last executing test programs:

6m0.112582464s ago: executing program 0 (id=280):
syz_mount_image$udf(&(0x7f0000000c40), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='noadinicb,nostrict,mode=00000000000000000000004,uid=forget,noadinicb,umask=00000000000000040002000,lastblock=00000000000000000013,undelete,partition=00000000000000000005,\x00'], 0x43, 0xc11, &(0x7f0000000d00)="$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")
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0xc0086c43, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x42, 0x2e)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x8042, 0x0)
fcntl$setlease(r0, 0x400, 0x1)
unlink(&(0x7f0000000180)='./file1\x00')

5m58.81793485s ago: executing program 0 (id=287):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x35, &(0x7f0000000000)=0x8000, 0x4)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000140)=ANY=[], 0x8)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r0, &(0x7f0000001400)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000780)=""/235, 0xeb}, 0x4974}], 0x1, 0x0, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

5m58.034044767s ago: executing program 0 (id=291):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
r1 = inotify_init1(0x0)
inotify_add_watch(r1, &(0x7f0000000040)='./file1\x00', 0x2000775)
write$binfmt_elf64(r0, &(0x7f0000000180)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x4, 0x0, 0x0, 0x7fff, 0x3, 0x3e, 0xfffbffec, 0x294, 0x40, 0x3e5, 0x0, 0x9f2c, 0x38, 0x1, 0x0, 0x2}, [{0x3, 0xf97, 0x4, 0xd, 0x1c8, 0xe2, 0x1, 0x3}]}, 0x78)
close(r0)
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x1000)

5m57.518113481s ago: executing program 0 (id=292):
mkdir(&(0x7f0000000440)='./file1\x00', 0x115)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000080)='./file1\x00')
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
write$qrtrtun(r0, &(0x7f0000000300)="ca", 0x1)
creat(&(0x7f0000000100)='./file0\x00', 0x0)

5m56.886095971s ago: executing program 0 (id=295):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
mkdir(&(0x7f0000001a80)='./file0\x00', 0x18b)
mount$bpf(0x200000000000, &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x118d046, 0x0)
mount$bpf(0x0, &(0x7f00000000c0)='./file0/../file0\x00', 0x0, 0x100000, 0x0)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
mount$bpf(0x200000000000, &(0x7f0000000780)='./file0/../file0\x00', 0x0, 0xa06002, 0x0)

5m55.754118489s ago: executing program 0 (id=301):
writev(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1e7d, 0x2c2e, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="002205000000c40da667"], 0x0}, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x89f0, &(0x7f0000000080)={'bridge0\x00', 0x0})

5m40.49537549s ago: executing program 32 (id=301):
writev(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1e7d, 0x2c2e, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="002205000000c40da667"], 0x0}, 0x0)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x89f0, &(0x7f0000000080)={'bridge0\x00', 0x0})

3m39.160698709s ago: executing program 3 (id=918):
unshare(0xa000200)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r0}, 0x18)
semget$private(0x0, 0x4000, 0x0)
semtimedop(0x0, &(0x7f0000000000)=[{0x2, 0x40, 0x1800}], 0x1, 0x0)
unshare(0x20060400)

3m38.60051309s ago: executing program 3 (id=922):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
pipe(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
write$cgroup_devices(r2, &(0x7f0000000080)=ANY=[], 0x47)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000180)={0x1})
splice(r1, 0x0, r0, 0x0, 0x800, 0x0)

3m38.252765743s ago: executing program 3 (id=925):
r0 = socket(0x200000000000011, 0x2, 0xd)
r1 = socket(0x200000000000011, 0x2, 0x0)
bind$packet(r1, &(0x7f0000000080)={0x11, 0x800, 0x0, 0x1, 0x0, 0x6, @random="518440db9de1"}, 0x14)
bind$packet(r0, &(0x7f0000000080)={0x11, 0x800, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x8000}, 0x4)
syz_emit_ethernet(0x32, &(0x7f0000000200)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x2, 0x10, 0x11, 0x0, @empty, @empty}, {0x4e22, 0x4e23, 0x10, 0x0, @gue={{0x2, 0x1, 0x3, 0x4, 0x0, @val=0x80}}}}}}}, 0x0)

3m37.957575187s ago: executing program 3 (id=926):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000280)='./file0\x00', 0x800, &(0x7f0000000500)=ANY=[@ANYBLOB='iocharset=cp850,dmask=00000000000000000000777,namecase=1,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c666d61736b3d30300000000000000040303030303030303030303031302c757466382c666d61736b3d30303030303030303030303030303030303030303030372c6572726f72733d72476d6f756e742d726f2c6e616d65636173653d312c706c6c6f775f7574696d653d30303030323030303030303030303015303134373037302c00904f5ef6c3660c06b4d7d3172ed33955a22d96c6b58d48d25609fc8fd957db7f4cfb97e98333158a7878aa16963be19155c4a0068007e41cc520b790c6292f5e20dbf5725a2a02670903b3d75dfbb2030d8cdef5210ed5485e27f1d33f67e2d90248d081d098053c"], 0x1, 0x1528, &(0x7f00000037c0)="$eJzs3AuYT9X6OPD3XWvtMSS+TXIZ1lrv5ptclkmSXJLkkiRJkuSWkDTJkYTEEJI0JCG5DEkMIblMTBr3+/2SkCRNkoTklqz/M+FxOnX+p/M7/XKe37yf59mP9X73ftd+9/f9XvbeZubbrkNrNaldvRERwX8EL/yTBACxADAQAPICQAAA5ePKx2Wtzykx6T/bCftzPZh6pStgVxL3P3vj/mdv3P/sjfufvXH/szfuf/bG/c/euP+MZWebphW6hpfsu/D9/+yMv///D8ksM/bLNWWu6wYQ80dTuP/ZG/f//6zgj2zE/c/euP/ZVeyVLoD9F+D3f3aQ45+u4f5nb9x/xrKzK33/+UovEPkvew6O5LzQmL/q+BljjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMsb/AaX+ZAoBL4ytdF2OMMcYYY4wxxv48PseVroAxxhhjjDHGGGP/+xAESFAQQAzkgFjICblAAMDVkAfyQgSugTi4FvLBdZAfCkBBKATxUBiKgAYDFghCKArFIArXQ3G4AUpASSgFpcFBGUiAG6Es3ATl4GYoD7dABbgVKkIlqAxV4DaoCrdDNbgDqsOdUANqQi2oDXdBHbgb6sI9UA/uhfpwHzSA+6EhPACN4EFoDA9BE3gYmsIj0AyaQwtoCa3+R/nPQ094AXpBb0iCPtAXXoR+0B8GwEswEF6GQfAKDIZXIRmGwFB4DYbB6zAc3oARMBJGwZswGt6CMTAWxsF4SIEJMBHehknwDkyGd2EKTIVUmAbT4T2YATNhFrwPs+EDmANzYR7MhzT4EBbAQkiHj2ARfAwZsBiWwFJYBsthBayEVbAa1sBaWAfrYQNshE2wGbbAVtgG22EHfAI74VPYBbthD3wGe+HzfzP/1D/kd0NAQIECFSqMwRiMxVjMhbkwN+bGPJgHIxjBOIzDfJgP82N+LIgFMR7jsQgWQYMGCQmLYlGMYhSLY3EsgSWwFJZChw4TMAHL4k1YDstheSyPFbACVsRKWAmrYBWsilWxGlbD6lgda2ANrIW18C68C/tgXayL9bAe1sf6l25PYSNshI2xMTbBJtgUm2IzbIYtsAW2wlbYGltjG2yD7bAdtsf22AE7YCImYkfsiJ2wE3bGztgFu2BX7IrdsDt2z3w+B+AL+AL2xhqiD/bFvtgPk3MMwJfwJXwZB+Er+Aq+isk4BIfia/gavo7D8SSOwJE4CkdhVfEWjsGxSGI8pmAKTsSJOAknYVah7+JUTMVpOB2n4wyciTPxfZyNH+AHOBfn4nxMwzRcgAsxHdNxEZ7CDFyMS3ApLsPluAxX4ipciWtwLa7B9bgeN+JG3IybcStuxe24HT9BBYCf4m7cjcm4F/fiPtyH+3E/HsADmImZeBAP4iE8hIfxMB7BI3gUj+FxPIYn8ASexFN4Gk/jWTyL5/DZ+K8bf1JydTKILEooESNiRKyIFblELpFb5BZ5RB4RERERJ+JEPpFP5Bf5RUFRUMSLeFFEFBFGGEEijAEAERVRUVwUFyVECVFKlBJOOJEgEkRZUVaUE+VEeXGLqCBuFRVFJdHWVRFVRFXRzlUTd4jqorqoIWqKWqK2qC3qiDqirqgr6ol6or6oLxqI+0VD0QcH4IMiqzNNxBBsKoZiM9FcyIufYK3FcGwj2op24nExEkdgB9HaJYqnREcxBjuJv4mx+IzoIsZjV/Gc6Ca6ix7iedFTtHG9RG8xGfuIvmIq9hP9xQDxkpiBNcX7ODtnLfGqSBZDxFDxmpiPr4vh4g0xQowUo8SbYrR4S4wRY8U4MV6kiAlionhbTBLviMniXTFFTBWpYpqYLt4TM8RMMUu8L2aLD8QcMVfME/NFmvhQLBALRbr4SCwSH4sMsVgsEUvFMrFcrBArxSqxWqwRa8U6sV5sEBvFJrFZbBFbxTaxXewQn4id4lOxS+wWe8RnYq/4XOwTX4j94ktxQHwlMsXX4qD4RhwS34rD4jtxRHwvjopj4rj4QZwQP4qT4pQ4Lc6Is+IncU78LM4LL0CiFFJKJQMZI3PIWJlT5pJXydwyuPjsXiPj5LUyn7xO5pcFZEFZSMbLwrKI1NJIK0mGsqgsJqPyellc3iBLyJKylCwtnSwjE+SNsqy8SZaTN8vy8hZZQd4qK8pKsrKsIm+TVeXtEiIX9lFD1pS1ZG15l0yCu2VdeY+sJ++V9eV9soG8XzaUD8hG8kHZWD4km8iHZVP5iGwmm8sWsqVsJR+VreVjso1sK9vJx2V7+YTsIJ+UifIp2VH6iy+RZ2QX+azsKp+T3WR32UP+LM9LL3vJ3hL6gOwrX5T9ZH85IBYA5MtykHxFDpavymQ5RA6Vr8lh8nU5XL4hR8iRcpR8U46Wb8kxcqwcJ8fLFDlBTpRvy0nyHTlZviunyKkyVU6TA+TAX2aaJeW/zH/7d/IH/7L3jXKT3Cy3yK1ym9wud8hP5E65U+6Su+QeuUfulXvlPrlP7pf75QF5QGbKTHlQHpSH5CF5WB6WR+QReVQek2fkD/KE/FGelKfkKXlGnpVn5bmLzwEoVEJJpVSgYlQOFatyqlzqKpVbXa3yqLwqoq5RcepalU9dp/KrAqqgKqTiVWFVRGlllFWkQlVUFVNRdT1efMGoUqq0cqqMSlA3/jv5qri6QZVQJX+Vf6m+pH9SXyvVSrVWrVUb1Ua1U+1Ue9VedVAdVKJKVB1VR9VJdVKdVWfVRXVRXVVX1U11Uz1UD9VT9VS9VC+VpJJUX/Wi6qf6qwHqJTVQvawGqUFqsBqsklWyGqqGqmFqmBquhqsRaoQapUap0Wq0GqPGqHFqnEpRKWqimqgmqUlqspqspqgpKlWlqulqupqhZqhZapaarWarOWqOmqfmqTSVphaoBSpdpatFapHKUIvVYrVULVXL1XK1Uq1Uq9VqtVatVevVepWhNqlNaovaorapbWqH2qF2qp1ql9ql9qg9aq/aq/apfWq/2q8OqAMqU2Wqg+qgOqQOqcPqsDqijqij6qg6ro6rE+qEOqlOqtPqtDqrzqpz6pw6r85nnfYFIhCBClQQE8QEsUFskCvIFeQOcgd5gjxBJIgEcUFckC+4LsgfFAgKBoWC+KBwUCTQgQlsIC42PRpcHxQPbghKBCWDUkHpwAVlgoTgxqBscFNQLrg5KB/cElQIbg0qBpWCykGV4LaganB7UC24I6ge3BnUCGoGtYLawV1BneDuoG5wT1AvuDeoH9wXNAjuDxoGDwSNggeDxsFDQZPg4aBp8EjQLGgetAhaBq3+1Pm9P1ngMddL99ZJuo/uq1/U/XR/PUC/pAfql/Ug/YoerF/VyXqIHqpf08P063q4fkOP0CP1KP2mHq3f0mP0WD1Oj9cpeoKeqN/Wk/Q7erJ+V0/RU3Wqnqan6/f0DD1Tz9Lv69n6Az1Hz9Xz9Hydpj/UC/RCna4/0ov0xzpDL9ZL9FK9TC/XK/RKvUqv1mv0Wr1Or9cb9Ea9SW/WW/RWvU1v1zv0J3qn/lTv0rv1Hv2Z3qs/1/v0F3q//lIf0F/pTP21Pqi/0Yf0t/qw/k4f0d/ro/qYPq5/0Cf0j/qkPqVP6zP6rP5Jn9M/6/PaZ53cZ329G2WUiTExJtbEmlwml8ltcps8Jo+JmIiJM3Emn8ln8pv8pqApaOJNvCliipgsZMgUNUVN1ERNcVPclDAlTClTyjjjTIJJMGVNWVPOlDPlTXlTwVQwFU1FU9lUNreZ28zt5nZzh7nD3GnuNDVNTVPb1DZ1TB1T19Q19Uw9U9/UNw1MA9PQNDSNTCPT2DQ2TUwT09Q0Nc1MM9PCtDCtTCvT2rQ2bUwb0860M+1Ne9PBdDCJJtF0NB1NJ9PJdDadTRfTxXQ1XU030830MD1MT9PT9DK9TJJJMn1NX9PP9DMDzAAz0Aw0g8wgM9gMNskm2Qw1Q80wM8wMN8PNCDPSjMo6UTVvmTFmrBlnxpsUk2ImmolmkplkJpvJZoqZYlJNqpluppsZZoaZZWaZ2Wa2mWPmmHlmnkkzaWaBWWDSTbpZZBaZDJNhlpglZplZZlaYFWaVWWXWmDVmHawzG8wGs8lsMlvMFrPNbDM7zA6z0+w0u8wus8fsMXvNXrPP7DP7zX5zwBwwmSbTHDQHzSFzyBw2h80Rc8QcNUfNcXPcnDAnzElz0pw2p81ZU+Di96U3sTanzWWvsrnt1TaPzWv/MS5oC9l4W9gWsdrmtwV+FRtrbQlb0paypa2zZWyCvfE3cUVbyVa2Vexttqq93Vb7TVzH3m3r2ntsPXuvrW3v+lVc395nG9iHbUNEANvcNrYtbRP7sG1qH7HNbHPbwra07e0TtoN90ibap2xH+/Rv4gV2oV1lV9s1dq3dZXfb0/aMPWS/tWftT7aX7W0H2pftIPuKHWxftcl2yG/iUfZNO9q+ZcfYsXacHf+beIqdalPtNDvdvmdn2Jm/idPsh3a2Tbdz7Fw7z87/Jc6qKd1+ZBfZj22GDWCJXWqX2eV2hV15qVaf1663G+xGu9N+arfYrXab3W53XDoRtrvtHvuZ3Ws/twftN3a//dIesIdtpv36lzjr+A7b7+wR+709ao/Z4/YHe8L+qC5lZx37D/Zne956C4QEJElRQDGUg2IpJ+Wiqyg3XU15KC9F6BqKo2spH11H+akAFaRCFE+FqQhpMmSJKKSiVIyidD1dKq8UlSZHZSiBbqSydBOVo5upPN1CFehWqkiVqDJVoduoKt1O1egOqk53Ug2qSbWoNt1Fdehuqkv3UD26l+rTfdSA7qeG9AA1ogepMT1ETehhakqPUDNqTi2oJbWiR6k1PUZtqC21o8epPT1BHehJSqSnqCM9TZ3ob9SZnqEu9Cx1peeoG3WnHvQ89aQXqBf1piTqQ33pRepH/WkAvUQD6WUaRK/QYHqVkmkIDaXXaBi9TsPpDRpBI2kUvUmj6S0aQ2NpHI2nFJpAE+ltmkTv0GR6l6bQVEqlaTSd3qMZNJNm0fs0mz6gOTSX5tF8SqMPaQEtpHT6iBbRx5RBi2kJLaVltJxW0EpaRatpDa2ldbSeNtBG2kSbaQttpW20nXbQJ7STPqVdtJv20Ge0lz6nffQF7acv6QB9RZn0NR2kb+gQfUuH6Tvfm76no3SMjtMPdIJ+pJN0ik7TGTpLP9E5+pnOkycIMRShDFUYhDFhjjA2zBnmCq8Kc4dXh3nCvGEkvCaMC68N84XXhfnDAmHBsFAYHxYOi4Q6NKENKQzDomGxMBpeHxYPbwhLhCXDUmHp0IVlwoTwxrBseFNYLrw5LB/eElYIbw0rhpXCh++tEt4WVg1vD6uFd4TVwzvDGmHNsFZYO7wrrBPeHdYN7wnrhfeG5cL7wgbh/WHD8IGwUfhg2Dh8KGwSPhw2DR8Jm4XNwxZhy7BV+GjYOnwsbBO2DduFj4ftwyfCDuGTYWL4VNgxfPqX9fct/Ofrk8I+Yd/wxfDF0Pt75Lzo/Gha9MPogujCaHr0o+ii6MfRjOji6JLo0uiy6PLoiujK6Kro6uia6Nrouuj66Iboxqj3tXOAQyecdMoFLsblcLEup8vlrnK53dUuj8vrIu4aF+eudfncdS6/K+AKukIu3hV2RZx2xllHLnRFXTEXdde74u4GV8KVdKVcaedcGZfgWrpWrpVr7R5zbVxb18497h53T7gn3JPuSfeU6+iedp3c31xn94zr4p51z7rnXDfX3fVwz7uebkKeC+/JJNfX9XX9XD83wA1wA91AN8gNcoPdYJfskt1QN9QNc8PccDfcjXAj3Cg3yo12o90YN8aNc+NciktxE91EN8lNcpPdZDfFTXGpLtVNd9PdDDfDVZ15YS9z3Bw3z81zaS7NLXBZ54zpbpFb5DJchlvilrhlbplb4Va4VW6VW+PWuHVundvgNrhNbpPb4ra4bW6b2+F2uJ1up9vl816Y1O11+9w+t9/tdwfcVy7Tfe0Oum/cIfetO+y+c0fc9+6oO+aOux/cCfejO+lOudPujDvrfnLn3M/uvPMuJTIhMjHydmRS5J3I5Mi7kSmRqZHUyLTI9Mh7kRmRmZFZkfcjsyMfROZE5kbmReZH0iIfRhZEFkbSIx9FFkU+jmREFkeWRJZGlkWWR7wvvCX0RX0xH/XX++L+Bl/Cl/SlfGnvfBmf4G/0Zf1Nvpy/2Zf3t/gK/lZf0Vfylf0jvplv7lv4lr6Vf9S39o/5Nr6tb+cf9+39E76Df9In+qd8R/+07+T/5jv7Z3wX/6zv6p/z3Xx338M/73v6F3wv39sn+T6+r3/R9/P9/QD/kh/oX/aD/Ct+sH/VJ/shfqh/zQ/zr/vh/g0/wo/0o2Le9KMvXSLDeJ/iJ/iJ/m0/yb/jJ/t3/RQ/1af6aX66f8/P8DP9LP++n+0/8HP8XD/Pz/dp/kO/wC/06f4jv8h/7DP84ks3lf0Kv9Kv8qv9Gr/Wr/Pr/Qa/0W/ym/0Wv9Vv89v9Dv+J3+k/9bv8br/Hf+b3+s/9Pv+F3++/9Af8Vz7Tf+0P+m/8If+tP+y/80f89/6oP+aP+x/8Cf+jP+lP+dP+jD/rf/Ln/M/+PP/OGmOMMcbYHzLh8lD8es2F2/l9fidH/N3GfQHg6q2FMv9+fdYZ5br8F8b9RXz7CAA81bvrg5eWGjWSkpIubpshISg2F+DS/wRliYHL8WJoB09AIrSFsr9bf3/R/Sz9i/mjtwDk+rucWLgcX57/CwBM+p35H3181IIK4em4/8/8cwFKFLuckxMux4uh3S/3V9pCuX9Sf4HW/6L+nF+mALT5u5zccDm+XH8CPAZPQ+KvtmSMMcYYY4wxxi7oLyp3vnT9eeknPn/v+jxeXc7JAZfjf3V9zhhjjDHGGGOMsSvvme49nnw0MbFt539/UO1/lPWHB03hf2tmHvzuwHuAS48oAPgPJwTIGsi/8ig2/yX7Sr741vnHVcvO+AD+O1r5Zwyu8AcTY4wxxhhj7E93+aT/14+rK1UQY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDGWDf0Vf07sSh8jY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxdqX9vwAAAP//kfb+pw==")
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002040), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000002080)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000002100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
syz_fuse_handle_req(r0, &(0x7f00000021c0), 0x2000, &(0x7f00000041c0)={&(0x7f0000000000)={0x50, 0x0, 0x0, {0x7, 0x29, 0x0, 0x100000, 0x40, 0x0, 0x0, 0x57, 0x0, 0x0, 0x2, 0x3}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000004300)="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", 0x2000, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000680)={0x78, 0x0, 0x7, {0xe, 0xcbff, 0x0, {0x5, 0x7, 0x29000000000, 0x1af3, 0xa, 0x80000006, 0x5, 0x6, 0xfff, 0x6000, 0x11, 0xffffffffffffffff, 0x0, 0x800003, 0x1c00}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
chmod(&(0x7f0000000180)='./file0\x00', 0x23e)

