(0x7f0000001fc0)=0x80)
write$binfmt_aout(r10, &(0x7f0000003bc0)={{0xcc, 0x7, 0x1f, 0x3b9, 0x1b3, 0x800, 0x22e, 0x952d}, "2b28d69610ccfc766ecddf724248fe18fa6f168ef4e5c3fbb8fa7852bbae27283f998184f5c900b53a37b9fc99b83676384b1501d4faa2fea4bde75b4c32ebf1d9678a3f3a39922dc64fd9069e6f7478e3b8799ec23b940e8c9f38483d2ea7e5d42a14638e71e1e5363217bb7927a3ce11ddfccb03cdab7b2d5081580d845e49ec0a78bec04478666e761a0ee95876ac778aaeb20ac56073eb21e5dd374907ab", ['\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00', '\x00']}, 0xac0)
r11 = syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r12 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
io_uring_register$IORING_REGISTER_FILES_UPDATE(r9, 0x6, &(0x7f0000004680)={0x1, 0x0, &(0x7f0000002040)=[0xffffffffffffffff]}, 0x1)
openat(r11, &(0x7f0000000140)='./file1\x00', 0x62540, 0xc8)
pwrite64(r12, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)
sendfile(r8, r7, &(0x7f00000046c0)=0x2, 0x0)

01:06:25 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0xc0045878, &(0x7f0000000000))

01:06:25 executing program 3:
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r0, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat(0xffffffffffffffff, &(0x7f0000000100)='./file1\x00', 0x801c0, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r1, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

01:06:25 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:06:25 executing program 0:
clone3(&(0x7f0000000640)={0x233b72f00, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x1400cd94f, &(0x7f0000000000)="533598f8a78c26c6f90cddc2cc7d709956790693a4b6b2d5cc")
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:06:25 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x7050000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:06:25 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397f2b1bb3b5af60a2cfa1d88f4635990e7ea4590cd1c26ffcfeb5981e2f5f1558f4e45e978698f08952a3e594ee6c1a86605588755fc4527afc1793b6c63638d0208e496694f79f37830bc408e96605f2e568c54d9f1e30f6374f3488d9f0f9b0070f66111ba2d4206ae6269480d3e69960603062d921a91ac0e515e74868f3db09350af5e10d56aebcb7c83910db96583300feb7d08f7e892d3ac8560fc8a0e56cc4abce95c9e64d52845e07957ed95f516f043"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:06:25 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8906, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x82100, 0x0)

[ 1332.810415] loop5: detected capacity change from 0 to 230016
[ 1332.842165] FAT-fs (loop5): bogus number of reserved sectors
[ 1332.842852] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1332.872479] loop3: detected capacity change from 0 to 4097
[ 1332.873789] EXT4-fs warning (device sda): verify_group_input:137: Cannot add at group 1 (only 16 groups)
01:06:25 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0xc0189436, &(0x7f0000000000))

[ 1332.913087] loop5: detected capacity change from 0 to 230016
[ 1332.915375] FAT-fs (loop5): bogus number of reserved sectors
[ 1332.916127] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1332.937466] loop7: detected capacity change from 0 to 264192
[ 1332.956345] loop7: detected capacity change from 0 to 4097
01:06:25 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:06:25 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x8000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:06:25 executing program 0:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
clone3(&(0x7f0000000340)={0x2000, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0xc}, &(0x7f0000000100)=""/216, 0xd8, &(0x7f0000000200)=""/252, &(0x7f0000000300)=[r0, r0], 0x2}, 0x58)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

[ 1333.050433] loop5: detected capacity change from 0 to 262144
[ 1333.055480] FAT-fs (loop5): bogus number of reserved sectors
[ 1333.056131] FAT-fs (loop5): Can't find a valid FAT filesystem
01:06:40 executing program 0:
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff})
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0x58)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:06:40 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8907, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x82100, 0x0)

01:06:40 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="010d2019aaaaaa120600ef0600000109000100ff0ff54dfe6ac43259546da8a69fda8e4ed6441285aab5a6687554d65b839397b80cfea76117788cb5d0e3a3d2ee818a9d31dc5d4be0d8d6ac134f905d543d80afbaa14d84b196d75991cb63c7317ed0346494f7bb93fb6ef46b0b3cb586b6d82647ea87d6187f1fa2ce92aa1542c1f0538d2b50bd59d583a7d2fae1e2b033a7e85d39396ce81273000000000000000000000000000000c1a6a316e8aff3505d4397f2b1bb3b5af60a2cfa1d88f4635990e7ea4590cd1c26ffcfeb5981e2f5f1558f4e45e978698f08952a3e594ee6c1a86605588755fc4527afc1793b6c63638d0208e496694f79f37830bc408e96605f2e568c54d9f1e30f6374f3488d9f0f9b0070f66111ba2d4206ae6269480d3e69960603062d921a91ac0e515e74868f3db09350af5e10d56aebcb7c83910db96583300feb7d08f7e892d3ac8560fc8a0e56cc4abce95c9e64d52845e07957ed95f516f04350"], 0x1d)
openat$sr(0xffffffffffffff9c, 0x0, 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:06:40 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:06:40 executing program 3:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r0 = syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
openat(r0, &(0x7f0000000140)='./file1\x00', 0x4002, 0x8)
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
pwrite64(r1, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)

01:06:40 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x9000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:06:40 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0xc020660b, &(0x7f0000000000))

