last executing test programs:

36m26.043460775s ago: executing program 32 (id=47):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000001340)={0x6, 0x3, &(0x7f0000000240)=ANY=[], 0x0, 0x3, 0x0, 0x0, 0x0, 0x33}, 0x94)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000280)=0x1)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000140)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x11, r1, 0x0)
ioctl$TCSETS(r0, 0x89f0, &(0x7f0000000100)={0xfffffffc, 0x0, 0x0, 0x7ff, 0x0, "5dee0000005940000000000f00"})

35m31.169857209s ago: executing program 33 (id=322):
openat$tun(0xffffffffffffff9c, &(0x7f00000003c0), 0x1c1341, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)={0x24, r1, 0x1, 0x70bd2b, 0xfffffdfd, {}, [@NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x3}]}, 0x24}}, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={0x0, &(0x7f00000000c0)=""/158, 0x0, 0x9e, 0x1}, 0x28)
openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x1000008, 0x4000000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f0000000040), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
recvmsg(0xffffffffffffffff, 0x0, 0x40002022)
prctl$PR_SET_TIMERSLACK(0x1d, 0x6)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000001240)=@newqdisc={0x45c, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0x4000000, {0x0, 0x0, 0x0, 0x0, {0x0, 0x1}, {0xffff, 0xffff}, {0xc}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x430, 0x2, [@TCA_TBF_RTAB={0x404, 0x2, [0x1, 0x0, 0x1fc, 0x0, 0xfffffc80, 0x0, 0x6, 0x0, 0x4, 0x0, 0x0, 0xe8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x20, 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x3f, 0x0, 0x0, 0x2, 0xffffffff, 0x2, 0xc00, 0x0, 0x1, 0x0, 0x10000202, 0xfff, 0x0, 0x0, 0x0, 0x1000, 0xfffffffc, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x272, 0xb, 0x0, 0x9, 0x3, 0x2, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x2, 0x7, 0x4, 0x0, 0x0, 0x0, 0x81, 0x0, 0x10, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x1b, 0xfffffffc, 0x3, 0x0, 0x7, 0x0, 0xb97, 0x0, 0x0, 0x4000, 0x0, 0x0, 0x0, 0x3, 0x5e, 0xfffffffc, 0x8, 0x0, 0x0, 0x400000, 0x7, 0x0, 0xc, 0x10, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x4, 0xfffffffd, 0x3ff, 0x0, 0x80003, 0x0, 0x0, 0x1, 0x0, 0x400, 0x0, 0x0, 0xffffffff, 0x40, 0x0, 0xfffffffd, 0x0, 0x0, 0x5, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x8, 0x81, 0x20, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0xffffffff, 0xffff, 0x0, 0x0, 0xb3c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x440000, 0x0, 0x2, 0x800000, 0x0, 0x0, 0x0, 0x2, 0x1, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xae, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80000001, 0x0, 0x0, 0x0, 0x400, 0x0, 0x0, 0xd79, 0x0, 0x2, 0x0, 0x0, 0x100001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000, 0x0, 0x2, 0x0, 0x6, 0x0, 0x100, 0x0, 0x8, 0xfffffffd, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0xfffffffd]}, @TCA_TBF_PARMS={0x28, 0x1, {{0x1, 0x0, 0x0, 0x0, 0x0, 0x6}, {0xff, 0x0, 0x0, 0x0, 0x0, 0x8d4}, 0x0, 0x7f}}]}}]}, 0x45c}}, 0x0)
syz_emit_ethernet(0x2a, &(0x7f0000000000)=ANY=[@ANYBLOB="aaaaaaaaaaaa0000000000"], 0x0)
syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
r5 = syz_open_dev$vim2m(&(0x7f0000000140), 0x10002, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r5, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1})
ioctl$vim2m_VIDIOC_STREAMOFF(r5, 0x40045612, &(0x7f0000000080)=0x2)
ioctl$vim2m_VIDIOC_DQBUF(r5, 0xc0585611, 0x0)
ioctl$vim2m_VIDIOC_S_CTRL(r5, 0xc008561c, 0x0)
sendmsg$TIPC_CMD_ENABLE_BEARER(r3, 0x0, 0x0)

35m1.20729575s ago: executing program 34 (id=437):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_io_uring_setup(0x890, &(0x7f0000000300)={0x0, 0xd73, 0x80, 0xfffffffd, 0x281}, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000000c0)=@IORING_OP_LINKAT={0x27, 0x40, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0x1000, 0x1})
io_uring_enter(r0, 0x75fa, 0xe475, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x10031, 0xffffffffffffffff, 0x65be1000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)

34m32.925405552s ago: executing program 35 (id=520):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder1\x00', 0x0, 0x0)
syz_usb_disconnect(0xffffffffffffffff)
mkdir(&(0x7f0000000300)='./file0\x00', 0xfffffffffffffffe)
fcntl$lock(0xffffffffffffffff, 0x7, 0x0)
mount(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f00000004c0)='cgroup2\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000240), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
inotify_init()
creat(0x0, 0xd931d3864d39dcca)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0xd5)
umount2(&(0x7f0000000040)='./file0\x00', 0xb)
close_range(r0, 0xffffffffffffffff, 0x0)

20m5.714060908s ago: executing program 7 (id=3084):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x20d00, 0x0)
ioctl$TCSETS(r1, 0x40045431, 0x0)
r2 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r2, &(0x7f00000000c0), 0x10)
sendmsg$can_bcm(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000003c0)={0x5, 0x1, 0x6, {}, {0x0, 0x2710}, {}, 0x2, @can={{0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, "eb090b08ece8dca0"}}, 0x48}, 0x300, 0x0, 0x0, 0x40}, 0x0)
r3 = syz_open_pts(r1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e25}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000240)=0xd)
sendmsg$nl_route(r0, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=@ipv4_delroute={0x24, 0x18, 0x901, 0x0, 0x25dfdbff, {0x2, 0x18, 0x0, 0x0, 0xff, 0x0, 0x0, 0x8}, [@RTA_PRIORITY={0x8, 0x6, 0x1}]}, 0x24}}, 0x0)

20m4.422460161s ago: executing program 7 (id=3087):
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000700)=ANY=[@ANYBLOB="9feb0100180000000000000040000000400000000200000000000000000000090400000000000000000000010500000008000000000000000000000300000000020000000200000012000000000000000000000b"], 0x0, 0x5a}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$vsock_stream(0x28, 0x1, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000280)={0x12, 0x4, &(0x7f0000000000)=@framed={{}, [@ldst={0x3, 0x0, 0x3, 0x1, 0x0, 0x40}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x90)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000000c0), 0x48)
bpf$MAP_LOOKUP_ELEM(0x5, &(0x7f00000000c0)={r3, &(0x7f0000000000), &(0x7f0000000040)=""/73}, 0x70)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001080)=ANY=[], 0x204}}, 0x0)

20m1.945013752s ago: executing program 7 (id=3090):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_LIST(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)={0x1c, 0x7, 0x6, 0x801, 0x0, 0x0, {0xa, 0x0, 0x4}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000005}, 0x80)

20m0.918047293s ago: executing program 7 (id=3094):
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg(r2, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x0, 0x0, 0xb49, 0x9, 0x8, 0x0, 0x3}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000006c0)=ANY=[@ANYBLOB="500000000206010400000000000000000000000005000100070000000900020073797a19000000000500050002000000050004000800000015000300686173683a69702c706f72742c6e6574"], 0x50}, 0x1, 0x0, 0x0, 0x44090}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={0x0, 0x50}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
recvmsg(r5, &(0x7f0000001700)={0x0, 0x0, 0x0}, 0x0)
sendmsg$IPSET_CMD_LIST(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)={0x1c, 0x7, 0x6, 0x801, 0x0, 0x0, {0xa, 0x0, 0x4}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20000005}, 0x80)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
recvmmsg(r6, &(0x7f0000009c40)=[{{0x0, 0x0, 0x0}, 0x3ff}], 0x1, 0x40000000, 0x0)
bind$inet(r6, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
ioctl$TUNSETIFF(r0, 0x400454ca, 0x0)
r7 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_S_INPUT(r7, 0xc0045627, &(0x7f00000000c0)=0x3)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0x7c81, 0x0)

19m50.386502621s ago: executing program 7 (id=3110):
socket$nl_route(0x10, 0x3, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x20d00, 0x0)
ioctl$TCSETS(r0, 0x40045431, 0x0)
r1 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r1, &(0x7f00000000c0), 0x10)
sendmsg$can_bcm(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000003c0)={0x5, 0x1, 0x6, {}, {0x0, 0x2710}, {}, 0x2, @can={{0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, "eb090b08ece8dca0"}}, 0x48}, 0x300, 0x0, 0x0, 0x40}, 0x0)

19m50.185751777s ago: executing program 7 (id=3113):
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff})
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_int(r4, 0x0, 0x33, 0x0, 0x0)
listen(r4, 0x2)
close_range(r3, 0xffffffffffffffff, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'vxcan1\x00', <r5=>0x0})
bind$can_raw(0xffffffffffffffff, &(0x7f0000000000)={0x1d, r5}, 0x10)
setsockopt$CAN_RAW_FILTER(0xffffffffffffffff, 0x65, 0x1, &(0x7f00000000c0), 0xf00)
writev(0xffffffffffffffff, &(0x7f0000000180)=[{0x0}], 0x1)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)

19m35.746550485s ago: executing program 36 (id=3113):
socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff})
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_int(r4, 0x0, 0x33, 0x0, 0x0)
listen(r4, 0x2)
close_range(r3, 0xffffffffffffffff, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'vxcan1\x00', <r5=>0x0})
bind$can_raw(0xffffffffffffffff, &(0x7f0000000000)={0x1d, r5}, 0x10)
setsockopt$CAN_RAW_FILTER(0xffffffffffffffff, 0x65, 0x1, &(0x7f00000000c0), 0xf00)
writev(0xffffffffffffffff, &(0x7f0000000180)=[{0x0}], 0x1)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)

19m4.039560827s ago: executing program 8 (id=3193):
mknodat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x81c0, 0x0)
r0 = landlock_create_ruleset(&(0x7f0000000140)={0x4000}, 0x18, 0x0)
landlock_restrict_self(r0, 0x0)
openat$dir(0xffffffffffffff9c, 0x0, 0x1, 0x0)

19m3.780171877s ago: executing program 8 (id=3194):
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, 0x0, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
r0 = getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_dev$I2C(0x0, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b7030000000000208500000073000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x14)
ioctl$KVM_CAP_MAX_VCPU_ID(r5, 0x4068aea3, &(0x7f0000000240)={0x80, 0x0, 0x5825837a})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r6 = syz_open_dev$usbfs(&(0x7f0000000040), 0x10041ff, 0x2)
ioctl$USBDEVFS_CLAIM_PORT(r6, 0x80045518, &(0x7f0000000000)=0x9)
setreuid(0xee01, 0x0)
r7 = getpid()
r8 = syz_pidfd_open(r7, 0x0)
setns(r8, 0x24020000)
r9 = syz_clone(0x16040000, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_pidfd_open(r9, 0x0)

19m1.957973146s ago: executing program 8 (id=3197):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = syz_open_dev$vbi(&(0x7f00000000c0), 0x3, 0x2)
ioctl$VIDIOC_G_PARM(r1, 0xc0cc5615, &(0x7f0000000380)={0x5, @output={0x0, 0x0, {0xd, 0x9}, 0x0, 0x10000}})
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
syz_mount_image$hfsplus(&(0x7f0000000080), &(0x7f0000000640)='./file0\x00', 0x0, &(0x7f0000000000)={[{@gid}, {}, {@part={'part', 0x3d, 0x9}}, {@nls={'nls', 0x3d, 'macromanian'}}]}, 0x1, 0x5d8, &(0x7f0000000cc0)="$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")
getdents64(0xffffffffffffffff, 0x0, 0x30)
r3 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
ioctl$DRM_IOCTL_AUTH_MAGIC(r3, 0x40046411, &(0x7f0000000040)=0x86)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x5e22, 0x0, @empty}, 0x1c)
listen(r0, 0x0)
r7 = socket$netlink(0x10, 0x3, 0x4)
writev(r7, &(0x7f0000000140)=[{&(0x7f0000000200)="580000001400add4275a1bf00c45b45602067fffffff81005e22000d00ff0028925aa8002000eaa57b00090080000efffeffe809000000ff0000f03a0200f0ffffffffffffffffffffffffe7ee0000000000000000020000", 0x58}], 0x1)

18m59.399075804s ago: executing program 8 (id=3200):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f0000000000)=r0, 0x4)
socket$kcm(0xa, 0x2, 0x73)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000000)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000080)={<r2=>0xffffffffffffffff}, 0x2, 0x1}}, 0x20)
openat$vicodec0(0xffffffffffffff9c, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000001a300)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$phonet_pipe(0x23, 0x5, 0x2)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, 0x0)
open_tree(0xffffffffffffffff, &(0x7f0000000380)='./file0\x00', 0x80900)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r1, &(0x7f0000000180)={0x3, 0x40, 0xfa02, {{0x6000000, 0x4e24, 0x40043, @mcast1, 0xf}, {0x2, 0xfff8, 0xc00, @empty, 0x10000}, r2, 0x9dffffff}}, 0x48)
socket$nl_route(0x10, 0x3, 0x0)
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x22, &(0x7f00000001c0)=0x1, 0x4)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000002b00)={r0, 0x0, 0x0}, 0x10)

18m56.953886868s ago: executing program 8 (id=3206):
syz_mount_image$ext4(&(0x7f0000000680)='ext2\x00', &(0x7f0000000040)='./file2\x00', 0x10000, &(0x7f00000000c0)={[{@jqfmt_vfsv1}]}, 0x1, 0x559, &(0x7f0000000100)="$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")
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x0)
recvmmsg(r0, 0x0, 0x0, 0x40000103, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10138, 0x2, 0x0)
syz_open_dev$video4linux(0x0, 0x0, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone3(&(0x7f00000002c0)={0x8040000, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[], 0x50)
r4 = socket$inet6(0xa, 0x1, 0x0)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f0000000000)={0x500, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="020300090a0000000000000004000000030006000000000002000000ac1414000000000000000000020001000000000000000002fffffffb030005000000000002"], 0x50}}, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000180)={{{@in=@private, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x2}, {}, {0x0, 0x0, 0x1}, 0xc5, 0x0, 0x1, 0x0, 0x0, 0x3}, {{@in=@local, 0x0, 0x6c}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0x4}}, 0xe8)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
socket$key(0xf, 0x3, 0x2)
socket$packet(0x11, 0x2, 0x300)

18m53.721656067s ago: executing program 8 (id=3210):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x20d00, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000100)={0x0, 0xff, 0xffffffff, 0xfffffffd, 0x7, "ff00"})
r2 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r2, &(0x7f00000000c0), 0x10)
sendmsg$can_bcm(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000003c0)={0x5, 0x1, 0x6, {}, {0x0, 0x2710}, {}, 0x2, @can={{0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, "eb090b08ece8dca0"}}, 0x48}, 0x300, 0x0, 0x0, 0x40}, 0x0)
r3 = syz_open_pts(r1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e25}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000240)=0xd)
sendmsg$nl_route(r0, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=@ipv4_delroute={0x1c, 0x18, 0x901, 0x0, 0x25dfdbff, {0x2, 0x18, 0x0, 0x0, 0xff, 0x0, 0x0, 0x8}}, 0x1c}}, 0x0)

18m39.22019942s ago: executing program 37 (id=3210):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x20d00, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000100)={0x0, 0xff, 0xffffffff, 0xfffffffd, 0x7, "ff00"})
r2 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r2, &(0x7f00000000c0), 0x10)
sendmsg$can_bcm(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000003c0)={0x5, 0x1, 0x6, {}, {0x0, 0x2710}, {}, 0x2, @can={{0x0, 0x0, 0x0, 0x1}, 0x0, 0x0, 0x0, 0x0, "eb090b08ece8dca0"}}, 0x48}, 0x300, 0x0, 0x0, 0x40}, 0x0)
r3 = syz_open_pts(r1, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e25}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$TIOCSTI(r3, 0x5412, &(0x7f0000000240)=0xd)
sendmsg$nl_route(r0, &(0x7f0000000c00)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=@ipv4_delroute={0x1c, 0x18, 0x901, 0x0, 0x25dfdbff, {0x2, 0x18, 0x0, 0x0, 0xff, 0x0, 0x0, 0x8}}, 0x1c}}, 0x0)

10m23.145697547s ago: executing program 5 (id=3777):
syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0xa83b, 0x10, 0x2}, &(0x7f0000000340)=<r0=>0x0, &(0x7f00000000c0))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x200000087}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r1}, 0x10)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
read$FUSE(0xffffffffffffffff, &(0x7f000000a380)={0x2020}, 0x17c3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x690, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
write(0xffffffffffffffff, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f00"/28, 0x1c)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, &(0x7f00000001c0)={0x77359400})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x1)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r6, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010100}}, 0x1c)
setsockopt$inet6_tcp_int(r6, 0x6, 0x2000000000000020, &(0x7f0000000040)=0xa, 0x1959cc36)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f0000002140)=ANY=[@ANYBLOB, @ANYRESHEX=r5, @ANYBLOB=',rootmode=000000000100000,', @ANYRESDEC=0x0, @ANYBLOB, @ANYRESDEC=0x0])
read$FUSE(r5, &(0x7f0000006300)={0x2020}, 0x2020)
r7 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x101102, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000040)=0x7)
ioctl$TCSETA(r7, 0x8924, &(0x7f0000000100)={0x3, 0x0, 0x0, 0x0, 0x13, "4feda26323b172e0"})

10m21.805561094s ago: executing program 5 (id=3778):
r0 = userfaultfd(0x80001)
fsopen(0x0, 0x1)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000140))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f0000ffd000/0x3000)=nil, 0x3000}, 0x1})
exit(0x7)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19)
r1 = socket$xdp(0x2c, 0x3, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, 0x0, 0x0)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x218, 0x0)
syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x204081)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000240)='./file0\x00', 0x0, &(0x7f00000004c0)={[{@fat=@gid}, {@dots}, {@fat=@time_offset={'time_offset', 0x3d, 0x32}}, {@nodots}, {@fat=@codepage={'codepage', 0x3d, '860'}}]}, 0xfe, 0x1e2, &(0x7f0000000280)="$eJzs3D9rE28AB/Cnf36/aKWlk6CLD7roErSzgyIVxICiRvwDwpVeNSQmJZchEYfMTr4GRxFd3ITiG+i7cCtC6aKTJ5q0sVrrYE3Efj5Lvsk3xz0PBw/Hc3BrZ58+rC5lxaWkFcYLY2H8XOh+yPN8NoyHTd1w6tWtjSfXb9+5fL5Umi/0f44xzhxbufv4xfG3rUM3X8+8KYTV2Xtr63PvVg+vHln7dONBJYuVLNYbrZjEhUajlSzU0rhYyarFGK/W0iRLY6Wepc1t/VKtsbzciUl9cXpquZlmWUzqnVhNO7HViK1mJyb3k0o9FovFOD0V+B3l5x/zPKzneZ4XuiHP81EPiCFz/fe3zUX9WowHQnjfbZfb5d5nr794qTR/On41Ozhqo90uT2z1Z3p93N7/F6b6/dyO/f/h5Ile/6W7cKX0XX8wLP756QMAAAAAwD+pGLf8uL8/1v+6Y99L3zwf6O3fP1vp95Ph6OQwZwIAAAD8TNZ5VE1qtbS5S5gIIfzqP3seJsPwziUIow4vw18xjEEY9coEAADstcFN/6hHAgAAAAAAAAAAAAAAAAAAAPvXMF4nNuo5AgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADs5nMAAAD//3cQb74=")
setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f0000000340)={0x0, 0x304000, 0x800, 0xa6, 0x1}, 0x20)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$UFFDIO_COPY(r0, 0xc028aa05, &(0x7f00000003c0)={&(0x7f0000ffd000/0x3000)=nil, &(0x7f0000000000/0x3000)=nil, 0x3000})

10m19.005317992s ago: executing program 5 (id=3783):
syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0xa83b, 0x10, 0x2}, &(0x7f0000000340)=<r0=>0x0, &(0x7f00000000c0))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x200000087}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r1}, 0x10)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
read$FUSE(0xffffffffffffffff, &(0x7f000000a380)={0x2020}, 0x17c3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x690, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
write(0xffffffffffffffff, &(0x7f0000000040)="1c0000001a009b8a140000003b9b", 0xe)
recvmmsg(0xffffffffffffffff, &(0x7f0000002ec0), 0x400000000000ec0, 0x2, &(0x7f00000001c0)={0x77359400})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x1)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r6, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010100}}, 0x1c)
setsockopt$inet6_tcp_int(r6, 0x6, 0x2000000000000020, &(0x7f0000000040)=0xa, 0x1959cc36)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x80, &(0x7f0000002140)=ANY=[@ANYBLOB, @ANYRESHEX=r5, @ANYBLOB=',rootmode=000000000100000,', @ANYRESDEC=0x0, @ANYBLOB, @ANYRESDEC=0x0])
read$FUSE(r5, &(0x7f0000006300)={0x2020}, 0x2020)
r7 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x101102, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000040)=0x7)
ioctl$TCSETA(r7, 0x8924, &(0x7f0000000100)={0x3, 0x0, 0x0, 0x0, 0x13, "4feda26323b172e0"})

10m16.565126325s ago: executing program 5 (id=3785):
syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0xa83b, 0x10, 0x2}, &(0x7f0000000340)=<r0=>0x0, &(0x7f00000000c0))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x200000087}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r1}, 0x10)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
read$FUSE(0xffffffffffffffff, &(0x7f000000a380)={0x2020}, 0x17c3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x690, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
write(0xffffffffffffffff, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f00"/28, 0x1c)
recvmmsg(0xffffffffffffffff, &(0x7f0000002ec0), 0x400000000000ec0, 0x2, &(0x7f00000001c0)={0x77359400})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0xfff, 0x1)
r5 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x42, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r6, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @rand_addr=0x64010100}}, 0x1c)
setsockopt$inet6_tcp_int(r6, 0x6, 0x2000000000000020, &(0x7f0000000040)=0xa, 0x1959cc36)
mount$fuse(0x0, 0x0, &(0x7f0000002100), 0x80, &(0x7f0000002140)=ANY=[@ANYBLOB, @ANYRESHEX=r5, @ANYBLOB=',rootmode=000000000100000,', @ANYRESDEC=0x0, @ANYBLOB, @ANYRESDEC=0x0])
read$FUSE(r5, &(0x7f0000006300)={0x2020}, 0x2020)
r7 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000000), 0x101102, 0x0)
ioctl$TIOCSETD(r7, 0x5423, &(0x7f0000000040)=0x7)
ioctl$TCSETA(r7, 0x8924, &(0x7f0000000100)={0x3, 0x0, 0x0, 0x0, 0x13, "4feda26323b172e0"})

10m14.720411259s ago: executing program 5 (id=3787):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
madvise(&(0x7f000035d000/0x1000)=nil, 0x1000, 0xf)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000000e00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7020000140000e5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b7000000000000"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000900)={'bridge0\x00', @remote})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r6, 0x89a1, &(0x7f0000000900)={'bridge0\x00', @broadcast})

10m11.002229928s ago: executing program 5 (id=3791):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000180)={0xfbfb, 0x7}, 0x4)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000800007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
unshare(0x62040200)

9m56.355086693s ago: executing program 38 (id=3791):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000180)={0xfbfb, 0x7}, 0x4)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x1000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000800007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
unshare(0x62040200)

2m23.463117616s ago: executing program 9 (id=4652):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000180)='./file2\x00', 0xa00010, &(0x7f00000001c0), 0x21, 0x4bf, &(0x7f00000009c0)="$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")
creat(&(0x7f0000000140)='./bus\x00', 0xa6)
mount(&(0x7f0000000440)=@loop={'/dev/loop', 0x0}, &(0x7f0000000480)='./bus\x00', 0x0, 0x1000, 0x0)
open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)

2m23.103745882s ago: executing program 9 (id=4654):
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x19)

2m21.57030921s ago: executing program 9 (id=4658):
r0 = fsopen(0x0, 0x0)
fsconfig$FSCONFIG_SET_BINARY(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x1, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
recvmmsg(r1, &(0x7f0000000e00), 0x0, 0x22002, &(0x7f0000000f80))
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
setsockopt$inet6_IPV6_RTHDR(0xffffffffffffffff, 0x29, 0x39, 0x0, 0x68)
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
socket$tipc(0x1e, 0x2, 0x0)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
ioctl$TCSETS(0xffffffffffffffff, 0x404c4701, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r5=>0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x10, 0x4, 0x4, 0x12}, 0x48)
sendmsg$nl_route(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_newnexthop={0x20, 0x68, 0x5fb9a818fb7378e9, 0x0, 0x25dfdbff, {}, [@NHA_OIF={0x8, 0x5, r5}]}, 0x20}}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=@newnexthop={0x38, 0x68, 0x1, 0x100003, 0x7ffffffd, {}, [@NHA_GROUP={0xc, 0x2, [{0x1, 0x15}]}, @NHA_RES_GROUP={0xc, 0xc, 0x0, 0x1, [@NHA_RES_GROUP_BUCKETS={0x6, 0x1, 0x3fd4}]}, @NHA_GROUP_TYPE={0x6, 0x3, 0x1}]}, 0x38}, 0x1, 0x0, 0x0, 0x4008018}, 0x4000080)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000003c0)=@newlink={0x20, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, r5, 0x192}}, 0x20}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x20000080)
socket(0x10, 0x803, 0x0)
getsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f00000000c0)={0x0, 0x2, 0x800, 0x8}, &(0x7f0000000100)=0x10)
socket(0x2, 0x80805, 0x0)
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)