3m37.066329685s ago: executing program 3 (id=931):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x240, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
exit(0xffff)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

3m35.993390286s ago: executing program 3 (id=939):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f00000000c0)={0x1d, r1}, 0x18)
connect$can_j1939(r0, &(0x7f0000000140)={0x1d, r1}, 0x18)
sendmmsg$inet(r0, &(0x7f0000003b80)=[{{0x0, 0x0, &(0x7f0000002940)=[{&(0x7f0000002640)="ef0ba606342672dabc", 0x9}], 0x1}}], 0x1, 0x20000010)
recvmmsg(r0, &(0x7f0000000180)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000200)=""/189}, {&(0x7f00000002c0)=""/182}, {&(0x7f0000000380)=""/4096}, {&(0x7f0000001380)=""/198}, {&(0x7f0000001480)=""/169}, {&(0x7f0000001540)=""/4096}], 0x10, &(0x7f0000002540)=""/216}}], 0x2, 0x0, 0x0)

3m34.17888833s ago: executing program 33 (id=939):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f00000000c0)={0x1d, r1}, 0x18)
connect$can_j1939(r0, &(0x7f0000000140)={0x1d, r1}, 0x18)
sendmmsg$inet(r0, &(0x7f0000003b80)=[{{0x0, 0x0, &(0x7f0000002940)=[{&(0x7f0000002640)="ef0ba606342672dabc", 0x9}], 0x1}}], 0x1, 0x20000010)
recvmmsg(r0, &(0x7f0000000180)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000200)=""/189}, {&(0x7f00000002c0)=""/182}, {&(0x7f0000000380)=""/4096}, {&(0x7f0000001380)=""/198}, {&(0x7f0000001480)=""/169}, {&(0x7f0000001540)=""/4096}], 0x10, &(0x7f0000002540)=""/216}}], 0x2, 0x0, 0x0)

5.318216952s ago: executing program 6 (id=1977):
r0 = fsopen(&(0x7f0000000000)='configfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x5)
fchdir(r1)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x101000, 0x108)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4)
getdents64(r2, &(0x7f0000000540)=""/37, 0x25)

4.750479732s ago: executing program 1 (id=1980):
r0 = syz_create_resource$binfmt(&(0x7f0000001400)='./file0\x00')
r1 = openat$binfmt(0xffffffffffffff9c, r0, 0x42, 0x1ff)
write$binfmt_elf64(r1, &(0x7f0000000180)={{0x7f, 0x45, 0x4c, 0x46, 0x82, 0x1, 0x5, 0x3, 0xfffffffffffffffc, 0x3, 0x3e, 0x5, 0x501, 0x40, 0x145, 0x0, 0x3e, 0x38, 0x1, 0x7, 0x25, 0x1}, [{0x3, 0x0, 0x9, 0x3ff, 0xfd, 0xb4, 0x9, 0x1}], "", ['\x00']}, 0x178)
close(r1)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x40000, 0x0)
fcntl$notify(r2, 0x402, 0x40000002)
execveat$binfmt(r2, r0, 0x0, 0x0, 0x1000)

4.642383303s ago: executing program 6 (id=1981):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0, <r2=>0x0, <r3=>0x0}, 0x2020)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0/file0\x00', 0x101801, 0x303)
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1, {0x7, 0x29, 0xfffffffe, 0x0, 0x0, 0x40, 0x2, 0x0, 0x0, 0x0, 0x10, 0x66}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000004280)="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", 0x2000, &(0x7f0000000d00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)={0x90, 0x0, 0x8, {0x1, 0xfffffffffffffffd, 0x2000, 0x1ffff, 0x6, 0x84, {0x6, 0x25, 0x7, 0x80000000, 0x4, 0xffff, 0x7d59, 0x5, 0x4, 0x4000, 0x7f, r2, r3, 0xcb, 0x6}}}, 0x0, 0x0, 0x0, 0x0, 0x0})

4.451386082s ago: executing program 2 (id=1982):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x181)
r0 = openat(0xffffffffffffff9c, &(0x7f00000013c0)='./file0/file0\x00', 0x42, 0x0)
r1 = socket$unix(0x1, 0x5, 0x0)
bind$unix(r1, &(0x7f0000000100)=@abs={0x1, 0x0, 0x4e20}, 0x6e)
listen(r1, 0x0)
ioctl$int_in(r1, 0x5452, &(0x7f0000000000)=0x9)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f00000002c0), 0x10044, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})

4.324471749s ago: executing program 1 (id=1983):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000740))
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)
ioctl$VHOST_SET_VRING_NUM(r0, 0x4008af10, &(0x7f0000000680)={0x1, 0x9})

3.86846021s ago: executing program 1 (id=1986):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r0, &(0x7f0000000340)={0x2, 0x4e24, @loopback}, 0x10)
r1 = io_uring_setup(0x5be0, &(0x7f0000000000)={0x0, 0x400067c1, 0x1000, 0x4000000, 0x1f1})
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)
recvmmsg(r0, &(0x7f0000000980)=[{{0x0, 0x0, &(0x7f0000001040)=[{&(0x7f00000005c0)=""/138, 0x8a}], 0x1}, 0xeb87}], 0x1, 0x10122, 0x0)

3.450086718s ago: executing program 1 (id=1987):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x441, 0x0)
ioctl$BTRFS_IOC_SCRUB(r0, 0xc400941b, &(0x7f0000000880)={0x0, 0x101, 0x9})
write$binfmt_aout(r0, &(0x7f00000002c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000100)={0x0, 0x0, 0xe64, 0x5, 0x10, "0062ba7d82000000000000000000f7ffffff00"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSTI(r2, 0x5412, &(0x7f00000001c0)=0x15)

3.288291033s ago: executing program 6 (id=1988):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000900)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a2c000000060a0b040000000000000000020000000900010073797a30000000000900020073797a320000000014000000110001"], 0x54}}, 0x8084)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000580)={{0x14}, [@NFT_MSG_DELRULE={0x2c, 0x6, 0xa, 0xe01, 0x0, 0x0, {0x2}, [@NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x5}}}, 0x54}, 0x1, 0x0, 0x0, 0x20040804}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETRULE(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)={0x14, 0x7, 0xa, 0x101, 0x0, 0x0, {0x2, 0x0, 0x8}}, 0x14}, 0x1, 0x0, 0x0, 0x4000}, 0x4000800)
recvmmsg(r1, &(0x7f00000085c0)=[{{0x0, 0x0, 0x0}, 0xfffffffa}], 0x1, 0x100, 0x0)

3.088821924s ago: executing program 2 (id=1990):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
listen(r0, 0x0)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
setsockopt$sock_linger(r1, 0x1, 0xd, &(0x7f0000000180)={0x1}, 0x8)
close(r1)

2.932366721s ago: executing program 1 (id=1991):
r0 = syz_usb_connect$hid(0x5, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x46d, 0xc294, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0xb1, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0x8, 0x0, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x3ff, 0x4, 0x4}}}}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000640)={0x2c, &(0x7f0000000280)={0x40, 0x24, 0x6, {0x6, 0x8, "e03efcd8"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_connect(0x0, 0x36, &(0x7f0000000100)=ANY=[], 0x0)
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_SET_PIT2(0xffffffffffffffff, 0x4070aea0, 0x0)
ioperm(0x868, 0x7, 0x4)

2.733897951s ago: executing program 4 (id=1993):
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
statx(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x100, 0x800, 0x0)
read$FUSE(r0, &(0x7f00000083c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000002300)="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", 0x2000, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)={0x130, 0x0, 0x100000000403, {0x1, 0x9, 0x0, '\x00', {0x7ff, 0xa2a, 0xd2f, 0x8000, 0x0, 0x0, 0x8000, '\x00', 0x0, 0x5, 0xb4e7, 0x7, {0x8007, 0x8}, {0xa, 0x10001}, {0x26, 0x7}, {0x400014, 0x9}, 0x0, 0x800b, 0x6, 0x2}}}})
write$FUSE_INIT(r0, &(0x7f0000001200)={0x50, 0x0, r1, {0x7, 0x2b, 0x0, 0x50054091, 0x2, 0x3, 0x1000}}, 0x50)

2.560854954s ago: executing program 2 (id=1994):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
r1 = syz_io_uring_setup(0x1714, &(0x7f0000000300)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000080)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r1, 0x16, &(0x7f0000000380)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x4}, 0x1)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_RECVMSG={0xa, 0x20, 0x0, r0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x0, 0x120, 0x1})
syz_usb_connect(0x6, 0x24, &(0x7f0000001000)=ANY=[@ANYBLOB="120100030a242bff800410d0e50c01"], 0x0)
ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000040)={0x320, 0xa0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x10, 0x8}, {}, {}, {}, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9})
io_uring_enter(r1, 0x27e2, 0x0, 0x22, 0x0, 0x0)

2.427111073s ago: executing program 5 (id=1995):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x4, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000008850000007600000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x80)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000300)=ANY=[], 0x70}}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000480)={&(0x7f00000004c0)=@newtaction={0x64, 0x30, 0xffffffffffffffff, 0x0, 0x40002, {}, [{0x50, 0x1, [@m_bpf={0x4c, 0x1, 0x0, 0x0, {{0x8}, {0x24, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_PARMS={0x18, 0x2, {0x1}}, @TCA_ACT_BPF_FD={0x8, 0x5, r1}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000640)=@newtfilter={0x24, 0x2c, 0x4, 0x70bd2b, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0xffff, 0x1}, {0x3, 0x4}, {0x1}}}, 0x24}}, 0x40c4)
r2 = socket(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f0000000000), 0x4000000000001f2, 0x0)

2.340337582s ago: executing program 4 (id=1996):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000400)=0x8)
syz_mount_image$squashfs(&(0x7f0000000180), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000b80)=ANY=[@ANYRES16=0x0, @ANYRESDEC, @ANYRESHEX, @ANYRESDEC, @ANYRES8=0x0, @ANYRES64, @ANYBLOB="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", @ANYRESOCT=0x0, @ANYRES32=0x0], 0x1, 0x1e9, &(0x7f0000000980)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x11, 0x10012, r0, 0x654b3000)
openat(0xffffffffffffff9c, &(0x7f0000000140)='.\x00', 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)

2.337091854s ago: executing program 6 (id=1997):
r0 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x78, 0x24, 0xf0b, 0x70bd2a, 0x2001, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0x5, 0xd}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0xff, 0xec2, 0x5, 0x2, 0x400}, 0x10000, 0x1, 0x7ff, 0x6, 0xe, 0x14, 0x1f, 0x1b, 0x6, 0x2, {0x6, 0x19d, 0xa9, 0x8, 0x7743, 0xfd1}}}}]}, 0x78}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd2d, 0x25dfdbfc, {0x0, 0x0, 0x0, r1, {0xe}, {}, {0x8, 0x1}}, [@filter_kind_options=@f_flower={{0xb}, {0x14, 0x2, [@TCA_FLOWER_KEY_CT_MARK={0x8}, @TCA_FLOWER_KEY_CT_MARK_MASK={0x64, 0x60, 0x2}]}}]}, 0x44}}, 0x4000)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

2.104234632s ago: executing program 4 (id=1998):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x10, 0x803, 0x0)
r2 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0x9}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x4, 0xc00}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)=@newtfilter={0x78, 0x2c, 0xd27, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, r3, {0xc, 0xfff1}, {}, {0x5, 0xf}}, [@filter_kind_options=@f_flow={{0x9}, {0x48, 0x2, [@TCA_FLOW_EMATCHES={0x44, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xfffb}}, @TCA_EMATCH_TREE_LIST={0x38, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x34, 0x1, 0x0, 0x0, {{0x7, 0x7, 0x2}, {{0x0, 0x1, 0x0, 0x1}, {0x0, 0x1, 0x1, 0x1}}}}, @TCF_EM_META={0x20, 0x2, 0x0, 0x0, {{0xfffb, 0x4, 0x2}, [@TCA_EM_META_HDR={0xc, 0x1, {{0x5, 0xe, 0x2}, {0x0, 0x7, 0x2}}}, @TCA_EM_META_LVALUE={0x8, 0x2, [@TCF_META_TYPE_INT]}]}}]}]}]}}]}, 0x78}}, 0x20040054)

2.042854973s ago: executing program 5 (id=1999):
socket$inet6(0xa, 0x2, 0x0)
r0 = syz_io_uring_setup(0x74d, &(0x7f0000000100)={0x0, 0x59c4, 0x8, 0xffd, 0x5cc}, &(0x7f0000000300)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0xc, 0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x81800, 0x1})
io_uring_enter(r0, 0x749f, 0x4, 0x0, 0x0, 0xfffffffffffffef5)

1.810192022s ago: executing program 6 (id=2000):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000002c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x1c, 0x20, 0x9, 0x2, 0x25dfdbff, {0x2}, [@typed={0x8, 0x8, 0x0, 0x0, @fd=r2}]}, 0x1c}}, 0xc004)

1.679391942s ago: executing program 2 (id=2001):
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
add_key(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb)
ptrace(0x10, r0)
ptrace$poke(0x1, r0, 0x0, 0x80000006)
r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_SET_SREGS(r1, 0x4138ae84, 0x0)
ptrace$pokeuser(0x6, r0, 0x9, 0x2)

1.51904137s ago: executing program 5 (id=2002):
r0 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x1}, 0x10)
r1 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000240)={0x42, 0x1}, 0x10)
setsockopt$TIPC_DEST_DROPPABLE(r1, 0x10f, 0x81, &(0x7f0000000040), 0x4)
sendmsg$tipc(r1, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4010}, 0x8820)
close(r0)

1.285240229s ago: executing program 4 (id=2003):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x4010)
socket$packet(0x11, 0x3, 0x300)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413ec50000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r1}, 0x10)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x200004c0, 0x0, 0xfffffff8, 0x200000}, 0x10)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="2c0000001a00010029bd70000000000002200000000000000020000008001900ac1414bb05001a"], 0x2c}}, 0x0)

1.15192955s ago: executing program 5 (id=2004):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x48, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1, 0x0, 0x9}, [@NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8}]}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_TYPE={0x8, 0x7, 'nat\x00'}]}], {0x14}}, 0x90}}, 0x4000040)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f0000000040)={0x84, @dev={0xac, 0x14, 0x14, 0x18}, 0x15, 0x3, 'none\x00', 0x19, 0x4, 0x10072}, 0x2c)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADDDEST(r2, 0x0, 0x487, &(0x7f0000000140)={{0x84, @initdev={0xac, 0x1e, 0x4, 0x0}, 0x4e21, 0x3, 'lc\x00', 0x2, 0x7, 0x37}, {@remote, 0x4e23, 0x10000, 0xc3, 0x12d5c, 0x12d58}}, 0x44)
syz_emit_ethernet(0xbe, &(0x7f0000000100)={@local, @broadcast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @dev, @local}, {0x0, 0x0, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "f4cb985d86dd6266b5efb88aaa87eda081bac8b2f9a49d564054f1c9218f47b3", "cf8743eb4d9e776f94a6a58d36e006ac614f6f7bce9217cbfea31675d4a860cf6003977b1e4dbb16dc31cc76522bf19d", "5043edd2a8cc8c41345f8feb1a7a8e23043b8a465b1ed5bf8bc91307", {"c7193f7edd1efc4742dc481e6f57f901", "948177bcc5dea4029ba4683a6bdcd7a1"}}}}}}}, 0x0)

1.098047182s ago: executing program 6 (id=2005):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r1, 0x3554000)
mq_open(&(0x7f0000000100)='${$\x00', 0x40, 0x0, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00304, 0x15)
ioctl$IOMMU_IOAS_ALLOC(r1, 0x3b81, &(0x7f0000000000)={0xc})
fadvise64(r0, 0x18, 0x0, 0x4)

1.046578428s ago: executing program 2 (id=2006):
r0 = io_uring_setup(0x7, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x231})
timerfd_settime(0xffffffffffffffff, 0x0, &(0x7f0000000040)={{0x77359400}, {0x0, 0x989680}}, 0x0)
r1 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
bind$bt_hci(r1, &(0x7f0000000000)={0x27}, 0x74)
sendmmsg$unix(r1, &(0x7f0000000b00)=[{{&(0x7f00000000c0)=@file={0x0, './file0\x00'}, 0x6e, 0x0}}, {{&(0x7f0000000e80)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000740)=[{&(0x7f0000001dc0)="bb", 0xfdef}, {0x0}], 0x2}}, {{&(0x7f0000000580)=@file={0x0, './file0/file0\x00'}, 0x6e, &(0x7f00000006c0)=[{&(0x7f0000000600)='z', 0xfdef}], 0x1}}], 0x3, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000400)={'syz1\x00', {0x3, 0x2, 0x6, 0xfffa}, 0x12, [0x8000, 0x7, 0xf, 0x8, 0x7fffffff, 0x2, 0x27, 0x4, 0x20000006, 0x4d, 0x6, 0x5f, 0x9, 0x5, 0xffff2d37, 0xffffff01, 0x7, 0x362, 0x0, 0x5, 0x24, 0x1, 0x7, 0x3c4b, 0x1, 0xfffffffd, 0xf, 0x1, 0x5, 0xffffffff, 0x7ffe, 0x1, 0x7, 0x89d2, 0x8, 0x4c74, 0x80000000, 0x9, 0x3, 0xe, 0x0, 0x80008071, 0x7, 0x13, 0xd, 0x407, 0x5, 0x3e, 0x8f, 0x10779111, 0x6, 0x80000000, 0x0, 0x1, 0x2, 0x400, 0x80, 0x0, 0x4, 0x7, 0x7, 0x3, 0xfffffffe, 0x40], [0x10000007, 0xf0000000, 0x8000012f, 0x8004, 0x3, 0x6, 0x129432a6, 0xc8, 0xf9, 0x6, 0x2bf, 0x6c7, 0x9, 0xfffffffc, 0x3, 0x0, 0x0, 0x5, 0x2f, 0x10, 0x312, 0x8000000d, 0xea4, 0xffffffff, 0x3, 0x40000007, 0x7fff, 0x10000, 0x200420, 0x405, 0x7fff, 0xa87b, 0x10000ff, 0xfffffff8, 0x1000005, 0x5f31, 0xd, 0x4dd, 0xc, 0x4, 0xb, 0x4, 0xfffffff7, 0x108, 0x9, 0x9, 0x47, 0x8000, 0x1, 0xfe000000, 0xffff, 0x0, 0x7, 0x9, 0x5, 0x3, 0x8, 0x1fb, 0x3, 0x6c0, 0xbc45, 0x48c93690, 0x3, 0x1], [0x7, 0x408, 0x8004, 0x4, 0x0, 0x100, 0x8d2, 0x9, 0x11, 0x7fff, 0x3, 0x5, 0xb, 0x4, 0x9, 0x10025, 0x0, 0x1ef, 0x5, 0x8, 0x10000, 0x3, 0x5, 0x3e7, 0xb, 0x5, 0x2, 0xbca, 0x10, 0x2, 0x1, 0x6d01, 0x6, 0x81, 0x800003, 0x200, 0x7e, 0x6, 0x4, 0x2950bfaf, 0xffe, 0x3, 0x7, 0xa9, 0x6, 0x80000000, 0xac8, 0x2000bf, 0x2, 0x3, 0x7ff, 0x12b, 0x20000004, 0x1, 0xfffffff8, 0x0, 0x5, 0x1c, 0x120000, 0x3, 0x2004, 0x80a2ed, 0x0, 0x25], [0x1, 0xbb33, 0x7, 0xa, 0x5, 0x938, 0x59, 0x6, 0x2, 0xb9, 0xce7, 0x9, 0x2, 0x57, 0x5, 0x8, 0x104, 0x410000, 0x3, 0x7fff, 0xffff, 0x78, 0x2, 0x5, 0xf, 0x4, 0x5, 0xe7, 0x6, 0x16, 0xfffffffe, 0x4, 0x1000007, 0x4, 0xc8, 0x9, 0xfffff000, 0x10008, 0x3, 0x800007e, 0xfd, 0x0, 0x7, 0xaf, 0xa, 0x1006, 0xfffffff7, 0x1000005, 0x5, 0x8, 0x30b1d693, 0x2, 0xf44, 0x7, 0x1, 0x6c1b, 0x7fff, 0x4, 0x5, 0xb1e, 0xd7, 0x200, 0xffff343d, 0xfff]}, 0x45c)

917.184292ms ago: executing program 4 (id=2007):
openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000800007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000580)={&(0x7f0000000540)='fib6_table_lookup\x00', r1}, 0x10)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_inet6_SIOCADDRT(r2, 0x890b, &(0x7f0000000440)={@private0={0xfc, 0x0, '\x00', 0x1}, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x80000000, 0x18, 0x0, 0x0, 0x8, 0x20c300e2})

600.556907ms ago: executing program 5 (id=2008):
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x140, 0x82)
prlimit64(0x0, 0x7, &(0x7f00000003c0)={0x7, 0x10003}, 0x0)
r1 = fanotify_init(0x81, 0x40000)
fanotify_mark(r1, 0x105, 0x40001032, r0, 0x0)
openat$binder_debug(0xffffffffffffff9c, &(0x7f0000002780)='/sys/kernel/debug/binder/transactions\x00', 0x0, 0x0)
read$FUSE(r1, &(0x7f0000002300)={0x2020}, 0x2020)
open(&(0x7f0000000140)='./bus\x00', 0x143bc2, 0x1c0)

582.787718ms ago: executing program 1 (id=2009):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000003c0)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='contention_end\x00', r0}, 0x10)
r1 = syz_open_dev$ndb(&(0x7f00000001c0), 0x0, 0x20002)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff})
ioctl$NBD_SET_SOCK(r1, 0xab00, r2)
ioctl$NBD_DO_IT(r1, 0xab03)
ioctl$NBD_CLEAR_SOCK(r1, 0xab04)