01:06:40 executing program 7:
r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r0, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
sendmsg$IPVS_CMD_GET_DAEMON(r0, &(0x7f0000000200)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000180)={0x24, 0x0, 0x200, 0x70bd28, 0x25dfdbfd, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x200}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x7ff}]}, 0x24}, 0x1, 0x0, 0x0, 0x8044}, 0x20000081)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
ioctl$KDFONTOP_COPY(r0, 0x4b72, &(0x7f0000000640)={0x3, 0x1, 0x13, 0x15, 0x84, &(0x7f0000000240)})
syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
r2 = geteuid()
stat(&(0x7f0000000180)='./file0\x00', &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, <r3=>0x0})
setresuid(0x0, r3, 0x0)
mount$9p_tcp(&(0x7f0000000680), &(0x7f00000006c0)='./file1\x00', &(0x7f0000000700), 0x20800, &(0x7f0000000740)={'trans=tcp,', {'port', 0x3d, 0x4e22}, 0x2c, {[{@mmap}], [{@euid_gt}, {@fsname={'fsname', 0x3d, '}!*/'}}, {@fowner_eq={'fowner', 0x3d, r2}}, {@smackfshat={'smackfshat', 0x3d, '-\xb4%\xd5'}}, {@fsmagic={'fsmagic', 0x3d, 0x37}}, {@euid_eq={'euid', 0x3d, r3}}]}})
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r1, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

[ 1347.713974] loop5: detected capacity change from 0 to 264192
[ 1347.740022] FAT-fs (loop5): bogus number of reserved sectors
[ 1347.740684] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1347.774636] loop5: detected capacity change from 0 to 264192
[ 1347.778381] loop7: detected capacity change from 0 to 4097
[ 1347.782976] FAT-fs (loop5): bogus number of reserved sectors
[ 1347.784179] FAT-fs (loop5): Can't find a valid FAT filesystem
[ 1347.799956] loop3: detected capacity change from 0 to 4097
01:06:40 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, 0x0, 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

01:06:40 executing program 5:
syz_mount_image$msdos(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0xa000000, 0x0, &(0x7f0000000280), 0x0, &(0x7f0000000300)={[{@fat=@dmask}]})

01:06:40 executing program 6:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0), 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x8912, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x82100, 0x0)

01:06:40 executing program 7:
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x81cc0, &(0x7f0000000180)=ANY=[])
r0 = syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
mkdirat(r0, &(0x7f0000000180)='./file1\x00', 0x80)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
write$P9_RREADLINK(0xffffffffffffffff, &(0x7f0000000140)={0x10, 0x17, 0x1, {0x7, './file1'}}, 0x10)
openat(r0, &(0x7f00000001c0)='./file1\x00', 0x0, 0x28)
syz_io_uring_setup(0x1, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f0000ffd000/0x2000)=nil, 0x0, 0x0)
pwrite64(r1, &(0x7f0000000000)='y', 0xfffffe5f, 0x0)

01:06:40 executing program 4:
r0 = clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r1=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r1, 0x5, &(0x7f0000000040)={0x2, 0x2, 0x9, 0xd690, r0})
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r1)
ioctl$sock_bt_hci(r2, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, &(0x7f0000000080), 0x82100, 0x0)
pipe2(&(0x7f00000001c0), 0x4400)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)

