last executing test programs:

24m8.450844429s ago: executing program 32 (id=78):
r0 = syz_io_uring_setup(0xd79, &(0x7f00000035c0)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000003580)=<r2=>0x0)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000300)=@in={0x2, 0x0, @local}})
io_uring_enter(r0, 0x291c, 0x67f0, 0x0, 0x0, 0x0)

22m8.670841424s ago: executing program 33 (id=485):
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec000000010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f00000010c0)={0x44, &(0x7f0000000080)=ANY=[@ANYBLOB="00000100000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000840)={0x84, &(0x7f0000000400)={0x20, 0x5, 0x4b, "a3457127f513f6bfd3f7c93fd94167a18c38b6ac56ebcd4a35404b97f935d8ca2ae2e47b5b1bd9902e156da24287f924cc171ac13a7477515c57f345c0c7dac5c0dcaf4049b13fdcfda060"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

21m52.713471427s ago: executing program 34 (id=522):
syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f0000000280)={[{@noload}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}, {@bh}, {@noload}, {@data_err_ignore}, {@usrjquota}]}, 0xfe, 0x44d, &(0x7f0000000900)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f00000002c0)='./file2\x00', 0x42, 0x0)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000840)={0x0, <r2=>0x0}, &(0x7f0000000880)=0xc)
quotactl_fd$Q_GETQUOTA(r0, 0xffffffff80000700, r2, 0x0)

19m10.052309119s ago: executing program 35 (id=1227):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r1, 0x2000)
r2 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000003240)=[0x0], 0x0, 0x0, 0x0, 0x1})

17m8.268812031s ago: executing program 36 (id=1718):
ioctl$EXT4_IOC_GROUP_ADD(0xffffffffffffffff, 0x40286608, 0x0)
r0 = syz_usb_connect(0x0, 0x2d, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000413f5f201d0650c16fce0102030109021b00010000100009043300011870f500090582020002"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0xa8, &(0x7f0000000040)=ANY=[])
syz_usb_ep_write$ath9k_ep1(r0, 0x82, 0x260, &(0x7f0000000fc0)={[{0x7d, 0x4e00, "26f04811471a05a3a57fec3d42a3b32a210e795f3b8eb0742161ed9db3687b240d21671c5f4dfc6a61f0410f2deed6fe9546e64960231945dd7b8c5d2e67f6f365bcda79a1c160750c412ad77d95c34c8888779dae45f4c3e03b792b4d0a2baac747e6c0ecaac992023b8a2808b76ec82b25c7c67fb2cfd82097d4a677"}, {0xd1, 0x4e00, "86aa409f320316f06d689a2cbf855a883e29b048de4b2579afbb6c79f6b07a9f603eafdcbe1fa007909042cd5ceb104975b1d51e2c7fffc593dfb390fa2b602c2524f771a5d67b89191ace7e25554f981c267ddfba622a5430fc5b376d33ae5a943e41d5fb47818611a73ed3dfa21252f7ae743804ce7c8d3df538569ae4a0f3e38bc46cf80c143a96c6f70c0ed318a509af0df1262b827103df69af331e72543e98163a6bcdc3229093d39b685f603ca848e034b5b5e79397e0fdf305b033d79b2c5ce82330dacdfb626e37dc2548c474"}, {0xa9, 0x4e00, "02a2b8298266fd85e483397d958c6abd816a6c797d05ed4b3259c44c18c39615b1e206adee4aaf36cd0077d4224750a310d3f0cfec3b5d5a214f65fce71f9683f3c1798db42977346ac0adeb492de067dfec9be6c535d5dfb4697df235036511c0335f2da55d4e1b992e017f18a9ef90386775f52b9768367e72adba05c61d10cb3831f1da94c60910f0d5e21c88a7047f59e4aa4890d2fca7892bb7e18332a53f2be9b846bfc39965"}, {0x4d, 0x4e00, "735eece41e7ec0a333c52d3231871bc7b3d50ab147bd9a264198b960e2602437ad63e84811130f066a9031dde8b31b5030a3b9aba36fb5bdfaf140f46aa822a467c50ab0af0691b3ddd11b1b32"}]})

13m5.428090773s ago: executing program 37 (id=2873):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x100, 0x2, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xad}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x56)
r1 = open(&(0x7f00000000c0)='.\x00', 0x8000, 0x50)
getdents(r1, &(0x7f0000001fc0)=""/184, 0xb8)
getdents(r1, &(0x7f0000001fc0)=""/184, 0xb8)

11m54.679509722s ago: executing program 38 (id=3224):
r0 = syz_open_dev$vbi(&(0x7f00000001c0), 0x1, 0x2)
r1 = fcntl$dupfd(r0, 0x0, r0)
write$binfmt_script(r1, &(0x7f0000000100), 0xfffffd9d)
write$P9_RXATTRWALK(r1, &(0x7f0000000000)={0xf, 0x1f, 0x2, 0x4}, 0xca80)
write$cgroup_subtree(r1, &(0x7f0000000140)=ANY=[], 0xfe1b)

11m26.81069753s ago: executing program 39 (id=3333):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r1}, 0x10)
r2 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000140)={'fscrypt:', @desc1}, &(0x7f0000000080)={0x0, "69dcaf20127e9a854529f45826cb35be51682e30944313e2ca73845d177d601880221daeccfda56b75cfe2bad94f000066b2ddab614fec2236da7d88ea07c9ee", 0xfffffffb}, 0x48, 0xfffffffffffffffe)
keyctl$search(0xa, r2, &(0x7f0000000180)='asymmetric\x00', &(0x7f0000000100)={'syz', 0x0}, r2)

9m34.072269111s ago: executing program 40 (id=3815):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(aes)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)

8m56.096420187s ago: executing program 41 (id=4072):
r0 = syz_open_dev$mouse(&(0x7f0000000000), 0x0, 0x8042)
r1 = syz_io_uring_setup(0x1e1e, &(0x7f0000000200)={0x0, 0x86f7, 0x10100, 0x0, 0x3}, &(0x7f0000002000)=<r2=>0x0, &(0x7f0000000000)=<r3=>0x0)
syz_io_uring_submit(r2, r3, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x22})
io_uring_enter(r1, 0x48e9, 0x0, 0x2, 0x0, 0x0)
write$P9_RMKDIR(r0, 0x0, 0x0)

7m37.246509498s ago: executing program 42 (id=4497):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
ioctl$TCSETSF(r1, 0x5404, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x515f3157, 0x0, "78e114100985a79874342a70e113343972d01f"})
write$UHID_INPUT(r1, &(0x7f0000001040)={0xd, {"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", 0x1010}}, 0x1b7)
read$FUSE(r1, &(0x7f00000040c0)={0x2020}, 0x2020)

6m20.642432852s ago: executing program 43 (id=4836):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
syz_mount_image$f2fs(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x8, &(0x7f0000000200)=ANY=[@ANYBLOB="005aec8f5105a09e625ccebdb85aa418e073bf2659b915b8aedc835fd1ddf71e7c9b3573f4f8176403cb066bf04c8f05b7d7809dba750d87fb205fa9e72716e8d17d0cce1791c53d92978af4e4341f06a83b3a022c"], 0x1, 0x5505, &(0x7f0000002480)="$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")
r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r0, 0x70d)
sendfile(r0, r0, 0x0, 0x800000009)

5m37.171628241s ago: executing program 6 (id=5050):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$uinput_user_dev(r0, &(0x7f0000000080)={'syz0\x00', {}, 0x0, [0x80000000, 0x3, 0x3ff, 0x8, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0xf5b1, 0xffffffff, 0x10000000, 0x99, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x8, 0x0, 0x0, 0x0, 0x4, 0x0, 0x4, 0x0, 0x0, 0x0, 0x2, 0x0, 0xfffffffe, 0x0, 0x0, 0x1], [0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xedc0, 0x0, 0x5ee, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa0000000, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0xfffffff8, 0x2, 0x0, 0x2000079, 0x400, 0x0, 0x0, 0x10000, 0x40000, 0x0, 0xc0800000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x0, 0x4771], [0x0, 0x7f, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x2, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000, 0x6, 0x0, 0x0, 0x0, 0x0, 0x200000, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xf, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0xfffffffc, 0x4], [0x2, 0x0, 0x6, 0x0, 0x0, 0x0, 0xfffffffe, 0x4, 0x0, 0x0, 0x0, 0x3, 0xfffffffc, 0x4, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5, 0xfffffffd, 0x0, 0x0, 0x0, 0x8001, 0x80, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x4, 0x0, 0x0, 0x0, 0xffffe]}, 0x45c)
ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x5)
ioctl$UI_SET_SWBIT(r0, 0x4004556d, 0x3)
ioctl$UI_DEV_CREATE(r0, 0x5501)
write$uinput_user_dev(r0, &(0x7f0000000500)={'syz0\x00', {0x8000, 0x7f, 0x3, 0x3}, 0x3a, [0x5, 0x1, 0x7, 0x83e, 0x5, 0xd, 0x6, 0x0, 0x7, 0x9, 0x4, 0x7, 0x1, 0x3ff, 0x3, 0xfffffff9, 0x27e8, 0xf93, 0x6, 0x3, 0x2, 0x1, 0x47dc, 0x10000, 0x4, 0x3, 0xfffffffc, 0x1, 0x0, 0x18, 0x8, 0x9, 0x190a, 0x1000, 0x23, 0x0, 0x4, 0x1, 0x1, 0x5, 0x2, 0xfd84, 0x200, 0x3, 0x6, 0x9, 0xffffffc0, 0x8, 0xe0000000, 0x5, 0x77, 0xb, 0x7, 0x5, 0x7, 0x22, 0x1, 0x7fffffff, 0x4, 0x80000000, 0xdc6, 0xfffffffc, 0x0, 0x7], [0x9, 0x1, 0x0, 0xffffc5b3, 0x2, 0x5, 0x2, 0xdc0, 0x0, 0x3, 0x2, 0x8, 0x6, 0x661b, 0x7, 0x5f, 0x7d, 0x10001, 0x2, 0x2, 0x8, 0x7, 0xbda, 0x80000000, 0x20, 0x4, 0x8, 0xfffffffc, 0x2, 0x9, 0x7fff, 0x4, 0x8, 0x6, 0x60, 0x6, 0x5, 0xfff, 0xfffffff9, 0x8, 0x6, 0xfffffffc, 0x7fffffff, 0x8, 0x8, 0x3, 0x2, 0xe14, 0x200, 0x7, 0x63, 0x8, 0x9, 0x7f, 0x3, 0xcbf, 0x200, 0x2, 0x2, 0x8, 0x3, 0x0, 0x400, 0x7], [0x9, 0x4, 0x0, 0x0, 0x6, 0x8, 0xffffff81, 0x4, 0x401, 0xb, 0x200, 0x9, 0xfe0, 0x5, 0x4, 0x40, 0xfffffff9, 0x956, 0x63, 0xb72, 0xf816, 0x57d, 0x0, 0x7, 0x1, 0x6, 0x1, 0xe9, 0x0, 0x3, 0x1, 0xfffffffb, 0x3, 0x3, 0x81, 0xf, 0x9, 0x3, 0x3cc, 0x9, 0xc, 0x800, 0x9e86, 0x31, 0x2, 0x0, 0x3, 0x7, 0x3, 0x6, 0x9, 0xe0, 0x7, 0x7f, 0x1ff, 0x6d, 0x7, 0xfffffffb, 0x1175, 0x5, 0x11d, 0x8f9b, 0x3, 0x6], [0x9, 0x5, 0xfffffbff, 0x5, 0x6, 0x5, 0x80000001, 0x7fff, 0xff, 0x0, 0x1, 0x1, 0x6, 0xffffd529, 0x408, 0x0, 0x2f5, 0x1ff, 0x8000, 0x3, 0x7f, 0x7fffffff, 0x40000000, 0x4b1, 0x6, 0xc, 0x5, 0x5, 0x508f, 0xc6, 0x81, 0x9, 0x7ea692d0, 0x2, 0x8, 0x1d59, 0xfff, 0xe10d, 0xc, 0x40, 0x4, 0x3, 0xfff, 0xfe, 0x1, 0x3, 0x366e, 0x7, 0xfffffffc, 0x8001, 0x3, 0x3, 0x4, 0x0, 0x8, 0x0, 0x3ff, 0x6, 0x0, 0x1, 0x9, 0xffffffff, 0x7, 0x5]}, 0x45c)

5m36.567610436s ago: executing program 6 (id=5054):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
mount$cgroup2(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x800010, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
openat2$dir(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/../file0\x00', &(0x7f0000000200)={0x200000, 0x0, 0xa}, 0x18)

5m36.178658314s ago: executing program 6 (id=5057):
syz_mount_image$exfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000380)={[{@fmask={'fmask', 0x3d, 0x7}}, {@discard}, {@gid}, {@sys_tz}, {@iocharset={'iocharset', 0x3d, 'macinuit'}}, {@errors_continue}, {@keep_last_dots}, {@errors_remount}, {@errors_continue}, {@iocharset={'iocharset', 0x3d, 'iso8859-13'}}, {@dmask={'dmask', 0x3d, 0x9}}]}, 0x1, 0x152a, &(0x7f0000000580)="$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")
syz_open_dev$sndctrl(0x0, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004cc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x5a}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kfree\x00', r0, 0x0, 0xc}, 0x18)
r1 = openat$drirender128(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$DRM_IOCTL_VERSION(r1, 0xc040645c, 0x0)

5m34.285189839s ago: executing program 6 (id=5062):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000340), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='dyn'])
chdir(&(0x7f00000000c0)='./file0\x00')
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f00000000c0), 0x1204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f})
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000380)=""/141, 0x8d)

5m33.66672439s ago: executing program 6 (id=5067):
r0 = socket$packet(0x11, 0x2, 0x300)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'veth0_to_hsr\x00', <r2=>0x0})
sendto$packet(r1, &(0x7f00000000c0)="04", 0x1, 0x10004894, &(0x7f0000000200)={0x11, 0x8100, r2, 0x1, 0xe0, 0x6, @remote}, 0x14)
ioctl$SIOCGSTAMPNS(r0, 0x8907, 0x0)
read(r0, &(0x7f0000000000)=""/149, 0xaa)

5m26.403207617s ago: executing program 6 (id=5099):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r1, 0x4d9c2000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

5m24.80202154s ago: executing program 44 (id=5099):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000002a82, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x28011, r1, 0x4d9c2000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

4m42.792563313s ago: executing program 4 (id=5302):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001700)=ANY=[@ANYBLOB="1800000024000103000000000000000001"], 0x18}, 0x1, 0x0, 0x0, 0x8001}, 0x4000)
recvmmsg(r2, &(0x7f0000004ec0)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000002c0)=""/4077, 0xfed}], 0x1}, 0x9}], 0x1, 0x2000, 0x0)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000280)=ANY=[@ANYBLOB="80000000", @ANYRES16=r1, @ANYBLOB="050000000000000000000200000008000300", @ANYRES32, @ANYBLOB="2d000e0080000000ffffffffffff080211000000080211000000000000000000000000006400000025030000000000000800"], 0x80}}, 0x0)