386.533469ms ago: executing program 4 (id=2010):
r0 = epoll_create1(0x0)
r1 = syz_io_uring_setup(0x239, &(0x7f0000000340)={0x0, 0x0, 0x10100}, &(0x7f00000002c0)=<r2=>0x0, &(0x7f0000000000)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r1, 0x2def, 0x0, 0x0, 0x0, 0x0)
r4 = eventfd2(0x3, 0x1)
epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r4, &(0x7f0000000b80)={0x60000012})
epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r4, &(0x7f0000000080)={0x20002003})

267.234964ms ago: executing program 2 (id=2011):
sendmmsg$unix(0xffffffffffffffff, &(0x7f000000a7c0)=[{{0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000300)="8f2ad86b70c27d", 0x7}], 0x1, 0x0, 0x0, 0x20040054}}], 0x1, 0x20010)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup(r0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
write$tun(r2, &(0x7f00000002c0)=ANY=[@ANYBLOB="080086dd0001110004000000a60c6eec00be00442ffffe8000000000000000000000000000aaff020000000000000000000000000001042022eb"], 0xfdef)

0s ago: executing program 5 (id=2012):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x1817c1, 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(r1, 0x402, 0x91ea6c1af182532)
r2 = getpgid(0x0)
fcntl$setownex(r1, 0xf, &(0x7f0000000000)={0x2, r2})
syz_clone(0x2000, 0x0, 0x0, 0x0, 0x0, 0x0)
pwritev2(r0, &(0x7f0000022e80)=[{&(0x7f0000000240)="8a", 0x1}], 0x2b8, 0x0, 0x8000, 0x0)

kernel console output (not intermixed with test programs):