2m21.130539617s ago: executing program 9 (id=4660):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x20, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$sock_inet6_SIOCSIFDSTADDR(0xffffffffffffffff, 0x8918, 0x0)
r5 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000280), r0)
sendmsg$IPVS_CMD_GET_DEST(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)={0x28, r5, 0x50dc85624ea6cf59, 0x0, 0x1, {}, [@IPVS_CMD_ATTR_SERVICE={0x14, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_AF={0x6, 0x1, 0x2}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x3}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x400c081}, 0x0)

2m20.012653313s ago: executing program 9 (id=4662):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x47)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000200)='bbr', 0x3)
sendto$inet(r0, &(0x7f00000007c0)='%', 0x1, 0xe044, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)

2m18.764359331s ago: executing program 9 (id=4664):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c3d01, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
writev(r0, &(0x7f00000001c0)=[{&(0x7f0000000740)="89e7ee2c7cdad9b4b47380c988cae32b", 0x10}], 0x1)

2m2.461036204s ago: executing program 39 (id=4664):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c3d01, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
writev(r0, &(0x7f00000001c0)=[{&(0x7f0000000740)="89e7ee2c7cdad9b4b47380c988cae32b", 0x10}], 0x1)

1m34.211765734s ago: executing program 2 (id=4797):
madvise(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x12)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x48c00, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
setsockopt$inet_sctp_SCTP_INITMSG(0xffffffffffffffff, 0x84, 0x2, 0x0, 0x0)
ioctl$KVM_GET_MSR_FEATURE_INDEX_LIST(0xffffffffffffffff, 0xc004ae0a, 0x0)
io_uring_enter(0xffffffffffffffff, 0x2def, 0x0, 0x0, 0x0, 0x0)
bind$inet(0xffffffffffffffff, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(0xffffffffffffffff, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@dev={0xfe, 0x80, '\x00', 0x4}, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffa}, {}, 0x80, 0x0, 0x1}, {{@in6=@dev, 0x0, 0x32}, 0x0, @in=@private=0xa010100, 0x3503, 0x0, 0x0, 0xb7, 0x2, 0xfffffffe}}, 0xe4)
sendmmsg(0xffffffffffffffff, &(0x7f0000007fc0), 0x800001d, 0x1c)

1m33.047017636s ago: executing program 2 (id=4800):
syz_mount_image$nilfs2(&(0x7f0000000480), &(0x7f0000000f00)='./file1\x00', 0x208800, &(0x7f0000003100)=ANY=[], 0x1, 0xeec, &(0x7f0000001e40)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
prctl$PR_SET_VMA(0xd, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000340)=0x6)
r3 = openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$SNDCTL_DSP_SPEED(r3, 0xc0045002, &(0x7f0000000480))
read$dsp(r3, &(0x7f0000000100)=""/122, 0x7a)

1m32.424341137s ago: executing program 2 (id=4803):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000000c0)={'das16m1\x00', [0x4f27, 0x1f, 0x10000, 0x4, 0x5, 0xcc7, 0x8, 0x7, 0xa, 0x100, 0x2, 0x1, 0x1, 0xfffffffe, 0x6, 0x101, 0x0, 0x1a449, 0x3, 0x40000003, 0x89, 0xcaa3, 0x0, 0x20001e58, 0xb, 0xe69, 0x3c, 0x8, 0x4088, 0x0, 0xfffffff8]})

1m30.562317713s ago: executing program 2 (id=4811):
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x1c0)
syz_mount_image$fuse(0x0, &(0x7f0000000300)='./bus\x00', 0x3240005, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
r0 = fanotify_init(0x200, 0x0)
read(r0, 0x0, 0x0)
fchownat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0xee01, 0x1000)

1m29.496662039s ago: executing program 2 (id=4817):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x200000000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x8, 0x2, 0x4, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xe, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="d800000016000186"], 0xd8}, 0x1, 0x0, 0x0, 0x1}, 0x20040000)
recvmmsg$unix(r4, &(0x7f00000035c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x40000382, 0x0)

1m28.352351437s ago: executing program 2 (id=4823):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='mmap_lock_acquire_returned\x00', r0}, 0x10)
move_pages(0x0, 0x20000000000000fe, &(0x7f0000000080)=[&(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil], 0x0, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0)

1m12.112397127s ago: executing program 40 (id=4823):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='mmap_lock_acquire_returned\x00', r0}, 0x10)
move_pages(0x0, 0x20000000000000fe, &(0x7f0000000080)=[&(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil], 0x0, &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0)

11.090333288s ago: executing program 3 (id=5001):
mount(&(0x7f0000000000)=@nullb, 0x0, 0x0, 0x2808008, &(0x7f00000000c0)='\x00')
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x1f, 0x0, 0x0, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mount(&(0x7f0000000040)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./cgroup\x00', &(0x7f00000000c0)='btrfs\x00', 0x4418, 0x0)

10.080244938s ago: executing program 3 (id=5006):
madvise(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x12)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x48c00, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
io_uring_enter(0xffffffffffffffff, 0x2def, 0x0, 0x0, 0x0, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r1, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@dev={0xfe, 0x80, '\x00', 0x4}, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffa}, {}, 0x80, 0x0, 0x1}, {{@in6=@dev, 0x0, 0x32}, 0x0, @in=@private=0xa010100, 0x3503, 0x0, 0x0, 0xb7, 0x2, 0xfffffffe}}, 0xe4)
sendmmsg(r1, &(0x7f0000007fc0), 0x800001d, 0x1c)

8.094415951s ago: executing program 4 (id=5008):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = syz_open_procfs(0xffffffffffffffff, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, &(0x7f0000000200))
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$sndctrl(&(0x7f0000000600), 0x0, 0x400)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r2, 0x40405515, &(0x7f0000000640)={0x0, 0x2, 0x200, 0x7, 'syz1\x00', 0x6})
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
setrlimit(0x4, &(0x7f0000000440)={0x6, 0xffff})
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_usb_connect$hid(0x6, 0x36, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x3, 0xc, &(0x7f00000006c0)=@framed={{0x18, 0x2, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x800}, [@ringbuf_output={{}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x9}}]}, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4a}, 0x94)
sendmsg$DEVLINK_CMD_TRAP_SET(r1, &(0x7f0000000400)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000180)={&(0x7f0000000500)={0x98, 0x0, 0x100, 0x70bd2d, 0x25dfdbfd, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x1c}, {0x5, 0x83, 0x1}}, {@pci={{0x8}, {0x11}}, {0x1c}, {0x5}}]}, 0x98}, 0x1, 0x0, 0x0, 0x44004}, 0x1)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r4 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r4, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c000000120a01020000000000000000024000000900020073797a310000000008000440000000000900010073797a3000000000080003400000000a14000000110001000000000000"], 0x64}}, 0x0)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x14}}, 0x10000120}, 0x1c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r4, 0x84, 0x9, 0x0, 0x0)
bpf$ITER_CREATE(0x21, 0x0, 0x0)
mremap(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000ffc000/0x1000)=nil)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000000c0)={'pcl812\x00', [0x4f27, 0x5, 0x10000, 0x4, 0x4, 0xcc7, 0x8, 0x7, 0xd, 0x100, 0x2, 0x1, 0x1, 0x1, 0x2745, 0x8, 0x0, 0x1a449, 0x3, 0x40000003, 0x89, 0xcaa7, 0x0, 0x20001e58, 0x9, 0xe69, 0x3c, 0x8, 0x6, 0x7, 0x2]})
getpgrp(0xffffffffffffffff)

8.090217852s ago: executing program 1 (id=5009):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
syz_read_part_table(0x5ab, &(0x7f0000000000)="$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")
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

7.956064974s ago: executing program 6 (id=5010):
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f0000000080)='./file1\x00', 0x4000, &(0x7f0000000040)=ANY=[], 0xff, 0x60c0, &(0x7f000000d800)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0xc4042, 0x1ff)
r1 = openat$nullb(0xffffffffffffff9c, 0x0, 0x2800, 0x0)
sendfile(r0, r1, 0x0, 0xfffe80)
syz_mount_image$nilfs2(&(0x7f0000000040), &(0x7f0000000100)='./file1\x00', 0x3214212, &(0x7f00000000c0)=ANY=[@ANYRES32=0x0, @ANYRES32], 0x7, 0xf11, &(0x7f0000001100)="$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")
truncate(&(0x7f00000001c0)='./file1\x00', 0x6)

7.89240537s ago: executing program 0 (id=5011):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$xdp(0x2c, 0x3, 0x0)
mmap$xdp(&(0x7f0000003000/0x1000)=nil, 0x1000, 0x200000d, 0x11, r1, 0x100000000)
close(r0)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x1}, 0x1c)
listen(r2, 0x0)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r4 = accept(r0, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[], 0xfffffdef}, 0x1, 0x0, 0x0, 0xc000}, 0x10)
recvfrom(r3, &(0x7f0000000180)=""/60, 0xfffffffffffffecb, 0x4100, 0x0, 0x0)

5.978070619s ago: executing program 3 (id=5012):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x40001e0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = add_key$user(0x0, &(0x7f0000002180)={'syz', 0x2}, &(0x7f00000021c0)='b', 0x1, 0xfffffffffffffffe)
r4 = add_key$user(&(0x7f0000000380), &(0x7f00000000c0)={'syz', 0x2}, &(0x7f0000000100)="370c099069effa43de3e1404db09b4ce1ef77bde4b371532dd16447c1b13403656c86711f6e750026f23029a50d44299c7bf5c78dc5efae2d041016160e8bef7b30c05e298aa9572540dd950307987eef2115e1bcf512bea3447b8ba3229c7eddd10ca5a9e9f827e4b13490dbbd4fc5a45e0738b959acafd2c12863045265bcbc2c9426ac3f614746b436fe86a72dc642dd67d970604a69b4f22cd0076beedc18056ab4bea4c825b69a7a77adcd548868487", 0xb2, 0xffffffffffffffff)
keyctl$dh_compute(0x17, &(0x7f0000000400)={r3, r4, r3}, &(0x7f0000000280)=""/190, 0xbe, &(0x7f00000003c0)={&(0x7f0000000240)={'streebog512-generic\x00'}})
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="44000000020605000000000000000000000000000c000300686173683a69700005000400000000000900020073797a310000000005000500020000000500010006"], 0x44}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000004c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}]}, @NFT_MSG_NEWSETELEM={0x44, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0xc, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x6, 0x1, "d103"}]}, @NFTA_SET_ELEM_USERDATA={0x4}]}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0xa8}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSETELEM(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)={0x2c, 0xd, 0xa, 0x301, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24000801}, 0x8000)
sendmsg$IPSET_CMD_ADD(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x30, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x8000}]}, 0x30}, 0x1, 0x0, 0x0, 0x10000047}, 0x0)

5.908726968s ago: executing program 0 (id=5013):
openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f00000005c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8e}, 0x94)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000008000000000000005000100070000000900020073797a30000000001400078008001240000000000500150004000000050005000000000005000400000000000d000300686173683a6d6163"], 0x5c}}, 0x0)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000740)=ANY=[@ANYBLOB="44000000090605000000000000000000010000050900020073797a30000006000500010007000000080009400000000114000880100007800a0011"], 0x44}, 0x1, 0x0, 0x0, 0x8000}, 0x44000)

5.846416519s ago: executing program 1 (id=5014):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000000c0)={'das16m1\x00', [0x4f27, 0x1f, 0x10000, 0x4, 0x5, 0xcc7, 0x8, 0x7, 0xa, 0x100, 0x2, 0x1, 0x1, 0xfffffffe, 0x6, 0x101, 0x0, 0x1a449, 0x3, 0x40000003, 0x89, 0xcaa3, 0x0, 0x20001e58, 0xb, 0xe69, 0x3c, 0x8, 0x4088, 0x0, 0xfffffff8]})

4.968757259s ago: executing program 3 (id=5015):
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$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")
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x4031, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
openat$ptp0(0xffffffffffffff9c, &(0x7f0000000480), 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x4, 0x6, &(0x7f0000000000)=@framed={{0xffffffb4, 0x8, 0x0, 0x0, 0x0, 0x73, 0x11, 0x39}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0xb7}, @exit={0x95, 0x0, 0xc2}], {0x95, 0x0, 0x1200}}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195}, 0x70)

4.697794314s ago: executing program 0 (id=5016):
prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6(0xa, 0x3, 0x7)
connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0xfffffffe, @local, 0x1}, 0x1c)
sendmmsg(r3, &(0x7f0000000480), 0x2e9, 0x0)

4.439730927s ago: executing program 4 (id=5017):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_GET_BYNAME(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)={0x20, 0xe, 0x6, 0x401, 0x0, 0x0, {0xa, 0x0, 0x2}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x20}}, 0x40000)

4.289188793s ago: executing program 6 (id=5018):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24000000}, 0x20044000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$igmp(0x2, 0x3, 0x2)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl802154(0x0, r3)
ioctl$sock_SIOCGIFINDEX_802154(r3, 0x8933, &(0x7f0000000ac0)={'wpan0\x00', <r5=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_KEY(r3, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000009c0)={0x1c, r4, 0x1, 0x70bd2c, 0x25dfdc00, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r5}]}, 0x1c}}, 0x4040084)
memfd_create(&(0x7f0000000340)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\xdenJ\xeb\x87\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38\x14\xcb\xfa\xb3j\x92\f\xe0\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf0\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x2)
getresgid(0x0, 0x0, &(0x7f0000002b00))
connect$inet6(0xffffffffffffffff, &(0x7f0000000100)={0xa, 0x0, 0x0, @private1, 0x200000}, 0x1c)
shutdown(0xffffffffffffffff, 0x1)
socket(0x10, 0x3, 0x0)
r6 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_GET(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)=ANY=[@ANYBLOB="180000000914010000"], 0x18}}, 0x0)

3.390275298s ago: executing program 0 (id=5019):
r0 = syz_open_dev$video4linux(0x0, 0x5, 0x20040)
ioctl$VIDIOC_SUBDEV_S_FMT(r0, 0xc0585605, &(0x7f00000000c0)={0x1, 0x0, {0x1, 0x0, 0x101c, 0x4, 0x0, 0x0, 0x5, 0x4}})
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x80002, 0x0)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0x1a, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600722, 0x19)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x143101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
ioctl$VIDIOC_S_INPUT(0xffffffffffffffff, 0xc0045627, &(0x7f00000000c0)=0x3)
syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x20000)
r3 = openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$UI_SET_EVBIT(r3, 0x40045564, 0x11)
ioctl$UI_DEV_SETUP(r3, 0x405c5503, &(0x7f0000000100)={{0x100}, 'syz1\x00'})
r4 = socket(0x10, 0x3, 0x4)
sendmsg$nl_route_sched(r4, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000005340)=@newqdisc={0x68, 0x14, 0xf0b, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, {0x4, 0x4}, {0x7, 0x1}, {0xc, 0xfff3}}, [@TCA_STAB={0x44, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x22, 0x4, 0xa, 0x0, 0x0, 0x7e}}, {0x4}}, {{0x1c, 0x1, {0x0, 0xc, 0x8, 0xd, 0x0, 0x4, 0x6}}, {0x4}}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x1}, 0x44)
ioctl$UI_SET_LEDBIT(r3, 0x40045569, 0x3)
ioctl$UI_DEV_CREATE(r3, 0x5501)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
syz_usb_control_io$uac1(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(0xffffffffffffffff, 0x0, 0x0)
preadv(r5, &(0x7f0000000500)=[{&(0x7f0000000000)=""/31, 0x1f}, {&(0x7f00000002c0)=""/187, 0xbb}, {&(0x7f0000000380)=""/159, 0x9f}, {&(0x7f0000000240)}, {&(0x7f0000000440)=""/138, 0x8a}], 0x5, 0x3, 0x75)
ioctl$UI_DEV_DESTROY(r3, 0x5502)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f0000000080)=0x3)
write$cgroup_subtree(r2, &(0x7f0000000180)={[{0x2d, 'cpuacct'}, {0x2d, 'cpu'}]}, 0xe)
ioctl$TCFLSH(r6, 0x80047437, 0x10004000000006)

3.380201822s ago: executing program 4 (id=5020):
mount$bind(0x0, 0x0, 0x0, 0x2000024, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(0x0, 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket$inet(0xa, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r2, 0x0, 0x40, &(0x7f00000002c0)=@mangle={'mangle\x00', 0x44, 0x6, 0x3f8, 0x2c0, 0x0, 0x2c0, 0x138, 0x0, 0x360, 0x360, 0x360, 0x360, 0x360, 0x6, 0x0, {[{{@ip={@loopback, @multicast1=0xe0007600, 0x0, 0x0, 'gre0\x00', 'ip6gre0\x00', {}, {}, 0x0, 0x0, 0x11}, 0x7a00, 0x70, 0x98}, @inet=@DSCP={0x28}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @local, 0x0, 0x0, 'wg1\x00', 'nicvf0\x00', {}, {}, 0x11}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @local}}}, {{@ip={@broadcast, @multicast2, 0x0, 0xff, 'vlan1\x00', 'nr0\x00'}, 0x0, 0xb8, 0xe8, 0x0, {}, [@common=@unspec=@limit={{0x48}, {0x0, 0x28, 0x0, 0x0, 0x0, 0x1}}]}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0xf, 0x7b7b, @remote, 0x4e22}}}, {{@ip={@rand_addr, @private, 0xffffffff, 0xff, 'syzkaller0\x00', 'veth1_to_team\x00', {}, {0xff}}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @empty}}}, {{@ip={@empty, @empty, 0xff000000, 0x0, 'lo\x00', 'batadv_slave_1\x00'}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x4, 0x0, @loopback}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x458)

3.338969308s ago: executing program 1 (id=5021):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000300)={0x0, 0x18, 0xfa00, {0x2, &(0x7f00000000c0)={<r1=>0xffffffffffffffff}, 0x2}}, 0x20)
fsopen(0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r2}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r3 = openat$binfmt_register(0xffffffffffffff9c, 0x0, 0x1, 0x0)
write$binfmt_register(r3, &(0x7f0000000100)={0x3a, 'syz0', 0x3a, 'E', 0x3a, 0xb, 0x3a, '^', 0x3a, '!!\x00', 0x3a, './file0'}, 0x2b)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$nl_route(0x10, 0x3, 0x0)
syz_open_dev$midi(&(0x7f0000000300), 0x2, 0x0)
close(0xffffffffffffffff)
r7 = fsopen(&(0x7f0000000180)='pipefs\x00', 0x1)
fsconfig$FSCONFIG_SET_STRING(r7, 0x1, &(0x7f0000000700)='source', &(0x7f0000000780)='c:::/\x83\xc1\xcfD\xc4AO\x06)\xb03\xfcI\x95w\x96\x9b\xe9\xa6\x1a\x96\xael\x11\xa6\x06\xe3G\xb1\x1d$\xc2;\x8f\xf3\x13\xebB\x93\x94\x01\x8b\x88\xeb\xa3\x01\rx\x86bK&\x13a~\x04/\x18\x14ZM\xcb\xad\x92>\xe5\x01V\xdc\x05#\x13\xe9F\xa0\x1b\xf8\xe12\xe9\x80\x988\xd8?\x86\xe9i\x7f\xa8\xe0c\x94\xc1\xa8\xbf\xff\xfe\xfe!\x7f2\xf1\xc7P\x80A\x1c2k\xf6}P\x19\xee:i|0\x1c\x13u\xb0I\xaa\xe3\x14\x9a\x1f\x9f(\xd1$\x06\xa8&t&A0\xa7\xef\x9cL\x8e1K\x00\x00\x00\x00\x00\x00', 0x0)
write$RDMA_USER_CM_CMD_SET_OPTION(r0, &(0x7f0000000540)={0xe, 0x18, 0xfa00, @id_afonly={&(0x7f0000000500)=0x1, r1, 0x0, 0x2, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_BIND_IP(r0, &(0x7f00000002c0)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e23, 0xfffffffd, @loopback, 0x5}, r1}}, 0x30)
r8 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r8, 0x4008af03, &(0x7f0000000140))

3.21618777s ago: executing program 6 (id=5022):
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x1})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x77359400}}, 0x0)
shmget$private(0x0, 0x3000, 0x2, &(0x7f0000ffd000/0x3000)=nil)

3.057496605s ago: executing program 6 (id=5023):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$xdp(0x2c, 0x3, 0x0)
mmap$xdp(&(0x7f0000003000/0x1000)=nil, 0x1000, 0x200000d, 0x11, r1, 0x100000000)
close(r0)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x1}, 0x1c)
listen(r2, 0x0)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r4 = accept(r0, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[], 0xfffffdef}, 0x1, 0x0, 0x0, 0xc000}, 0x10)
recvfrom(r3, &(0x7f0000000180)=""/60, 0xfffffffffffffecb, 0x4100, 0x0, 0x0)

2.245119495s ago: executing program 1 (id=5024):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2182, 0x0)
r1 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000140)='/proc/meminfo\x00', 0x0, 0x0)
sendfile(r0, r1, 0x0, 0x20000023896)

2.172283569s ago: executing program 4 (id=5025):
dup(0xffffffffffffffff)
r0 = io_uring_setup(0x47b, &(0x7f0000000ac0)={0x0, 0x204651, 0x80, 0x2, 0x75})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r1)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x200000, @empty, 0x1}, 0x1c)
listen(r2, 0x0)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r4 = dup(r3)
write$6lowpan_enable(r4, &(0x7f0000000000)='0', 0xfffffd2c)
close_range(r0, 0xffffffffffffffff, 0x200000000000000)

2.136976192s ago: executing program 3 (id=5026):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x40001e0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = add_key$user(0x0, &(0x7f0000002180)={'syz', 0x2}, &(0x7f00000021c0)='b', 0x1, 0xfffffffffffffffe)
r4 = add_key$user(&(0x7f0000000380), &(0x7f00000000c0)={'syz', 0x2}, &(0x7f0000000100)="370c099069effa43de3e1404db09b4ce1ef77bde4b371532dd16447c1b13403656c86711f6e750026f23029a50d44299c7bf5c78dc5efae2d041016160e8bef7b30c05e298aa9572540dd950307987eef2115e1bcf512bea3447b8ba3229c7eddd10ca5a9e9f827e4b13490dbbd4fc5a45e0738b959acafd2c12863045265bcbc2c9426ac3f614746b436fe86a72dc642dd67d970604a69b4f22cd0076beedc18056ab4bea4c825b69a7a77adcd548868487", 0xb2, 0xffffffffffffffff)
keyctl$dh_compute(0x17, &(0x7f0000000400)={r3, r4, r3}, &(0x7f0000000280)=""/190, 0xbe, &(0x7f00000003c0)={&(0x7f0000000240)={'streebog512-generic\x00'}})
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB="44000000020605000000000000000000000000000c000300686173683a69700005000400000000000900020073797a310000000005000500020000000500010006"], 0x44}}, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000004c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ID={0x8, 0xa, 0x1, 0x0, 0xfffffffc}]}, @NFT_MSG_NEWSETELEM={0x44, 0xc, 0xa, 0x101, 0x0, 0x0, {0xa, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x18, 0x3, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0xc, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x6, 0x1, "d103"}]}, @NFTA_SET_ELEM_USERDATA={0x4}]}]}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0xa8}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSETELEM(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)={0x2c, 0xd, 0xa, 0x301, 0x0, 0x0, {0xa, 0x0, 0x1}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz1\x00'}]}, 0x2c}, 0x1, 0x0, 0x0, 0x24000801}, 0x8000)
sendmsg$IPSET_CMD_ADD(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000040)={0x30, 0x9, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x8000}]}, 0x30}, 0x1, 0x0, 0x0, 0x10000047}, 0x0)

1.283910921s ago: executing program 1 (id=5027):
openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
openat$sequencer2(0xffffffffffffff9c, &(0x7f00000005c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8e}, 0x94)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5c0000000206030000000000008000000000000005000100070000000900020073797a30000000001400078008001240000000000500150004000000050005000000000005000400000000000d000300686173683a6d6163"], 0x5c}}, 0x0)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000740)=ANY=[@ANYBLOB="44000000090605000000000000000000010000050900020073797a30000006000500010007000000080009400000000114000880100007800a0011"], 0x44}, 0x1, 0x0, 0x0, 0x8000}, 0x44000)

1.186655909s ago: executing program 4 (id=5028):
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f0000000080)='./file1\x00', 0x4000, &(0x7f0000000040)=ANY=[], 0xff, 0x60c0, &(0x7f000000d800)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0xc4042, 0x1ff)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000140), 0x2800, 0x0)
sendfile(r0, r1, 0x0, 0xfffe80)
syz_mount_image$nilfs2(&(0x7f0000000040), &(0x7f0000000100)='./file1\x00', 0x3214212, &(0x7f00000000c0)=ANY=[@ANYRES32=0x0, @ANYRES32], 0x7, 0xf11, &(0x7f0000001100)="$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")
truncate(0x0, 0x6)