4m41.884626198s ago: executing program 4 (id=5307):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x1, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x2}, 0x1c)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'xfrm0\x00', <r2=>0x0})
sendto$packet(r1, &(0x7f00000001c0)="63fa5e09", 0x4, 0x20008801, &(0x7f0000000200)={0x11, 0x88a8, r2, 0x1, 0xff, 0x6, @broadcast}, 0x14)

4m41.375160184s ago: executing program 4 (id=5311):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000040)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r1=>0x0], 0x1})
r2 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r2, 0xc02064b9, &(0x7f0000000dc0)={&(0x7f00000000c0)=[<r3=>0x0], &(0x7f0000000000), 0x1, r1, 0xeeeeeeee})
ioctl$DRM_IOCTL_MODE_OBJ_SETPROPERTY(r0, 0xc01864ba, &(0x7f0000000300)={0x24, 0x0, r3})

4m40.615682329s ago: executing program 4 (id=5314):
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x200000, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='debugfs\x00', 0x800, 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
chroot(&(0x7f0000000100)='./file0\x00')
mount$bind(&(0x7f0000000880)='./file0\x00', &(0x7f00000008c0)='./file0\x00', 0x0, 0x5200, 0x0)
pivot_root(&(0x7f0000000240)='./file0\x00', &(0x7f0000000000)='./file0/../file0\x00')

4m39.544957726s ago: executing program 4 (id=5317):
mknodat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x81c0, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x1, 0x0)
r1 = landlock_create_ruleset(&(0x7f0000000140)={0x4000}, 0x18, 0x0)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r1, 0x1, &(0x7f0000000180)={0x4000, r0}, 0x0)
landlock_restrict_self(r1, 0x0)
truncate(&(0x7f0000000280)='./file1\x00', 0x1)

4m32.394783951s ago: executing program 4 (id=5343):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x2}}, 0x2e)
r2 = fcntl$dupfd(r0, 0x0, r0)
ioctl$PPPIOCGCHAN(r2, 0x80047437, &(0x7f0000000140))
read$FUSE(r2, &(0x7f0000001600)={0x2020}, 0x2020)

4m31.209159685s ago: executing program 45 (id=5343):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x4e22, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x2}}, 0x2e)
r2 = fcntl$dupfd(r0, 0x0, r0)
ioctl$PPPIOCGCHAN(r2, 0x80047437, &(0x7f0000000140))
read$FUSE(r2, &(0x7f0000001600)={0x2020}, 0x2020)

4m26.563126305s ago: executing program 5 (id=5367):
open(&(0x7f0000000200)='./file0\x00', 0x4008040, 0x0)
pipe2(&(0x7f0000001440)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
splice(r2, 0x0, r1, 0x0, 0x6, 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}})
sendmsg$NFNL_MSG_CTHELPER_GET(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)={0x14, 0x1, 0x9, 0x101}, 0x14}}, 0x0)

4m26.044476689s ago: executing program 5 (id=5370):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000580)=[@in={0x2, 0x4e21, @local}], 0x10)
sendmsg$inet_sctp(r0, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @local}, 0x10, &(0x7f00000006c0)=[{&(0x7f0000000380)='N', 0x1}], 0x1, 0x0, 0x0, 0x804c040}, 0x1)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000200)={0x0, 0x2}, 0x8)
r1 = dup(r0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, 0x0, 0x111, 0x4}}, 0x20)

4m25.151238323s ago: executing program 1 (id=5373):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x4, 0x1, &(0x7f0000006680))
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1, 0x38011, r1, 0x9988000)
fadvise64(r1, 0x18, 0x800000008, 0x4)

4m24.526807089s ago: executing program 5 (id=5375):
syz_mount_image$hfs(&(0x7f0000000000), &(0x7f00000005c0)='./file0\x00', 0x2200000, &(0x7f0000000400)={[{}, {@dir_umask={'dir_umask', 0x3d, 0x7}}, {@iocharset={'iocharset', 0x3d, 'cp857'}}, {@gid}, {}, {@codepage={'codepage', 0x3d, 'euc-jp'}}, {@file_umask={'file_umask', 0x3d, 0x2b4}}, {@creator={'creator', 0x3d, "8c10b081"}}]}, 0x2, 0x36b, &(0x7f0000000d80)="$eJzs3c1O1EAAB/D/tPspBCtgMN5ETTyRBQ8aY6Ix3HwBD4aIUBJCxQQwUaIBPXgyxpuJiUdvno2+gl6ML6AnDsSTXggx1Mx0uu2Wme4uHwXC/5ewdNv5nnY6g+4WRHRs3Rr/+eHymvwRZQAugGuAA6AGlACcxlDt0fzS7FLgT+cl5KoY8kcgiim2hZma901RZTwVQ/PkuxJ60/tof4RhGP5qG+pPIWWhgyOia38bB6jqq1MdrxVesh1Z7SBAtZiiHCKpHhYb2DD3OBERHSf6/u/ou0Svnr87DnBRz8OP0v0/ll5BtNztNoCnJ4svz6Gh7v+Pk94MhWwf1SIiWe+pJZxsQydeJZrSUqmUMzvDpLkriM6slg4QhlVly4xMlcWpz8wG/siqSuAFbmipYIPqdTo6dWO20laiX8OGtWmOvLrn61F1KMs6lC3lH+g6xy/reGvObuJbpX2ZxFfxXUwID+8wjT69sxQK2TgqugfU9e64TWcDv2FPUdXSU7VstNQyufpOqUzOxj3w+WNSy7qtXWtwZVlMZCoiO3/XJQDeWFpB7e5vHRR074zaa6diDRhjjTXfbxpjDWZj1WfKgT8y9TCITvpwxZ7tXjDO78VrcUcM4zc+YbzZ/7KrXTnUW67M7MgvVMioFRrN+piUVEhLP7ZQJ9uDrq5Mwua/MKLfZ8dhMw+vcB9X0bf4ZHluMgj8hcI25GhhPBRfKgWXx7YRnYj6dJR75O9UGNTkhmzuPct0KwxD46GSucXiDaejLCpxUW1ljk6dK++bVVbDrP5Tyu4qiNWoDVOHbtoDJ8OmqrvWZaYq+kozlrxbdBP9b5S77HdjGJGUcKGyvydknNVkEJxpdpyLakdXSn0Hmd5+NjcZ7HhEoiNk8eU5PeZg6O769YMuDhVPzrtEtP5LrVcaatSRL17OaiRsl3gqxVHLCqhfvZ5IVhtC//0+Z83VY1/B9cQbgT+Wt+Y6fwm4kNopc3MQ5/g8m6yHeLJ+CP9VsmoqVj27Yzm1LcbxA/dS838iIiIiIiIiIiIiIiIiIiIiIiIiIjoSkv/07+3y4wRb+nNI5k9iJNaO4RdvEBERERERERERERERERERERERERERERHtTur5v4CrnhhT2fPn/8Zf7N3p83/dDp7/K9o+4pOI2vgfAAD//xhyY3Q=")
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='dyn'])
chdir(&(0x7f00000000c0)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
lseek(r0, 0x80000001, 0x0)
getdents64(r0, 0x0, 0x0)

4m23.429169267s ago: executing program 5 (id=5377):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000380)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b105f, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='./file0/file0\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f00000002c0)='./file0/file0\x00', 0x201)

4m22.6504952s ago: executing program 5 (id=5378):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x1, 0x1, 0x86, 0x10, 0x20f4, 0xe05a, 0x6c6d, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x69, 0x2, 0x2, 0xff, 0x5a, 0xa3, 0x0, [], [{{0x9, 0x5, 0x4, 0x2, 0x10, 0x0, 0xfa}}, {{0x9, 0x5, 0x82, 0x2, 0x40}}]}}]}}]}}, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000440)={0x2c, &(0x7f0000000280)={0x0, 0x16, 0x6, "20fc94453a41"}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000680)={0x24, &(0x7f00000007c0)=ANY=[@ANYBLOB="200902"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

4m20.553753105s ago: executing program 1 (id=5381):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r2, <r3=>0xffffffffffffffff}, &(0x7f00000006c0), &(0x7f0000000700)=r1}, 0x20)
recvmsg$unix(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000002380)=[{&(0x7f0000002480)=""/195, 0xc3}], 0x1}, 0x2000)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000100)={{r3}, &(0x7f0000000280), &(0x7f0000000140)=r0}, 0x22)
sendmsg$inet(r0, &(0x7f0000000980)={0x0, 0x0, 0x0}, 0x0)

4m20.05312134s ago: executing program 5 (id=5383):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000800), r0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000001c0), r1)
sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01000000000000000000067400062c00070073797352656d5f753a6f626a6563745f723a756465765f68656c7065725f657865635f743a73300008000200000000000800070026093a0914000600626f6e64300000000000000003000000080003"], 0x78}, 0x1, 0xffffffff00000003}, 0x0)
sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000840)={0x44, r2, 0x1, 0x70bd2b, 0x25dfdbfc, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @private0={0xfc, 0x0, '\x00', 0x1}}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @remote}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @local}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000801}, 0x448c0)

4m17.860657544s ago: executing program 46 (id=5383):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000800), r0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f00000001c0), r1)
sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="01000000000000000000067400062c00070073797352656d5f753a6f626a6563745f723a756465765f68656c7065725f657865635f743a73300008000200000000000800070026093a0914000600626f6e64300000000000000003000000080003"], 0x78}, 0x1, 0xffffffff00000003}, 0x0)
sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000840)={0x44, r2, 0x1, 0x70bd2b, 0x25dfdbfc, {}, [@NLBL_UNLABEL_A_IPV6ADDR={0x14, 0x2, @private0={0xfc, 0x0, '\x00', 0x1}}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @remote}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @local}]}, 0x44}, 0x1, 0x0, 0x0, 0x20000801}, 0x448c0)

4m17.823054695s ago: executing program 1 (id=5387):
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x4000002, 0x50032, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000100)={0xaa, 0x21})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x5})
ioctl$UFFDIO_CONTINUE(r0, 0xc020aa08, &(0x7f0000000080)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}})
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)

4m16.653123315s ago: executing program 1 (id=5389):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='devtmpfs\x00', 0x0, 0x0)
chroot(&(0x7f0000000300)='./file0/../file0/../file0/../file0\x00')
r0 = open_tree(0xffffffffffffff9c, &(0x7f00000002c0)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000400)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)
pivot_root(&(0x7f0000000140)='./file0\x00', &(0x7f0000000180)='./file0\x00')

4m15.901297598s ago: executing program 1 (id=5392):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x1a1)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080)='mqueue\x00', 0x200011, 0x0)
r0 = inotify_init1(0x800)
inotify_add_watch(r0, &(0x7f0000000240)='./file0\x00', 0x8000005b)
r1 = mq_open(&(0x7f00000000c0)='ns\xbf\x12\xe1\v\xc8E\xe0\x80r\x917kj\x9cL\xceZ\x99\xf8Q%#-\xd3\xd2\x13\xe8\xdc\xe1\xfd\xde\xef\xf2\xa7\xd2\xab\x97\xc2e\'\xfc\x10\x85\x03\x00\x00\x002\xb80\x10_\\KA\x97\xb7.[O\xd56\xec^F\xdfT\xda\x9817\"\xf5h\xc0\xf8\a\x9e\xce\xa9&\xffq\xebA\x98\x96~\x17|\xc9xR\\z\x9a\x8cRJ\x85\\u\xb2\\\xedB4\xb5z\xbb\xee\xbd\x96\x19\xd1\x98\xeb\xe8\xc1u\x8b\xf8hc\x81#\r\xe8\xf8%\xd9\x7f\r\x12M\x00', 0x40, 0x0, 0x0)
pread64(r1, &(0x7f0000000000)=""/36, 0x24, 0x5)

4m15.547290405s ago: executing program 1 (id=5394):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
syz_mount_image$bcachefs(&(0x7f00000001c0), &(0x7f0000000180)='./file1\x00', 0x2800000, &(0x7f0000000280)=ANY=[@ANYRES16, @ANYRESDEC=0x0, @ANYRESHEX=0x0, @ANYRES32=0x0, @ANYRES64], 0xfd, 0x5b24, &(0x7f00000004c0)="$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")
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(r0, 0x49, 0x1)

4m13.226189765s ago: executing program 47 (id=5394):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
syz_mount_image$bcachefs(&(0x7f00000001c0), &(0x7f0000000180)='./file1\x00', 0x2800000, &(0x7f0000000280)=ANY=[@ANYRES16, @ANYRESDEC=0x0, @ANYRESHEX=0x0, @ANYRES32=0x0, @ANYRES64], 0xfd, 0x5b24, &(0x7f00000004c0)="$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")
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
lseek(r0, 0x49, 0x1)

1m38.154187187s ago: executing program 7 (id=6093):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000580)='./file0\x00', 0x4, &(0x7f0000000980)=ANY=[], 0x1, 0x120b, &(0x7f0000002300)="$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")
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
rename(&(0x7f0000000600)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1e0)
creat(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x40)
creat(&(0x7f0000000fc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x12)

1m36.819704065s ago: executing program 7 (id=6099):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_int(r0, 0x0, 0x33, &(0x7f0000000040)=0x80000003, 0x4)
listen(r0, 0x3)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_int(r1, 0x0, 0x33, &(0x7f0000000040)=0x80000003, 0x4)
connect$inet(r1, &(0x7f0000000100)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x1c}}, 0x10)

1m35.722843116s ago: executing program 7 (id=6104):
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x9, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x9)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x11, 0x80a, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'bond0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="3c0000001000490400"/20, @ANYRES32=r2, @ANYBLOB="00000000001a00001c00128009000100626f6e64000000000c00028008001200ffffffa1"], 0x3c}}, 0x0)

1m35.299946706s ago: executing program 7 (id=6107):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0xe, &(0x7f00000002c0)={[{@init_itable}, {@resuid}, {@stripe={'stripe', 0x3d, 0x40}}]}, 0x3, 0x463, &(0x7f0000000340)="$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")
mount(0x0, &(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000280)='binfmt_misc\x00', 0x800, 0x0)
chroot(&(0x7f0000000100)='./file0\x00')
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
pivot_root(&(0x7f0000000240)='./file0\x00', &(0x7f0000000000)='./file0/../file0\x00')
open(&(0x7f00000000c0)='./bus\x00', 0x400141042, 0x0)

1m33.627154508s ago: executing program 7 (id=6111):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x7, 0x9}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0xd, 0x3, 0x4, 0x1, 0x0, r0}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000008c0)={{r1}, &(0x7f0000000840), &(0x7f0000000880)=r0}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000e80)={r1, &(0x7f0000000d40), 0x0}, 0x20)

1m32.851325126s ago: executing program 7 (id=6114):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = syz_io_uring_setup(0x18b0, &(0x7f0000000280)={0x0, 0x0, 0x10100, 0x0, 0x1000}, &(0x7f0000000200), &(0x7f0000000340)=<r2=>0x0)
syz_io_uring_setup(0x1868, &(0x7f00000003c0), &(0x7f0000000040)=<r3=>0x0, &(0x7f0000000240))
syz_io_uring_submit(r3, r2, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54})
io_uring_enter(r1, 0x184c, 0x0, 0x0, 0x0, 0x0)