FS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  382.899774][ T5849] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  383.097467][ T5849] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  383.108424][ T5849] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  383.162524][ T5849] usb 4-1: config 0 descriptor??
[  383.214107][ T5849] cp210x 4-1:0.0: cp210x converter detected
[  383.221945][ T8649] loop2: detected capacity change from 0 to 64
[  383.586055][ T5849] cp210x 4-1:0.0: failed to get vendor val 0x000e size 3: -32
[  383.902577][ T5849] usb 4-1: cp210x converter now attached to ttyUSB0
[  384.043107][ T5849] usb 4-1: USB disconnect, device number 12
[  384.148692][ T5849] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  384.253185][ T5849] cp210x 4-1:0.0: device disconnected
[  385.082770][ T8674] bridge0: entered promiscuous mode
[  385.088617][ T8674] macvtap1: entered allmulticast mode
[  385.094865][ T8674] bridge0: entered allmulticast mode
[  385.108051][ T8674] bridge0: port 3(macvtap1) entered blocking state
[  385.115216][ T8674] bridge0: port 3(macvtap1) entered disabled state
[  385.153106][ T8674] bridge0: left allmulticast mode
[  385.165934][ T8674] bridge0: left promiscuous mode
[  385.283776][ T8679] blktrace: Concurrent blktraces are not allowed on loop4
[  385.761876][ T8687] loop1: detected capacity change from 0 to 128
[  385.787133][ T8687] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  386.027484][ T8687] loop1: detected capacity change from 128 to 0
[  386.041968][    C1] I/O error, dev loop1, sector 64 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  386.053427][    C0] I/O error, dev loop1, sector 115 op 0x1:(WRITE) flags 0x800 phys_seg 1 prio class 2
[  386.063606][    C0] Buffer I/O error on dev loop1, logical block 115, lost sync page write
[  386.081845][ T8692] UDF-fs: warning (device loop1): udf_update_inode: IO error syncing udf inode [00000073]
[  386.146664][ T8692] Buffer I/O error on dev loop1, logical block 115, lost sync page write
[  386.155457][ T8692] UDF-fs: warning (device loop1): udf_update_inode: IO error syncing udf inode [00000073]
[  386.248511][ T8692] Buffer I/O error on dev loop1, logical block 115, lost sync page write
[  386.257476][ T8692] UDF-fs: warning (device loop1): udf_update_inode: IO error syncing udf inode [00000073]
[  386.347743][ T8692] Buffer I/O error on dev loop1, logical block 115, lost sync page write
[  386.357145][ T8692] UDF-fs: warning (device loop1): udf_update_inode: IO error syncing udf inode [00000073]
[  386.368077][ T8692] Buffer I/O error on dev loop1, logical block 115, lost sync page write
[  386.376852][ T8692] UDF-fs: warning (device loop1): udf_update_inode: IO error syncing udf inode [00000073]
[  386.387876][ T8692] Buffer I/O error on dev loop1, logical block 115, lost sync page write
[  386.396886][ T8692] UDF-fs: warning (device loop1): udf_update_inode: IO error syncing udf inode [00000073]
[  386.407632][ T8692] Buffer I/O error on dev loop1, logical block 115, lost sync page write
[  386.416523][ T8692] UDF-fs: warning (device loop1): udf_update_inode: IO error syncing udf inode [00000073]
[  386.427319][ T8692] UDF-fs: error (device loop1): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40)
[  387.128462][   T42] kernel read not supported for file /admmidi2 (pid: 42 comm: kworker/1:1)
[  387.302398][ T8702] loop3: detected capacity change from 0 to 40427
[  387.323164][ T8702] F2FS-fs (loop3): build fault injection rate: 14
[  387.329926][ T8702] F2FS-fs (loop3): build fault injection type: 0x3bfe8c
[  387.433102][ T8702] F2FS-fs (loop3): invalid crc value
[  387.504945][    C1] F2FS-fs (loop3): inject read IO error in f2fs_read_end_io of bio_endio+0xeb4/0x1010
[  387.552255][    C1] F2FS-fs (loop3): inject read IO error in f2fs_read_end_io of bio_endio+0xeb4/0x1010
[  387.780219][ T8702] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  387.789388][ T8702] F2FS-fs (loop3): inject page alloc in f2fs_grab_cache_folio of f2fs_get_tmp_folio+0x38/0x50
[  387.814344][ T8702] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  387.858620][ T8702] F2FS-fs (loop3): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x831/0x19b0
[  387.883917][ T8702] F2FS-fs (loop3): inject page alloc in f2fs_grab_cache_folio of f2fs_get_read_data_folio+0x90/0x1270
[  387.957573][ T5792] syz-executor: attempt to access beyond end of device
[  387.957573][ T5792] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  387.972367][ T5792] CPU: 0 UID: 0 PID: 5792 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(none) 
[  387.972500][ T5792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  387.972575][ T5792] Call Trace:
[  387.972622][ T5792]  <TASK>
[  387.972666][ T5792]  __dump_stack+0x26/0x30
[  387.972818][ T5792]  dump_stack_lvl+0x1df/0x270
[  387.972977][ T5792]  dump_stack+0x1e/0x25
[  387.973107][ T5792]  f2fs_handle_critical_error+0xa6f/0xc20
[  387.973272][ T5792]  f2fs_stop_checkpoint+0x65/0x80
[  387.973404][ T5792]  f2fs_write_end_io+0x101c/0x1bc0
[  387.973577][ T5792]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  387.973704][ T5792]  bio_endio+0xeb4/0x1010
[  387.973849][ T5792]  submit_bio_noacct+0x2009/0x2930
[  387.974037][ T5792]  submit_bio+0x57c/0x630
[  387.974181][ T5792]  f2fs_submit_write_bio+0x92/0x250
[  387.974359][ T5792]  __submit_merged_bio+0x16f/0x6a0
[  387.974545][ T5792]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  387.974710][ T5792]  __submit_merged_write_cond+0x458/0x9a0
[  387.974910][ T5792]  f2fs_write_data_pages+0x4bb2/0x5480
[  387.975168][ T5792]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  387.975323][ T5792]  ? folios_put_refs+0x51/0xb10
[  387.975475][ T5792]  ? filter_irq_stacks+0x49/0x190
[  387.975610][ T5792]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  387.975766][ T5792]  ? stack_depot_save_flags+0x35/0x7b0
[  387.975899][ T5792]  ? kmsan_get_metadata+0xfb/0x160
[  387.976055][ T5792]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[  387.976198][ T5792]  ? kmsan_get_metadata+0xfb/0x160
[  387.976341][ T5792]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  387.976487][ T5792]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  387.976618][ T5792]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  387.976748][ T5792]  do_writepages+0x3f2/0x860
[  387.976925][ T5792]  ? _raw_spin_unlock+0x30/0x50
[  387.977071][ T5792]  ? wbc_attach_and_unlock_inode+0x131/0x680
[  387.977266][ T5792]  filemap_fdatawrite+0x207/0x260
[  387.977468][ T5792]  f2fs_sync_dirty_inodes+0x2ab/0x9e0
[  387.977637][ T5792]  f2fs_write_checkpoint+0xfe2/0x2b00
[  387.977935][ T5792]  kill_f2fs_super+0x2ff/0x970
[  387.978101][ T5792]  ? __pfx_kill_f2fs_super+0x10/0x10
[  387.978255][ T5792]  deactivate_locked_super+0xcb/0x3c0
[  387.978404][ T5792]  deactivate_super+0x12f/0x140
[  387.978536][ T5792]  cleanup_mnt+0x6fb/0x780
[  387.978690][ T5792]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[  387.978845][ T5792]  ? __pfx___cleanup_mnt+0x10/0x10
[  387.979005][ T5792]  __cleanup_mnt+0x22/0x30
[  387.979158][ T5792]  task_work_run+0x206/0x2b0
[  387.979310][ T5792]  exit_to_user_mode_loop+0x2d1/0x370
[  387.979466][ T5792]  do_syscall_64+0x1e3/0x210
[  387.979588][ T5792]  ? irqentry_exit+0x16/0x60
[  387.979739][ T5792]  ? clear_bhb_loop+0x40/0x90
[  387.979881][ T5792]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  387.980009][ T5792] RIP: 0033:0x7fe2fcd901f7
[  387.980104][ T5792] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  387.980208][ T5792] RSP: 002b:00007ffda52f89e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  387.980330][ T5792] RAX: 0000000000000000 RBX: 00007fe2fce11d7d RCX: 00007fe2fcd901f7
[  387.980414][ T5792] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffda52f8aa0
[  387.980494][ T5792] RBP: 00007ffda52f8aa0 R08: 0000000000000000 R09: 0000000000000000
[  387.980575][ T5792] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffda52f9b30
[  387.980661][ T5792] R13: 00007fe2fce11d7d R14: 000000000005eb24 R15: 00007ffda52f9b70
[  387.980776][ T5792]  </TASK>
[  388.323650][ T5792] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  390.037317][ T8749] overlayfs: failed to clone upperpath
[  391.779450][ T8778] loop3: detected capacity change from 0 to 256
[  391.803459][ T8778] exfat: Deprecated parameter 'namecase'
[  392.001988][ T8778] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  392.051769][ T8780] input: syz0 as /devices/virtual/input/input7
[  392.502343][ T8785] loop2: detected capacity change from 0 to 64
[  392.568628][ T8785] BFS-fs: bfs_fill_super(): loop2 is unclean, continuing
[  393.082011][   T30] audit: type=1326 audit(1759473187.765:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8794 comm="syz.5.935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc45df8eec9 code=0x7ffc0000
[  393.104700][   T30] audit: type=1326 audit(1759473187.765:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8794 comm="syz.5.935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc45df8eec9 code=0x7ffc0000
[  393.127536][   T30] audit: type=1326 audit(1759473187.805:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8794 comm="syz.5.935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fc45df8eec9 code=0x7ffc0000
[  393.131883][ T8797] netlink: 20 bytes leftover after parsing attributes in process `syz.2.934'.
[  393.154058][   T30] audit: type=1326 audit(1759473187.805:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8794 comm="syz.5.935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc45df8eec9 code=0x7ffc0000
[  393.182579][   T30] audit: type=1326 audit(1759473187.855:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8794 comm="syz.5.935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7fc45df8eec9 code=0x7ffc0000
[  393.205497][   T30] audit: type=1326 audit(1759473187.855:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8794 comm="syz.5.935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc45df8eec9 code=0x7ffc0000
[  393.228035][   T30] audit: type=1326 audit(1759473187.855:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8794 comm="syz.5.935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7fc45df8eec9 code=0x7ffc0000
[  393.254311][   T30] audit: type=1326 audit(1759473187.855:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8794 comm="syz.5.935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc45df8eec9 code=0x7ffc0000
[  393.278464][   T30] audit: type=1326 audit(1759473187.865:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8794 comm="syz.5.935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=428 compat=0 ip=0x7fc45df8eec9 code=0x7ffc0000
[  393.301158][   T30] audit: type=1326 audit(1759473187.865:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8794 comm="syz.5.935" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc45df8eec9 code=0x7ffc0000
[  393.344755][ T8801] netlink: 20 bytes leftover after parsing attributes in process `syz.2.934'.
[  393.477329][ T4600] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  393.693920][ T4600] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  393.863494][ T4600] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  394.037277][ T4600] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  395.018009][ T4600] bond1 (unregistering): (slave geneve2): Releasing active interface
[  395.147103][ T4600] bond0 (unregistering): Released all slaves
[  395.168378][ T4600] bond1 (unregistering): Released all slaves
[  395.510920][ T5790] Bluetooth: hci5: command 0x0406 tx timeout
[  395.909565][ T4600] hsr_slave_0: left promiscuous mode
[  395.975856][ T4600] hsr_slave_1: left promiscuous mode
[  396.058531][ T8822] loop5: detected capacity change from 0 to 2048
[  396.101229][ T4600] veth1_macvtap: left promiscuous mode
[  396.106963][ T4600] veth0_macvtap: left promiscuous mode
[  396.114589][ T4600] veth1_vlan: left allmulticast mode
[  396.120254][ T4600] veth1_vlan: left promiscuous mode
[  396.125761][ T4600] veth0_vlan: left promiscuous mode
[  396.302870][ T8822] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: writeback.
[  396.577444][ T8822] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  396.595619][   T42] usb 2-1: new full-speed USB device number 9 using dummy_hcd
[  396.704698][ T4600] team0 (unregistering): Port device macvlan0 removed
[  396.893905][   T42] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  396.908126][   T42] usb 2-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  396.917545][   T42] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  397.026127][ T7081] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  397.052867][   T42] usb 2-1: config 0 descriptor??
[  397.060702][ T8836] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  397.180496][ T5790] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  397.204613][ T5790] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  397.214468][ T5790] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  397.337791][ T5790] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  397.403219][ T5790] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  397.576685][ T8851] Bluetooth: MGMT ver 1.23
[  397.582010][ T8851] Bluetooth: hci0: invalid length 0, exp 2 for type 17
[  397.750345][ T8845] virt_wifi0 speed is unknown, defaulting to 1000
[  397.933949][   T42] elan 0003:04F3:0755.0004: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.1-1/input0
[  398.248219][ T4600] IPVS: stop unused estimator thread 0...
[  398.450125][   T42] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  398.635441][   T42] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  398.648820][   T42] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[  398.665401][ T1677] usb 2-1: USB disconnect, device number 9
[  398.677828][   T42] usb 6-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[  398.688235][   T42] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  398.697083][   T42] usb 6-1: Product: syz
[  398.701802][   T42] usb 6-1: Manufacturer: syz
[  398.706568][   T42] usb 6-1: SerialNumber: syz
[  398.744815][   T42] usb 6-1: config 0 descriptor??
[  398.753227][ T8860] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  398.767690][ T8860] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  399.070805][ T8871] Invalid ELF header magic: != ELF
[  399.117732][ T8860] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  399.170893][ T8860] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[  399.520559][ T5798] Bluetooth: hci0: command tx timeout
[  399.616012][ T8845] chnl_net:caif_netlink_parms(): no params data found
[  399.884583][ T1677] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[  400.051964][ T1677] usb 3-1: Using ep0 maxpacket: 8
[  400.097403][ T1677] usb 3-1: New USB device found, idVendor=0c45, idProduct=613e, bcdDevice=c4.6d
[  400.107296][ T1677] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  400.116003][ T1677] usb 3-1: Product: syz
[  400.120500][ T1677] usb 3-1: Manufacturer: syz
[  400.125258][ T1677] usb 3-1: SerialNumber: syz
[  400.203121][ T1677] usb 3-1: config 0 descriptor??
[  400.249204][ T1677] gspca_main: sonixj-2.14.0 probing 0c45:613e
[  400.372441][   T42] dm9601 6-1:0.0 (unnamed net_device) (uninitialized): MDIO read error: -71
[  400.396541][   T42] dm9601 6-1:0.0 eth9: register 'dm9601' at usb-dummy_hcd.5-1, Davicom DM96xx USB 10/100 Ethernet, 6e:f1:98:9e:dd:08
[  400.558811][   T42] usb 6-1: USB disconnect, device number 3
[  400.567285][   T42] dm9601 6-1:0.0 eth9: unregister 'dm9601' usb-dummy_hcd.5-1, Davicom DM96xx USB 10/100 Ethernet
[  400.844297][ T8845] bridge0: port 1(bridge_slave_0) entered blocking state
[  400.852233][ T8845] bridge0: port 1(bridge_slave_0) entered disabled state
[  400.860376][ T8845] bridge_slave_0: entered allmulticast mode
[  400.871191][ T8845] bridge_slave_0: entered promiscuous mode
[  400.998523][ T8845] bridge0: port 2(bridge_slave_1) entered blocking state
[  401.006627][ T8845] bridge0: port 2(bridge_slave_1) entered disabled state
[  401.014461][ T8845] bridge_slave_1: entered allmulticast mode
[  401.023659][ T8845] bridge_slave_1: entered promiscuous mode
[  401.194715][ T8845] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  401.243555][ T8845] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  401.496133][ T1677] gspca_sonixj: reg_w1 err -71
[  401.535119][ T8845] team0: Port device team_slave_0 added
[  401.543314][ T1677] sonixj 3-1:0.0: probe with driver sonixj failed with error -71
[  401.587531][ T1677] usb 3-1: USB disconnect, device number 10
[  401.616195][ T5798] Bluetooth: hci0: command tx timeout
[  401.661769][ T8845] team0: Port device team_slave_1 added
[  401.966687][ T8845] batman_adv: batadv0: Adding interface: batadv_slave_0
[  401.974144][ T8845] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  402.000579][ T8845] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  402.987192][ T8845] batman_adv: batadv0: Adding interface: batadv_slave_1
[  402.994540][ T8845] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  403.021835][ T8845] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  403.661244][ T8845] hsr_slave_0: entered promiscuous mode
[  403.677011][ T8845] hsr_slave_1: entered promiscuous mode
[  403.686085][ T8845] debugfs: 'hsr0' already exists in 'hsr'
[  403.692176][ T8845] Cannot create hsr debugfs directory
[  403.703481][ T5798] Bluetooth: hci0: command tx timeout
[  404.064175][ T8923] netlink: 'syz.1.974': attribute type 39 has an invalid length.
[  404.088139][ T8923] bridge0: port 1(bridge_slave_0) entered disabled state
[  404.214278][ T8923] bridge_slave_0 (unregistering): left allmulticast mode
[  404.223282][ T8923] bridge_slave_0 (unregistering): left promiscuous mode
[  404.231235][ T8923] bridge0: port 1(bridge_slave_0) entered disabled state
[  404.473541][ T8931] loop5: detected capacity change from 0 to 1024
[  404.541409][ T8931] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  404.552962][ T8931] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  404.627701][ T8931] JBD2: no valid journal superblock found
[  404.635567][ T8931] EXT4-fs (loop5): Could not load journal inode
[  405.080648][ T5848] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  405.304335][ T8845] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  405.321588][ T5848] usb 6-1: Using ep0 maxpacket: 16
[  405.348877][ T5848] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  405.360496][ T5848] usb 6-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  405.370775][ T5848] usb 6-1: config 0 interface 0 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  405.385213][ T5848] usb 6-1: config 0 interface 0 has no altsetting 0
[  405.392383][ T5848] usb 6-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  405.401779][ T5848] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  405.421247][ T8845] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  405.431085][ T5848] usb 6-1: config 0 descriptor??
[  405.545434][ T8845] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  405.668149][ T8845] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  405.750626][ T5798] Bluetooth: hci0: command tx timeout
[  405.863291][ T5848] hid (null): bogus close delimiter
[  405.868976][ T5848] hid (null): unknown global tag 0x99
[  405.879154][ T5848] hid (null): global environment stack underflow
[  405.888480][ T5848] hid (null): unknown global tag 0xe
[  405.894529][ T5848] hid (null): global environment stack underflow
[  405.901412][ T5848] hid (null): report_id 0 is invalid
[  405.907006][ T5848] hid (null): report_id 0 is invalid
[  405.912900][ T5848] hid (null): unknown global tag 0xe
[  405.918484][ T5848] hid (null): unknown global tag 0xd
[  406.112319][ T5848] usb 6-1: USB disconnect, device number 4
[  407.216301][ T8845] 8021q: adding VLAN 0 to HW filter on device bond0
[  407.264049][ T8956] loop2: detected capacity change from 0 to 40427
[  407.342717][ T8956] F2FS-fs (loop2): build fault injection rate: 14
[  407.349350][ T8956] F2FS-fs (loop2): build fault injection type: 0x3bfe8c
[  407.367365][ T8956] F2FS-fs (loop2): invalid crc value
[  407.408155][    C1] F2FS-fs (loop2): inject read IO error in f2fs_read_end_io of bio_endio+0xeb4/0x1010
[  407.436456][    C1] F2FS-fs (loop2): inject read IO error in f2fs_read_end_io of bio_endio+0xeb4/0x1010
[  407.512498][ T8845] 8021q: adding VLAN 0 to HW filter on device team0
[  407.645401][ T4600] bridge0: port 1(bridge_slave_0) entered blocking state
[  407.652996][ T4600] bridge0: port 1(bridge_slave_0) entered forwarding state
[  407.685882][ T8956] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  407.695228][ T8956] F2FS-fs (loop2): inject page alloc in f2fs_grab_cache_folio of f2fs_get_tmp_folio+0x38/0x50
[  407.723198][ T8956] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  407.739208][ T8956] F2FS-fs (loop2): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x831/0x19b0
[  407.764407][ T8956] F2FS-fs (loop2): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_xattr_generic_get+0x199/0x1f0
[  407.780506][ T8956] F2FS-fs (loop2): inject inconsistent footer in sanity_check_node_footer of f2fs_get_dnode_of_data+0x129f/0x2fc0
[  407.792963][ T8956] F2FS-fs (loop2): inconsistent node block, node_type:0, nid:14, node_footer[nid:14,ino:10,ofs:3,cpver:0,blkaddr:0]
[  407.833340][ T4600] bridge0: port 2(bridge_slave_1) entered blocking state
[  407.840870][ T4600] bridge0: port 2(bridge_slave_1) entered forwarding state
[  407.929537][ T5797] syz-executor: attempt to access beyond end of device
[  407.929537][ T5797] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  407.944550][ T5797] CPU: 1 UID: 0 PID: 5797 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(none) 
[  407.944681][ T5797] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  407.944752][ T5797] Call Trace:
[  407.944795][ T5797]  <TASK>
[  407.944840][ T5797]  __dump_stack+0x26/0x30
[  407.944976][ T5797]  dump_stack_lvl+0x1df/0x270
[  407.945121][ T5797]  dump_stack+0x1e/0x25
[  407.945245][ T5797]  f2fs_handle_critical_error+0xa6f/0xc20
[  407.945398][ T5797]  f2fs_stop_checkpoint+0x65/0x80
[  407.945525][ T5797]  f2fs_write_end_io+0x101c/0x1bc0
[  407.945683][ T5797]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  407.945805][ T5797]  bio_endio+0xeb4/0x1010
[  407.945932][ T5797]  submit_bio_noacct+0x2009/0x2930
[  407.946105][ T5797]  submit_bio+0x57c/0x630
[  407.946238][ T5797]  f2fs_submit_write_bio+0x92/0x250
[  407.946399][ T5797]  __submit_merged_bio+0x16f/0x6a0
[  407.946561][ T5797]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  407.946711][ T5797]  __submit_merged_write_cond+0x458/0x9a0
[  407.946892][ T5797]  f2fs_write_data_pages+0x4bb2/0x5480
[  407.947130][ T5797]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  407.947274][ T5797]  ? folios_put_refs+0x51/0xb10
[  407.947414][ T5797]  ? filter_irq_stacks+0x49/0x190
[  407.947542][ T5797]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  407.947687][ T5797]  ? stack_depot_save_flags+0x35/0x7b0
[  407.947806][ T5797]  ? kmsan_get_metadata+0xfb/0x160
[  407.947950][ T5797]  ? kmsan_get_metadata+0xfb/0x160
[  407.948084][ T5797]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  407.948219][ T5797]  ? kmsan_get_metadata+0xfb/0x160
[  407.948352][ T5797]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  407.948495][ T5797]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  407.948616][ T5797]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  407.948737][ T5797]  do_writepages+0x3f2/0x860
[  407.948897][ T5797]  ? _raw_spin_unlock+0x30/0x50
[  407.949040][ T5797]  ? wbc_attach_and_unlock_inode+0x131/0x680
[  407.949217][ T5797]  filemap_fdatawrite+0x207/0x260
[  407.949404][ T5797]  f2fs_sync_dirty_inodes+0x2ab/0x9e0
[  407.949567][ T5797]  f2fs_write_checkpoint+0xfe2/0x2b00
[  407.949815][ T5797]  kill_f2fs_super+0x2ff/0x970
[  407.949964][ T5797]  ? __pfx_kill_f2fs_super+0x10/0x10
[  407.950096][ T5797]  deactivate_locked_super+0xcb/0x3c0
[  407.950239][ T5797]  deactivate_super+0x12f/0x140
[  407.950361][ T5797]  cleanup_mnt+0x6fb/0x780
[  407.950509][ T5797]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[  407.950654][ T5797]  ? __pfx___cleanup_mnt+0x10/0x10
[  407.950801][ T5797]  __cleanup_mnt+0x22/0x30
[  407.950945][ T5797]  task_work_run+0x206/0x2b0
[  407.951092][ T5797]  exit_to_user_mode_loop+0x2d1/0x370
[  407.951242][ T5797]  do_syscall_64+0x1e3/0x210
[  407.951356][ T5797]  ? irqentry_exit+0x16/0x60
[  407.951508][ T5797]  ? clear_bhb_loop+0x40/0x90
[  407.951634][ T5797]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  407.951755][ T5797] RIP: 0033:0x7f14339901f7
[  407.951845][ T5797] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  407.951947][ T5797] RSP: 002b:00007ffd6a6ca938 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  407.952060][ T5797] RAX: 0000000000000000 RBX: 00007f1433a11d7d RCX: 00007f14339901f7
[  407.952141][ T5797] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd6a6ca9f0
[  407.952216][ T5797] RBP: 00007ffd6a6ca9f0 R08: 0000000000000000 R09: 0000000000000000
[  407.952290][ T5797] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd6a6cba80
[  407.952368][ T5797] R13: 00007f1433a11d7d R14: 000000000006391f R15: 00007ffd6a6cbac0
[  407.952483][ T5797]  </TASK>
[  408.305433][ T5797] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  408.838967][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[  408.845736][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  410.272482][ T8845] 8021q: adding VLAN 0 to HW filter on device batadv0
[  410.738996][   T42] IPVS: starting estimator thread 0...
[  410.850390][ T9001] IPVS: using max 240 ests per chain, 12000 per kthread