1.156547125s ago: executing program 0 (id=5029):
prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6(0xa, 0x3, 0x7)
connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0xfffffffe, @local, 0x1}, 0x1c)
sendmmsg(r3, &(0x7f0000000480), 0x2e9, 0x0)

1.156313219s ago: executing program 6 (id=5030):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_GET_BYNAME(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)={0x20, 0xe, 0x6, 0x401, 0x0, 0x0, {0xa, 0x0, 0x2}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz2\x00'}]}, 0x20}}, 0x40000)

1.040490801s ago: executing program 3 (id=5031):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f00000000c0)={'das16m1\x00', [0x4f27, 0x1f, 0x10000, 0x4, 0x5, 0xcc7, 0x8, 0x7, 0xa, 0x100, 0x2, 0x1, 0x1, 0xfffffffe, 0x6, 0x101, 0x0, 0x1a449, 0x3, 0x40000003, 0x89, 0xcaa3, 0x0, 0x20001e58, 0xb, 0xe69, 0x3c, 0x8, 0x4088, 0x0, 0xfffffff8]})

942.203127ms ago: executing program 6 (id=5032):
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = socket$inet6(0xa, 0x3, 0x87)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}, 0x9df}, 0x1c)
syz_usb_connect(0x2, 0x2d, &(0x7f0000000180)=ANY=[@ANYBLOB="12010000ec31f8104c1302007eec0102030109021b0001000000000904000001098b750009058389b5"], 0x0)
openat$mice(0xffffffffffffff9c, &(0x7f0000000000), 0x101000)

375.831836ms ago: executing program 1 (id=5033):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(0x0, r0)
sendmsg$IEEE802154_ADD_IFACE(r0, &(0x7f0000001040)={0x0, 0x0, &(0x7f0000001000)={&(0x7f0000000fc0)={0x28, r1, 0x1, 0x70bd26, 0x25dfdbfd, {}, [@IEEE802154_ATTR_PHY_NAME={0x9, 0x1f, 'phy0\x00'}, @IEEE802154_ATTR_DEV_TYPE={0x5}]}, 0x28}, 0x1, 0x0, 0x0, 0x4}, 0x48000)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000440), 0xffffffffffffffff)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000400), r2)
ioctl$sock_SIOCGIFINDEX_802154(r4, 0x8933, &(0x7f0000000100)={'wpan0\x00', <r6=>0x0})
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_LLSEC_ADD_SECLEVEL(r7, &(0x7f0000000040)={0x0, 0x33, &(0x7f0000000340)={&(0x7f00000000c0)={0x3c, r5, 0x60b, 0x0, 0x0, {}, [@IEEE802154_ATTR_LLSEC_DEV_OVERRIDE={0x5}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r6}, @IEEE802154_ATTR_LLSEC_SECLEVELS={0x5}, @IEEE802154_ATTR_LLSEC_FRAME_TYPE={0x5, 0x33, 0x3}, @IEEE802154_ATTR_LLSEC_CMD_FRAME_ID={0x5}]}, 0x3c}}, 0x0)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000e00), 0xffffffffffffffff)
sendmsg$NL802154_CMD_NEW_SEC_KEY(r8, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000001080)={&(0x7f0000000a00)=ANY=[@ANYBLOB="2c010000", @ANYRES16=r9, @ANYBLOB="01000000000000000000170000000c00060001000000010000000c01308014000400976f1044852bca665354bd217b6b9037200001800c0005000400000000000000080001000300000005000200000000000500020008000000240003"], 0x12c}, 0x1, 0x0, 0x0, 0x20000020}, 0x0)
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000040)={0x1c, r3, 0x301, 0x0, 0x0, {}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r6}]}, 0x1c}, 0x1, 0x3000000}, 0x0)
syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000000), r2)

408.519µs ago: executing program 0 (id=5034):
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
openat$procfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/comedi0\x00', 0x40, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f0000000000)={'dt2814\x00', [0x260, 0xfffffff9, 0xf, 0x8, 0x9, 0x3, 0x6623, 0x6, 0x8b, 0xc, 0x7, 0x6, 0x2, 0x4, 0x4, 0x0, 0x1, 0x7, 0x10004, 0x80000001, 0x10, 0x5, 0x10000, 0x6, 0xfffffffd, 0x6, 0xffffffff, 0x3, 0x54, 0x8, 0x4]})

0s ago: executing program 4 (id=5035):
bpf$MAP_CREATE(0x0, &(0x7f00000006c0)=ANY=[@ANYBLOB="1e00000003030000bb060000a99700d781bd24fd", @ANYRES32, @ANYBLOB="0200000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="030000000500000005"], 0x50)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)=ANY=[@ANYBLOB="2000000069840b000000000000000800010002"], 0x20}}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x18, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="d4010000400000001800000000000000000000000000000095"], 0x0, 0x5, 0x0, 0x0, 0x0, 0xa5}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$NL80211_CMD_VENDOR(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000008c0)=ANY=[], 0xfc}}, 0x0)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000340), 0x40201, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x28}, 0x1, 0x0, 0x0, 0x4881}, 0x8000)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x29, 0x48, &(0x7f0000000100), 0x120)
bind$alg(0xffffffffffffffff, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-aesni\x00'}, 0x58)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r0 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x800)
sendmmsg$alg(r0, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r0, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f00000008c0)={0x0, 0x0, 0x3, 0x0, '\x00', [{0x9, 0x5, 0x50000000000000, 0x3cc76c54, 0x3, 0x401}, {0x10001, 0x80000001, 0x2, 0x7, 0x4, 0xffffffffa6ab9e49}], ['\x00', '\x00', '\x00']})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000680)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r2, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r3, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

kernel console output (not intermixed with test programs):