1m31.101994339s ago: executing program 48 (id=6114):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = syz_io_uring_setup(0x18b0, &(0x7f0000000280)={0x0, 0x0, 0x10100, 0x0, 0x1000}, &(0x7f0000000200), &(0x7f0000000340)=<r2=>0x0)
syz_io_uring_setup(0x1868, &(0x7f00000003c0), &(0x7f0000000040)=<r3=>0x0, &(0x7f0000000240))
syz_io_uring_submit(r3, r2, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54})
io_uring_enter(r1, 0x184c, 0x0, 0x0, 0x0, 0x0)

8.790619363s ago: executing program 3 (id=6543):
r0 = open(&(0x7f0000000280)='.\x00', 0x141080, 0x0)
fcntl$notify(r0, 0x402, 0x8000003d)
r1 = open(&(0x7f0000000180)='./file1\x00', 0x1c927e, 0x30)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143041, 0x0)
write$binfmt_elf64(r2, &(0x7f00000001c0)=ANY=[], 0x7bc6)
read$FUSE(r1, &(0x7f0000000dc0)={0x2020}, 0x2020)

8.255528124s ago: executing program 9 (id=6544):
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0xa0, &(0x7f0000000700)=ANY=[], 0x1, 0x0, 0x0)
r0 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0)

7.259135464s ago: executing program 3 (id=6547):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'ghash-generic\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000200)="ad56b6cc0400aeb995298992ea5400c2", 0x10)
recvmmsg$unix(r1, &(0x7f0000002a40)=[{{0x0, 0x0, &(0x7f00000028c0)=[{0x0}, {&(0x7f0000002540)=""/193, 0xc1}], 0x2}}], 0x1, 0x20, 0x0)
sendmmsg$unix(r1, &(0x7f0000000680), 0x4924924924925c6, 0x0)

6.831577378s ago: executing program 9 (id=6548):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x1f, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x11}, 0x94)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r0, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
r1 = socket$inet6(0xa, 0x3, 0x87)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000280)={{{@in6=@remote, @in=@multicast1, 0xfffd, 0x0, 0x4e20, 0x0, 0x2}, {0x0, 0x4, 0x1, 0x0, 0x0, 0x9}, {0x1ff, 0xffffffffe, 0x4053e5, 0x20}, 0x6, 0x1, 0x1, 0x0, 0x1, 0x1}, {{@in=@empty, 0x1, 0x32}, 0xa, @in6=@private0, 0x3502, 0x1, 0x0, 0x0, 0x6, 0xfffffffd}}, 0xe8)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}, 0x9df}, 0x1c)

6.00137254s ago: executing program 9 (id=6550):
r0 = socket$inet6(0xa, 0x3, 0x8000000003c)
recvmmsg(r0, &(0x7f00000009c0)=[{{0x0, 0x0, 0x0}, 0x40009}, {{0x0, 0x0, 0x0}, 0x5}], 0x2, 0x2, 0x0)
r1 = socket$inet6(0xa, 0x3, 0x8)
connect$inet6(r1, &(0x7f0000000200)={0xa, 0x4e24, 0x2, @empty}, 0x1c)
setsockopt$inet6_IPV6_DSTOPTS(r1, 0x29, 0x3b, &(0x7f0000000080)=ANY=[], 0xd8)
sendmmsg(r1, &(0x7f00000092c0), 0x4ff, 0x0)

5.851388574s ago: executing program 3 (id=6552):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
r1 = socket$packet(0x11, 0xa, 0x300)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000100)=[{0x80000006}]}, 0x10)
setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000040)=0x2, 0x4)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c)
syz_emit_ethernet(0x47, &(0x7f0000000d40)={@link_local, @local, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "010700", 0x11, 0x11, 0x0, @private1, @mcast2, {[], {0x0, 0xe22, 0x11, 0x0, @gue={{0x2}, 'J'}}}}}}}, 0x0)

5.391519902s ago: executing program 3 (id=6554):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x16)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x92)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x800, &(0x7f0000000100)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@xino_on}]})
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
lseek(r0, 0x10001, 0x0)

4.599891545s ago: executing program 0 (id=6556):
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0x2, 0x2172, 0xffffffffffffffff, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mmap(&(0x7f0000005000/0x1000)=nil, 0x1000, 0x0, 0x13, r0, 0x0)
mmap(&(0x7f0000002000/0x2000)=nil, 0x2000, 0x2000007, 0x12, r0, 0x12574000)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendto$inet6(r1, &(0x7f0000000500)="a4", 0x34000, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)

4.496998762s ago: executing program 3 (id=6558):
r0 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = socket$kcm(0x10, 0x2, 0x0)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000380)="2e00000010008188e6b62aa73772cc9f1ba1f848110000005e140602000000000e000a001000000002900000121f", 0x2e}], 0x1}, 0x0)
sendmsg$kcm(r1, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000010008188040f80ec59acbc0413a1f848110000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x0)

3.680933449s ago: executing program 2 (id=6559):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x2, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(r0, 0x29, 0x37, 0x0, 0x0)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000680)=@gcm_128={{0x303}, "000037d7009400", "c0b6c5b29ca2b838d41ac2fc7ddf972d", "e9be1eae", "bb10000000000001"}, 0x28)

3.400537025s ago: executing program 3 (id=6560):
syz_open_dev$usbmon(&(0x7f0000000280), 0x80000000000000, 0x0)
r0 = syz_io_uring_setup(0x49a, &(0x7f00000000c0)={0x0, 0x79af, 0x3180, 0x8000, 0x40024e}, &(0x7f0000000080)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000000)=0xff8, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x40, 0x4007, @fd_index=0x3, 0x6, 0x0, 0x0, 0x2, 0x1})
io_uring_enter(r0, 0x627, 0x4c1, 0x43, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)

3.139877869s ago: executing program 8 (id=6561):
recvmmsg(0xffffffffffffffff, &(0x7f00000028c0)=[{{0x0, 0x0, &(0x7f0000000880)=[{0x0}, {&(0x7f0000000a00)=""/235, 0xeb}, {&(0x7f0000000b00)=""/194, 0xc2}], 0x3}, 0x3df}, {{0x0, 0x0, &(0x7f0000000e80)=[{&(0x7f0000000d80)=""/18, 0x12}], 0x1}, 0x5}], 0x2, 0x2, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000900)=[@in={0x2, 0x4e23, @loopback}, @in6={0xa, 0x0, 0x0, @loopback, 0x7ff}], 0x2c)
sendto$inet6(r0, &(0x7f0000000000)='\x00', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback, 0x5}, 0x1c)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000580)={0x41, 0x80}, 0xe)
recvmmsg(r0, &(0x7f0000000740)=[{{0x0, 0x0, &(0x7f00000000c0), 0x1, &(0x7f00000003c0)=""/21, 0x21}, 0x1ff}], 0x73d, 0x40000040, 0x0)

2.909363806s ago: executing program 2 (id=6562):
r0 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
ioctl(r1, 0x8b1a, &(0x7f0000000040))
recvmmsg(r0, &(0x7f0000001c80)=[{{0x0, 0x0, 0x0}, 0x9}], 0x1, 0x12002, 0x0)

2.705020699s ago: executing program 0 (id=6563):
r0 = io_uring_setup(0xad2, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x3d0})
close(r0)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000240))
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r1, 0xc0502100, &(0x7f0000000400))

