last executing test programs:

6m35.412193831s ago: executing program 1 (id=632):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x8, 0xc, 0x3, 0x1}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x5, r0}, 0x38)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000080)=ANY=[], 0x10448)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r1, 0x0)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x23}, 0x38)

6m34.387373904s ago: executing program 1 (id=635):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000000), r1)
getsockname$packet(r1, &(0x7f0000000240)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x40)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000300)=@newlink={0x3c, 0x10, 0x501, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r2, 0x6001}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipip={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x8, 0x3, @dev={0xac, 0x14, 0x14, 0x36}}]}}}]}, 0x3c}}, 0x84000)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000040)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, r2, 0x12e1b, 0x1a001}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipip={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x8, 0x3, @multicast1}]}}}]}, 0x3c}}, 0x20004000)

6m33.579438006s ago: executing program 1 (id=640):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000000)='/proc/sys/net/\x00\x00v4\x00\x00s/\x92ync_\x00le\xf44.\xab%nN\xd4\xa2\x88\x00\xd1l,'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0)
getdents64(r1, &(0x7f00000004c0)=""/55, 0x37)
getdents64(r1, 0xfffffffffffffffe, 0x29)

6m32.699877672s ago: executing program 1 (id=643):
syz_mount_image$nilfs2(&(0x7f0000000080), &(0x7f0000000280)='./file0\x00', 0x8000, &(0x7f0000000140)=ANY=[@ANYRES16=0x0], 0x11, 0xb0d, &(0x7f0000000d80)="$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")
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000000))
syz_mount_image$fuse(0x0, 0x0, 0x20, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000240)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000002180)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_PWSALT(r0, 0x40086602, &(0x7f0000001240))

6m30.689864974s ago: executing program 1 (id=649):
syz_mount_image$msdos(&(0x7f00000001c0), &(0x7f0000000040)='./file0\x00', 0x120c416, &(0x7f0000000600)={[{@dots}, {@fat=@discard}, {@fat=@nfs_nostale_ro}, {@fat=@nfs}, {@dots}, {@fat=@errors_continue}, {@dots}, {@nodots}, {@dots}, {@dots}, {@fat=@check_strict}, {@nodots}, {@nodots}, {}, {@nodots}, {@fat=@debug}, {@nodots}, {@fat=@showexec}, {@fat=@flush}, {@fat=@umask={'umask', 0x3d, 0x7}}, {@dots}, {@dots}]}, 0x1, 0x1f0, &(0x7f0000000300)="$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")
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r1=>0x0})
sendmsg$DEVLINK_CMD_TRAP_GROUP_GET(0xffffffffffffffff, &(0x7f0000000700)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000580)={0x120, 0x0, 0x20, 0x70bd25, 0x25dfdbfd, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0xd}}, {@pci={{0x8}, {0x11}}, {0xd}}, {@pci={{0x8}, {0x11}}, {0xd}}, {@pci={{0x8}, {0x11}}, {0xd}}, {@pci={{0x8}, {0x11}}, {0xd}}, {@pci={{0x8}, {0x11}}, {0xd}}]}, 0x120}, 0x1, 0x0, 0x0, 0x10}, 0x200c000)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000004c0)=ANY=[@ANYBLOB="a8020000", @ANYRES16=r2, @ANYBLOB="010026bd7000000000003b00000008000300", @ANYRES32=r1, @ANYBLOB="08005700ba0200008402330080200900ffffffffffff080211"], 0x2a8}, 0x1, 0x0, 0x0, 0xc0}, 0x20000080)

6m28.876333028s ago: executing program 1 (id=654):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r1, 0x10e, 0x1, &(0x7f0000000400)=0x1, 0x4)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000000c0)=ANY=[@ANYBLOB="fc000000190001002dbd70000000000000000000000000000000000000000001ac1414aa00000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000c00000000000000000000000000000000000000000000000000000000000000ffffffffffffffff0000000000000000000000000000000000000000000000000000004000000000feffffffff7f40000200000000000008000000000000000001000000000000004400050000000000000000000000000000000000000000003c"], 0xfc}, 0x1, 0x0, 0x0, 0x20000881}, 0x0)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c)

6m25.671946639s ago: executing program 32 (id=654):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r1, 0x10e, 0x1, &(0x7f0000000400)=0x1, 0x4)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000000c0)=ANY=[@ANYBLOB="fc000000190001002dbd70000000000000000000000000000000000000000001ac1414aa00000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000c00000000000000000000000000000000000000000000000000000000000000ffffffffffffffff0000000000000000000000000000000000000000000000000000004000000000feffffffff7f40000200000000000008000000000000000001000000000000004400050000000000000000000000000000000000000000003c"], 0xfc}, 0x1, 0x0, 0x0, 0x20000881}, 0x0)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c)

4m45.102644546s ago: executing program 4 (id=971):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r0, 0x0, 0xc8, &(0x7f0000000000), 0x4)
setsockopt$MRT_FLUSH(r0, 0x0, 0xd4, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_ENABLE(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000080)={0x54, r2, 0x1, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x40, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_UDP_OPTS={0x2c, 0x4, {{0x14, 0x1, @in={0x2, 0x0, @loopback}}, {0x14, 0x2, @in={0x2, 0x0, @multicast2}}}}, @TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x54}}, 0x0)

4m44.320973046s ago: executing program 4 (id=973):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000280)={<r2=>0x0, <r3=>0x0}, &(0x7f00000013c0)=0xc)
sendmmsg$unix(r1, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000440)='1', 0x1}], 0x1, &(0x7f0000001480)=[@cred={{0x1c, 0x1, 0x2, {r2, r3}}}], 0x20, 0x40044}}], 0x1, 0x4)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0x1, 0x10, &(0x7f00000002c0)=0x8001, 0x4)
write$binfmt_elf64(r1, &(0x7f0000000500)=ANY=[], 0x78)
splice(r0, 0x0, r4, 0x0, 0x39000, 0x0)

4m43.456994192s ago: executing program 4 (id=976):
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r1, &(0x7f0000000380)={0xa, 0x14e24}, 0x1c)
connect$inet6(r1, &(0x7f00000002c0)={0xa, 0x4e24}, 0x1c)
sendmmsg$inet6(r1, &(0x7f000000b040)=[{{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000500)="f70200000076f6888e5897176005a36b0861db7ac98810544af379f96ae853e18ceb3880bc4d346fc1b15043d6c001f749df6a0e572d604e908bdfe7acaa387dd6978fdf65b6", 0x46}], 0x1}}, {{0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000180)="8c", 0x1}], 0x1}}], 0x2, 0xc8040)
sendmmsg(r1, &(0x7f0000000240)=[{{0x0, 0x0, 0x0}}], 0x1, 0x200008c1)
splice(r1, 0x0, r0, 0x0, 0x7ffff000, 0x6)

4m42.594363351s ago: executing program 4 (id=980):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000440)=0x7)
syz_mount_image$f2fs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x8, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x1, 0x5505, &(0x7f0000002480)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})

4m40.425557844s ago: executing program 4 (id=989):
open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x1d2)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000640)=ANY=[@ANYBLOB="a8"], 0xa8)
mount$9p_fd(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[{@cache_fscache}, {@access_uid}]}})

4m36.724167864s ago: executing program 4 (id=997):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$x86(r1, &(0x7f0000c00000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$x86(r2, &(0x7f0000000080)={0x0, &(0x7f0000000500)=ANY=[], 0x38})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

4m34.916539921s ago: executing program 33 (id=997):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$x86(r1, &(0x7f0000c00000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$x86(r2, &(0x7f0000000080)={0x0, &(0x7f0000000500)=ANY=[], 0x38})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

4m30.298405302s ago: executing program 5 (id=1019):
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000180)={{{@in=@private, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x89}, {}, {}, 0x0, 0x0, 0x1, 0x0, 0x9833bf88d1b218f5}, {{@in6=@local, 0x0, 0x6c}, 0x0, @in6=@loopback, 0x0, 0x0, 0x0, 0x4}}, 0xe8)
r0 = syz_io_uring_setup(0x10d2, &(0x7f0000000480)={0x0, 0x7734, 0x80, 0x0, 0x34f}, &(0x7f00000000c0)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2d, 0x0, 0x0, 0x6}]}, 0xfffffffffffffeea)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0x50, 0x0, 0x0, 0x0, 0x1})
io_uring_enter(r0, 0x47bc, 0xfac7, 0x0, 0x0, 0x0)

4m29.137907468s ago: executing program 5 (id=1022):
pipe(&(0x7f0000000480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
vmsplice(r1, &(0x7f00000000c0)=[{&(0x7f0000000180)="77690addcfbe1fbb66ec", 0xff3b}], 0x1, 0x1)
r2 = socket$netlink(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="1c000000020303000022657a6e8b48b9000000000800010001"], 0x1c}, 0x1, 0x0, 0x0, 0x400c000}, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)=ANY=[@ANYBLOB="1c000000020303000000000000000000000000100800010001"], 0x1c}}, 0x0)
splice(r0, 0x0, r2, 0x0, 0x10d00, 0xf)

4m28.605683875s ago: executing program 5 (id=1025):
r0 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000680)=@newqdisc={0x24, 0x24, 0x0, 0x0, 0x40000000}, 0x24}}, 0x4000001)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000b00)=@newqdisc={0x48, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x7, 0x8000}}]}}]}, 0x48}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000540)=@newtfilter={0x44, 0x2c, 0x52f, 0x0, 0x25dfdbff, {0x0, 0x0, 0x0, r1, {0x0, 0x4}, {}, {0x8, 0xe}}, [@filter_kind_options=@f_bpf={{0x8}, {0x18, 0x2, [@TCA_BPF_OPS={{0x6, 0x4, 0x1}, {0xc, 0x5, [{0x6, 0xf1, 0x4, 0x2}]}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x2004c8d0}, 0x14)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

4m27.822085178s ago: executing program 5 (id=1027):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffff9, {0x0, 0x0, 0x0, r3, {0x0, 0x1}, {0xffff, 0xffff}, {0xffe0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000380)=@newtfilter={0x54, 0x2c, 0xf3f, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0xb, 0xfff3}, {}, {0x7, 0x300}}, [@filter_kind_options=@f_basic={{0xa}, {0x24, 0x2, [@TCA_BASIC_EMATCHES={0x20, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x1}}, @TCA_EMATCH_TREE_LIST={0x14, 0x2, 0x0, 0x1, [@TCF_EM_IPSET={0x10, 0x1, 0x0, 0x0, {{0x1ff, 0x8, 0x4}, {0x4, 0x5, 0x4}}}]}]}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x20041090}, 0x0)

4m26.54381608s ago: executing program 5 (id=1033):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000100)='proc\x00', 0x4045, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x842cc0, 0x0)

4m25.94449257s ago: executing program 5 (id=1036):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000140)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00304, 0x17)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r1}, 0x10)
arch_prctl$ARCH_MAP_VDSO_32(0x2002, 0x5)

4m10.490526299s ago: executing program 34 (id=1036):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000140)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00304, 0x17)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r1}, 0x10)
arch_prctl$ARCH_MAP_VDSO_32(0x2002, 0x5)

1m46.927350175s ago: executing program 2 (id=1483):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000140)={'lo\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=@newqdisc={0x74, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x44, 0x2, {{0xfffffffb, 0x3, 0x8, 0x3, 0xfffffffd, 0x5}, [@TCA_NETEM_CORRUPT={0xc, 0x4, {0xd9de}}, @TCA_NETEM_REORDER={0xc, 0x3, {0x4, 0x8}}, @TCA_NETEM_CORR={0x10, 0x1, {0x80000000, 0xff, 0xe}}]}}}]}, 0x74}, 0x1, 0x0, 0x0, 0x800}, 0x0)
r3 = socket$inet6(0xa, 0x3, 0x7)
connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendmmsg(r3, &(0x7f0000000480), 0x2e9, 0x0)

1m45.441011849s ago: executing program 2 (id=1487):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/resume', 0x149a82, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000180)='map_files\x00')
fchdir(r1)
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='smaps\x00')
read$FUSE(r2, &(0x7f0000000040)={0x2020}, 0x2020)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
write$cgroup_int(r0, &(0x7f0000000040)=0x800000000001c8, 0x12)

1m43.967185765s ago: executing program 2 (id=1494):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffd5f, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000280)='kvm_unmap_hva_range\x00', r2}, 0x18)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)

1m40.657523458s ago: executing program 2 (id=1503):
r0 = socket(0x2, 0x80805, 0x0)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f0000000040)={0x84, @dev={0xac, 0x14, 0x14, 0x2d}, 0x4e20, 0x3, 'wrr\x00', 0x1, 0x2, 0x6e}, 0x2c)
setsockopt$IP_VS_SO_SET_ADDDEST(r0, 0x0, 0x487, &(0x7f0000000000)={{0x84, @private=0xa010101, 0x4e21, 0x3, 'lc\x00', 0x4, 0x8, 0x77}, {@rand_addr=0x64010102, 0x4e23, 0x2, 0xcd, 0x12d5f, 0x3}}, 0x44)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADDDEST(r2, 0x0, 0x487, &(0x7f0000000580)={{0x84, @multicast2, 0x4e23, 0x3, 'lc\x00', 0x2, 0x4, 0x7e}, {@private=0xa010102, 0x4e20, 0x2, 0xc8, 0x80012d58, 0x12d5c}}, 0x44)
setsockopt$IP_VS_SO_SET_FLUSH(r1, 0x0, 0x485, 0x0, 0x0)

1m39.317048115s ago: executing program 2 (id=1508):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff}, 0x6)
setsockopt$bt_hci_HCI_FILTER(r0, 0x0, 0x2, &(0x7f0000000440)={0x7f, [0xfffffffd, 0x1], 0x9}, 0x10)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r1, 0x400455c8, 0x0)

1m35.888920861s ago: executing program 2 (id=1523):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0x29, &(0x7f0000000100)=0x7ff, 0x4)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000080)=0x475c, 0x4)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x4e1f, @multicast2}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)
recvmmsg(r0, &(0x7f0000005100)=[{{0x0, 0x0, 0x0}, 0xa65}], 0x1, 0x45833af96e4b38dd, 0x0)

1m25.012169503s ago: executing program 3 (id=1552):
r0 = syz_io_uring_setup(0x10b, &(0x7f0000000140)={0x0, 0x334b, 0x1000, 0x20000003, 0x800}, &(0x7f00000003c0)=<r1=>0x0, &(0x7f0000000300)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000540)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, 0xffffffffffffff9c, 0x0, &(0x7f0000000040)='./file0/file0\x00', 0x60, 0x185500, 0x12345})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f00000006c0)='kmem_cache_free\x00', r4}, 0x10)
io_uring_enter(r0, 0x3d94, 0x0, 0x0, 0x0, 0x0)

1m22.873581186s ago: executing program 3 (id=1559):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x2000001, 0x12, r1, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={0xffffffffffffffff, 0x3a, 0x0, 0x0, 0x0, 0x0, 0x401, 0x44000000, 0x0, 0x0, 0x0, 0x0, 0x1, 0xfffffffd, 0x2}, 0x50)
select(0x0, 0x0, 0x0, 0x0, &(0x7f0000000200))

1m21.181119981s ago: executing program 3 (id=1563):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_ep_write(r0, 0x81, 0x0, 0x0)
syz_usb_ep_write(r0, 0x81, 0x0, 0x0)

1m20.419616227s ago: executing program 35 (id=1523):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0x29, &(0x7f0000000100)=0x7ff, 0x4)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000080)=0x475c, 0x4)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x4e1f, @multicast2}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)
recvmmsg(r0, &(0x7f0000005100)=[{{0x0, 0x0, 0x0}, 0xa65}], 0x1, 0x45833af96e4b38dd, 0x0)

1m17.90931021s ago: executing program 3 (id=1569):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x2048c5, &(0x7f0000000400)={[{@shortname_winnt}, {@shortname_winnt}, {@rodir}, {@fat=@quiet}, {@fat=@flush}, {@shortname_winnt}, {@fat=@showexec}, {@fat=@dmask={'dmask', 0x3d, 0x100}}, {@fat=@tz_utc}, {@uni_xlate}, {@utf8no}, {@shortname_winnt}]}, 0x0, 0x27f, &(0x7f0000000e00)="$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")
r0 = syz_open_procfs(0x0, &(0x7f0000000540)='mounts\x00')
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000500)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1333404, 0x0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x11080, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0)
read$FUSE(r0, &(0x7f0000002140)={0x2020}, 0x2100)

1m16.68446357s ago: executing program 3 (id=1572):
syz_io_uring_setup(0x819, &(0x7f0000000180)={0x0, 0x69b5, 0x10100, 0xfffffffe}, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000180)='tlb_flush\x00', r0, 0x0, 0x51}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='tlb_flush\x00', r0, 0x0, 0x6}, 0x18)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600002, 0x600002, 0x7, &(0x7f0000a00000/0x600000)=nil)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)

1m12.351700004s ago: executing program 3 (id=1581):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0xffffffffffffffff, 0x70bd25, 0x25dfd9fb, {0x0, 0x0, 0x0, 0x0, 0x2017, 0x2021}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_FLAGS={0x6, 0x2, 0x1}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x1}, 0x8000002)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000004c0)={'macvlan1\x00', <r1=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="480000001000010025bd7100fddbdf2500000000", @ANYRES32=r1], 0x48}, 0x1, 0x0, 0x0, 0x4004855}, 0x4840)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x800)

1m8.720356245s ago: executing program 36 (id=1581):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=@newlink={0x3c, 0x10, 0xffffffffffffffff, 0x70bd25, 0x25dfd9fb, {0x0, 0x0, 0x0, 0x0, 0x2017, 0x2021}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_FLAGS={0x6, 0x2, 0x1}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x1}, 0x8000002)
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000004c0)={'macvlan1\x00', <r1=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="480000001000010025bd7100fddbdf2500000000", @ANYRES32=r1], 0x48}, 0x1, 0x0, 0x0, 0x4004855}, 0x4840)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x800)

17.991100057s ago: executing program 8 (id=1680):
ioperm(0x1, 0x9, 0xfffffffffffffff8)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
recvmsg$unix(r1, &(0x7f00000004c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$inet(r2, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x0)

16.816422201s ago: executing program 8 (id=1684):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000200)=0x474c, 0x4)
bind$inet(r0, &(0x7f0000000240)={0x2, 0x0, @local}, 0x6f)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x6e27, @multicast1}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x300)
r1 = epoll_create(0x9)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f00000000c0)={0x30000008})

12.503300685s ago: executing program 7 (id=1691):
syz_clone3(&(0x7f0000000080)={0x180801400, &(0x7f0000000000), 0x0, 0x0, {0x3d}, 0x0, 0x0, 0x0, 0x0}, 0x58)
r0 = syz_io_uring_setup(0x10d, &(0x7f0000000980)={0x0, 0x45885, 0x80, 0x0, 0x8}, &(0x7f0000000340)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
write$uinput_user_dev(0xffffffffffffffff, 0x0, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4004, @fd_index=0x3, 0x0, 0x0})
io_uring_enter(r0, 0x3596, 0x0, 0x49, 0x0, 0x0)
wait4(0xffffffffffffffff, 0x0, 0x40000000, 0x0)

12.296656943s ago: executing program 0 (id=1692):
syz_mount_image$msdos(&(0x7f0000001000), &(0x7f00000000c0)='./file0\x00', 0x2000c8, &(0x7f0000001040)=ANY=[@ANYBLOB='codepage=874,nodots,dots,tz=UTC,dots,nodots,codepage=862,dots,dots,check=strict,allow_utime=000000000000000000001,sys_immutable,nodots,nfs,quiet,dots,nodots,nodots,debug,usefree,tz=UTC,flush,nodots,\x00'], 0xfd, 0x1bf, &(0x7f0000000940)="$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")
write$vga_arbiter(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
rename(&(0x7f0000000080)='./file0/file0\x00', &(0x7f00000000c0)='./file1\x00')