[  411.387335][ T9016] loop5: detected capacity change from 0 to 512
[  412.405434][ T8845] veth0_vlan: entered promiscuous mode
[  412.466034][ T8845] veth1_vlan: entered promiscuous mode
[  412.736658][ T8845] veth0_macvtap: entered promiscuous mode
[  412.847192][ T8845] veth1_macvtap: entered promiscuous mode
[  413.046694][ T8845] batman_adv: batadv0: Interface activated: batadv_slave_0
[  413.080910][ T9050] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  413.080910][ T9050] The task syz.2.1010 (9050) triggered the difference, watch for misbehavior.
[  413.152113][ T8845] batman_adv: batadv0: Interface activated: batadv_slave_1
[  413.249109][ T3735] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  413.310146][ T3735] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  413.356089][ T3735] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  413.396796][ T3735] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  413.839348][ T9063] loop5: detected capacity change from 0 to 1024
[  414.080631][ T9063] EXT4-fs (loop5): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  414.093542][ T9063] ext4 filesystem being mounted at /112/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  414.197390][ T9063] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  414.279111][ T9074] Bluetooth: hci0: unsupported parameter 178
[  414.285547][ T9074] Bluetooth: hci0: invalid length 0, exp 2 for type 4
[  414.294897][ T9063] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  414.307846][ T9063] EXT4-fs (loop5): This should not happen!! Data will be lost
[  414.307846][ T9063] 
[  414.318725][ T9063] EXT4-fs (loop5): Total free blocks count 0
[  414.325028][ T9063] EXT4-fs (loop5): Free/Dirty block details
[  414.331437][ T9063] EXT4-fs (loop5): free_blocks=4293918720
[  414.337507][ T9063] EXT4-fs (loop5): dirty_blocks=16
[  414.347192][ T9063] EXT4-fs (loop5): Block reservation details
[  414.354815][ T9063] EXT4-fs (loop5): i_reserved_data_blocks=1
[  414.779559][ T3656] EXT4-fs error (device loop5): ext4_map_blocks:814: inode #15: comm kworker/u8:11: lblock 32 mapped to illegal pblock 0 (length 1)
[  414.881535][ T3656] EXT4-fs (loop5): Delayed block allocation failed for inode 15 at logical offset 32 with max blocks 1 with error 117
[  415.485930][ T9091] loop5: detected capacity change from 0 to 1024
[  415.593166][ T9091] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  415.945700][ T7081] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  416.619229][ T9115] netlink: 'syz.4.1028': attribute type 5 has an invalid length.
[  417.100573][ T9121] loop5: detected capacity change from 0 to 2048
[  417.205065][ T9121] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  418.864314][ T3656] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  418.872770][ T3656] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  419.129107][ T9158] hsr1: left promiscuous mode
[  419.168325][ T4271] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  419.176557][ T4271] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  420.606775][ T9191] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  422.140192][ T5846] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  422.372615][ T5846] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  422.450007][ T5846] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  422.459454][ T5846] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  422.467853][ T5846] usb 6-1: Product: syz
[  422.472815][ T5846] usb 6-1: Manufacturer: syz
[  422.477589][ T5846] usb 6-1: SerialNumber: syz
[  423.361044][ T9247] loop2: detected capacity change from 0 to 7
[  423.380075][ T9247] Dev loop2: unable to read RDB block 7
[  423.385989][ T9247]  loop2: AHDI p1 p2 p3
[  423.390946][ T9247] loop2: partition table partially beyond EOD, truncated
[  423.399082][ T9247] loop2: p1 start 1601398130 is beyond EOD, truncated
[  423.406337][ T9247] loop2: p2 start 1702059890 is beyond EOD, truncated
[  423.415529][ T5846] cdc_ncm 6-1:1.0: SET_CRC_MODE failed
[  423.461277][ T5846] cdc_ncm 6-1:1.0: bind() failure
[  423.502227][ T5846] cdc_ncm 6-1:1.1: CDC Union missing and no IAD found
[  423.509296][ T5846] cdc_ncm 6-1:1.1: bind() failure
[  423.651770][ T5846] usb 6-1: USB disconnect, device number 5
[  424.941874][ T9264] loop2: detected capacity change from 0 to 4096
[  424.950956][ T9264] EXT4-fs: Ignoring removed mblk_io_submit option
[  425.004865][ T9264] EXT4-fs (loop2): Test dummy encryption mode enabled
[  425.101827][ T9264] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  425.434158][ T5797] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  429.730180][ T5849] usb 6-1: new high-speed USB device number 6 using dummy_hcd
[  430.043148][ T5849] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  430.055291][ T5849] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  430.067145][ T5849] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  430.080920][ T5849] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  430.090430][ T5849] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  430.307240][ T5849] usb 6-1: config 0 descriptor??
[  430.334043][ T9367] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1125'.
[  430.752823][ T5849] plantronics 0003:047F:FFFF.0006: reserved main item tag 0xe
[  430.760759][ T5849] plantronics 0003:047F:FFFF.0006: unknown main item tag 0x0
[  430.841911][ T5849] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.5-1/input0
[  431.030098][ T5849] usb 6-1: USB disconnect, device number 6
[  431.310883][ T9377] fido_id[9377]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.5/usb6/report_descriptor': No such file or directory
[  432.061048][ T5846] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[  432.281439][ T5846] usb 3-1: too many configurations: 234, using maximum allowed: 8
[  432.334179][ T5846] usb 3-1: config index 0 descriptor too short (expected 65470, got 45)
[  432.394309][ T5846] usb 3-1: config index 1 descriptor too short (expected 65470, got 45)
[  432.415125][ T5846] usb 3-1: config index 2 descriptor too short (expected 65470, got 45)
[  432.453953][ T5849] usb 6-1: new high-speed USB device number 7 using dummy_hcd
[  432.475536][ T5846] usb 3-1: config index 3 descriptor too short (expected 65470, got 45)
[  432.512377][ T5846] usb 3-1: config index 4 descriptor too short (expected 65470, got 45)
[  432.525391][ T5846] usb 3-1: config index 5 descriptor too short (expected 65470, got 45)
[  432.577542][ T5846] usb 3-1: config index 6 descriptor too short (expected 65470, got 45)
[  432.617705][ T5846] usb 3-1: config index 7 descriptor too short (expected 65470, got 45)
[  432.648863][ T5846] usb 3-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[  432.658604][ T5846] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  432.667002][ T5846] usb 3-1: Product: syz
[  432.671263][ T5849] usb 6-1: New USB device found, idVendor=055f, idProduct=c230, bcdDevice=b6.ac
[  432.671397][ T5849] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  432.671510][ T5849] usb 6-1: Product: syz
[  432.671601][ T5849] usb 6-1: Manufacturer: syz
[  432.671692][ T5849] usb 6-1: SerialNumber: syz
[  432.687041][ T5849] usb 6-1: config 0 descriptor??
[  432.694277][ T5846] usb 3-1: Manufacturer: syz
[  432.694377][ T5846] usb 3-1: SerialNumber: syz
[  432.758518][ T5849] gspca_main: sunplus-2.14.0 probing 055f:c230
[  432.824098][ T9404] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1137'.
[  433.045033][ T5849] gspca_sunplus: reg_r err -71
[  433.050613][ T5849] sunplus 6-1:0.0: probe with driver sunplus failed with error -71
[  433.152568][ T5849] usb 6-1: USB disconnect, device number 7
[  434.495574][ T9419] loop6: detected capacity change from 0 to 32768
[  434.517645][ T9419] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.1142 (9419)
[  434.546637][ T9419] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  434.558257][ T9419] BTRFS info (device loop6): using sha256 (sha256-lib) checksum algorithm
[  434.756921][ T5846] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000118. ret = -EPROTO
[  434.769289][ T5846] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[  434.781301][ T5846] lan78xx 3-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[  434.882375][ T9419] BTRFS info (device loop6): enabling ssd optimizations
[  434.889530][ T9419] BTRFS info (device loop6): enabling free space tree
[  434.954783][ T5846] lan78xx 3-1:1.0: probe with driver lan78xx failed with error -71
[  435.106356][ T8845] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  435.144837][ T5846] usb 3-1: USB disconnect, device number 11
[  435.632116][ T9452] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1148'.
[  435.720047][ T5846] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  435.922717][ T5846] usb 2-1: Using ep0 maxpacket: 8
[  435.965001][ T5846] usb 2-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  435.974726][ T5846] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  436.054486][ T5846] pvrusb2: Hardware description: Terratec Grabster AV400
[  436.063334][ T5846] pvrusb2: **********
[  436.067447][ T5846] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  436.077899][ T5846] pvrusb2: Important functionality might not be entirely working.
[  436.086016][ T5846] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  436.097648][ T5846] pvrusb2: **********
[  436.270165][ T2327] pvrusb2: Invalid write control endpoint
[  436.490484][ T5846] usb 2-1: USB disconnect, device number 10
[  436.740657][ T2327] pvrusb2: Invalid write control endpoint
[  436.746549][ T2327] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  436.756341][ T2327] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  436.764199][ T2327] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  436.775530][ T2327] pvrusb2: Device being rendered inoperable
[  436.782211][ T2327] cx25840 2-0044: Unable to detect h/w, assuming cx23887
[  436.789443][ T2327] cx25840 2-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[  436.799135][ T2327] pvrusb2: Attached sub-driver cx25840
[  436.804919][ T2327] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  436.815327][ T2327] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  436.847427][ T9474] loop2: detected capacity change from 0 to 512
[  437.022176][ T9474] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  438.714811][ T9494] loop6: detected capacity change from 0 to 4096
[  440.268972][ T9519] loop2: detected capacity change from 0 to 4096
[  440.546676][ T9541] loop6: detected capacity change from 0 to 128
[  440.743170][ T9541] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  441.095006][ T9541] UDF-fs: error (device loop6): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 264 marked as free, partition length is 40)
[  441.646695][ T9557] overlayfs: failed to clone upperpath
[  441.810970][ T9561] ecryptfs_validate_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README
[  441.824640][ T9561] Error validating options; rc = [-22]
[  442.346293][ T9568] loop5: detected capacity change from 0 to 2048
[  442.411033][ T9568] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  442.510285][   T30] kauditd_printk_skb: 2 callbacks suppressed
[  442.510356][   T30] audit: type=1800 audit(1759473237.195:25): pid=9568 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1182" name="file2" dev="loop5" ino=1416 res=0 errno=0
[  442.753635][ T9585] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1186'.
[  443.891638][ T9606] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1193'.
[  445.347250][ T9626] overlayfs: failed to clone upperpath
[  445.413156][ T9626] overlayfs: failed to clone upperpath
[  446.996438][ T5849] hid-generic 0000:0000:0000.0007: unknown main item tag 0x0
[  447.068576][ T5849] hid-generic 0000:0000:0000.0007: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  447.106862][ T9652] loop5: detected capacity change from 0 to 1024
[  447.188913][ T9652] EXT4-fs: Ignoring removed nomblk_io_submit option
[  447.274772][ T9652] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  447.362878][ T9652] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  447.801430][ T7081] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  448.017828][ T9668] loop2: detected capacity change from 0 to 512
[  448.277773][ T9668] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  448.291008][ T9668] ext4 filesystem being mounted at /242/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  448.468781][   T14] tipc: Subscription rejected, illegal request
[  448.711765][ T5797] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  450.574823][ T9719] netlink: 'syz.5.1236': attribute type 4 has an invalid length.
[  450.583097][ T9719] netlink: 14345 bytes leftover after parsing attributes in process `syz.5.1236'.
[  451.020855][ T5849] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[  451.195086][ T5849] usb 3-1: New USB device found, idVendor=1645, idProduct=0008, bcdDevice=cf.36
[  451.206845][ T5849] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  451.253178][ T5849] usb 3-1: config 0 descriptor??
[  451.512870][ T5849] kaweth 3-1:0.0: Firmware present in device.
[  451.659850][ T9740] bridge0: entered allmulticast mode
[  451.704437][ T5849] kaweth 3-1:0.0: Statistics collection: 0
[  451.710666][ T5849] kaweth 3-1:0.0: Multicast filter limit: 0
[  451.717823][ T5849] kaweth 3-1:0.0: MTU: 0
[  451.722776][ T5849] kaweth 3-1:0.0: Read MAC address 00:00:00:00:00:00
[  452.340412][ T5849] kaweth 3-1:0.0: kaweth interface created at eth9
[  452.559190][ T5846] usb 3-1: USB disconnect, device number 12
[  453.119915][ T5849] IPVS: starting estimator thread 0...
[  453.220291][ T9769] IPVS: using max 240 ests per chain, 12000 per kthread
[  455.356890][ T4600] wlan1: Trigger new scan to find an IBSS to join
[  457.826274][ T9830] loop5: detected capacity change from 0 to 40427
[  457.855538][ T9830] F2FS-fs (loop5): build fault injection rate: 690
[  457.891717][ T9830] F2FS-fs (loop5): invalid crc value
[  458.152405][ T9830] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  458.170565][ T9830] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  458.418794][ T7081] syz-executor: attempt to access beyond end of device
[  458.418794][ T7081] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  458.433466][ T7081] CPU: 0 UID: 0 PID: 7081 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(none) 
[  458.433595][ T7081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  458.433665][ T7081] Call Trace:
[  458.433708][ T7081]  <TASK>
[  458.433751][ T7081]  __dump_stack+0x26/0x30
[  458.433898][ T7081]  dump_stack_lvl+0x1df/0x270
[  458.434043][ T7081]  dump_stack+0x1e/0x25
[  458.434164][ T7081]  f2fs_handle_critical_error+0xa6f/0xc20
[  458.434323][ T7081]  f2fs_stop_checkpoint+0x65/0x80
[  458.434455][ T7081]  f2fs_write_end_io+0x101c/0x1bc0
[  458.434624][ T7081]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  458.434752][ T7081]  bio_endio+0xeb4/0x1010
[  458.434885][ T7081]  submit_bio_noacct+0x2009/0x2930
[  458.435065][ T7081]  submit_bio+0x57c/0x630
[  458.435204][ T7081]  f2fs_submit_write_bio+0x92/0x250
[  458.435374][ T7081]  __submit_merged_bio+0x16f/0x6a0
[  458.435542][ T7081]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  458.435698][ T7081]  __submit_merged_write_cond+0x458/0x9a0
[  458.435888][ T7081]  f2fs_write_data_pages+0x4bb2/0x5480
[  458.436137][ T7081]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  458.436292][ T7081]  ? folios_put_refs+0x51/0xb10
[  458.436438][ T7081]  ? filter_irq_stacks+0x49/0x190
[  458.436565][ T7081]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  458.436717][ T7081]  ? stack_depot_save_flags+0x35/0x7b0
[  458.436843][ T7081]  ? kmsan_get_metadata+0xfb/0x160
[  458.436994][ T7081]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[  458.437147][ T7081]  ? kmsan_get_metadata+0xfb/0x160
[  458.437285][ T7081]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  458.437434][ T7081]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  458.437559][ T7081]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  458.437685][ T7081]  do_writepages+0x3f2/0x860
[  458.437854][ T7081]  ? _raw_spin_unlock+0x30/0x50
[  458.437999][ T7081]  ? wbc_attach_and_unlock_inode+0x131/0x680
[  458.438184][ T7081]  filemap_fdatawrite+0x207/0x260
[  458.438378][ T7081]  f2fs_sync_dirty_inodes+0x2ab/0x9e0
[  458.438551][ T7081]  f2fs_write_checkpoint+0xfe2/0x2b00
[  458.438807][ T7081]  kill_f2fs_super+0x2ff/0x970
[  458.438962][ T7081]  ? __pfx_kill_f2fs_super+0x10/0x10
[  458.439098][ T7081]  deactivate_locked_super+0xcb/0x3c0
[  458.439291][ T7081]  deactivate_super+0x12f/0x140
[  458.439436][ T7081]  cleanup_mnt+0x6fb/0x780
[  458.439583][ T7081]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[  458.439724][ T7081]  ? __pfx___cleanup_mnt+0x10/0x10
[  458.439880][ T7081]  __cleanup_mnt+0x22/0x30
[  458.440033][ T7081]  task_work_run+0x206/0x2b0
[  458.440184][ T7081]  exit_to_user_mode_loop+0x2d1/0x370
[  458.440330][ T7081]  do_syscall_64+0x1e3/0x210
[  458.440457][ T7081]  ? irqentry_exit+0x16/0x60
[  458.440604][ T7081]  ? clear_bhb_loop+0x40/0x90
[  458.440732][ T7081]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  458.440858][ T7081] RIP: 0033:0x7fc45df901f7
[  458.440947][ T7081] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  458.441050][ T7081] RSP: 002b:00007fff7f612e48 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  458.441175][ T7081] RAX: 0000000000000000 RBX: 00007fc45e011d7d RCX: 00007fc45df901f7
[  458.441262][ T7081] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff7f612f00
[  458.441342][ T7081] RBP: 00007fff7f612f00 R08: 0000000000000000 R09: 0000000000000000
[  458.441418][ T7081] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff7f613f90
[  458.441504][ T7081] R13: 00007fc45e011d7d R14: 000000000006fe4e R15: 00007fff7f613fd0
[  458.441616][ T7081]  </TASK>
[  458.790117][ T7081] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  460.310330][ T3886] wlan1: Trigger new scan to find an IBSS to join
[  460.718555][ T5846] IPVS: starting estimator thread 0...
[  460.840153][ T9876] IPVS: using max 240 ests per chain, 12000 per kthread
[  461.289893][   T74] wlan1: Creating new IBSS network, BSSID 00:00:00:8d:00:00
[  461.925847][   T30] audit: type=1326 audit(1759473256.615:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9895 comm="syz.2.1307" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f143398eec9 code=0x0
[  462.127157][ T9901] loop6: detected capacity change from 0 to 64
[  462.288155][ T9901] hfs: request for non-existent node 131072 in B*Tree
[  462.295504][ T9901] hfs: request for non-existent node 131072 in B*Tree
[  464.860004][ T5846] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  464.973872][ T9931] overlayfs: failed to clone upperpath
[  465.046126][ T5846] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  465.057600][ T5846] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  465.067890][ T5846] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  465.081250][ T5846] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  465.090630][ T5846] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  465.228017][ T5846] usb 3-1: config 0 descriptor??
[  465.702403][ T5846] plantronics 0003:047F:FFFF.0008: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  466.185645][ T9948]  nullb0: AHDI p1
[  466.547657][ T9954] bridge0: port 3(syz_tun) entered blocking state
[  466.555100][ T9954] bridge0: port 3(syz_tun) entered disabled state
[  466.562720][ T9954] syz_tun: entered allmulticast mode
[  466.622343][ T9954] syz_tun: entered promiscuous mode
[  466.631119][ T9954] bridge0: port 3(syz_tun) entered blocking state
[  466.637941][ T9954] bridge0: port 3(syz_tun) entered forwarding state
[  467.797863][ T5848] usb 3-1: USB disconnect, device number 13
[  468.711593][ T9982] loop6: detected capacity change from 0 to 4096
[  468.779107][ T9982] ntfs3(loop6): Different NTFS sector size (1024) and media sector size (512).
[  470.164363][T10004] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  470.278332][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[  470.285368][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  471.985048][   T30] audit: type=1326 audit(1759473266.675:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10034 comm="syz.4.1366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6f8d8eec9 code=0x7ffc0000
[  472.151639][T10036] virt_wifi0 speed is unknown, defaulting to 1000
[  472.177871][T10040] loop4: detected capacity change from 0 to 7
[  472.186446][   T30] audit: type=1326 audit(1759473266.715:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10034 comm="syz.4.1366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=272 compat=0 ip=0x7ff6f8d8eec9 code=0x7ffc0000
[  472.210494][   T30] audit: type=1326 audit(1759473266.715:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10034 comm="syz.4.1366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6f8d8eec9 code=0x7ffc0000
[  472.234164][   T30] audit: type=1326 audit(1759473266.715:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10034 comm="syz.4.1366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6f8d8eec9 code=0x7ffc0000
[  472.256862][   T30] audit: type=1326 audit(1759473266.745:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10034 comm="syz.4.1366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=68 compat=0 ip=0x7ff6f8d8eec9 code=0x7ffc0000
[  472.279705][   T30] audit: type=1326 audit(1759473266.745:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10034 comm="syz.4.1366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6f8d8eec9 code=0x7ffc0000
[  472.303367][   T30] audit: type=1326 audit(1759473266.745:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10034 comm="syz.4.1366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6f8d8eec9 code=0x7ffc0000
[  472.326343][   T30] audit: type=1326 audit(1759473266.745:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10034 comm="syz.4.1366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=69 compat=0 ip=0x7ff6f8d8eec9 code=0x7ffc0000
[  472.349405][   T30] audit: type=1326 audit(1759473266.745:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10034 comm="syz.4.1366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6f8d8eec9 code=0x7ffc0000
[  472.370927][T10040] Dev loop4: unable to read RDB block 7
[  472.372201][   T30] audit: type=1326 audit(1759473266.745:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10034 comm="syz.4.1366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=70 compat=0 ip=0x7ff6f8d8eec9 code=0x7ffc0000
[  472.377789][T10040]  loop4: unable to read partition table
[  472.440376][T10040] loop4: partition table beyond EOD, truncated
[  472.446856][T10040] loop_reread_partitions: partition scan of loop4 (þ被xü—ŸÑà– ) failed (rc=-5)
[  474.008434][T10053] loop2: detected capacity change from 0 to 32768
[  474.016876][T10059] loop6: detected capacity change from 0 to 512
[  474.032924][T10053] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.1373 (10053)
[  474.082546][T10053] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  474.093658][T10053] BTRFS info (device loop2): using crc32c (crc32c-lib) checksum algorithm
[  474.132419][T10059] EXT4-fs error (device loop6): ext4_orphan_get:1392: inode #15: comm syz.6.1376: casefold flag without casefold feature
[  474.200533][T10059] EXT4-fs error (device loop6): ext4_orphan_get:1397: comm syz.6.1376: couldn't read orphan inode 15 (err -117)
[  474.377955][T10059] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  475.045690][T10064] loop5: detected capacity change from 0 to 40427
[  475.067261][T10064] F2FS-fs (loop5): Wrong secs_per_zone / total_sections (0, 24)
[  475.076427][T10064] F2FS-fs (loop5): Can't find valid F2FS filesystem in 2th superblock
[  475.084976][T10064] F2FS-fs (loop5): build fault injection rate: 6
[  475.091631][T10064] F2FS-fs (loop5): build fault injection type: 0x0
[  475.107274][T10064] F2FS-fs (loop5): invalid crc value
[  475.161227][T10053] BTRFS info (device loop2): enabling ssd optimizations
[  475.169830][T10053] BTRFS info (device loop2): enabling free space tree
[  475.422781][T10064] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  475.475883][T10064] F2FS-fs (loop5): Try to recover 2th superblock, ret: 0
[  475.484501][T10064] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  475.632530][ T8845] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  475.653337][T10064] syz.5.1375: attempt to access beyond end of device
[  475.653337][T10064] loop5: rw=10241, sector=45096, nr_sectors = 8 limit=40427
[  475.758632][ T7081] syz-executor: attempt to access beyond end of device
[  475.758632][ T7081] loop5: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  475.773516][ T7081] CPU: 1 UID: 0 PID: 7081 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(none) 
[  475.773644][ T7081] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  475.773714][ T7081] Call Trace:
[  475.773757][ T7081]  <TASK>
[  475.773797][ T7081]  __dump_stack+0x26/0x30
[  475.773939][ T7081]  dump_stack_lvl+0x1df/0x270
[  475.774084][ T7081]  dump_stack+0x1e/0x25
[  475.774206][ T7081]  f2fs_handle_critical_error+0xa6f/0xc20
[  475.774364][ T7081]  f2fs_stop_checkpoint+0x65/0x80
[  475.774496][ T7081]  f2fs_write_end_io+0x101c/0x1bc0
[  475.774659][ T7081]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  475.774782][ T7081]  bio_endio+0xeb4/0x1010
[  475.774917][ T7081]  submit_bio_noacct+0x2009/0x2930
[  475.775102][ T7081]  submit_bio+0x57c/0x630
[  475.775243][ T7081]  f2fs_submit_write_bio+0x92/0x250
[  475.775438][ T7081]  __submit_merged_bio+0x16f/0x6a0