2.583528146s ago: executing program 8 (id=6564):
syz_mount_image$exfat(&(0x7f0000000000), &(0x7f0000000240)='./file0\x00', 0x3000050, &(0x7f0000000600)=ANY=[], 0x11, 0x14fe, &(0x7f0000002180)="$eJzs3Au0ztXWMPA511p/NklPkvuaa/55kssiSXJJSCRJkiS5JSRJkoTEJrckJCH3JPeQ3GIn9/st9yQ5kiQJCUnWN3Q6n/e8nfftnO+c7/V9Z8/fGGvsNff/mfNZa889nv9ljL2/7Ti4av1qlesyM/xT8M9fUgEgBQD6AcA1ABABQKlspbIBDoNMGlP/uTcR/1oPTbvSKxBXkvQ/fZP+p2/S//RN+p++Sf/TN+l/+ib9T9+k/0KkZ1un575WRvod/3PP/0Ge//8/R87//0YOFxvz5fpi13f6B1Kk/+mb9D99k/6nb9L/9E36n75J///NRQCV/pvD0v/0TfovRHp2pZ8/y7iy40r//gkhhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGESB/OhcsMAPxlfqXXJYQQQgghhBBCiH+dkPFKr0AIIYQQQgghhBD/9yEo0GAgggyQEVIgE2SGqyALXA1Z4RpIwLWQDa6D7HA95ICckAtyQx7IC/nAAoEDhhjyQwFIwg1QEG6EQlAYikBR8FAMisNNUAJuhpJwC5SCW6E03AZloCyUg/JwO1SAO6AiVILKcCdUgbugKlSDu6E63AM14F6oCfdBLbgfasMDUAcehLrwENSDh6E+PAIN4FFoCI2gMTSBpv9H+S9CV3gJukF3SIUe0BNehl7QG/pAX+gHr0B/eBUGwGswEAbBYHgdhsAbMBTehGEwHEbAWzASRsFoGANjYRyMh7dhArwDE+FdmASTYQpMhWkwHWbAezATZsFseB/mwAcwF+bBfFgAC+FDWASLIQ0+giXwMSyFZbAcVsBKWAWrYQ2shXWwHjbARtgEm2ELbIVPYBtshx2wE3bBbtgDn8Je+Az2weewH774B/PP/qf8TggIqFChQYMZMAOmYApmxsyYBbNgVsyKCUxgNsyG2TE75sAcmAtzYR7Mg/kwHxISMjLmx/yYxCQWxIJYCAthESyCHj0Wx+JYAm/GklgSS2EpLI2lsQyWxbJYHstjBayAFbEiVsbKWAWrYFWsinfj3XgP1sAaWBNrYi2shbWxNtbBOlgX62I9rIf1sT42wAbYEBtiY2yMTbEpNsNm2BybY0tsia2wFbbG1tgG22BbbIvtsB22x/bYATtgR+yInbAzdsYX8UV8CV/C7lhF9cCe2BN7YS/sg32xL76C/fFVfBVfw4E4CAfj6/g6voFD8QwOw+E4AkdgBTUKR+MYZDUOx+N4nIATcCJOxEk4GSfjVJyG03EGzsCZOAtn4fs4Bz/AD3AezsMFuBAX4iJcjGmYhkvwLC7FZbgcV+BKXIUrcQ2uxTW4HjfgetyEm3ALbsFP8BPcjttxJ+7E3bgbP8VP8TP8DAfiftyPB/AAHsSDeAgP4WE8jEfwCB7Fo3gMj+FxPI4n8CSewpN4Gk/jGTyL5/AcnsfzeAGfz/N1vd2F1w0EdYlRRmVQGVSKSlGZVWaVRWVRWVVWlVAJlU1lU9lVdpVD5VC5VC6VR+VR+VQ+RYoUq1jlV/lVUiVVQVVQFVKFVBFVRHnlVXFVXJVQJVRJVVKVUreq0uo2VUaVVS18eVVeVVAtfUVVSVVWlVUVdZeqqqqpaqq6qq5qqBqqpqqpaqlaqrZ6QNVRPbAPPqQudaa+GoQN1GBsqBqpxqqJegMfU83UUGyuWqiW6gk1HIdha9XMt1FPq7ZqNLZTz6ox+JzqoMZhR/WC6qQ6qy7qRdVVNffdMvz2EaimYi/VW/VRfdVMvEtd6lhV9ZoaqAapwep1tQDfUEPVm2qYGq5GqLfUSDVKjVZj1Fg1To1Xb6sJ6h01Ub2rJqnJaoqaqqap6WqGek/NVLPUbPW+mqM+UHPVPDVfLVAL1YdqkVqs0tRHaon6WC1Vy9RytUKtVKvUarVGrVXr1Hq1QW1Um9RmtUVtVZ+obWq72qF2ql1qt9qjPlV71Wdqn/pc7VdfqAPqT+qg+lIdUl+pw+prdUR9o46qb9Ux9Z06rr5XJ9RJdUr9oE6rH9UZdVadUz+p8+pndUH9oi6qoECjVlproyOdQWfUKTqTzqyv0ln01TqrvkYn9LU6m75OZ9fX6xw6p86lc+s8Oq/Op60m7TTrWOfXBXRS36AL6ht1IV1YF9FFtdfFdHF9ky6hb9Yl9S26lL5Vl9a36TK6rC6ny+vbdQV9h66oK+nK+k5dRd+lq+pq+m5dXd+ja+h7dU19n66l79e19QO6jn5Q19UP6Xr6YV1fP6Ib6Ed1Q91IN9ZNdFP9mG6mH9fNdQvdUj+hW+kndWv9lG6jn9Zt9TO6nX5Wt9fP6Q76ed1Rv6A76c66i/5FX9RBd9PddaruoXvql3Uv3Vv30X11P/2K7q9f1QP0a3qgHqQH69f1EP2GHqrf1MP0cD1Cv6VH6lF6tB6jx+pxerx+W0/Q7+iJ+l09SU/WU/RUPU1P131+qzT778h/52/kD/j13bforfoTvU1v1zv0Tr1L79Z79B69V+/V+/Q+vV/v1wf0AX1QH9SH9CF9WB/WR/QRfVQf1cf0MX1cH9cn9En9k/5Bn9Y/6jP6rD6rf9Ln9Xl94befARg0ymhjTGQymIwmxWQymc1VJou52mQ115iEudZkM9eZ7OZ6k8PkNLlMbpPH5DX5jDVknGETm/ymgEmaG0xBc6MpZAqbIqao8aaYKW5u+qfz/2h9TU1T08w0M81Nc9PStDStTCvT2rQ2bUwb09a0Ne1MO9PetDcdTAfT0XQ0nUwn08V0MV1NV9PNdDOpJtX0NC+bXqa36WP6mn7mFdPf9DcDzAAz0Aw0g81gM8QMMUPNUDPMDDMjzAgz0ow0o81oM9aMNePNeDPBTDATzUQzyUwyU8wUM81MMzPMDDPTzDSzzWwzx8wxc81cM9/MNwvNQrPILDJpJs0sMUvMUrPMLDMrzAqzyqwya8was86sMxvMBrPJbDJLzVaz1Wwz28wOs8PsMrvMHrPH7DV7zT6zz+w3+80Bc8AcNAfNIXPIHDaHzRFzxBw1R80xc8wcN8fNCXPCnDKnzGlz2pwxZ8w5c86cN+fNBXPBXDQXL132RSpSkYlMlCHKEKVEKVHmKHOUJcoSZY2yRokoEWWLskXZo+ujHFHOKFeUO8oT5Y1SwUYUuYijOMofFYiS0Q1RwejGqFBUOCoSFY18VCwqHt0UlYhujkpGt0Sloluj0tFtUZmobFQuKh/dHlWI7ogqRpWiytGdUZXorqhqVC26O6oe3RPViO6Nakb3RbWi+6Pa0QNRnejBqG70UFQvejiqHz0SNYgejRpGjaLGUZOo6b+0fghncj7uu9nuNtX2sD3ty7aX7W372L62n33F9rev2gH2NTvQDrKD7et2iH3DDrVv2mF2uB1h37Ij7Sg72o6xY+04O96+bSfYd+xE+66dZCfbKXaqnWan2xn2PTvTzrKz7ft2jv3AzrXz7Hy7wC60H9pFdrFNsx/ZJfZju9Qus8vtCrvSrrKr7Rq71q6z6+0Gu9FuspvtFrvVfmK32e12h91pd9nddo/91O61n9l99nO7335hD9g/2YP2S3vIfmUP26/tEfuNPWq/tcfsd/a4/d6esCftKfuDPW1/tGfsWXvO/mTP25/tBfuLvWjDpYv7S6d3MmQoA2WgFEqhzJSZslAWykpZKUEJykbZKDtlpxyUg3JRLspDeSgf5aNLmJjyU35KUpIKUkEqRIWoCBUhT56KU3EqQSWoJJWkUlSKSlNpKkNlqByVo9vpdrqD7qBKVInupDvpLrqLqlE1qk7VqQbVoJpUk2pRLapNtakO1aG6VJfqUT2qT/WpATWghtSQGlNjakpNqRk1o+bUnFpSS2pFrag1taY21IbaUltqR+2oPbWnDtSBOlJH6kSdqAt1oa7UlbpRN0qlVOpJPakX9aI+1If6UT/qT/1pAA2ggTSQBtNgGkJDaCgNpWE0nEbQWzSSRtFoGkNjaRyNp/E0gSbQRJpIk2gSTaEpNI2m0QyaQTNpJs2m2TSH5tBcmkvzaT4tpIW0iBZRGqXRElpCS2kpLafltJJW0mpaTWtpLa2n9bSRNtJm2kxbaStto220g3bQLtpFe2gP7aW9tI/20X7aTwfoAB2kg3SIDtFhOkxH6AgdpaN0jI7RcTpOJ+gEnaJTdJpO0xk6Q+foHJ2nn+kC/UIXKVCKU5DZXeWyuKtdVneNS3GZ3KU4AoBLcS6X2+VxeV0+Z10Ol/OvYnLOFXKFXRFX1HlXzBV3N/0uLuPKunKuvLvdVXB3uIq/i6u7e1wNd6+r6e5z1dzdfxXXcve72u4RV8c96uq6Rq6ea+Lqu0dcA/eoa+gaucauiWvlnnSt3VOujXvatXXP/C5e5Ba7tW6dW+82uL3uM3fO/eSOum/defez6+a6u37uFdffveoGuNfcQDfod/EI95Yb6Ua50W6MG+vG/S6e4qa6aW66m+HeczPdrN/FC92Hbo5Lc3PdPDffLfg1vrSmNPeRW+I+dkvdMrfcrXAr3Sq32q3532td4Ta5zW6L2+M+ddvcdrfD7XS73O5f40v72Oc+d/vdF+6I+8YddF+6Q+6YO+y+/jW+tL9j7jt33H3vTriT7pT7wZ12P7oz7uyv+7+09x/cL+6iCw4YWbFmwxFn4Iycwpk4M1/FWfhqzsrXcIKv5Wx8HWfn6zkH5+RcnJvzcF7Ox5aJHTPHnJ8LcJJv4IJ8IxfiwlyEi7LnYlycb+ISfDOX5Fu4FN/Kpfk2LsNluRyX59u5At/BFbkSV+Y7uUoIXJWr8d1cne/hGnwv1+T7uBbfz7X5Aa7DD3Jdfojr8cNcnx/hBvwoN+RG3JibcFN+jJvx49ycW3BLfoJb8ZPcmp/iNvw0t+VnuB0/y+35Oe7Az3NHfoE7cWfuwi9yV36Ju3F3TuUe3JNf5l7cm/twX+7Hr3B/fpUH8Gs8kAfxYH6dh/AbPJTf5GE8nEfwWzySR/FoHsNjeRyP57d5Ar/DE/ldnsSTeQpP5Wk8nWfwezyTZ/Fsfp/n8Ac8l+fxfF7AC/lDXsSLOY0/4iX8MS/lZbycV/BKXsWreQ2v5XW8njfwRt7Em3kLb+VPeBtv5x28k3fxbt7Dn/Je/oz38ee8n7/gA/wnPshf8iH+ig/z13yEv+Gj/C0f4+/4OH/PJ/gkn+If+DT/yGf4LJ/jn/g8/8wX+Be+yIEhxljFOjZxFGeIM8YpcaY4c3xVnCW+Os4aXxMn4mvjbPF1cfb4+jhHnDPOFeeO88R543yxjSl2McdxnD8uECfjG+KC8Y1xobhwXCQuGvu4WFw8vikuEd8cl4xviUvFt8al49viMnHZ+JH7yse3xxXiO+KKcaW4cnxnXCW+K64aV4vvjqvH98Q14nvjmvF9ccn4/rh2/EBcJ34wrhs/FNeLH47rx4/EDeJH44Zxo7hx3CRuGj8WN4sfj5vHLeKW8RNxq/jJuHX8VNwmfjpuGz/zh8dT4x5xz/jl+OU4hHv1/OSC5MLkh8lFycXJtORHySXJj5NLk8uSy5MrkiuTq5Krk2uSa5PrkuuTG5Ibk5uSm5NbkiFUywgevfLaGx/5DD6jT/GZfGZ/lc/ir/ZZ/TU+4a/12fx1Pru/3ufwOX0un9vn8Xl9Pm89eefZxz6/L+CT/gZf0N/oC/nCvogv6r0v5ov7Jr6pb+qb+cd9c9/Ct/RP+Cf8k/5J/5R/yj/t2/pnfDv/rG/vn/Md/PP+ef+C7+Q7+y7+Rd/Vv+S7+e4+1af6nr6n7+V7+T6+j+/n+/n+vr8f4Af4gX6gH+wH+yF+iB/qh/phfpgf4Uf4kX6kH+1H+7F+rB/vx/sJfoKf6Cf6SX6Sn+Kn+Gl+mp/hZ/iZfqaf7Wf7OYXm+Ll+rp/v5/uFfqFf5Bf5NJ/ml/glfqlf6pf75X6lX+lX+9V+rV/r1/v1fqPf6Df7zX6r3+q3+W1+h9/hd/ldfo/f4/f6vX6f3+f3+/3+gD/gD/qD/pD/yh/2X/sj/ht/1H/rj/nv/HH/vT/hT/pT/gd/2v/oz/iz/pz/yZ/3P/sL/hd/0Qc/PvF2YkLincTExLuJSYnJiSmJqYlpiemJGYn3EjMTsxKzE+8n5iQ+SMxNzEvMTyxILEx8mFiUWJxIS3yUWJL4OLE0sSyxPLEisTKxKhFC3m1xyB8KhGS4IRQMN4ZCoXAoEooGH4qF4uGmUCLcHEqGW0KpcGsoHW4LZULZUC48GhqGRqFxaBKahsdCs/B4aB5ahJbhidAqPBlah6dCm/B0aBueCe3Cs6F9eC50CM+HjuGF0Cl0Dl3Ci6FreCl0C91DaugReoaXQ6/QO/QJfUO/8EroH14NA8JrYWAYFAaH18OQ8EYYGt4Mw8LwMCK8FUaGUWF0GBPGhnFhfHg7TAjvhInh3TApTA5TwtQwLUwPM8J7YWaYFWaH98Oc8EGYG+aF+WFBWBg+DIvC4pAWPgpLwsdhaVgWlocVYWVYFVaHNWFtWBfWhw1hY9gUNoctYWv4JGwL28OOsDPsCrvDnvBp2Bs+C/vC52F/+CIcCH8KB8OX4VD4KhwOX4cj4ZtwNHwbjoXvwvHwfTgRToZT4YdwOvwYzoSz4Vz4KZwPP4cL4ZdwUf5mTQghhBDi76L/4HiPv/G9DACgfpv3BICrt+c+/J9rbszx53lvladVAgCe7t7xob+MKlVSU1N/e+1SDVGBeQCQ+Ov6f4mXQUt4EtpACyjxN9fXW3U+z39QP3krQOb/kJMCl+PL9W/+L+o/9sSIRaXjc9n+m/rzAAoVuJyTCS7Hl+uX/C/q52z2B+vP9OV4gOb/IScLXI4v1y8Oj8Mz0OavXimEEEIIIYQQQvxZb1Wu/R/dP1+6P89jLudkhMvxH92fCyGEEEIIIYQQ4sp7rnOXpx5r06ZF+79vgr89F/jHsmQiE5n8fza50p9MQgghhBBCiH+1yxf9V3olQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCFE+vU/8e/ErvQehRBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCiCvtfwUAAP//luw5aQ==")
r0 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
r1 = open(&(0x7f0000000080)='./file1\x00', 0x64842, 0x86)
openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0, 0x0)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x140000}], 0x1, 0x7800, 0x0, 0x3)
ftruncate(r0, 0x201f)

2.055431441s ago: executing program 9 (id=6565):
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000140)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
pipe(&(0x7f0000000100)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r3, 0x0, r1, 0x0, 0xf3a, 0x0)
tee(r0, r4, 0xf3a, 0x0)
write$binfmt_elf64(r2, &(0x7f0000000380)=ANY=[], 0x18c6)

1.728683297s ago: executing program 8 (id=6566):
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='mountinfo\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x100)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000042c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
syz_fuse_handle_req(r1, &(0x7f00000020c0)="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", 0x2000, &(0x7f0000006e40)={&(0x7f0000000340)={0x50, 0x0, 0x0, {0x7, 0x21, 0x0, 0x772d42, 0x0, 0x400, 0x200, 0x0, 0x0, 0x0, 0x12}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
read$FUSE(r0, &(0x7f0000000f00)={0x2020}, 0x2020)

1.513880387s ago: executing program 2 (id=6567):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000280)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@block_validity}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x9}}, {@data_err_ignore}, {@grpquota}, {@abort}, {@user_xattr}, {@bh}, {@errors_remount}]}, 0x1, 0x553, &(0x7f0000000800)="$eJzs3d9rW1UcAPDvTdv91nUwhopIYQ9O5tK19ccEH+aj6HCg7zO0d2U0WUaTjrUO3B7ciy8yBBEH4ru++zj8B/wrBjoYMoo++BK56U2XrUmbddnSmc8Hbjkn9ybnfnPv9/TcnBsSwNCayP4UIl6OiG+SiIMRkeTrRiNfObG23er9q7PZkkSj8elfSXO7rN56rdbz9ueVlyLit68ijhc2tltbXlkolcvpYl6frFcuTdaWV05cqJTm0/n04vTMzKm3Z6bfe/edvsX6xtl/vv/k9oenvj66+t0vdw/dTOJ0HMjXtcfxBK61VyZiIn9PxuL0IxtO9aGxnSQZ9A6wLSN5no9F1gccjJE864H/vy8jogEMqUT+w5BqjQNa1/Z9ug5+btz7YO0CaGP8o2ufjcSe5rXRvtXkoSuj7Hp3vA/tZ238+uetm9kS/fscAmBL165HxMnR0Y39X5L3f9t3sodtHm1D/wfPzu1s/PNmp/FPYX38Ex3GP/s75O52bJ3/hbt9aKarbPz3fsfx7/qk1fhIXnuhOeYbS85fKKdZ3/ZiRByLsd1ZfbP5nFOrdxrd1rWP/7Ila781Fsz34+7o7oefM1eql54k5nb3rke80nH8m6wf/6TD8c/ej7M9tnEkvfVat3Vbx/90NX6KeL3j8X8wo5VsPj852TwfJltnxUZ/3zjye7f2Bx1/dvz3bR7/eNI+X1t7/DZ+3PNv2m3dQ/FH7+f/ruSzZnlX/tiVUr2+OBWxK/l44+PTD57bqre2z+I/dnTz/q/T+b83Ij7vMf4bh39+taf4B3T85x7r+D9+4c5HX/zQrf3e+r+3mqVj+SO99H+97uCTvHcAAAAAAACw0xQi4kAkheJ6uVAoFtfu7zgc+wrlaq1+/Hx16eJcNL8rOx5jhdZM98G2+yGm8vthW/XpR+ozEXEoIr4d2dusF2er5blBBw8AAAAAAAAAAAAAAAAAAAA7xP4u3//P/DEy6L0Dnjo/+Q3Da8v878cvPQE7kv//MLzkPwwv+Q/DS/7D8JL/MLzkPwwv+Q/DS/4DAAAAAAAAAAAAAAAAAAAAAAAAAABAX509cyZbGqv3r85m9bnLy0sL1csn5tLaQrGyNFucrS5eKs5Xq/PltDhbrWz1euVq9dLUdCxdmayntfpkbXnlXKW6dLF+7kKlNJ+eS8eeSVQAAAAAAAAAAAAAAAAAAADwfKktryyUyuV0UUFhW4XRnbEbCn0uDLpnAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAH/gsAAP//6AY3sQ==")
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
truncate(&(0x7f0000000040)='./bus\x00', 0xa00d)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r0, 0x3000)
r1 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x389b0d52417bb201)
pwritev2(r1, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x6a030}], 0x15, 0x7000, 0x0, 0x3)

1.467747509s ago: executing program 9 (id=6568):
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='mnt\x00', 0x4, &(0x7f0000000000), 0x0, 0x236, &(0x7f0000000300)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000540)='mnt\x00', 0x0, 0x46)
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r0, 0xc0506617, &(0x7f0000000580)={@id={0x2, 0x0, @a}, 0x40, 0x0, '\x00', @a})
mkdirat(0xffffffffffffff9c, &(0x7f0000000640)='mnt/encrypted_dir\x00', 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000680)='mnt/encrypted_dir\x00', 0x800, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY_ALL_USERS(r1, 0xc0406619, &(0x7f0000000080)={@desc={0x1, 0x0, @desc2}})

1.440799176s ago: executing program 0 (id=6569):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x92}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffffffffff000000", @ANYRES32=r2, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}, 0x1, 0x0, 0x0, 0xc000}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000001500)=@newqdisc={0x50, 0x24, 0xe0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0x9}, {0xffff, 0xffff}, {0xfff1}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x20, 0x2, {{0x1ff, 0x4, 0x0, 0x0, 0xfffffffd, 0x8}, [@TCA_NETEM_LOSS={0x4}]}}}]}, 0x50}}, 0x0)

1.035212001s ago: executing program 8 (id=6570):
r0 = gettid()
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
read(r1, &(0x7f0000000440)=""/247, 0x26)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f0000000080)={0x31, @time={0x3, 0xfffefffd}, 0x0, {0x0, 0x2}, 0x0, 0x0, 0x4})
ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r1, 0x80045301, 0x0)
tkill(r0, 0x7)