12.241009804s ago: executing program 9 (id=1693):
r0 = mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x5d031, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000100))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x5})
syz_kvm_setup_syzos_vm$x86(0xffffffffffffffff, &(0x7f0000bde000/0x400000)=nil)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r0, 0x0, &(0x7f0000000140), 0x0, 0x4)
ioctl$UFFDIO_CONTINUE(r1, 0x8010aa01, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x3000000})

11.319975299s ago: executing program 9 (id=1695):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001000)=ANY=[@ANYBLOB="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"/2574], &(0x7f0000000140)='GPL\x00'}, 0x48)
r1 = socket$kcm(0x2, 0x1, 0x0)
sendmsg$inet(r1, &(0x7f0000000fc0)={&(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x20000811)
r2 = socket$kcm(0x29, 0x2, 0x0)
writev(r2, &(0x7f0000000480)=[{&(0x7f00000001c0)="13", 0x1}], 0x1)
ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f0000000040)={r1, r0})
ioctl$sock_kcm_SIOCKCMUNATTACH(r2, 0x89e1, &(0x7f0000000340)={r1})

10.618893894s ago: executing program 9 (id=1697):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_procs(r1, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='mnt/encrypted_dir\x00', 0x200)
openat$cgroup_int(r0, &(0x7f0000000040)='cpuset.sched_load_balance\x00', 0x2, 0x0)

10.521669552s ago: executing program 0 (id=1698):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000001c0)={0x26, 'aead\x00', 0x0, 0x0, 'gcm(aes)\x00'}, 0x4c)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000300)="c99b57381801238c09d05c164a534308", 0x10)
r1 = accept4(r0, 0x0, 0x0, 0x0)
ioctl$int_in(r1, 0x5452, &(0x7f00000013c0)=0xc7f)
recvmsg$can_raw(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000340)=""/197, 0xc5}], 0x1}, 0x1)
recvmsg$kcm(r1, &(0x7f0000000680)={0x0, 0x0, 0x0}, 0x140)

9.690824324s ago: executing program 9 (id=1700):
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
r0 = semget$private(0x0, 0x7, 0x191)
semtimedop(r0, &(0x7f0000000200)=[{0x0, 0xffff, 0x2000}, {0x4, 0x3, 0x1800}], 0x2, 0x0)
semop(r0, &(0x7f0000000180)=[{0x2, 0x2, 0x800}, {0x3, 0x5, 0x3000}], 0x2)
semop(r0, &(0x7f0000000140)=[{0x2, 0xce97, 0x800}, {0x1, 0x5}], 0x1f4)
semctl$SETALL(r0, 0x0, 0x11, &(0x7f00000002c0))

8.311596984s ago: executing program 0 (id=1702):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
r1 = syz_io_uring_setup(0x82e, &(0x7f0000000300)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r2=>0x0, &(0x7f0000000080)=<r3=>0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r1, 0x16, &(0x7f0000000380)={&(0x7f0000001000)={[{0x0}, {0x0}, {0x0}, {0x0}]}, 0x4}, 0x1)
syz_io_uring_submit(r2, r3, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x20, 0x2, r0, 0x0, &(0x7f00000000c0)={0x0, 0x0, 0x0}})
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x58}, 0x1, 0x40afc, 0x0, 0x40010}, 0x0)
write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000cc0)={'syz1\x00', {0xfff9, 0x2, 0x240, 0x36}, 0x4, [0x7, 0x8, 0x5, 0x9, 0x8, 0x155f, 0x6, 0x5, 0x25cd, 0x1, 0xa4, 0x5, 0x10, 0x6, 0x7, 0xe4, 0x9, 0xfc000000, 0x3, 0xbc2, 0x4a732f64, 0x1000, 0x9, 0xd, 0x2, 0x12a3, 0x6, 0x3, 0x2, 0x4, 0x7, 0x81, 0x8a, 0x79, 0x558e0d31, 0x4, 0x0, 0x91, 0x5, 0x4, 0x7, 0x2, 0x5, 0x400, 0x7ffc, 0x5, 0x7, 0x81, 0x6, 0xf9a2, 0x80000001, 0x7, 0x0, 0x2, 0x2, 0x3, 0x7, 0x1, 0x7ff, 0x4, 0x4007f, 0xffffffff, 0x6, 0x6], [0x9, 0x3, 0x6, 0xdbcf, 0x4, 0xc66, 0xa8a9, 0x73, 0x8e, 0x10001, 0x7, 0x5, 0xf, 0xfffffff3, 0x4, 0x5, 0x1000, 0x800, 0x200b398, 0x400000, 0x0, 0x2, 0x1c, 0x28, 0x1, 0x2, 0x54f5bad8, 0x8, 0xfffffffd, 0x400, 0xffff58b9, 0x4c2336d3, 0x4, 0x0, 0xfffffff8, 0x401, 0x10046, 0xf1, 0x4, 0xab00000, 0x5, 0x6, 0x2, 0x5, 0x7fffffff, 0x1ff, 0x1, 0x1000, 0x10, 0x1cb, 0x1, 0x4, 0x6, 0x438, 0x2, 0x9, 0x2, 0x8000, 0x5, 0x3, 0x200004, 0x1000, 0xfffff801, 0x5], [0x2, 0x1, 0xffff, 0x3, 0x2, 0x2e6bf785, 0x80000001, 0xb, 0x1, 0x491, 0x8d3, 0x6, 0x8, 0x3ff, 0x2, 0x400, 0x40, 0x6, 0x7, 0x7, 0x5, 0x18c, 0x5, 0x9, 0x0, 0x3, 0x9, 0x3, 0xc7, 0xfff, 0x100006, 0x8000, 0x400, 0x3e55, 0xff, 0xd3, 0x7, 0x3435, 0x5, 0x9, 0xfd, 0x401, 0x101, 0x7ff, 0x60a2, 0x17fc, 0x9d26, 0x5, 0x0, 0x2, 0x2, 0x9, 0x8000, 0xf45, 0x3, 0xd500, 0x8, 0x800077, 0x9, 0x7f, 0x810000, 0x1, 0x5, 0x1], [0xa772, 0x1, 0x5, 0x1afa, 0xbfc, 0x8, 0x7c81, 0x7f, 0xfffffff8, 0x40, 0xff, 0x5, 0x7fffffff, 0x7, 0x4, 0x9, 0x81, 0x3, 0x9d86, 0x9, 0xfffffff7, 0x8008, 0x40f1, 0x2, 0x3, 0x101, 0x3b, 0x7777, 0xfff, 0x2, 0x2, 0xd8ce, 0x7fffffff, 0x624dfaee, 0xc, 0x7f, 0x1000, 0x1ff, 0x5, 0xffffffff, 0x10000, 0x0, 0x8001, 0x7fff, 0x1000, 0x6, 0xf, 0xe, 0x5337, 0x26d, 0x6, 0xfffffff9, 0x4, 0xfffffff9, 0x9, 0x4, 0x463f, 0x4, 0xdab, 0x1, 0x8, 0x14000, 0x1, 0x1b18]}, 0x45c)
io_uring_enter(r1, 0x27e2, 0x0, 0x0, 0x0, 0x0)

8.192080472s ago: executing program 9 (id=1703):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
ioctl$KVM_CHECK_EXTENSION(0xffffffffffffffff, 0xae03, 0x62)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
syz_mount_image$bcachefs(&(0x7f0000000140), &(0x7f0000000000)='./file1\x00', 0x200414, &(0x7f0000000400)=ANY=[@ANYRES16], 0xff, 0x5ad0, &(0x7f000000bec0)="$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")
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x802053, 0x0, 0x0, 0x0, &(0x7f00000000c0))
r0 = open(&(0x7f00000000c0)='.\x00', 0x8000, 0x50)
getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8)

6.409323683s ago: executing program 0 (id=1704):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f00000002c0)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r2, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x24, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xfff1, 0xffff}, {0xfff3, 0x2}}}, 0x24}}, 0x4000800)
sendmsg$nl_route_sched(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=@delchain={0x24, 0x64, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xfff3, 0xffff}, {0x1, 0x1b}}}, 0x24}, 0x1, 0x0, 0x0, 0x10}, 0x0)

6.223203226s ago: executing program 6 (id=1705):
r0 = landlock_create_ruleset(&(0x7f0000000040)={0x4300, 0x2}, 0x18, 0x0)
landlock_restrict_self(r0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r1 = landlock_create_ruleset(&(0x7f0000000040)={0x0, 0x3}, 0x10, 0x0)
landlock_restrict_self(r1, 0x0)
landlock_restrict_self(r1, 0x5)
pivot_root(&(0x7f0000000040)='./file0/../file0/../file0/../file0/../file0\x00', &(0x7f0000000600)='./file0/../file0/../file0/../file0\x00')

5.989729173s ago: executing program 9 (id=1706):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
syz_usb_connect(0x0, 0x0, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r2=>0x0})
r3 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="440000001300290a000000000000000007000000", @ANYRES32=r2, @ANYBLOB="00000000000000001c001a800800028008000200080000003e120000080002001040e5"], 0x44}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x2000000, 0x0, {0x0, 0x0, 0x0, r2, {}, {0x0, 0x6}, {0xfff3}}}, 0x24}}, 0x4004050)

5.581846827s ago: executing program 7 (id=1707):
open(&(0x7f0000000040)='./file1\x00', 0x80242, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
chdir(&(0x7f00000003c0)='./bus\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
ioctl$FS_IOC_FIEMAP(r0, 0xc020660b, &(0x7f00000002c0)={0x1, 0x69, 0x6, 0x7})

5.321880342s ago: executing program 6 (id=1708):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e1f, @remote}, 0x10)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x275a, 0x0)
writev(r1, &(0x7f0000000400)=[{&(0x7f00000002c0)="a609a89c9edd34187123b5adceb38c8557f4e107445a53c0815c9636d00f896d1e8cd8de77a79f1e3e2c53ddf1bb9f8ac5cb5257ff4e8b960026bc4244c4b09179a97dffdf02563e23546d3e78f944e7e2fee2a0e354223318badb21d8c086669c5f7772f4a6d90d0997babdf79f7d557e055b3e6f2e4f41ec06a39a57b9ccc00b", 0x81}], 0x1)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r1, 0x0)
setsockopt$sock_linger(r0, 0x1, 0x3d, &(0x7f0000000080), 0x8)
sendmmsg$sock(r0, &(0x7f0000000a40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)

4.662406795s ago: executing program 6 (id=1709):
r0 = socket(0x2a, 0x2, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r2=>0x0})
sendto$packet(r1, &(0x7f0000000240)="f2435f0100088000000000850800", 0xe, 0x0, &(0x7f0000000200)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @link_local}, 0x14)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=ANY=[@ANYBLOB="3c00000013000100000000000000000000000002", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=r2, @ANYBLOB="1400350064756d6d7930"], 0x3c}}, 0x0)
ioctl$SIOCSIFMTU(r0, 0x8922, &(0x7f0000000080)={'dummy0\x00'})

4.618253478s ago: executing program 8 (id=1710):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000000)='/proc/sys/net/\x00\x00v4\x00\x00s/\x92ync_\x00le\xf44.\xab%nN\xd4\xa2\x88\x00\xd1l,'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x31, 0xffffffffffffffff, 0xbdded000)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='fd/3\x00')
getdents64(r0, &(0x7f0000002f40)=""/4098, 0x1002)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x41032, 0xffffffffffffffff, 0x0)
getdents64(r0, &(0x7f00000000c0)=""/30, 0x1e)

4.561648985s ago: executing program 7 (id=1711):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
mkdir(&(0x7f0000000300)='./bus\x00', 0x36)
mkdir(&(0x7f0000000580)='./file0\x00', 0x41)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
capset(&(0x7f0000000500)={0x20080522}, &(0x7f0000000200)={0x200002, 0x200003, 0x801, 0x4, 0x7})
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)={[{@workdir={'workdir', 0x3d, './bus'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_auto}]})

4.249519034s ago: executing program 0 (id=1712):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000200), 0x20702, 0x0)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000080)={'pim6reg1\x00', 0xe511})
ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f0000000100)={'veth0_to_bridge\x00', 0x400})
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180500000000c800000000004b64ffec850000007d000000850000002a00000095"], &(0x7f0000000480)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
close(0x3)

3.983615869s ago: executing program 7 (id=1713):
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x8, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00'}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="15000000100000000800"/20, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="0000000000000000000000000005"], 0x50)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r0 = io_uring_setup(0x9, &(0x7f0000000040)={0x0, 0x20c8a1, 0x1c881, 0x8, 0xd1})
io_uring_enter(r0, 0x4255, 0x7721, 0x16, 0x0, 0x0)

3.569805627s ago: executing program 6 (id=1714):
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r2=>0x0})
bind$packet(r0, &(0x7f0000000d00)={0x11, 0x0, r2, 0x1, 0x7f, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}}, 0x14)
socket$packet(0x11, 0x2, 0x300)
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/ptype\x00')
read$FUSE(r3, &(0x7f00000033c0)={0x2020}, 0x2020)

3.337436374s ago: executing program 7 (id=1715):
syz_mount_image$iso9660(&(0x7f0000000d40), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f0000000b80)=ANY=[], 0x1, 0x5ca, &(0x7f0000001480)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})
chdir(&(0x7f0000000000)='./file0\x00')
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r1 = fanotify_init(0xf00, 0x0)
fanotify_mark(r1, 0x1, 0x5000003a, r0, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='.\x00', 0x0, 0xa8)

2.807160331s ago: executing program 6 (id=1716):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000002340)=0x8)
syz_mount_image$bcachefs(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x810000, &(0x7f0000000280)=ANY=[@ANYBLOB="6a6f75726e616c5f7472616e73616374696f6e5f6e616d65732c62747265655f6e6f64655f0dcbcc28b5ef6f8b2c6a6f75726e616c5f666c7573685f64697361626c65642c6673636b2c6a6f75726e616c5f666c7573685f64697361626c65642c726174656c696d69745f6572726f72732c7265636f766572795f706173735f6c6173743d7365745f6d61795f676f5f72772c7265636f6e7374727563745f616c6c6f632c6e6f5f646174615f696f2c00"], 0x1, 0x5928, &(0x7f0000009d00)="$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")
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x300000, &(0x7f0000000380)={[{@i_version}, {@noblock_validity}, {@grpjquota_path={'grpjquota', 0x3d, './file1'}}, {@user_xattr}, {@nomblk_io_submit}, {@journal_path={'journal_path', 0x3d, './file1'}}, {@abort}, {@auto_da_alloc}, {@nomblk_io_submit}, {@journal_path={'journal_path', 0x3d, './file1'}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x40000}}]}, 0x1, 0x55f, &(0x7f0000000c80)="$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")
open(&(0x7f00000001c0)='./file1\x00', 0x14927e, 0x20)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0)
fallocate(r0, 0x10, 0x6, 0x10001)

2.627190694s ago: executing program 8 (id=1717):
r0 = memfd_secret(0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0xa, 0x11, r0, 0x0)
ftruncate(r0, 0x51a9497)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x4, 0x5, &(0x7f0000002500)=ANY=[@ANYBLOB="bf16"], 0x0}, 0x94)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x8031, 0xffffffffffffffff, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)

2.43814378s ago: executing program 0 (id=1718):
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffe, 0x4031, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000000))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000140)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x4})
r1 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000600)={0xaa, 0x138})
ioctl$UFFDIO_UNREGISTER(r1, 0x8010aa01, &(0x7f0000000000)={&(0x7f0000000000/0x800000)=nil, 0x800000})

1.312182153s ago: executing program 8 (id=1719):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000140)=ANY=[], 0x8)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_IPV6_DSTOPTS(r0, 0x29, 0x3b, &(0x7f0000000080)=ANY=[], 0x8)
setsockopt$inet6_int(r0, 0x29, 0x38, &(0x7f0000000040)=0x8, 0x4)
recvmmsg(r0, &(0x7f0000002bc0)=[{{0x0, 0x0, 0x0}, 0x5}], 0x1, 0x2, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

966.887483ms ago: executing program 7 (id=1720):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfb, {0x0, 0x0, 0x0, r3, {0x0, 0x1}, {0xffff, 0xffff}, {0x3, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}, 0x1, 0x0, 0x0, 0x40004}, 0x4000)
sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)=@newtfilter={0x6c, 0x2c, 0xd27, 0x70bd2d, 0x25dfdbfa, {0x0, 0x0, 0x0, r3, {0x0, 0x2}, {}, {0x7, 0x9}}, [@filter_kind_options=@f_matchall={{0xd}, {0x38, 0x2, [@TCA_MATCHALL_ACT={0x34, 0x2, [@m_vlan={0x30, 0x1, 0x0, 0x0, {{0x9}, {0x4}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x2}}}}]}]}}]}, 0x6c}, 0x1, 0x0, 0x0, 0x24000810}, 0x20084084)

38.510484ms ago: executing program 6 (id=1721):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r0 = landlock_create_ruleset(&(0x7f00000000c0)={0x100}, 0x18, 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x200000, 0x0)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r0, 0x1, &(0x7f0000000140)={0x100, r1}, 0x0)
landlock_restrict_self(r0, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000180)='./file0/file1\x00', 0x81c0, 0x0)
unlinkat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file1\x00', 0x0)