25251] bridge_slave_1: entered allmulticast mode
[ 2155.712240][T25251] bridge_slave_1: entered promiscuous mode
[ 2155.849375][T25251] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2155.897129][T25251] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2155.967388][T21136] Bluetooth: hci4: command tx timeout
[ 2156.059940][T25283] overlayfs: upper fs does not support file handles, falling back to index=off.
[ 2156.235119][T25251] team0: Port device team_slave_0 added
[ 2156.357657][T25251] team0: Port device team_slave_1 added
[ 2156.546761][T24157] udevd[24157]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[ 2156.570695][T24157] udevd[24157]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[ 2157.381672][T25296] netlink: 'syz.4.4719': attribute type 4 has an invalid length.
[ 2157.398244][T25299] loop3: detected capacity change from 0 to 128
[ 2157.400809][T25251] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2157.437419][T25297] netlink: 'syz.4.4719': attribute type 4 has an invalid length.
[ 2157.454811][T25251] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2157.482538][T25251] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2157.509127][T25251] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2157.577393][T25251] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2157.734700][T25251] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2158.204533][T21136] Bluetooth: hci4: command tx timeout
[ 2158.343424][T25312] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4728'.
[ 2159.198865][T25317] vivid-000: disconnect
[ 2159.338490][T25311] vivid-000: reconnect
[ 2159.377887][T25319] overlayfs: upper fs does not support file handles, falling back to index=off.
[ 2159.789181][T25321] loop2: detected capacity change from 0 to 32768
[ 2159.805527][T25323] loop3: detected capacity change from 0 to 40427
[ 2159.821854][T25323] F2FS-fs (loop3): invalid crc value
[ 2159.823798][T25321] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 2159.912968][T25323] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[ 2159.924660][T25323] F2FS-fs (loop3): Start checkpoint disabled!
[ 2159.930325][T25321] XFS (loop2): Ending clean mount
[ 2159.934484][T25323] F2FS-fs (loop3): f2fs_disable_checkpoint() finish, err:0
[ 2159.944799][T25323] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[ 2159.978163][T25321] XFS (loop2): Quotacheck needed: Please wait.
[ 2160.338864][T25321] XFS (loop2): Quotacheck: Done.
[ 2160.414687][T21136] Bluetooth: hci4: command tx timeout
[ 2160.440844][   T30] audit: type=1800 audit(1758836274.614:205): pid=25321 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.4731" name="file1" dev="loop2" ino=6150 res=0 errno=0
[ 2160.535649][ T6979] kworker/u8:10: attempt to access beyond end of device
[ 2160.535649][ T6979] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2160.550396][ T6979] CPU: 0 UID: 0 PID: 6979 Comm: kworker/u8:10 Not tainted syzkaller #0 PREEMPT(full) 
[ 2160.550420][ T6979] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 2160.550432][ T6979] Workqueue: writeback wb_workfn (flush-7:3)
[ 2160.550465][ T6979] Call Trace:
[ 2160.550472][ T6979]  <TASK>
[ 2160.550489][ T6979]  dump_stack_lvl+0x189/0x250
[ 2160.550516][ T6979]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2160.550536][ T6979]  ? __pfx_queue_work_on+0x10/0x10
[ 2160.550551][ T6979]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 2160.550582][ T6979]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2160.550621][ T6979]  f2fs_handle_critical_error+0x37c/0x540
[ 2160.550654][ T6979]  f2fs_write_end_io+0x886/0xb60
[ 2160.550695][ T6979]  __submit_merged_bio+0x27a/0x6a0
[ 2160.550728][ T6979]  __submit_merged_write_cond+0x255/0x530
[ 2160.550761][ T6979]  f2fs_write_data_pages+0x261d/0x3000
[ 2160.550820][ T6979]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2160.550897][ T6979]  ? look_up_lock_class+0x74/0x170
[ 2160.550925][ T6979]  ? __pfx___schedule+0x10/0x10
[ 2160.550960][ T6979]  ? __lock_acquire+0xab9/0xd20
[ 2160.550987][ T6979]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2160.551004][ T6979]  do_writepages+0x32e/0x550
[ 2160.551041][ T6979]  ? reacquire_held_locks+0x127/0x1d0
[ 2160.551054][ T6979]  ? writeback_sb_inodes+0x384/0x1010
[ 2160.551080][ T6979]  __writeback_single_inode+0x145/0xff0
[ 2160.551096][ T6979]  ? do_raw_spin_unlock+0x122/0x240
[ 2160.551118][ T6979]  writeback_sb_inodes+0x6c7/0x1010
[ 2160.551134][ T6979]  ? unwind_next_frame+0xa5/0x2390
[ 2160.551181][ T6979]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 2160.551260][ T6979]  ? rcu_is_watching+0x15/0xb0
[ 2160.551288][ T6979]  wb_writeback+0x43b/0xaf0
[ 2160.551316][ T6979]  ? queue_io+0x3b1/0x590
[ 2160.551338][ T6979]  ? __pfx_wb_writeback+0x10/0x10
[ 2160.551366][ T6979]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2160.551390][ T6979]  wb_workfn+0x409/0xef0
[ 2160.551432][ T6979]  ? __pfx_wb_workfn+0x10/0x10
[ 2160.551461][ T6979]  ? __lock_acquire+0xab9/0xd20
[ 2160.551495][ T6979]  ? process_scheduled_works+0x9ef/0x17b0
[ 2160.551524][ T6979]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2160.551538][ T6979]  ? process_scheduled_works+0x9ef/0x17b0
[ 2160.551558][ T6979]  ? process_scheduled_works+0x9ef/0x17b0
[ 2160.551583][ T6979]  process_scheduled_works+0xae1/0x17b0
[ 2160.551641][ T6979]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2160.551684][ T6979]  worker_thread+0x8a0/0xda0
[ 2160.551711][ T6979]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2160.551745][ T6979]  ? __kthread_parkme+0x7b/0x200
[ 2160.551774][ T6979]  kthread+0x711/0x8a0
[ 2160.551797][ T6979]  ? __pfx_worker_thread+0x10/0x10
[ 2160.551818][ T6979]  ? __pfx_kthread+0x10/0x10
[ 2160.551840][ T6979]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2160.551855][ T6979]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2160.551871][ T6979]  ? __pfx_kthread+0x10/0x10
[ 2160.551891][ T6979]  ret_from_fork+0x4bc/0x870
[ 2160.551917][ T6979]  ? __pfx_ret_from_fork+0x10/0x10
[ 2160.551948][ T6979]  ? __switch_to_asm+0x39/0x70
[ 2160.551964][ T6979]  ? __switch_to_asm+0x33/0x70
[ 2160.551978][ T6979]  ? __pfx_kthread+0x10/0x10
[ 2160.551995][ T6979]  ret_from_fork_asm+0x1a/0x30
[ 2160.552031][ T6979]  </TASK>
[ 2160.552039][ T6979] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 2160.895035][T24165] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 2160.941640][T21924] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2160.984947][T21924] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2161.029146][T21924] bond0 (unregistering): Released all slaves
[ 2161.290810][T21924] tipc: Left network mode
[ 2161.336148][T25251] hsr_slave_0: entered promiscuous mode
[ 2161.343029][T25251] hsr_slave_1: entered promiscuous mode
[ 2161.398173][T25251] debugfs: 'hsr0' already exists in 'hsr'
[ 2161.414915][T25251] Cannot create hsr debugfs directory
[ 2161.448208][T25339] loop4: detected capacity change from 0 to 128
[ 2161.518026][T25339] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 2161.531454][T25339] ext4 filesystem being mounted at /150/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 2161.951060][T25351] loop0: detected capacity change from 0 to 128
[ 2162.024560][T25351] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 2162.053631][T25351] ext4 filesystem being mounted at /71/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 2162.638919][T21136] Bluetooth: hci4: command tx timeout
[ 2162.796128][T21818] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 2162.988957][T24108] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 2163.091880][T25365] loop4: detected capacity change from 0 to 512
[ 2163.157178][T25367] input: syz1 as /devices/virtual/input/input28
[ 2163.201623][T25365] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[ 2164.113478][T24492] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[ 2164.289783][T24492] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 2164.320902][T24492] usb 3-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 2164.321178][T25390] loop0: detected capacity change from 0 to 128
[ 2164.342063][T24492] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2164.363869][T24492] usb 3-1: config 0 descriptor??
[ 2164.379907][T24492] pwc: Askey VC010 type 2 USB webcam detected.
[ 2164.389172][T25390] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 2164.414858][T25390] ext4 filesystem being mounted at /78/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 2164.565321][T25251] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 2164.592341][T25251] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 2164.608337][T25251] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 2164.621196][T25251] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 2165.215922][T24492] pwc: recv_control_msg error -32 req 02 val 2b00
[ 2165.295825][T25251] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2165.319381][T24492] pwc: recv_control_msg error -32 req 02 val 2700
[ 2165.325544][T25251] 8021q: adding VLAN 0 to HW filter on device team0
[ 2165.338547][T15085] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[ 2165.353730][T24492] pwc: recv_control_msg error -32 req 02 val 2c00
[ 2165.377249][ T3592] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2165.384756][ T3592] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2165.400675][T24492] pwc: recv_control_msg error -32 req 04 val 1000
[ 2165.430963][T24108] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 2165.440829][T24492] pwc: recv_control_msg error -32 req 04 val 1300
[ 2165.449197][ T3592] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2165.456469][ T3592] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2165.463373][T24492] pwc: recv_control_msg error -32 req 04 val 1400
[ 2165.490179][T24492] pwc: recv_control_msg error -32 req 02 val 2000
[ 2165.528511][T24492] pwc: recv_control_msg error -32 req 02 val 2100
[ 2165.552222][T25407] loop4: detected capacity change from 0 to 128
[ 2165.557594][T24492] pwc: recv_control_msg error -32 req 04 val 1500
[ 2165.569001][T24492] pwc: recv_control_msg error -32 req 02 val 2500
[ 2165.621327][T24492] pwc: recv_control_msg error -32 req 02 val 2400
[ 2165.713329][T25407] FAT-fs (loop4): error, clusters badly computed (2 != 0)
[ 2165.741168][T25407] FAT-fs (loop4): Filesystem has been set read-only
[ 2165.854459][T24492] pwc: recv_control_msg error -71 req 02 val 2900
[ 2165.882361][T24492] pwc: recv_control_msg error -71 req 02 val 2800
[ 2165.920046][T24492] pwc: recv_control_msg error -71 req 04 val 1100
[ 2165.945037][T24492] pwc: recv_control_msg error -71 req 04 val 1200
[ 2166.002824][T24492] pwc: Registered as video103.
[ 2166.088789][T24492] input: PWC snapshot button as /devices/platform/dummy_hcd.2/usb3/3-1/input/input29
[ 2166.466649][T24492] usb 3-1: USB disconnect, device number 29
[ 2166.494373][T25251] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 2168.151768][T21924] hsr_slave_0: left promiscuous mode
[ 2168.197376][T21924] hsr_slave_1: left promiscuous mode
[ 2168.270446][T21924] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2168.279586][T21924] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2168.288552][T21924] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2168.314534][T21924] veth1_macvtap: left promiscuous mode
[ 2168.320538][T21924] veth0_macvtap: left promiscuous mode
[ 2168.864222][T21924] veth1_vlan: left promiscuous mode
[ 2168.870249][T21924] veth0_vlan: left promiscuous mode
[ 2169.107011][T25452] binder: 25451:25452 ioctl c0306201 200000000680 returned -14
[ 2169.980527][T21924] pim6reg (unregistering): left allmulticast mode
[ 2171.882214][T25467] loop3: detected capacity change from 0 to 40427
[ 2171.902397][T25467] F2FS-fs (loop3): invalid crc value
[ 2172.015457][T25467] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[ 2172.031803][T25467] F2FS-fs (loop3): Start checkpoint disabled!
[ 2172.039160][T25467] F2FS-fs (loop3): f2fs_disable_checkpoint() finish, err:0
[ 2172.067677][T25467] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[ 2172.500300][T21512] kworker/u8:2: attempt to access beyond end of device
[ 2172.500300][T21512] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2172.540843][T21512] CPU: 0 UID: 0 PID: 21512 Comm: kworker/u8:2 Not tainted syzkaller #0 PREEMPT(full) 
[ 2172.540868][T21512] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 2172.540880][T21512] Workqueue: writeback wb_workfn (flush-7:3)
[ 2172.540910][T21512] Call Trace:
[ 2172.540917][T21512]  <TASK>
[ 2172.540925][T21512]  dump_stack_lvl+0x189/0x250
[ 2172.540952][T21512]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2172.540971][T21512]  ? __pfx_queue_work_on+0x10/0x10
[ 2172.540986][T21512]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 2172.541011][T21512]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2172.541047][T21512]  f2fs_handle_critical_error+0x37c/0x540
[ 2172.541091][T21512]  f2fs_write_end_io+0x886/0xb60
[ 2172.541131][T21512]  __submit_merged_bio+0x27a/0x6a0
[ 2172.541163][T21512]  __submit_merged_write_cond+0x255/0x530
[ 2172.541198][T21512]  f2fs_write_data_pages+0x261d/0x3000
[ 2172.541261][T21512]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2172.541299][T21512]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[ 2172.541363][T21512]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[ 2172.541383][T21512]  ? look_up_lock_class+0x74/0x170
[ 2172.541413][T21512]  ? trace_f2fs_writepages+0x7f/0x200
[ 2172.541440][T21512]  ? f2fs_write_node_pages+0x478/0x6e0
[ 2172.541472][T21512]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[ 2172.541503][T21512]  ? __lock_acquire+0xab9/0xd20
[ 2172.541535][T21512]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2172.541555][T21512]  do_writepages+0x32e/0x550
[ 2172.541587][T21512]  ? reacquire_held_locks+0x127/0x1d0
[ 2172.541604][T21512]  ? writeback_sb_inodes+0x384/0x1010
[ 2172.541633][T21512]  __writeback_single_inode+0x145/0xff0
[ 2172.541652][T21512]  ? do_raw_spin_unlock+0x122/0x240
[ 2172.541678][T21512]  writeback_sb_inodes+0x6c7/0x1010
[ 2172.541730][T21512]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 2172.541803][T21512]  ? rcu_is_watching+0x15/0xb0
[ 2172.541833][T21512]  wb_writeback+0x43b/0xaf0
[ 2172.541864][T21512]  ? queue_io+0x3b1/0x590
[ 2172.541886][T21512]  ? __pfx_wb_writeback+0x10/0x10
[ 2172.541916][T21512]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2172.541940][T21512]  wb_workfn+0x409/0xef0
[ 2172.541983][T21512]  ? __pfx_wb_workfn+0x10/0x10
[ 2172.542013][T21512]  ? __lock_acquire+0xab9/0xd20
[ 2172.542046][T21512]  ? process_scheduled_works+0x9ef/0x17b0
[ 2172.542084][T21512]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2172.542099][T21512]  ? process_scheduled_works+0x9ef/0x17b0
[ 2172.542120][T21512]  ? process_scheduled_works+0x9ef/0x17b0
[ 2172.542147][T21512]  process_scheduled_works+0xae1/0x17b0
[ 2172.542206][T21512]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2172.542250][T21512]  worker_thread+0x8a0/0xda0
[ 2172.542277][T21512]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2172.542311][T21512]  ? __kthread_parkme+0x7b/0x200
[ 2172.542339][T21512]  kthread+0x711/0x8a0
[ 2172.542361][T21512]  ? __pfx_worker_thread+0x10/0x10
[ 2172.542382][T21512]  ? __pfx_kthread+0x10/0x10
[ 2172.542404][T21512]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2172.542420][T21512]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2172.542435][T21512]  ? __pfx_kthread+0x10/0x10
[ 2172.542454][T21512]  ret_from_fork+0x4bc/0x870
[ 2172.542479][T21512]  ? __pfx_ret_from_fork+0x10/0x10
[ 2172.542510][T21512]  ? __switch_to_asm+0x39/0x70
[ 2172.542530][T21512]  ? __switch_to_asm+0x33/0x70
[ 2172.542548][T21512]  ? __pfx_kthread+0x10/0x10
[ 2172.542571][T21512]  ret_from_fork_asm+0x1a/0x30
[ 2172.542615][T21512]  </TASK>
[ 2172.542624][T21512] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 2173.085145][T25479] loop2: detected capacity change from 0 to 40427
[ 2173.182823][T25479] F2FS-fs (loop2): invalid crc value
[ 2173.235870][T25479] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[ 2173.260992][T25479] F2FS-fs (loop2): Start checkpoint disabled!
[ 2173.288659][T25479] F2FS-fs (loop2): f2fs_disable_checkpoint() finish, err:0
[ 2173.299951][T25479] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[ 2174.056823][T15085] kworker/u8:8: attempt to access beyond end of device
[ 2174.056823][T15085] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2174.086486][T15085] CPU: 0 UID: 0 PID: 15085 Comm: kworker/u8:8 Not tainted syzkaller #0 PREEMPT(full) 
[ 2174.086510][T15085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 2174.086521][T15085] Workqueue: writeback wb_workfn (flush-7:2)
[ 2174.086550][T15085] Call Trace:
[ 2174.086557][T15085]  <TASK>
[ 2174.086564][T15085]  dump_stack_lvl+0x189/0x250
[ 2174.086588][T15085]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2174.086605][T15085]  ? __pfx_queue_work_on+0x10/0x10
[ 2174.086618][T15085]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 2174.086641][T15085]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2174.086675][T15085]  f2fs_handle_critical_error+0x37c/0x540
[ 2174.086705][T15085]  f2fs_write_end_io+0x886/0xb60
[ 2174.086744][T15085]  __submit_merged_bio+0x27a/0x6a0
[ 2174.086773][T15085]  __submit_merged_write_cond+0x255/0x530
[ 2174.086822][T15085]  f2fs_write_data_pages+0x261d/0x3000
[ 2174.086876][T15085]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2174.086908][T15085]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[ 2174.086966][T15085]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[ 2174.086981][T15085]  ? look_up_lock_class+0x74/0x170
[ 2174.087009][T15085]  ? trace_f2fs_writepages+0x7f/0x200
[ 2174.087032][T15085]  ? f2fs_write_node_pages+0x478/0x6e0
[ 2174.087059][T15085]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[ 2174.087085][T15085]  ? __lock_acquire+0xab9/0xd20
[ 2174.087120][T15085]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2174.087137][T15085]  do_writepages+0x32e/0x550
[ 2174.087167][T15085]  ? reacquire_held_locks+0x127/0x1d0
[ 2174.087181][T15085]  ? writeback_sb_inodes+0x384/0x1010
[ 2174.087207][T15085]  __writeback_single_inode+0x145/0xff0
[ 2174.087224][T15085]  ? do_raw_spin_unlock+0x122/0x240
[ 2174.087246][T15085]  writeback_sb_inodes+0x6c7/0x1010
[ 2174.087293][T15085]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 2174.087360][T15085]  ? rcu_is_watching+0x15/0xb0
[ 2174.087385][T15085]  wb_writeback+0x43b/0xaf0
[ 2174.087411][T15085]  ? queue_io+0x3b1/0x590
[ 2174.087430][T15085]  ? __pfx_wb_writeback+0x10/0x10
[ 2174.087456][T15085]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2174.087477][T15085]  wb_workfn+0x409/0xef0
[ 2174.087517][T15085]  ? __pfx_wb_workfn+0x10/0x10
[ 2174.087542][T15085]  ? __lock_acquire+0xab9/0xd20
[ 2174.087574][T15085]  ? process_scheduled_works+0x9ef/0x17b0
[ 2174.087603][T15085]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2174.087616][T15085]  ? process_scheduled_works+0x9ef/0x17b0
[ 2174.087635][T15085]  ? process_scheduled_works+0x9ef/0x17b0
[ 2174.087657][T15085]  process_scheduled_works+0xae1/0x17b0
[ 2174.087712][T15085]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2174.087753][T15085]  worker_thread+0x8a0/0xda0
[ 2174.087804][T15085]  kthread+0x711/0x8a0
[ 2174.087825][T15085]  ? __pfx_worker_thread+0x10/0x10
[ 2174.087844][T15085]  ? __pfx_kthread+0x10/0x10
[ 2174.087864][T15085]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2174.087878][T15085]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2174.087892][T15085]  ? __pfx_kthread+0x10/0x10
[ 2174.087909][T15085]  ret_from_fork+0x4bc/0x870
[ 2174.087933][T15085]  ? __pfx_ret_from_fork+0x10/0x10
[ 2174.087962][T15085]  ? __switch_to_asm+0x39/0x70
[ 2174.087979][T15085]  ? __switch_to_asm+0x33/0x70
[ 2174.087994][T15085]  ? __pfx_kthread+0x10/0x10
[ 2174.088012][T15085]  ret_from_fork_asm+0x1a/0x30
[ 2174.088051][T15085]  </TASK>
[ 2174.428833][T15085] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[ 2174.522943][T25487] loop4: detected capacity change from 0 to 512
[ 2174.639457][T25487] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -13
[ 2174.684079][T25487] EXT4-fs error (device loop4): ext4_orphan_get:1392: inode #13: comm syz.4.4782: iget: bad i_size value: 12154757448730
[ 2174.750694][T25487] EXT4-fs error (device loop4): ext4_orphan_get:1397: comm syz.4.4782: couldn't read orphan inode 13 (err -117)
[ 2174.796000][T25487] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 2174.897717][T21818] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 2174.988244][T25491] overlayfs: failed to resolve './file0': -2
[ 2175.687678][T21924] team0 (unregistering): Port device team_slave_1 removed
[ 2175.992786][T21924] team0 (unregistering): Port device team_slave_0 removed
[ 2176.425980][    C0] vxcan1: j1939_tp_rxtimer: 0xffff8880557ab000: rx timeout, send abort
[ 2176.456578][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 2176.464963][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 2176.829747][T25509] loop2: detected capacity change from 0 to 128
[ 2176.940856][T25509] FAT-fs (loop2): error, clusters badly computed (2 != 0)
[ 2176.966062][T25509] FAT-fs (loop2): Filesystem has been set read-only
[ 2176.972870][    C0] vxcan1: j1939_tp_rxtimer: 0xffff8880557ab000: abort rx timeout. Force session deactivation
[ 2178.631418][T11819] Bluetooth: hci1: command 0x0406 tx timeout
[ 2178.831419][T25493] 8021q: adding VLAN 0 to HW filter on device bond1
[ 2178.973092][T25527] loop0: detected capacity change from 0 to 512
[ 2179.041663][T25527] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -13
[ 2179.080351][T21164] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[ 2179.132636][    C1] vkms_vblank_simulate: vblank timer overrun
[ 2179.139211][T25527] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #13: comm syz.0.4792: iget: bad i_size value: 12154757448730
[ 2179.194073][T25251] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2179.203046][T25531] overlayfs: failed to resolve './file0': -2
[ 2179.205572][T25533] loop2: detected capacity change from 0 to 4096
[ 2179.217498][T25527] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz.0.4792: couldn't read orphan inode 13 (err -117)
[ 2179.224729][T25533] EXT4-fs: Ignoring removed bh option
[ 2179.238701][T25533] EXT4-fs (loop2): Test dummy encryption mode enabled
[ 2179.239390][T25527] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 2179.267512][T21164] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 2179.305400][T21164] usb 4-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 2179.316844][T21164] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2179.359329][T25533] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 2179.367613][T25533] System zones: 0-5
[ 2179.371915][T21164] usb 4-1: config 0 descriptor??
[ 2179.393668][T21164] pwc: Askey VC010 type 2 USB webcam detected.
[ 2179.409862][T25533] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 2179.422542][T25251] veth0_vlan: entered promiscuous mode
[ 2179.438636][T25251] veth1_vlan: entered promiscuous mode
[ 2179.473369][T24108] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 2179.494582][T25533] EXT4-fs (loop2): shut down requested (2)
[ 2179.586492][T25251] veth0_macvtap: entered promiscuous mode
[ 2179.635132][T25251] veth1_macvtap: entered promiscuous mode
[ 2179.644487][T24165] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 2179.686337][T21924] IPVS: stop unused estimator thread 0...
[ 2179.695126][T25539] loop4: detected capacity change from 0 to 7
[ 2179.726958][T25539] Dev loop4: unable to read RDB block 7
[ 2179.748552][T25539]  loop4: AHDI p1 p2
[ 2179.756391][T25251] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2179.759015][T25539] loop4: partition table partially beyond EOD, truncated
[ 2179.801433][T25251] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2179.820320][T25539] loop4: p1 size 4227858431 extends beyond EOD, truncated
[ 2179.854697][T21164] pwc: recv_control_msg error -32 req 02 val 2b00
[ 2179.888692][ T6979] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2179.900724][T21164] pwc: recv_control_msg error -32 req 02 val 2700
[ 2179.915086][T21164] pwc: recv_control_msg error -32 req 02 val 2c00
[ 2179.925755][T24157] udevd[24157]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[ 2179.935836][ T6979] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2179.989544][T21164] pwc: recv_control_msg error -32 req 04 val 1000
[ 2180.004623][T21164] pwc: recv_control_msg error -32 req 04 val 1300
[ 2180.011713][ T6979] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2180.020720][ T6979] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2180.825051][T21164] pwc: recv_control_msg error -32 req 04 val 1400
[ 2180.838157][T21164] pwc: recv_control_msg error -32 req 02 val 2000
[ 2180.851412][T21164] pwc: recv_control_msg error -32 req 02 val 2100
[ 2180.868619][T21164] pwc: recv_control_msg error -32 req 04 val 1500
[ 2180.888158][T21164] pwc: recv_control_msg error -32 req 02 val 2500
[ 2180.900065][T21164] pwc: recv_control_msg error -71 req 02 val 2400
[ 2180.907156][T21164] pwc: recv_control_msg error -71 req 02 val 2600
[ 2180.918201][T21164] pwc: recv_control_msg error -71 req 02 val 2900
[ 2180.931479][T21164] pwc: recv_control_msg error -71 req 02 val 2800
[ 2180.949389][T21164] pwc: recv_control_msg error -71 req 04 val 1100
[ 2180.960814][T21164] pwc: recv_control_msg error -71 req 04 val 1200
[ 2180.977776][T25555] loop2: detected capacity change from 0 to 4096
[ 2180.989303][T21164] pwc: Registered as video103.
[ 2180.998468][T21164] input: PWC snapshot button as /devices/platform/dummy_hcd.3/usb4/4-1/input/input30
[ 2181.013374][T21924] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2181.059625][T21924] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2181.160504][T25556] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 2181.165210][T21164] usb 4-1: USB disconnect, device number 11
[ 2181.224020][ T6979] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2181.252598][ T6979] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2181.282005][T25537] loop4: detected capacity change from 0 to 32768
[ 2181.630995][T25537] ERROR: (device loop4): dbAlloc: the hint is outside the map
[ 2181.630995][T25537] 
[ 2181.946031][T25537] ERROR: (device loop4): remounting filesystem as read-only
[ 2181.953778][T25537] ialloc: diAlloc returned -5!
[ 2181.964564][T25570] loop1: detected capacity change from 0 to 4096
[ 2181.980698][T25574] overlayfs: failed to resolve './file0': -2
[ 2181.982403][T25570] EXT4-fs: Ignoring removed bh option
[ 2182.279618][T25570] EXT4-fs (loop1): Test dummy encryption mode enabled