899.383534ms ago: executing program 0 (id=6571):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r0, &(0x7f0000001c00)={0x2, 0x4e23, @multicast2}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000080)=0x6005, 0x4)
connect$inet(r0, &(0x7f0000001bc0)={0x2, 0x4e23, @loopback}, 0x10)
sendto$inet(r0, &(0x7f0000000a40)="015466072a660bbf56352083db9d40454a67f8010000004bd29585885c89773ca3ba28a1e85ffe2a0000000000000000b745bf2146835ad015c801f95be5b89099d13b31be8e88a1e5176e584c970207f23b0073ca5375abddf56331be396eaa2398ea66b93a74fd413de826abed1b", 0x6f, 0x40805, 0x0, 0x0)

835.532307ms ago: executing program 9 (id=6572):
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
fcntl$setpipe(r0, 0x407, 0x7000000)
capset(&(0x7f00000004c0)={0x20080522}, &(0x7f0000000500)={0x0, 0x2000, 0x0, 0x0, 0x0, 0x3cd})
pipe2$watch_queue(&(0x7f00000002c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80)
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
ioctl$IOC_WATCH_QUEUE_SET_SIZE(r1, 0x5760, 0x5e)

832.69071ms ago: executing program 2 (id=6573):
chdir(0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x1)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='autofs\x00', 0x0, &(0x7f0000000100))
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x0, 0x3f46137792f68265)
ioctl$AUTOFS_IOC_ASKUMOUNT(r0, 0xc0049364, &(0x7f00000001c0))

530.403403ms ago: executing program 8 (id=6574):
sendmsg$IPCTNL_MSG_EXP_NEW(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f00000001c0)=ANY=[@ANYBLOB="840000000002010400000000000000000a00000004000180300003802c00018014000300fc00000000000000000000100000000014004400fe800000001f610000000000000000bb3c0002800c00028005000100000000002c00018014000300fc020000000000000000000000000000140004"], 0x84}}, 0x0)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$NL80211_CMD_CONNECT(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r0, @ANYBLOB="05"], 0x1c}}, 0x0)
r1 = socket(0x10, 0x803, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x9)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="a000000010003b0e2a1a86eb2636037f00000000", @ANYRES32=r2, @ANYBLOB="0200000000008000800012000800010076746936740002"], 0xa0}}, 0x0)

463.62754ms ago: executing program 2 (id=6575):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
bpf$MAP_CREATE(0x0, &(0x7f0000000700)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x50)

419.571233ms ago: executing program 0 (id=6576):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x8, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x42}, 0x94)
r0 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0xc0}, &(0x7f00000002c0)=<r1=>0x0, &(0x7f0000000640)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x7b, 0x0, 0x0, 0x0, &(0x7f0000011000/0x4000)=nil, 0x4000, 0xc})
io_uring_enter(r0, 0x47bc, 0x20, 0x0, 0x0, 0x0)

93.67294ms ago: executing program 0 (id=6577):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
connect$inet6(r0, &(0x7f0000000300)={0xa, 0x0, 0x4, @private1}, 0x1c)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0xc, &(0x7f0000000000)=@assoc_value={<r2=>0x0}, &(0x7f0000000040)=0x8)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e21, 0x2, @private0={0xfc, 0x0, '\x00', 0x1}, 0x9}, 0x1c)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000100)={r2}, 0x8)

40.686495ms ago: executing program 2 (id=6578):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000180)=[@in={0x2, 0x4e21, @local}], 0x10)
sendmsg$inet_sctp(r0, &(0x7f0000000700)={&(0x7f0000000340)=@in={0x2, 0x4e21, @local}, 0x10, &(0x7f00000006c0)=[{&(0x7f0000000380)='N', 0x1}], 0x1, 0x0, 0x0, 0x804c040}, 0xc851)
getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000000)={0x1, [<r1=>0x0]}, &(0x7f0000000040)=0x8)
sendmmsg$inet_sctp(r0, &(0x7f0000000100)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)=[@sndinfo={0x20, 0x84, 0x2, {0xc5e, 0x4, 0x1, 0x168c240b, r1}}], 0x20, 0xc005}], 0x1, 0x10)
setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000240)={r1, 0x2}, 0x8)

0s ago: executing program 8 (id=6579):
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc000, &(0x7f00000006c0), 0x2, 0x246, &(0x7f0000000ac0)="$eJzs3T9oM2UcB/DvXRJf+75BXnURxD8gIloor5vg8rooFKQUEUGFioiL0gq1xa1xcnHQWaWTSxE3q6N0KS6K4FS1Q10ELQ4WBx0iybVS24ja1Jz0Ph+43l3vee73HLnvkyyXBGisq0muJ2klmU7SSVIcb3B3tVw93F2f2l5I+v0nfiqG7ar9ylG/K0l6SR5KslUWeamdrG4+s/fLzmP3vbnSuff9zaenJnqRh/b3dh8/eG/ujY9mH1z94qsf5opcT/dP13X+ihH/axfJLf9Fsf+Jol33CPgn5l/78OtB7m9Ncs8w/52UqV68t5Zv2OrkgXf/qu/bP355+yTHCpy/fr8zeA/s9YHGKZN0U5QzSartspyZqT7Df9O6XL68tPzq9ItLK4sv1D1TAeelm+w++smlj6+cyP/3rSr/wMU1yP+T8xvfDrYPWnWPBpiIO6rVIP/Tz63dH/mHxpF/aC75h+aSf2gu+Yfmkn9oLvmHC6xztNEbeVj+obnkH5pL/qG5jucfAGiW/qW6n0AG6lL3/AMAAAAAAAAAAAAAAAAAAJy2PrW9cLRMquZn7yT7jyRpj6rfGv4ecXLj8O/ln4tBsz8UVbexPHvXmCcY0wc1P31903f11v/8znrrry0mvdeTXGu3T99/xeH9d3Y3/83xzvNjFviXihP7Dz812fon/bZRb/3ZneTTwfxzbdT8U+a24Xr0/NM9/hXLZ/TKr2OeAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIn5PQAA//8PK23M")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
r1 = creat(&(0x7f0000000140)='./file0\x00', 0x0)
fallocate(r1, 0x0, 0x0, 0x5)
fallocate(r0, 0x0, 0x0, 0x10fff9)
ioctl$EXT4_IOC_MOVE_EXT(r0, 0xc028660f, &(0x7f0000000040)={0xc, r1, 0x18, 0x0, 0x2})

kernel console output (not intermixed with test programs):