0s ago: executing program 8 (id=1722):
r0 = syz_create_resource$binfmt(&(0x7f0000001400)='./file0\x00')
r1 = openat$binfmt(0xffffffffffffff9c, r0, 0x42, 0x1ff)
write$binfmt_elf64(r1, &(0x7f0000000180)={{0x7f, 0x45, 0x4c, 0x46, 0x82, 0x1, 0x5, 0x3, 0xfffffffffffffffc, 0x3, 0x3e, 0x5, 0x501, 0x40, 0x145, 0x0, 0x3e, 0x38, 0x1, 0x7, 0x25, 0x1}, [{0x3, 0x0, 0x9, 0x3ff, 0xfd, 0xb4, 0x9, 0x1}], "", ['\x00']}, 0x178)
close(r1)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x40000, 0x0)
fcntl$notify(r2, 0x402, 0x40000002)
execveat$binfmt(r2, r0, 0x0, 0x0, 0x1000)

kernel console output (not intermixed with test programs):

 length.
[  595.291428][ T9530] netlink: 'syz.0.1101': attribute type 5 has an invalid length.
[  595.324690][ T9437] team0: Port device team_slave_0 added
[  595.376866][ T4298] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  595.395523][ T9568] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1111'.
[  595.406759][ T9568] netlink: 'syz.3.1111': attribute type 18 has an invalid length.
[  595.434247][ T9437] team0: Port device team_slave_1 added
[  595.523959][ T4298] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  595.786882][   T78] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  595.796830][   T78] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  596.059321][ T9437] batman_adv: batadv0: Adding interface: batadv_slave_0
[  596.066856][ T9437] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  596.093433][ T9437] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  596.314953][ T9437] batman_adv: batadv0: Adding interface: batadv_slave_1
[  596.322246][ T9437] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  596.352962][ T9437] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  596.371312][ T9577] netlink: 156 bytes leftover after parsing attributes in process `syz.3.1115'.
[  596.834164][ T9582] fuse: root generation should be zero
[  597.074594][ T9437] hsr_slave_0: entered promiscuous mode
[  597.087828][ T9437] hsr_slave_1: entered promiscuous mode
[  597.096962][ T9437] debugfs: 'hsr0' already exists in 'hsr'
[  597.103533][ T9437] Cannot create hsr debugfs directory
[  597.599622][ T9588] loop3: detected capacity change from 0 to 512
[  597.827963][ T9588] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  598.055651][ T9588] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz.3.1118: bg 0: block 5: invalid block bitmap
[  598.263672][ T9588] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  598.361185][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  598.368190][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  598.481192][ T9588] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.1118: invalid indirect mapped block 3 (level 2)
[  598.517945][ T9590] loop2: detected capacity change from 0 to 32768
[  598.684499][ T9590] XFS (loop2): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  598.738419][ T9588] EXT4-fs (loop3): 2 truncates cleaned up
[  598.746555][ T9588] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  598.977989][ T9588] EXT4-fs error (device loop3): ext4_check_dx_root:2203: inode #2: comm syz.3.1118: Corrupt dir, invalid name_len for '.', running e2fsck is recommended
[  599.060979][ T9590] XFS (loop2): Ending clean mount
[  599.238017][ T5823] XFS (loop2): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  599.640296][ T9612] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1121'.
[  599.649982][ T9612] netlink: 'syz.0.1121': attribute type 20 has an invalid length.
[  599.657061][ T5822] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  599.758465][ T9437] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  599.794632][ T9612] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1121'.
[  599.805533][ T9612] netlink: 'syz.0.1121': attribute type 20 has an invalid length.
[  600.151742][ T9437] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  600.180164][ T9326] hid-generic 0006:0004:0009.000A: unknown main item tag 0x0
[  600.188134][ T9326] hid-generic 0006:0004:0009.000A: unknown main item tag 0x0
[  600.196244][ T9326] hid-generic 0006:0004:0009.000A: unknown main item tag 0x0
[  600.204168][ T9326] hid-generic 0006:0004:0009.000A: unknown main item tag 0x0
[  600.212059][ T9326] hid-generic 0006:0004:0009.000A: unknown main item tag 0x0
[  600.221726][ T9326] hid-generic 0006:0004:0009.000A: unknown main item tag 0x0
[  600.233744][ T9326] hid-generic 0006:0004:0009.000A: unknown main item tag 0x0
[  600.242632][ T9326] hid-generic 0006:0004:0009.000A: unknown main item tag 0x0
[  600.250342][ T9326] hid-generic 0006:0004:0009.000A: unknown main item tag 0x0
[  600.253258][ T9437] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  600.258489][ T9326] hid-generic 0006:0004:0009.000A: unknown main item tag 0x0
[  600.422623][ T9437] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  600.728154][ T9326] hid-generic 0006:0004:0009.000A: hidraw0: VIRTUAL HID v0.04 Device [syz1] on syz0
[  601.659904][ T9626] fido_id[9626]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  601.879440][ T9326] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[  602.142523][ T9326] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  602.154238][ T9326] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  602.165929][ T9326] usb 3-1: New USB device found, idVendor=1b96, idProduct=0004, bcdDevice= 0.00
[  602.178210][ T9326] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  602.444935][ T9326] usb 3-1: config 0 descriptor??
[  602.572272][ T9437] 8021q: adding VLAN 0 to HW filter on device bond0
[  602.895061][ T9437] 8021q: adding VLAN 0 to HW filter on device team0
[  603.020447][   T78] bridge0: port 1(bridge_slave_0) entered blocking state
[  603.028029][   T78] bridge0: port 1(bridge_slave_0) entered forwarding state
[  603.068633][ T9644] loop6: detected capacity change from 0 to 256
[  603.147094][ T9326] ntrig 0003:1B96:0004.000B: hidraw0: USB HID v0.00 Device [HID 1b96:0004] on usb-dummy_hcd.2-1/input0
[  603.223938][   T78] bridge0: port 2(bridge_slave_1) entered blocking state
[  603.231597][   T78] bridge0: port 2(bridge_slave_1) entered forwarding state
[  603.352553][ T9326] usb 3-1: USB disconnect, device number 8
[  604.336523][ T9648] fido_id[9648]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory
[  605.387495][ T9659] loop6: detected capacity change from 0 to 32768
[  605.772593][ T9659] bcachefs (loop6): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=crc64,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,recovery_pass_last=set_may_go_rw,reconstruct_alloc,no_data_io
[  605.772734][ T9659]   allowing incompatible features above 0.0: (unknown version)
[  605.772821][ T9659]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  605.816370][ T9659] bcachefs (loop6): Using encoding defined by superblock: utf8-12.1.0
[  605.825585][ T9659] bcachefs (loop6): recovering from clean shutdown, journal seq 10
[  605.835238][ T9659] bcachefs (loop6): Version upgrade required:
[  605.835238][ T9659] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  605.835238][ T9659] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[  605.835238][ T9659]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[  605.974845][ T9659] bcachefs (loop6): dropping and reconstructing all alloc info
[  606.099963][ T9659] bcachefs (loop6): accounting_read... done
[  606.117359][ T9659] bcachefs (loop6): alloc_read... done
[  606.146542][ T9659] bcachefs (loop6): snapshots_read... done
[  606.190611][ T9659] bcachefs (loop6): check_allocations... done
[  606.480243][ T9659] bcachefs (loop6): going read-write
[  606.545856][ T9437] 8021q: adding VLAN 0 to HW filter on device batadv0
[  606.583705][ T9659] bcachefs (loop6): done starting filesystem
[  606.729848][ T9659] bcachefs (loop6): inode 536870913 truncated to 0 but i_blocks 24 (ondisk 24)
[  606.982098][ T9304] bcachefs (loop6): bucket incorrectly unset in freespace btree
[  606.982215][ T9304]   u64s 5 type deleted 0:30:0 len 0 ver 0, , continuing
[  607.018632][ T9692] overlayfs: failed to resolve './file2': -2
[  607.044416][ T7361] udevd[7361]: incorrect bcachefs checksum on /dev/loop6
[  607.159505][ T9304] bcachefs (loop6): bucket incorrectly unset in freespace btree
[  607.159599][ T9304]   u64s 5 type deleted 0:40:0 len 0 ver 0, , continuing
[  607.210620][ T9304] bcachefs (loop6): bucket incorrectly unset in freespace btree
[  607.210719][ T9304]   u64s 5 type deleted 0:45:0 len 0 ver 0, , continuing
[  607.283370][ T9304] bcachefs (loop6): bucket incorrectly unset in freespace btree
[  607.283482][ T9304]   u64s 5 type deleted 0:49:0 len 0 ver 0, , continuing
[  607.885119][ T7361] udevd[7361]: incorrect bcachefs checksum on /dev/loop6
[  607.930957][ T9128] bcachefs (loop6): shutting down
[  607.936192][ T9128] bcachefs (loop6): going read-only
[  607.942522][ T9128] bcachefs (loop6): finished waiting for writes to stop
[  608.068465][ T9128] bcachefs (loop6): flushing journal and stopping allocators, journal seq 12
[  608.273737][ T1900] bcachefs (loop6): bucket incorrectly unset in freespace btree
[  608.273834][ T1900]   u64s 5 type deleted 0:33:0 len 0 ver 0, , continuing
[  608.451377][ T9128] bcachefs (loop6): flushing journal and stopping allocators complete, journal seq 12
[  608.544420][ T9128] bcachefs (loop6): unclean shutdown complete, journal seq 13
[  608.644977][ T9128] bcachefs (loop6): done going read-only, filesystem not clean
[  608.798609][ T9128] bcachefs (loop6): shutdown complete
[  609.096253][ T9711] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1147'.
[  609.106110][ T9711] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1147'.
[  609.268752][ T9437] veth0_vlan: entered promiscuous mode
[  609.398426][ T9437] veth1_vlan: entered promiscuous mode
[  609.737270][ T9437] veth0_macvtap: entered promiscuous mode
[  609.815137][ T9437] veth1_macvtap: entered promiscuous mode
[  610.190030][ T9437] batman_adv: batadv0: Interface activated: batadv_slave_0
[  610.369346][ T9437] batman_adv: batadv0: Interface activated: batadv_slave_1
[  610.575208][ T5101] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  610.625130][ T9719] loop2: detected capacity change from 0 to 32768
[  610.634463][ T5101] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  610.648139][ T9719] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.1150 (9719)
[  610.685053][ T9719] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  610.696886][ T9719] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm
[  610.771887][ T1900] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  610.794315][ T9304] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  611.130405][ T9719] BTRFS info (device loop2): enabling ssd optimizations
[  611.140553][ T9719] BTRFS info (device loop2): enabling free space tree
[  611.310035][ T5823] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  614.969844][ T9787] trusted_key: syz.3.1163 sent an empty control message without MSG_MORE.
[  615.012254][ T9788] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1164'.
[  615.119965][ T9788] bridge1: trying to set multicast query interval above maximum, setting to 8640000 (86400000ms)
[  616.185979][ T9802] netlink: 104 bytes leftover after parsing attributes in process `syz.0.1167'.
[  617.037656][ T9811] loop3: detected capacity change from 0 to 16
[  617.139126][ T9811] erofs (device loop3): mounted with root inode @ nid 36.
[  617.242698][ T5444] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  617.463790][ T5444] usb 1-1: Using ep0 maxpacket: 32
[  618.327237][ T9816] loop2: detected capacity change from 0 to 32768
[  618.371623][ T5444] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  618.431759][ T5444] usb 1-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  618.443865][ T5444] usb 1-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  618.453370][ T5444] usb 1-1: Product: syz
[  618.457766][ T5444] usb 1-1: Manufacturer: syz
[  618.462650][ T5444] usb 1-1: SerialNumber: syz
[  618.474094][ T9816] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  618.488619][ T5444] usb 1-1: config 0 descriptor??
[  618.500422][ T9810] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  619.032276][   T42] usb 1-1: USB disconnect, device number 9
[  619.320701][ T9816] XFS (loop2): Ending clean mount
[  619.335267][ T9816] XFS (loop2): Quotacheck needed: Please wait.
[  619.485206][ T9816] XFS (loop2): Quotacheck: Done.
[  619.734151][ T5823] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  620.319601][ T4298] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  620.327783][ T4298] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  620.485232][ T4298] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  620.496695][ T4298] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  622.133410][ T9863] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1181'.
[  623.187368][ T9874] loop6: detected capacity change from 0 to 128
[  623.421364][ T9878] loop2: detected capacity change from 0 to 512
[  623.428664][   T30] audit: type=1800 audit(1757272702.322:69): pid=9874 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1186" name="file2" dev="loop6" ino=1048631 res=0 errno=0
[  623.461719][ T9874] FAT-fs (loop6): error, invalid access to FAT (entry 0x00000100)
[  623.470031][ T9874] FAT-fs (loop6): Filesystem has been set read-only
[  623.476819][ T9874] syz.6.1186: attempt to access beyond end of device
[  623.476819][ T9874] loop6: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  623.491213][ T9874] FAT-fs (loop6): error, invalid access to FAT (entry 0x00000100)
[  623.499630][ T9874] FAT-fs (loop6): error, invalid access to FAT (entry 0x00000100)
[  623.619906][ T9874] syz.6.1186: attempt to access beyond end of device
[  623.619906][ T9874] loop6: rw=0, sector=2065, nr_sectors = 8 limit=128
[  623.670182][ T9878] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  623.768123][ T9882] FAT-fs (loop6): error, invalid access to FAT (entry 0x00000100)
[  623.782539][ T9874] FAT-fs (loop6): error, invalid access to FAT (entry 0x00000100)
[  623.790888][ T9874] FAT-fs (loop6): error, invalid access to FAT (entry 0x00000100)
[  623.830395][ T9882] FAT-fs (loop6): error, invalid access to FAT (entry 0x00000100)
[  623.989918][ T9874] FAT-fs (loop6): error, invalid access to FAT (entry 0x00000100)
[  623.998324][ T9874] FAT-fs (loop6): error, invalid access to FAT (entry 0x00000100)
[  624.064902][ T9882] syz.6.1186: attempt to access beyond end of device
[  624.064902][ T9882] loop6: rw=2049, sector=2065, nr_sectors = 8 limit=128
[  624.239924][ T9874] FAT-fs (loop6): error, invalid access to FAT (entry 0x00000100)
[  624.390033][ T5823] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  626.385505][ T9920] vcan0: tx drop: invalid sa for name 0x0000000000000001
[  628.849520][ T9955] loop0: detected capacity change from 0 to 512
[  628.971688][ T9955] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  628.990980][ T9955] ext4 filesystem being mounted at /280/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  629.749906][ T5812] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  631.739616][ T9997] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1231'.
[  631.764462][ T9997] bridge0: port 2(bridge_slave_1) entered disabled state
[  631.774258][ T9997] bridge0: port 1(bridge_slave_0) entered disabled state
[  632.160244][ T5444] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  632.395047][ T5444] usb 7-1: Using ep0 maxpacket: 16
[  632.445632][ T5444] usb 7-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  632.458648][ T5444] usb 7-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[  632.471694][ T5444] usb 7-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  632.584074][ T5444] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  632.593529][ T5444] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  632.602322][ T5444] usb 7-1: Product: syz
[  632.606890][ T5444] usb 7-1: Manufacturer: syz
[  632.611674][ T5444] usb 7-1: SerialNumber: syz
[  633.249101][ T5444] usb 7-1: 2:1 : format type 0 is detected, processed as PCM
[  633.847556][T10020] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1241'.
[  634.144461][ T5875] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  634.346637][ T5875] usb 4-1: Using ep0 maxpacket: 16
[  634.466263][ T5875] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  634.479189][ T5875] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  634.545564][ T5444] usb 7-1: USB disconnect, device number 2
[  634.572201][ T5875] usb 4-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  634.585915][ T5875] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  634.594479][ T5875] usb 4-1: Product: syz
[  634.598830][ T5875] usb 4-1: Manufacturer: syz
[  634.605498][ T5875] usb 4-1: SerialNumber: syz
[  634.756745][ T5875] usb 4-1: config 0 descriptor??
[  634.804993][ T5875] em28xx 4-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  634.817276][ T5875] em28xx 4-1:0.0: Audio interface 0 found (Vendor Class)
[  635.041038][ T6516] udevd[6516]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  635.469367][ T5875] em28xx 4-1:0.0: unknown em28xx chip ID (232)
[  635.695097][ T5875] em28xx 4-1:0.0: Config register raw data: 0xfffffffb
[  636.126481][ T5875] em28xx 4-1:0.0: AC97 chip type couldn't be determined
[  636.133809][ T5875] em28xx 4-1:0.0: No AC97 audio processor
[  636.179244][T10040] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1248'.
[  636.188958][T10040] netlink: 'syz.0.1248': attribute type 7 has an invalid length.
[  636.197044][T10040] netlink: 'syz.0.1248': attribute type 8 has an invalid length.
[  636.205049][T10040] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1248'.
[  636.450354][ T5875] usb 4-1: USB disconnect, device number 4
[  636.461762][ T5875] em28xx 4-1:0.0: Disconnecting em28xx
[  636.638430][T10038] loop6: detected capacity change from 0 to 40427
[  636.654763][T10038] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12
[  636.666327][T10038] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock
[  636.698516][ T5875] em28xx 4-1:0.0: Freeing device
[  636.755266][T10038] F2FS-fs (loop6): invalid crc value
[  637.173885][T10038] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  637.207769][T10038] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0
[  637.216098][T10038] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  639.596799][T10062] loop6: detected capacity change from 0 to 32768
[  639.606883][T10062] btrfs: Deprecated parameter 'usebackuproot'
[  639.613354][T10062] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  639.625088][T10062] btrfs: Deprecated parameter 'usebackuproot'
[  639.634636][T10062] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  639.663151][T10062] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.1252 (10062)
[  639.764417][T10062] BTRFS info (device loop6): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  639.776490][T10062] BTRFS info (device loop6): using sha256 (sha256-lib) checksum algorithm
[  639.785527][T10062] workqueue: max_active 40574 requested for btrfs-worker is out of range, clamping between 1 and 2048
[  639.811504][T10062] workqueue: max_active 40574 requested for btrfs-delalloc is out of range, clamping between 1 and 2048
[  639.923037][T10062] workqueue: max_active 40574 requested for btrfs-endio is out of range, clamping between 1 and 2048
[  639.954701][T10062] workqueue: max_active 40574 requested for btrfs-endio-meta is out of range, clamping between 1 and 2048
[  639.982366][T10062] workqueue: max_active 40574 requested for btrfs-rmw is out of range, clamping between 1 and 2048
[  640.011572][T10062] workqueue: max_active 40574 requested for btrfs-endio-write is out of range, clamping between 1 and 2048
[  640.029940][T10062] workqueue: max_active 40574 requested for btrfs-compressed-write is out of range, clamping between 1 and 2048
[  640.342257][T10062] BTRFS info (device loop6): rebuilding free space tree
[  640.412579][T10062] BTRFS info (device loop6): setting nodatasum
[  640.418993][T10062] BTRFS info (device loop6): enabling ssd optimizations
[  640.426599][T10062] BTRFS info (device loop6): enabling free space tree
[  640.433681][T10062] BTRFS info (device loop6): force clearing of disk cache
[  640.444037][T10062] BTRFS info (device loop6): doing ref verification
[  640.454521][T10062] BTRFS info (device loop6): trying to use backup root at mount time
[  640.454658][T10084] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1257'.
[  640.688977][T10092] loop2: detected capacity change from 0 to 256
[  640.723455][T10062] BTRFS info (device loop6): balance: start 
[  640.730143][T10062] BTRFS info (device loop6): balance: ended with status: 0