01:06:40 executing program 3:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x101042, 0x0)
r1 = syz_mount_image$nfs(&(0x7f0000000040), &(0x7f0000000080)='./file1\x00', 0x0, 0x0, &(0x7f0000000b80), 0x5dda4ed9d0055fdd, &(0x7f0000000180)=ANY=[])
r2 = syz_mount_image$nfs(0x0, 0x0, 0x0, 0x1, &(0x7f00000000c0)=[{0x0, 0x0, 0x400000101}], 0x0, 0x0)
r3 = signalfd4(r2, &(0x7f0000000200)={[0x8]}, 0x8, 0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000001ac0)=@IORING_OP_ASYNC_CANCEL={0xe, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x7fff)
getsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f0000000240)={{{@in=@remote, @in=@multicast2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in6=@empty}, 0x0, @in=@local}}, &(0x7f0000000340)=0xe8)
r5 = geteuid()
mount$9p_fd(0x0, &(0x7f0000000180)='./file1\x00', &(0x7f00000001c0), 0x800000, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[{@access_uid={'access', 0x3d, r4}}], [{@fsuuid={'fsuuid', 0x3d, {[0x66, 0x66, 0x66, 0x39, 0x34, 0x33, 0x30, 0x35], 0x2d, [0x66, 0x38, 0x64, 0x64], 0x2d, [0x36, 0x38, 0x64, 0x34], 0x2d, [0x38, 0x37, 0x62, 0x63], 0x2d, [0x0, 0x31, 0x63, 0x63, 0x63, 0x66, 0x63, 0x65]}}}, {@smackfsdef={'smackfsdef', 0x3d, 'nfs\x00'}}, {@mask={'mask', 0x3d, 'MAY_EXEC'}}, {@smackfshat={'smackfshat', 0x3d, '(}:'}}, {@obj_user={'obj_user', 0x3d, '}{'}}, {@dont_hash}, {@obj_user={'obj_user', 0x3d, '{['}}, {@fowner_gt={'fowner>', r5}}, {@obj_user={'obj_user', 0x3d, '('}}]}})
r6 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r6, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
ioctl$EXT4_IOC_GETSTATE(r1, 0x40046629, &(0x7f0000001b40))
pwritev(r6, &(0x7f0000001a40)=[{&(0x7f0000000480)="6a7838d0e40adaf0bdf8bb764a2d8a99d461fbc2db82b11b097746a455361f14933ee0dc8148948c834cd4eec7fef51f54aef1df2636aa232732f2ec8fe7acbf32b41a789e52bf32cb44caa969f2c2f53a9ca240b5df6841e9d8fea2da64e529030d4a76aaa796bd76e5d25724a86ef4367297381a905846d3faac8d9cb3c202f8ed0a890e2359ac0eb8d3d281e7bff84f38b25e3b7112efdae6e7dc28b2bfe1c208109c63d3e35643052b69383ced9c98b0de2cef15", 0xb6}, {&(0x7f0000000540)="7a9b4f0b51cc8926761466c99000ea15d5197b424dcc25fdbec2e7960468e207aa703ce7fe6a3a388672a693440ac8c98f5d5867ae0cfc3520e2f89555fb61192166566e15d16feceeaac196cafd9d6f64f0e056003a5410e5c29489cb8dd6887b86841c8fcfbf248a70a9be4dcef19c7f9d4547b9999ec17d770aef1bbaf6ff12c1d64da48a3c54891c1b903c6711d90919f7d51aea95792d08ce83c03bde7fa19b7360e84291d622802b44c4fd66c46b5e32d5276985ee7aacef6851151201b8a1e86815e643325fad16327ea76f172b47a07175a5bc25a515dab497789e8f7a80ee7c37e8def5f4d3ce292c772e", 0xef}, {&(0x7f0000000640)="ee0be42ed57e3dc957b2682e493ad85e99107a9e3dcea7f8fd94c86996a63e0d8a5f788f7799bca7bf831e8715d6f97cc6cb6a4e973bc49146157213fac2419e8e5b0bc0c48bc0a96b77e3527d1fe669948d090c12b975d4e9a4ee345b701d262b59d41b962090408ee48750ba6bf641851717537bb4ec7b48cbc4333b8bff5995d24d38fab4bed02f1e945c78a9dbf6e09b969e849a869f0f6cf0d677bc83b40c71c8313661bc50a0a0f98794eada58b2f50ed1550db1feecd95db1f9d63b18e6a1eb8116f3d2e45badf5df06dd0b0fb468f43cfcc3ce57", 0xd8}, {&(0x7f0000000740)="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", 0x1000}, {&(0x7f0000001740)="0ccf31404328e69835ddfcdf067cb7f02b2d58d49e206687", 0x18}, {&(0x7f0000001780)="1386ae63ee00531a4412387fe64e7bda673b93299de9da84a649220f88476ba7b5894b1854130df010a22780dd43e71912d01526912f90c227b5712648bcda8255581454bee21dd72f9f9a4b04bfb7a31864a4978ef73ea4ca964e6cfc1e48caf37e3cb3e6a6c684a5fba8cdcb56ead7d0f9270b4eccade11b32f8d96341f5246904d732422b9483f083f5b36a86de48f722c3e8d9ce3223", 0x98}, {&(0x7f0000001840)="31d259cc0957618c48ee76b835bf7c6c7aa9f7b846be88bc3b6e1b4134fd2941ffb1ab2dd8b9c138985865240de31439df7309d6766c1ea56f62625c3e74f8cf589e1ac46c90c2fb8b37706ebbf28b2c6ef173383fbd825be470ff8b0e6583bbf6e4666c13eb6f0f97e27a65e6e854cdcd40d8e51b625400184922df0b58fabd3e42e5a6283fc86e319e80cf044dd9fa7bfcc0610dcb4313ce85edecbd28bc4a11cb3173493839b3149c2ce3ee6f6ef3724f73d9a0c62aef28f67abf0701b16ed39557fdc49762be51a019a9793724b978e7c5e9b3e44c79da2eef8ecfdf9bcff5a19c7fe8b1", 0xe6}, {&(0x7f0000001940)="f5bce11baf6b8a89c83d7275b3d45a93b0eaf10be8d386d465cfa3317eb95fec421de7793cfd6d23bd916b25e5bc195423b9eee5ad285e30d1fe50408de1f5277715659d3161df2063d65cb608f4ae4c2946e899c3bcc3cc61475a74fa11cbc6b6c45a7d27442db540b6c4ac81e7c78b6fed943d13f03215701a31623771d35d1c3e8cdcaa19a7f4566758521586156e932335935237eef67e767e1d15c987164b7bb6754010e33f8582ece2b8cf2dd8428bf49b79ac6a6927a01b063623e02bda551e2d0050a2e347a82e524fb4f1a43fca84b88d", 0xd5}], 0x8, 0x8, 0x767)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x4042, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x180, 0x21)
pwrite64(r7, &(0x7f0000000000)='y', 0xfffffe5f, 0x4)
syz_io_uring_setup(0x46ac, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100)=<r8=>0x0, &(0x7f0000000140)=<r9=>0x0)
syz_io_uring_submit(r8, r9, &(0x7f0000000040)=@IORING_OP_MADVISE={0x19, 0x0, 0x0, 0x0, 0x0, &(0x7f0000ffe000/0x2000)=nil, 0x2000}, 0x0)
syz_io_uring_submit(0x0, r9, &(0x7f0000001b00)=@IORING_OP_RECV=@use_registered_buffer={0x1b, 0x4, 0x0, r0, 0x0, 0x0, 0x0, 0x1, 0x1, {0x2}}, 0x5)