0
[ 1542.045673][T20927]  f2fs_sync_dirty_inodes+0x2ab/0x9e0
[ 1542.045858][T20927]  f2fs_write_checkpoint+0xfe2/0x2b00
[ 1542.046154][T20927]  kill_f2fs_super+0x2ff/0x970
[ 1542.046332][T20927]  ? __pfx_kill_f2fs_super+0x10/0x10
[ 1542.046491][T20927]  deactivate_locked_super+0xc8/0x3c0
[ 1542.046727][T20927]  deactivate_super+0x12f/0x140
[ 1542.046948][T20927]  cleanup_mnt+0x6fb/0x780
[ 1542.047105][T20927]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[ 1542.047324][T20927]  ? __pfx___cleanup_mnt+0x10/0x10
[ 1542.047493][T20927]  __cleanup_mnt+0x22/0x30
[ 1542.047654][T20927]  task_work_run+0x209/0x2b0
[ 1542.047828][T20927]  exit_to_user_mode_loop+0x2a6/0x330
[ 1542.048006][T20927]  do_syscall_64+0x1e3/0x210
[ 1542.048177][T20927]  ? irqentry_exit+0x16/0x60
[ 1542.048313][T20927]  ? clear_bhb_loop+0x40/0x90
[ 1542.048450][T20927]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1542.048591][T20927] RIP: 0033:0x7fba2338fcd7
[ 1542.048686][T20927] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 1542.048798][T20927] RSP: 002b:00007ffdd387c578 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 1542.048928][T20927] RAX: 0000000000000000 RBX: 00007fba23410b55 RCX: 00007fba2338fcd7
[ 1542.049016][T20927] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffdd387c630
[ 1542.049098][T20927] RBP: 00007ffdd387c630 R08: 0000000000000000 R09: 0000000000000000
[ 1542.049182][T20927] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffdd387d6c0
[ 1542.049267][T20927] R13: 00007fba23410b55 R14: 00000000001786ed R15: 00007ffdd387d700
[ 1542.049406][T20927]  </TASK>
[ 1542.411686][T21801] loop3: detected capacity change from 0 to 40427
[ 1542.417410][T20927] F2FS-fs (loop7): Stopped filesystem due to reason: 3
[ 1542.439120][T21801] F2FS-fs (loop3): build fault injection rate: 690
[ 1542.446225][T21801] F2FS-fs (loop3): Image doesn't support compression
[ 1542.458610][T21801] F2FS-fs (loop3): invalid crc value
[ 1542.828783][T21801] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1542.872498][T21801] syz.3.5672: attempt to access beyond end of device
[ 1542.872498][T21801] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1543.199294][T20905] syz-executor: attempt to access beyond end of device
[ 1543.199294][T20905] loop3: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[ 1543.213908][T20905] CPU: 0 UID: 0 PID: 20905 Comm: syz-executor Tainted: G        W           6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(none) 
[ 1543.214092][T20905] Tainted: [W]=WARN
[ 1543.214147][T20905] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1543.214230][T20905] Call Trace:
[ 1543.214281][T20905]  <TASK>
[ 1543.214329][T20905]  __dump_stack+0x26/0x30
[ 1543.214516][T20905]  dump_stack_lvl+0x1df/0x270
[ 1543.214705][T20905]  dump_stack+0x1e/0x25
[ 1543.214867][T20905]  f2fs_handle_critical_error+0xa6f/0xc20
[ 1543.215066][T20905]  f2fs_stop_checkpoint+0x65/0x80
[ 1543.215214][T20905]  f2fs_write_end_io+0xb4b/0x1920
[ 1543.215392][T20905]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1543.215611][T20905]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 1543.215766][T20905]  bio_endio+0xe27/0xf80
[ 1543.215972][T20905]  submit_bio_noacct+0x214/0x2710
[ 1543.216227][T20905]  submit_bio+0x5a9/0x5d0
[ 1543.216436][T20905]  f2fs_submit_write_bio+0x92/0x250
[ 1543.216631][T20905]  __submit_merged_bio+0x16f/0x6a0
[ 1543.216833][T20905]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1543.216989][T20905]  __submit_merged_write_cond+0x458/0x9a0
[ 1543.217193][T20905]  f2fs_write_data_pages+0x4bb2/0x5480
[ 1543.217469][T20905]  ? kmsan_get_metadata+0xfb/0x160
[ 1543.217615][T20905]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1543.217780][T20905]  ? __update_load_avg_cfs_rq+0xe9/0x1010
[ 1543.217922][T20905]  ? kmsan_get_metadata+0xfb/0x160
[ 1543.218078][T20905]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[ 1543.218283][T20905]  ? kmsan_get_metadata+0xfb/0x160
[ 1543.218424][T20905]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1543.218567][T20905]  ? kmsan_get_metadata+0xfb/0x160
[ 1543.218701][T20905]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1543.218838][T20905]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1543.218983][T20905]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1543.219137][T20905]  do_writepages+0x3f2/0x860
[ 1543.219340][T20905]  ? _raw_spin_unlock+0x30/0x50
[ 1543.219540][T20905]  ? wbc_attach_and_unlock_inode+0x131/0x680
[ 1543.219754][T20905]  filemap_fdatawrite+0x207/0x260
[ 1543.220004][T20905]  f2fs_sync_dirty_inodes+0x2ab/0x9e0
[ 1543.220207][T20905]  f2fs_write_checkpoint+0xfe2/0x2b00
[ 1543.220515][T20905]  kill_f2fs_super+0x2ff/0x970
[ 1543.220686][T20905]  ? __pfx_kill_f2fs_super+0x10/0x10
[ 1543.220824][T20905]  deactivate_locked_super+0xc8/0x3c0
[ 1543.221013][T20905]  deactivate_super+0x12f/0x140
[ 1543.221201][T20905]  cleanup_mnt+0x6fb/0x780
[ 1543.221366][T20905]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[ 1543.221561][T20905]  ? __pfx___cleanup_mnt+0x10/0x10
[ 1543.221718][T20905]  __cleanup_mnt+0x22/0x30
[ 1543.221860][T20905]  task_work_run+0x209/0x2b0
[ 1543.222019][T20905]  exit_to_user_mode_loop+0x2a6/0x330
[ 1543.222179][T20905]  do_syscall_64+0x1e3/0x210
[ 1543.222314][T20905]  ? irqentry_exit+0x16/0x60
[ 1543.222435][T20905]  ? clear_bhb_loop+0x40/0x90
[ 1543.222559][T20905]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1543.222691][T20905] RIP: 0033:0x7fa842f8fcd7
[ 1543.222789][T20905] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 1543.222902][T20905] RSP: 002b:00007ffd69c154b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 1543.223043][T20905] RAX: 0000000000000000 RBX: 00007fa843010b55 RCX: 00007fa842f8fcd7
[ 1543.223141][T20905] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd69c15570
[ 1543.223214][T20905] RBP: 00007ffd69c15570 R08: 0000000000000000 R09: 0000000000000000
[ 1543.223286][T20905] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd69c16600
[ 1543.223363][T20905] R13: 00007fa843010b55 R14: 0000000000178b12 R15: 00007ffd69c16640
[ 1543.223471][T20905]  </TASK>
[ 1543.595045][T20905] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 1545.093439][T21832] loop0: detected capacity change from 0 to 512
[ 1545.178801][T21834] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1545.225042][T21832] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[ 1546.716228][T21849] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[ 1546.733653][T21849] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[ 1546.741131][T21849] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[ 1546.748435][T21849] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[ 1546.755757][T21849] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[ 1546.763148][T21849] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[ 1546.770516][T21849] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[ 1546.777872][T21849] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[ 1546.785172][T21849] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[ 1546.792368][T21849] ip_tunnel: non-ECT from 172.20.20.187 with TOS=0x2
[ 1547.045290][T21851] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5678'.
[ 1547.393700][T16907] Bluetooth: hci2: command 0x0406 tx timeout
[ 1547.723750][T21719] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[ 1547.997386][T21719] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1548.010328][T21719] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1548.020962][T21719] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1548.035085][T21719] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1548.044937][T21719] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1548.252120][T21719] usb 3-1: config 0 descriptor??
[ 1548.777629][T21719] plantronics 0003:047F:FFFF.0040: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[ 1549.017622][T21719] usb 3-1: USB disconnect, device number 27
[ 1550.759315][T21892] syz.0.5713 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[ 1551.037773][T21898] loop3: detected capacity change from 0 to 512
[ 1551.130835][T21898] EXT4-fs error (device loop3): ext4_orphan_get:1393: inode #15: comm syz.3.5716: casefold flag without casefold feature
[ 1551.200161][T21898] EXT4-fs error (device loop3): ext4_orphan_get:1398: comm syz.3.5716: couldn't read orphan inode 15 (err -117)
[ 1551.242031][T21898] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1551.337846][T21906] loop0: detected capacity change from 0 to 512
[ 1551.403825][T21906] EXT4-fs (loop0): Test dummy encryption mode enabled
[ 1551.485158][T21906] EXT4-fs error (device loop0): ext4_iget_extra_inode:5030: inode #15: comm syz.0.5717: corrupted in-inode xattr: invalid ea_ino
[ 1551.545953][T20905] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1551.564085][T21906] EXT4-fs error (device loop0): ext4_orphan_get:1398: comm syz.0.5717: couldn't read orphan inode 15 (err -117)
[ 1551.635353][T21906] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1551.888300][T20792] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1552.129525][T21920] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5724'.
[ 1552.956672][   T30] audit: type=1326 audit(2000001251.021:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21936 comm="syz.2.5732" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f057f98e9a9 code=0x7ffc0000
[ 1552.979867][   T30] audit: type=1326 audit(2000001251.021:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21936 comm="syz.2.5732" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f057f98e9a9 code=0x7ffc0000
[ 1553.003467][   T30] audit: type=1326 audit(2000001251.061:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21936 comm="syz.2.5732" exe="/root/syz-executor" sig=0 arch=c000003e syscall=118 compat=0 ip=0x7f057f98e9a9 code=0x7ffc0000
[ 1553.026862][   T30] audit: type=1326 audit(2000001251.061:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21936 comm="syz.2.5732" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f057f98e9a9 code=0x7ffc0000
[ 1553.112357][T21943] loop7: detected capacity change from 0 to 64
[ 1553.551294][T21947] Invalid ELF header magic: != ELF
[ 1553.840633][T21945] loop0: detected capacity change from 0 to 32768
[ 1553.852114][   T30] audit: type=1326 audit(2000001251.221:445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21936 comm="syz.2.5732" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f057f98e9a9 code=0x7ffc0000
[ 1554.052149][T21945] JBD2: Ignoring recovery information on journal
[ 1554.128652][T21955] netlink: 'syz.3.5741': attribute type 2 has an invalid length.
[ 1554.157723][T21945] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[ 1555.021025][T21966] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5743'.
[ 1557.078344][T20792] ocfs2: Unmounting device (7,0) on (node local)
[ 1557.266910][T21971] input: syz0 as /devices/virtual/input/input86
[ 1559.298700][T21990] loop0: detected capacity change from 0 to 32768
[ 1559.308174][T21990] BTRFS warning: excessive commit interval 2147483647, use with care
[ 1559.319342][T21990] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.5744 (21990)
[ 1559.353678][T21990] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1559.370955][T21990] BTRFS info (device loop0): using crc32c (crc32c-x86_64) checksum algorithm
[ 1559.380336][T21990] BTRFS info (device loop0): disk space caching is enabled
[ 1559.387930][T21990] BTRFS warning (device loop0): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[ 1559.691542][T21990] BTRFS info (device loop0): rebuilding free space tree
[ 1559.725875][T21990] BTRFS info (device loop0): disabling free space tree
[ 1559.733696][T21990] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1559.743939][T21990] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1559.895732][T20792] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1560.377621][T22030] sg_write: process 838 (syz.2.5764) changed security contexts after opening file descriptor, this is not allowed.
[ 1561.549049][T22045] loop0: detected capacity change from 0 to 512
[ 1561.600816][T22045] EXT4-fs (loop0): orphan cleanup on readonly fs
[ 1561.694013][T22045] Quota error (device loop0): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0
[ 1561.704969][T22045] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0
[ 1561.715643][T22045] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.5762: Failed to acquire dquot type 1
[ 1561.848877][T22045] EXT4-fs (loop0): 1 truncate cleaned up
[ 1561.953191][T22045] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1562.098695][T22045] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended
[ 1562.148062][T22045] EXT4-fs warning (device loop0): read_mmp_block:115: Error -117 while reading MMP block 8
[ 1562.374221][T20792] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1563.397057][T22063] loop0: detected capacity change from 0 to 32768
[ 1563.483493][T22073] dummy0: entered promiscuous mode
[ 1563.488978][T22073] macsec1: entered promiscuous mode
[ 1563.495545][T22073] macsec1: entered allmulticast mode
[ 1563.501051][T22073] dummy0: entered allmulticast mode
[ 1563.518185][T22063] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[ 1563.551621][   T30] audit: type=1800 audit(2000001261.621:446): pid=22063 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.5775" name="file1" dev="loop0" ino=17058 res=0 errno=0
[ 1563.598065][T22063] OCFS2: ERROR (device loop0): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #2304 has bad signature 
[ 1563.600489][T22073] dummy0: left allmulticast mode
[ 1563.613580][T22063] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[ 1563.613647][T22063] OCFS2: File system is now read-only.
[ 1563.619733][T22073] dummy0: left promiscuous mode
[ 1563.628584][T22063] (syz.0.5775,22063,1):ocfs2_search_chain:1852 ERROR: status = -30
[ 1563.647678][T22063] (syz.0.5775,22063,1):ocfs2_search_chain:1940 ERROR: status = -30
[ 1563.655925][T22063] (syz.0.5775,22063,1):ocfs2_claim_suballoc_bits:2010 ERROR: status = -30
[ 1563.664799][T22063] (syz.0.5775,22063,1):ocfs2_claim_suballoc_bits:2063 ERROR: status = -30
[ 1563.675998][T22063] (syz.0.5775,22063,1):__ocfs2_claim_clusters:2438 ERROR: status = -30
[ 1563.684709][T22063] (syz.0.5775,22063,1):__ocfs2_claim_clusters:2446 ERROR: status = -30
[ 1563.694506][T22063] (syz.0.5775,22063,1):ocfs2_local_alloc_new_window:1199 ERROR: status = -30
[ 1563.703727][T22063] (syz.0.5775,22063,1):ocfs2_local_alloc_new_window:1224 ERROR: status = -30
[ 1563.712896][T22063] (syz.0.5775,22063,1):ocfs2_local_alloc_slide_window:1298 ERROR: status = -30
[ 1563.722330][T22063] (syz.0.5775,22063,1):ocfs2_local_alloc_slide_window:1317 ERROR: status = -30
[ 1563.732007][T22063] (syz.0.5775,22063,1):ocfs2_reserve_local_alloc_bits:672 ERROR: status = -30