[  640.741134][T10092] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  640.757500][T10092] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[  640.899419][ T9128] BTRFS info (device loop6): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  641.016758][T10092] exFAT-fs (loop2): Invalid boot checksum (boot checksum : 0x0319abd0, checksum : 0x1119abd0)
[  641.027645][T10092] exFAT-fs (loop2): invalid boot region
[  641.034407][T10092] exFAT-fs (loop2): failed to recognize exfat type
[  641.403306][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  641.412702][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  641.421969][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  641.431504][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  641.441093][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  641.450908][    T0] NOHZ tick-stop error: local softirq work is pending, handler #282!!!
[  641.462714][    T0] NOHZ tick-stop error: local softirq work is pending, handler #242!!!
[  641.474250][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  641.828450][T10092] loop2: detected capacity change from 0 to 32768
[  641.870536][    T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!!
[  642.085931][T10092] XFS (loop2): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  642.515052][T10092] XFS (loop2): Ending clean mount
[  642.729020][ T5823] XFS (loop2): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  644.981914][T10132] loop0: detected capacity change from 0 to 1024
[  645.290708][T10132] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  645.442317][T10139] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1261'.
[  645.916928][T10139] hsr_slave_1 (unregistering): left promiscuous mode
[  645.939450][ T5812] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  647.117858][T10158] loop2: detected capacity change from 0 to 256
[  647.180336][T10158] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  647.193667][T10158] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[  647.673777][T10158] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000ff98, chksum : 0xc64c1d22, utbl_chksum : 0xe619d30d)
[  648.128485][T10161] loop6: detected capacity change from 0 to 32768
[  648.138405][T10161] XFS: noikeep mount option is deprecated.
[  648.213283][T10161] XFS (loop6): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  648.602620][T10161] XFS (loop6): Ending clean mount
[  648.650697][T10161] XFS (loop6): Quotacheck needed: Please wait.
[  648.774480][T10161] XFS (loop6): Quotacheck: Done.
[  649.072256][ T9128] XFS (loop6): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  649.598123][T10179] loop7: detected capacity change from 0 to 32768
[  649.625609][T10179] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.1283 (10179)
[  649.727424][T10179] BTRFS info (device loop7): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  649.739991][T10179] BTRFS info (device loop7): using blake2b (blake2b-256-generic) checksum algorithm
[  649.967030][T10193] netlink: 'syz.0.1287': attribute type 12 has an invalid length.
[  649.986281][   T42] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  650.190667][   T42] usb 4-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[  650.200915][   T42] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  650.209356][   T42] usb 4-1: Product: syz
[  650.213705][   T42] usb 4-1: Manufacturer: syz
[  650.218626][   T42] usb 4-1: SerialNumber: syz
[  650.240945][T10179] BTRFS info (device loop7): enabling ssd optimizations
[  650.248534][T10179] BTRFS info (device loop7): enabling free space tree
[  650.714153][ T9437] BTRFS info (device loop7): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  652.018957][   T42] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -EPROTO
[  652.088003][   T42] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00001000. ret = -EPROTO
[  652.165657][   T42] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): Failed to write register index 0x0000011c. ret = -EPROTO
[  652.179103][   T42] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[  652.189660][   T42] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[  652.374057][   T42] lan78xx 4-1:1.0: probe with driver lan78xx failed with error -71
[  652.413911][T10217] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  652.486280][T10217] fanotify: failed to encode fid (type=0, len=0, err=-2)
[  652.556096][   T42] usb 4-1: USB disconnect, device number 5
[  654.299690][T10243] loop7: detected capacity change from 0 to 64
[  654.404260][   T42] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  654.593967][   T42] usb 1-1: Using ep0 maxpacket: 32
[  654.667631][   T42] usb 1-1: config 0 has an invalid interface number: 67 but max is 0
[  654.678906][   T42] usb 1-1: config 0 has no interface number 0
[  654.711287][   T42] usb 1-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  654.721045][   T42] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  654.730140][   T42] usb 1-1: Product: syz
[  654.734975][   T42] usb 1-1: Manufacturer: syz
[  654.739752][   T42] usb 1-1: SerialNumber: syz
[  654.881734][   T42] usb 1-1: config 0 descriptor??
[  654.923043][T10251] loop2: detected capacity change from 0 to 1024
[  654.962443][   T42] smsc95xx v2.0.0
[  655.178988][T10251] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  655.198310][T10251] ext4 filesystem being mounted at /260/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  655.351957][   T42] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32
[  655.363248][   T42] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  655.419090][T10256] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  655.927909][T10251] EXT4-fs error (device loop2): ext4_map_blocks:814: inode #15: comm syz.2.1301: lblock 0 mapped to illegal pblock 0 (length 2)
[  656.085513][T10251] EXT4-fs error (device loop2): ext4_map_blocks:814: inode #15: comm syz.2.1301: lblock 0 mapped to illegal pblock 0 (length 2)
[  656.253815][T10251] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 117
[  656.267334][T10251] EXT4-fs (loop2): This should not happen!! Data will be lost
[  656.267334][T10251] 
[  656.762378][T10265] loop3: detected capacity change from 0 to 32768
[  656.772773][T10265] BTRFS warning: excessive commit interval 2147483647, use with care
[  656.788658][T10265] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.1305 (10265)
[  656.804359][   T42] smsc95xx 1-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[  656.826123][   T42] smsc95xx 1-1:0.67: probe with driver smsc95xx failed with error -71
[  656.860941][T10265] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  656.871569][T10265] BTRFS info (device loop3): using crc32c (crc32c-lib) checksum algorithm
[  656.897820][   T42] usb 1-1: USB disconnect, device number 10
[  657.194286][T10265] BTRFS info (device loop3): rebuilding free space tree
[  657.226998][T10265] BTRFS info (device loop3): disabling free space tree
[  657.238777][T10265] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  657.248986][T10265] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  657.421149][ T5823] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  657.625332][T10265] BTRFS info (device loop3): checking UUID tree
[  657.637294][T10265] BTRFS info (device loop3): setting nodatasum
[  657.647364][T10265] BTRFS info (device loop3): enabling ssd optimizations
[  657.654705][T10265] BTRFS info (device loop3): turning off barriers
[  657.661342][T10265] BTRFS info (device loop3): turning on flush-on-commit
[  657.668701][T10265] BTRFS info (device loop3): force clearing of disk cache
[  657.676136][T10265] BTRFS info (device loop3): doing ref verification
[  657.683048][T10265] BTRFS info (device loop3): max_inline set to 0
[  657.984073][ T5822] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  658.441871][   T42] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  658.713279][   T42] usb 8-1: Using ep0 maxpacket: 16
[  658.777550][   T42] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  658.788681][   T42] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 3
[  658.952075][   T42] usb 8-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  658.964864][   T42] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  658.977120][   T42] usb 8-1: Product: syz
[  658.990066][   T42] usb 8-1: Manufacturer: syz
[  658.995045][   T42] usb 8-1: SerialNumber: syz
[  659.453009][   T42] usb 8-1: 0:2 : does not exist
[  659.539298][   T42] usb 8-1: 5:0: failed to get current value for ch 0 (-22)
[  659.729994][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  659.737025][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  659.912508][   T42] usb 8-1: USB disconnect, device number 2
[  660.385327][ T5993] udevd[5993]: error opening ATTR{/sys/devices/platform/dummy_hcd.7/usb8/8-1/8-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  661.401632][T10324] loop2: detected capacity change from 0 to 128
[  661.594020][T10319] loop7: detected capacity change from 0 to 32768
[  661.612751][T10319] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.1315 (10319)
[  661.643365][T10319] BTRFS info (device loop7): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  661.653894][T10319] BTRFS info (device loop7): using crc32c (crc32c-lib) checksum algorithm
[  661.808891][T10324] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  661.877473][T10324] ext4 filesystem being mounted at /263/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  662.147272][T10319] BTRFS info (device loop7): setting nodatasum
[  662.153794][T10319] BTRFS info (device loop7): setting nodatacow
[  662.160556][T10319] BTRFS info (device loop7): enabling free space tree
[  662.167530][T10319] BTRFS info (device loop7): enabling auto defrag
[  662.174265][T10319] BTRFS info (device loop7): max_inline set to 0
[  662.210313][T10324] EXT4-fs (loop2): shut down requested (1)
[  662.764408][ T9437] BTRFS info (device loop7): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  662.967251][ T5823] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  663.355956][T10354] loop3: detected capacity change from 0 to 256
[  663.521433][T10354] exfat: Deprecated parameter 'namecase'
[  663.527458][T10354] exfat: Deprecated parameter 'namecase'
[  663.707130][T10354] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  664.407607][T10368] loop2: detected capacity change from 0 to 128
[  664.478378][T10368] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  664.579757][T10368] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  665.910000][T10383] loop0: detected capacity change from 0 to 128
[  668.227998][T10405] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  668.235703][T10405] batman_adv: batadv0: Removing interface: batadv_slave_0
[  668.326889][T10405] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  668.334492][T10405] batman_adv: batadv0: Removing interface: batadv_slave_1
[  669.444510][T10418] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1345'.
[  669.666845][   T24] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  669.836583][   T24] usb 7-1: Using ep0 maxpacket: 32
[  669.851834][   T24] usb 7-1: config 0 has an invalid interface number: 51 but max is 0
[  669.860866][   T24] usb 7-1: config 0 has no interface number 0
[  670.065313][   T24] usb 7-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  670.076157][   T24] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  670.084432][   T24] usb 7-1: Product: syz
[  670.089095][   T24] usb 7-1: Manufacturer: syz
[  670.093881][   T24] usb 7-1: SerialNumber: syz
[  670.125351][   T24] usb 7-1: config 0 descriptor??
[  670.156084][   T24] quatech2 7-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  670.379518][   T24] usb 7-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  670.531536][   T24] usb 7-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  670.588038][T10423] loop2: detected capacity change from 0 to 32768
[  670.599256][T10423] XFS: noikeep mount option is deprecated.
[  670.806987][T10423] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  670.849804][    C1] usb 7-1: qt2_read_bulk_callback - non-zero urb status: -71
[  670.864208][   T24] usb 7-1: USB disconnect, device number 3
[  670.899357][   T24] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  671.004757][   T24] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  671.019901][   T24] quatech2 7-1:0.51: device disconnected
[  671.097861][T10423] XFS (loop2): Ending clean mount
[  671.120048][T10423] XFS (loop2): Quotacheck needed: Please wait.
[  671.206282][T10423] XFS (loop2): Quotacheck: Done.
[  671.397516][ T5823] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  671.929486][T10446] loop0: detected capacity change from 0 to 128
[  672.256135][   T30] audit: type=1804 audit(1757272751.167:70): pid=10452 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.1353" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="ramfs" ino=24772 res=1 errno=0
[  673.991476][T10461] loop6: detected capacity change from 0 to 32768
[  674.285888][T10470] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1363'.
[  674.556402][T10470] team0 (unregistering): Port device team_slave_0 removed
[  674.626788][T10470] team0 (unregistering): Port device team_slave_1 removed
[  674.681318][T10470] team0 (unregistering): Port device bond0 removed
[  675.112281][T10474] loop3: detected capacity change from 0 to 512
[  675.216063][T10474] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  675.375368][T10474] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a843c018, mo2=0002]
[  675.474547][T10474] System zones: 0-2, 18-18, 34-34
[  675.619100][T10474] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  675.632709][T10474] ext4 filesystem being mounted at /300/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  676.556506][ T5822] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  677.022565][T10488] loop2: detected capacity change from 0 to 40427
[  677.033250][T10488] F2FS-fs: heap/no_heap options were deprecated
[  677.039919][T10488] f2fs: Unknown parameter 'u~er_xattr'
[  677.153140][T10477] Bluetooth: hci2: command 0x0406 tx timeout
[  677.705619][T10500] syz_tun: entered allmulticast mode
[  677.774887][T10497] syz_tun: left allmulticast mode
[  678.435304][T10507] netlink: 'syz.2.1376': attribute type 39 has an invalid length.
[  678.500079][T10507] bridge_slave_0 (unregistering): left allmulticast mode
[  678.507558][T10507] bridge_slave_0 (unregistering): left promiscuous mode
[  678.517376][T10507] bridge0: port 1(bridge_slave_0) entered disabled state
[  679.436415][T10511] loop3: detected capacity change from 0 to 32768
[  679.577343][T10511] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  680.061919][T10516] loop0: detected capacity change from 0 to 40427
[  680.075241][T10516] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  680.083446][T10516] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  680.133902][T10516] F2FS-fs (loop0): invalid crc value
[  680.138242][T10511] XFS (loop3): Ending clean mount
[  680.460541][ T5822] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  680.539681][T10516] F2FS-fs (loop0): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  680.601570][T10516] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  680.608850][T10516] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  682.740549][T10542] loop6: detected capacity change from 0 to 32768
[  682.829376][T10542] 
[  682.829376][T10542]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  682.829376][T10542] 
[  682.901091][T10542] 
[  682.901091][T10542]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  682.901091][T10542] 
[  682.914323][T10542] 
[  682.914323][T10542]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  682.914323][T10542] 
[  682.916061][T10544] sctp: failed to load transform for md5: -2
[  682.927915][T10542] 
[  682.927915][T10542]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  682.927915][T10542] 
[  682.944764][T10542] 
[  682.944764][T10542]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  682.944764][T10542] 
[  682.955519][T10542] 
[  682.955519][T10542]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  682.955519][T10542] 
[  683.553459][T10543] loop0: detected capacity change from 0 to 4096
[  683.620001][T10543] ntfs3(loop0): Different NTFS sector size (1024) and media sector size (512).
[  684.078267][T10557] loop7: detected capacity change from 0 to 256
[  684.097269][T10557] exfat: Deprecated parameter 'namecase'
[  684.103700][T10557] exfat: Deprecated parameter 'utf8'
[  684.308102][T10543] ntfs3(loop0): ino=1a, mi_enum_attr
[  684.314146][T10543] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[  684.317642][  T112] 
[  684.317642][  T112]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  684.317642][  T112] 
[  684.361909][T10557] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[  684.641135][T10550] 
[  684.641135][T10550]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  684.641135][T10550] 
[  684.654145][T10550] 
[  684.654145][T10550]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  684.654145][T10550] 
[  684.668236][T10550] 
[  684.668236][T10550]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  684.668236][T10550] 
[  684.680259][T10550] 
[  684.680259][T10550]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  684.680259][T10550] 
[  684.691151][T10550] 
[  684.691151][T10550]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  684.691151][T10550] 
[  684.846446][  T113] 
[  684.846446][  T113]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  684.846446][  T113] 
[  685.204679][ T9128] 
[  685.204679][ T9128]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  685.204679][ T9128] 
[  685.319953][ T9128] 
[  685.319953][ T9128]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  685.319953][ T9128] 
[  686.301045][ T5875] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[  686.545225][ T5875] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  686.559125][ T5875] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  686.569768][ T5875] usb 3-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00
[  686.579289][ T5875] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  686.781721][ T5875] usb 3-1: config 0 descriptor??
[  687.037698][   T42] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  687.076490][ T5875] usbhid 3-1:0.0: can't add hid device: -71
[  687.083289][ T5875] usbhid 3-1:0.0: probe with driver usbhid failed with error -71
[  687.137862][   T24] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  687.185263][ T5875] usb 3-1: USB disconnect, device number 9
[  687.251600][   T42] usb 1-1: Using ep0 maxpacket: 16
[  687.300388][   T42] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  687.314081][   T42] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  687.328233][   T42] usb 1-1: New USB device found, idVendor=0458, idProduct=5012, bcdDevice= 0.00
[  687.338617][   T42] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  687.379723][   T24] usb 4-1: Using ep0 maxpacket: 16
[  687.455124][   T24] usb 4-1: config 0 has an invalid interface number: 105 but max is 0
[  687.463897][   T24] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  687.474584][   T24] usb 4-1: config 0 has no interface number 0
[  687.529767][   T42] usb 1-1: config 0 descriptor??
[  687.567874][   T24] usb 4-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28
[  687.577309][   T24] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  687.585520][   T24] usb 4-1: Product: syz
[  687.590091][   T24] usb 4-1: Manufacturer: syz
[  687.594901][   T24] usb 4-1: SerialNumber: syz
[  687.725309][   T24] usb 4-1: config 0 descriptor??
[  687.801154][   T24] usb 4-1: Found UVC 0.00 device syz (046d:08f3)
[  687.808209][   T24] usb 4-1: No valid video chain found.
[  688.059242][   T24] usb 4-1: USB disconnect, device number 6
[  688.142359][   T42] input: HID 0458:5012 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:0458:5012.000C/input/input12
[  688.314465][   T42] input: HID 0458:5012 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:0458:5012.000C/input/input13
[  688.444451][   T42] kye 0003:0458:5012.000C: input,hiddev0,hidraw0: USB HID v0.09 Device [HID 0458:5012] on usb-dummy_hcd.0-1/input0
[  689.327849][   T42] usb 1-1: reset high-speed USB device number 11 using dummy_hcd
[  689.476516][ T5875] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  689.567718][   T42] usb 1-1: device descriptor read/64, error -32
[  689.696830][ T5875] usb 8-1: Using ep0 maxpacket: 16