[  475.775607][ T7081]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  475.775767][ T7081]  __submit_merged_write_cond+0x458/0x9a0
[  475.775949][ T7081]  f2fs_write_data_pages+0x4bb2/0x5480
[  475.776191][ T7081]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  475.776341][ T7081]  ? folios_put_refs+0x51/0xb10
[  475.776488][ T7081]  ? filter_irq_stacks+0x49/0x190
[  475.776610][ T7081]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  475.776755][ T7081]  ? stack_depot_save_flags+0x35/0x7b0
[  475.776876][ T7081]  ? kmsan_get_metadata+0xfb/0x160
[  475.777020][ T7081]  ? kmsan_get_metadata+0xfb/0x160
[  475.777151][ T7081]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  475.777290][ T7081]  ? kmsan_get_metadata+0xfb/0x160
[  475.777424][ T7081]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  475.777567][ T7081]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  475.777687][ T7081]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  475.777810][ T7081]  do_writepages+0x3f2/0x860
[  475.777967][ T7081]  ? _raw_spin_unlock+0x30/0x50
[  475.778108][ T7081]  ? wbc_attach_and_unlock_inode+0x131/0x680
[  475.778282][ T7081]  filemap_fdatawrite+0x207/0x260
[  475.778474][ T7081]  f2fs_sync_dirty_inodes+0x2ab/0x9e0
[  475.778634][ T7081]  f2fs_write_checkpoint+0xfe2/0x2b00
[  475.778875][ T7081]  kill_f2fs_super+0x2ff/0x970
[  475.779024][ T7081]  ? __pfx_kill_f2fs_super+0x10/0x10
[  475.779154][ T7081]  deactivate_locked_super+0xcb/0x3c0
[  475.779295][ T7081]  deactivate_super+0x12f/0x140
[  475.779417][ T7081]  cleanup_mnt+0x6fb/0x780
[  475.779566][ T7081]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[  475.779707][ T7081]  ? __pfx___cleanup_mnt+0x10/0x10
[  475.779865][ T7081]  __cleanup_mnt+0x22/0x30
[  475.780013][ T7081]  task_work_run+0x206/0x2b0
[  475.780173][ T7081]  exit_to_user_mode_loop+0x2d1/0x370
[  475.780332][ T7081]  do_syscall_64+0x1e3/0x210
[  475.780456][ T7081]  ? irqentry_exit+0x16/0x60
[  475.780615][ T7081]  ? clear_bhb_loop+0x40/0x90
[  475.780745][ T7081]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  475.780876][ T7081] RIP: 0033:0x7fc45df901f7
[  475.780967][ T7081] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  475.781069][ T7081] RSP: 002b:00007fff7f612e48 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  475.781182][ T7081] RAX: 0000000000000000 RBX: 00007fc45e011d7d RCX: 00007fc45df901f7
[  475.781262][ T7081] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff7f612f00
[  475.781335][ T7081] RBP: 00007fff7f612f00 R08: 0000000000000000 R09: 0000000000000000
[  475.781408][ T7081] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff7f613f90
[  475.781491][ T7081] R13: 00007fc45e011d7d R14: 0000000000074204 R15: 00007fff7f613fd0
[  475.781597][ T7081]  </TASK>
[  476.134791][ T7081] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  476.623287][ T5797] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  477.606070][T10108] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  477.979080][T10104] loop6: detected capacity change from 0 to 32768
[  478.063070][T10104] XFS (loop6): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  478.321717][T10104] XFS (loop6): Ending clean mount
[  478.344865][T10104] XFS (loop6): Quotacheck needed: Please wait.
[  478.483468][T10104] XFS (loop6): Quotacheck: Done.
[  478.690683][ T8845] XFS (loop6): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  479.144696][   T30] kauditd_printk_skb: 2 callbacks suppressed
[  479.144764][   T30] audit: type=1326 audit(1759473273.835:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10128 comm="syz.6.1391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cd478eec9 code=0x7ffc0000
[  479.174994][   T30] audit: type=1326 audit(1759473273.835:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10128 comm="syz.6.1391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cd478eec9 code=0x7ffc0000
[  479.198686][   T30] audit: type=1326 audit(1759473273.865:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10128 comm="syz.6.1391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f9cd478eec9 code=0x7ffc0000
[  479.221927][   T30] audit: type=1326 audit(1759473273.865:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10128 comm="syz.6.1391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cd478eec9 code=0x7ffc0000
[  479.246662][   T30] audit: type=1326 audit(1759473273.865:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10128 comm="syz.6.1391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cd478eec9 code=0x7ffc0000
[  479.273634][   T30] audit: type=1326 audit(1759473273.865:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10128 comm="syz.6.1391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f9cd478eec9 code=0x7ffc0000
[  479.298899][   T30] audit: type=1326 audit(1759473273.865:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10128 comm="syz.6.1391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cd478eec9 code=0x7ffc0000
[  479.321985][   T30] audit: type=1326 audit(1759473273.865:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10128 comm="syz.6.1391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cd478eec9 code=0x7ffc0000
[  479.344779][   T30] audit: type=1326 audit(1759473273.865:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10128 comm="syz.6.1391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f9cd478eec9 code=0x7ffc0000
[  479.369214][   T30] audit: type=1326 audit(1759473273.865:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10128 comm="syz.6.1391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9cd478eec9 code=0x7ffc0000
[  480.203040][T10135] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1396'.
[  480.261382][T10135] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1396'.
[  480.934506][T10149] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  481.388663][ T3812] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  481.426694][T10155] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  482.530436][ T5849] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  482.750261][ T5849] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  482.762002][ T5849] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  482.934759][ T5849] usb 2-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  482.944412][ T5849] usb 2-1: New USB device strings: Mfr=2, Product=0, SerialNumber=0
[  482.954127][ T5849] usb 2-1: Manufacturer: syz
[  483.119239][T10174] netlink: 'syz.5.1411': attribute type 1 has an invalid length.
[  483.127479][T10174] netlink: 168864 bytes leftover after parsing attributes in process `syz.5.1411'.
[  483.145370][ T5849] usb 2-1: config 0 descriptor??
[  483.305566][T10173] loop2: detected capacity change from 0 to 32768
[  483.315601][T10173] gfs2: Bad value for 'quota_quantum'
[  484.329222][ T5849] uclogic 0003:256C:006D.0009: v1 frame probing failed: -71
[  484.337250][ T5849] uclogic 0003:256C:006D.0009: failed probing parameters: -71
[  484.345808][ T5849] uclogic 0003:256C:006D.0009: probe with driver uclogic failed with error -71
[  484.436435][ T5849] usb 2-1: USB disconnect, device number 11
[  485.190216][    C1] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  485.217673][T10191] loop5: detected capacity change from 0 to 32768
[  485.227267][T10191] btrfs: Deprecated parameter 'usebackuproot'
[  485.233724][T10191] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  485.292507][T10191] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.1419 (10191)
[  485.315400][T10191] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  485.325925][T10191] BTRFS info (device loop5): using crc32c (crc32c-lib) checksum algorithm
[  485.515668][   T74] BTRFS warning (device loop5): checksum verify failed on logical 5332992 mirror 1 wanted 0x0a5e5d25 found 0x32f839c6 level 0
[  485.529518][T10191] BTRFS warning (device loop5): couldn't read tree root
[  485.538333][T10191] BTRFS warning (device loop5): try to load backup roots slot 1
[  485.571589][ T4600] BTRFS warning (device loop5): checksum verify failed on logical 5316608 mirror 1 wanted 0x5387c9d6 found 0xc5289bf1 level 0
[  485.585421][T10191] BTRFS error (device loop5): failed to load root extent
[  485.593180][T10191] BTRFS warning (device loop5): try to load backup roots slot 2
[  485.701964][ T4600] BTRFS error (device loop5): level verify failed on logical 5255168 mirror 1 wanted 0 found 1
[  485.714478][T10191] BTRFS warning (device loop5): couldn't read tree root
[  485.722127][T10191] BTRFS warning (device loop5): try to load backup roots slot 3
[  485.823759][T10191] BTRFS info (device loop5): rebuilding free space tree
[  485.849136][T10191] BTRFS info (device loop5): checking UUID tree
[  485.870493][T10191] BTRFS info (device loop5): allowing degraded mounts
[  485.877540][T10191] BTRFS info (device loop5): enabling ssd optimizations
[  485.885006][T10191] BTRFS info (device loop5): enabling free space tree
[  485.892493][T10191] BTRFS info (device loop5): force clearing of disk cache
[  485.899923][T10191] BTRFS info (device loop5): trying to use backup root at mount time
[  485.909730][T10191] BTRFS info (device loop5): use zlib compression, level 3
[  486.037610][   T30] kauditd_printk_skb: 106 callbacks suppressed
[  486.037680][   T30] audit: type=1800 audit(1759473280.725:155): pid=10191 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1419" name="file1" dev="loop5" ino=257 res=0 errno=0
[  486.643542][T10231] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1428'.
[  486.653021][T10231] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1428'.
[  486.664998][T10231] A link change request failed with some changes committed already. Interface ip_vti0 may have been left with an inconsistent configuration, please check.
[  486.901621][ T7081] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  487.272445][T10237] Invalid ELF header magic: != ELF
[  488.571601][ T5849] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  488.746367][T10256] loop2: detected capacity change from 0 to 4096
[  488.780048][ T5849] usb 2-1: Using ep0 maxpacket: 32
[  488.806128][T10256] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[  488.843615][ T5849] usb 2-1: New USB device found, idVendor=0ac8, idProduct=0321, bcdDevice=6f.be
[  488.853593][ T5849] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  488.898386][T10256] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 4096)
[  488.902682][ T5849] usb 2-1: config 0 descriptor??
[  489.005356][ T5849] gspca_main: vc032x-2.14.0 probing 0ac8:0321
[  489.017600][T10263] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  489.146706][T10256] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=15)
[  489.250047][T10256] Remounting filesystem read-only
[  489.255878][T10256] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=15)
[  489.351604][T10256] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=15)
[  489.460873][T10256] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=15)
[  489.760259][ T5849] gspca_vc032x: reg_w err -71
[  489.765106][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  489.770914][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  489.776327][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  489.781832][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  489.787238][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  489.792789][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  489.798203][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  489.803738][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  489.811267][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  489.816699][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  489.824049][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  489.829476][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  489.835137][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  489.840689][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  489.846102][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  489.851755][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  489.857268][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  489.862789][ T5849] gspca_vc032x: I2c Bus Busy Wait 00
[  489.868195][ T5849] gspca_vc032x: Unknown sensor...
[  489.873765][ T5849] vc032x 2-1:0.0: probe with driver vc032x failed with error -22
[  489.931760][ T5797] NILFS (loop2): disposed unprocessed dirty file(s) when detaching log writer
[  490.191018][ T5849] usb 2-1: USB disconnect, device number 12
[  491.123655][T10273] loop6: detected capacity change from 0 to 40427
[  491.180744][T10273] F2FS-fs (loop6): invalid crc value
[  491.512602][T10273] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  491.542155][T10273] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e4
[  493.270249][    C1] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  493.911232][ T3812] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  495.090326][ T5849] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[  495.320745][ T5849] usb 2-1: Using ep0 maxpacket: 16
[  495.355821][ T5849] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  495.366577][ T5849] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  495.377955][ T5849] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  495.387941][ T5849] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  495.398019][ T5849] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  495.695144][ T5849] usb 2-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  495.704901][ T5849] usb 2-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  495.713470][ T5849] usb 2-1: Manufacturer: syz
[  495.854880][ T5849] usb 2-1: config 0 descriptor??
[  496.522854][T10333] Invalid ELF header magic: != ELF
[  496.632989][T10334] input: syz0 as /devices/virtual/input/input9
[  496.651273][ T5849] rc_core: IR keymap rc-hauppauge not found
[  496.657508][ T5849] Registered IR keymap rc-empty
[  496.663130][ T5849] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  496.836346][ T5849] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  496.920037][ T5849] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0
[  496.935628][ T5849] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0/input8
[  497.288861][ T5849] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  497.450701][ T5849] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  497.569454][ T5849] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  497.646377][ T5849] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  497.670035][ T5849] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  497.718203][ T5849] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  497.760572][ T5849] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  497.842252][ T5849] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  497.910285][ T5849] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  497.949212][ T5849] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[  497.993673][ T5849] mceusb 2-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  498.005255][ T5849] mceusb 2-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  498.129390][ T5849] usb 2-1: USB disconnect, device number 13
[  498.929293][T10362] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1479'.
[  499.239435][T10369] overlayfs: failed to clone upperpath
[  499.433568][T10373] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  499.447521][T10373] bond0: (slave lo): Error: Device can not be enslaved while up
[  500.592452][T10389] loop5: detected capacity change from 0 to 256
[  501.633816][T10405] virt_wifi0 speed is unknown, defaulting to 1000
[  501.668322][T10404] loop2: detected capacity change from 0 to 256
[  502.842818][T10411] loop6: detected capacity change from 0 to 4096
[  502.974967][T10411] ntfs3(loop6): Different NTFS sector size (2048) and media sector size (512).
[  503.190287][T10425] kernel read not supported for file /file1 (pid: 10425 comm: syz.1.1503)
[  503.211910][   T30] audit: type=1800 audit(1759473297.885:156): pid=10425 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1503" name="file1" dev="mqueue" ino=24204 res=0 errno=0
[  503.358537][T10429] loop2: detected capacity change from 0 to 128
[  504.056199][   T30] audit: type=1326 audit(1759473298.735:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10402 comm="syz.6.1495" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9cd478eec9 code=0x0
[  508.630223][    C1] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  510.459981][T10520] loop6: detected capacity change from 0 to 32768
[  510.605496][T10519] loop2: detected capacity change from 0 to 40427
[  510.647826][T10519] F2FS-fs (loop2): build fault injection rate: 14
[  510.655603][T10519] F2FS-fs (loop2): build fault injection type: 0x3bfe8c
[  510.665358][T10519] F2FS-fs (loop2): invalid crc value
[  510.681608][T10520] 
[  510.681608][T10520]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  510.681608][T10520] 
[  510.709453][    C1] F2FS-fs (loop2): inject read IO error in f2fs_read_end_io of bio_endio+0xeb4/0x1010
[  510.776053][    C0] F2FS-fs (loop2): inject read IO error in f2fs_read_end_io of bio_endio+0xeb4/0x1010
[  510.873923][T10520] 
[  510.873923][T10520]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  510.873923][T10520] 
[  510.884969][T10520] 
[  510.884969][T10520]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  510.884969][T10520] 
[  510.895801][T10520] 
[  510.895801][T10520]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  510.895801][T10520] 
[  510.940884][  T112] 
[  510.940884][  T112]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  510.940884][  T112] 
[  511.038287][T10519] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  511.047629][T10519] F2FS-fs (loop2): inject page alloc in f2fs_grab_cache_folio of f2fs_get_tmp_folio+0x38/0x50
[  511.055359][ T8845] 
[  511.055359][ T8845]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  511.055359][ T8845] 
[  511.096123][T10519] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  511.151410][T10519] F2FS-fs (loop2): inject page alloc in f2fs_grab_cache_folio of f2fs_get_dnode_of_data+0xe78/0x2fc0
[  511.183763][T10519] F2FS-fs (loop2): inject no more block in inc_valid_node_count of f2fs_new_node_folio+0x79e/0x19b0
[  511.290519][ T8845] 
[  511.290519][ T8845]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  511.290519][ T8845] 
[  511.323319][    C0] F2FS-fs (loop2): inject write IO error in f2fs_write_end_io of bio_endio+0xeb4/0x1010
[  511.333552][    C0] CPU: 0 UID: 0 PID: 15 Comm: ksoftirqd/0 Not tainted syzkaller #0 PREEMPT(none) 
[  511.333683][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  511.333759][    C0] Call Trace:
[  511.333806][    C0]  <TASK>
[  511.333852][    C0]  __dump_stack+0x26/0x30
[  511.334010][    C0]  dump_stack_lvl+0x1df/0x270
[  511.334164][    C0]  dump_stack+0x1e/0x25
[  511.334304][    C0]  f2fs_handle_critical_error+0xa6f/0xc20
[  511.334467][    C0]  f2fs_stop_checkpoint+0x65/0x80
[  511.334600][    C0]  f2fs_write_end_io+0x101c/0x1bc0
[  511.334774][    C0]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  511.334905][    C0]  bio_endio+0xeb4/0x1010
[  511.335051][    C0]  blk_update_request+0xf4c/0x1a90
[  511.335267][    C0]  blk_mq_end_request+0x50/0xb0
[  511.335392][    C0]  lo_complete_rq+0x188/0x3a0
[  511.335522][    C0]  ? __pfx_lo_complete_rq+0x10/0x10
[  511.335651][    C0]  blk_done_softirq+0x112/0x1f0
[  511.335811][    C0]  ? __pfx_blk_done_softirq+0x10/0x10
[  511.335973][    C0]  handle_softirqs+0x169/0x6e0
[  511.336130][    C0]  ? __pfx_run_ksoftirqd+0x10/0x10
[  511.336269][    C0]  run_ksoftirqd+0x29/0x50
[  511.336406][    C0]  smpboot_thread_fn+0x56c/0xa30
[  511.336553][    C0]  kthread+0xd59/0xf00
[  511.336673][    C0]  ? __pfx_smpboot_thread_fn+0x10/0x10
[  511.336828][    C0]  ? __pfx_kthread+0x10/0x10
[  511.336960][    C0]  ret_from_fork+0x233/0x380
[  511.337078][    C0]  ? __pfx_kthread+0x10/0x10
[  511.337208][    C0]  ret_from_fork_asm+0x1a/0x30
[  511.337387][    C0]  </TASK>
[  511.337433][    C0] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  511.492585][    C0] CPU: 0 UID: 0 PID: 15 Comm: ksoftirqd/0 Not tainted syzkaller #0 PREEMPT(none) 
[  511.492715][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  511.492784][    C0] Call Trace:
[  511.492828][    C0]  <TASK>
[  511.492876][    C0]  __dump_stack+0x26/0x30
[  511.493020][    C0]  dump_stack_lvl+0x1df/0x270
[  511.493169][    C0]  dump_stack+0x1e/0x25
[  511.493299][    C0]  f2fs_handle_critical_error+0xa6f/0xc20
[  511.493458][    C0]  f2fs_stop_checkpoint+0x65/0x80
[  511.493584][    C0]  f2fs_write_end_io+0x101c/0x1bc0
[  511.493752][    C0]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  511.493873][    C0]  bio_endio+0xeb4/0x1010
[  511.494011][    C0]  blk_update_request+0xf4c/0x1a90
[  511.494216][    C0]  blk_mq_end_request+0x50/0xb0
[  511.494332][    C0]  lo_complete_rq+0x188/0x3a0
[  511.494457][    C0]  ? __pfx_lo_complete_rq+0x10/0x10
[  511.494582][    C0]  blk_done_softirq+0x112/0x1f0
[  511.494729][    C0]  ? __pfx_blk_done_softirq+0x10/0x10
[  511.494881][    C0]  handle_softirqs+0x169/0x6e0
[  511.495037][    C0]  ? __pfx_run_ksoftirqd+0x10/0x10
[  511.495166][    C0]  run_ksoftirqd+0x29/0x50
[  511.495299][    C0]  smpboot_thread_fn+0x56c/0xa30
[  511.495442][    C0]  kthread+0xd59/0xf00
[  511.495556][    C0]  ? __pfx_smpboot_thread_fn+0x10/0x10
[  511.495703][    C0]  ? __pfx_kthread+0x10/0x10
[  511.495830][    C0]  ret_from_fork+0x233/0x380
[  511.495949][    C0]  ? __pfx_kthread+0x10/0x10
[  511.496078][    C0]  ret_from_fork_asm+0x1a/0x30
[  511.496247][    C0]  </TASK>
[  511.496296][    C0] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  511.651458][    C0] CPU: 0 UID: 0 PID: 15 Comm: ksoftirqd/0 Not tainted syzkaller #0 PREEMPT(none) 
[  511.651604][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  511.651679][    C0] Call Trace:
[  511.651725][    C0]  <TASK>
[  511.651770][    C0]  __dump_stack+0x26/0x30
[  511.651926][    C0]  dump_stack_lvl+0x1df/0x270
[  511.652076][    C0]  dump_stack+0x1e/0x25
[  511.652213][    C0]  f2fs_handle_critical_error+0xa6f/0xc20
[  511.652377][    C0]  f2fs_stop_checkpoint+0x65/0x80
[  511.652508][    C0]  f2fs_write_end_io+0x101c/0x1bc0
[  511.652682][    C0]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  511.652808][    C0]  bio_endio+0xeb4/0x1010
[  511.652953][    C0]  blk_update_request+0xf4c/0x1a90
[  511.653172][    C0]  blk_mq_end_request+0x50/0xb0
[  511.653297][    C0]  lo_complete_rq+0x188/0x3a0
[  511.653427][    C0]  ? __pfx_lo_complete_rq+0x10/0x10
[  511.653557][    C0]  blk_done_softirq+0x112/0x1f0
[  511.653725][    C0]  ? __pfx_blk_done_softirq+0x10/0x10
[  511.653888][    C0]  handle_softirqs+0x169/0x6e0
[  511.654044][    C0]  ? __pfx_run_ksoftirqd+0x10/0x10
[  511.654184][    C0]  run_ksoftirqd+0x29/0x50
[  511.654326][    C0]  smpboot_thread_fn+0x56c/0xa30
[  511.654474][    C0]  kthread+0xd59/0xf00
[  511.654600][    C0]  ? __pfx_smpboot_thread_fn+0x10/0x10
[  511.654749][    C0]  ? __pfx_kthread+0x10/0x10
[  511.654909][    C0]  ret_from_fork+0x233/0x380
[  511.655034][    C0]  ? __pfx_kthread+0x10/0x10
[  511.655191][    C0]  ret_from_fork_asm+0x1a/0x30
[  511.655377][    C0]  </TASK>
[  511.655424][    C0] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  511.811263][    C0] CPU: 0 UID: 0 PID: 15 Comm: ksoftirqd/0 Not tainted syzkaller #0 PREEMPT(none) 
[  511.811393][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  511.811466][    C0] Call Trace:
[  511.811510][    C0]  <TASK>
[  511.811556][    C0]  __dump_stack+0x26/0x30
[  511.811717][    C0]  dump_stack_lvl+0x1df/0x270
[  511.811873][    C0]  dump_stack+0x1e/0x25
[  511.812000][    C0]  f2fs_handle_critical_error+0xa6f/0xc20
[  511.812158][    C0]  f2fs_stop_checkpoint+0x65/0x80
[  511.812289][    C0]  f2fs_write_end_io+0x101c/0x1bc0
[  511.812457][    C0]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  511.812586][    C0]  bio_endio+0xeb4/0x1010
[  511.812718][    C0]  blk_update_request+0xf4c/0x1a90
[  511.812931][    C0]  blk_mq_end_request+0x50/0xb0
[  511.813044][    C0]  lo_complete_rq+0x188/0x3a0
[  511.813170][    C0]  ? __pfx_lo_complete_rq+0x10/0x10
[  511.813286][    C0]  blk_done_softirq+0x112/0x1f0
[  511.813441][    C0]  ? __pfx_blk_done_softirq+0x10/0x10
[  511.813590][    C0]  handle_softirqs+0x169/0x6e0
[  511.813734][    C0]  ? __pfx_run_ksoftirqd+0x10/0x10
[  511.813878][    C0]  run_ksoftirqd+0x29/0x50
[  511.814005][    C0]  smpboot_thread_fn+0x56c/0xa30
[  511.814147][    C0]  kthread+0xd59/0xf00
[  511.814266][    C0]  ? __pfx_smpboot_thread_fn+0x10/0x10
[  511.814405][    C0]  ? __pfx_kthread+0x10/0x10
[  511.814531][    C0]  ret_from_fork+0x233/0x380
[  511.814639][    C0]  ? __pfx_kthread+0x10/0x10
[  511.814768][    C0]  ret_from_fork_asm+0x1a/0x30
[  511.814946][    C0]  </TASK>
[  511.814990][    C0] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  511.970615][    C0] CPU: 0 UID: 0 PID: 15 Comm: ksoftirqd/0 Not tainted syzkaller #0 PREEMPT(none) 
[  511.970744][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  511.970818][    C0] Call Trace:
[  511.970872][    C0]  <TASK>
[  511.970918][    C0]  __dump_stack+0x26/0x30
[  511.971067][    C0]  dump_stack_lvl+0x1df/0x270
[  511.971214][    C0]  dump_stack+0x1e/0x25
[  511.971339][    C0]  f2fs_handle_critical_error+0xa6f/0xc20
[  511.971500][    C0]  f2fs_stop_checkpoint+0x65/0x80
[  511.971647][    C0]  f2fs_write_end_io+0x101c/0x1bc0
[  511.971822][    C0]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  511.971954][    C0]  bio_endio+0xeb4/0x1010
[  511.972092][    C0]  blk_update_request+0xf4c/0x1a90
[  511.972304][    C0]  blk_mq_end_request+0x50/0xb0
[  511.972427][    C0]  lo_complete_rq+0x188/0x3a0