[ 2182.305644][T25570] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 2182.314474][T25570] System zones: 0-5
[ 2182.321456][T25570] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 2182.485472][T25570] EXT4-fs (loop1): shut down requested (2)
[ 2183.663791][T25251] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 2184.233236][T25601] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 2184.547613][T25610] loop4: detected capacity change from 0 to 128
[ 2190.058303][T25662] input: syz1 as /devices/virtual/input/input31
[ 2190.619033][T25665] loop0: detected capacity change from 0 to 128
[ 2190.680970][T25665] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 2190.782870][T25665] ext4 filesystem being mounted at /96/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 2191.757016][T24108] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 2192.395286][T25678] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[ 2192.420054][   T30] audit: type=1326 audit(1758836304.416:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25674 comm="syz.1.4838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb17158eec9 code=0x7ffc0000
[ 2192.458340][T25678] vhci_hcd vhci_hcd.0: pdev(1) rhport(2) sockfd(14)
[ 2192.464973][T25678] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 2192.474161][T25678] vhci_hcd vhci_hcd.0: Device attached
[ 2192.506368][T25681] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[ 2192.513006][T25681] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[ 2192.523105][T25681] vhci_hcd vhci_hcd.0: Device attached
[ 2192.552562][   T30] audit: type=1326 audit(1758836304.416:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25674 comm="syz.1.4838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb17158eec9 code=0x7ffc0000
[ 2192.639009][T25682] vhci_hcd: connection closed
[ 2192.639458][T25686] vhci_hcd: connection closed
[ 2192.645061][ T3592] vhci_hcd: stop threads
[ 2192.986297][ T3592] vhci_hcd: release socket
[ 2192.988777][T25554] usb 35-3: new high-speed USB device number 2 using vhci_hcd
[ 2192.990939][ T3592] vhci_hcd: disconnect device
[ 2193.003720][T25687] vhci_hcd: sendmsg failed!, ret=-32 for 48
[ 2193.010510][T25692] loop3: detected capacity change from 0 to 40427
[ 2193.024107][ T3592] vhci_hcd: stop threads
[ 2193.038711][ T3592] vhci_hcd: release socket
[ 2193.046329][T25692] F2FS-fs (loop3): invalid crc value
[ 2193.121254][T25692] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[ 2193.132776][T25692] F2FS-fs (loop3): Start checkpoint disabled!
[ 2193.143906][T25692] F2FS-fs (loop3): f2fs_disable_checkpoint() finish, err:0
[ 2193.154364][T25692] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[ 2193.178800][ T3592] vhci_hcd: disconnect device
[ 2193.737541][T15085] kworker/u8:8: attempt to access beyond end of device
[ 2193.737541][T15085] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2193.825804][T15085] CPU: 0 UID: 0 PID: 15085 Comm: kworker/u8:8 Not tainted syzkaller #0 PREEMPT(full) 
[ 2193.825831][T15085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 2193.825843][T15085] Workqueue: writeback wb_workfn (flush-7:3)
[ 2193.825876][T15085] Call Trace:
[ 2193.825884][T15085]  <TASK>
[ 2193.825893][T15085]  dump_stack_lvl+0x189/0x250
[ 2193.825919][T15085]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2193.825939][T15085]  ? __pfx_queue_work_on+0x10/0x10
[ 2193.825954][T15085]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 2193.825980][T15085]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2193.826016][T15085]  f2fs_handle_critical_error+0x37c/0x540
[ 2193.826048][T15085]  f2fs_write_end_io+0x886/0xb60
[ 2193.826086][T15085]  __submit_merged_bio+0x27a/0x6a0
[ 2193.826117][T15085]  __submit_merged_write_cond+0x255/0x530
[ 2193.826148][T15085]  f2fs_write_data_pages+0x261d/0x3000
[ 2193.826202][T15085]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2193.826235][T15085]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[ 2193.826290][T15085]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[ 2193.826308][T15085]  ? look_up_lock_class+0x74/0x170
[ 2193.826336][T15085]  ? trace_f2fs_writepages+0x7f/0x200
[ 2193.826362][T15085]  ? f2fs_write_node_pages+0x478/0x6e0
[ 2193.826391][T15085]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[ 2193.826419][T15085]  ? __lock_acquire+0xab9/0xd20
[ 2193.826449][T15085]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2193.826469][T15085]  do_writepages+0x32e/0x550
[ 2193.826498][T15085]  ? reacquire_held_locks+0x127/0x1d0
[ 2193.826514][T15085]  ? writeback_sb_inodes+0x384/0x1010
[ 2193.826541][T15085]  __writeback_single_inode+0x145/0xff0
[ 2193.826559][T15085]  ? do_raw_spin_unlock+0x122/0x240
[ 2193.826583][T15085]  writeback_sb_inodes+0x6c7/0x1010
[ 2193.826628][T15085]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 2193.826690][T15085]  ? rcu_is_watching+0x15/0xb0
[ 2193.826717][T15085]  wb_writeback+0x43b/0xaf0
[ 2193.826744][T15085]  ? queue_io+0x3b1/0x590
[ 2193.826765][T15085]  ? __pfx_wb_writeback+0x10/0x10
[ 2193.826798][T15085]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2193.826820][T15085]  wb_workfn+0x409/0xef0
[ 2193.826858][T15085]  ? __pfx_wb_workfn+0x10/0x10
[ 2193.826886][T15085]  ? __lock_acquire+0xab9/0xd20
[ 2193.826919][T15085]  ? process_scheduled_works+0x9ef/0x17b0
[ 2193.826950][T15085]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2193.826966][T15085]  ? process_scheduled_works+0x9ef/0x17b0
[ 2193.826987][T15085]  ? process_scheduled_works+0x9ef/0x17b0
[ 2193.827012][T15085]  process_scheduled_works+0xae1/0x17b0
[ 2193.827066][T15085]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2193.827107][T15085]  worker_thread+0x8a0/0xda0
[ 2193.827159][T15085]  kthread+0x711/0x8a0
[ 2193.827182][T15085]  ? __pfx_worker_thread+0x10/0x10
[ 2193.827205][T15085]  ? __pfx_kthread+0x10/0x10
[ 2193.827227][T15085]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2193.827243][T15085]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2193.827259][T15085]  ? __pfx_kthread+0x10/0x10
[ 2193.827279][T15085]  ret_from_fork+0x4bc/0x870
[ 2193.827305][T15085]  ? __pfx_ret_from_fork+0x10/0x10
[ 2193.827336][T15085]  ? __switch_to_asm+0x39/0x70
[ 2193.827354][T15085]  ? __switch_to_asm+0x33/0x70
[ 2193.827373][T15085]  ? __pfx_kthread+0x10/0x10
[ 2193.827393][T15085]  ret_from_fork_asm+0x1a/0x30
[ 2193.827431][T15085]  </TASK>
[ 2193.827440][T15085] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 2197.890666][T25724] loop4: detected capacity change from 0 to 16
[ 2197.927403][T25724] erofs (device loop4): too large lz4 pclusterblks 16832
[ 2197.984455][T25724] loop4: detected capacity change from 0 to 128
[ 2198.225034][T25724] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 2198.238934][T25724] ext4 filesystem being mounted at /177/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 2198.722611][T25731] netlink: 2 bytes leftover after parsing attributes in process `syz.0.4852'.
[ 2199.152684][T25554] vhci_hcd: vhci_device speed not set
[ 2200.190045][T21818] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 2203.712553][T25758] overlayfs: failed to resolve './bus': -2
[ 2205.056002][T11819] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 2205.061269][T11819] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 2205.063327][T11819] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 2205.065058][T11819] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 2205.067058][T11819] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 2206.736138][T25784] loop4: detected capacity change from 0 to 128
[ 2206.819650][T25784] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 2206.907484][T25784] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 2207.295764][T21136] Bluetooth: hci5: command tx timeout
[ 2207.397815][T25765] chnl_net:caif_netlink_parms(): no params data found
[ 2207.694289][T25793] hub 1-0:1.0: USB hub found
[ 2207.709060][T25793] hub 1-0:1.0: 1 port detected
[ 2208.215091][T25799] loop4: detected capacity change from 0 to 128
[ 2208.513222][T25765] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2208.542613][T25765] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2208.564501][T25765] bridge_slave_0: entered allmulticast mode
[ 2208.587890][T25765] bridge_slave_0: entered promiscuous mode
[ 2208.604671][T25765] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2208.618533][T21164] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[ 2208.626669][T25765] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2208.648429][T25765] bridge_slave_1: entered allmulticast mode
[ 2208.659910][T25765] bridge_slave_1: entered promiscuous mode
[ 2208.751928][T25765] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 2208.783537][T25765] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 2208.804635][T21164] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 2208.824370][T21164] usb 4-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 2208.849837][T21164] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2208.891538][T21164] usb 4-1: config 0 descriptor??
[ 2208.913559][T21164] pwc: Askey VC010 type 2 USB webcam detected.
[ 2208.932679][T25765] team0: Port device team_slave_0 added
[ 2208.953822][T25765] team0: Port device team_slave_1 added
[ 2209.054461][T25765] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 2209.067442][T25765] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2209.127520][T25789] loop1: detected capacity change from 0 to 40427
[ 2209.140985][T25765] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 2209.176626][T25789] F2FS-fs (loop1): invalid crc value
[ 2209.200804][T25765] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 2209.220282][T25765] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 2209.279788][T25765] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 2209.355856][T21164] pwc: recv_control_msg error -32 req 02 val 2b00
[ 2209.366057][T21164] pwc: recv_control_msg error -32 req 02 val 2700
[ 2209.401958][T21164] pwc: recv_control_msg error -32 req 02 val 2c00
[ 2209.420575][T21164] pwc: recv_control_msg error -32 req 04 val 1000
[ 2209.439186][T21164] pwc: recv_control_msg error -32 req 04 val 1300
[ 2209.476073][T21164] pwc: recv_control_msg error -32 req 04 val 1400
[ 2209.485201][T21164] pwc: recv_control_msg error -32 req 02 val 2000
[ 2209.505968][T21136] Bluetooth: hci5: command tx timeout
[ 2209.524985][T21164] pwc: recv_control_msg error -32 req 02 val 2100
[ 2209.536824][T21164] pwc: recv_control_msg error -32 req 04 val 1500
[ 2209.564356][T25789] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[ 2209.577615][T21164] pwc: recv_control_msg error -32 req 02 val 2500
[ 2209.591133][T25789] F2FS-fs (loop1): Start checkpoint disabled!
[ 2209.610132][T25789] F2FS-fs (loop1): f2fs_disable_checkpoint() finish, err:0
[ 2209.621489][T25765] hsr_slave_0: entered promiscuous mode
[ 2209.631451][T25765] hsr_slave_1: entered promiscuous mode
[ 2209.639131][T25765] debugfs: 'hsr0' already exists in 'hsr'
[ 2209.646856][T25765] Cannot create hsr debugfs directory
[ 2209.692749][T25789] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[ 2209.955531][T25813] loop4: detected capacity change from 0 to 40427
[ 2209.964025][T21164] pwc: recv_control_msg error -71 req 02 val 2600
[ 2209.971792][T21164] pwc: recv_control_msg error -71 req 02 val 2900
[ 2209.996003][T25813] F2FS-fs (loop4): invalid crc value
[ 2210.042258][T21164] pwc: recv_control_msg error -71 req 02 val 2800
[ 2210.111020][T25813] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[ 2210.129054][T25813] F2FS-fs (loop4): Start checkpoint disabled!
[ 2210.142765][T25813] F2FS-fs (loop4): f2fs_disable_checkpoint() finish, err:0
[ 2210.165271][T25813] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[ 2210.332326][T21164] pwc: recv_control_msg error -71 req 04 val 1100
[ 2211.151160][T21164] pwc: recv_control_msg error -71 req 04 val 1200
[ 2211.761593][T21136] Bluetooth: hci5: command tx timeout
[ 2212.017904][T21164] pwc: Registered as video103.
[ 2212.025181][T21164] input: PWC snapshot button as /devices/platform/dummy_hcd.3/usb4/4-1/input/input32
[ 2212.087401][T19364] kworker/u8:12: attempt to access beyond end of device
[ 2212.087401][T19364] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2212.087919][T21164] usb 4-1: USB disconnect, device number 12
[ 2212.117632][   T50] kworker/u8:3: attempt to access beyond end of device
[ 2212.117632][   T50] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2212.161419][T19364] CPU: 0 UID: 0 PID: 19364 Comm: kworker/u8:12 Not tainted syzkaller #0 PREEMPT(full) 
[ 2212.161446][T19364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 2212.161459][T19364] Workqueue: writeback wb_workfn (flush-7:1)
[ 2212.161491][T19364] Call Trace:
[ 2212.161499][T19364]  <TASK>
[ 2212.161508][T19364]  dump_stack_lvl+0x189/0x250
[ 2212.161534][T19364]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2212.161554][T19364]  ? __pfx_queue_work_on+0x10/0x10
[ 2212.161569][T19364]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 2212.161594][T19364]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2212.161630][T19364]  f2fs_handle_critical_error+0x37c/0x540
[ 2212.161663][T19364]  f2fs_write_end_io+0x886/0xb60
[ 2212.161702][T19364]  __submit_merged_bio+0x27a/0x6a0
[ 2212.161733][T19364]  __submit_merged_write_cond+0x255/0x530
[ 2212.161765][T19364]  f2fs_write_data_pages+0x261d/0x3000
[ 2212.161819][T19364]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2212.161850][T19364]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[ 2212.161906][T19364]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[ 2212.161924][T19364]  ? look_up_lock_class+0x74/0x170
[ 2212.161952][T19364]  ? trace_f2fs_writepages+0x7f/0x200
[ 2212.161977][T19364]  ? f2fs_write_node_pages+0x478/0x6e0
[ 2212.162006][T19364]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[ 2212.162035][T19364]  ? __lock_acquire+0xab9/0xd20
[ 2212.162063][T19364]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2212.162088][T19364]  do_writepages+0x32e/0x550
[ 2212.162119][T19364]  ? reacquire_held_locks+0x127/0x1d0
[ 2212.162135][T19364]  ? writeback_sb_inodes+0x384/0x1010
[ 2212.162162][T19364]  __writeback_single_inode+0x145/0xff0
[ 2212.162181][T19364]  ? do_raw_spin_unlock+0x122/0x240
[ 2212.162205][T19364]  writeback_sb_inodes+0x6c7/0x1010
[ 2212.162230][T19364]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 2212.162272][T19364]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 2212.162333][T19364]  ? rcu_is_watching+0x15/0xb0
[ 2212.162360][T19364]  wb_writeback+0x43b/0xaf0
[ 2212.162387][T19364]  ? queue_io+0x3b1/0x590
[ 2212.162409][T19364]  ? __pfx_wb_writeback+0x10/0x10
[ 2212.162436][T19364]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2212.162458][T19364]  wb_workfn+0x409/0xef0
[ 2212.162497][T19364]  ? __pfx_wb_workfn+0x10/0x10
[ 2212.162525][T19364]  ? __lock_acquire+0xab9/0xd20
[ 2212.162557][T19364]  ? process_scheduled_works+0x9ef/0x17b0
[ 2212.162588][T19364]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2212.162604][T19364]  ? process_scheduled_works+0x9ef/0x17b0
[ 2212.162626][T19364]  ? process_scheduled_works+0x9ef/0x17b0
[ 2212.162650][T19364]  process_scheduled_works+0xae1/0x17b0
[ 2212.162705][T19364]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2212.162768][T19364]  worker_thread+0x8a0/0xda0
[ 2212.162795][T19364]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2212.162828][T19364]  ? __kthread_parkme+0x7b/0x200
[ 2212.162856][T19364]  kthread+0x711/0x8a0
[ 2212.162879][T19364]  ? __pfx_worker_thread+0x10/0x10
[ 2212.162901][T19364]  ? __pfx_kthread+0x10/0x10
[ 2212.162935][T19364]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2212.162951][T19364]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2212.162967][T19364]  ? __pfx_kthread+0x10/0x10
[ 2212.162987][T19364]  ret_from_fork+0x4bc/0x870
[ 2212.163026][T19364]  ? __pfx_ret_from_fork+0x10/0x10
[ 2212.163061][T19364]  ? __switch_to_asm+0x39/0x70
[ 2212.163079][T19364]  ? __switch_to_asm+0x33/0x70
[ 2212.163103][T19364]  ? __pfx_kthread+0x10/0x10
[ 2212.163123][T19364]  ret_from_fork_asm+0x1a/0x30
[ 2212.163162][T19364]  </TASK>
[ 2212.163170][T19364] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[ 2212.238962][   T50] CPU: 1 UID: 0 PID: 50 Comm: kworker/u8:3 Not tainted syzkaller #0 PREEMPT(full) 
[ 2212.238990][   T50] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 2212.239003][   T50] Workqueue: writeback wb_workfn (flush-7:4)
[ 2212.239034][   T50] Call Trace:
[ 2212.239048][   T50]  <TASK>
[ 2212.239057][   T50]  dump_stack_lvl+0x189/0x250
[ 2212.239083][   T50]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2212.239103][   T50]  ? __pfx_queue_work_on+0x10/0x10
[ 2212.239117][   T50]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 2212.239142][   T50]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2212.239179][   T50]  f2fs_handle_critical_error+0x37c/0x540
[ 2212.239212][   T50]  f2fs_write_end_io+0x886/0xb60
[ 2212.239249][   T50]  __submit_merged_bio+0x27a/0x6a0
[ 2212.239279][   T50]  __submit_merged_write_cond+0x255/0x530
[ 2212.239311][   T50]  f2fs_write_data_pages+0x261d/0x3000
[ 2212.239365][   T50]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2212.239395][   T50]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[ 2212.239447][   T50]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[ 2212.239464][   T50]  ? look_up_lock_class+0x74/0x170
[ 2212.239490][   T50]  ? trace_f2fs_writepages+0x7f/0x200
[ 2212.239515][   T50]  ? f2fs_write_node_pages+0x478/0x6e0
[ 2212.239543][   T50]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[ 2212.239569][   T50]  ? __lock_acquire+0xab9/0xd20
[ 2212.239598][   T50]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2212.239617][   T50]  do_writepages+0x32e/0x550
[ 2212.239646][   T50]  ? reacquire_held_locks+0x127/0x1d0
[ 2212.239661][   T50]  ? writeback_sb_inodes+0x384/0x1010
[ 2212.239688][   T50]  __writeback_single_inode+0x145/0xff0
[ 2212.239706][   T50]  ? do_raw_spin_unlock+0x122/0x240
[ 2212.239728][   T50]  writeback_sb_inodes+0x6c7/0x1010
[ 2212.239752][   T50]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 2212.239792][   T50]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 2212.239850][   T50]  ? rcu_is_watching+0x15/0xb0
[ 2212.239875][   T50]  wb_writeback+0x43b/0xaf0
[ 2212.239900][   T50]  ? queue_io+0x3b1/0x590
[ 2212.239920][   T50]  ? __pfx_wb_writeback+0x10/0x10
[ 2212.239945][   T50]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2212.239966][   T50]  wb_workfn+0x409/0xef0
[ 2212.240006][   T50]  ? __pfx_wb_workfn+0x10/0x10
[ 2212.240032][   T50]  ? __lock_acquire+0xab9/0xd20
[ 2212.240070][   T50]  ? process_scheduled_works+0x9ef/0x17b0
[ 2212.240099][   T50]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2212.240114][   T50]  ? process_scheduled_works+0x9ef/0x17b0
[ 2212.240134][   T50]  ? process_scheduled_works+0x9ef/0x17b0
[ 2212.240158][   T50]  process_scheduled_works+0xae1/0x17b0
[ 2212.240210][   T50]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2212.240250][   T50]  worker_thread+0x8a0/0xda0
[ 2212.240299][   T50]  kthread+0x711/0x8a0
[ 2212.240320][   T50]  ? __pfx_worker_thread+0x10/0x10
[ 2212.240343][   T50]  ? __pfx_kthread+0x10/0x10
[ 2212.240362][   T50]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2212.240378][   T50]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2212.240394][   T50]  ? __pfx_kthread+0x10/0x10
[ 2212.240413][   T50]  ret_from_fork+0x4bc/0x870
[ 2212.240438][   T50]  ? __pfx_ret_from_fork+0x10/0x10
[ 2212.240468][   T50]  ? __switch_to_asm+0x39/0x70
[ 2212.240486][   T50]  ? __switch_to_asm+0x33/0x70
[ 2212.240503][   T50]  ? __pfx_kthread+0x10/0x10
[ 2212.240522][   T50]  ret_from_fork_asm+0x1a/0x30
[ 2212.240563][   T50]  </TASK>
[ 2212.242735][   T50] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[ 2212.890607][T25825] tty tty1: ldisc open failed (-12), clearing slot 0
[ 2213.408634][T25828] loop3: detected capacity change from 0 to 40427
[ 2213.425737][T25828] F2FS-fs (loop3): invalid crc value
[ 2213.544735][T25828] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[ 2213.570897][T25828] F2FS-fs (loop3): Start checkpoint disabled!
[ 2213.599303][T25828] F2FS-fs (loop3): f2fs_disable_checkpoint() finish, err:0
[ 2213.608265][T25828] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[ 2213.779028][   T50] kworker/u8:3: attempt to access beyond end of device
[ 2213.779028][   T50] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2213.799847][   T50] CPU: 0 UID: 0 PID: 50 Comm: kworker/u8:3 Not tainted syzkaller #0 PREEMPT(full) 
[ 2213.799873][   T50] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 2213.799885][   T50] Workqueue: writeback wb_workfn (flush-7:3)
[ 2213.799930][   T50] Call Trace:
[ 2213.799939][   T50]  <TASK>
[ 2213.799948][   T50]  dump_stack_lvl+0x189/0x250
[ 2213.799974][   T50]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2213.799993][   T50]  ? __pfx_queue_work_on+0x10/0x10
[ 2213.800008][   T50]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 2213.800034][   T50]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2213.800073][   T50]  f2fs_handle_critical_error+0x37c/0x540
[ 2213.800106][   T50]  f2fs_write_end_io+0x886/0xb60
[ 2213.800144][   T50]  __submit_merged_bio+0x27a/0x6a0
[ 2213.800177][   T50]  __submit_merged_write_cond+0x255/0x530
[ 2213.800210][   T50]  f2fs_write_data_pages+0x261d/0x3000
[ 2213.800271][   T50]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2213.800382][   T50]  ? f2fs_write_meta_pages+0x357/0x450
[ 2213.800416][   T50]  ? __lock_acquire+0xab9/0xd20
[ 2213.800444][   T50]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2213.800463][   T50]  do_writepages+0x32e/0x550
[ 2213.800494][   T50]  ? reacquire_held_locks+0x127/0x1d0
[ 2213.800510][   T50]  ? writeback_sb_inodes+0x384/0x1010
[ 2213.800538][   T50]  __writeback_single_inode+0x145/0xff0
[ 2213.800557][   T50]  ? do_raw_spin_unlock+0x122/0x240
[ 2213.800582][   T50]  writeback_sb_inodes+0x6c7/0x1010
[ 2213.800633][   T50]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 2213.800703][   T50]  ? rcu_is_watching+0x15/0xb0
[ 2213.800729][   T50]  wb_writeback+0x43b/0xaf0
[ 2213.800765][   T50]  ? queue_io+0x3b1/0x590
[ 2213.800788][   T50]  ? __pfx_wb_writeback+0x10/0x10
[ 2213.800817][   T50]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2213.800847][   T50]  wb_workfn+0x409/0xef0
[ 2213.800911][   T50]  ? __pfx_wb_workfn+0x10/0x10
[ 2213.800940][   T50]  ? __lock_acquire+0xab9/0xd20
[ 2213.800971][   T50]  ? process_scheduled_works+0x9ef/0x17b0
[ 2213.801002][   T50]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2213.801016][   T50]  ? process_scheduled_works+0x9ef/0x17b0
[ 2213.801042][   T50]  ? process_scheduled_works+0x9ef/0x17b0
[ 2213.801076][   T50]  process_scheduled_works+0xae1/0x17b0
[ 2213.801136][   T50]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2213.801181][   T50]  worker_thread+0x8a0/0xda0
[ 2213.801240][   T50]  kthread+0x711/0x8a0
[ 2213.801268][   T50]  ? __pfx_worker_thread+0x10/0x10
[ 2213.801290][   T50]  ? __pfx_kthread+0x10/0x10
[ 2213.801308][   T50]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2213.801324][   T50]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2213.801339][   T50]  ? __pfx_kthread+0x10/0x10
[ 2213.801360][   T50]  ret_from_fork+0x4bc/0x870
[ 2213.801386][   T50]  ? __pfx_ret_from_fork+0x10/0x10
[ 2213.801418][   T50]  ? __switch_to_asm+0x39/0x70
[ 2213.801435][   T50]  ? __switch_to_asm+0x33/0x70
[ 2213.801452][   T50]  ? __pfx_kthread+0x10/0x10
[ 2213.801472][   T50]  ret_from_fork_asm+0x1a/0x30
[ 2213.801512][   T50]  </TASK>
[ 2214.095204][T21136] Bluetooth: hci5: command tx timeout
[ 2214.107305][   T50] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 2214.130709][T19364] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2214.153015][T25832] netlink: 12 bytes leftover after parsing attributes in process `syz.0.4881'.
[ 2216.323047][T19364] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2216.592343][T19364] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2216.807586][T24492] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[ 2216.883924][T19364] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 2216.970541][T24492] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 2216.986006][T24492] usb 1-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 2217.213315][T25856] loop4: detected capacity change from 0 to 40427
[ 2217.221644][T24492] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2217.234869][T24492] usb 1-1: config 0 descriptor??
[ 2217.240400][T25856] F2FS-fs (loop4): invalid crc value
[ 2217.253494][T24492] pwc: Askey VC010 type 2 USB webcam detected.
[ 2217.312303][T19364] bridge_slave_1: left allmulticast mode
[ 2217.324931][T19364] bridge_slave_1: left promiscuous mode
[ 2217.332943][T19364] bridge0: port 2(bridge_slave_1) entered disabled state
[ 2217.384027][T25856] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[ 2217.394548][T25856] F2FS-fs (loop4): Start checkpoint disabled!
[ 2217.402734][T25856] F2FS-fs (loop4): f2fs_disable_checkpoint() finish, err:0
[ 2217.410547][T25856] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[ 2217.482000][T19364] bridge_slave_0: left allmulticast mode
[ 2217.487725][T19364] bridge_slave_0: left promiscuous mode
[ 2217.642121][T19364] bridge0: port 1(bridge_slave_0) entered disabled state
[ 2217.727677][T24492] pwc: recv_control_msg error -32 req 02 val 2b00
[ 2217.735584][ T6979] kworker/u8:10: attempt to access beyond end of device
[ 2217.735584][ T6979] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2217.760571][T24492] pwc: recv_control_msg error -32 req 02 val 2700
[ 2217.768706][T24492] pwc: recv_control_msg error -32 req 02 val 2c00
[ 2217.776055][ T6979] CPU: 0 UID: 0 PID: 6979 Comm: kworker/u8:10 Not tainted syzkaller #0 PREEMPT(full) 
[ 2217.776082][ T6979] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 2217.776108][ T6979] Workqueue: writeback wb_workfn (flush-7:4)
[ 2217.776138][ T6979] Call Trace:
[ 2217.776146][ T6979]  <TASK>
[ 2217.776162][ T6979]  dump_stack_lvl+0x189/0x250
[ 2217.776188][ T6979]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2217.776207][ T6979]  ? __pfx_queue_work_on+0x10/0x10
[ 2217.776221][ T6979]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 2217.776244][ T6979]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2217.776279][ T6979]  f2fs_handle_critical_error+0x37c/0x540
[ 2217.776311][ T6979]  f2fs_write_end_io+0x886/0xb60
[ 2217.776352][ T6979]  __submit_merged_bio+0x27a/0x6a0
[ 2217.776384][ T6979]  __submit_merged_write_cond+0x255/0x530
[ 2217.776417][ T6979]  f2fs_write_data_pages+0x261d/0x3000
[ 2217.776478][ T6979]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2217.776595][ T6979]  ? f2fs_write_meta_pages+0x357/0x450