[ 1347.974479] loop5: detected capacity change from 0 to 264192
01:06:40 executing program 2:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r1 = fcntl$getown(0xffffffffffffffff, 0x9)
waitid(0x2, r1, &(0x7f0000000440), 0x4, &(0x7f00000004c0))
r2 = fcntl$getown(0xffffffffffffffff, 0x9)
waitid(0x2, r2, &(0x7f0000000440), 0x4, &(0x7f00000004c0))
r3 = fcntl$getown(0xffffffffffffffff, 0x9)
waitid(0x2, r3, &(0x7f0000000440), 0x4, &(0x7f00000004c0))
fcntl$getownex(r0, 0x10, &(0x7f0000000300)={0x0, <r4=>0x0})
r5 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000380)='/sys/block/loop7', 0x40, 0x195)
clone3(&(0x7f00000003c0)={0x140010800, &(0x7f0000000000), &(0x7f0000000040), &(0x7f0000000080), {0x14}, &(0x7f0000000100)=""/229, 0xe5, &(0x7f0000000200)=""/253, &(0x7f0000000340)=[r1, r2, r3, r4], 0x4, {r5}}, 0x58)
r6 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r6, 0x400448e1, &(0x7f0000000000))

[ 1347.984971] loop7: detected capacity change from 0 to 4097
[ 1347.987840] FAT-fs (loop5): bogus number of reserved sectors
[ 1347.989089] FAT-fs (loop5): Can't find a valid FAT filesystem
01:06:40 executing program 0:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fdatasync(r0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r2 = syz_mount_image$ext4(&(0x7f0000000100)='ext3\x00', &(0x7f0000000140)='./file0\x00', 0x1, 0x6, &(0x7f0000000500)=[{&(0x7f0000000180)="39a7900d0d48d3cb7b14c7634b2e54f2237d357a58714a9057ec6b0d2cf8d9729c6b91ffaa5b1eff23bfa2d389ebfbbe8dff570495d2d3f210045843c8b50787f4ec3089c4ceff5eb2a3baf1891b9b732bcbda62117971156fbe42e0d1829c0cd23e49f01e38dc9e6d916067195dc8e635986d158bea78d831945b72a81093ff5bbda30d5762624dc54587bb14c2df8d0950361ff411a842cae8bfd68c19b4c4f88b285d10450a60fe13a4ae230f542856bbbad3cbe01875bcfb966e746a6b78487e9360a5692f92e02a7ca4a6ae7e4c54bb97b34afdf263", 0xd8}, {&(0x7f0000000280)="e8733f4a6355c2f1bad496d947ec12527811da6c575decdd89f010b8f7484dd55e5fe770bd1e8b18680129dfb8c880c5bd15977f50cc40365f7e02fb254d5c44ac9a9c220e99e286e513fb7a47325964a907e3c8b993b6a6f2c2c299b25a031a8d72e327c89815ae317dac867618c7acde2d657548b0b9646aa1cd1b1f86a3df809f6f1d3f18b8885177668e4765cac0b164b138", 0x94, 0x4}, {&(0x7f0000000340)="ab760162b2514fb85143c7", 0xb, 0x3}, {&(0x7f00000006c0)="6fd3c00985c0d3582ce4aa9d78187a1fb4bb4e0654035d13e1c18e19dc2061c66a31cf6699c5522c71010ac25279a9f3376a61373d66dacf8f7caa567264692cd7e6fa8be58adf95c8c2c44a36b4ade7f4a1d64549e342a8a97aee467d7e8bc6d167a7cb55b039280f989b9cedb87b5f956ee17fcb96aecac837d12270c82e62af20e26f5ae825980d21cc00e6822c44bde75732a4aa4f440da10e558ea123d3c02c8459019f1e65dc45176c0c546613fed17af814470598f306690183de5f3fcbc95ab496e508c6483e2efcd9cadb17cb32a0e586bd7382918385e07e6931674eda9603fed5e975b06249df3de373ba3f3e3d5d1cf6b1e341e3ad67f0eede3561fc204051a6bce7159ad98907de81469e765ab4f6b64a97262b435c413209043b502e7ad12f656f8d53d6fed71f013248073da1a4e3b571644da07754b2e1c251005197d0aa7c65ba0754dbebced6113c6be65649899737f82a108990be70c1a9d32fe0957f0236b952bcb92e3d5517df862c9f567e0d496e1af999af91679f6fe996373b856a79abe0ac8d1e0736a3cd1b982aedee49cb013db3ac2b6226d3f33b33aced3b5e994200046d15d5b0131d5414f8984b037327cdffec02e59c5226514a8bd2809e6384d18f5a113cd5a78ca127b99c07a2275261a62f25b883a49890f0b57d060d40c3c7e204e3798e7ec3928731a021e4835837475cdab82ba614a4e74441e4af449ae8d5702989a039387c8a9223786e54fcc3cb56368d549a0e4a55881a6bfefa518b95e5295c5290a81bd1cde9ef6e7e2715a44e64666666fd09b8a253ddc97a1fa87eec830029e3250451a04f22ed434c330bdb1969b745e5fd746b171ce2c31ca2c888a20bde247df8d984e3f293e4f7486b99da9003bf48afecc664a9aa7f4b79dd4b1359859e09d121d49e1555f9f555361ef288330e8ac8a77db4cc84118dc688ea60d84a1a75c9807d902fe30713314682eba09c827bc41f69a8d274120cc269eda47e4531c108d01522804b679a56f30022409e85c76e1082a1c19fb0481e618cb152fd408cf0c2955fcd4a1be1d21d71a5074d4eaa47eb88d0be87c0c870a354b140cb29788f9cfc8b477da24a03e9594e88c86c02923121772b3fb6922ac0a52012a520cdae30db458eee907dd66c144e5ac3a06b3e1ed0a3d3651fe071f4e231d821a6a53b66d59904c10b5dcd0f