[  689.760115][ T5875] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  689.773373][ T5875] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 3
[  689.872009][ T5875] usb 8-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  689.883546][ T5875] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  689.892579][ T5875] usb 8-1: Product: syz
[  689.897148][ T5875] usb 8-1: Manufacturer: syz
[  689.901939][ T5875] usb 8-1: SerialNumber: syz
[  690.241943][ T5875] usb 8-1: 0:2 : does not exist
[  690.366195][ T5875] usb 8-1: 5:0: failed to get current value for ch 0 (-22)
[  690.511578][   T24] usb 1-1: USB disconnect, device number 11
[  690.762730][ T5875] usb 8-1: USB disconnect, device number 3
[  690.793362][   T11] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  691.028441][   T11] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  691.039089][   T11] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[  691.186271][ T5993] udevd[5993]: error opening ATTR{/sys/devices/platform/dummy_hcd.7/usb8/8-1/8-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  691.240896][   T11] usb 4-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[  691.251055][   T11] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  691.261738][   T11] usb 4-1: Product: syz
[  691.266276][   T11] usb 4-1: Manufacturer: syz
[  691.271072][   T11] usb 4-1: SerialNumber: syz
[  691.363218][   T11] usb 4-1: config 0 descriptor??
[  691.383722][T10603] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  691.421321][T10603] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  691.786692][T10603] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  691.833977][T10603] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  692.596553][T10621] 9pnet_fd: Insufficient options for proto=fd
[  693.120839][   T11] dm9601 4-1:0.0 (unnamed net_device) (uninitialized): MDIO read error: -71
[  693.268317][   T11] dm9601 4-1:0.0 eth9: register 'dm9601' at usb-dummy_hcd.3-1, Davicom DM96xx USB 10/100 Ethernet, 6e:f1:98:9e:dd:08
[  693.311786][   T11] usb 4-1: USB disconnect, device number 7
[  693.397075][   T11] dm9601 4-1:0.0 eth9: unregister 'dm9601' usb-dummy_hcd.3-1, Davicom DM96xx USB 10/100 Ethernet
[  694.928609][T10647] kernel read not supported for file /eth0 (pid: 10647 comm: syz.7.1424)
[  694.942590][   T30] audit: type=1800 audit(1757272773.878:71): pid=10647 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.1424" name="eth0" dev="mqueue" ino=25009 res=0 errno=0
[  695.362090][T10652] batadv_slave_0: entered allmulticast mode
[  695.394084][T10651] batadv_slave_0: left allmulticast mode
[  696.377705][T10654] loop3: detected capacity change from 0 to 32768
[  696.451406][T10658] loop2: detected capacity change from 0 to 2048
[  696.464490][T10654] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  696.893868][T10667] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3303861288 (422894244864 ns) > initial count (241705619456 ns). Using initial count to start timer.
[  697.067646][T10654] XFS (loop3): Ending clean mount
[  697.103387][T10654] XFS (loop3): Quotacheck needed: Please wait.
[  697.364308][T10654] XFS (loop3): Quotacheck: Done.
[  697.461557][T10658] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  697.474847][T10658] ext4 filesystem being mounted at /285/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  697.478313][T10671] loop7: detected capacity change from 0 to 32768
[  697.497364][T10671] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.1431 (10671)
[  697.532983][T10671] BTRFS info (device loop7): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  697.543602][T10671] BTRFS info (device loop7): using sha256 (sha256-lib) checksum algorithm
[  697.633995][ T5822] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  697.663230][T10675] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 345: padding at end of block bitmap is not set
[  697.978892][T10671] BTRFS info (device loop7): enabling ssd optimizations
[  697.986475][T10671] BTRFS info (device loop7): enabling free space tree
[  698.127318][ T9437] BTRFS info (device loop7): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  699.126570][ T5823] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  699.994136][T10711] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1440'.
[  700.052095][T10711] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1440'.
[  701.771304][T10729] IPv4: Oversized IP packet from 127.202.26.0
[  702.051818][T10735] loop3: detected capacity change from 0 to 512
[  702.219162][T10735] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  702.445483][T10735] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  702.460419][T10735] ext4 filesystem being mounted at /314/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  702.727764][T10477] Bluetooth: hci5: command 0x0406 tx timeout
[  703.328772][ T5822] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  704.862839][T10756] loop0: detected capacity change from 0 to 32768
[  704.967253][T10756] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  704.975817][T10756] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  705.003580][T10756] gfs2: fsid=syz:syz.s: journal 0 mapped with 5 extents in 0ms
[  705.016540][T10758] loop3: detected capacity change from 0 to 40427
[  705.076265][T10758] F2FS-fs (loop3): invalid crc value
[  705.403997][T10758] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  705.476909][T10756] gfs2: fsid=syz:syz.s: first mount done, others may mount
[  705.490835][T10758] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  705.790485][ T5822] syz-executor: attempt to access beyond end of device
[  705.790485][ T5822] loop3: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  705.806608][ T5822] CPU: 1 UID: 0 PID: 5822 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(none) 
[  705.806760][ T5822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  705.806850][ T5822] Call Trace:
[  705.806902][ T5822]  <TASK>
[  705.806952][ T5822]  __dump_stack+0x26/0x30
[  705.807146][ T5822]  dump_stack_lvl+0x1df/0x270
[  705.807337][ T5822]  dump_stack+0x1e/0x25
[  705.807501][ T5822]  f2fs_handle_critical_error+0xa6f/0xc20
[  705.807753][ T5822]  f2fs_stop_checkpoint+0x65/0x80
[  705.807986][ T5822]  f2fs_write_end_io+0x101c/0x1bc0
[  705.808192][ T5822]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  705.808342][ T5822]  bio_endio+0xeb4/0x1010
[  705.808520][ T5822]  submit_bio_noacct+0x213/0x2750
[  705.808761][ T5822]  submit_bio+0x57c/0x630
[  705.808950][ T5822]  f2fs_submit_write_bio+0x92/0x250
[  705.809168][ T5822]  __submit_merged_bio+0x16f/0x6a0
[  705.809398][ T5822]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  705.809605][ T5822]  __submit_merged_write_cond+0x458/0x9a0
[  705.809825][ T5822]  f2fs_write_data_pages+0x4bb2/0x5480
[  705.810194][ T5822]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  705.810378][ T5822]  ? folios_put_refs+0x51/0xb10
[  705.810571][ T5822]  ? filter_irq_stacks+0x49/0x190
[  705.810715][ T5822]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  705.810898][ T5822]  ? stack_depot_save_flags+0x35/0x7b0
[  705.811048][ T5822]  ? kmsan_get_metadata+0xfb/0x160
[  705.811235][ T5822]  ? kmsan_get_metadata+0xfb/0x160
[  705.811403][ T5822]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  705.811581][ T5822]  ? kmsan_get_metadata+0xfb/0x160
[  705.811747][ T5822]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  705.811923][ T5822]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  705.812141][ T5822]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  705.812352][ T5822]  do_writepages+0x3f2/0x860
[  705.812509][ T5822]  ? _raw_spin_unlock+0x30/0x50
[  705.812688][ T5822]  ? wbc_attach_and_unlock_inode+0x131/0x680
[  705.812921][ T5822]  filemap_fdatawrite+0x207/0x260
[  705.813195][ T5822]  f2fs_sync_dirty_inodes+0x2ab/0x9e0
[  705.813410][ T5822]  f2fs_write_checkpoint+0xfe2/0x2b00
[  705.813723][ T5822]  kill_f2fs_super+0x2ff/0x970
[  705.813912][ T5822]  ? __pfx_kill_f2fs_super+0x10/0x10
[  705.814079][ T5822]  deactivate_locked_super+0xc8/0x3c0
[  705.814275][ T5822]  deactivate_super+0x12f/0x140
[  705.814445][ T5822]  cleanup_mnt+0x6fb/0x780
[  705.814651][ T5822]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  705.814828][ T5822]  ? __pfx___cleanup_mnt+0x10/0x10
[  705.815030][ T5822]  __cleanup_mnt+0x22/0x30
[  705.815225][ T5822]  task_work_run+0x206/0x2b0
[  705.815407][ T5822]  exit_to_user_mode_loop+0x2a6/0x330
[  705.815587][ T5822]  do_syscall_64+0x1e3/0x210
[  705.815722][ T5822]  ? irqentry_exit+0x16/0x60
[  705.815905][ T5822]  ? clear_bhb_loop+0x40/0x90
[  705.816067][ T5822]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  705.816232][ T5822] RIP: 0033:0x7f949b78ff17
[  705.816342][ T5822] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  705.816473][ T5822] RSP: 002b:00007ffdf2c8b278 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  705.816619][ T5822] RAX: 0000000000000000 RBX: 00007f949b811c05 RCX: 00007f949b78ff17
[  705.816718][ T5822] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffdf2c8b330
[  705.816810][ T5822] RBP: 00007ffdf2c8b330 R08: 0000000000000000 R09: 0000000000000000
[  705.816904][ T5822] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffdf2c8c3c0
[  705.817001][ T5822] R13: 00007f949b811c05 R14: 00000000000ac4ad R15: 00007ffdf2c8c400
[  705.817144][ T5822]  </TASK>
[  706.215539][ T5822] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  706.225978][ T5822] CPU: 1 UID: 0 PID: 5822 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(none) 
[  706.226134][ T5822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  706.226224][ T5822] Call Trace:
[  706.226276][ T5822]  <TASK>
[  706.226330][ T5822]  __dump_stack+0x26/0x30
[  706.226532][ T5822]  dump_stack_lvl+0x1df/0x270
[  706.226708][ T5822]  dump_stack+0x1e/0x25
[  706.226864][ T5822]  f2fs_handle_critical_error+0xa6f/0xc20
[  706.227097][ T5822]  f2fs_stop_checkpoint+0x65/0x80
[  706.227296][ T5822]  f2fs_write_end_io+0x101c/0x1bc0
[  706.227484][ T5822]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  706.227621][ T5822]  bio_endio+0xeb4/0x1010
[  706.227842][ T5822]  submit_bio_noacct+0x213/0x2750
[  706.228077][ T5822]  submit_bio+0x57c/0x630
[  706.228263][ T5822]  f2fs_submit_write_bio+0x92/0x250
[  706.228463][ T5822]  __submit_merged_bio+0x16f/0x6a0
[  706.228660][ T5822]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  706.228857][ T5822]  __submit_merged_write_cond+0x458/0x9a0
[  706.229099][ T5822]  f2fs_write_data_pages+0x4bb2/0x5480
[  706.229461][ T5822]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  706.229642][ T5822]  ? folios_put_refs+0x51/0xb10
[  706.229835][ T5822]  ? filter_irq_stacks+0x49/0x190
[  706.229977][ T5822]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  706.230164][ T5822]  ? stack_depot_save_flags+0x35/0x7b0
[  706.230315][ T5822]  ? kmsan_get_metadata+0xfb/0x160
[  706.230504][ T5822]  ? kmsan_get_metadata+0xfb/0x160
[  706.230698][ T5822]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  706.230882][ T5822]  ? kmsan_get_metadata+0xfb/0x160
[  706.231055][ T5822]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  706.231254][ T5822]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  706.231481][ T5822]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  706.231702][ T5822]  do_writepages+0x3f2/0x860
[  706.231865][ T5822]  ? _raw_spin_unlock+0x30/0x50
[  706.232042][ T5822]  ? wbc_attach_and_unlock_inode+0x131/0x680
[  706.232283][ T5822]  filemap_fdatawrite+0x207/0x260
[  706.232565][ T5822]  f2fs_sync_dirty_inodes+0x2ab/0x9e0
[  706.232759][ T5822]  f2fs_write_checkpoint+0xfe2/0x2b00
[  706.233060][ T5822]  kill_f2fs_super+0x2ff/0x970
[  706.233261][ T5822]  ? __pfx_kill_f2fs_super+0x10/0x10
[  706.233429][ T5822]  deactivate_locked_super+0xc8/0x3c0
[  706.233611][ T5822]  deactivate_super+0x12f/0x140
[  706.233776][ T5822]  cleanup_mnt+0x6fb/0x780
[  706.233964][ T5822]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  706.234139][ T5822]  ? __pfx___cleanup_mnt+0x10/0x10
[  706.234375][ T5822]  __cleanup_mnt+0x22/0x30
[  706.234571][ T5822]  task_work_run+0x206/0x2b0
[  706.234750][ T5822]  exit_to_user_mode_loop+0x2a6/0x330
[  706.234959][ T5822]  do_syscall_64+0x1e3/0x210
[  706.235096][ T5822]  ? irqentry_exit+0x16/0x60
[  706.235276][ T5822]  ? clear_bhb_loop+0x40/0x90
[  706.235444][ T5822]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  706.235595][ T5822] RIP: 0033:0x7f949b78ff17
[  706.235706][ T5822] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  706.235829][ T5822] RSP: 002b:00007ffdf2c8b278 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  706.235964][ T5822] RAX: 0000000000000000 RBX: 00007f949b811c05 RCX: 00007f949b78ff17
[  706.236061][ T5822] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffdf2c8b330
[  706.236148][ T5822] RBP: 00007ffdf2c8b330 R08: 0000000000000000 R09: 0000000000000000
[  706.236262][ T5822] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffdf2c8c3c0
[  706.236362][ T5822] R13: 00007f949b811c05 R14: 00000000000ac4ad R15: 00007ffdf2c8c400
[  706.236511][ T5822]  </TASK>
[  706.591388][ T5822] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  707.981599][T10771] loop7: detected capacity change from 0 to 32768
[  708.004158][T10771] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.1462 (10771)
[  708.053790][T10771] BTRFS info (device loop7): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  708.065462][T10771] BTRFS info (device loop7): using sha256 (sha256-lib) checksum algorithm
[  709.205877][T10771] BTRFS info (device loop7): rebuilding free space tree
[  709.261098][T10771] BTRFS info (device loop7): enabling ssd optimizations
[  709.269119][T10771] BTRFS info (device loop7): turning on sync discard
[  709.276023][T10771] BTRFS info (device loop7): enabling free space tree
[  709.283245][T10771] BTRFS info (device loop7): force clearing of disk cache
[  709.290885][T10771] BTRFS info (device loop7): enabling auto defrag
[  709.297578][T10771] BTRFS info (device loop7): max_inline set to 0
[  709.458328][   T42] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  709.758807][   T42] usb 4-1: Using ep0 maxpacket: 16
[  709.847631][   T42] usb 4-1: New USB device found, idVendor=061d, idProduct=c020, bcdDevice=9c.15
[  709.857169][   T42] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  709.866384][   T42] usb 4-1: Product: syz
[  709.871380][   T42] usb 4-1: Manufacturer: syz
[  709.876158][   T42] usb 4-1: SerialNumber: syz
[  709.922440][   T42] usb 4-1: config 0 descriptor??
[  709.947545][   T42] ssu100 4-1:0.0: Quatech SSU-100 USB to Serial Driver converter detected
[  710.053004][ T9437] BTRFS info (device loop7): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  710.828570][T10802] nbd6: detected capacity change from 0 to 63
[  710.928280][T10807] block nbd6: NBD_DISCONNECT
[  710.933534][T10807] block nbd6: Disconnected due to user request.
[  710.940353][T10807] block nbd6: shutting down sockets
[  710.985201][    C0] I/O error, dev nbd6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  710.994727][    C0] Buffer I/O error on dev nbd6, logical block 0, async page read
[  711.002906][    C0] I/O error, dev nbd6, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  711.012325][    C0] Buffer I/O error on dev nbd6, logical block 1, async page read
[  711.020382][    C0] I/O error, dev nbd6, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  711.029783][    C0] Buffer I/O error on dev nbd6, logical block 2, async page read
[  711.037740][    C0] I/O error, dev nbd6, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  711.047141][    C0] Buffer I/O error on dev nbd6, logical block 3, async page read
[  711.114364][ T6051] I/O error, dev nbd6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  711.124394][ T6051] Buffer I/O error on dev nbd6, logical block 0, async page read
[  711.132777][ T6051] I/O error, dev nbd6, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  711.142198][ T6051] Buffer I/O error on dev nbd6, logical block 1, async page read
[  711.150529][ T6051] I/O error, dev nbd6, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  711.159956][ T6051] Buffer I/O error on dev nbd6, logical block 2, async page read
[  711.170437][ T6051] I/O error, dev nbd6, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  711.183654][ T6051] Buffer I/O error on dev nbd6, logical block 3, async page read
[  711.192114][ T6051] I/O error, dev nbd6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  711.201625][ T6051] Buffer I/O error on dev nbd6, logical block 0, async page read
[  711.210350][ T6051] I/O error, dev nbd6, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  711.219784][ T6051] Buffer I/O error on dev nbd6, logical block 1, async page read
[  711.232015][ T6051] ldm_validate_partition_table(): Disk read failed.
[  711.241913][ T6051] Dev nbd6: unable to read RDB block 0
[  711.250897][ T6051]  nbd6: unable to read partition table
[  711.279250][ T6051] ldm_validate_partition_table(): Disk read failed.
[  711.288981][ T6051] Dev nbd6: unable to read RDB block 0
[  711.297529][ T6051]  nbd6: unable to read partition table
[  711.381407][   T42] usb 4-1: Quatech SSU-100 USB to Serial Driver converter now attached to ttyUSB0
[  711.399415][   T24] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  711.519154][   T42] usb 4-1: USB disconnect, device number 8
[  711.615356][   T42] ssu100 ttyUSB0: Quatech SSU-100 USB to Serial Driver converter now disconnected from ttyUSB0
[  711.629771][   T42] ssu100 4-1:0.0: device disconnected
[  711.695404][   T24] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  711.706340][   T24] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 3
[  711.820714][   T24] usb 8-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  711.830685][   T24] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  711.839157][   T24] usb 8-1: SerialNumber: syz
[  712.152106][   T24] usb 8-1: 0:2 : does not exist
[  712.365176][   T24] usb 8-1: USB disconnect, device number 4
[  712.981585][ T6055] udevd[6055]: error opening ATTR{/sys/devices/platform/dummy_hcd.7/usb8/8-1/8-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  717.375366][T10898] loop0: detected capacity change from 0 to 32768
[  717.468154][T10898] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  717.668008][T10898] XFS (loop0): Ending clean mount
[  717.678869][T10898] XFS (loop0): Quotacheck needed: Please wait.
[  717.764813][T10898] XFS (loop0): Quotacheck: Done.
[  717.969700][ T5812] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  719.679971][T10925] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1488'.
[  721.248034][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  721.255322][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  721.572870][T10935] loop3: detected capacity change from 0 to 40427
[  721.590941][T10935] F2FS-fs (loop3): build fault injection rate: 690
[  721.601091][T10935] F2FS-fs (loop3): invalid crc value
[  721.967639][T10935] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  722.007317][T10935] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  722.058877][   T30] audit: type=1800 audit(1757273056.987:72): pid=10935 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1489" name="file1" dev="loop3" ino=10 res=0 errno=0
[  722.160296][ T5822] syz-executor: attempt to access beyond end of device
[  722.160296][ T5822] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  722.175080][ T5822] CPU: 1 UID: 0 PID: 5822 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(none) 
[  722.175221][ T5822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  722.175302][ T5822] Call Trace:
[  722.175356][ T5822]  <TASK>
[  722.175404][ T5822]  __dump_stack+0x26/0x30
[  722.175581][ T5822]  dump_stack_lvl+0x1df/0x270
[  722.175767][ T5822]  dump_stack+0x1e/0x25
[  722.175951][ T5822]  f2fs_handle_critical_error+0xa6f/0xc20
[  722.176209][ T5822]  f2fs_stop_checkpoint+0x65/0x80
[  722.176439][ T5822]  f2fs_write_end_io+0x101c/0x1bc0
[  722.176633][ T5822]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  722.176780][ T5822]  bio_endio+0xeb4/0x1010
[  722.176961][ T5822]  submit_bio_noacct+0x213/0x2750
[  722.177191][ T5822]  submit_bio+0x57c/0x630
[  722.177374][ T5822]  f2fs_submit_write_bio+0x92/0x250
[  722.177574][ T5822]  __submit_merged_bio+0x16f/0x6a0
[  722.177771][ T5822]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  722.177985][ T5822]  __submit_merged_write_cond+0x458/0x9a0
[  722.178208][ T5822]  f2fs_write_data_pages+0x4bb2/0x5480
[  722.178579][ T5822]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  722.178767][ T5822]  ? folios_put_refs+0x51/0xb10
[  722.178972][ T5822]  ? filter_irq_stacks+0x49/0x190