[ 2217.776625][ T6979]  ? __lock_acquire+0xab9/0xd20
[ 2217.776651][ T6979]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2217.776670][ T6979]  do_writepages+0x32e/0x550
[ 2217.776702][ T6979]  ? reacquire_held_locks+0x127/0x1d0
[ 2217.776718][ T6979]  ? writeback_sb_inodes+0x384/0x1010
[ 2217.776754][ T6979]  __writeback_single_inode+0x145/0xff0
[ 2217.776773][ T6979]  ? do_raw_spin_unlock+0x122/0x240
[ 2217.776798][ T6979]  writeback_sb_inodes+0x6c7/0x1010
[ 2217.776850][ T6979]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 2217.776920][ T6979]  ? rcu_is_watching+0x15/0xb0
[ 2217.776948][ T6979]  wb_writeback+0x43b/0xaf0
[ 2217.776975][ T6979]  ? queue_io+0x3b1/0x590
[ 2217.776996][ T6979]  ? __pfx_wb_writeback+0x10/0x10
[ 2217.777024][ T6979]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2217.777046][ T6979]  wb_workfn+0x409/0xef0
[ 2217.777086][ T6979]  ? __pfx_wb_workfn+0x10/0x10
[ 2217.777112][ T6979]  ? __lock_acquire+0xab9/0xd20
[ 2217.777148][ T6979]  ? process_scheduled_works+0x9ef/0x17b0
[ 2217.777186][ T6979]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2217.777201][ T6979]  ? process_scheduled_works+0x9ef/0x17b0
[ 2217.777220][ T6979]  ? process_scheduled_works+0x9ef/0x17b0
[ 2217.777244][ T6979]  process_scheduled_works+0xae1/0x17b0
[ 2217.777303][ T6979]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2217.777350][ T6979]  worker_thread+0x8a0/0xda0
[ 2217.777377][ T6979]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2217.777411][ T6979]  ? __kthread_parkme+0x7b/0x200
[ 2217.777441][ T6979]  kthread+0x711/0x8a0
[ 2217.777465][ T6979]  ? __pfx_worker_thread+0x10/0x10
[ 2217.777487][ T6979]  ? __pfx_kthread+0x10/0x10
[ 2217.777507][ T6979]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2217.777523][ T6979]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2217.777539][ T6979]  ? __pfx_kthread+0x10/0x10
[ 2217.777557][ T6979]  ret_from_fork+0x4bc/0x870
[ 2217.777584][ T6979]  ? __pfx_ret_from_fork+0x10/0x10
[ 2217.777617][ T6979]  ? __switch_to_asm+0x39/0x70
[ 2217.777635][ T6979]  ? __switch_to_asm+0x33/0x70
[ 2217.777653][ T6979]  ? __pfx_kthread+0x10/0x10
[ 2217.777675][ T6979]  ret_from_fork_asm+0x1a/0x30
[ 2217.777717][ T6979]  </TASK>
[ 2218.075201][T24492] pwc: recv_control_msg error -32 req 04 val 1000
[ 2218.086249][ T6979] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[ 2218.168243][T24492] pwc: recv_control_msg error -32 req 04 val 1300
[ 2218.175571][T24492] pwc: recv_control_msg error -32 req 04 val 1400
[ 2218.190346][T24492] pwc: recv_control_msg error -32 req 02 val 2000
[ 2218.198000][T24492] pwc: recv_control_msg error -32 req 02 val 2100
[ 2218.212736][T24492] pwc: recv_control_msg error -32 req 04 val 1500
[ 2218.219865][T24492] pwc: recv_control_msg error -32 req 02 val 2500
[ 2218.461133][T24492] pwc: recv_control_msg error -71 req 02 val 2600
[ 2218.470319][T24492] pwc: recv_control_msg error -71 req 02 val 2900
[ 2218.477935][T24492] pwc: recv_control_msg error -71 req 02 val 2800
[ 2219.029938][T24492] pwc: recv_control_msg error -71 req 04 val 1100
[ 2219.095365][T24492] pwc: recv_control_msg error -71 req 04 val 1200
[ 2219.112214][T24492] pwc: Registered as video103.
[ 2219.151465][T24492] input: PWC snapshot button as /devices/platform/dummy_hcd.0/usb1/1-1/input/input33
[ 2219.191859][T24492] usb 1-1: USB disconnect, device number 17
[ 2220.149941][T25883] netlink: 2 bytes leftover after parsing attributes in process `syz.4.4891'.
[ 2221.852338][T25885] loop1: detected capacity change from 0 to 32768
[ 2221.892885][T25885] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.4895 (25885)
[ 2222.649508][T25885] BTRFS info (device loop1): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[ 2222.661640][T25885] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[ 2222.662262][T19364] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 2222.705314][T19364] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 2222.719041][T19364] bond0 (unregistering): Released all slaves
[ 2222.757105][T25878] netlink: 180 bytes leftover after parsing attributes in process `syz.0.4894'.
[ 2222.778420][T25885] BTRFS info (device loop1): enabling ssd optimizations
[ 2222.859497][T25879] netlink: 180 bytes leftover after parsing attributes in process `syz.0.4894'.
[ 2222.884932][T25885] BTRFS info (device loop1): enabling free space tree
[ 2223.190247][T25917] loop3: detected capacity change from 0 to 40427
[ 2223.222003][T25917] F2FS-fs (loop3): invalid crc value
[ 2223.312249][T25917] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[ 2223.323488][T25917] F2FS-fs (loop3): Start checkpoint disabled!
[ 2223.341424][T25917] F2FS-fs (loop3): f2fs_disable_checkpoint() finish, err:0
[ 2223.349603][T25917] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[ 2223.520329][T25251] BTRFS info (device loop1): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[ 2223.633573][   T50] kworker/u8:3: attempt to access beyond end of device
[ 2223.633573][   T50] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2223.724641][   T50] CPU: 0 UID: 0 PID: 50 Comm: kworker/u8:3 Not tainted syzkaller #0 PREEMPT(full) 
[ 2223.724669][   T50] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 2223.724681][   T50] Workqueue: writeback wb_workfn (flush-7:3)
[ 2223.724712][   T50] Call Trace:
[ 2223.724721][   T50]  <TASK>
[ 2223.724729][   T50]  dump_stack_lvl+0x189/0x250
[ 2223.724755][   T50]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2223.724775][   T50]  ? __pfx_queue_work_on+0x10/0x10
[ 2223.724790][   T50]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 2223.724816][   T50]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2223.724859][   T50]  f2fs_handle_critical_error+0x37c/0x540
[ 2223.724893][   T50]  f2fs_write_end_io+0x886/0xb60
[ 2223.724931][   T50]  __submit_merged_bio+0x27a/0x6a0
[ 2223.724961][   T50]  __submit_merged_write_cond+0x255/0x530
[ 2223.724992][   T50]  f2fs_write_data_pages+0x261d/0x3000
[ 2223.725044][   T50]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2223.725061][   T50]  ? __switch_to+0xdc8/0x1690
[ 2223.725125][   T50]  ? rcu_is_watching+0x15/0xb0
[ 2223.725142][   T50]  ? trace_sched_exit_tp+0x36/0x110
[ 2223.725163][   T50]  ? __schedule+0x17ae/0x4cc0
[ 2223.725207][   T50]  ? __pfx___schedule+0x10/0x10
[ 2223.725223][   T50]  ? f2fs_write_meta_pages+0x357/0x450
[ 2223.725259][   T50]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2223.725280][   T50]  do_writepages+0x32e/0x550
[ 2223.725305][   T50]  ? preempt_schedule+0xae/0xc0
[ 2223.725321][   T50]  ? __pfx_preempt_schedule+0x10/0x10
[ 2223.725335][   T50]  ? reacquire_held_locks+0x127/0x1d0
[ 2223.725352][   T50]  ? writeback_sb_inodes+0x384/0x1010
[ 2223.725380][   T50]  __writeback_single_inode+0x145/0xff0
[ 2223.725406][   T50]  writeback_sb_inodes+0x6c7/0x1010
[ 2223.725453][   T50]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 2223.725516][   T50]  ? rcu_is_watching+0x15/0xb0
[ 2223.725542][   T50]  wb_writeback+0x43b/0xaf0
[ 2223.725569][   T50]  ? queue_io+0x3b1/0x590
[ 2223.725590][   T50]  ? __pfx_wb_writeback+0x10/0x10
[ 2223.725617][   T50]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2223.725639][   T50]  wb_workfn+0x409/0xef0
[ 2223.725676][   T50]  ? __pfx_wb_workfn+0x10/0x10
[ 2223.725705][   T50]  ? __lock_acquire+0xab9/0xd20
[ 2223.725739][   T50]  ? process_scheduled_works+0x9ef/0x17b0
[ 2223.725769][   T50]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2223.725785][   T50]  ? process_scheduled_works+0x9ef/0x17b0
[ 2223.725806][   T50]  ? process_scheduled_works+0x9ef/0x17b0
[ 2223.725837][   T50]  process_scheduled_works+0xae1/0x17b0
[ 2223.725893][   T50]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2223.725935][   T50]  worker_thread+0x8a0/0xda0
[ 2223.725984][   T50]  kthread+0x711/0x8a0
[ 2223.726008][   T50]  ? __pfx_worker_thread+0x10/0x10
[ 2223.726030][   T50]  ? __pfx_kthread+0x10/0x10
[ 2223.726052][   T50]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2223.726068][   T50]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2223.726085][   T50]  ? __pfx_kthread+0x10/0x10
[ 2223.726106][   T50]  ret_from_fork+0x4bc/0x870
[ 2223.726131][   T50]  ? __pfx_ret_from_fork+0x10/0x10
[ 2223.726163][   T50]  ? __switch_to_asm+0x39/0x70
[ 2223.726182][   T50]  ? __switch_to_asm+0x33/0x70
[ 2223.726200][   T50]  ? __pfx_kthread+0x10/0x10
[ 2223.726220][   T50]  ret_from_fork_asm+0x1a/0x30
[ 2223.726264][   T50]  </TASK>
[ 2223.732076][   T50] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 2224.062753][T21090] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[ 2224.232866][T21090] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 2224.243680][T21090] usb 5-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 2224.276922][T21090] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2224.300809][T21090] usb 5-1: config 0 descriptor??
[ 2224.324235][T21090] pwc: Askey VC010 type 2 USB webcam detected.
[ 2224.785714][T21090] pwc: recv_control_msg error -32 req 02 val 2b00
[ 2224.801146][T21090] pwc: recv_control_msg error -32 req 02 val 2700
[ 2224.823611][T21090] pwc: recv_control_msg error -32 req 02 val 2c00
[ 2224.839190][T21090] pwc: recv_control_msg error -32 req 04 val 1000
[ 2224.852788][T21090] pwc: recv_control_msg error -32 req 04 val 1300
[ 2224.871145][T21090] pwc: recv_control_msg error -32 req 04 val 1400
[ 2224.886957][T21090] pwc: recv_control_msg error -32 req 02 val 2000
[ 2224.903554][T21090] pwc: recv_control_msg error -32 req 02 val 2100
[ 2224.924753][T21090] pwc: recv_control_msg error -32 req 04 val 1500
[ 2224.939630][T21090] pwc: recv_control_msg error -32 req 02 val 2500
[ 2225.217286][T21090] pwc: recv_control_msg error -71 req 02 val 2600
[ 2225.232002][T21090] pwc: recv_control_msg error -71 req 02 val 2900
[ 2225.260108][T21090] pwc: recv_control_msg error -71 req 02 val 2800
[ 2225.570331][T21090] pwc: recv_control_msg error -71 req 04 val 1100
[ 2225.692946][T21090] pwc: recv_control_msg error -71 req 04 val 1200
[ 2225.697528][T25765] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 2225.706971][T21090] pwc: Registered as video103.
[ 2225.749715][T21090] input: PWC snapshot button as /devices/platform/dummy_hcd.4/usb5/5-1/input/input34
[ 2225.876158][T21090] usb 5-1: USB disconnect, device number 7
[ 2225.935192][T19364] hsr_slave_0: left promiscuous mode
[ 2226.080822][T19364] hsr_slave_1: left promiscuous mode
[ 2226.093935][T19364] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 2226.111578][T19364] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 2226.142285][T19364] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 2226.172233][T19364] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 2226.246395][T25945] loop3: detected capacity change from 0 to 40427
[ 2226.249684][T19364] veth1_macvtap: left promiscuous mode
[ 2226.258625][T19364] veth0_macvtap: left promiscuous mode
[ 2226.264880][T19364] veth1_vlan: left promiscuous mode
[ 2226.270799][T19364] veth0_vlan: left promiscuous mode
[ 2226.278937][T25945] F2FS-fs (loop3): invalid crc value
[ 2226.554195][T25945] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[ 2226.564066][T25945] F2FS-fs (loop3): Start checkpoint disabled!
[ 2227.152956][T25945] F2FS-fs (loop3): f2fs_disable_checkpoint() finish, err:0
[ 2227.161278][T25945] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[ 2227.495009][ T1014] kworker/u8:5: attempt to access beyond end of device
[ 2227.495009][ T1014] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2227.522764][ T1014] CPU: 1 UID: 0 PID: 1014 Comm: kworker/u8:5 Not tainted syzkaller #0 PREEMPT(full) 
[ 2227.522788][ T1014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 2227.522798][ T1014] Workqueue: writeback wb_workfn (flush-7:3)
[ 2227.522827][ T1014] Call Trace:
[ 2227.522834][ T1014]  <TASK>
[ 2227.522841][ T1014]  dump_stack_lvl+0x189/0x250
[ 2227.522864][ T1014]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2227.522881][ T1014]  ? __pfx_queue_work_on+0x10/0x10
[ 2227.522893][ T1014]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 2227.522916][ T1014]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2227.522950][ T1014]  f2fs_handle_critical_error+0x37c/0x540
[ 2227.522979][ T1014]  f2fs_write_end_io+0x886/0xb60
[ 2227.523015][ T1014]  __submit_merged_bio+0x27a/0x6a0
[ 2227.523044][ T1014]  __submit_merged_write_cond+0x255/0x530
[ 2227.523074][ T1014]  f2fs_write_data_pages+0x261d/0x3000
[ 2227.523127][ T1014]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2227.523140][ T1014]  ? __local_bh_enable_ip+0x12d/0x1c0
[ 2227.523176][ T1014]  ? cfg80211_inform_single_bss_data+0x13da/0x1ac0
[ 2227.523230][ T1014]  ? __lock_acquire+0xab9/0xd20
[ 2227.523285][ T1014]  ? unwind_next_frame+0xa5/0x2390
[ 2227.523319][ T1014]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2227.523336][ T1014]  do_writepages+0x32e/0x550
[ 2227.523363][ T1014]  ? reacquire_held_locks+0x127/0x1d0
[ 2227.523377][ T1014]  ? writeback_sb_inodes+0x384/0x1010
[ 2227.523402][ T1014]  __writeback_single_inode+0x145/0xff0
[ 2227.523425][ T1014]  ? do_raw_spin_unlock+0x122/0x240
[ 2227.523447][ T1014]  writeback_sb_inodes+0x6c7/0x1010
[ 2227.523464][ T1014]  ? __lock_acquire+0xab9/0xd20
[ 2227.523508][ T1014]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 2227.523570][ T1014]  ? rcu_is_watching+0x15/0xb0
[ 2227.523595][ T1014]  wb_writeback+0x43b/0xaf0
[ 2227.523620][ T1014]  ? queue_io+0x3b1/0x590
[ 2227.523639][ T1014]  ? __pfx_wb_writeback+0x10/0x10
[ 2227.523664][ T1014]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2227.523684][ T1014]  wb_workfn+0x409/0xef0
[ 2227.523723][ T1014]  ? __pfx_wb_workfn+0x10/0x10
[ 2227.523748][ T1014]  ? __lock_acquire+0xab9/0xd20
[ 2227.523779][ T1014]  ? process_scheduled_works+0x9ef/0x17b0
[ 2227.523808][ T1014]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2227.523820][ T1014]  ? process_scheduled_works+0x9ef/0x17b0
[ 2227.523839][ T1014]  ? process_scheduled_works+0x9ef/0x17b0
[ 2227.523861][ T1014]  process_scheduled_works+0xae1/0x17b0
[ 2227.523914][ T1014]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2227.523955][ T1014]  worker_thread+0x8a0/0xda0
[ 2227.524006][ T1014]  kthread+0x711/0x8a0
[ 2227.524027][ T1014]  ? __pfx_worker_thread+0x10/0x10
[ 2227.524047][ T1014]  ? __pfx_kthread+0x10/0x10
[ 2227.524066][ T1014]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2227.524080][ T1014]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2227.524094][ T1014]  ? __pfx_kthread+0x10/0x10
[ 2227.524111][ T1014]  ret_from_fork+0x4bc/0x870
[ 2227.524135][ T1014]  ? __pfx_ret_from_fork+0x10/0x10
[ 2227.524164][ T1014]  ? __switch_to_asm+0x39/0x70
[ 2227.524181][ T1014]  ? __switch_to_asm+0x33/0x70
[ 2227.524196][ T1014]  ? __pfx_kthread+0x10/0x10
[ 2227.524214][ T1014]  ret_from_fork_asm+0x1a/0x30
[ 2227.524251][ T1014]  </TASK>
[ 2227.524259][ T1014] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 2227.972097][T25962] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4910'.
[ 2227.981447][T25962] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4910'.
[ 2228.050483][T25962] netlink: 'syz.0.4910': attribute type 5 has an invalid length.
[ 2228.058624][T25962] netlink: 'syz.0.4910': attribute type 11 has an invalid length.
[ 2229.605587][T19364] team0 (unregistering): Port device team_slave_1 removed
[ 2229.682059][T19364] team0 (unregistering): Port device team_slave_0 removed
[ 2230.488251][T25765] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 2230.499106][T25953] bridge0: entered allmulticast mode
[ 2230.750649][T25765] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 2230.823230][T25765] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 2230.909142][T25970] pim6reg: entered allmulticast mode
[ 2231.256441][T25980] loop3: detected capacity change from 0 to 512
[ 2231.295555][T25980] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[ 2231.325180][T25980] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #15: comm syz.3.4913: iget: bogus i_mode (5)
[ 2231.383948][T25980] EXT4-fs error (device loop3): ext4_orphan_get:1397: comm syz.3.4913: couldn't read orphan inode 15 (err -117)
[ 2231.461657][T25984] loop4: detected capacity change from 0 to 128
[ 2231.494252][T25765] 8021q: adding VLAN 0 to HW filter on device bond0
[ 2231.531142][T25984] overlayfs: missing 'lowerdir'
[ 2231.551645][T25980] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 2231.581304][T25765] 8021q: adding VLAN 0 to HW filter on device team0
[ 2231.589201][T25980] ext2 filesystem being mounted at /219/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[ 2231.670639][T21924] bridge0: port 1(bridge_slave_0) entered blocking state
[ 2231.677841][T21924] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 2231.832865][T21924] bridge0: port 2(bridge_slave_1) entered blocking state
[ 2231.840157][T21924] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 2231.946216][T25990] binder: 25989:25990 ioctl c0306201 200000000680 returned -14
[ 2232.508862][T21762] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 2232.778679][T26005] loop4: detected capacity change from 0 to 128
[ 2232.802042][T25765] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2234.373945][T26017] loop3: detected capacity change from 0 to 40427
[ 2234.425388][T26017] F2FS-fs (loop3): invalid crc value
[ 2234.584021][T26022] loop4: detected capacity change from 0 to 40427
[ 2234.613294][T26022] F2FS-fs (loop4): invalid crc value
[ 2234.662649][T26017] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[ 2234.673451][T26017] F2FS-fs (loop3): Start checkpoint disabled!
[ 2234.680754][T26017] F2FS-fs (loop3): f2fs_disable_checkpoint() finish, err:0
[ 2234.707047][T26017] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[ 2234.713311][T26022] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[ 2234.727841][T26022] F2FS-fs (loop4): Start checkpoint disabled!
[ 2234.735539][T26022] F2FS-fs (loop4): f2fs_disable_checkpoint() finish, err:0
[ 2234.743422][T26022] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[ 2234.801479][T21512] kworker/u8:2: attempt to access beyond end of device
[ 2234.801479][T21512] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2235.288971][T21512] CPU: 1 UID: 0 PID: 21512 Comm: kworker/u8:2 Not tainted syzkaller #0 PREEMPT(full) 
[ 2235.288990][T21512] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 2235.288998][T21512] Workqueue: writeback wb_workfn (flush-7:3)
[ 2235.289019][T21512] Call Trace:
[ 2235.289025][T21512]  <TASK>
[ 2235.289030][T21512]  dump_stack_lvl+0x189/0x250
[ 2235.289047][T21512]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2235.289058][T21512]  ? __pfx_queue_work_on+0x10/0x10
[ 2235.289067][T21512]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 2235.289083][T21512]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2235.289106][T21512]  f2fs_handle_critical_error+0x37c/0x540
[ 2235.289126][T21512]  f2fs_write_end_io+0x886/0xb60
[ 2235.289148][T21512]  __submit_merged_bio+0x27a/0x6a0
[ 2235.289168][T21512]  __submit_merged_write_cond+0x255/0x530
[ 2235.289188][T21512]  f2fs_write_data_pages+0x261d/0x3000
[ 2235.289220][T21512]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2235.289281][T21512]  ? f2fs_write_meta_pages+0x357/0x450
[ 2235.289297][T21512]  ? __lock_acquire+0xab9/0xd20
[ 2235.289314][T21512]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2235.289325][T21512]  do_writepages+0x32e/0x550
[ 2235.289351][T21512]  ? reacquire_held_locks+0x127/0x1d0
[ 2235.289360][T21512]  ? writeback_sb_inodes+0x384/0x1010
[ 2235.289377][T21512]  __writeback_single_inode+0x145/0xff0
[ 2235.289387][T21512]  ? do_raw_spin_unlock+0x122/0x240
[ 2235.289402][T21512]  writeback_sb_inodes+0x6c7/0x1010
[ 2235.289429][T21512]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 2235.289466][T21512]  ? rcu_is_watching+0x15/0xb0
[ 2235.289482][T21512]  wb_writeback+0x43b/0xaf0
[ 2235.289497][T21512]  ? queue_io+0x3b1/0x590
[ 2235.289510][T21512]  ? __pfx_wb_writeback+0x10/0x10
[ 2235.289526][T21512]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2235.289538][T21512]  wb_workfn+0x409/0xef0
[ 2235.289562][T21512]  ? __pfx_wb_workfn+0x10/0x10
[ 2235.289578][T21512]  ? __lock_acquire+0xab9/0xd20
[ 2235.289601][T21512]  ? process_scheduled_works+0x9ef/0x17b0
[ 2235.289620][T21512]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2235.289628][T21512]  ? process_scheduled_works+0x9ef/0x17b0
[ 2235.289641][T21512]  ? process_scheduled_works+0x9ef/0x17b0
[ 2235.289657][T21512]  process_scheduled_works+0xae1/0x17b0
[ 2235.289690][T21512]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2235.289715][T21512]  worker_thread+0x8a0/0xda0
[ 2235.289731][T21512]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2235.289752][T21512]  ? __kthread_parkme+0x7b/0x200
[ 2235.289768][T21512]  kthread+0x711/0x8a0
[ 2235.289782][T21512]  ? __pfx_worker_thread+0x10/0x10
[ 2235.289795][T21512]  ? __pfx_kthread+0x10/0x10
[ 2235.289807][T21512]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2235.289816][T21512]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2235.289826][T21512]  ? __pfx_kthread+0x10/0x10
[ 2235.289837][T21512]  ret_from_fork+0x4bc/0x870
[ 2235.289854][T21512]  ? __pfx_ret_from_fork+0x10/0x10
[ 2235.289873][T21512]  ? __switch_to_asm+0x39/0x70
[ 2235.289884][T21512]  ? __switch_to_asm+0x33/0x70
[ 2235.289894][T21512]  ? __pfx_kthread+0x10/0x10
[ 2235.289906][T21512]  ret_from_fork_asm+0x1a/0x30
[ 2235.289933][T21512]  </TASK>
[ 2235.290150][T21512] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 2235.637166][ T3592] kworker/u8:9: attempt to access beyond end of device
[ 2235.637166][ T3592] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2235.946015][T26035] loop0: detected capacity change from 0 to 40427
[ 2235.955635][T26035] F2FS-fs (loop0): invalid crc value
[ 2235.968433][ T3592] CPU: 0 UID: 0 PID: 3592 Comm: kworker/u8:9 Not tainted syzkaller #0 PREEMPT(full) 
[ 2235.968458][ T3592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 2235.968471][ T3592] Workqueue: writeback wb_workfn (flush-7:4)
[ 2235.968508][ T3592] Call Trace:
[ 2235.968516][ T3592]  <TASK>
[ 2235.968525][ T3592]  dump_stack_lvl+0x189/0x250
[ 2235.968550][ T3592]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2235.968570][ T3592]  ? __pfx_queue_work_on+0x10/0x10
[ 2235.968586][ T3592]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 2235.968610][ T3592]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2235.968646][ T3592]  f2fs_handle_critical_error+0x37c/0x540
[ 2235.968678][ T3592]  f2fs_write_end_io+0x886/0xb60
[ 2235.968716][ T3592]  __submit_merged_bio+0x27a/0x6a0
[ 2235.968746][ T3592]  __submit_merged_write_cond+0x255/0x530
[ 2235.968785][ T3592]  f2fs_write_data_pages+0x261d/0x3000
[ 2235.968838][ T3592]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2235.968871][ T3592]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[ 2235.968928][ T3592]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[ 2235.968945][ T3592]  ? look_up_lock_class+0x74/0x170
[ 2235.968974][ T3592]  ? trace_f2fs_writepages+0x7f/0x200
[ 2235.968999][ T3592]  ? f2fs_write_node_pages+0x478/0x6e0
[ 2235.969029][ T3592]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[ 2235.969057][ T3592]  ? __lock_acquire+0xab9/0xd20
[ 2235.969088][ T3592]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2235.969108][ T3592]  do_writepages+0x32e/0x550
[ 2235.969137][ T3592]  ? reacquire_held_locks+0x127/0x1d0
[ 2235.969154][ T3592]  ? writeback_sb_inodes+0x384/0x1010
[ 2235.969181][ T3592]  __writeback_single_inode+0x145/0xff0
[ 2235.969200][ T3592]  ? do_raw_spin_unlock+0x122/0x240
[ 2235.969224][ T3592]  writeback_sb_inodes+0x6c7/0x1010
[ 2235.969265][ T3592]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 2235.969323][ T3592]  ? rcu_is_watching+0x15/0xb0
[ 2235.969350][ T3592]  wb_writeback+0x43b/0xaf0
[ 2235.969377][ T3592]  ? queue_io+0x3b1/0x590
[ 2235.969398][ T3592]  ? __pfx_wb_writeback+0x10/0x10
[ 2235.969425][ T3592]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2235.969448][ T3592]  wb_workfn+0x409/0xef0
[ 2235.969486][ T3592]  ? __pfx_wb_workfn+0x10/0x10
[ 2235.969520][ T3592]  ? __lock_acquire+0xab9/0xd20
[ 2235.969554][ T3592]  ? process_scheduled_works+0x9ef/0x17b0
[ 2235.969584][ T3592]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2235.969599][ T3592]  ? process_scheduled_works+0x9ef/0x17b0
[ 2235.969621][ T3592]  ? process_scheduled_works+0x9ef/0x17b0
[ 2235.969646][ T3592]  process_scheduled_works+0xae1/0x17b0
[ 2235.969700][ T3592]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2235.969742][ T3592]  worker_thread+0x8a0/0xda0
[ 2235.969768][ T3592]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2235.969801][ T3592]  ? __kthread_parkme+0x7b/0x200
[ 2235.969830][ T3592]  kthread+0x711/0x8a0
[ 2235.969853][ T3592]  ? __pfx_worker_thread+0x10/0x10
[ 2235.969876][ T3592]  ? __pfx_kthread+0x10/0x10
[ 2235.969896][ T3592]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2235.969912][ T3592]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2235.969928][ T3592]  ? __pfx_kthread+0x10/0x10
[ 2235.969948][ T3592]  ret_from_fork+0x4bc/0x870
[ 2235.969974][ T3592]  ? __pfx_ret_from_fork+0x10/0x10
[ 2235.970006][ T3592]  ? __switch_to_asm+0x39/0x70
[ 2235.970024][ T3592]  ? __switch_to_asm+0x33/0x70
[ 2235.970042][ T3592]  ? __pfx_kthread+0x10/0x10
[ 2235.970062][ T3592]  ret_from_fork_asm+0x1a/0x30
[ 2235.970101][ T3592]  </TASK>
[ 2235.973906][ T3592] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[ 2236.107636][T26035] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[ 2236.379519][T25765] veth0_vlan: entered promiscuous mode
[ 2236.389227][T26035] F2FS-fs (loop0): Start checkpoint disabled!
[ 2236.394017][T25765] veth1_vlan: entered promiscuous mode
[ 2236.414835][T26035] F2FS-fs (loop0): f2fs_disable_checkpoint() finish, err:0
[ 2236.422469][T26035] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[ 2236.703680][T25765] veth0_macvtap: entered promiscuous mode
[ 2236.807602][T15085] kworker/u8:8: attempt to access beyond end of device
[ 2236.807602][T15085] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2236.833979][T25765] veth1_macvtap: entered promiscuous mode
[ 2236.847271][T26039] loop1: detected capacity change from 0 to 4096
[ 2236.860320][T26039] EXT4-fs: Ignoring removed bh option
[ 2236.867320][T15085] CPU: 1 UID: 0 PID: 15085 Comm: kworker/u8:8 Not tainted syzkaller #0 PREEMPT(full) 
[ 2236.867350][T15085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 2236.867362][T15085] Workqueue: writeback wb_workfn (flush-7:0)
[ 2236.867416][T15085] Call Trace:
[ 2236.867432][T15085]  <TASK>
[ 2236.867439][T15085]  dump_stack_lvl+0x189/0x250
[ 2236.867460][T15085]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2236.867474][T15085]  ? __pfx_queue_work_on+0x10/0x10