6edb61358adf4544a2460b0903de26bd12b99baf55bc3fb26a2161b409ef60fe09bbac101975ab72abb349612137ce4742b8dcc34cc7865091a91a1a0ecdebf031fef41bd69e5a68f27e1b7b10014a3122edc99a7079701ef0074c047c3b9d4f19a8d19af3eea5aa16fd92669d59d0ea74bf40b87b08a76476e8b61ce32c065c197e0b1db41b583f0c9b8cf9f64847e4120758e46ba06099fd71eb8ca1eefbcb8defd825f17cc09db0d0bd678d1ce63f3247561a6aa3bf4084d4d332af8ec85ca63a4e93f27bc21b6f7d2aab0274da5dfb952430550d2a4ccd281a5291173959e55ea3b73db0bd63aee153cfb25760da4f8edcd98732f270bef28757bd5628cecf9a5c7f354b8c7fa8ba49485bf3333e39f87c9b6d076ad8671bb56006c7aa7cf4a00e36bea011c7cdd6205c0594854527660d3cb83446795c9a22c78936db1caba91f43c1557f29a46f73953ab74bd8733127d740daf0fab7146c5fc8430c254b8ba40f7f6deedc360de90f201e0426f22486f517ecc8298d0991775ee5c56ac505c300002af46ec91f9235675c0a51707204aa26853d2cde21f185ef4c7f65d69a3b676f3347de4ecaf5fc196776e52c653af39bbafd3d2de0b4c57bbe62692bd3e3d8962fc329e95649e63e71f7b501247f8055fa4cd83defc992455868db803c34a9f7c41dacee8ec7cb9ab079c60b385be4442e7352c37b2c6fb18575d18056dc2b84cf1e7b417d79481f2efa7d7f0f6586f7c5e8890bef37ec935fdd8c8cc1c1e89d00388b50935a6cf330874f9d06452e036cd0ed0d5bc5b0d9dc009a94822aada7f753161c30ff42a8fb2bbd4d84cac6e8fcbc54c2a8307ef208c6bab3d566b2b7861f9341c31e6f3dee011fdfe63afacbbf1f58fe98c2f2ff811d0ee19e34a06bc35f74ddd76bb2ae2c2d0822a1c810c7877b8617e339a102524d3b50658eda4980ee2faaf99c01873a7da1539f34ace0e05238e59ace7238b7b7908efd002de14064143bc046521f4ba9d7296b8b5fe03e9339119f722c1344ce11340d41339bad3a5873c9e8bfda8c3c7ae3d921a04a585d1a1ed91a68b9967b06b6e35e4c6104cb242381e3ba8b98c4a819d67147cf430fa35015af28d6e88ba0b7cea35801bae05707359a39606ebdd922b0f116f5c74c05b36ae6ec842d8a6dad40be83dfc0d07fcf612b77083ab75028715bb1e09a671208a487bd99d1c9fa57aa030011757b650e0bf18b722646ffb22f71d4b9215f87aef6242437e76af5bfee1df89add86ec2f1ff4c78684c64474eedaedd5b13cbc0e009ff5e88949d9b141e4896647b01ff58a7873584e2ac16d773ccfb5397aa54317586445945fc82cf7aeb319cebd8945ceaaef913cdda9b414f3181aaa6af21dcc37a438e4b66edced6b8c8ad5ac5c58a3d5da891d963f8338b867b9d9d91879654fd80c59f213141e4091d39236abe414d534cf307ca86cf0d6f9075e42f804d8475e78ed01ef7bfcae0777926df8f99afbee9ace9d8cc5364ef8534d931e47d0c7e092c8493d16565ae9da12743a947b36819dfef396a5092502b2531394fbfcd1dcfc7e0c37a6059cdf81fe16a89081eda7eb944e490abd30fbc5fafe865446f785ea4fb3d3c174170ed5f1adaf1a09621755be3607fc051d20656bca9448f4d0cda3871e5bc79e9c82e428c859ec0e4347f01447975d7b07cd86229c72c826096b7c1e09de97d32af455d5ccbc696186955246b33faf67f279723927bb2108c0a970ae4abe47e9b55edc791e47c9887ee5d165ecd810a4fd3314055bc4409244d82cd659e6a4111301e8a70884121566d71289fa46b249ca207226ca1b46b3870deb86c00aa56d1eb8396c727db94a2b66aa22c42a5b075b8f460acc7e986cc60e3369dfd19a066aeaa58da507e82f90a16dce422d1638f6a442382d9314aee3ef171904aa79035687077d773716deb65d74c126250e184c6c2390a167bd40a9c38f77350617ad1531b6a65205bcef8057f3a729d583b38a0cd621f7611a00f5e744df2ce448ba89fde136ea99f6746cd9085ad847cc22507c1d4c3ad0fd74ccdc19ba0e9e41617b19420187ab7eb9b27b92c21ebc0d08a8e316b55c7bb28d86be7dbc3c722ecc5f8d56f92657db15cf472d37f3bfad22d78a0f18352d48687e676f1a3e9e1af52e637bc425514fb9069d275797c65ee1e0c93a634d4c9b6b79ab6b7251263e60fde4ef2faf10e9f0a2184ac930751f98863862a35f904af0ef634b6091a118c794e564f36725226e474f2cc9a86209526e24c37fa61e6c37089cfb60e1564c56c9ca3678e411a7e9e3b31f93c1719a50fd5de549767b105d3c2f4a76b1a221bc20c4ff90899b01b92e44922d04fa3d66a6687f49c499d584d0121f3de5402bdd9d651f4b5c8bdc508193e53875d1ed6ebc3b50f4cae596c750695714927f4c6901d17a33f5ca52eb1cb8716804185c725d41134088dcf1753e9dcb4595e03025167dd5c365778415a5db7db4c438784becc5f9218e6f4cabe273cf4c92ba5e49a5bbb2d772223b8bb06e7bb6b19c1a21c2b4861737ed78582582bc30352e9988d5369e071fb7ad2200cbf21eb2008d30da6f1e17ebd018aa9912c79588775fd4f662b281eb2819c8d5c0c93738a14615fba8ebc0b7a8b86746732685b04c741d5356cccb03b934d20f1a25f5a6949f16773bf001932ac42ef7cf3ae09d66dfb90836ca58c72fc63bc3e7510fa10daa7d4c66cfcc0f2108c7c861ad71fe9e00a7504cf62550acc966263de1616bfb782282df9e4cde703ac04099