[  722.179131][ T5822]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  722.179316][ T5822]  ? stack_depot_save_flags+0x35/0x7b0
[  722.179469][ T5822]  ? kmsan_get_metadata+0xfb/0x160
[  722.179636][ T5822]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  722.179778][ T5822]  ? kmsan_get_metadata+0xfb/0x160
[  722.179931][ T5822]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  722.180095][ T5822]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  722.180289][ T5822]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  722.180479][ T5822]  do_writepages+0x3f2/0x860
[  722.180650][ T5822]  ? _raw_spin_unlock+0x30/0x50
[  722.180819][ T5822]  ? wbc_attach_and_unlock_inode+0x131/0x680
[  722.181070][ T5822]  filemap_fdatawrite+0x207/0x260
[  722.181310][ T5822]  f2fs_sync_dirty_inodes+0x2ab/0x9e0
[  722.181489][ T5822]  f2fs_write_checkpoint+0xfe2/0x2b00
[  722.181799][ T5822]  kill_f2fs_super+0x2ff/0x970
[  722.181989][ T5822]  ? __pfx_kill_f2fs_super+0x10/0x10
[  722.182140][ T5822]  deactivate_locked_super+0xc8/0x3c0
[  722.182307][ T5822]  deactivate_super+0x12f/0x140
[  722.182460][ T5822]  cleanup_mnt+0x6fb/0x780
[  722.182630][ T5822]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  722.182817][ T5822]  ? __pfx___cleanup_mnt+0x10/0x10
[  722.183019][ T5822]  __cleanup_mnt+0x22/0x30
[  722.183213][ T5822]  task_work_run+0x206/0x2b0
[  722.183391][ T5822]  exit_to_user_mode_loop+0x2a6/0x330
[  722.183571][ T5822]  do_syscall_64+0x1e3/0x210
[  722.183710][ T5822]  ? irqentry_exit+0x16/0x60
[  722.183913][ T5822]  ? clear_bhb_loop+0x40/0x90
[  722.184080][ T5822]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  722.184239][ T5822] RIP: 0033:0x7f949b78ff17
[  722.184350][ T5822] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  722.184480][ T5822] RSP: 002b:00007ffdf2c8b278 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  722.184619][ T5822] RAX: 0000000000000000 RBX: 00007f949b811c05 RCX: 00007f949b78ff17
[  722.184719][ T5822] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffdf2c8b330
[  722.184810][ T5822] RBP: 00007ffdf2c8b330 R08: 0000000000000000 R09: 0000000000000000
[  722.184894][ T5822] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffdf2c8c3c0
[  722.185014][ T5822] R13: 00007f949b811c05 R14: 00000000000b04dc R15: 00007ffdf2c8c400
[  722.185137][ T5822]  </TASK>
[  722.534750][ T5822] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  722.627411][T10951] netlink: 44 bytes leftover after parsing attributes in process `syz.6.1498'.
[  723.308981][T10957] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1500'.
[  724.062321][T10963] binder: 10960:10963 unknown command 0
[  724.069752][T10963] binder: 10960:10963 ioctl c0306201 200000000640 returned -22
[  724.659920][   T24] IPVS: starting estimator thread 0...
[  724.762259][T10972] IPVS: using max 240 ests per chain, 12000 per kthread
[  725.639895][T10980] loop7: detected capacity change from 0 to 512
[  725.720678][T10980] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  725.851131][T10980] EXT4-fs (loop7): 1 truncate cleaned up
[  725.890343][T10980] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  726.022798][T10874] Bluetooth: hci1: Frame reassembly failed (-84)
[  726.106029][   T30] audit: type=1800 audit(1757273061.047:73): pid=10980 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.1507" name="file1" dev="loop7" ino=15 res=0 errno=0
[  726.602970][ T9437] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  727.706617][T11005] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1517'.
[  727.820556][T11005] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1517'.
[  728.108175][T10477] Bluetooth: hci1: command 0x1003 tx timeout
[  728.114905][ T5817] Bluetooth: hci1: Opcode 0x1003 failed: -110
[  728.700654][T11018] 9pnet: p9_errstr2errno: server reported unknown error 0000000000,group_id=
[  730.460731][T11026] loop3: detected capacity change from 0 to 40427
[  730.490744][T11026] F2FS-fs (loop3): invalid crc value
[  730.829413][T11026] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  730.858459][T11026] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  730.949232][   T30] audit: type=1800 audit(1757273065.877:74): pid=11026 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1524" name="file1" dev="loop3" ino=10 res=0 errno=0
[  730.954116][T11026] syz.3.1524: attempt to access beyond end of device
[  730.954116][T11026] loop3: rw=0, sector=45096, nr_sectors = 8 limit=40427
[  731.057114][T11035] geneve2: entered promiscuous mode
[  731.160016][ T5822] syz-executor: attempt to access beyond end of device
[  731.160016][ T5822] loop3: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  731.176710][ T5822] CPU: 1 UID: 0 PID: 5822 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(none) 
[  731.176863][ T5822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  731.176944][ T5822] Call Trace:
[  731.176993][ T5822]  <TASK>
[  731.177040][ T5822]  __dump_stack+0x26/0x30
[  731.177217][ T5822]  dump_stack_lvl+0x1df/0x270
[  731.177395][ T5822]  dump_stack+0x1e/0x25
[  731.177553][ T5822]  f2fs_handle_critical_error+0xa6f/0xc20
[  731.177813][ T5822]  f2fs_stop_checkpoint+0x65/0x80
[  731.178056][ T5822]  f2fs_write_end_io+0x101c/0x1bc0
[  731.178261][ T5822]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  731.178411][ T5822]  bio_endio+0xeb4/0x1010
[  731.178588][ T5822]  submit_bio_noacct+0x213/0x2750
[  731.178822][ T5822]  submit_bio+0x57c/0x630
[  731.179022][ T5822]  f2fs_submit_write_bio+0x92/0x250
[  731.179213][ T5822]  __submit_merged_bio+0x16f/0x6a0
[  731.179427][ T5822]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  731.179622][ T5822]  __submit_merged_write_cond+0x458/0x9a0
[  731.179836][ T5822]  f2fs_write_data_pages+0x4bb2/0x5480
[  731.180171][ T5822]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  731.180342][ T5822]  ? folios_put_refs+0x51/0xb10
[  731.180517][ T5822]  ? filter_irq_stacks+0x49/0x190
[  731.180646][ T5822]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  731.180815][ T5822]  ? stack_depot_save_flags+0x35/0x7b0
[  731.180957][ T5822]  ? kmsan_get_metadata+0xfb/0x160
[  731.181156][ T5822]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  731.181319][ T5822]  ? kmsan_get_metadata+0xfb/0x160
[  731.181496][ T5822]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  731.181667][ T5822]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  731.181881][ T5822]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  731.182084][ T5822]  do_writepages+0x3f2/0x860
[  731.182240][ T5822]  ? _raw_spin_unlock+0x30/0x50
[  731.182408][ T5822]  ? wbc_attach_and_unlock_inode+0x131/0x680
[  731.182639][ T5822]  filemap_fdatawrite+0x207/0x260
[  731.182906][ T5822]  f2fs_sync_dirty_inodes+0x2ab/0x9e0
[  731.183101][ T5822]  f2fs_write_checkpoint+0xfe2/0x2b00
[  731.183396][ T5822]  kill_f2fs_super+0x2ff/0x970
[  731.183579][ T5822]  ? __pfx_kill_f2fs_super+0x10/0x10
[  731.183736][ T5822]  deactivate_locked_super+0xc8/0x3c0
[  731.183927][ T5822]  deactivate_super+0x12f/0x140
[  731.184089][ T5822]  cleanup_mnt+0x6fb/0x780
[  731.184278][ T5822]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  731.184452][ T5822]  ? __pfx___cleanup_mnt+0x10/0x10
[  731.184655][ T5822]  __cleanup_mnt+0x22/0x30
[  731.184852][ T5822]  task_work_run+0x206/0x2b0
[  731.185047][ T5822]  exit_to_user_mode_loop+0x2a6/0x330
[  731.185217][ T5822]  do_syscall_64+0x1e3/0x210
[  731.185347][ T5822]  ? irqentry_exit+0x16/0x60
[  731.185518][ T5822]  ? clear_bhb_loop+0x40/0x90
[  731.185666][ T5822]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  731.185811][ T5822] RIP: 0033:0x7f949b78ff17
[  731.185917][ T5822] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  731.186061][ T5822] RSP: 002b:00007ffdf2c8b278 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  731.186203][ T5822] RAX: 0000000000000000 RBX: 00007f949b811c05 RCX: 00007f949b78ff17
[  731.186299][ T5822] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffdf2c8b330
[  731.186390][ T5822] RBP: 00007ffdf2c8b330 R08: 0000000000000000 R09: 0000000000000000
[  731.186483][ T5822] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffdf2c8c3c0
[  731.186578][ T5822] R13: 00007f949b811c05 R14: 00000000000b27cb R15: 00007ffdf2c8c400
[  731.186714][ T5822]  </TASK>
[  731.553056][ T5822] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  733.163717][T11045] loop0: detected capacity change from 0 to 8
[  733.248961][T11045] SQUASHFS error: Failed to read block 0x62: -5
[  733.255692][T11045] squashfs image failed sanity check
[  733.543888][T11049] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1528'.
[  734.412729][T11050] loop7: detected capacity change from 0 to 32768
[  734.481615][T11050] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.1532 (11050)
[  734.522185][T11050] BTRFS info (device loop7): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  734.533128][T11050] BTRFS info (device loop7): using sha256 (sha256-lib) checksum algorithm
[  734.542223][T11050] BTRFS warning (device loop7): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  734.990783][T11050] BTRFS info (device loop7): rebuilding free space tree
[  735.066062][T11050] BTRFS info (device loop7): disabling free space tree
[  735.073610][T11050] BTRFS info (device loop7): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  735.083697][T11050] BTRFS info (device loop7): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  735.177693][T11050] BTRFS info (device loop7): setting nodatasum
[  735.184336][T11050] BTRFS info (device loop7): setting nodatacow
[  735.191083][T11050] BTRFS info (device loop7): enabling ssd optimizations
[  735.198983][T11050] BTRFS info (device loop7): using spread ssd allocation scheme
[  735.206834][T11050] BTRFS info (device loop7): turning off barriers
[  735.213682][T11050] BTRFS info (device loop7): enabling disk space caching
[  735.221094][T11050] BTRFS info (device loop7): force clearing of disk cache
[  735.473798][ T9437] BTRFS info (device loop7): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  738.119838][T11098] loop6: detected capacity change from 0 to 32768
[  738.135645][T11098] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.1545 (11098)
[  738.185894][T11098] BTRFS info (device loop6): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  738.198124][T11098] BTRFS info (device loop6): using sha256 (sha256-lib) checksum algorithm
[  738.392890][T11108] input: syz0 as /devices/virtual/input/input14
[  738.495205][T11098] BTRFS info (device loop6): rebuilding free space tree
[  738.571599][T11098] BTRFS info (device loop6): setting nodatasum
[  738.578610][T11098] BTRFS info (device loop6): allowing degraded mounts
[  738.585726][T11098] BTRFS info (device loop6): setting nodatacow
[  738.592308][T11098] BTRFS info (device loop6): enabling ssd optimizations
[  738.599545][T11098] BTRFS info (device loop6): using spread ssd allocation scheme
[  738.609193][T11098] BTRFS info (device loop6): turning off barriers
[  738.618336][T11098] BTRFS info (device loop6): enabling free space tree
[  738.625346][T11098] BTRFS info (device loop6): force clearing of disk cache
[  738.730418][   T30] audit: type=1800 audit(1757273073.617:75): pid=11098 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1545" name="bus" dev="loop6" ino=263 res=0 errno=0
[  738.899011][   T30] audit: type=1804 audit(1757273073.707:76): pid=11098 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.1545" name="/newroot/91/bus/bus" dev="loop6" ino=263 res=1 errno=0
[  739.113234][ T9128] BTRFS info (device loop6): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  739.956876][T11134] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1550'.
[  739.967076][T11134] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1550'.
[  740.658357][   T24] Bluetooth: hci0: Opcode 0x0c1a failed: -110
[  740.668404][   T24] Bluetooth: hci0: Error when powering off device on rfkill (-110)
[  740.751090][ T5817] Bluetooth: hci0: command 0x0406 tx timeout
[  742.810309][ T5817] Bluetooth: hci3: command 0x0406 tx timeout
[  743.521898][ T5875] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  743.604494][T11164] loop6: detected capacity change from 0 to 32768
[  743.616838][   T24] Bluetooth: hci3: Opcode 0x0c1a failed: -110
[  743.625620][   T24] Bluetooth: hci3: Error when powering off device on rfkill (-110)
[  743.637334][T11164] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.1560 (11164)
[  743.718609][T11164] BTRFS info (device loop6): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  743.733227][T11164] BTRFS info (device loop6): using crc32c (crc32c-lib) checksum algorithm
[  743.809502][ T5875] usb 8-1: Using ep0 maxpacket: 8
[  743.851537][ T5875] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[  743.863207][ T5875] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  743.873667][ T5875] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  743.883729][ T5875] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[  743.893819][ T5875] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 0
[  743.903998][ T5875] usb 8-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[  743.913428][ T5875] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  744.024953][ T5875] usb 8-1: config 0 descriptor??
[  744.205592][T11164] BTRFS info (device loop6): rebuilding free space tree
[  744.289437][T11164] BTRFS info (device loop6): allowing degraded mounts
[  744.296494][T11164] BTRFS info (device loop6): enabling ssd optimizations
[  744.303869][T11164] BTRFS info (device loop6): enabling free space tree
[  744.311064][T11164] BTRFS info (device loop6): force clearing of disk cache
[  744.319296][T11164] BTRFS info (device loop6): use zstd compression, level 3
[  744.326848][T11164] BTRFS info (device loop6): max_inline set to 0
[  744.380938][   T30] audit: type=1800 audit(1757273079.307:77): pid=11164 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1560" name="bus" dev="loop6" ino=263 res=0 errno=0
[  744.467082][T10308] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  744.678897][T10308] usb 4-1: Using ep0 maxpacket: 16
[  744.718825][T10308] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  744.730347][T10308] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  744.743752][T10308] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  744.755251][T10308] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  744.875137][ T9128] BTRFS info (device loop6): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  745.045559][T10308] usb 4-1: config 0 descriptor??
[  745.528742][T10308] usbhid 4-1:0.0: can't add hid device: -71
[  745.535419][T10308] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  745.658403][T10308] usb 4-1: USB disconnect, device number 9
[  745.766923][   T24] Bluetooth: hci4: Opcode 0x0c1a failed: -110
[  745.775457][ T5817] Bluetooth: hci4: command 0x0406 tx timeout
[  745.787942][   T24] Bluetooth: hci4: Error when powering off device on rfkill (-110)
[  747.079279][T11206] loop3: detected capacity change from 0 to 128
[  747.336927][T11208] loop7: detected capacity change from 0 to 1024
[  747.572253][T11208] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  748.750801][ T9437] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  748.959702][ T5817] Bluetooth: hci2: command 0x0406 tx timeout
[  748.973346][   T24] Bluetooth: hci2: Opcode 0x0c1a failed: -110
[  748.980029][   T24] Bluetooth: hci2: Error when powering off device on rfkill (-110)
[  750.549024][T11240] netlink: 'syz.6.1579': attribute type 1 has an invalid length.
[  750.661327][T11240] 8021q: adding VLAN 0 to HW filter on device bond1
[  750.756098][T11235] loop7: detected capacity change from 0 to 4096
[  750.778578][T11243] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1579'.
[  750.904106][T11235] ntfs3(loop7): Different NTFS sector size (2048) and media sector size (512).
[  751.249914][T11244] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1580'.
[  751.407289][T11243] bond1 (unregistering): Released all slaves
[  751.467358][ T5817] Bluetooth: hci5: command 0x0406 tx timeout
[  751.478765][   T24] Bluetooth: hci5: Opcode 0x0c1a failed: -110
[  751.485295][   T24] Bluetooth: hci5: Error when powering off device on rfkill (-110)
[  751.696861][ T5817] Bluetooth: hci1: urb ffff88804dd91600 submission failed (90)
[  751.710230][ T5875] usb 8-1: USB disconnect, device number 5
[  751.781378][T11235] ntfs3(loop7): ino=b, mi_enum_attr
[  751.786994][T11235] ntfs3(loop7): Mark volume as dirty due to NTFS errors
[  751.844747][T11235] ntfs3(loop7): Failed to load $Extend (-22).
[  751.851291][T11235] ntfs3(loop7): Failed to initialize $Extend.
[  751.859961][T10477] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  751.879061][ T5819] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  751.914520][ T5819] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  751.943595][ T5819] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  751.957240][ T5819] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  752.142333][ T5817] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  752.189517][ T5817] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  752.219910][ T5817] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  752.256464][ T5817] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  752.284731][ T5817] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  752.499161][ T5875] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[  752.803104][ T5875] usb 8-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00
[  752.812763][ T5875] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  752.821317][ T5875] usb 8-1: Product: syz
[  752.825669][ T5875] usb 8-1: Manufacturer: syz
[  752.832538][ T5875] usb 8-1: SerialNumber: syz
[  752.995249][   T30] audit: type=1800 audit(1757273087.897:78): pid=11254 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1582" name="bus" dev="overlay" ino=575 res=0 errno=0
[  754.118377][ T5875] rtl8150 8-1:1.0: couldn't reset the device
[  754.126133][ T5875] rtl8150 8-1:1.0: probe with driver rtl8150 failed with error -5
[  754.228411][ T5875] usb 8-1: USB disconnect, device number 6
[  754.409974][ T5819] Bluetooth: hci6: command tx timeout
[  754.419111][T11201] chnl_net:caif_netlink_parms(): no params data found
[  755.665388][T10878] bridge_slave_1: left allmulticast mode
[  755.671551][T10878] bridge_slave_1: left promiscuous mode
[  755.678554][T10878] bridge0: port 2(bridge_slave_1) entered disabled state
[  756.059815][T10878] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  756.122304][T10878] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  756.165040][T10878] bond0 (unregistering): Released all slaves
[  756.307415][T11274] io-wq is not configured for unbound workers
[  756.478634][ T5819] Bluetooth: hci6: command tx timeout
[  756.969541][T11201] bridge0: port 1(bridge_slave_0) entered blocking state
[  756.977234][T11201] bridge0: port 1(bridge_slave_0) entered disabled state
[  756.985404][T11201] bridge_slave_0: entered allmulticast mode
[  756.995578][T11201] bridge_slave_0: entered promiscuous mode
[  757.155582][T11201] bridge0: port 2(bridge_slave_1) entered blocking state
[  757.163742][T11201] bridge0: port 2(bridge_slave_1) entered disabled state
[  757.171686][T11201] bridge_slave_1: entered allmulticast mode
[  757.181714][T11201] bridge_slave_1: entered promiscuous mode
[  757.344722][T11287] loop7: detected capacity change from 0 to 512
[  757.378325][T10878] hsr_slave_0: left promiscuous mode
[  757.414541][T11287] ext4: Unknown parameter 'fowner<00000000000000000000'
[  757.424798][T10878] hsr_slave_1: left promiscuous mode
[  757.433717][T10878] batman_adv: batadv0: Removing interface: batadv_slave_0
[  757.493152][T10878] batman_adv: batadv0: Removing interface: batadv_slave_1
[  757.577117][ T5819] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  757.606647][ T5819] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  757.617670][ T5819] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  757.780998][ T5819] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  757.860818][ T5819] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  758.446515][T10878] team0 (unregistering): Port device team_slave_1 removed
[  758.558426][ T5817] Bluetooth: hci6: command tx timeout
[  758.577408][T10878] team0 (unregistering): Port device team_slave_0 removed
[  759.353467][T11201] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  759.609861][T10310] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  759.691380][T11201] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  759.763675][T10878] IPVS: stop unused estimator thread 0...