[ 2236.867486][T15085]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 2236.867506][T15085]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2236.867540][T15085]  f2fs_handle_critical_error+0x37c/0x540
[ 2236.867573][T15085]  f2fs_write_end_io+0x886/0xb60
[ 2236.867612][T15085]  __submit_merged_bio+0x27a/0x6a0
[ 2236.867643][T15085]  __submit_merged_write_cond+0x255/0x530
[ 2236.867675][T15085]  f2fs_write_data_pages+0x261d/0x3000
[ 2236.867731][T15085]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2236.867745][T15085]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 2236.867779][T15085]  ? enqueue_to_backlog+0xa7a/0xfe0
[ 2236.867834][T15085]  ? veth_xmit+0x6a/0xe30
[ 2236.867871][T15085]  ? __local_bh_enable_ip+0x12d/0x1c0
[ 2236.867900][T15085]  ? __local_bh_enable_ip+0x12d/0x1c0
[ 2236.867922][T15085]  ? __pfx___local_bh_enable_ip+0x10/0x10
[ 2236.867955][T15085]  ? __dev_queue_xmit+0x1d79/0x3b50
[ 2236.867974][T15085]  ? register_lock_class+0x51/0x320
[ 2236.867996][T15085]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2236.868014][T15085]  do_writepages+0x32e/0x550
[ 2236.868046][T15085]  ? reacquire_held_locks+0x127/0x1d0
[ 2236.868061][T15085]  ? writeback_sb_inodes+0x384/0x1010
[ 2236.868086][T15085]  __writeback_single_inode+0x145/0xff0
[ 2236.868104][T15085]  ? do_raw_spin_unlock+0x122/0x240
[ 2236.868128][T15085]  writeback_sb_inodes+0x6c7/0x1010
[ 2236.868173][T15085]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 2236.868235][T15085]  ? rcu_is_watching+0x15/0xb0
[ 2236.868265][T15085]  wb_writeback+0x43b/0xaf0
[ 2236.868293][T15085]  ? queue_io+0x3b1/0x590
[ 2236.868312][T15085]  ? __pfx_wb_writeback+0x10/0x10
[ 2236.868338][T15085]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2236.868362][T15085]  wb_workfn+0x409/0xef0
[ 2236.868406][T15085]  ? __pfx_wb_workfn+0x10/0x10
[ 2236.868442][T15085]  ? __lock_acquire+0xab9/0xd20
[ 2236.868477][T15085]  ? process_scheduled_works+0x9ef/0x17b0
[ 2236.868507][T15085]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2236.868528][T15085]  ? process_scheduled_works+0x9ef/0x17b0
[ 2236.868550][T15085]  ? process_scheduled_works+0x9ef/0x17b0
[ 2236.868573][T15085]  process_scheduled_works+0xae1/0x17b0
[ 2236.868626][T15085]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2236.868670][T15085]  worker_thread+0x8a0/0xda0
[ 2236.868723][T15085]  kthread+0x711/0x8a0
[ 2236.868747][T15085]  ? __pfx_worker_thread+0x10/0x10
[ 2236.868769][T15085]  ? __pfx_kthread+0x10/0x10
[ 2236.868790][T15085]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2236.868806][T15085]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2236.868821][T15085]  ? __pfx_kthread+0x10/0x10
[ 2236.868841][T15085]  ret_from_fork+0x4bc/0x870
[ 2236.868867][T15085]  ? __pfx_ret_from_fork+0x10/0x10
[ 2236.868900][T15085]  ? __switch_to_asm+0x39/0x70
[ 2236.868919][T15085]  ? __switch_to_asm+0x33/0x70
[ 2236.868937][T15085]  ? __pfx_kthread+0x10/0x10
[ 2236.868956][T15085]  ret_from_fork_asm+0x1a/0x30
[ 2236.868997][T15085]  </TASK>
[ 2236.869005][T15085] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[ 2236.982667][T26039] EXT4-fs (loop1): Test dummy encryption mode enabled
[ 2236.990321][T25765] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2237.152423][T26039] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 2237.258798][T26039] System zones: 0-5
[ 2237.294437][T26039] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 2237.340299][T25765] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2237.369494][T26039] EXT4-fs (loop1): shut down requested (2)
[ 2237.397843][   T50] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2237.419396][   T50] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2237.458646][   T50] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2237.471574][T25251] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 2237.577702][   T50] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2237.599783][T26049] input: syz1 as /devices/virtual/input/input35
[ 2238.060532][T26056] netlink: 2 bytes leftover after parsing attributes in process `syz.4.4926'.
[ 2238.663924][ T3592] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2238.875503][ T3592] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2239.092652][T26067] overlayfs: failed to resolve './bus': -2
[ 2239.377965][ T3592] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2239.400333][ T3592] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2240.862445][T26084] loop3: detected capacity change from 0 to 40427
[ 2240.893810][T26084] F2FS-fs (loop3): invalid crc value
[ 2240.985468][T26084] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[ 2240.995298][T26084] F2FS-fs (loop3): Start checkpoint disabled!
[ 2241.002618][T26084] F2FS-fs (loop3): f2fs_disable_checkpoint() finish, err:0
[ 2241.010241][T26084] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[ 2241.071035][   T50] kworker/u8:3: attempt to access beyond end of device
[ 2241.071035][   T50] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2241.118392][   T50] CPU: 1 UID: 0 PID: 50 Comm: kworker/u8:3 Not tainted syzkaller #0 PREEMPT(full) 
[ 2241.118440][   T50] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 2241.118466][   T50] Workqueue: writeback wb_workfn (flush-7:3)
[ 2241.118524][   T50] Call Trace:
[ 2241.118542][   T50]  <TASK>
[ 2241.118559][   T50]  dump_stack_lvl+0x189/0x250
[ 2241.118616][   T50]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2241.118663][   T50]  ? __pfx_queue_work_on+0x10/0x10
[ 2241.118696][   T50]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 2241.118745][   T50]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2241.118785][   T50]  f2fs_handle_critical_error+0x37c/0x540
[ 2241.118818][   T50]  f2fs_write_end_io+0x886/0xb60
[ 2241.118860][   T50]  __submit_merged_bio+0x27a/0x6a0
[ 2241.118893][   T50]  __submit_merged_write_cond+0x255/0x530
[ 2241.118927][   T50]  f2fs_write_data_pages+0x261d/0x3000
[ 2241.118987][   T50]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2241.119107][   T50]  ? f2fs_write_meta_pages+0x357/0x450
[ 2241.119138][   T50]  ? __lock_acquire+0xab9/0xd20
[ 2241.119166][   T50]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2241.119186][   T50]  do_writepages+0x32e/0x550
[ 2241.119218][   T50]  ? reacquire_held_locks+0x127/0x1d0
[ 2241.119235][   T50]  ? writeback_sb_inodes+0x384/0x1010
[ 2241.119266][   T50]  __writeback_single_inode+0x145/0xff0
[ 2241.119284][   T50]  ? do_raw_spin_unlock+0x122/0x240
[ 2241.119308][   T50]  writeback_sb_inodes+0x6c7/0x1010
[ 2241.119364][   T50]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 2241.119434][   T50]  ? rcu_is_watching+0x15/0xb0
[ 2241.119463][   T50]  wb_writeback+0x43b/0xaf0
[ 2241.119492][   T50]  ? queue_io+0x3b1/0x590
[ 2241.119515][   T50]  ? __pfx_wb_writeback+0x10/0x10
[ 2241.119545][   T50]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2241.119570][   T50]  wb_workfn+0x409/0xef0
[ 2241.119613][   T50]  ? __pfx_wb_workfn+0x10/0x10
[ 2241.119642][   T50]  ? __lock_acquire+0xab9/0xd20
[ 2241.119692][   T50]  ? process_scheduled_works+0x9ef/0x17b0
[ 2241.119723][   T50]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2241.119745][   T50]  ? process_scheduled_works+0x9ef/0x17b0
[ 2241.119766][   T50]  ? process_scheduled_works+0x9ef/0x17b0
[ 2241.119791][   T50]  process_scheduled_works+0xae1/0x17b0
[ 2241.119851][   T50]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2241.119898][   T50]  worker_thread+0x8a0/0xda0
[ 2241.119954][   T50]  kthread+0x711/0x8a0
[ 2241.119976][   T50]  ? __pfx_worker_thread+0x10/0x10
[ 2241.119995][   T50]  ? __pfx_kthread+0x10/0x10
[ 2241.120018][   T50]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2241.120034][   T50]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2241.120050][   T50]  ? __pfx_kthread+0x10/0x10
[ 2241.120071][   T50]  ret_from_fork+0x4bc/0x870
[ 2241.120098][   T50]  ? __pfx_ret_from_fork+0x10/0x10
[ 2241.120130][   T50]  ? __switch_to_asm+0x39/0x70
[ 2241.120147][   T50]  ? __switch_to_asm+0x33/0x70
[ 2241.120165][   T50]  ? __pfx_kthread+0x10/0x10
[ 2241.120186][   T50]  ret_from_fork_asm+0x1a/0x30
[ 2241.120229][   T50]  </TASK>
[ 2241.403046][T26090] loop1: detected capacity change from 0 to 40427
[ 2241.431760][   T50] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 2241.449016][T26090] F2FS-fs (loop1): invalid crc value
[ 2241.554342][T26090] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[ 2241.574513][T26090] F2FS-fs (loop1): Start checkpoint disabled!
[ 2241.582633][T26090] F2FS-fs (loop1): f2fs_disable_checkpoint() finish, err:0
[ 2241.590547][T26090] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[ 2242.145866][ T1301] ieee802154 phy0 wpan0: encryption failed: -22
[ 2242.376259][ T1301] ieee802154 phy1 wpan1: encryption failed: -22
[ 2242.732103][T15085] kworker/u8:8: attempt to access beyond end of device
[ 2242.732103][T15085] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2242.811926][T15085] CPU: 0 UID: 0 PID: 15085 Comm: kworker/u8:8 Not tainted syzkaller #0 PREEMPT(full) 
[ 2242.811952][T15085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 2242.811965][T15085] Workqueue: writeback wb_workfn (flush-7:1)
[ 2242.811994][T15085] Call Trace:
[ 2242.812002][T15085]  <TASK>
[ 2242.812011][T15085]  dump_stack_lvl+0x189/0x250
[ 2242.812037][T15085]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2242.812057][T15085]  ? __pfx_queue_work_on+0x10/0x10
[ 2242.812072][T15085]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 2242.812098][T15085]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2242.812143][T15085]  f2fs_handle_critical_error+0x37c/0x540
[ 2242.812178][T15085]  f2fs_write_end_io+0x886/0xb60
[ 2242.812219][T15085]  __submit_merged_bio+0x27a/0x6a0
[ 2242.812252][T15085]  __submit_merged_write_cond+0x255/0x530
[ 2242.812285][T15085]  f2fs_write_data_pages+0x261d/0x3000
[ 2242.812346][T15085]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2242.812382][T15085]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[ 2242.812438][T15085]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[ 2242.812466][T15085]  ? trace_f2fs_writepages+0x7f/0x200
[ 2242.812490][T15085]  ? f2fs_write_node_pages+0x478/0x6e0
[ 2242.812517][T15085]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[ 2242.812543][T15085]  ? __lock_acquire+0xab9/0xd20
[ 2242.812571][T15085]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2242.812589][T15085]  do_writepages+0x32e/0x550
[ 2242.812616][T15085]  ? reacquire_held_locks+0x127/0x1d0
[ 2242.812631][T15085]  ? writeback_sb_inodes+0x384/0x1010
[ 2242.812655][T15085]  __writeback_single_inode+0x145/0xff0
[ 2242.812676][T15085]  ? do_raw_spin_unlock+0x122/0x240
[ 2242.812703][T15085]  writeback_sb_inodes+0x6c7/0x1010
[ 2242.812732][T15085]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 2242.812775][T15085]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 2242.812846][T15085]  ? rcu_is_watching+0x15/0xb0
[ 2242.812872][T15085]  wb_writeback+0x43b/0xaf0
[ 2242.812901][T15085]  ? queue_io+0x3b1/0x590
[ 2242.812924][T15085]  ? __pfx_wb_writeback+0x10/0x10
[ 2242.812954][T15085]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2242.812977][T15085]  wb_workfn+0x409/0xef0
[ 2242.813019][T15085]  ? __pfx_wb_workfn+0x10/0x10
[ 2242.813046][T15085]  ? __lock_acquire+0xab9/0xd20
[ 2242.813082][T15085]  ? process_scheduled_works+0x9ef/0x17b0
[ 2242.813113][T15085]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2242.813129][T15085]  ? process_scheduled_works+0x9ef/0x17b0
[ 2242.813149][T15085]  ? process_scheduled_works+0x9ef/0x17b0
[ 2242.813173][T15085]  process_scheduled_works+0xae1/0x17b0
[ 2242.813232][T15085]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2242.813274][T15085]  worker_thread+0x8a0/0xda0
[ 2242.813328][T15085]  kthread+0x711/0x8a0
[ 2242.813353][T15085]  ? __pfx_worker_thread+0x10/0x10
[ 2242.813375][T15085]  ? __pfx_kthread+0x10/0x10
[ 2242.813398][T15085]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2242.813414][T15085]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2242.813430][T15085]  ? __pfx_kthread+0x10/0x10
[ 2242.813450][T15085]  ret_from_fork+0x4bc/0x870
[ 2242.813478][T15085]  ? __pfx_ret_from_fork+0x10/0x10
[ 2242.813511][T15085]  ? __switch_to_asm+0x39/0x70
[ 2242.813531][T15085]  ? __switch_to_asm+0x33/0x70
[ 2242.813548][T15085]  ? __pfx_kthread+0x10/0x10
[ 2242.813569][T15085]  ret_from_fork_asm+0x1a/0x30
[ 2242.813612][T15085]  </TASK>
[ 2242.813910][T15085] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[ 2243.608004][T26108] input: syz1 as /devices/virtual/input/input36
[ 2243.720808][T26110] loop6: detected capacity change from 0 to 4096
[ 2243.728866][T26110] EXT4-fs: Ignoring removed bh option
[ 2243.781670][T26110] EXT4-fs (loop6): Test dummy encryption mode enabled
[ 2243.844439][T26110] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 2243.870379][T26110] System zones: 0-5
[ 2243.886077][T26110] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 2244.044297][T26110] EXT4-fs (loop6): shut down requested (2)
[ 2244.353159][T25765] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 2244.365696][T26102] loop0: detected capacity change from 0 to 40427
[ 2244.377296][T26102] F2FS-fs (loop0): invalid crc value
[ 2244.683573][T26102] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[ 2245.351581][T26102] F2FS-fs (loop0): Start checkpoint disabled!
[ 2245.402671][T26102] F2FS-fs (loop0): f2fs_disable_checkpoint() finish, err:0
[ 2245.448192][T26102] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[ 2245.645029][T21924] kworker/u8:7: attempt to access beyond end of device
[ 2245.645029][T21924] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2245.816339][T21924] CPU: 0 UID: 0 PID: 21924 Comm: kworker/u8:7 Not tainted syzkaller #0 PREEMPT(full) 
[ 2245.816365][T21924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 2245.816376][T21924] Workqueue: writeback wb_workfn (flush-7:0)
[ 2245.816406][T21924] Call Trace:
[ 2245.816415][T21924]  <TASK>
[ 2245.816423][T21924]  dump_stack_lvl+0x189/0x250
[ 2245.816448][T21924]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2245.816465][T21924]  ? __pfx_queue_work_on+0x10/0x10
[ 2245.816479][T21924]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 2245.816512][T21924]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2245.816545][T21924]  f2fs_handle_critical_error+0x37c/0x540
[ 2245.816574][T21924]  f2fs_write_end_io+0x886/0xb60
[ 2245.816605][T21924]  __submit_merged_bio+0x27a/0x6a0
[ 2245.816635][T21924]  __submit_merged_write_cond+0x255/0x530
[ 2245.816675][T21924]  f2fs_write_data_pages+0x261d/0x3000
[ 2245.816714][T21924]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2245.816768][T21924]  ? f2fs_write_meta_pages+0x357/0x450
[ 2245.816783][T21924]  ? __lock_acquire+0xab9/0xd20
[ 2245.816799][T21924]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2245.816810][T21924]  do_writepages+0x32e/0x550
[ 2245.816829][T21924]  ? reacquire_held_locks+0x127/0x1d0
[ 2245.816838][T21924]  ? writeback_sb_inodes+0x384/0x1010
[ 2245.816854][T21924]  __writeback_single_inode+0x145/0xff0
[ 2245.816865][T21924]  ? do_raw_spin_unlock+0x122/0x240
[ 2245.816878][T21924]  writeback_sb_inodes+0x6c7/0x1010
[ 2245.816903][T21924]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 2245.816936][T21924]  ? rcu_is_watching+0x15/0xb0
[ 2245.816950][T21924]  wb_writeback+0x43b/0xaf0
[ 2245.816965][T21924]  ? queue_io+0x3b1/0x590
[ 2245.816977][T21924]  ? __pfx_wb_writeback+0x10/0x10
[ 2245.816991][T21924]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2245.817003][T21924]  wb_workfn+0x409/0xef0
[ 2245.817026][T21924]  ? __pfx_wb_workfn+0x10/0x10
[ 2245.817042][T21924]  ? __lock_acquire+0xab9/0xd20
[ 2245.817061][T21924]  ? process_scheduled_works+0x9ef/0x17b0
[ 2245.817079][T21924]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2245.817088][T21924]  ? process_scheduled_works+0x9ef/0x17b0
[ 2245.817101][T21924]  ? process_scheduled_works+0x9ef/0x17b0
[ 2245.817115][T21924]  process_scheduled_works+0xae1/0x17b0
[ 2245.817145][T21924]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2245.817169][T21924]  worker_thread+0x8a0/0xda0
[ 2245.817185][T21924]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2245.817204][T21924]  ? __kthread_parkme+0x7b/0x200
[ 2245.817220][T21924]  kthread+0x711/0x8a0
[ 2245.817232][T21924]  ? __pfx_worker_thread+0x10/0x10
[ 2245.817246][T21924]  ? __pfx_kthread+0x10/0x10
[ 2245.817260][T21924]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2245.817268][T21924]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2245.817278][T21924]  ? __pfx_kthread+0x10/0x10
[ 2245.817289][T21924]  ret_from_fork+0x4bc/0x870
[ 2245.817305][T21924]  ? __pfx_ret_from_fork+0x10/0x10
[ 2245.817323][T21924]  ? __switch_to_asm+0x39/0x70
[ 2245.817334][T21924]  ? __switch_to_asm+0x33/0x70
[ 2245.817345][T21924]  ? __pfx_kthread+0x10/0x10
[ 2245.817356][T21924]  ret_from_fork_asm+0x1a/0x30
[ 2245.817378][T21924]  </TASK>
[ 2246.119717][T21924] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[ 2246.214705][    T9] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[ 2246.885931][    T9] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 2246.896632][    T9] usb 2-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 2246.906097][    T9] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 2246.928336][    T9] usb 2-1: config 0 descriptor??
[ 2246.943445][    T9] pwc: Askey VC010 type 2 USB webcam detected.
[ 2247.946969][    T9] pwc: recv_control_msg error -32 req 02 val 2b00
[ 2248.078775][    T9] pwc: recv_control_msg error -32 req 02 val 2700
[ 2248.096670][    T9] pwc: recv_control_msg error -32 req 02 val 2c00
[ 2248.126041][    T9] pwc: recv_control_msg error -32 req 04 val 1000
[ 2248.193904][T26151] loop6: detected capacity change from 0 to 4096
[ 2248.219691][T26151] EXT4-fs: Ignoring removed bh option
[ 2248.242876][T26151] EXT4-fs (loop6): Test dummy encryption mode enabled
[ 2248.256943][T26151] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 2248.276318][T26151] System zones: 0-5
[ 2248.435190][T26152] loop3: detected capacity change from 0 to 40427
[ 2248.443778][    T9] pwc: recv_control_msg error -32 req 04 val 1300
[ 2248.449176][T26151] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 2248.471588][    T9] pwc: recv_control_msg error -32 req 04 val 1400
[ 2248.584494][    T9] pwc: recv_control_msg error -32 req 02 val 2000
[ 2248.617057][    T9] pwc: recv_control_msg error -32 req 02 val 2100
[ 2248.631265][T26152] F2FS-fs (loop3): invalid crc value
[ 2248.716493][T26152] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[ 2248.731135][T26152] F2FS-fs (loop3): Start checkpoint disabled!
[ 2248.740131][T26152] F2FS-fs (loop3): f2fs_disable_checkpoint() finish, err:0
[ 2248.757545][T26152] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[ 2248.793406][    T9] pwc: recv_control_msg error -32 req 04 val 1500
[ 2248.862792][    T9] pwc: recv_control_msg error -32 req 02 val 2500
[ 2249.142077][T26164] loop0: detected capacity change from 0 to 40427
[ 2249.182499][T26151] EXT4-fs (loop6): shut down requested (2)
[ 2249.211398][T26164] F2FS-fs (loop0): invalid crc value
[ 2249.452591][T26164] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[ 2249.472762][T26164] F2FS-fs (loop0): Start checkpoint disabled!
[ 2249.508899][T15085] kworker/u8:8: attempt to access beyond end of device
[ 2249.508899][T15085] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2249.523377][T26164] F2FS-fs (loop0): f2fs_disable_checkpoint() finish, err:0
[ 2249.539567][T26164] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6
[ 2249.562957][T15085] CPU: 0 UID: 0 PID: 15085 Comm: kworker/u8:8 Not tainted syzkaller #0 PREEMPT(full) 
[ 2249.562981][T15085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 2249.562993][T15085] Workqueue: writeback wb_workfn (flush-7:3)
[ 2249.563024][T15085] Call Trace:
[ 2249.563032][T15085]  <TASK>
[ 2249.563043][T15085]  dump_stack_lvl+0x189/0x250
[ 2249.563070][T15085]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2249.563094][T15085]  ? _raw_spin_unlock_irqrestore+0xa8/0x110
[ 2249.563119][T15085]  ? __pfx_queue_work_on+0x10/0x10
[ 2249.563133][T15085]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 2249.563161][T15085]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2249.563198][T15085]  f2fs_handle_critical_error+0x37c/0x540
[ 2249.563230][T15085]  f2fs_write_end_io+0x886/0xb60
[ 2249.563270][T15085]  __submit_merged_bio+0x27a/0x6a0
[ 2249.563304][T15085]  __submit_merged_write_cond+0x255/0x530
[ 2249.563338][T15085]  f2fs_write_data_pages+0x261d/0x3000
[ 2249.563394][T15085]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2249.563427][T15085]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[ 2249.563485][T15085]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[ 2249.563501][T15085]  ? look_up_lock_class+0x74/0x170
[ 2249.563529][T15085]  ? trace_f2fs_writepages+0x7f/0x200
[ 2249.563554][T15085]  ? f2fs_write_node_pages+0x478/0x6e0
[ 2249.563581][T15085]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[ 2249.563610][T15085]  ? __lock_acquire+0xab9/0xd20
[ 2249.563642][T15085]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2249.563663][T15085]  do_writepages+0x32e/0x550
[ 2249.563695][T15085]  ? reacquire_held_locks+0x127/0x1d0
[ 2249.563712][T15085]  ? writeback_sb_inodes+0x384/0x1010
[ 2249.563742][T15085]  __writeback_single_inode+0x145/0xff0
[ 2249.563762][T15085]  ? do_raw_spin_unlock+0x122/0x240
[ 2249.563788][T15085]  writeback_sb_inodes+0x6c7/0x1010
[ 2249.563839][T15085]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 2249.563912][T15085]  ? rcu_is_watching+0x15/0xb0
[ 2249.563941][T15085]  wb_writeback+0x43b/0xaf0
[ 2249.563970][T15085]  ? queue_io+0x3b1/0x590
[ 2249.563992][T15085]  ? __pfx_wb_writeback+0x10/0x10
[ 2249.564022][T15085]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2249.564045][T15085]  wb_workfn+0x409/0xef0
[ 2249.564095][T15085]  ? __pfx_wb_workfn+0x10/0x10
[ 2249.564125][T15085]  ? __lock_acquire+0xab9/0xd20
[ 2249.564161][T15085]  ? process_scheduled_works+0x9ef/0x17b0
[ 2249.564193][T15085]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2249.564209][T15085]  ? process_scheduled_works+0x9ef/0x17b0
[ 2249.564230][T15085]  ? process_scheduled_works+0x9ef/0x17b0
[ 2249.564256][T15085]  process_scheduled_works+0xae1/0x17b0
[ 2249.564318][T15085]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2249.564364][T15085]  worker_thread+0x8a0/0xda0
[ 2249.564422][T15085]  kthread+0x711/0x8a0
[ 2249.564446][T15085]  ? __pfx_worker_thread+0x10/0x10
[ 2249.564469][T15085]  ? __pfx_kthread+0x10/0x10
[ 2249.564491][T15085]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2249.564508][T15085]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2249.564524][T15085]  ? __pfx_kthread+0x10/0x10
[ 2249.564545][T15085]  ret_from_fork+0x4bc/0x870
[ 2249.564572][T15085]  ? __pfx_ret_from_fork+0x10/0x10
[ 2249.564605][T15085]  ? __switch_to_asm+0x39/0x70
[ 2249.564623][T15085]  ? __switch_to_asm+0x33/0x70
[ 2249.564640][T15085]  ? __pfx_kthread+0x10/0x10
[ 2249.564661][T15085]  ret_from_fork_asm+0x1a/0x30
[ 2249.564704][T15085]  </TASK>
[ 2249.891430][T15085] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 2250.264127][T25765] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 2250.286185][T26173] input: syz1 as /devices/virtual/input/input37
[ 2250.306428][    T9] pwc: recv_control_msg error -71 req 02 val 2600
[ 2250.338586][    T9] pwc: recv_control_msg error -71 req 02 val 2900
[ 2250.387737][    T9] pwc: recv_control_msg error -71 req 02 val 2800
[ 2250.401302][    T9] pwc: recv_control_msg error -71 req 04 val 1100
[ 2250.403202][   T60] kworker/u8:4: attempt to access beyond end of device
[ 2250.403202][   T60] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2250.453694][   T60] CPU: 1 UID: 0 PID: 60 Comm: kworker/u8:4 Not tainted syzkaller #0 PREEMPT(full) 
[ 2250.453720][   T60] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 2250.453731][   T60] Workqueue: writeback wb_workfn (flush-7:0)
[ 2250.453763][   T60] Call Trace:
[ 2250.453771][   T60]  <TASK>
[ 2250.453780][   T60]  dump_stack_lvl+0x189/0x250
[ 2250.453807][   T60]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2250.453827][   T60]  ? __pfx_queue_work_on+0x10/0x10
[ 2250.453842][   T60]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 2250.453868][   T60]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2250.453907][   T60]  f2fs_handle_critical_error+0x37c/0x540
[ 2250.453941][   T60]  f2fs_write_end_io+0x886/0xb60
[ 2250.453990][   T60]  __submit_merged_bio+0x27a/0x6a0
[ 2250.454023][   T60]  __submit_merged_write_cond+0x255/0x530
[ 2250.454058][   T60]  f2fs_write_data_pages+0x261d/0x3000
[ 2250.454119][   T60]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2250.454155][   T60]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[ 2250.454220][   T60]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[ 2250.454254][   T60]  ? trace_f2fs_writepages+0x7f/0x200
[ 2250.454280][   T60]  ? f2fs_write_node_pages+0x478/0x6e0
[ 2250.454311][   T60]  ? __pfx_f2fs_write_node_pages+0x10/0x10
[ 2250.454341][   T60]  ? __lock_acquire+0xab9/0xd20
[ 2250.454373][   T60]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2250.454393][   T60]  do_writepages+0x32e/0x550
[ 2250.454426][   T60]  ? reacquire_held_locks+0x127/0x1d0
[ 2250.454443][   T60]  ? writeback_sb_inodes+0x384/0x1010
[ 2250.454472][   T60]  __writeback_single_inode+0x145/0xff0
[ 2250.454491][   T60]  ? do_raw_spin_unlock+0x122/0x240
[ 2250.454517][   T60]  writeback_sb_inodes+0x6c7/0x1010
[ 2250.454570][   T60]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 2250.454641][   T60]  ? rcu_is_watching+0x15/0xb0
[ 2250.454672][   T60]  wb_writeback+0x43b/0xaf0
[ 2250.454701][   T60]  ? queue_io+0x3b1/0x590
[ 2250.454723][   T60]  ? __pfx_wb_writeback+0x10/0x10
[ 2250.454753][   T60]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2250.454777][   T60]  wb_workfn+0x409/0xef0
[ 2250.454820][   T60]  ? __pfx_wb_workfn+0x10/0x10
[ 2250.454850][   T60]  ? __lock_acquire+0xab9/0xd20
[ 2250.454886][   T60]  ? process_scheduled_works+0x9ef/0x17b0
[ 2250.454918][   T60]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2250.454934][   T60]  ? process_scheduled_works+0x9ef/0x17b0
[ 2250.454956][   T60]  ? process_scheduled_works+0x9ef/0x17b0
[ 2250.454987][   T60]  process_scheduled_works+0xae1/0x17b0
[ 2250.455049][   T60]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2250.455096][   T60]  worker_thread+0x8a0/0xda0
[ 2250.455154][   T60]  kthread+0x711/0x8a0
[ 2250.455178][   T60]  ? __pfx_worker_thread+0x10/0x10
[ 2250.455201][   T60]  ? __pfx_kthread+0x10/0x10