aceae2efd543f5c4b9c82ce0c44d24c52b7d39a09799d524621c9ab30bfcafab2fa66e1cc671a413e7664645cc71cc3245f51b1993bb32ed9ecc257f787afceabba9980cf20148cdfbe4bb85e3b984ebcea7945fdcaec5c207eda870970868c9298954f3fd963b04b60ec3b5a72ad4b745daec4336416cecebfa82d14534e07e882e91e0cdedbd3069456ec6e5e8f1c74aba54359a365e067be8ae3391972f45db07d653977479766d10120662be046dcbbd4b0f2d55e68eb919179e24ad7e7a8d771be4f49cfb676ba0117d1a674741986a55bdfe66f26bda29e9111fb59e0e47e2b1b9d43e63b05a36f1318f4f17f42b55d408f16fcc13cb9d44bde4d102219ec3b8b75241ecb957825e865a1d74602c6d5b7d3fd2a1db0d2f443c3e007c6f3bdd205b5db85ed5b5ebb79b6c394041d933a0ab826dda235dacff1cc99c84ec702a3547f731215138fb5801d0fa0de123317b867baf3d99c2c6ca514c3423dbff6126e1c8de8040f6fcb8fb5bb3c0d9322da2b0655bd74f453febb52ae5c79ffddbbb1c684dbf41b0507107e7eb0f5d324d660a2bb9b2b752f8b4ba71c85bc114dc75b27f3ff110deed0aeabf4106abfb8da3f0745a29ff8ea4fe8a5e8741c19e01ece597038b8495d8d1c5c1257971993f78a915ce0c1a7e56712928b47a0ed620e2b491f5c8a4ecc65202daf57668468084f7cecfe64f7111dfa999d6c33e79dca1492645c598dfcf567890f3ec2816455758ceca7dddbaebad23b551ecae40cad43b3648096c33d55e0a7802e7ce7fddeacad9a91e2da1c40dbf63349bedb3d7d1a153d2b9d148ae58c882f0da654ddb26ad697911bf9e166c92c21193bacb062050ca7073f661efa78e9e71f94e593901be7b9e03e25c90afc3f70a5fef7fa1496922096ebfb58b84b727f7180c9418f44fd89a3a5d0dd5d0ea81e4d5cb06cb59590b7487ae9b0d7d9773f5b32a69a83b52604401f9fe875da1f2270b2f355080a186b05ee00d525aa5b5333f869b8a44222703ef767f17aa16f9a1a3029f2a1f4596d3ff765fed1c5711197cc4c92a567debeffc448c9bfae39a0a3a526f1dd31c6c47465360831841689e448efbc4ebcf9e0cd37eb2f66e7a260e6d799f322a4cf5c932e87ecb69c88afc9385199687d3a128b4e4951de67ec017112fb13096be083d5a796393f69d0f7b28c74388e0c3101fe5856e8c6b3d9a84117928069278ef56336842fc9cc7b03671c027278460236b4b8126a52ce58f1be1352b79955f76d974b8ce132c1cfd384c3823204ccbd6fd2ccc6bb5a74e54abe38937c960eb80f9ec725966d7a1e48fc5f9fc8151d409490d4a75655fcacb96d1b38b90890431e184f7f6b782b955b2013e5cd701e6fc5effa41ff807858b7dd23d6157a7ad70e6449fc7f11e910109ffd64f06344bff498a526f13a78d1f6ddb90a13fddd5bcdd00da319785b925a0b536df130d48769547d4f85e0e76c9a95fe28fe8a983d22990685783bc2f9fa08007b918db3f1b02e3b13eeff5917c040b69a6fb4b19c86acda0aae81fc174367f58af3528658eef8ccb8a433c9073d2b9a1a3e4d20608d5b7c554c405fc3087ac28be7f5f60436c34ed54ef1f52189ce4b28bfc63baa92cd77f5685b0a4e776e9611216436e099506157ddbd3905098260010f5c1a09e90cf757bc47d293e2f1131655d77c96591b88a89c6f899b2784991ff1dd21b457d3f6e391cf3fd3cc5e52aed8d4e04a334c3e088a67a79c3b4a280dfa64123ef6b1db52f", 0x1000, 0xd6}, {&(0x7f0000000380)="a67f47aa44527597dba075d7d406a1a95f40bf87f8255fedab1b83d3974439dd913e19bed6ff618f3977e131cfea8660b593f8d57655265204c4aa092ffb6cd40bd186c2a00f80019ab6d142a21f31d95e72121b79", 0x55, 0x80000000}, {&(0x7f0000000400)="94fc783608c4ae5a3ba4cbb9cbaf89ef75835294add443ec4fa285a52eb861b5668fb47013db5469bbc33e2b0a9e014c5ae8cb542a7555b2b9bdb7aa4eac22fd4813cf04e35d106d9c3d0370bbf9a69a92a8d54cac630e6aa87378e20c79606988f1b8d2c084153d02e70118ae4fa83938f8d5662099fafb86258da8cf243871b9837ef58790fe6513650182191dfa11a382ecc5dd17ed91f4b5c277b110edc5a12c7217211c38886ad7f204da602dc131b6412778331d9db84c39bf2f3bd1d187f37e698accd16d8abeb776b2548723d4c3e1c2", 0xd4, 0x7}], 0x110002, &(0x7f00000016c0)={[{@noinit_itable}, {@errors_continue}, {@norecovery}], [{@fsuuid={'fsuuid', 0x3d, {[0x62, 0x38, 0x1f70d29f3d3e999b, 0x39, 0x35, 0x64, 0x38, 0x39], 0x2d, [0x35, 0x30, 0xa, 0x30], 0x2d, [0x34, 0x32, 0x35, 0x38], 0x2d, [0x31, 0x36, 0x63, 0x65], 0x2d, [0x37, 0x35, 0x33, 0x39, 0x63, 0x33, 0x30, 0x61]}}}, {@fsmagic}, {@dont_hash}, {@smackfstransmute={'smackfstransmute', 0x3d, '@:'}}, {@fowner_eq}, {@appraise_type}, {@smackfsdef={'smackfsdef', 0x3d, '{'}}, {@smackfsdef}]})
pwritev(r2, &(0x7f0000000600)=[{&(0x7f00000005c0)="e7f1f55ae42c6a6cc7461310d810fdba63cc10a8f092b34de8013133eb92931ea880a7b931bea6", 0x27}], 0x1, 0x624, 0x6)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
openat$sr(0xffffffffffffff9c, 0x0, 0x0, 0x0)