[  759.778463][T10310] usb 8-1: Using ep0 maxpacket: 32
[  759.807920][T10310] usb 8-1: config 0 has no interfaces?
[  759.837412][T10310] usb 8-1: New USB device found, idVendor=99a9, idProduct=1597, bcdDevice=e4.bb
[  759.847353][T10310] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=31
[  759.855910][T10310] usb 8-1: Product: syz
[  759.860391][T10310] usb 8-1: Manufacturer: syz
[  759.865171][T10310] usb 8-1: SerialNumber: syz
[  759.889943][ T1571] usb 7-1: new high-speed USB device number 4 using dummy_hcd
[  759.946170][T10310] usb 8-1: config 0 descriptor??
[  759.998599][ T5817] Bluetooth: hci1: command tx timeout
[  760.065256][ T1571] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  760.076426][ T1571] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[  760.141918][T11201] team0: Port device team_slave_0 added
[  760.176727][ T1571] usb 7-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  760.186400][ T1571] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  760.189829][ T5875] usb 8-1: USB disconnect, device number 7
[  760.194850][ T1571] usb 7-1: SerialNumber: syz
[  760.242017][T11201] team0: Port device team_slave_1 added
[  760.524604][ T1571] usb 7-1: 0:2 : does not exist
[  760.603954][T11201] batman_adv: batadv0: Adding interface: batadv_slave_0
[  760.611582][T11201] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  760.638366][T11201] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  760.649203][ T5817] Bluetooth: hci6: command tx timeout
[  760.749818][ T1571] usb 7-1: USB disconnect, device number 4
[  760.803532][T11201] batman_adv: batadv0: Adding interface: batadv_slave_1
[  760.811825][T11201] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  760.838537][T11201] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  761.014760][ T5993] udevd[5993]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  761.068013][T11201] hsr_slave_0: entered promiscuous mode
[  761.078684][T11201] hsr_slave_1: entered promiscuous mode
[  761.087627][T11201] debugfs: 'hsr0' already exists in 'hsr'
[  761.097177][T11201] Cannot create hsr debugfs directory
[  762.099486][ T5817] Bluetooth: hci1: command tx timeout
[  762.281444][T11288] chnl_net:caif_netlink_parms(): no params data found
[  763.277594][T11201] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  763.411868][T11201] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  763.490375][T11201] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  763.565366][T11201] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  764.176944][ T5817] Bluetooth: hci1: command tx timeout
[  764.359675][T11288] bridge0: port 1(bridge_slave_0) entered blocking state
[  764.367444][T11288] bridge0: port 1(bridge_slave_0) entered disabled state
[  764.377525][T11288] bridge_slave_0: entered allmulticast mode
[  764.387193][T11288] bridge_slave_0: entered promiscuous mode
[  764.556048][T11288] bridge0: port 2(bridge_slave_1) entered blocking state
[  764.563884][T11288] bridge0: port 2(bridge_slave_1) entered disabled state
[  764.572074][T11288] bridge_slave_1: entered allmulticast mode
[  764.582166][T11288] bridge_slave_1: entered promiscuous mode
[  764.884866][T11351] loop6: detected capacity change from 0 to 64
[  766.252739][T11288] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  766.278861][ T5817] Bluetooth: hci1: command tx timeout
[  766.522388][T11288] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  766.850744][T11361] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1608'.
[  766.894601][T11288] team0: Port device team_slave_0 added
[  767.025084][T11201] 8021q: adding VLAN 0 to HW filter on device bond0
[  767.067117][T11288] team0: Port device team_slave_1 added
[  767.513597][T11288] batman_adv: batadv0: Adding interface: batadv_slave_0
[  767.521075][T11288] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  767.550770][T11288] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  767.688080][T11201] 8021q: adding VLAN 0 to HW filter on device team0
[  767.804775][ T9294] bridge0: port 1(bridge_slave_0) entered blocking state
[  767.812456][ T9294] bridge0: port 1(bridge_slave_0) entered forwarding state
[  768.066740][ T9294] bridge0: port 2(bridge_slave_1) entered blocking state
[  768.074434][ T9294] bridge0: port 2(bridge_slave_1) entered forwarding state
[  768.597230][T11368] loop7: detected capacity change from 0 to 32768
[  768.607187][T11368] XFS: noikeep mount option is deprecated.
[  768.621029][T11288] batman_adv: batadv0: Adding interface: batadv_slave_1
[  768.628384][T11288] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  768.654984][T11288] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  768.811886][T11288] hsr_slave_0: entered promiscuous mode
[  768.822825][T11288] hsr_slave_1: entered promiscuous mode
[  768.831788][T11288] debugfs: 'hsr0' already exists in 'hsr'
[  768.837714][T11288] Cannot create hsr debugfs directory
[  768.882184][T11368] XFS (loop7): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  769.334005][T11368] XFS (loop7): Ending clean mount
[  769.347626][T11368] XFS (loop7): Quotacheck needed: Please wait.
[  769.555281][T11387] sctp: failed to load transform for md5: -2
[  769.555697][T11368] XFS (loop7): Quotacheck: Done.
[  769.669965][T11368] overlayfs: invalid origin (0000)
[  770.064849][ T9437] XFS (loop7): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  770.967688][T11288] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  771.141856][T11288] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  771.241000][T11288] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  771.251161][T11405] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1613'.
[  771.353971][T11288] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  771.715195][T11201] 8021q: adding VLAN 0 to HW filter on device batadv0
[  772.555119][T11415] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1616'.
[  772.564722][T11415] netlink: 'syz.6.1616': attribute type 12 has an invalid length.
[  772.628294][T10874] netdevsim netdevsim6 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  772.684132][T10874] netdevsim netdevsim6 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  772.800062][T11415] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1616'.
[  772.809316][T11415] netlink: 'syz.6.1616': attribute type 12 has an invalid length.
[  772.966497][ T9294] netdevsim netdevsim6 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  772.993240][ T9294] netdevsim netdevsim6 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  773.263519][T11288] 8021q: adding VLAN 0 to HW filter on device bond0
[  773.535221][T11288] 8021q: adding VLAN 0 to HW filter on device team0
[  773.675205][ T3836] bridge0: port 1(bridge_slave_0) entered blocking state
[  773.682958][ T3836] bridge0: port 1(bridge_slave_0) entered forwarding state
[  773.869422][ T3836] bridge0: port 2(bridge_slave_1) entered blocking state
[  773.876942][ T3836] bridge0: port 2(bridge_slave_1) entered forwarding state
[  774.626247][T11433] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1620'.
[  776.100822][T11201] veth0_vlan: entered promiscuous mode
[  776.237325][T11201] veth1_vlan: entered promiscuous mode
[  776.355080][T11449] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[  776.361952][T11449] Bluetooth: hci6: Opcode 0x0406 failed: -4
[  776.451315][T11449] Bluetooth: hci6: Opcode 0x0406 failed: -4
[  776.505756][T11449] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  776.513499][T11449] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  776.582515][T11449] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  776.732561][T11201] veth0_macvtap: entered promiscuous mode
[  776.821914][T11201] veth1_macvtap: entered promiscuous mode
[  777.031212][T11288] 8021q: adding VLAN 0 to HW filter on device batadv0
[  777.134305][T11201] batman_adv: batadv0: Interface activated: batadv_slave_0
[  777.322761][T11201] batman_adv: batadv0: Interface activated: batadv_slave_1
[  777.471600][T10876] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  777.553487][T10876] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  777.633193][T10876] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  777.708993][T10876] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  777.998690][ T5817] Bluetooth: hci6: command 0x0c1a tx timeout
[  778.562060][ T5817] Bluetooth: hci1: command 0x0405 tx timeout
[  779.412439][T11481] loop6: detected capacity change from 0 to 4096
[  779.459724][T11481] ntfs3(loop6): Different NTFS sector size (4096) and media sector size (512).
[  779.818189][T11481] ntfs3(loop6): Mark volume as dirty due to NTFS errors
[  779.847467][T11481] ntfs3(loop6): Failed to load $Extend (-22).
[  779.855135][T11481] ntfs3(loop6): Failed to initialize $Extend.
[  780.078724][ T5817] Bluetooth: hci6: command 0x0c1a tx timeout
[  780.146409][   T30] audit: type=1326 audit(1757273115.087:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11496 comm="syz.0.1630" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6df4b8ebe9 code=0x0
[  780.584280][T11288] veth0_vlan: entered promiscuous mode
[  780.639780][T11502] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1631'.
[  780.650358][ T5817] Bluetooth: hci1: command 0x0405 tx timeout
[  780.705810][T11288] veth1_vlan: entered promiscuous mode
[  781.015616][T11288] veth0_macvtap: entered promiscuous mode
[  781.135272][T11288] veth1_macvtap: entered promiscuous mode
[  781.169056][T11506] loop6: detected capacity change from 0 to 128
[  781.359565][T11288] batman_adv: batadv0: Interface activated: batadv_slave_0
[  781.414981][T11288] batman_adv: batadv0: Interface activated: batadv_slave_1
[  781.465182][T10866] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  781.481560][T11506] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  781.565672][T10866] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  781.596693][T10866] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  781.620259][T11506] ext4 filesystem being mounted at /117/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  781.651695][T11511] netlink: 20 bytes leftover after parsing attributes in process `syz.7.1633'.
[  781.710802][T10866] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  782.169084][ T5819] Bluetooth: hci6: command 0x0c1a tx timeout
[  782.445222][ T9128] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  782.507570][T11521] loop0: detected capacity change from 0 to 512
[  782.600167][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  782.607041][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  782.718906][ T5819] Bluetooth: hci1: command 0x0405 tx timeout
[  782.879745][T11518] loop7: detected capacity change from 0 to 32768
[  782.890123][T11518] btrfs: Deprecated parameter 'usebackuproot'
[  782.896418][T11518] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  782.920117][T11518] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.1635 (11518)
[  782.947233][T11518] BTRFS info (device loop7): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  782.958000][T11518] BTRFS info (device loop7): using sha256 (sha256-lib) checksum algorithm
[  783.230311][T10310] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  783.438925][T10310] usb 1-1: Using ep0 maxpacket: 16
[  783.498718][T10310] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  783.511020][T10310] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  783.524919][T10310] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  783.534343][T10310] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  784.418894][T11540] loop6: detected capacity change from 0 to 32768
[  784.454188][T10310] usb 1-1: config 0 descriptor??
[  784.463037][T11518] BTRFS info (device loop7): rebuilding free space tree
[  784.557622][T11518] BTRFS info (device loop7): enabling ssd optimizations
[  784.567198][T11518] BTRFS info (device loop7): using spread ssd allocation scheme
[  784.575284][T11518] BTRFS info (device loop7): enabling free space tree
[  784.582390][T11518] BTRFS info (device loop7): force clearing of disk cache
[  784.589984][T11518] BTRFS info (device loop7): enabling auto defrag
[  784.596597][T11518] BTRFS info (device loop7): doing ref verification
[  784.603538][T11518] BTRFS info (device loop7): trying to use backup root at mount time
[  784.859286][T11540] bcachefs (loop6): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,checksum_err_retry_nr=12,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,degraded=yes,nojournal_transaction_names
[  784.859520][T11540]   allowing incompatible features above 0.0: (unknown version)
[  784.859669][T11540]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  784.909320][T11540] bcachefs (loop6): Using encoding defined by superblock: utf8-12.1.0
[  784.918645][T11540] bcachefs (loop6): initializing new filesystem
[  784.949268][T11540] bcachefs (loop6): going read-write
[  785.044893][T11540] bcachefs (loop6): marking superblocks
[  785.126452][T11540] bcachefs (loop6): initializing freespace
[  785.165580][T11540] bcachefs (loop6): done initializing freespace
[  785.191833][T11540] bcachefs (loop6): reading snapshots table
[  785.199242][T11540] bcachefs (loop6): reading snapshots done
[  785.419068][T11540] bcachefs (loop6): done starting filesystem
[  785.667683][ T9128] bcachefs (loop6): shutting down
[  785.673319][ T9128] bcachefs (loop6): going read-only
[  785.789694][ T9128] bcachefs (loop6): finished waiting for writes to stop
[  785.814722][ T9437] BTRFS info (device loop7): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  785.924621][ T9128] bcachefs (loop6): flushing journal and stopping allocators, journal seq 3
[  785.989765][T10310] usbhid 1-1:0.0: can't add hid device: -71
[  785.996435][T10310] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[  786.150609][T10310] usb 1-1: USB disconnect, device number 12
[  786.330793][ T9128] bcachefs (loop6): flushing journal and stopping allocators complete, journal seq 3
[  786.548319][ T9128] bcachefs (loop6): clean shutdown complete, journal seq 4
[  786.557602][ T9128] bcachefs (loop6): marking filesystem clean
[  786.869343][ T9128] bcachefs (loop6): shutdown complete
[  789.284424][ T9275] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  789.292637][ T9275] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  789.708565][T10866] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  789.716786][T10866] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  790.521100][T11591] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1641'.
[  790.531196][T11591] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1641'.
[  791.245507][T11595] loop8: detected capacity change from 0 to 32768
[  791.513756][T11595] XFS (loop8): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  792.313136][T11595] XFS (loop8): Ending clean mount
[  792.340969][T11595] XFS (loop8): Quotacheck needed: Please wait.
[  792.498584][T11595] XFS (loop8): Quotacheck: Done.
[  792.612976][T11614] loop7: detected capacity change from 0 to 764
[  792.887672][T11618] netlink: 48 bytes leftover after parsing attributes in process `syz.6.1638'.
[  792.909495][ T3836] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  792.917692][ T3836] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  792.998174][T11201] XFS (loop8): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  793.033291][T11618] netlink: 48 bytes leftover after parsing attributes in process `syz.6.1638'.
[  793.154851][ T4298] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  793.163234][ T4298] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  794.277362][T11626] loop0: detected capacity change from 0 to 512
[  794.675186][T11626] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  795.106800][T11626] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  795.944922][ T5812] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  796.048794][T11646] loop6: detected capacity change from 0 to 2048
[  796.136436][T11646] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  799.269158][T11673] loop8: detected capacity change from 0 to 40427
[  799.796550][T11684] loop6: detected capacity change from 0 to 256
[  799.872017][T11681] loop0: detected capacity change from 0 to 32768
[  799.882438][T11681] btrfs: Deprecated parameter 'usebackuproot'
[  799.888931][T11681] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  799.921773][T11673] F2FS-fs (loop8): build fault injection rate: 14
[  799.926741][T11681] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1661 (11681)
[  799.928723][T11673] F2FS-fs (loop8): build fault injection type: 0x3bfe8c
[  799.966976][T11681] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  799.970101][T11673] F2FS-fs (loop8): invalid crc value
[  799.977467][T11681] BTRFS info (device loop0): using crc32c (crc32c-lib) checksum algorithm
[  799.991766][T11681] BTRFS warning (device loop0): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  800.012773][    C1] F2FS-fs (loop8): inject read IO error in f2fs_read_end_io of bio_endio+0xeb4/0x1010
[  800.043811][    C1] F2FS-fs (loop8): inject read IO error in f2fs_read_end_io of bio_endio+0xeb4/0x1010
[  800.315002][T11673] F2FS-fs (loop8): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  800.324477][T11673] F2FS-fs (loop8): inject page alloc in f2fs_grab_cache_folio of f2fs_get_tmp_folio+0x38/0x50
[  800.407514][T11673] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  800.532237][T11673] F2FS-fs (loop8): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x831/0x19b0
[  800.561395][T11673] syz.8.1660: attempt to access beyond end of device
[  800.561395][T11673] loop8: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  800.582830][T11673] CPU: 0 UID: 0 PID: 11673 Comm: syz.8.1660 Not tainted syzkaller #0 PREEMPT(none) 
[  800.582984][T11673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  800.583075][T11673] Call Trace:
[  800.583127][T11673]  <TASK>
[  800.583178][T11673]  __dump_stack+0x26/0x30
[  800.583364][T11673]  dump_stack_lvl+0x1df/0x270
[  800.583552][T11673]  dump_stack+0x1e/0x25
[  800.583725][T11673]  f2fs_handle_critical_error+0xa6f/0xc20
[  800.583980][T11673]  f2fs_stop_checkpoint+0x65/0x80
[  800.584191][T11673]  f2fs_write_end_io+0x101c/0x1bc0
[  800.584382][T11673]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  800.584526][T11673]  bio_endio+0xeb4/0x1010
[  800.584727][T11673]  submit_bio_noacct+0x213/0x2750
[  800.584963][T11673]  submit_bio+0x57c/0x630
[  800.585144][T11673]  f2fs_submit_write_bio+0x92/0x250
[  800.585344][T11673]  __submit_merged_bio+0x16f/0x6a0
[  800.585537][T11673]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  800.585742][T11673]  __submit_merged_write_cond+0x458/0x9a0
[  800.585953][T11673]  f2fs_write_data_pages+0x4bb2/0x5480
[  800.586323][T11673]  ? kmsan_get_metadata+0xfb/0x160
[  800.586490][T11673]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  800.586696][T11673]  ? folios_put_refs+0x51/0xb10
[  800.586886][T11673]  ? filter_irq_stacks+0x49/0x190
[  800.587043][T11673]  ? stack_depot_save_flags+0x35/0x7b0
[  800.587191][T11673]  ? lru_gen_add_folio+0xd66/0x1190
[  800.587401][T11673]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  800.587566][T11673]  ? kmsan_get_metadata+0xfb/0x160
[  800.587738][T11673]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  800.587930][T11673]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  800.588143][T11673]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  800.588359][T11673]  do_writepages+0x3f2/0x860
[  800.588523][T11673]  ? _raw_spin_unlock+0x30/0x50
[  800.588716][T11673]  ? wbc_attach_and_unlock_inode+0x131/0x680
[  800.588973][T11673]  filemap_fdatawrite+0x207/0x260
[  800.589231][T11673]  f2fs_sync_dirty_inodes+0x2ab/0x9e0
[  800.589414][T11673]  f2fs_write_checkpoint+0xfe2/0x2b00
[  800.589700][T11673]  f2fs_issue_checkpoint+0x491/0x700
[  800.589858][T11673]  ? kmsan_get_metadata+0xfb/0x160
[  800.590019][T11673]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  800.590192][T11673]  f2fs_sync_fs+0x1ee/0x440
[  800.590380][T11673]  __f2fs_ioctl+0x6f3d/0x14780
[  800.590546][T11673]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  800.590702][T11673]  ? kmsan_get_metadata+0xfb/0x160
[  800.590862][T11673]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  800.591017][T11673]  ? kmsan_get_metadata+0xfb/0x160
[  800.591176][T11673]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  800.591349][T11673]  ? tomoyo_path_number_perm+0x727/0x7d0
[  800.591526][T11673]  ? kmsan_get_metadata+0xfb/0x160
[  800.591688][T11673]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  800.591864][T11673]  ? do_vfs_ioctl+0x13a3/0x2900