[ 1563.741266][T22063] (syz.0.5775,22063,1):ocfs2_reserve_local_alloc_bits:710 ERROR: status = -30
[ 1563.750470][T22063] (syz.0.5775,22063,1):ocfs2_reserve_clusters_with_limit:1172 ERROR: status = -30
[ 1563.760170][T22063] (syz.0.5775,22063,1):ocfs2_reserve_clusters_with_limit:1221 ERROR: status = -30
[ 1563.772033][T22063] (syz.0.5775,22063,1):ocfs2_expand_inline_dir:2856 ERROR: status = -30
[ 1563.781369][T22063] (syz.0.5775,22063,1):ocfs2_extend_dir:3203 ERROR: status = -30
[ 1563.789480][T22063] (syz.0.5775,22063,1):ocfs2_prepare_dir_for_insert:4308 ERROR: status = -30
[ 1563.799912][T22063] (syz.0.5775,22063,1):ocfs2_symlink:1876 ERROR: status = -30
[ 1563.808057][T22063] (syz.0.5775,22063,1):ocfs2_symlink:2077 ERROR: status = -30
[ 1563.820803][T22080] OCFS2: ERROR (device loop0): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #2304 has bad signature 
[ 1563.836664][T22080] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[ 1563.846852][T22080] (syz.0.5775,22080,0):ocfs2_search_chain:1852 ERROR: status = -30
[ 1563.855376][T22080] (syz.0.5775,22080,0):ocfs2_search_chain:1940 ERROR: status = -30
[ 1563.863674][T22080] (syz.0.5775,22080,0):ocfs2_claim_suballoc_bits:2010 ERROR: status = -30
[ 1563.877550][T22080] (syz.0.5775,22080,0):ocfs2_claim_suballoc_bits:2063 ERROR: status = -30
[ 1563.888873][T22080] (syz.0.5775,22080,0):__ocfs2_claim_clusters:2438 ERROR: status = -30
[ 1563.897557][T22080] (syz.0.5775,22080,0):__ocfs2_claim_clusters:2446 ERROR: status = -30
[ 1563.906369][T22080] (syz.0.5775,22080,0):ocfs2_local_alloc_new_window:1199 ERROR: status = -30
[ 1563.915522][T22080] (syz.0.5775,22080,0):ocfs2_local_alloc_new_window:1224 ERROR: status = -30
[ 1563.924687][T22080] (syz.0.5775,22080,0):ocfs2_local_alloc_slide_window:1298 ERROR: status = -30
[ 1563.934308][T22080] (syz.0.5775,22080,0):ocfs2_local_alloc_slide_window:1317 ERROR: status = -30
[ 1563.943692][T22080] (syz.0.5775,22080,0):ocfs2_reserve_local_alloc_bits:672 ERROR: status = -30
[ 1563.953037][T22080] (syz.0.5775,22080,0):ocfs2_reserve_local_alloc_bits:710 ERROR: status = -30
[ 1563.962156][T22080] (syz.0.5775,22080,0):ocfs2_reserve_clusters_with_limit:1172 ERROR: status = -30
[ 1563.971871][T22080] (syz.0.5775,22080,0):ocfs2_reserve_clusters_with_limit:1221 ERROR: status = -30
[ 1563.985786][T22080] (syz.0.5775,22080,0):ocfs2_lock_allocators:2775 ERROR: status = -30
[ 1563.995639][T22080] (syz.0.5775,22080,0):ocfs2_write_begin_nolock:1722 ERROR: status = -30
[ 1564.004601][T22080] (syz.0.5775,22080,0):ocfs2_dio_wr_get_block:2217 ERROR: status = -30
[ 1564.013417][T22080] (syz.0.5775,22080,0):ocfs2_dio_end_io:2400 ERROR: Direct IO failed, bytes = -30
[ 1564.199756][T20792] (syz-executor,20792,0):ocfs2_inode_is_valid_to_delete:886 ERROR: Skipping delete of system file 72
[ 1564.341841][T20792] ocfs2: Unmounting device (7,0) on (node local)
[ 1564.803719][T22088] lo: entered allmulticast mode
[ 1564.828639][T22085] lo: left allmulticast mode
[ 1566.017936][T22104] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5784'.
[ 1566.336025][ T5872] usb 8-1: new full-speed USB device number 44 using dummy_hcd
[ 1566.501311][ T5872] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1566.511919][ T5872] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBE, changing to 0x8E
[ 1566.524618][ T5872] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8E has an invalid bInterval 0, changing to 10
[ 1566.540083][ T5872] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[ 1566.551516][ T5872] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[ 1566.775143][ T5872] usb 8-1: New USB device found, idVendor=10c5, idProduct=819a, bcdDevice=e4.46
[ 1566.784806][ T5872] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=35
[ 1566.793234][ T5872] usb 8-1: Product: syz
[ 1566.798438][ T5872] usb 8-1: Manufacturer: syz
[ 1566.803429][ T5872] usb 8-1: SerialNumber: syz
[ 1566.835446][ T5872] usb 8-1: config 0 descriptor??
[ 1567.073720][ T5872] radio-si470x 8-1:0.0: DeviceID=0x6465 ChipID=0x7669
[ 1567.941235][T22116] loop3: detected capacity change from 0 to 32768
[ 1567.953458][ T5872] radio-si470x 8-1:0.0: software version 100, hardware version 101
[ 1567.965683][ T5872] radio-si470x 8-1:0.0: submitting int urb failed (-90)
[ 1568.176421][T22116] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names
[ 1568.176568][T22116]   allowing incompatible features above 0.0: (unknown version)
[ 1568.176652][T22116]   features: lz4,new_siphash,inline_data,new_extent_overwrite,btree_ptr_v2,new_varint,journal_no_flush,alloc_v2,extents_across_btree_nodes
[ 1568.224011][T22116] bcachefs (loop3): Using encoding defined by superblock: utf8-12.1.0
[ 1568.232443][T22116] bcachefs (loop3): initializing new filesystem
[ 1568.249150][T22116] bcachefs (loop3): going read-write
[ 1568.280451][T22116] bcachefs (loop3): marking superblocks
[ 1568.350987][T22116] bcachefs (loop3): initializing freespace
[ 1568.392056][T22116] bcachefs (loop3): done initializing freespace
[ 1568.414104][T22116] bcachefs (loop3): reading snapshots table
[ 1568.420408][T22116] bcachefs (loop3): reading snapshots done
[ 1568.431098][T22135] sctp: [Deprecated]: syz.2.5802 (pid 22135) Use of int in max_burst socket option deprecated.
[ 1568.431098][T22135] Use struct sctp_assoc_value instead
[ 1568.431572][ T5872] radio-si470x 8-1:0.0: si470x_set_report: usb_control_msg returned -71
[ 1568.456920][ T5872] radio-si470x 8-1:0.0: probe with driver radio-si470x failed with error -22
[ 1568.528955][ T5872] usb 8-1: USB disconnect, device number 44
[ 1568.548841][T22116] bcachefs (loop3): done starting filesystem
[ 1568.800106][T20905] bcachefs (loop3): shutting down
[ 1568.810352][T20905] bcachefs (loop3): going read-only
[ 1568.817027][T20905] bcachefs (loop3): finished waiting for writes to stop
[ 1568.874523][T20905] bcachefs (loop3): flushing journal and stopping allocators, journal seq 3
[ 1569.046388][T20905] bcachefs (loop3): flushing journal and stopping allocators complete, journal seq 3
[ 1569.075790][T20905] bcachefs (loop3): clean shutdown complete, journal seq 4
[ 1569.087084][T20905] bcachefs (loop3): marking filesystem clean
[ 1569.126805][T20905] bcachefs (loop3): shutdown complete
[ 1569.786854][T22148] loop0: detected capacity change from 0 to 2364
[ 1569.825575][T22148] iso9660: Unknown parameter 'maj'
[ 1570.305220][ T5872] usb 1-1: new high-speed USB device number 38 using dummy_hcd
[ 1570.513386][ T5872] usb 1-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[ 1570.523171][ T5872] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1570.646127][ T5872] usb 1-1: config 0 descriptor??
[ 1570.657463][T22151] loop7: detected capacity change from 0 to 40427
[ 1570.670033][T22151] F2FS-fs (loop7): build fault injection rate: 14
[ 1570.677696][T22151] F2FS-fs (loop7): build fault injection type: 0x3bfe8c
[ 1570.687791][T22151] F2FS-fs (loop7): invalid crc value
[ 1570.703146][ T5872] gspca_main: cpia1-2.14.0 probing 0813:0001
[ 1570.726085][    C1] F2FS-fs (loop7): inject read IO error in f2fs_read_end_io of bio_endio+0xe27/0xf80
[ 1570.753176][    C1] F2FS-fs (loop7): inject read IO error in f2fs_read_end_io of bio_endio+0xe27/0xf80
[ 1571.174130][T22151] F2FS-fs (loop7): inject page alloc in f2fs_grab_cache_folio of f2fs_get_tmp_folio+0x38/0x50
[ 1571.199139][T22151] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[ 1571.222321][T22151] F2FS-fs (loop7): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x831/0x19b0
[ 1571.383531][T20927] F2FS-fs (loop7): inject inconsistent footer in sanity_check_node_footer of f2fs_get_dnode_of_data+0x1144/0x2ce0
[ 1571.400470][T20927] F2FS-fs (loop7): inconsistent node block, node_type:0, nid:13, node_footer[nid:13,ino:3,ofs:191623,cpver:0,blkaddr:0]
[ 1571.466100][ T5872] cpia1 1-1:0.0: unexpected state after lo power cmd: 00
[ 1571.723705][    C0] F2FS-fs (loop7): inject write IO error in f2fs_write_end_io of bio_endio+0xe27/0xf80
[ 1571.734189][    C0] CPU: 0 UID: 0 PID: 20905 Comm: syz-executor Tainted: G        W           6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(none) 
[ 1571.734369][    C0] Tainted: [W]=WARN
[ 1571.734417][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1571.734497][    C0] Call Trace:
[ 1571.734543][    C0]  <IRQ>
[ 1571.734590][    C0]  __dump_stack+0x26/0x30
[ 1571.734747][    C0]  dump_stack_lvl+0x1df/0x270
[ 1571.734918][    C0]  dump_stack+0x1e/0x25
[ 1571.735061][    C0]  f2fs_handle_critical_error+0xa6f/0xc20
[ 1571.735230][    C0]  f2fs_stop_checkpoint+0x65/0x80
[ 1571.735368][    C0]  f2fs_write_end_io+0xb4b/0x1920
[ 1571.735522][    C0]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1571.735686][    C0]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 1571.735830][    C0]  bio_endio+0xe27/0xf80
[ 1571.736008][    C0]  blk_update_request+0xf4c/0x1a90
[ 1571.736212][    C0]  blk_mq_end_request+0x50/0xb0
[ 1571.736379][    C0]  lo_complete_rq+0x188/0x3a0
[ 1571.736519][    C0]  ? __pfx_lo_complete_rq+0x10/0x10
[ 1571.736659][    C0]  blk_done_softirq+0x10f/0x1f0
[ 1571.736804][    C0]  ? __pfx_blk_done_softirq+0x10/0x10
[ 1571.736945][    C0]  handle_softirqs+0x166/0x6e0
[ 1571.737098][    C0]  __irq_exit_rcu+0x66/0x180
[ 1571.737227][    C0]  irq_exit_rcu+0x12/0x20
[ 1571.737350][    C0]  sysvec_apic_timer_interrupt+0x84/0x90
[ 1571.737540][    C0]  </IRQ>
[ 1571.737584][    C0]  <TASK>
[ 1571.737634][    C0]  asm_sysvec_apic_timer_interrupt+0x1f/0x30
[ 1571.737786][    C0] RIP: 0010:finish_task_switch+0x184/0x920
[ 1571.737962][    C0] Code: 21 e8 0f 84 62 02 00 00 4d 85 ed 0f 85 6a 02 00 00 0f 1f 44 00 00 4c 89 ff 4c 8b 6d b8 e8 64 85 29 0f fb 49 8d 9d 18 1b 00 00 <41> be ff ff ff bf 45 23 b5 18 1b 00 00 48 89 df e8 17 f4 ea 00 44
[ 1571.738075][    C0] RSP: 0018:ffff888054bd37b8 EFLAGS: 00000282
[ 1571.738186][    C0] RAX: ffff8882233a5028 RBX: ffff8881037f3bd8 RCX: 0000000000000001
[ 1571.738275][    C0] RDX: 00000000153b7028 RSI: 0000000000000001 RDI: ffffffff953b7028
[ 1571.738365][    C0] RBP: ffff888054bd3828 R08: ffffea000000000f R09: 0000000000000000
[ 1571.738455][    C0] R10: ffff888237bae028 R11: 0000000000000180 R12: 0000000000000000
[ 1571.738544][    C0] R13: ffff8881037f20c0 R14: 0000000000000000 R15: ffff88813fca23c0
[ 1571.738666][    C0]  ? finish_task_switch+0x17c/0x920
[ 1571.738842][    C0]  __schedule+0x2682/0x76d0
[ 1571.739006][    C0]  ? kmsan_get_metadata+0xfb/0x160
[ 1571.739145][    C0]  ? __cond_resched+0xb9/0x130
[ 1571.739302][    C0]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1571.739482][    C0]  ? preempt_schedule_irq+0xa1/0x110
[ 1571.739697][    C0]  ? stack_depot_save_flags+0x35/0x7b0
[ 1571.739903][    C0]  ? kmsan_get_metadata+0xfb/0x160
[ 1571.740057][    C0]  ? kmsan_get_metadata+0xfb/0x160
[ 1571.740246][    C0]  __cond_resched+0xb9/0x130
[ 1571.740446][    C0]  vfree+0x59c/0xa20
[ 1571.740663][    C0]  kvfree+0x3b/0x60
[ 1571.740822][    C0]  bch2_fs_btree_write_buffer_exit+0x1f8/0x2c0
[ 1571.740994][    C0]  bch2_fs_release+0x298/0xaa0
[ 1571.741161][    C0]  ? kmsan_get_metadata+0xfb/0x160
[ 1571.741301][    C0]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1571.741446][    C0]  ? __pfx_bch2_fs_release+0x10/0x10
[ 1571.741618][    C0]  ? __pfx_bch2_fs_release+0x10/0x10
[ 1571.741794][    C0]  kobject_put+0x2b9/0x3b0
[ 1571.741962][    C0]  bch2_fs_free+0x716/0x7e0
[ 1571.742137][    C0]  bch2_kill_sb+0x4a/0x70
[ 1571.742299][    C0]  ? __pfx_bch2_kill_sb+0x10/0x10
[ 1571.742481][    C0]  deactivate_locked_super+0xc8/0x3c0
[ 1571.742695][    C0]  deactivate_super+0x12f/0x140
[ 1571.742893][    C0]  cleanup_mnt+0x6fb/0x780
[ 1571.743054][    C0]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[ 1571.743280][    C0]  ? __pfx___cleanup_mnt+0x10/0x10
[ 1571.743437][    C0]  __cleanup_mnt+0x22/0x30
[ 1571.743590][    C0]  task_work_run+0x209/0x2b0
[ 1571.743755][    C0]  exit_to_user_mode_loop+0x2a6/0x330
[ 1571.743919][    C0]  do_syscall_64+0x1e3/0x210
[ 1571.744056][    C0]  ? irqentry_exit+0x16/0x60
[ 1571.744178][    C0]  ? clear_bhb_loop+0x40/0x90
[ 1571.744320][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1571.744459][    C0] RIP: 0033:0x7fa842f8fcd7
[ 1571.744557][    C0] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 1571.744669][    C0] RSP: 002b:00007ffd69c154b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 1571.744817][    C0] RAX: 0000000000000000 RBX: 00007fa843010b55 RCX: 00007fa842f8fcd7
[ 1571.744908][    C0] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd69c15570
[ 1571.744999][    C0] RBP: 00007ffd69c15570 R08: 0000000000000000 R09: 0000000000000000
[ 1571.745086][    C0] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd69c16600
[ 1571.745177][    C0] R13: 00007fa843010b55 R14: 000000000017efd9 R15: 00007ffd69c16640
[ 1571.745304][    C0]  </TASK>
[ 1572.208958][    C0] F2FS-fs (loop7): Stopped filesystem due to reason: 3
[ 1572.216244][    C0] CPU: 0 UID: 0 PID: 20905 Comm: syz-executor Tainted: G        W           6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(none) 
[ 1572.216404][    C0] Tainted: [W]=WARN
[ 1572.216461][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1572.216539][    C0] Call Trace:
[ 1572.216587][    C0]  <IRQ>
[ 1572.216637][    C0]  __dump_stack+0x26/0x30
[ 1572.216792][    C0]  dump_stack_lvl+0x1df/0x270
[ 1572.216958][    C0]  dump_stack+0x1e/0x25
[ 1572.217104][    C0]  f2fs_handle_critical_error+0xa6f/0xc20
[ 1572.217271][    C0]  f2fs_stop_checkpoint+0x65/0x80
[ 1572.217406][    C0]  f2fs_write_end_io+0xb4b/0x1920
[ 1572.217592][    C0]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 1572.217734][    C0]  bio_endio+0xe27/0xf80
[ 1572.217908][    C0]  blk_update_request+0xf4c/0x1a90
[ 1572.218111][    C0]  blk_mq_end_request+0x50/0xb0
[ 1572.218270][    C0]  lo_complete_rq+0x188/0x3a0
[ 1572.218411][    C0]  ? __pfx_lo_complete_rq+0x10/0x10
[ 1572.218558][    C0]  blk_done_softirq+0x10f/0x1f0
[ 1572.218701][    C0]  ? __pfx_blk_done_softirq+0x10/0x10
[ 1572.218839][    C0]  handle_softirqs+0x166/0x6e0
[ 1572.218995][    C0]  __irq_exit_rcu+0x66/0x180
[ 1572.219120][    C0]  irq_exit_rcu+0x12/0x20
[ 1572.219242][    C0]  sysvec_apic_timer_interrupt+0x84/0x90
[ 1572.219465][    C0]  </IRQ>
[ 1572.219514][    C0]  <TASK>
[ 1572.219570][    C0]  asm_sysvec_apic_timer_interrupt+0x1f/0x30
[ 1572.219728][    C0] RIP: 0010:finish_task_switch+0x184/0x920
[ 1572.219915][    C0] Code: 21 e8 0f 84 62 02 00 00 4d 85 ed 0f 85 6a 02 00 00 0f 1f 44 00 00 4c 89 ff 4c 8b 6d b8 e8 64 85 29 0f fb 49 8d 9d 18 1b 00 00 <41> be ff ff ff bf 45 23 b5 18 1b 00 00 48 89 df e8 17 f4 ea 00 44
[ 1572.220033][    C0] RSP: 0018:ffff888054bd37b8 EFLAGS: 00000282
[ 1572.220146][    C0] RAX: ffff8882233a5028 RBX: ffff8881037f3bd8 RCX: 0000000000000001
[ 1572.220241][    C0] RDX: 00000000153b7028 RSI: 0000000000000001 RDI: ffffffff953b7028