01:06:40 executing program 1:
clone3(&(0x7f0000000640)={0x123363500, &(0x7f00000000c0)=<r0=>0xffffffffffffffff, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
fcntl$lock(r0, 0x0, 0x0)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
dup(r0)
ioctl$sock_bt_hci(r1, 0x400448e1, &(0x7f0000000000))
write$bt_hci(0xffffffffffffffff, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], 0x1d)
openat$sr(0xffffffffffffff9c, 0x0, 0x82100, 0x0)
pipe2(&(0x7f00000001c0)={<r2=>0xffffffffffffffff}, 0x4400)
r3 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f0000000140)="bf", 0xfa4}, {&(0x7f00000013c0)='x', 0x1}], 0x2)
write$bt_hci(0xffffffffffffffff, &(0x7f0000000940)={0x1, @read_remote_features={{0x41b, 0x2}, {0xc8}}}, 0x6)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0x2}, 0x6)

[ 1348.053985] loop3: detected capacity change from 0 to 4097
[ 1348.100994] loop0: detected capacity change from 0 to 264192
[ 1349.796830] Bluetooth: hci3: command 0x080f tx timeout
[ 1502.116950] INFO: task kworker/u4:11:5353 blocked for more than 143 seconds.
[ 1502.119181]       Not tainted 5.17.0-next-20220329 #1
[ 1502.120644] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1502.122560] task:kworker/u4:11   state:D stack:25144 pid: 5353 ppid:     2 flags:0x00004000
[ 1502.124647] Workqueue: events_unbound io_ring_exit_work
[ 1502.125934] Call Trace:
[ 1502.126442]  <TASK>
[ 1502.126931]  __schedule+0x88d/0x2450
[ 1502.127736]  ? io_schedule_timeout+0x140/0x140
[ 1502.128665]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[ 1502.129867]  schedule+0xd2/0x1f0
[ 1502.130541]  schedule_timeout+0x1c5/0x280
[ 1502.131397]  ? usleep_range_state+0x1b0/0x1b0
[ 1502.132316]  ? __wait_for_common+0x35e/0x4b0
[ 1502.133266]  ? mark_held_locks+0x9e/0xe0
[ 1502.134135]  ? rwlock_bug.part.0+0x90/0x90
[ 1502.135215]  ? _raw_spin_unlock_irq+0x1f/0x40
[ 1502.136616]  __wait_for_common+0x36a/0x4b0
[ 1502.137864]  ? usleep_range_state+0x1b0/0x1b0
[ 1502.138813]  ? rwlock_bug.part.0+0x90/0x90
[ 1502.139669]  ? out_of_line_wait_on_bit_lock+0x110/0x110
[ 1502.140862]  ? task_work_add+0xa6/0x190
[ 1502.141743]  io_ring_exit_work+0x46d/0x10d7
[ 1502.142645]  ? io_req_caches_free+0x1e6/0x1e6
[ 1502.144416]  ? lock_acquire+0x1b2/0x4d0
[ 1502.145433]  ? io_uring_del_tctx_node+0x24d/0x24d
[ 1502.146476]  ? lock_is_held_type+0xd7/0x130
[ 1502.147405]  process_one_work+0xa1c/0x16a0
[ 1502.148315]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[ 1502.149306]  ? rwlock_bug.part.0+0x90/0x90
[ 1502.150206]  ? _raw_spin_lock_irq+0x41/0x50
[ 1502.151133]  worker_thread+0x637/0x1250
[ 1502.151992]  ? __kthread_parkme+0x15a/0x220
[ 1502.152913]  ? process_one_work+0x16a0/0x16a0
[ 1502.153870]  kthread+0x2f2/0x3b0
[ 1502.154544]  ? kthread_complete_and_exit+0x40/0x40
[ 1502.155561]  ret_from_fork+0x22/0x30
[ 1502.156379]  </TASK>
[ 1502.156994] 
[ 1502.156994] Showing all locks held in the system:
[ 1502.158277] 1 lock held by khungtaskd/24:
[ 1502.159138]  #0: ffffffff85201dc0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x53/0x260
[ 1502.161047] 1 lock held by in:imklog/188:
[ 1502.161938] 2 locks held by kworker/u4:11/5353:
[ 1502.162895]  #0: ffff888007861138 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_one_work+0x915/0x16a0
[ 1502.165005]  #1: ffff888047f77db0 ((work_completion)(&ctx->exit_work)){+.+.}-{0:0}, at: process_one_work+0x949/0x16a0
[ 1502.167239] 1 lock held by syz-executor.3/30187:
[ 1502.168220] 
[ 1502.168548] =============================================
[ 1502.168548] 