[  800.592027][T11673]  ? kmsan_get_metadata+0xfb/0x160
[  800.592184][T11673]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  800.592377][T11673]  f2fs_ioctl+0x178/0x350
[  800.592562][T11673]  ? __pfx_f2fs_ioctl+0x10/0x10
[  800.592733][T11673]  __se_sys_ioctl+0x239/0x400
[  800.592906][T11673]  __x64_sys_ioctl+0x97/0xe0
[  800.593096][T11673]  x64_sys_call+0x1cbc/0x3e20
[  800.593300][T11673]  do_syscall_64+0xd9/0x210
[  800.593453][T11673]  ? irqentry_exit+0x16/0x60
[  800.593641][T11673]  ? clear_bhb_loop+0x40/0x90
[  800.593801][T11673]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  800.593958][T11673] RIP: 0033:0x7f502ab8ebe9
[  800.594067][T11673] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  800.594201][T11673] RSP: 002b:00007f502b9a8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  800.594343][T11673] RAX: ffffffffffffffda RBX: 00007f502adc5fa0 RCX: 00007f502ab8ebe9
[  800.594451][T11673] RDX: 0000000000000000 RSI: 000000000000f507 RDI: 0000000000000005
[  800.594565][T11673] RBP: 00007f502ac11e19 R08: 0000000000000000 R09: 0000000000000000
[  800.594663][T11673] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  800.594758][T11673] R13: 00007f502adc6038 R14: 00007f502adc5fa0 R15: 00007ffecc3b4248
[  800.594905][T11673]  </TASK>
[  800.999844][T11673] F2FS-fs (loop8): Stopped filesystem due to reason: 3
[  801.240298][T11681] BTRFS info (device loop0): rebuilding free space tree
[  801.294015][T11681] BTRFS info (device loop0): disabling free space tree
[  801.301813][T11681] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  801.311990][T11681] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  801.341226][T11681] BTRFS info (device loop0): allowing degraded mounts
[  801.348566][T11681] BTRFS info (device loop0): enabling ssd optimizations
[  801.355744][T11681] BTRFS info (device loop0): enabling disk space caching
[  801.363227][T11681] BTRFS info (device loop0): force clearing of disk cache
[  801.370929][T11681] BTRFS info (device loop0): trying to use backup root at mount time
[  801.381981][T11681] BTRFS info (device loop0): use zstd compression, level 3
[  801.579723][T10310] usb 8-1: new high-speed USB device number 8 using dummy_hcd
[  801.897037][T10310] usb 8-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  801.908159][T10310] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 3
[  802.049969][T10310] usb 8-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  802.059810][T10310] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  802.068302][T10310] usb 8-1: SerialNumber: syz
[  802.199657][T11713] sctp: [Deprecated]: syz.6.1667 (pid 11713) Use of int in max_burst socket option.
[  802.199657][T11713] Use struct sctp_assoc_value instead
[  802.548487][T10310] usb 8-1: 0:2 : does not exist
[  802.899782][T10310] usb 8-1: USB disconnect, device number 8
[  802.988192][T11446] psmouse serio2: Failed to reset mouse on : -5
[  803.214203][ T5812] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  803.310307][ T6055] udevd[6055]: error opening ATTR{/sys/devices/platform/dummy_hcd.7/usb8/8-1/8-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  804.873287][T11734] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1674'.
[  805.201291][T11738] loop6: detected capacity change from 0 to 512
[  805.216812][T11738] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  805.226879][T11738] EXT4-fs (loop6): external journal device major/minor numbers have changed
[  805.235879][T11738] EXT4-fs (loop6): filesystem has both journal inode and journal device!
[  806.758738][T11446] misc userio: Buffer overflowed, userio client isn't keeping up
[  806.899803][T11745] loop7: detected capacity change from 0 to 32768
[  807.054397][T11745] ocfs2: Slot 0 on device (7,7) was already allocated to this node!
[  807.221208][T11745] ocfs2: Mounting device (7,7) on (node local, slot 0) with ordered data mode.
[  807.573985][ T9437] ocfs2: Unmounting device (7,7) on (node local)
[  807.841875][T11446] input: PS/2 Generic Mouse as /devices/serio2/input/input15
[  808.185579][T11446] psmouse serio2: Failed to enable mouse on 
[  811.221307][T11778] loop9: detected capacity change from 0 to 1024
[  811.296006][T11778] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  811.368148][T11778] EXT4-fs (loop9): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  811.379834][T11778] EXT4-fs (loop9): ext4_check_descriptors: Checksum for group 0 failed (53380!=20869)
[  811.390154][T11778] EXT4-fs (loop9): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  811.563682][T11778] JBD2: no valid journal superblock found
[  811.570098][T11778] EXT4-fs (loop9): Could not load journal inode
[  813.093598][T11799] loop0: detected capacity change from 0 to 256
[  814.870206][T11813] loop6: detected capacity change from 0 to 128
[  815.044573][T11813] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  815.082223][T11813] ext4 filesystem being mounted at /135/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  815.151130][T11813] syz.6.1699 (pid 11813) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  815.620447][T11813] fscrypt (loop6, inode 12): Missing crypto API support for Adiantum (API name: "adiantum(xchacha12,aes)")
[  815.634346][T11813] fscrypt (loop6, inode 12): Missing crypto API support for Adiantum (API name: "adiantum(xchacha12,aes)")
[  816.252024][ T9128] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  817.516586][T11835] loop9: detected capacity change from 0 to 32768
[  817.724177][T11835] bcachefs (loop9): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,metadata_target=invalid label 246,noinodes_use_key_cache,journal_flush_delay=3,journal_reclaim_delay=1000,nocow
[  817.724345][T11835]   allowing incompatible features above 0.0: (unknown version)
[  817.724438][T11835]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  817.775216][T11835] bcachefs (loop9): Using encoding defined by superblock: utf8-12.1.0
[  817.783769][T11835] bcachefs (loop9): initializing new filesystem
[  817.808946][T11835] bcachefs (loop9): going read-write
[  817.885013][T11835] bcachefs (loop9): marking superblocks
[  817.945816][T11835] bcachefs (loop9): initializing freespace
[  817.978596][T11835] bcachefs (loop9): done initializing freespace
[  817.999336][T11835] bcachefs (loop9): reading snapshots table
[  818.005734][T11835] bcachefs (loop9): reading snapshots done
[  818.134737][T11835] bcachefs (loop9): done starting filesystem
[  818.592122][T11288] bcachefs (loop9): shutting down
[  818.597356][T11288] bcachefs (loop9): going read-only
[  818.603874][T11288] bcachefs (loop9): finished waiting for writes to stop
[  818.726742][T11288] bcachefs (loop9): flushing journal and stopping allocators, journal seq 8
[  819.073033][T11288] bcachefs (loop9): flushing journal and stopping allocators complete, journal seq 13
[  819.215175][T11855] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1704'.
[  819.300702][T11288] bcachefs (loop9): clean shutdown complete, journal seq 14
[  819.369821][T11288] bcachefs (loop9): marking filesystem clean
[  819.586471][T11288] bcachefs (loop9): shutdown complete
[  820.231938][T11864] batman_adv: batadv0: Adding interface: dummy0
[  820.243385][T11864] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  820.269457][T11864] batman_adv: batadv0: Interface activated: dummy0
[  820.363033][T11864] batadv0: mtu less than device minimum
[  820.371734][T11864] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  820.385241][T11864] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  820.395978][T11866] overlayfs: upper fs does not support file handles, falling back to index=off.
[  820.399136][T11864] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  820.405737][T11866] overlayfs: fs on './file0' does not support file handles, falling back to xino=off.
[  820.418713][T11864] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  820.438570][T11864] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  820.451633][T11864] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  820.464668][T11864] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  820.477645][T11864] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  820.490872][T11864] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  821.690216][T11880] loop7: detected capacity change from 0 to 736
[  822.977225][T11884] loop6: detected capacity change from 0 to 32768
[  823.247461][T11884] bcachefs (loop6): starting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=lz4,journal_flush_disabled,fsck,recovery_pass_last=set_may_go_rw,reconstruct_alloc,no_data_io
[  823.247609][T11884]   allowing incompatible features above 0.0: (unknown version)
[  823.247700][T11884]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[  823.295578][T11884] bcachefs (loop6): Using encoding defined by superblock: utf8-12.1.0
[  823.304837][T11884] bcachefs (loop6): recovering from clean shutdown, journal seq 10
[  823.314772][T11884] bcachefs (loop6): Version upgrade required:
[  823.314772][T11884] Version upgrade from 0.24: unwritten_extents to 1.7: mi_btree_bitmap incomplete
[  823.314772][T11884] Doing incompatible version upgrade from 0.24: unwritten_extents to 1.28: inode_has_case_insensitive
[  823.314772][T11884]   running recovery passes: check_allocations,check_alloc_info,check_lrus,check_btree_backpointers,check_backpointers_to_extents,check_extents_to_backpointers,check_alloc_to_lru_refs,bucket_gens_init,check_snapshot_trees,check_snapshots,check_subvols,check_subvol_children,delete_dead_snapshots,check_inodes,check_extents,check_indirect_extents,check_dirents,check_xattrs,check_root,check_unreachable_inodes,check_subvolume_structure,check_directory_structure,check_nlinks,check_rebalance_work,set_fs_needs_rebalance
[  823.415708][T11884] bcachefs (loop6): dropping and reconstructing all alloc info
[  823.528717][T11884] bcachefs (loop6): accounting_read... done
[  823.547027][T11884] bcachefs (loop6): alloc_read... done
[  823.557980][T11884] bcachefs (loop6): snapshots_read... done
[  823.570351][T11884] bcachefs (loop6): check_allocations...
[  823.605775][ T9437] Symlink component flag not implemented
[  823.746914][T11884]  done
[  823.770226][T11884] bcachefs (loop6): going read-write
[  823.775857][T11884] bcachefs (loop6): insufficient writeable journal devices available: have 0, need 1
[  823.775857][T11884] rw journal devs:
[  823.928337][T11884] bcachefs (loop6): done starting filesystem
[  824.111085][T11884] ------------[ cut here ]------------
[  824.116755][T11884] WARNING: CPU: 1 PID: 11884 at fs/bcachefs/fs-io.c:361 __bch2_truncate_folio+0x2776/0x3370
[  824.127507][T11884] Modules linked in:
[  824.131834][T11884] CPU: 1 UID: 0 PID: 11884 Comm: syz.6.1716 Not tainted syzkaller #0 PREEMPT(none) 
[  824.141559][T11884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  824.151971][T11884] RIP: 0010:__bch2_truncate_folio+0x2776/0x3370
[  824.159757][T11884] Code: 74 08 41 f7 d7 45 21 e7 74 73 4d 85 e4 75 7b e8 a0 c8 11 fc 31 c0 31 d2 45 31 f6 48 8b 7d a8 e9 96 00 00 00 e8 8b c8 11 fc 90 <0f> 0b 90 48 8b 5d 90 48 8d 7d 90 e8 0a 7f b4 fc 48 8b 00 8b 0a 89
[  824.179979][T11884] RSP: 0018:ffff88807d20ba70 EFLAGS: 00010283
[  824.186395][T11884] RAX: ffffffff85e32cb5 RBX: 0000000000000000 RCX: 0000000000080000
[  824.194784][T11884] RDX: ffffc90008c03000 RSI: 00000000000010fd RDI: 00000000000010fe
[  824.204441][T11884] RBP: ffff88807d20bc40 R08: ffffea000000000f R09: 0000000000000000
[  824.215411][T11884] R10: ffff88807ca0b718 R11: ffffffff824e6880 R12: 0000000000000000
[  824.223760][T11884] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  824.232141][T11884] FS:  00007f07b16016c0(0000) GS:ffff8881aa791000(0000) knlGS:0000000000000000
[  824.241579][T11884] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  824.248480][T11884] CR2: 00007fe3aa3076c8 CR3: 0000000083094000 CR4: 00000000003526f0
[  824.256772][T11884] Call Trace:
[  824.260398][T11884]  <TASK>
[  824.263523][T11884]  ? try_to_merge_one_page+0x23f8/0x2cc0
[  824.269676][T11884]  ? __bch2_truncate_folio+0x46f/0x3370
[  824.275612][T11884]  bchfs_fallocate+0x2d0/0xb30
[  824.280973][T11884]  bch2_fallocate_dispatch+0x3d7/0x740
[  824.286772][T11884]  ? __pfx_bch2_fallocate_dispatch+0x10/0x10
[  824.293228][T11884]  vfs_fallocate+0x946/0xaa0
[  824.298368][T11884]  __x64_sys_fallocate+0x14f/0x290
[  824.303831][T11884]  x64_sys_call+0x2cff/0x3e20
[  824.308931][T11884]  do_syscall_64+0xd9/0x210
[  824.315702][T11884]  ? irqentry_exit+0x16/0x60
[  824.321476][T11884]  ? clear_bhb_loop+0x40/0x90
[  824.326439][T11884]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  824.332782][T11884] RIP: 0033:0x7f07b078ebe9
[  824.337431][T11884] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  824.357546][T11884] RSP: 002b:00007f07b1601038 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[  824.366468][T11884] RAX: ffffffffffffffda RBX: 00007f07b09c5fa0 RCX: 00007f07b078ebe9
[  824.374903][T11884] RDX: 0000000000000006 RSI: 0000000000000010 RDI: 0000000000000004
[  824.383182][T11884] RBP: 00007f07b0811e19 R08: 0000000000000000 R09: 0000000000000000
[  824.391514][T11884] R10: 0000000000010001 R11: 0000000000000246 R12: 0000000000000000
[  824.399832][T11884] R13: 00007f07b09c6038 R14: 00007f07b09c5fa0 R15: 00007ffc7ca29728
[  824.408231][T11884]  </TASK>
[  824.411420][T11884] ---[ end trace 0000000000000000 ]---
[  824.628915][ T3836] =====================================================
[  824.636191][ T3836] BUG: KMSAN: uninit-value in bch2_alloc_sectors_start_trans+0x750/0x3560
[  824.646128][ T3836]  bch2_alloc_sectors_start_trans+0x750/0x3560
[  824.653536][ T3836]  __bch2_write+0x7ff/0x6bc0
[  824.658503][ T3836]  bch2_write+0xcc5/0x1860
[  824.663144][ T3836]  bch2_writepages+0x26b/0x570
[  824.668564][ T3836]  do_writepages+0x3f2/0x860
[  824.673345][ T3836]  __writeback_single_inode+0x101/0x1190
[  824.679292][ T3836]  writeback_sb_inodes+0xac1/0x1cb0
[  824.684657][ T3836]  wb_writeback+0x4ce/0xc00
[  824.689462][ T3836]  wb_workfn+0x397/0x1910
[  824.694009][ T3836]  process_scheduled_works+0xb8e/0x1d80
[  824.699970][ T3836]  worker_thread+0xedf/0x1590
[  824.704893][ T3836]  kthread+0xd59/0xf00
[  824.709394][ T3836]  ret_from_fork+0x1e3/0x310
[  824.714136][ T3836]  ret_from_fork_asm+0x1a/0x30
[  824.719220][ T3836] 
[  824.721697][ T3836] Uninit was stored to memory at:
[  824.729129][ T3836]  __bch2_writepage+0x2b40/0x3c90
[  824.734307][ T3836]  write_cache_pages+0xc5/0x270
[  824.740177][ T3836]  bch2_writepages+0x153/0x570
[  824.745235][ T3836]  do_writepages+0x3f2/0x860
[  824.750100][ T3836]  __writeback_single_inode+0x101/0x1190
[  824.755906][ T3836]  writeback_sb_inodes+0xac1/0x1cb0
[  824.761631][ T3836]  wb_writeback+0x4ce/0xc00
[  824.766296][ T3836]  wb_workfn+0x397/0x1910
[  824.770903][ T3836]  process_scheduled_works+0xb8e/0x1d80
[  824.776660][ T3836]  worker_thread+0xedf/0x1590
[  824.781678][ T3836]  kthread+0xd59/0xf00
[  824.785915][ T3836]  ret_from_fork+0x1e3/0x310
[  824.790863][ T3836]  ret_from_fork_asm+0x1a/0x30
[  824.795827][ T3836] 
[  824.799343][ T3836] Uninit was created at:
[  824.803820][ T3836]  kmem_cache_alloc_lru_noprof+0x822/0xed0
[  824.810554][ T3836]  __bch2_new_inode+0x9b/0x4b0
[  824.816464][ T3836]  bch2_inode_hash_init_insert+0x82/0x3c0
[  824.822709][ T3836]  bch2_lookup+0x1fbf/0x2540
[  824.829041][T10876] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  824.841093][ T3836]  path_openat+0x2987/0x6760
[  824.845872][ T3836]  do_filp_open+0x280/0x660
[  824.854264][ T3836]  do_sys_openat2+0x1bb/0x2f0
[  824.859322][ T3836]  __x64_sys_open+0x219/0x2c0
[  824.864186][ T3836]  x64_sys_call+0x1843/0x3e20
[  824.869196][ T3836]  do_syscall_64+0xd9/0x210
[  824.873853][ T3836]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  824.880180][ T3836] 
[  824.882646][ T3836] CPU: 1 UID: 0 PID: 3836 Comm: kworker/u8:16 Tainted: G        W           syzkaller #0 PREEMPT(none) 
[  824.894095][ T3836] Tainted: [W]=WARN
[  824.898129][ T3836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  824.908434][ T3836] Workqueue: writeback wb_workfn (flush-bcachefs-47)
[  824.915413][ T3836] =====================================================
[  824.922715][ T3836] Disabling lock debugging due to kernel taint
[  824.931110][ T3836] Kernel panic - not syncing: kmsan.panic set ...
[  824.937674][ T3836] CPU: 1 UID: 0 PID: 3836 Comm: kworker/u8:16 Tainted: G    B   W           syzkaller #0 PREEMPT(none) 
[  824.949048][ T3836] Tainted: [B]=BAD_PAGE, [W]=WARN
[  824.954185][ T3836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  824.964488][ T3836] Workqueue: writeback wb_workfn (flush-bcachefs-47)
[  824.971471][ T3836] Call Trace:
[  824.974869][ T3836]  <TASK>
[  824.977921][ T3836]  __dump_stack+0x26/0x30
[  824.982488][ T3836]  dump_stack_lvl+0x53/0x270
[  824.987281][ T3836]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  824.993352][ T3836]  dump_stack+0x1e/0x25
[  824.997731][ T3836]  vpanic+0x361/0xc50
[  825.001946][ T3836]  panic+0x15d/0x160
[  825.006090][ T3836]  kmsan_report+0x31c/0x320
[  825.010811][ T3836]  ? __msan_warning+0x1b/0x30
[  825.015669][ T3836]  ? bch2_alloc_sectors_start_trans+0x750/0x3560
[  825.022236][ T3836]  ? __bch2_write+0x7ff/0x6bc0
[  825.027218][ T3836]  ? bch2_write+0xcc5/0x1860
[  825.031983][ T3836]  ? bch2_writepages+0x26b/0x570
[  825.037100][ T3836]  ? do_writepages+0x3f2/0x860
[  825.042009][ T3836]  ? __writeback_single_inode+0x101/0x1190
[  825.047997][ T3836]  ? writeback_sb_inodes+0xac1/0x1cb0
[  825.053543][ T3836]  ? wb_writeback+0x4ce/0xc00
[  825.058417][ T3836]  ? wb_workfn+0x397/0x1910
[  825.063119][ T3836]  ? process_scheduled_works+0xb8e/0x1d80
[  825.069045][ T3836]  ? worker_thread+0xedf/0x1590
[  825.074085][ T3836]  ? kthread+0xd59/0xf00
[  825.078471][ T3836]  ? ret_from_fork+0x1e3/0x310
[  825.083394][ T3836]  ? ret_from_fork_asm+0x1a/0x30
[  825.088546][ T3836]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  825.094559][ T3836]  ? __kmalloc_noprof+0x9c8/0x1310
[  825.099864][ T3836]  ? __bch2_trans_kmalloc+0x59f/0xb80
[  825.105406][ T3836]  ? kmsan_get_metadata+0xfb/0x160
[  825.110682][ T3836]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  825.117176][ T3836]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  825.123401][ T3836]  ? __msan_memset+0xf6/0x1b0
[  825.128239][ T3836]  ? __bch2_trans_kmalloc+0x67b/0xb80
[  825.133789][ T3836]  ? kmsan_get_metadata+0xfb/0x160
[  825.139110][ T3836]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  825.145107][ T3836]  __msan_warning+0x1b/0x30
[  825.149752][ T3836]  bch2_alloc_sectors_start_trans+0x750/0x3560
[  825.156216][ T3836]  ? bch2_alloc_sectors_start_trans+0x82/0x3560
[  825.162713][ T3836]  __bch2_write+0x7ff/0x6bc0
[  825.167475][ T3836]  ? _raw_spin_unlock_irqrestore+0x3f/0x60
[  825.173575][ T3836]  ? wb_workfn+0x397/0x1910
[  825.178268][ T3836]  ? process_scheduled_works+0xb8e/0x1d80
[  825.184193][ T3836]  ? kthread+0xd59/0xf00
[  825.188635][ T3836]  ? kmsan_get_metadata+0xfb/0x160
[  825.193920][ T3836]  ? kmsan_get_metadata+0xfb/0x160
[  825.199199][ T3836]  ? kmsan_get_metadata+0xfb/0x160
[  825.204482][ T3836]  ? kmsan_save_stack_with_flags+0x11/0x60
[  825.210484][ T3836]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  825.216747][ T3836]  bch2_write+0xcc5/0x1860
[  825.221354][ T3836]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  825.227366][ T3836]  bch2_writepages+0x26b/0x570
[  825.232285][ T3836]  ? __pfx_bch2_writepages+0x10/0x10
[  825.237730][ T3836]  do_writepages+0x3f2/0x860
[  825.242496][ T3836]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  825.248503][ T3836]  ? queue_io+0x721/0x790
[  825.252983][ T3836]  ? kmsan_get_metadata+0xfb/0x160
[  825.258274][ T3836]  __writeback_single_inode+0x101/0x1190
[  825.264095][ T3836]  ? kmsan_get_metadata+0xfb/0x160
[  825.269390][ T3836]  writeback_sb_inodes+0xac1/0x1cb0
[  825.274815][ T3836]  ? kmsan_get_metadata+0xfb/0x160
[  825.280188][ T3836]  wb_writeback+0x4ce/0xc00
[  825.284868][ T3836]  ? queue_io+0x421/0x790
[  825.289356][ T3836]  wb_workfn+0x397/0x1910
[  825.293862][ T3836]  ? kmsan_get_metadata+0xfb/0x160
[  825.299167][ T3836]  ? __pfx_wb_workfn+0x10/0x10
[  825.304120][ T3836]  process_scheduled_works+0xb8e/0x1d80
[  825.309907][ T3836]  worker_thread+0xedf/0x1590
[  825.314820][ T3836]  kthread+0xd59/0xf00
[  825.319038][ T3836]  ? __pfx_worker_thread+0x10/0x10
[  825.324385][ T3836]  ? __pfx_kthread+0x10/0x10
[  825.329140][ T3836]  ret_from_fork+0x1e3/0x310
[  825.333883][ T3836]  ? __pfx_kthread+0x10/0x10
[  825.338629][ T3836]  ret_from_fork_asm+0x1a/0x30
[  825.343648][ T3836]  </TASK>
[  825.347213][ T3836] Kernel Offset: disabled
[  825.351633][ T3836] Rebooting in 86400 seconds..