[  511.972556][    C0]  ? __pfx_lo_complete_rq+0x10/0x10
[  511.972681][    C0]  blk_done_softirq+0x112/0x1f0
[  511.972836][    C0]  ? __pfx_blk_done_softirq+0x10/0x10
[  511.973002][    C0]  handle_softirqs+0x169/0x6e0
[  511.973151][    C0]  ? __pfx_run_ksoftirqd+0x10/0x10
[  511.973288][    C0]  run_ksoftirqd+0x29/0x50
[  511.973435][    C0]  smpboot_thread_fn+0x56c/0xa30
[  511.973584][    C0]  kthread+0xd59/0xf00
[  511.973703][    C0]  ? __pfx_smpboot_thread_fn+0x10/0x10
[  511.973854][    C0]  ? __pfx_kthread+0x10/0x10
[  511.973983][    C0]  ret_from_fork+0x233/0x380
[  511.974098][    C0]  ? __pfx_kthread+0x10/0x10
[  511.974230][    C0]  ret_from_fork_asm+0x1a/0x30
[  511.974409][    C0]  </TASK>
[  511.974455][    C0] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  512.202225][ T5797] F2FS-fs (loop2): do_checkpoint failed err:-5, stop checkpoint
[  513.140411][T10542] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1548'.
[  513.172451][T10542] netdevsim netdevsim2 netdevsim1: entered promiscuous mode
[  513.187658][T10542] netdevsim netdevsim2 netdevsim1: left promiscuous mode
[  513.598781][T10546] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1553'.
[  513.608227][T10546] netlink: 'syz.4.1553': attribute type 8 has an invalid length.
[  513.616425][T10546] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1553'.
[  513.639323][T10546] geneve2: entered promiscuous mode
[  513.644936][T10546] geneve2: entered allmulticast mode
[  515.389961][ T1873] usb 7-1: new full-speed USB device number 2 using dummy_hcd
[  515.662952][ T1873] usb 7-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  515.673361][ T1873] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  515.681732][ T1873] usb 7-1: Product: syz
[  515.686056][ T1873] usb 7-1: Manufacturer: syz
[  515.690875][ T1873] usb 7-1: SerialNumber: syz
[  515.762914][ T1873] usb 7-1: config 0 descriptor??
[  516.003743][ T1873] usb 7-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  516.070871][ T5849] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  516.257609][ T5849] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  516.267891][ T5849] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  516.281274][ T5849] usb 3-1: New USB device found, idVendor=056a, idProduct=00ed, bcdDevice= 0.00
[  516.290730][ T5849] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  516.402077][ T5849] usb 3-1: config 0 descriptor??
[  516.894021][ T1873] dvb_usb_rtl28xxu 7-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  516.970926][ T1873] usb 7-1: USB disconnect, device number 2
[  517.093387][ T5846] usb 3-1: USB disconnect, device number 14
[  517.278734][T10593] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1571'.
[  517.324132][T10593] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1571'.
[  519.248410][T10625] netlink: 'syz.5.1581': attribute type 15 has an invalid length.
[  519.256686][T10625] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1581'.
[  519.313745][   T74] netdevsim netdevsim5 netdevsim0: set [0, 1] type 1 family 0 port 2816 - 0
[  519.341082][   T74] netdevsim netdevsim5 netdevsim1: set [0, 1] type 1 family 0 port 2816 - 0
[  519.370040][   T74] netdevsim netdevsim5 netdevsim2: set [0, 1] type 1 family 0 port 2816 - 0
[  519.375197][T10625] netlink: 'syz.5.1581': attribute type 15 has an invalid length.
[  519.387659][T10625] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1581'.
[  519.396904][   T74] netdevsim netdevsim5 netdevsim3: set [0, 1] type 1 family 0 port 2816 - 0
[  520.508177][T10645] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1591'.
[  522.278321][T10658] loop2: detected capacity change from 0 to 32768
[  522.311339][T10658] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.1596 (10658)
[  522.332999][T10658] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  522.343530][T10658] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm
[  522.526922][T10658] BTRFS info (device loop2): enabling ssd optimizations
[  522.534317][T10658] BTRFS info (device loop2): enabling free space tree
[  523.133613][ T5797] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  523.320194][ T5846] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[  523.511203][ T5790] Bluetooth: hci0: command 0x0406 tx timeout
[  523.545005][ T5846] usb 2-1: config 0 interface 0 has no altsetting 0
[  523.618103][ T5846] usb 2-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  523.627566][ T5846] usb 2-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  523.636191][ T5846] usb 2-1: Product: syz
[  523.641305][ T5846] usb 2-1: Manufacturer: syz
[  523.646073][ T5846] usb 2-1: SerialNumber: syz
[  523.688273][ T5846] usb 2-1: config 0 descriptor??
[  523.727864][ T5846] usb 2-1: selecting invalid altsetting 0
[  524.188674][ T1677] usb 2-1: USB disconnect, device number 14
[  525.911723][ T3735] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  527.176984][T10722] loop2: detected capacity change from 0 to 32768
[  527.385980][T10722] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  527.658691][T10722] XFS (loop2): Ending clean mount
[  527.684689][   T30] audit: type=1800 audit(1759473322.365:158): pid=10722 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1618" name="file1" dev="loop2" ino=4422 res=0 errno=0
[  527.768083][ T5797] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  528.731325][T10749] netlink: 'syz.1.1626': attribute type 4 has an invalid length.
[  530.214228][T10761] loop6: detected capacity change from 0 to 32768
[  530.274796][T10761] XFS (loop6): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  530.630315][T10761] XFS (loop6): Ending clean mount
[  530.641791][T10761] XFS (loop6): Quotacheck needed: Please wait.
[  530.691109][T10761] XFS (loop6): Quotacheck: Done.
[  530.934390][ T8845] XFS (loop6): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  531.006826][T10785] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1637'.
[  531.048052][T10785] ip6erspan0: entered promiscuous mode
[  531.732912][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[  531.739496][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  533.244915][T10808] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1649'.
[  534.586798][T10818] loop2: detected capacity change from 0 to 40427
[  534.636545][T10818] F2FS-fs (loop2): invalid crc value
[  535.050846][T10818] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  535.094121][T10818] F2FS-fs (loop2): Start checkpoint disabled!
[  535.123131][T10818] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[  535.236906][T10827] syz.2.1650: attempt to access beyond end of device
[  535.236906][T10827] loop2: rw=10241, sector=45096, nr_sectors = 8 limit=40427
[  536.902333][ T3735] kworker/u8:14: attempt to access beyond end of device
[  536.902333][ T3735] loop2: rw=1, sector=77824, nr_sectors = 2048 limit=40427
[  537.122118][ T3735] kworker/u8:14: attempt to access beyond end of device
[  537.122118][ T3735] loop2: rw=1, sector=79872, nr_sectors = 2048 limit=40427
[  537.329392][ T3735] kworker/u8:14: attempt to access beyond end of device
[  537.329392][ T3735] loop2: rw=1, sector=49152, nr_sectors = 2048 limit=40427
[  537.684304][ T3735] kworker/u8:14: attempt to access beyond end of device
[  537.684304][ T3735] loop2: rw=1, sector=51200, nr_sectors = 2048 limit=40427
[  537.927771][T10843] loop6: detected capacity change from 0 to 32768
[  537.945949][T10843] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.1660 (10843)
[  538.026044][T10843] BTRFS info (device loop6): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  538.036625][T10843] BTRFS info (device loop6): using sha256 (sha256-lib) checksum algorithm
[  538.048270][ T3735] kworker/u8:14: attempt to access beyond end of device
[  538.048270][ T3735] loop2: rw=1, sector=57344, nr_sectors = 2048 limit=40427
[  538.070190][    C1] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  538.295130][ T3735] kworker/u8:14: attempt to access beyond end of device
[  538.295130][ T3735] loop2: rw=1, sector=59392, nr_sectors = 2016 limit=40427
[  538.316817][T10843] BTRFS info (device loop6): rebuilding free space tree
[  538.342796][ T3735] kworker/u8:14: attempt to access beyond end of device
[  538.342796][ T3735] loop2: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  538.361814][ T3735] CPU: 1 UID: 0 PID: 3735 Comm: kworker/u8:14 Not tainted syzkaller #0 PREEMPT(none) 
[  538.361950][ T3735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  538.362045][ T3735] Workqueue: writeback wb_workfn (flush-7:2)
[  538.362237][ T3735] Call Trace:
[  538.362281][ T3735]  <TASK>
[  538.362328][ T3735]  __dump_stack+0x26/0x30
[  538.362469][ T3735]  dump_stack_lvl+0x1df/0x270
[  538.362619][ T3735]  dump_stack+0x1e/0x25
[  538.362748][ T3735]  f2fs_handle_critical_error+0xa6f/0xc20
[  538.362908][ T3735]  f2fs_stop_checkpoint+0x65/0x80
[  538.363038][ T3735]  f2fs_write_end_io+0x101c/0x1bc0
[  538.363207][ T3735]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  538.363335][ T3735]  bio_endio+0xeb4/0x1010
[  538.363475][ T3735]  submit_bio_noacct+0x2009/0x2930
[  538.363658][ T3735]  submit_bio+0x57c/0x630
[  538.363800][ T3735]  f2fs_submit_write_bio+0x92/0x250
[  538.363975][ T3735]  __submit_merged_bio+0x16f/0x6a0
[  538.364133][ T3735]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  538.364286][ T3735]  __submit_merged_write_cond+0x458/0x9a0
[  538.364473][ T3735]  f2fs_write_data_pages+0x4bb2/0x5480
[  538.364716][ T3735]  ? kmsan_get_metadata+0xfb/0x160
[  538.364855][ T3735]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  538.365014][ T3735]  ? kmsan_get_metadata+0xfb/0x160
[  538.365152][ T3735]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  538.365306][ T3735]  ? kmsan_get_metadata+0xfb/0x160
[  538.365449][ T3735]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[  538.365589][ T3735]  ? kmsan_get_metadata+0xfb/0x160
[  538.365732][ T3735]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  538.365886][ T3735]  ? kmsan_get_metadata+0xfb/0x160
[  538.366026][ T3735]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  538.366164][ T3735]  ? kmsan_get_metadata+0xfb/0x160
[  538.366297][ T3735]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  538.366437][ T3735]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  538.366559][ T3735]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  538.366681][ T3735]  do_writepages+0x3f2/0x860
[  538.366844][ T3735]  ? stack_depot_save_flags+0x35/0x7b0
[  538.367004][ T3735]  ? kmsan_get_metadata+0xfb/0x160
[  538.367143][ T3735]  ? kmsan_get_metadata+0xfb/0x160
[  538.367305][ T3735]  __writeback_single_inode+0x101/0x1190
[  538.367448][ T3735]  ? kmsan_get_metadata+0xfb/0x160
[  538.367596][ T3735]  writeback_sb_inodes+0xac1/0x1cb0
[  538.367856][ T3735]  wb_writeback+0x4ce/0xc00
[  538.368001][ T3735]  ? queue_io+0x481/0x790
[  538.368130][ T3735]  wb_workfn+0x397/0x1910
[  538.368291][ T3735]  ? kmsan_get_metadata+0xfb/0x160
[  538.368456][ T3735]  ? __pfx_wb_workfn+0x10/0x10
[  538.368607][ T3735]  process_scheduled_works+0xb8e/0x1d80
[  538.368851][ T3735]  worker_thread+0xedf/0x1590
[  538.369011][ T3735]  kthread+0xd59/0xf00
[  538.369127][ T3735]  ? __pfx_worker_thread+0x10/0x10
[  538.369272][ T3735]  ? __pfx_kthread+0x10/0x10
[  538.369394][ T3735]  ret_from_fork+0x233/0x380
[  538.369506][ T3735]  ? __pfx_kthread+0x10/0x10
[  538.369632][ T3735]  ret_from_fork_asm+0x1a/0x30
[  538.369798][ T3735]  </TASK>
[  538.462479][    C0] vcan0: j1939_tp_rxtimer: 0xffff88801e2bf600: rx timeout, send abort
[  538.473574][ T3735] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  538.903586][T10843] BTRFS info (device loop6): enabling ssd optimizations
[  538.911068][T10843] BTRFS info (device loop6): turning on sync discard
[  538.917925][T10843] BTRFS info (device loop6): enabling free space tree
[  538.925164][T10843] BTRFS info (device loop6): force clearing of disk cache
[  538.932560][T10843] BTRFS info (device loop6): enabling auto defrag
[  538.939142][T10843] BTRFS info (device loop6): max_inline set to 0
[  538.963196][    C0] vcan0: j1939_tp_rxtimer: 0xffff88804e31b800: rx timeout, send abort
[  538.978557][    C0] vcan0: j1939_tp_rxtimer: 0xffff88801e2bf600: abort rx timeout. Force session deactivation
[  539.471712][    C0] vcan0: j1939_tp_rxtimer: 0xffff88804e31b800: abort rx timeout. Force session deactivation
[  539.526647][ T8845] BTRFS info (device loop6): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  540.167902][T10878] syz_tun: entered allmulticast mode
[  540.254127][T10877] syz_tun: left allmulticast mode
[  540.417480][T10884] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1671'.
[  540.426929][T10884] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1671'.
[  542.846436][T10913] loop2: detected capacity change from 0 to 512
[  542.898278][T10913] ext2: Unknown parameter 'rootcontext'
[  543.869017][ T1873] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  543.960017][   T42] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[  544.105575][ T1873] usb 7-1: Using ep0 maxpacket: 8
[  544.116845][ T1873] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  544.127359][ T1873] usb 7-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a
[  544.136822][ T1873] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  544.159956][   T42] usb 3-1: Using ep0 maxpacket: 8
[  544.177774][   T42] usb 3-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c
[  544.191057][   T42] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  544.199250][   T42] usb 3-1: Product: syz
[  544.204964][   T42] usb 3-1: Manufacturer: syz
[  544.209889][   T42] usb 3-1: SerialNumber: syz
[  544.232466][ T1873] usb 7-1: config 0 descriptor??
[  544.259859][ T1873] gspca_main: vc032x-2.14.0 probing 046d:0892
[  544.284169][   T42] usb 3-1: config 0 descriptor??
[  544.342267][   T42] gspca_main: se401-2.14.0 probing 047d:5003
[  544.710715][   T42] gspca_se401: Frame size: 0x2 1/4th janggu
[  544.717103][   T42] gspca_se401: Frame size: 0x127 bayer
[  544.722968][   T42] gspca_se401: Frame size: 256x0 bayer
[  544.728667][   T42] gspca_se401: Frame size: 0x0 1/16th janggu
[  544.734972][   T42] gspca_se401: Frame size: 0x4 bayer
[  545.012037][   T42] input: se401 as /devices/platform/dummy_hcd.2/usb3/3-1/input/input10
[  545.101516][   T42] usb 3-1: USB disconnect, device number 15
[  545.197893][T10937] overlayfs: failed to clone upperpath
[  545.712461][T10944] sctp: [Deprecated]: syz.5.1695 (pid 10944) Use of struct sctp_assoc_value in delayed_ack socket option.
[  545.712461][T10944] Use struct sctp_sack_info instead
[  545.760353][ T1873] usb 7-1: USB disconnect, device number 3
[  549.537658][T10997] netlink: 152 bytes leftover after parsing attributes in process `syz.2.1717'.
[  551.904668][T11023] loop6: detected capacity change from 0 to 40427
[  551.928655][T11023] F2FS-fs (loop6): build fault injection rate: 14
[  551.935422][T11023] F2FS-fs (loop6): build fault injection type: 0x3bfe8c
[  551.951178][T11023] F2FS-fs (loop6): invalid crc value
[  551.984363][    C0] F2FS-fs (loop6): inject read IO error in f2fs_read_end_io of bio_endio+0xeb4/0x1010
[  552.019760][    C0] F2FS-fs (loop6): inject read IO error in f2fs_read_end_io of bio_endio+0xeb4/0x1010
[  552.257159][T11023] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  552.266461][T11023] F2FS-fs (loop6): inject page alloc in f2fs_grab_cache_folio of f2fs_get_tmp_folio+0x38/0x50
[  552.289885][T11023] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  552.478808][    C0] F2FS-fs (loop6): inject write IO error in f2fs_write_end_io of bio_endio+0xeb4/0x1010
[  552.488925][    C0] CPU: 0 UID: 0 PID: 4271 Comm: kworker/u8:23 Not tainted syzkaller #0 PREEMPT(none) 
[  552.489063][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  552.489163][    C0] Workqueue: events_unbound cfg80211_wiphy_work
[  552.489337][    C0] Call Trace:
[  552.489382][    C0]  <IRQ>
[  552.489430][    C0]  __dump_stack+0x26/0x30
[  552.489569][    C0]  dump_stack_lvl+0x1df/0x270
[  552.489727][    C0]  dump_stack+0x1e/0x25
[  552.489858][    C0]  f2fs_handle_critical_error+0xa6f/0xc20
[  552.490020][    C0]  f2fs_stop_checkpoint+0x65/0x80
[  552.490147][    C0]  f2fs_write_end_io+0x101c/0x1bc0
[  552.490320][    C0]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  552.490446][    C0]  bio_endio+0xeb4/0x1010
[  552.490586][    C0]  blk_update_request+0xf4c/0x1a90
[  552.490818][    C0]  blk_mq_end_request+0x50/0xb0
[  552.490938][    C0]  blk_flush_complete_seq+0xb1d/0x1940
[  552.491085][    C0]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[  552.491244][    C0]  flush_end_io+0x12c3/0x17b0
[  552.491399][    C0]  ? __pfx_flush_end_io+0x10/0x10
[  552.491520][    C0]  __blk_mq_end_request+0x600/0x9e0
[  552.491662][    C0]  blk_mq_end_request+0x6e/0xb0
[  552.491786][    C0]  lo_complete_rq+0x188/0x3a0
[  552.491917][    C0]  ? __pfx_lo_complete_rq+0x10/0x10
[  552.492042][    C0]  blk_done_softirq+0x112/0x1f0
[  552.492201][    C0]  ? __pfx_blk_done_softirq+0x10/0x10
[  552.492357][    C0]  handle_softirqs+0x169/0x6e0
[  552.492511][    C0]  __do_softirq+0x14/0x1b
[  552.492674][    C0]  do_softirq+0x99/0x100
[  552.492794][    C0]  </IRQ>
[  552.492844][    C0]  <TASK>
[  552.492894][    C0]  __local_bh_enable_ip+0xa1/0xb0
[  552.493024][    C0]  _raw_spin_unlock_bh+0x2d/0x40
[  552.493177][    C0]  cfg80211_inform_single_bss_data+0x216c/0x2870
[  552.493397][    C0]  cfg80211_inform_bss_data+0x29b/0x7e60
[  552.493609][    C0]  ? kmsan_get_metadata+0xfb/0x160
[  552.493755][    C0]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  552.493903][    C0]  ? rhltable_lookup+0x91/0x8a0
[  552.494026][    C0]  ? filter_irq_stacks+0x49/0x190
[  552.494154][    C0]  ? kmsan_get_metadata+0xfb/0x160
[  552.494295][    C0]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  552.494458][    C0]  ? kmsan_get_metadata+0xfb/0x160
[  552.494622][    C0]  cfg80211_inform_bss_frame_data+0x6cd/0xaa0
[  552.494779][    C0]  ? try_to_merge_one_page+0x2100/0x2a60
[  552.494965][    C0]  ieee80211_bss_info_update+0x8aa/0xab0
[  552.495179][    C0]  ieee80211_ibss_rx_queued_mgmt+0x2b83/0x3f70
[  552.495373][    C0]  ? stack_depot_save_flags+0x35/0x7b0
[  552.495579][    C0]  ieee80211_iface_work+0x11c7/0x1e70
[  552.495739][    C0]  ? __pfx_ieee80211_iface_work+0x10/0x10
[  552.495872][    C0]  cfg80211_wiphy_work+0x344/0x850
[  552.496043][    C0]  ? __pfx_cfg80211_wiphy_work+0x10/0x10
[  552.496201][    C0]  process_scheduled_works+0xb8e/0x1d80
[  552.496430][    C0]  worker_thread+0xedf/0x1590
[  552.496578][    C0]  kthread+0xd59/0xf00
[  552.496707][    C0]  ? __pfx_worker_thread+0x10/0x10
[  552.496853][    C0]  ? __pfx_kthread+0x10/0x10
[  552.496982][    C0]  ret_from_fork+0x233/0x380
[  552.497098][    C0]  ? __pfx_kthread+0x10/0x10
[  552.497225][    C0]  ret_from_fork_asm+0x1a/0x30
[  552.497402][    C0]  </TASK>
[  552.497455][    C0] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  552.815426][ T8845] F2FS-fs (loop6): do_checkpoint failed err:-5, stop checkpoint
[  553.735323][T11042] loop5: detected capacity change from 0 to 32768
[  553.891494][T11042] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  554.206851][ T7081] ocfs2: Unmounting device (7,5) on (node local)
[  555.148273][T11061] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  555.155919][T11061] overlayfs: failed to set xattr on upper
[  555.162103][T11061] overlayfs: ...falling back to redirect_dir=nofollow.
[  555.169293][T11061] overlayfs: ...falling back to metacopy=off.
[  555.175723][T11061] overlayfs: ...falling back to index=off.
[  555.181897][T11061] overlayfs: ...falling back to uuid=null.
[  555.556049][T11068] IPv4: Oversized IP packet from 127.202.26.0
[  557.920569][   T35] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  558.568708][T11092] vivid-001: disconnect
[  558.601958][T11092] vivid-001: reconnect
[  560.254034][T11126] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1769'.
[  560.328256][T11127] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1767'.
[  560.337872][T11127] netlink: 'syz.5.1767': attribute type 7 has an invalid length.
[  560.346193][T11127] netlink: 'syz.5.1767': attribute type 8 has an invalid length.
[  560.354224][T11127] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1767'.
[  560.434558][T11129] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only
[  560.444307][T11129] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  560.971810][T11135] netlink: 76 bytes leftover after parsing attributes in process `syz.6.1773'.
[  561.398348][T11145] netlink: 'syz.4.1777': attribute type 1 has an invalid length.
[  561.406843][T11145] netlink: 'syz.4.1777': attribute type 4 has an invalid length.
[  561.415000][T11145] netlink: 9462 bytes leftover after parsing attributes in process `syz.4.1777'.
[  561.511778][T11148] loop6: detected capacity change from 0 to 512
[  561.649361][T11148] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  561.663025][T11148] ext4 filesystem being mounted at /137/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  561.860575][T11148] fs-verity (loop6, inode 15): Unrecognized descriptor size: 0 bytes
[  561.921627][T11154] fs-verity (loop6, inode 15): Unrecognized descriptor size: 0 bytes
[  562.139255][ T8845] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  563.109195][T11166] loop6: detected capacity change from 0 to 32768
[  563.148491][T11166] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.1784 (11166)
[  563.227763][T11166] BTRFS info (device loop6): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  563.239492][T11166] BTRFS info (device loop6): using crc32c (crc32c-lib) checksum algorithm
[  563.500956][T11166] BTRFS info (device loop6): setting nodatasum
[  563.507319][T11166] BTRFS info (device loop6): enabling free space tree
[  563.960254][ T8845] BTRFS info (device loop6): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  566.772333][T11235] loop2: detected capacity change from 0 to 512
[  566.785907][   T30] audit: type=1804 audit(1759473361.458:159): pid=11237 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.1802" name="file0" dev="tmpfs" ino=2212 res=1 errno=0
[  566.807387][   T30] audit: type=1800 audit(1759473361.458:160): pid=11237 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1802" name="file0" dev="tmpfs" ino=2212 res=0 errno=0
[  566.865698][T11235] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  567.132618][T11235] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  567.145838][T11235] ext4 filesystem being mounted at /354/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  567.483386][ T5797] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  568.647290][T11255] loop5: detected capacity change from 0 to 32768
[  568.660955][T11255] btrfs: Deprecated parameter 'usebackuproot'
[  568.667217][T11255] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  568.701995][T11255] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.1807 (11255)
[  568.732911][T11255] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  568.743398][T11255] BTRFS info (device loop5): using crc32c (crc32c-lib) checksum algorithm
[  568.900345][ T3812] BTRFS warning (device loop5): checksum verify failed on logical 5332992 mirror 1 wanted 0x0a5e5d25 found 0x32f839c6 level 0
[  568.914310][T11255] BTRFS warning (device loop5): couldn't read tree root
[  568.920366][ T1677] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  568.921577][T11255] BTRFS warning (device loop5): try to load backup roots slot 1
[  569.016379][ T3812] BTRFS warning (device loop5): checksum verify failed on logical 5316608 mirror 1 wanted 0x5387c9d6 found 0xc5289bf1 level 0
[  569.030349][T11255] BTRFS error (device loop5): failed to load root extent
[  569.037644][T11255] BTRFS warning (device loop5): try to load backup roots slot 2
[  569.097925][ T1677] usb 3-1: Using ep0 maxpacket: 32
[  569.101848][ T3812] BTRFS error (device loop5): level verify failed on logical 5255168 mirror 1 wanted 0 found 1
[  569.114290][T11255] BTRFS warning (device loop5): couldn't read tree root
[  569.121768][T11255] BTRFS warning (device loop5): try to load backup roots slot 3
[  569.123953][ T1677] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  569.140967][ T1677] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  569.151146][ T1677] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  569.160681][ T1677] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  569.279303][T11255] BTRFS info (device loop5): rebuilding free space tree
[  569.325675][T11255] BTRFS info (device loop5): checking UUID tree
[  569.358301][T11255] BTRFS info (device loop5): allowing degraded mounts
[  569.365472][T11255] BTRFS info (device loop5): enabling ssd optimizations
[  569.373000][T11255] BTRFS info (device loop5): enabling free space tree
[  569.386344][T11255] BTRFS info (device loop5): force clearing of disk cache
[  569.393745][T11255] BTRFS info (device loop5): trying to use backup root at mount time
[  569.402126][ T1677] usb 3-1: config 0 descriptor??
[  569.407219][T11255] BTRFS info (device loop5): use zlib compression, level 3
[  569.420775][ T1677] hub 3-1:0.0: USB hub found
[  569.540664][   T30] audit: type=1800 audit(1759473364.198:161): pid=11255 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1807" name="file1" dev="loop5" ino=257 res=0 errno=0
[  569.633601][ T1677] hub 3-1:0.0: 1 port detected
[  569.986978][ T7081] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  570.405049][T11290] loop6: detected capacity change from 0 to 128
[  570.461646][ T1677] hub 3-1:0.0: activate --> -90
[  570.511593][T11290] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  570.976239][ T1873] usb 3-1: USB disconnect, device number 16