VM DIAGNOSIS:
01:09:15  Registers:
info registers vcpu 0
RAX=0000000000000020 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff823e3051 RDI=ffffffff873c4500 RBP=ffffffff873c44c0 RSP=ffff888008b9f908
R8 =0000000000000000 R9 =0000000000000020 R10=ffffffff823e4c13 R11=000000000000000a
R12=0000000000000020 R13=0000000000000020 R14=ffffffff873c44c0 R15=dffffc0000000000
RIP=ffffffff823e30a8 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 0000000000000000 00000000 00000000
GS =0000 ffff88806ce00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007ff477087000 CR3=000000000e70c000 CR4=00350ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 00e601fe016c6c6f 502e726567616e61
YMM02=0000000000000000 0000000000000000 0201039aff1500e5 01fe016c6c6f502e
YMM03=0000000000000000 0000000000000000 000006060201b1d6 24bdfc3b06d63cfc
YMM04=0000000000000000 0000000000000000 0a00656761697274 20636578650b0065
YMM05=0000000000000000 0000000000000000 6365786511007374 6e69682063657865
YMM06=0000000000000000 0000000000000000 6508007374726174 73657220726f7475
YMM07=0000000000000000 0000000000000000 7566206365786509 006e656720636578
YMM08=0000000000000000 0000000000000000 6e61632063657865 0e006c61746f7420
YMM09=0000000000000000 0000000000000000 6972742063657865 0b00657461646964
YMM10=0000000000000000 0000000000000000 0073746e69682063 6578650a00656761
YMM11=0000000000000000 0000000000000000 7261747365722072 6f74756365786511
YMM12=0000000000000000 0000000000000000 786509006e656720 6365786508007374
YMM13=0000000000000000 0000000000000000 696d20636578650d 007a7a7566206365
YMM14=0000000000000000 0000000000000000 616d732063657865 0a00657a696d696e
YMM15=0000000000000000 0000000000000000 0000736465657320 636578650a006873
info registers vcpu 1
RAX=0000000000000001 RBX=1ffff11008529e39 RCX=ffffffff81283e5f RDX=fffffbfff0d47d0a
RSI=0000000000000008 RDI=ffffffff86a3e848 RBP=ffff8880481f09a8 RSP=ffff88804294f190
R8 =0000000000000000 R9 =ffffffff86a3e84f R10=fffffbfff0d47d09 R11=0000000000000001
R12=0000000000000008 R13=ffff8880481f09c8 R14=000000000000065f R15=0000000000000100
RIP=ffffffff81283e67 RFL=00000047 [---Z-PC] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 00000000 00000000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 00000000 00000000
FS =0000 00007fccfa399700 00000000 00000000
GS =0000 ffff88806cf00000 00000000 00000000
LDT=0000 fffffe0000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f1de7654e10 CR3=000000004e2d2000 CR4=00350ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
YMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM01=0000000000000000 0000000000000000 42a4993c45d28dad e5415ecc1a0d7d13
YMM02=0000000000000000 0000000000000000 6b1e99b806172e3b 00000000000aea28
YMM03=0000000000000000 0000000000000000 80f09f19808d26a3 00000000000aec68
YMM04=0000000000000000 0000000000000000 bfbb5f51b7fd4ef6 0000000000353ae8
YMM05=0000000000000000 0000000000000000 d3fdd5f48436fbd7 00000000000aead0
YMM06=0000000000000000 0000000000000000 3b5523874ba5da2f 00000000000ae988
YMM07=0000000000000000 0000000000000000 a1fcdcf819d7e1e5 00000000000ae728
YMM08=0000000000000000 0000000000000000 44495f474f4c5359 530069253d595449
YMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM10=0000000000000000 0000000000000000 0000202000000000 0000200000000000
YMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000
YMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000