[ 2250.455224][   T60]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2250.455240][   T60]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2250.455256][   T60]  ? __pfx_kthread+0x10/0x10
[ 2250.455277][   T60]  ret_from_fork+0x4bc/0x870
[ 2250.455304][   T60]  ? __pfx_ret_from_fork+0x10/0x10
[ 2250.455337][   T60]  ? __switch_to_asm+0x39/0x70
[ 2250.455355][   T60]  ? __switch_to_asm+0x33/0x70
[ 2250.455374][   T60]  ? __pfx_kthread+0x10/0x10
[ 2250.455395][   T60]  ret_from_fork_asm+0x1a/0x30
[ 2250.455439][   T60]  </TASK>
[ 2250.455446][   T60] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[ 2250.684701][T26176] loop1: detected capacity change from 0 to 40427
[ 2250.782005][    T9] pwc: recv_control_msg error -71 req 04 val 1200
[ 2250.833945][T26176] F2FS-fs (loop1): invalid crc value
[ 2250.879333][T26176] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[ 2250.889464][T26176] F2FS-fs (loop1): Start checkpoint disabled!
[ 2250.908774][T26176] F2FS-fs (loop1): f2fs_disable_checkpoint() finish, err:0
[ 2250.917551][T26176] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[ 2250.957883][    T9] pwc: Registered as video103.
[ 2251.043869][   T50] kworker/u8:3: attempt to access beyond end of device
[ 2251.043869][   T50] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2251.059274][    T9] input: PWC snapshot button as /devices/platform/dummy_hcd.1/usb2/2-1/input/input38
[ 2251.081754][   T50] CPU: 1 UID: 0 PID: 50 Comm: kworker/u8:3 Not tainted syzkaller #0 PREEMPT(full) 
[ 2251.081777][   T50] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 2251.081788][   T50] Workqueue: writeback wb_workfn (flush-7:1)
[ 2251.081820][   T50] Call Trace:
[ 2251.081826][   T50]  <TASK>
[ 2251.081835][   T50]  dump_stack_lvl+0x189/0x250
[ 2251.081860][   T50]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2251.081877][   T50]  ? __pfx_queue_work_on+0x10/0x10
[ 2251.081892][   T50]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 2251.081928][   T50]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2251.081967][   T50]  f2fs_handle_critical_error+0x37c/0x540
[ 2251.081998][   T50]  f2fs_write_end_io+0x886/0xb60
[ 2251.082033][   T50]  __submit_merged_bio+0x27a/0x6a0
[ 2251.082062][   T50]  __submit_merged_write_cond+0x255/0x530
[ 2251.082090][   T50]  f2fs_write_data_pages+0x261d/0x3000
[ 2251.082139][   T50]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2251.082238][   T50]  ? f2fs_write_meta_pages+0x357/0x450
[ 2251.082259][   T50]  ? __lock_acquire+0xab9/0xd20
[ 2251.082287][   T50]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2251.082304][   T50]  do_writepages+0x32e/0x550
[ 2251.082335][   T50]  ? reacquire_held_locks+0x127/0x1d0
[ 2251.082350][   T50]  ? writeback_sb_inodes+0x384/0x1010
[ 2251.082381][   T50]  __writeback_single_inode+0x145/0xff0
[ 2251.082399][   T50]  ? do_raw_spin_unlock+0x122/0x240
[ 2251.082424][   T50]  writeback_sb_inodes+0x6c7/0x1010
[ 2251.082473][   T50]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 2251.082545][   T50]  ? rcu_is_watching+0x15/0xb0
[ 2251.082575][   T50]  wb_writeback+0x43b/0xaf0
[ 2251.082605][   T50]  ? queue_io+0x3b1/0x590
[ 2251.082628][   T50]  ? __pfx_wb_writeback+0x10/0x10
[ 2251.082657][   T50]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2251.082680][   T50]  wb_workfn+0x409/0xef0
[ 2251.082725][   T50]  ? __pfx_wb_workfn+0x10/0x10
[ 2251.082751][   T50]  ? __lock_acquire+0xab9/0xd20
[ 2251.082784][   T50]  ? process_scheduled_works+0x9ef/0x17b0
[ 2251.082814][   T50]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2251.082830][   T50]  ? process_scheduled_works+0x9ef/0x17b0
[ 2251.082850][   T50]  ? process_scheduled_works+0x9ef/0x17b0
[ 2251.082876][   T50]  process_scheduled_works+0xae1/0x17b0
[ 2251.082943][   T50]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2251.082988][   T50]  worker_thread+0x8a0/0xda0
[ 2251.083044][   T50]  kthread+0x711/0x8a0
[ 2251.083067][   T50]  ? __pfx_worker_thread+0x10/0x10
[ 2251.083090][   T50]  ? __pfx_kthread+0x10/0x10
[ 2251.083112][   T50]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2251.083126][   T50]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2251.083142][   T50]  ? __pfx_kthread+0x10/0x10
[ 2251.083162][   T50]  ret_from_fork+0x4bc/0x870
[ 2251.083187][   T50]  ? __pfx_ret_from_fork+0x10/0x10
[ 2251.083215][   T50]  ? __switch_to_asm+0x39/0x70
[ 2251.083231][   T50]  ? __switch_to_asm+0x33/0x70
[ 2251.083246][   T50]  ? __pfx_kthread+0x10/0x10
[ 2251.083263][   T50]  ret_from_fork_asm+0x1a/0x30
[ 2251.083305][   T50]  </TASK>
[ 2251.083314][   T50] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[ 2251.352124][    T9] usb 2-1: USB disconnect, device number 7
[ 2252.161695][T26192] loop6: detected capacity change from 0 to 128
[ 2252.227875][T26192] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 2252.287320][T26192] ext4 filesystem being mounted at /9/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 2253.151691][T25765] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 2253.378826][T26202] loop1: detected capacity change from 0 to 128
[ 2253.425500][T26208] loop4: detected capacity change from 0 to 128
[ 2253.452416][T26208] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 2253.471311][T26208] ext4 filesystem being mounted at /211/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 2253.719709][T26207] loop6: detected capacity change from 0 to 40427
[ 2253.731945][T26207] F2FS-fs (loop6): invalid crc value
[ 2253.752087][T26202] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 2253.980552][T26207] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[ 2254.043137][T26207] F2FS-fs (loop6): Start checkpoint disabled!
[ 2254.098460][T26207] F2FS-fs (loop6): f2fs_disable_checkpoint() finish, err:0
[ 2254.174528][T26207] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6
[ 2254.223381][T26202] ext4 filesystem being mounted at /35/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 2254.572024][T21818] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 2254.992966][T26227] loop0: detected capacity change from 0 to 4096
[ 2255.017222][T26227] EXT4-fs: Ignoring removed bh option
[ 2255.018260][   T50] kworker/u8:3: attempt to access beyond end of device
[ 2255.018260][   T50] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2255.097477][T26227] EXT4-fs (loop0): Test dummy encryption mode enabled
[ 2255.158254][   T50] CPU: 0 UID: 0 PID: 50 Comm: kworker/u8:3 Not tainted syzkaller #0 PREEMPT(full) 
[ 2255.158287][   T50] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 2255.158299][   T50] Workqueue: writeback wb_workfn (flush-7:6)
[ 2255.158331][   T50] Call Trace:
[ 2255.158340][   T50]  <TASK>
[ 2255.158348][   T50]  dump_stack_lvl+0x189/0x250
[ 2255.158370][   T50]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2255.158382][   T50]  ? __pfx_queue_work_on+0x10/0x10
[ 2255.158391][   T50]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 2255.158407][   T50]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2255.158430][   T50]  f2fs_handle_critical_error+0x37c/0x540
[ 2255.158450][   T50]  f2fs_write_end_io+0x886/0xb60
[ 2255.158472][   T50]  __submit_merged_bio+0x27a/0x6a0
[ 2255.158492][   T50]  __submit_merged_write_cond+0x255/0x530
[ 2255.158511][   T50]  f2fs_write_data_pages+0x261d/0x3000
[ 2255.158545][   T50]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2255.158565][   T50]  ? __pfx_f2fs_available_free_memory+0x10/0x10
[ 2255.158598][   T50]  ? __pfx_f2fs_balance_fs_bg+0x10/0x10
[ 2255.158608][   T50]  ? look_up_lock_class+0x74/0x170
[ 2255.158625][   T50]  ? trace_f2fs_writepages+0x7f/0x200
[ 2255.158641][   T50]  ? f2fs_write_node_pages+0x478/0x6e0
[ 2255.158664][   T50]  ? save_fpregs_to_fpstate+0xa3/0x210
[ 2255.158680][   T50]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2255.158691][   T50]  do_writepages+0x32e/0x550
[ 2255.158710][   T50]  ? reacquire_held_locks+0x127/0x1d0
[ 2255.158720][   T50]  ? writeback_sb_inodes+0x384/0x1010
[ 2255.158736][   T50]  __writeback_single_inode+0x145/0xff0
[ 2255.158747][   T50]  ? do_raw_spin_unlock+0x122/0x240
[ 2255.158761][   T50]  writeback_sb_inodes+0x6c7/0x1010
[ 2255.158770][   T50]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2255.158796][   T50]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 2255.158834][   T50]  ? rcu_is_watching+0x15/0xb0
[ 2255.158849][   T50]  wb_writeback+0x43b/0xaf0
[ 2255.158865][   T50]  ? queue_io+0x3b1/0x590
[ 2255.158877][   T50]  ? __pfx_wb_writeback+0x10/0x10
[ 2255.158893][   T50]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2255.158905][   T50]  wb_workfn+0x409/0xef0
[ 2255.158929][   T50]  ? __pfx_wb_workfn+0x10/0x10
[ 2255.158946][   T50]  ? __lock_acquire+0xab9/0xd20
[ 2255.158966][   T50]  ? process_scheduled_works+0x9ef/0x17b0
[ 2255.158985][   T50]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2255.159092][   T50]  ? process_scheduled_works+0x9ef/0x17b0
[ 2255.159111][   T50]  ? process_scheduled_works+0x9ef/0x17b0
[ 2255.159127][   T50]  process_scheduled_works+0xae1/0x17b0
[ 2255.159163][   T50]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2255.159190][   T50]  worker_thread+0x8a0/0xda0
[ 2255.159229][   T50]  kthread+0x711/0x8a0
[ 2255.159243][   T50]  ? __pfx_worker_thread+0x10/0x10
[ 2255.159257][   T50]  ? __pfx_kthread+0x10/0x10
[ 2255.159277][   T50]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2255.159292][   T50]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2255.159301][   T50]  ? __pfx_kthread+0x10/0x10
[ 2255.159314][   T50]  ret_from_fork+0x4bc/0x870
[ 2255.159331][   T50]  ? __pfx_ret_from_fork+0x10/0x10
[ 2255.159351][   T50]  ? __switch_to_asm+0x39/0x70
[ 2255.159363][   T50]  ? __switch_to_asm+0x33/0x70
[ 2255.159378][   T50]  ? __pfx_kthread+0x10/0x10
[ 2255.159391][   T50]  ret_from_fork_asm+0x1a/0x30
[ 2255.159416][   T50]  </TASK>
[ 2255.159423][   T50] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[ 2255.182186][T26227] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 2255.616557][T26227] System zones: 0-5
[ 2255.642734][T26227] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 2255.895803][T25251] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 2255.961555][T26227] EXT4-fs (loop0): shut down requested (2)
[ 2256.092533][T24108] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 2256.500844][T26241] loop1: detected capacity change from 0 to 40427
[ 2256.653798][T26241] F2FS-fs (loop1): invalid crc value
[ 2256.707156][T26241] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[ 2256.752015][T26241] F2FS-fs (loop1): Start checkpoint disabled!
[ 2256.767423][T26241] F2FS-fs (loop1): f2fs_disable_checkpoint() finish, err:0
[ 2256.787628][T26241] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[ 2256.810876][T26249] input: syz1 as /devices/virtual/input/input39
[ 2258.038228][T26256] loop6: detected capacity change from 0 to 2048
[ 2258.192734][T21924] kworker/u8:7: attempt to access beyond end of device
[ 2258.192734][T21924] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 2258.287616][T21924] CPU: 0 UID: 0 PID: 21924 Comm: kworker/u8:7 Not tainted syzkaller #0 PREEMPT(full) 
[ 2258.287643][T21924] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 2258.287655][T21924] Workqueue: writeback wb_workfn (flush-7:1)
[ 2258.287685][T21924] Call Trace:
[ 2258.287693][T21924]  <TASK>
[ 2258.287702][T21924]  dump_stack_lvl+0x189/0x250
[ 2258.287727][T21924]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2258.287746][T21924]  ? __pfx_queue_work_on+0x10/0x10
[ 2258.287761][T21924]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 2258.287786][T21924]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2258.287822][T21924]  f2fs_handle_critical_error+0x37c/0x540
[ 2258.287853][T21924]  f2fs_write_end_io+0x886/0xb60
[ 2258.287890][T21924]  __submit_merged_bio+0x27a/0x6a0
[ 2258.287928][T21924]  __submit_merged_write_cond+0x255/0x530
[ 2258.287959][T21924]  f2fs_write_data_pages+0x261d/0x3000
[ 2258.288012][T21924]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2258.288114][T21924]  ? f2fs_write_meta_pages+0x357/0x450
[ 2258.288141][T21924]  ? __lock_acquire+0xab9/0xd20
[ 2258.288167][T21924]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 2258.288187][T21924]  do_writepages+0x32e/0x550
[ 2258.288216][T21924]  ? reacquire_held_locks+0x127/0x1d0
[ 2258.288230][T21924]  ? writeback_sb_inodes+0x384/0x1010
[ 2258.288256][T21924]  __writeback_single_inode+0x145/0xff0
[ 2258.288274][T21924]  ? do_raw_spin_unlock+0x122/0x240
[ 2258.288297][T21924]  writeback_sb_inodes+0x6c7/0x1010
[ 2258.288342][T21924]  ? __pfx_writeback_sb_inodes+0x10/0x10
[ 2258.288404][T21924]  ? rcu_is_watching+0x15/0xb0
[ 2258.288430][T21924]  wb_writeback+0x43b/0xaf0
[ 2258.288457][T21924]  ? queue_io+0x3b1/0x590
[ 2258.288478][T21924]  ? __pfx_wb_writeback+0x10/0x10
[ 2258.288504][T21924]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2258.288525][T21924]  wb_workfn+0x409/0xef0
[ 2258.288560][T21924]  ? __pfx_wb_workfn+0x10/0x10
[ 2258.288586][T21924]  ? __lock_acquire+0xab9/0xd20
[ 2258.288616][T21924]  ? process_scheduled_works+0x9ef/0x17b0
[ 2258.288642][T21924]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2258.288656][T21924]  ? process_scheduled_works+0x9ef/0x17b0
[ 2258.288676][T21924]  ? process_scheduled_works+0x9ef/0x17b0
[ 2258.288699][T21924]  process_scheduled_works+0xae1/0x17b0
[ 2258.288747][T21924]  ? __pfx_process_scheduled_works+0x10/0x10
[ 2258.288785][T21924]  worker_thread+0x8a0/0xda0
[ 2258.288811][T21924]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 2258.288844][T21924]  ? __kthread_parkme+0x7b/0x200
[ 2258.288872][T21924]  kthread+0x711/0x8a0
[ 2258.288895][T21924]  ? __pfx_worker_thread+0x10/0x10
[ 2258.288925][T21924]  ? __pfx_kthread+0x10/0x10
[ 2258.288946][T21924]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2258.288963][T21924]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2258.288978][T21924]  ? __pfx_kthread+0x10/0x10
[ 2258.288998][T21924]  ret_from_fork+0x4bc/0x870
[ 2258.289024][T21924]  ? __pfx_ret_from_fork+0x10/0x10
[ 2258.289055][T21924]  ? __switch_to_asm+0x39/0x70
[ 2258.289074][T21924]  ? __switch_to_asm+0x33/0x70
[ 2258.289092][T21924]  ? __pfx_kthread+0x10/0x10
[ 2258.289112][T21924]  ret_from_fork_asm+0x1a/0x30
[ 2258.289145][T21924]  </TASK>
[ 2258.289329][T21924] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[ 2258.796742][T26256] Dev loop6: unable to read RDB block 8
[ 2258.846099][T26256]  loop6: unable to read partition table
[ 2258.852260][T26256] loop_reread_partitions: partition scan of loop6 () failed (rc=-5)
[ 2259.470670][T26270] loop3: detected capacity change from 0 to 128
[ 2259.638628][T26270] overlayfs: missing 'lowerdir'
[ 2260.908411][T26292] loop1: detected capacity change from 0 to 128
[ 2260.925992][T26292] EXT4-fs (loop1): Test dummy encryption mode enabled
[ 2260.967893][T26292] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 2260.994739][T26292] ext4 filesystem being mounted at /39/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 2261.092185][T26296] loop4: detected capacity change from 0 to 2048
[ 2261.888982][T26288] loop6: detected capacity change from 0 to 32768
[ 2261.922028][T26288] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.4995 (26288)
[ 2262.009362][T26288] BTRFS info (device loop6): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[ 2262.105796][T26288] BTRFS info (device loop6): using blake2b (blake2b-256-generic) checksum algorithm
[ 2262.803711][T25251] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 2262.814841][T26288] BTRFS info (device loop6): enabling ssd optimizations
[ 2262.849096][T26288] BTRFS info (device loop6): enabling free space tree
[ 2263.144454][T26326] input: syz1 as /devices/virtual/input/input40
[ 2263.269003][T26332] loop1: detected capacity change from 0 to 128
[ 2263.299876][T26332] overlayfs: missing 'lowerdir'
[ 2263.358652][T25765] BTRFS info (device loop6): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[ 2266.346378][T26365] genirq: Flags mismatch irq 5. 00200000 (pcl812) vs. 00200000 (at-a2150c)
[ 2267.933633][T21136] Bluetooth: hci3: command 0x0405 tx timeout
[ 2269.170365][T26380] loop3: detected capacity change from 0 to 128
[ 2269.435875][T26380] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 2269.520738][T26380] ext4 filesystem being mounted at /246/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 2270.124067][T26393] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5018'.
[ 2270.601462][T26397] input: syz1 as /devices/virtual/input/input41
[ 2271.709010][T21762] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 2273.273480][T26423] loop4: detected capacity change from 0 to 32768
[ 2273.307825][   T30] audit: type=1800 audit(1758836380.192:208): pid=26423 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.5028" name="file1" dev="loop4" ino=4 res=0 errno=0
[ 2273.680912][T26439] netlink: 168 bytes leftover after parsing attributes in process `syz.1.5033'.
[ 2273.691070][ T5978] usb 7-1: new full-speed USB device number 3 using dummy_hcd
[ 2273.904688][ T5978] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 4
[ 2273.951712][ T5978] usb 7-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[ 2273.989822][  T112] ==================================================================
[ 2273.998110][  T112] BUG: KASAN: slab-use-after-free in jfs_lazycommit+0x74b/0xa90
[ 2274.000237][ T5978] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 2274.005876][  T112] Read of size 4 at addr ffff88807941d294 by task jfsCommit/112
[ 2274.005897][  T112] 
[ 2274.005908][  T112] CPU: 0 UID: 0 PID: 112 Comm: jfsCommit Not tainted syzkaller #0 PREEMPT(full) 
[ 2274.005924][  T112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 2274.005935][  T112] Call Trace:
[ 2274.005944][  T112]  <TASK>
[ 2274.005952][  T112]  dump_stack_lvl+0x189/0x250
[ 2274.005972][  T112]  ? __kasan_check_byte+0x12/0x40
[ 2274.005992][  T112]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2274.006009][  T112]  ? lock_release+0x4b/0x3e0
[ 2274.006033][  T112]  ? __virt_addr_valid+0x4a5/0x5c0
[ 2274.006052][  T112]  print_report+0xca/0x240
[ 2274.006075][  T112]  ? jfs_lazycommit+0x74b/0xa90
[ 2274.006091][  T112]  kasan_report+0x118/0x150
[ 2274.006109][  T112]  ? _raw_spin_lock_irqsave+0xb3/0xf0
[ 2274.006133][  T112]  ? jfs_lazycommit+0x74b/0xa90
[ 2274.006153][  T112]  jfs_lazycommit+0x74b/0xa90
[ 2274.006175][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[ 2274.006192][  T112]  ? __pfx_default_wake_function+0x10/0x10
[ 2274.006222][  T112]  ? __kthread_parkme+0x7b/0x200
[ 2274.006237][  T112]  ? __kthread_parkme+0x1a1/0x200
[ 2274.006254][  T112]  kthread+0x711/0x8a0
[ 2274.006273][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[ 2274.006291][  T112]  ? __pfx_kthread+0x10/0x10
[ 2274.006309][  T112]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2274.006323][  T112]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2274.006339][  T112]  ? __pfx_kthread+0x10/0x10
[ 2274.006355][  T112]  ret_from_fork+0x4bc/0x870
[ 2274.006378][  T112]  ? __pfx_ret_from_fork+0x10/0x10
[ 2274.006401][  T112]  ? __switch_to_asm+0x39/0x70
[ 2274.006420][  T112]  ? __switch_to_asm+0x33/0x70
[ 2274.006438][  T112]  ? __pfx_kthread+0x10/0x10
[ 2274.006453][  T112]  ret_from_fork_asm+0x1a/0x30
[ 2274.006479][  T112]  </TASK>
[ 2274.006485][  T112] 
[ 2274.186096][  T112] Allocated by task 26423:
[ 2274.190500][  T112]  kasan_save_track+0x3e/0x80
[ 2274.195161][  T112]  __kasan_kmalloc+0x93/0xb0
[ 2274.199731][  T112]  __kmalloc_cache_noprof+0x3d5/0x6f0
[ 2274.205175][  T112]  jfs_fill_super+0xc2/0xd80
[ 2274.209751][  T112]  get_tree_bdev_flags+0x40e/0x4d0
[ 2274.214844][  T112]  vfs_get_tree+0x92/0x2b0
[ 2274.219239][  T112]  do_new_mount+0x302/0x9e0
[ 2274.224273][  T112]  __se_sys_mount+0x313/0x410
[ 2274.228936][  T112]  do_syscall_64+0xfa/0xfa0
[ 2274.233508][  T112]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2274.239402][  T112] 
[ 2274.241721][  T112] Freed by task 21818:
[ 2274.245774][  T112]  kasan_save_track+0x3e/0x80
[ 2274.250433][  T112]  __kasan_save_free_info+0x46/0x50
[ 2274.255617][  T112]  __kasan_slab_free+0x5c/0x80
[ 2274.260371][  T112]  kfree+0x19a/0x6d0
[ 2274.264251][  T112]  generic_shutdown_super+0x135/0x2c0
[ 2274.269608][  T112]  kill_block_super+0x44/0x90
[ 2274.274275][  T112]  deactivate_locked_super+0xbc/0x130
[ 2274.279632][  T112]  cleanup_mnt+0x425/0x4c0
[ 2274.284048][  T112]  task_work_run+0x1d4/0x260
[ 2274.288651][  T112]  exit_to_user_mode_loop+0xe9/0x130
[ 2274.293932][  T112]  do_syscall_64+0x2bd/0xfa0
[ 2274.298521][  T112]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 2274.304393][  T112] 
[ 2274.306698][  T112] The buggy address belongs to the object at ffff88807941d200
[ 2274.306698][  T112]  which belongs to the cache kmalloc-256 of size 256
[ 2274.320836][  T112] The buggy address is located 148 bytes inside of
[ 2274.320836][  T112]  freed 256-byte region [ffff88807941d200, ffff88807941d300)
[ 2274.334613][  T112] 
[ 2274.336925][  T112] The buggy address belongs to the physical page:
[ 2274.343327][  T112] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7941c
[ 2274.352080][  T112] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 2274.360562][  T112] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 2274.368098][  T112] page_type: f5(slab)
[ 2274.372062][  T112] raw: 00fff00000000040 ffff88813fe26b40 dead000000000100 dead000000000122
[ 2274.380626][  T112] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[ 2274.389190][  T112] head: 00fff00000000040 ffff88813fe26b40 dead000000000100 dead000000000122
[ 2274.397839][  T112] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[ 2274.406489][  T112] head: 00fff00000000001 ffffea0001e50701 00000000ffffffff 00000000ffffffff
[ 2274.415139][  T112] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002
[ 2274.423785][  T112] page dumped because: kasan: bad access detected
[ 2274.430190][  T112] page_owner tracks the page as allocated
[ 2274.435893][  T112] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5858, tgid 5858 (syz-executor), ts 75775404537, free_ts 74672594246
[ 2274.457244][  T112]  post_alloc_hook+0x240/0x2a0
[ 2274.462001][  T112]  get_page_from_freelist+0x2365/0x2440
[ 2274.467534][  T112]  __alloc_frozen_pages_noprof+0x181/0x370
[ 2274.473319][  T112]  alloc_pages_mpol+0x232/0x4a0
[ 2274.478153][  T112]  allocate_slab+0x96/0x3a0
[ 2274.482925][  T112]  ___slab_alloc+0xe94/0x1920
[ 2274.487720][  T112]  __slab_alloc+0x65/0x100
[ 2274.492311][  T112]  __kmalloc_noprof+0x471/0x7f0
[ 2274.497247][  T112]  __register_sysctl_table+0xba1/0x1340
[ 2274.502782][  T112]  mpls_dev_sysctl_register+0x188/0x270
[ 2274.508488][  T112]  mpls_dev_notify+0x357/0x7a0
[ 2274.513321][  T112]  notifier_call_chain+0x1b6/0x3e0
[ 2274.518623][  T112]  register_netdevice+0x1608/0x1ae0
[ 2274.523909][  T112]  veth_newlink+0x437/0xa60
[ 2274.528424][  T112]  rtnl_newlink_create+0x310/0xb00
[ 2274.533526][  T112]  rtnl_newlink+0x16e4/0x1c80
[ 2274.538185][  T112] page last free pid 5872 tgid 5872 stack trace:
[ 2274.544587][  T112]  __free_frozen_pages+0xbc4/0xd30
[ 2274.549682][  T112]  __slab_free+0x2e7/0x390
[ 2274.554080][  T112]  qlist_free_all+0x97/0x140
[ 2274.558653][  T112]  kasan_quarantine_reduce+0x148/0x160
[ 2274.564188][  T112]  __kasan_slab_alloc+0x22/0x80
[ 2274.569023][  T112]  __kmalloc_cache_noprof+0x36f/0x6f0
[ 2274.574397][  T112]  __ipv6_dev_mc_inc+0x44f/0xa50
[ 2274.579322][  T112]  ipv6_add_dev+0xe72/0x1380
[ 2274.583894][  T112]  addrconf_notify+0x794/0x1010
[ 2274.588723][  T112]  notifier_call_chain+0x1b6/0x3e0
[ 2274.593813][  T112]  register_netdevice+0x1608/0x1ae0
[ 2274.599272][  T112]  __ip_tunnel_create+0x3e7/0x560
[ 2274.604303][  T112]  ip_tunnel_init_net+0x2ba/0x800
[ 2274.609323][  T112]  ops_init+0x35c/0x5c0
[ 2274.613486][  T112]  setup_net+0xfe/0x320
[ 2274.618112][  T112]  copy_net_ns+0x34e/0x4e0
[ 2274.622712][  T112] 
[ 2274.625039][  T112] Memory state around the buggy address:
[ 2274.630666][  T112]  ffff88807941d180: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 2274.638719][  T112]  ffff88807941d200: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2274.646777][  T112] >ffff88807941d280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 2274.654831][  T112]                          ^
[ 2274.659426][  T112]  ffff88807941d300: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 2274.667661][  T112]  ffff88807941d380: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 2274.675721][  T112] ==================================================================
[ 2274.683791][  T112] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 2274.690975][  T112] CPU: 0 UID: 0 PID: 112 Comm: jfsCommit Not tainted syzkaller #0 PREEMPT(full) 
[ 2274.700173][  T112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 2274.710746][  T112] Call Trace:
[ 2274.714025][  T112]  <TASK>
[ 2274.716954][  T112]  dump_stack_lvl+0x99/0x250
[ 2274.721541][  T112]  ? __asan_memcpy+0x40/0x70
[ 2274.726115][  T112]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 2274.731401][  T112]  ? __pfx__printk+0x10/0x10
[ 2274.736091][  T112]  vpanic+0x237/0x6d0
[ 2274.740061][  T112]  ? __pfx_vpanic+0x10/0x10
[ 2274.744727][  T112]  panic+0xb9/0xc0
[ 2274.748567][  T112]  ? __pfx_panic+0x10/0x10
[ 2274.752975][  T112]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[ 2274.758884][  T112]  ? jfs_lazycommit+0x74b/0xa90
[ 2274.763819][  T112]  check_panic_on_warn+0x89/0xb0
[ 2274.768985][  T112]  ? jfs_lazycommit+0x74b/0xa90
[ 2274.773853][  T112]  end_report+0x78/0x160
[ 2274.778097][  T112]  kasan_report+0x129/0x150
[ 2274.782607][  T112]  ? _raw_spin_lock_irqsave+0xb3/0xf0
[ 2274.788087][  T112]  ? jfs_lazycommit+0x74b/0xa90
[ 2274.793055][  T112]  jfs_lazycommit+0x74b/0xa90
[ 2274.797733][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[ 2274.802943][  T112]  ? __pfx_default_wake_function+0x10/0x10
[ 2274.808739][  T112]  ? __kthread_parkme+0x7b/0x200
[ 2274.813835][  T112]  ? __kthread_parkme+0x1a1/0x200
[ 2274.819048][  T112]  kthread+0x711/0x8a0
[ 2274.823103][  T112]  ? __pfx_jfs_lazycommit+0x10/0x10
[ 2274.828296][  T112]  ? __pfx_kthread+0x10/0x10
[ 2274.832901][  T112]  ? _raw_spin_unlock_irq+0x23/0x50
[ 2274.838144][  T112]  ? lockdep_hardirqs_on+0x9c/0x150
[ 2274.843504][  T112]  ? __pfx_kthread+0x10/0x10
[ 2274.848086][  T112]  ret_from_fork+0x4bc/0x870
[ 2274.852754][  T112]  ? __pfx_ret_from_fork+0x10/0x10
[ 2274.857860][  T112]  ? __switch_to_asm+0x39/0x70
[ 2274.862632][  T112]  ? __switch_to_asm+0x33/0x70
[ 2274.867388][  T112]  ? __pfx_kthread+0x10/0x10
[ 2274.872002][  T112]  ret_from_fork_asm+0x1a/0x30
[ 2274.876759][  T112]  </TASK>
[ 2274.880129][  T112] Kernel Offset: disabled
[ 2274.884463][  T112] Rebooting in 86400 seconds..