[  571.190771][ T1677] usb 3-1-port1: config error
[  571.956660][T11305] netlink: 'syz.2.1824': attribute type 1 has an invalid length.
[  572.128445][T11311] netlink: 'syz.6.1825': attribute type 3 has an invalid length.
[  572.203324][T11313] bond1: (slave vcan1): The slave device specified does not support setting the MAC address
[  572.213865][T11313] bond1: (slave vcan1): Setting fail_over_mac to active for active-backup mode
[  572.234656][T11313] bond1: (slave vcan1): making interface the new active one
[  572.246436][T11313] bond1: (slave vcan1): Enslaving as an active interface with an up link
[  572.900400][ T1873] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  573.095563][ T1873] usb 7-1: Using ep0 maxpacket: 32
[  573.139490][ T1873] usb 7-1: config 0 has an invalid interface number: 184 but max is 0
[  573.148159][ T1873] usb 7-1: config 0 has no interface number 0
[  573.154744][ T1873] usb 7-1: config 0 interface 184 has no altsetting 0
[  573.247913][ T1873] usb 7-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  573.257530][ T1873] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  573.270544][ T1873] usb 7-1: Product: syz
[  573.274895][ T1873] usb 7-1: Manufacturer: syz
[  573.281251][ T1873] usb 7-1: SerialNumber: syz
[  573.323060][ T1873] usb 7-1: config 0 descriptor??
[  573.412294][ T1873] smsc75xx v1.0.0
[  574.208212][T11334] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1835'.
[  574.363264][T11334] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1835'.
[  575.411112][ T1873] smsc75xx 7-1:0.184 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000040: -71
[  575.428906][ T1873] smsc75xx 7-1:0.184 (unnamed net_device) (uninitialized): Error writing E2P_CMD
[  575.441875][ T1873] smsc75xx 7-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[  575.453039][ T1873] smsc75xx 7-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71
[  575.463184][ T1873] smsc75xx 7-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_reset
[  575.473739][ T1873] smsc75xx 7-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[  575.484198][ T1873] smsc75xx 7-1:0.184: probe with driver smsc75xx failed with error -71
[  575.662820][ T1873] usb 7-1: USB disconnect, device number 4
[  576.050586][T11349] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1839'.
[  576.107365][T11351] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1839'.
[  579.499382][T11440] netlink: 36 bytes leftover after parsing attributes in process `syz.6.1848'.
[  579.807254][T11445] overlayfs: failed to clone upperpath
[  581.083367][T11464] loop2: detected capacity change from 0 to 4096
[  582.395053][T11488] loop2: detected capacity change from 0 to 512
[  582.452509][T11488] EXT4-fs: Ignoring removed orlov option
[  582.473170][T11488] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  582.532690][T11488] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002]
[  582.614882][T11488] EXT4-fs error (device loop2): ext4_iget_extra_inode:5104: inode #15: comm syz.2.1865: corrupted in-inode xattr: e_value size too large
[  582.691252][T11488] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.1865: couldn't read orphan inode 15 (err -117)
[  582.742775][T11488] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  582.830196][ T1677] IPVS: starting estimator thread 0...
[  582.920908][T11496] IPVS: using max 240 ests per chain, 12000 per kthread
[  583.063465][ T5797] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  583.845331][   T30] audit: type=1326 audit(1759473378.528:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11506 comm="syz.4.1872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6f8d8eec9 code=0x7ffc0000
[  583.867957][    C0] vkms_vblank_simulate: vblank timer overrun
[  583.874759][   T30] audit: type=1326 audit(1759473378.528:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11506 comm="syz.4.1872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6f8d8eec9 code=0x7ffc0000
[  584.089917][   T30] audit: type=1326 audit(1759473378.608:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11506 comm="syz.4.1872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff6f8d8eec9 code=0x7ffc0000
[  584.115208][   T30] audit: type=1326 audit(1759473378.618:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11506 comm="syz.4.1872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6f8d8eec9 code=0x7ffc0000
[  584.139308][   T30] audit: type=1326 audit(1759473378.618:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11506 comm="syz.4.1872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6f8d8eec9 code=0x7ffc0000
[  584.162974][   T30] audit: type=1326 audit(1759473378.628:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11506 comm="syz.4.1872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7ff6f8d8eec9 code=0x7ffc0000
[  584.185494][    C0] vkms_vblank_simulate: vblank timer overrun
[  584.192262][   T30] audit: type=1326 audit(1759473378.628:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11506 comm="syz.4.1872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6f8d8eec9 code=0x7ffc0000
[  584.215288][    C0] vkms_vblank_simulate: vblank timer overrun
[  584.227151][   T30] audit: type=1326 audit(1759473378.628:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11506 comm="syz.4.1872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6f8d8eec9 code=0x7ffc0000
[  584.249785][    C0] vkms_vblank_simulate: vblank timer overrun
[  584.256492][   T30] audit: type=1326 audit(1759473378.628:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11506 comm="syz.4.1872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ff6f8d8eec9 code=0x7ffc0000
[  584.279841][   T30] audit: type=1326 audit(1759473378.628:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11506 comm="syz.4.1872" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff6f8d8eec9 code=0x7ffc0000
[  584.302363][    C0] vkms_vblank_simulate: vblank timer overrun
[  588.067247][T11570] netlink: 180 bytes leftover after parsing attributes in process `syz.5.1897'.
[  588.161484][T11570] netlink: 180 bytes leftover after parsing attributes in process `syz.5.1897'.
[  590.436104][T11596] loop6: detected capacity change from 0 to 40427
[  590.507803][T11418] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  590.561468][T11596] F2FS-fs (loop6): build fault injection rate: 690
[  590.630659][T11596] F2FS-fs (loop6): invalid crc value
[  590.892576][T11596] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  590.923830][T11596] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  590.941429][   T30] kauditd_printk_skb: 7 callbacks suppressed
[  590.941500][   T30] audit: type=1800 audit(1759473385.628:179): pid=11596 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1909" name="file1" dev="loop6" ino=10 res=0 errno=0
[  591.056105][ T8845] syz-executor: attempt to access beyond end of device
[  591.056105][ T8845] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  591.070843][ T8845] CPU: 1 UID: 0 PID: 8845 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(none) 
[  591.070972][ T8845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  591.071045][ T8845] Call Trace:
[  591.071088][ T8845]  <TASK>
[  591.071129][ T8845]  __dump_stack+0x26/0x30
[  591.071268][ T8845]  dump_stack_lvl+0x1df/0x270
[  591.071421][ T8845]  dump_stack+0x1e/0x25
[  591.071543][ T8845]  f2fs_handle_critical_error+0xa6f/0xc20
[  591.071705][ T8845]  f2fs_stop_checkpoint+0x65/0x80
[  591.071832][ T8845]  f2fs_write_end_io+0x101c/0x1bc0
[  591.072002][ T8845]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  591.072131][ T8845]  bio_endio+0xeb4/0x1010
[  591.072265][ T8845]  submit_bio_noacct+0x2009/0x2930
[  591.072446][ T8845]  submit_bio+0x57c/0x630
[  591.072581][ T8845]  f2fs_submit_write_bio+0x92/0x250
[  591.072755][ T8845]  __submit_merged_bio+0x16f/0x6a0
[  591.072923][ T8845]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  591.073085][ T8845]  __submit_merged_write_cond+0x458/0x9a0
[  591.073274][ T8845]  f2fs_write_data_pages+0x4bb2/0x5480
[  591.073529][ T8845]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  591.073688][ T8845]  ? folios_put_refs+0x51/0xb10
[  591.073832][ T8845]  ? filter_irq_stacks+0x49/0x190
[  591.073967][ T8845]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  591.074119][ T8845]  ? stack_depot_save_flags+0x35/0x7b0
[  591.074248][ T8845]  ? kmsan_get_metadata+0xfb/0x160
[  591.074401][ T8845]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[  591.074538][ T8845]  ? kmsan_get_metadata+0xfb/0x160
[  591.074686][ T8845]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  591.074826][ T8845]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  591.074951][ T8845]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  591.075076][ T8845]  do_writepages+0x3f2/0x860
[  591.075248][ T8845]  ? _raw_spin_unlock+0x30/0x50
[  591.075388][ T8845]  ? wbc_attach_and_unlock_inode+0x131/0x680
[  591.075579][ T8845]  filemap_fdatawrite+0x207/0x260
[  591.075784][ T8845]  f2fs_sync_dirty_inodes+0x2ab/0x9e0
[  591.075953][ T8845]  f2fs_write_checkpoint+0xfe2/0x2b00
[  591.076231][ T8845]  kill_f2fs_super+0x2ff/0x970
[  591.076388][ T8845]  ? __pfx_kill_f2fs_super+0x10/0x10
[  591.076528][ T8845]  deactivate_locked_super+0xcb/0x3c0
[  591.076697][ T8845]  deactivate_super+0x12f/0x140
[  591.076835][ T8845]  cleanup_mnt+0x6fb/0x780
[  591.076988][ T8845]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[  591.077154][ T8845]  ? __pfx___cleanup_mnt+0x10/0x10
[  591.077329][ T8845]  __cleanup_mnt+0x22/0x30
[  591.077487][ T8845]  task_work_run+0x206/0x2b0
[  591.077645][ T8845]  exit_to_user_mode_loop+0x2d1/0x370
[  591.077816][ T8845]  do_syscall_64+0x1e3/0x210
[  591.077950][ T8845]  ? irqentry_exit+0x16/0x60
[  591.078106][ T8845]  ? clear_bhb_loop+0x40/0x90
[  591.078241][ T8845]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  591.078374][ T8845] RIP: 0033:0x7f9cd47901f7
[  591.078468][ T8845] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  591.078573][ T8845] RSP: 002b:00007ffef466b498 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  591.078698][ T8845] RAX: 0000000000000000 RBX: 00007f9cd4811d7d RCX: 00007f9cd47901f7
[  591.078776][ T8845] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffef466b550
[  591.078850][ T8845] RBP: 00007ffef466b550 R08: 0000000000000000 R09: 0000000000000000
[  591.078924][ T8845] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffef466c5e0
[  591.079004][ T8845] R13: 00007f9cd4811d7d R14: 0000000000090479 R15: 00007ffef466c620
[  591.079117][ T8845]  </TASK>
[  591.079166][ T8845] F2FS-fs (loop6): Stopped filesystem due to reason: 3
[  591.880712][T11615] loop2: detected capacity change from 0 to 32768
[  591.994000][T11615] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.1916 (11615)
[  592.132147][T11615] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  592.142829][T11615] BTRFS info (device loop2): using crc32c (crc32c-lib) checksum algorithm
[  592.727744][T11615] BTRFS info (device loop2): setting nodatasum
[  592.734371][T11615] BTRFS info (device loop2): setting nodatacow
[  592.740931][T11615] BTRFS info (device loop2): enabling free space tree
[  592.747871][T11615] BTRFS info (device loop2): max_inline set to 0
[  593.056626][ T5797] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  593.134473][ T1291] ieee802154 phy0 wpan0: encryption failed: -22
[  593.141324][ T1291] ieee802154 phy1 wpan1: encryption failed: -22
[  593.231235][T11647] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1923'.
[  593.292604][T11647] mac80211_hwsim hwsim11 wlan1: entered promiscuous mode
[  593.311155][T11647] mac80211_hwsim hwsim11 wlan1: left promiscuous mode
[  593.431863][T11648] loop6: detected capacity change from 0 to 7
[  593.476546][T11648] Dev loop6: unable to read RDB block 7
[  593.483684][T11648]  loop6: unable to read partition table
[  593.552338][T11648] loop6: partition table beyond EOD, truncated
[  593.558895][T11648] loop_reread_partitions: partition scan of loop6 (þ被xü—ŸÑà– ) failed (rc=-5)
[  595.394629][T11672] loop2: detected capacity change from 0 to 512
[  595.561953][T11672] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  595.575122][T11672] ext4 filesystem being mounted at /382/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  596.010703][T11679] netlink: 'syz.1.1935': attribute type 5 has an invalid length.
[  596.276553][ T5797] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  598.230200][    C1] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  598.701182][T11714] loop2: detected capacity change from 0 to 4096
[  599.660827][ T1677] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  599.850615][ T1677] usb 6-1: Using ep0 maxpacket: 32
[  599.913086][ T1677] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  599.923981][ T1677] usb 6-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  599.937481][ T1677] usb 6-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  599.946953][ T1677] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  600.058624][ T1677] usb 6-1: config 0 descriptor??
[  600.118520][ T1677] hub 6-1:0.0: bad descriptor, ignoring hub
[  600.125906][ T1677] hub 6-1:0.0: probe with driver hub failed with error -5
[  600.140132][ T1677] usbhid 6-1:0.0: couldn't find an input interrupt endpoint
[  600.480607][ T1677] usb 6-1: USB disconnect, device number 8
[  601.389994][   T30] audit: type=1800 audit(1759473396.048:180): pid=11760 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1963" name="bus" dev="tmpfs" ino=2430 res=0 errno=0
[  601.723038][ T1873] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  601.900034][ T1873] usb 2-1: Using ep0 maxpacket: 16
[  601.923486][ T1873] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  601.935326][ T1873] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  601.950138][ T1873] usb 2-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00
[  601.961017][ T1873] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  602.046483][ T1873] usb 2-1: config 0 descriptor??
[  602.484059][ T1873] hid-multitouch 0003:1FD2:6007.000B: unknown main item tag 0x1
[  602.530710][ T1873] hid-multitouch 0003:1FD2:6007.000B: hidraw0: USB HID v0.00 Device [HID 1fd2:6007] on usb-dummy_hcd.1-1/input0
[  602.729153][ T1677] usb 2-1: USB disconnect, device number 15
[  604.683311][T11796] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1978'.
[  604.693442][T11796] netlink: 'syz.4.1978': attribute type 7 has an invalid length.
[  604.702607][T11796] netlink: 'syz.4.1978': attribute type 8 has an invalid length.
[  604.713365][T11796] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1978'.
[  604.736898][T11796] gretap0: entered promiscuous mode
[  604.750357][T11796] batadv_slave_1: entered promiscuous mode
[  604.757228][T11796] batadv_slave_1: left promiscuous mode
[  604.832158][T11796] gretap0: left promiscuous mode
[  605.560289][T11803] fuse: root generation should be zero
[  607.090588][ T1677] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  607.284997][ T1677] usb 2-1: Using ep0 maxpacket: 8
[  607.317059][ T1677] usb 2-1: New USB device found, idVendor=046d, idProduct=c294, bcdDevice= 0.00
[  607.326734][ T1677] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  607.374498][ T1677] usb 2-1: config 0 descriptor??
[  607.385994][T11837] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1997'.
[  607.438374][T11837] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1997'.
[  607.920571][ T1677] logitech 0003:046D:C294.000C: item fetching failed at offset 3/5
[  607.967568][ T1677] logitech 0003:046D:C294.000C: parse failed
[  607.974654][ T1677] logitech 0003:046D:C294.000C: probe with driver logitech failed with error -22
[  608.143731][T11827] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  608.154877][T11827] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  608.197967][ T1873] usb 2-1: USB disconnect, device number 16
[  609.080369][T11861] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[  609.370945][T11873] block nbd1: shutting down sockets
[  609.651043][    C1] =====================================================
[  609.658408][    C1] BUG: KMSAN: uninit-value in netif_skb_features+0x115b/0x2160
[  609.666284][    C1]  netif_skb_features+0x115b/0x2160
[  609.671760][    C1]  validate_xmit_skb+0xb6/0x1d50
[  609.676854][    C1]  __dev_queue_xmit+0x23f8/0x5e60
[  609.682202][    C1]  hsr_forward_skb+0x2162/0x3c40
[  609.687290][    C1]  hsr_handle_frame+0xd6d/0x11a0
[  609.692449][    C1]  __netif_receive_skb_core+0x2040/0x7150
[  609.698371][    C1]  __netif_receive_skb_list_core+0x2f1/0x16b0
[  609.704879][    C1]  netif_receive_skb_list_internal+0xee7/0x1530
[  609.711405][    C1]  napi_complete_done+0x3fb/0x7d0
[  609.716615][    C1]  gro_cell_poll+0x2c9/0x310
[  609.721509][    C1]  __napi_poll+0xda/0x8a0
[  609.725966][    C1]  net_rx_action+0xbc8/0x1c30
[  609.730854][    C1]  handle_softirqs+0x169/0x6e0
[  609.735849][    C1]  __do_softirq+0x14/0x1b
[  609.740478][    C1]  do_softirq+0x99/0x100
[  609.744866][    C1]  __local_bh_enable_ip+0xa1/0xb0
[  609.750151][    C1]  tun_rx_batched+0x889/0x980
[  609.754965][    C1]  tun_get_user+0x5d60/0x6d70
[  609.759956][    C1]  tun_chr_write_iter+0x3e9/0x5c0
[  609.765162][    C1]  vfs_write+0xbdf/0x15d0
[  609.769805][    C1]  __x64_sys_write+0x1fb/0x4d0
[  609.774734][    C1]  x64_sys_call+0x3014/0x3e30
[  609.779764][    C1]  do_syscall_64+0xd9/0x210
[  609.784399][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  609.790561][    C1] 
[  609.792957][    C1] Uninit was created at:
[  609.797386][    C1]  kmem_cache_alloc_node_noprof+0x989/0x16b0
[  609.803705][    C1]  kmalloc_reserve+0x13c/0x4b0
[  609.808640][    C1]  __alloc_skb+0x347/0x7d0
[  609.813349][    C1]  __pskb_copy_fclone+0xcc/0x14d0
[  609.818580][    C1]  hsr_create_tagged_frame+0x32c/0x11b0
[  609.824459][    C1]  hsr_forward_skb+0x16a4/0x3c40
[  609.829636][    C1]  hsr_handle_frame+0xd6d/0x11a0
[  609.834736][    C1]  __netif_receive_skb_core+0x2040/0x7150
[  609.840835][    C1]  __netif_receive_skb_list_core+0x2f1/0x16b0
[  609.847133][    C1]  netif_receive_skb_list_internal+0xee7/0x1530
[  609.853795][    C1]  napi_complete_done+0x3fb/0x7d0
[  609.859016][    C1]  gro_cell_poll+0x2c9/0x310
[  609.863936][    C1]  __napi_poll+0xda/0x8a0
[  609.868398][    C1]  net_rx_action+0xbc8/0x1c30
[  609.873355][    C1]  handle_softirqs+0x169/0x6e0
[  609.878279][    C1]  __do_softirq+0x14/0x1b
[  609.882958][    C1] 
[  609.885377][    C1] CPU: 1 UID: 0 PID: 11876 Comm: syz.2.2011 Not tainted syzkaller #0 PREEMPT(none) 
[  609.895097][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  609.905367][    C1] =====================================================
[  609.912535][    C1] Disabling lock debugging due to kernel taint
[  609.918896][    C1] Kernel panic - not syncing: kmsan.panic set ...
[  609.925454][    C1] CPU: 1 UID: 0 PID: 11876 Comm: syz.2.2011 Tainted: G    B               syzkaller #0 PREEMPT(none) 
[  609.936652][    C1] Tainted: [B]=BAD_PAGE
[  609.940890][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  609.951141][    C1] Call Trace:
[  609.954519][    C1]  <IRQ>
[  609.957457][    C1]  __dump_stack+0x26/0x30
[  609.961957][    C1]  dump_stack_lvl+0x53/0x270
[  609.966714][    C1]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  609.972707][    C1]  dump_stack+0x1e/0x25
[  609.977057][    C1]  vpanic+0x435/0xd30
[  609.981224][    C1]  panic+0x15d/0x160
[  609.985355][    C1]  kmsan_report+0x31c/0x320
[  609.990033][    C1]  ? __msan_warning+0x1b/0x30
[  609.994859][    C1]  ? netif_skb_features+0x115b/0x2160
[  610.000454][    C1]  ? validate_xmit_skb+0xb6/0x1d50
[  610.006013][    C1]  ? __dev_queue_xmit+0x23f8/0x5e60
[  610.011412][    C1]  ? hsr_forward_skb+0x2162/0x3c40
[  610.016691][    C1]  ? hsr_handle_frame+0xd6d/0x11a0
[  610.021971][    C1]  ? __netif_receive_skb_core+0x2040/0x7150
[  610.028062][    C1]  ? __netif_receive_skb_list_core+0x2f1/0x16b0
[  610.034508][    C1]  ? netif_receive_skb_list_internal+0xee7/0x1530
[  610.041148][    C1]  ? napi_complete_done+0x3fb/0x7d0
[  610.046578][    C1]  ? gro_cell_poll+0x2c9/0x310
[  610.051508][    C1]  ? __napi_poll+0xda/0x8a0
[  610.056143][    C1]  ? net_rx_action+0xbc8/0x1c30
[  610.061233][    C1]  ? handle_softirqs+0x169/0x6e0
[  610.066325][    C1]  ? __do_softirq+0x14/0x1b
[  610.071063][    C1]  ? do_softirq+0x99/0x100
[  610.075603][    C1]  ? __local_bh_enable_ip+0xa1/0xb0
[  610.080923][    C1]  ? tun_rx_batched+0x889/0x980
[  610.085901][    C1]  ? tun_get_user+0x5d60/0x6d70
[  610.090922][    C1]  ? tun_chr_write_iter+0x3e9/0x5c0
[  610.096274][    C1]  ? vfs_write+0xbdf/0x15d0
[  610.100908][    C1]  ? __x64_sys_write+0x1fb/0x4d0
[  610.105973][    C1]  ? x64_sys_call+0x3014/0x3e30
[  610.110964][    C1]  ? do_syscall_64+0xd9/0x210
[  610.116111][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  610.122405][    C1]  ? __do_softirq+0x14/0x1b
[  610.127048][    C1]  ? do_softirq+0x99/0x100
[  610.131582][    C1]  ? __local_bh_enable_ip+0xa1/0xb0
[  610.136914][    C1]  ? tun_rx_batched+0x889/0x980
[  610.141887][    C1]  ? tun_get_user+0x5d60/0x6d70
[  610.146923][    C1]  ? tun_chr_write_iter+0x3e9/0x5c0
[  610.152281][    C1]  ? vfs_write+0xbdf/0x15d0
[  610.156957][    C1]  ? __x64_sys_write+0x1fb/0x4d0
[  610.162017][    C1]  ? x64_sys_call+0x3014/0x3e30
[  610.167008][    C1]  ? do_syscall_64+0xd9/0x210
[  610.171803][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  610.178002][    C1]  ? kmem_cache_alloc_node_noprof+0x11/0x16b0
[  610.184213][    C1]  ? kmsan_get_metadata+0xfb/0x160
[  610.189470][    C1]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  610.195449][    C1]  ? should_fail_ex+0x45/0x8a0
[  610.200328][    C1]  ? kmsan_get_metadata+0xfb/0x160
[  610.205589][    C1]  ? kmsan_get_metadata+0xfb/0x160
[  610.210847][    C1]  ? kmsan_get_metadata+0xfb/0x160
[  610.216117][    C1]  ? __pfx_passthru_features_check+0x10/0x10
[  610.222282][    C1]  __msan_warning+0x1b/0x30
[  610.226930][    C1]  netif_skb_features+0x115b/0x2160
[  610.232360][    C1]  validate_xmit_skb+0xb6/0x1d50
[  610.237464][    C1]  ? netdev_core_pick_tx+0x341/0x4f0
[  610.242929][    C1]  __dev_queue_xmit+0x23f8/0x5e60
[  610.248101][    C1]  ? kmsan_get_metadata+0xfb/0x160
[  610.253351][    C1]  ? kmsan_internal_memmove_metadata+0x91/0x230
[  610.259725][    C1]  ? kmsan_get_metadata+0xfb/0x160
[  610.264977][    C1]  ? __dev_queue_xmit+0x30c/0x5e60
[  610.270284][    C1]  hsr_forward_skb+0x2162/0x3c40
[  610.275428][    C1]  hsr_handle_frame+0xd6d/0x11a0
[  610.280526][    C1]  ? __pfx_hsr_handle_frame+0x10/0x10
[  610.286032][    C1]  __netif_receive_skb_core+0x2040/0x7150
[  610.291921][    C1]  ? kmsan_get_metadata+0xfb/0x160
[  610.297189][    C1]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  610.303173][    C1]  ? filter_irq_stacks+0x49/0x190
[  610.308333][    C1]  ? stack_depot_save_flags+0x35/0x7b0
[  610.313967][    C1]  __netif_receive_skb_list_core+0x2f1/0x16b0
[  610.320284][    C1]  netif_receive_skb_list_internal+0xee7/0x1530
[  610.326744][    C1]  napi_complete_done+0x3fb/0x7d0
[  610.331932][    C1]  ? kmsan_get_metadata+0x150/0x160
[  610.337288][    C1]  gro_cell_poll+0x2c9/0x310
[  610.342020][    C1]  ? kmsan_get_metadata+0x150/0x160
[  610.347387][    C1]  ? __pfx_gro_cell_poll+0x10/0x10
[  610.352644][    C1]  __napi_poll+0xda/0x8a0
[  610.357078][    C1]  ? kmsan_get_metadata+0xfb/0x160
[  610.362322][    C1]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  610.368389][    C1]  net_rx_action+0xbc8/0x1c30
[  610.373179][    C1]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  610.379192][    C1]  ? __pfx_net_rx_action+0x10/0x10
[  610.384446][    C1]  handle_softirqs+0x169/0x6e0
[  610.389379][    C1]  __do_softirq+0x14/0x1b
[  610.393860][    C1]  do_softirq+0x99/0x100
[  610.398226][    C1]  </IRQ>
[  610.401237][    C1]  <TASK>
[  610.404270][    C1]  __local_bh_enable_ip+0xa1/0xb0
[  610.409458][    C1]  ? tun_rx_batched+0x16c/0x980
[  610.414878][    C1]  tun_rx_batched+0x889/0x980
[  610.419945][    C1]  ? kmsan_get_metadata+0xfb/0x160
[  610.425249][    C1]  tun_get_user+0x5d60/0x6d70
[  610.430202][    C1]  ? stack_depot_save_flags+0x35/0x7b0
[  610.435790][    C1]  ? kmsan_get_metadata+0xfb/0x160
[  610.441045][    C1]  ? kmsan_get_metadata+0xfb/0x160
[  610.446317][    C1]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[  610.453256][    C1]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  610.459906][    C1]  tun_chr_write_iter+0x3e9/0x5c0
[  610.465195][    C1]  vfs_write+0xbdf/0x15d0
[  610.469724][    C1]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  610.475442][    C1]  __x64_sys_write+0x1fb/0x4d0
[  610.480369][    C1]  x64_sys_call+0x3014/0x3e30
[  610.485198][    C1]  do_syscall_64+0xd9/0x210
[  610.489857][    C1]  ? irqentry_exit+0x16/0x60
[  610.494599][    C1]  ? clear_bhb_loop+0x40/0x90
[  610.499403][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  610.505425][    C1] RIP: 0033:0x7f143398eec9
[  610.509936][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  610.529755][    C1] RSP: 002b:00007f1434754038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  610.538317][    C1] RAX: ffffffffffffffda RBX: 00007f1433be5fa0 RCX: 00007f143398eec9
[  610.546441][    C1] RDX: 000000000000fdef RSI: 00002000000002c0 RDI: 0000000000000005
[  610.554804][    C1] RBP: 00007f1433a11f91 R08: 0000000000000000 R09: 0000000000000000
[  610.562891][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  610.571132][    C1] R13: 00007f1433be6038 R14: 00007f1433be5fa0 R15: 00007ffd6a6cb6a8
[  610.579257][    C1]  </TASK>
[  610.582650][    C1] Kernel Offset: disabled
[  610.587015][    C1] Rebooting in 86400 seconds..