[ 1572.220332][    C0] RBP: ffff888054bd3828 R08: ffffea000000000f R09: 0000000000000000
[ 1572.220426][    C0] R10: ffff888237bae028 R11: 0000000000000180 R12: 0000000000000000
[ 1572.220523][    C0] R13: ffff8881037f20c0 R14: 0000000000000000 R15: ffff88813fca23c0
[ 1572.220655][    C0]  ? finish_task_switch+0x17c/0x920
[ 1572.220821][    C0]  __schedule+0x2682/0x76d0
[ 1572.220990][    C0]  ? kmsan_get_metadata+0xfb/0x160
[ 1572.221129][    C0]  ? __cond_resched+0xb9/0x130
[ 1572.221292][    C0]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1572.221452][    C0]  ? preempt_schedule_irq+0xa1/0x110
[ 1572.221641][    C0]  ? stack_depot_save_flags+0x35/0x7b0
[ 1572.221813][    C0]  ? kmsan_get_metadata+0xfb/0x160
[ 1572.221949][    C0]  ? kmsan_get_metadata+0xfb/0x160
[ 1572.222103][    C0]  __cond_resched+0xb9/0x130
[ 1572.222278][    C0]  vfree+0x59c/0xa20
[ 1572.222459][    C0]  kvfree+0x3b/0x60
[ 1572.222605][    C0]  bch2_fs_btree_write_buffer_exit+0x1f8/0x2c0
[ 1572.222773][    C0]  bch2_fs_release+0x298/0xaa0
[ 1572.222933][    C0]  ? kmsan_get_metadata+0xfb/0x160
[ 1572.223074][    C0]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1572.223215][    C0]  ? __pfx_bch2_fs_release+0x10/0x10
[ 1572.223383][    C0]  ? __pfx_bch2_fs_release+0x10/0x10
[ 1572.223561][    C0]  kobject_put+0x2b9/0x3b0
[ 1572.223727][    C0]  bch2_fs_free+0x716/0x7e0
[ 1572.223900][    C0]  bch2_kill_sb+0x4a/0x70
[ 1572.224057][    C0]  ? __pfx_bch2_kill_sb+0x10/0x10
[ 1572.224222][    C0]  deactivate_locked_super+0xc8/0x3c0
[ 1572.224421][    C0]  deactivate_super+0x12f/0x140
[ 1572.224608][    C0]  cleanup_mnt+0x6fb/0x780
[ 1572.224758][    C0]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[ 1572.224953][    C0]  ? __pfx___cleanup_mnt+0x10/0x10
[ 1572.225112][    C0]  __cleanup_mnt+0x22/0x30
[ 1572.225263][    C0]  task_work_run+0x209/0x2b0
[ 1572.225411][    C0]  exit_to_user_mode_loop+0x2a6/0x330
[ 1572.225579][    C0]  do_syscall_64+0x1e3/0x210
[ 1572.225718][    C0]  ? irqentry_exit+0x16/0x60
[ 1572.225842][    C0]  ? clear_bhb_loop+0x40/0x90
[ 1572.225989][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1572.226127][    C0] RIP: 0033:0x7fa842f8fcd7
[ 1572.226227][    C0] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 1572.226369][    C0] RSP: 002b:00007ffd69c154b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 1572.226512][    C0] RAX: 0000000000000000 RBX: 00007fa843010b55 RCX: 00007fa842f8fcd7
[ 1572.226613][    C0] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd69c15570
[ 1572.226705][    C0] RBP: 00007ffd69c15570 R08: 0000000000000000 R09: 0000000000000000
[ 1572.226798][    C0] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd69c16600
[ 1572.226898][    C0] R13: 00007fa843010b55 R14: 000000000017efd9 R15: 00007ffd69c16640
[ 1572.227035][    C0]  </TASK>
[ 1572.683955][    C0] F2FS-fs (loop7): Stopped filesystem due to reason: 3
[ 1572.691115][    C0] CPU: 0 UID: 0 PID: 20905 Comm: syz-executor Tainted: G        W           6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(none) 
[ 1572.691280][    C0] Tainted: [W]=WARN
[ 1572.691331][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1572.691406][    C0] Call Trace:
[ 1572.691458][    C0]  <IRQ>
[ 1572.691505][    C0]  __dump_stack+0x26/0x30
[ 1572.691668][    C0]  dump_stack_lvl+0x1df/0x270
[ 1572.691833][    C0]  dump_stack+0x1e/0x25
[ 1572.691979][    C0]  f2fs_handle_critical_error+0xa6f/0xc20
[ 1572.692148][    C0]  f2fs_stop_checkpoint+0x65/0x80
[ 1572.692281][    C0]  f2fs_write_end_io+0xb4b/0x1920
[ 1572.692452][    C0]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 1572.692588][    C0]  bio_endio+0xe27/0xf80
[ 1572.692772][    C0]  blk_update_request+0xf4c/0x1a90
[ 1572.692971][    C0]  blk_mq_end_request+0x50/0xb0
[ 1572.693133][    C0]  lo_complete_rq+0x188/0x3a0
[ 1572.693277][    C0]  ? __pfx_lo_complete_rq+0x10/0x10
[ 1572.693418][    C0]  blk_done_softirq+0x10f/0x1f0
[ 1572.693564][    C0]  ? __pfx_blk_done_softirq+0x10/0x10
[ 1572.693714][    C0]  handle_softirqs+0x166/0x6e0
[ 1572.693871][    C0]  __irq_exit_rcu+0x66/0x180
[ 1572.694000][    C0]  irq_exit_rcu+0x12/0x20
[ 1572.694121][    C0]  sysvec_apic_timer_interrupt+0x84/0x90
[ 1572.694315][    C0]  </IRQ>
[ 1572.694363][    C0]  <TASK>
[ 1572.694414][    C0]  asm_sysvec_apic_timer_interrupt+0x1f/0x30
[ 1572.694562][    C0] RIP: 0010:finish_task_switch+0x184/0x920
[ 1572.694741][    C0] Code: 21 e8 0f 84 62 02 00 00 4d 85 ed 0f 85 6a 02 00 00 0f 1f 44 00 00 4c 89 ff 4c 8b 6d b8 e8 64 85 29 0f fb 49 8d 9d 18 1b 00 00 <41> be ff ff ff bf 45 23 b5 18 1b 00 00 48 89 df e8 17 f4 ea 00 44
[ 1572.694857][    C0] RSP: 0018:ffff888054bd37b8 EFLAGS: 00000282
[ 1572.694968][    C0] RAX: ffff8882233a5028 RBX: ffff8881037f3bd8 RCX: 0000000000000001
[ 1572.695057][    C0] RDX: 00000000153b7028 RSI: 0000000000000001 RDI: ffffffff953b7028
[ 1572.695144][    C0] RBP: ffff888054bd3828 R08: ffffea000000000f R09: 0000000000000000
[ 1572.695230][    C0] R10: ffff888237bae028 R11: 0000000000000180 R12: 0000000000000000
[ 1572.695313][    C0] R13: ffff8881037f20c0 R14: 0000000000000000 R15: ffff88813fca23c0
[ 1572.695436][    C0]  ? finish_task_switch+0x17c/0x920
[ 1572.695597][    C0]  __schedule+0x2682/0x76d0
[ 1572.695765][    C0]  ? kmsan_get_metadata+0xfb/0x160
[ 1572.695907][    C0]  ? __cond_resched+0xb9/0x130
[ 1572.696071][    C0]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1572.696223][    C0]  ? preempt_schedule_irq+0xa1/0x110
[ 1572.696413][    C0]  ? stack_depot_save_flags+0x35/0x7b0
[ 1572.696585][    C0]  ? kmsan_get_metadata+0xfb/0x160
[ 1572.696722][    C0]  ? kmsan_get_metadata+0xfb/0x160
[ 1572.696885][    C0]  __cond_resched+0xb9/0x130
[ 1572.697061][    C0]  vfree+0x59c/0xa20
[ 1572.697239][    C0]  kvfree+0x3b/0x60
[ 1572.697388][    C0]  bch2_fs_btree_write_buffer_exit+0x1f8/0x2c0
[ 1572.697560][    C0]  bch2_fs_release+0x298/0xaa0
[ 1572.697733][    C0]  ? kmsan_get_metadata+0xfb/0x160
[ 1572.697869][    C0]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1572.698014][    C0]  ? __pfx_bch2_fs_release+0x10/0x10
[ 1572.698184][    C0]  ? __pfx_bch2_fs_release+0x10/0x10
[ 1572.698351][    C0]  kobject_put+0x2b9/0x3b0
[ 1572.698519][    C0]  bch2_fs_free+0x716/0x7e0
[ 1572.698697][    C0]  bch2_kill_sb+0x4a/0x70
[ 1572.698859][    C0]  ? __pfx_bch2_kill_sb+0x10/0x10
[ 1572.699017][    C0]  deactivate_locked_super+0xc8/0x3c0
[ 1572.699215][    C0]  deactivate_super+0x12f/0x140
[ 1572.699414][    C0]  cleanup_mnt+0x6fb/0x780
[ 1572.699572][    C0]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[ 1572.699787][    C0]  ? __pfx___cleanup_mnt+0x10/0x10
[ 1572.699957][    C0]  __cleanup_mnt+0x22/0x30
[ 1572.700114][    C0]  task_work_run+0x209/0x2b0
[ 1572.700283][    C0]  exit_to_user_mode_loop+0x2a6/0x330
[ 1572.700457][    C0]  do_syscall_64+0x1e3/0x210
[ 1572.700617][    C0]  ? irqentry_exit+0x16/0x60
[ 1572.700740][    C0]  ? clear_bhb_loop+0x40/0x90
[ 1572.700880][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1572.701050][    C0] RIP: 0033:0x7fa842f8fcd7
[ 1572.701145][    C0] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 1572.701258][    C0] RSP: 002b:00007ffd69c154b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 1572.701378][    C0] RAX: 0000000000000000 RBX: 00007fa843010b55 RCX: 00007fa842f8fcd7
[ 1572.701463][    C0] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd69c15570
[ 1572.701544][    C0] RBP: 00007ffd69c15570 R08: 0000000000000000 R09: 0000000000000000
[ 1572.701632][    C0] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd69c16600
[ 1572.701720][    C0] R13: 00007fa843010b55 R14: 000000000017efd9 R15: 00007ffd69c16640
[ 1572.701834][    C0]  </TASK>
[ 1573.159694][    C0] F2FS-fs (loop7): Stopped filesystem due to reason: 3
[ 1573.167040][    C0] CPU: 0 UID: 0 PID: 20905 Comm: syz-executor Tainted: G        W           6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(none) 
[ 1573.167233][    C0] Tainted: [W]=WARN
[ 1573.167291][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1573.167395][    C0] Call Trace:
[ 1573.167458][    C0]  <IRQ>
[ 1573.167507][    C0]  __dump_stack+0x26/0x30
[ 1573.167668][    C0]  dump_stack_lvl+0x1df/0x270
[ 1573.167828][    C0]  dump_stack+0x1e/0x25
[ 1573.167973][    C0]  f2fs_handle_critical_error+0xa6f/0xc20
[ 1573.168145][    C0]  f2fs_stop_checkpoint+0x65/0x80
[ 1573.168280][    C0]  f2fs_write_end_io+0xb4b/0x1920
[ 1573.168455][    C0]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 1573.168619][    C0]  bio_endio+0xe27/0xf80
[ 1573.168808][    C0]  blk_update_request+0xf4c/0x1a90
[ 1573.169024][    C0]  blk_mq_end_request+0x50/0xb0
[ 1573.169197][    C0]  lo_complete_rq+0x188/0x3a0
[ 1573.169404][    C0]  ? __pfx_lo_complete_rq+0x10/0x10
[ 1573.169565][    C0]  blk_done_softirq+0x10f/0x1f0
[ 1573.169754][    C0]  ? __pfx_blk_done_softirq+0x10/0x10
[ 1573.169927][    C0]  handle_softirqs+0x166/0x6e0
[ 1573.170102][    C0]  __irq_exit_rcu+0x66/0x180
[ 1573.170253][    C0]  irq_exit_rcu+0x12/0x20
[ 1573.170399][    C0]  sysvec_apic_timer_interrupt+0x84/0x90
[ 1573.170670][    C0]  </IRQ>
[ 1573.170717][    C0]  <TASK>
[ 1573.170767][    C0]  asm_sysvec_apic_timer_interrupt+0x1f/0x30
[ 1573.170918][    C0] RIP: 0010:finish_task_switch+0x184/0x920
[ 1573.171090][    C0] Code: 21 e8 0f 84 62 02 00 00 4d 85 ed 0f 85 6a 02 00 00 0f 1f 44 00 00 4c 89 ff 4c 8b 6d b8 e8 64 85 29 0f fb 49 8d 9d 18 1b 00 00 <41> be ff ff ff bf 45 23 b5 18 1b 00 00 48 89 df e8 17 f4 ea 00 44
[ 1573.171204][    C0] RSP: 0018:ffff888054bd37b8 EFLAGS: 00000282
[ 1573.171313][    C0] RAX: ffff8882233a5028 RBX: ffff8881037f3bd8 RCX: 0000000000000001
[ 1573.171406][    C0] RDX: 00000000153b7028 RSI: 0000000000000001 RDI: ffffffff953b7028
[ 1573.171488][    C0] RBP: ffff888054bd3828 R08: ffffea000000000f R09: 0000000000000000
[ 1573.171587][    C0] R10: ffff888237bae028 R11: 0000000000000180 R12: 0000000000000000
[ 1573.171668][    C0] R13: ffff8881037f20c0 R14: 0000000000000000 R15: ffff88813fca23c0
[ 1573.171787][    C0]  ? finish_task_switch+0x17c/0x920
[ 1573.171955][    C0]  __schedule+0x2682/0x76d0
[ 1573.172130][    C0]  ? kmsan_get_metadata+0xfb/0x160
[ 1573.172284][    C0]  ? __cond_resched+0xb9/0x130
[ 1573.172457][    C0]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1573.172629][    C0]  ? preempt_schedule_irq+0xa1/0x110
[ 1573.172842][    C0]  ? stack_depot_save_flags+0x35/0x7b0
[ 1573.173015][    C0]  ? kmsan_get_metadata+0xfb/0x160
[ 1573.173148][    C0]  ? kmsan_get_metadata+0xfb/0x160
[ 1573.173315][    C0]  __cond_resched+0xb9/0x130
[ 1573.173487][    C0]  vfree+0x59c/0xa20
[ 1573.173675][    C0]  kvfree+0x3b/0x60
[ 1573.173840][    C0]  bch2_fs_btree_write_buffer_exit+0x1f8/0x2c0
[ 1573.174057][    C0]  bch2_fs_release+0x298/0xaa0
[ 1573.174261][    C0]  ? kmsan_get_metadata+0xfb/0x160
[ 1573.174399][    C0]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1573.174579][    C0]  ? __pfx_bch2_fs_release+0x10/0x10
[ 1573.174765][    C0]  ? __pfx_bch2_fs_release+0x10/0x10
[ 1573.174945][    C0]  kobject_put+0x2b9/0x3b0
[ 1573.175123][    C0]  bch2_fs_free+0x716/0x7e0
[ 1573.175308][    C0]  bch2_kill_sb+0x4a/0x70
[ 1573.175477][    C0]  ? __pfx_bch2_kill_sb+0x10/0x10
[ 1573.175655][    C0]  deactivate_locked_super+0xc8/0x3c0
[ 1573.175865][    C0]  deactivate_super+0x12f/0x140
[ 1573.176086][    C0]  cleanup_mnt+0x6fb/0x780
[ 1573.176246][    C0]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[ 1573.176467][    C0]  ? __pfx___cleanup_mnt+0x10/0x10
[ 1573.176631][    C0]  __cleanup_mnt+0x22/0x30
[ 1573.176782][    C0]  task_work_run+0x209/0x2b0
[ 1573.176939][    C0]  exit_to_user_mode_loop+0x2a6/0x330
[ 1573.177107][    C0]  do_syscall_64+0x1e3/0x210
[ 1573.177242][    C0]  ? irqentry_exit+0x16/0x60
[ 1573.177360][    C0]  ? clear_bhb_loop+0x40/0x90
[ 1573.177497][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1573.177642][    C0] RIP: 0033:0x7fa842f8fcd7
[ 1573.177739][    C0] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 1573.177851][    C0] RSP: 002b:00007ffd69c154b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 1573.177974][    C0] RAX: 0000000000000000 RBX: 00007fa843010b55 RCX: 00007fa842f8fcd7
[ 1573.178057][    C0] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd69c15570
[ 1573.178139][    C0] RBP: 00007ffd69c15570 R08: 0000000000000000 R09: 0000000000000000
[ 1573.178219][    C0] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd69c16600
[ 1573.178304][    C0] R13: 00007fa843010b55 R14: 000000000017efd9 R15: 00007ffd69c16640
[ 1573.178422][    C0]  </TASK>
[ 1573.636606][    C0] F2FS-fs (loop7): Stopped filesystem due to reason: 3
[ 1573.643857][    C0] CPU: 0 UID: 0 PID: 20905 Comm: syz-executor Tainted: G        W           6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(none) 
[ 1573.644011][    C0] Tainted: [W]=WARN
[ 1573.644055][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1573.644128][    C0] Call Trace:
[ 1573.644175][    C0]  <IRQ>
[ 1573.644222][    C0]  __dump_stack+0x26/0x30
[ 1573.644408][    C0]  dump_stack_lvl+0x1df/0x270
[ 1573.644584][    C0]  dump_stack+0x1e/0x25
[ 1573.644743][    C0]  f2fs_handle_critical_error+0xa6f/0xc20
[ 1573.644925][    C0]  f2fs_stop_checkpoint+0x65/0x80
[ 1573.645071][    C0]  f2fs_write_end_io+0xb4b/0x1920
[ 1573.645253][    C0]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 1573.645417][    C0]  bio_endio+0xe27/0xf80
[ 1573.645594][    C0]  blk_update_request+0xf4c/0x1a90
[ 1573.645814][    C0]  blk_mq_end_request+0x50/0xb0
[ 1573.645990][    C0]  lo_complete_rq+0x188/0x3a0
[ 1573.646155][    C0]  ? __pfx_lo_complete_rq+0x10/0x10
[ 1573.646338][    C0]  blk_done_softirq+0x10f/0x1f0
[ 1573.646524][    C0]  ? __pfx_blk_done_softirq+0x10/0x10
[ 1573.646692][    C0]  handle_softirqs+0x166/0x6e0
[ 1573.646870][    C0]  __irq_exit_rcu+0x66/0x180
[ 1573.647020][    C0]  irq_exit_rcu+0x12/0x20
[ 1573.647161][    C0]  sysvec_apic_timer_interrupt+0x84/0x90
[ 1573.647407][    C0]  </IRQ>
[ 1573.647458][    C0]  <TASK>
[ 1573.647515][    C0]  asm_sysvec_apic_timer_interrupt+0x1f/0x30
[ 1573.647680][    C0] RIP: 0010:finish_task_switch+0x184/0x920
[ 1573.647879][    C0] Code: 21 e8 0f 84 62 02 00 00 4d 85 ed 0f 85 6a 02 00 00 0f 1f 44 00 00 4c 89 ff 4c 8b 6d b8 e8 64 85 29 0f fb 49 8d 9d 18 1b 00 00 <41> be ff ff ff bf 45 23 b5 18 1b 00 00 48 89 df e8 17 f4 ea 00 44
[ 1573.648017][    C0] RSP: 0018:ffff888054bd37b8 EFLAGS: 00000282
[ 1573.648132][    C0] RAX: ffff8882233a5028 RBX: ffff8881037f3bd8 RCX: 0000000000000001
[ 1573.648223][    C0] RDX: 00000000153b7028 RSI: 0000000000000001 RDI: ffffffff953b7028
[ 1573.648324][    C0] RBP: ffff888054bd3828 R08: ffffea000000000f R09: 0000000000000000
[ 1573.648438][    C0] R10: ffff888237bae028 R11: 0000000000000180 R12: 0000000000000000
[ 1573.648541][    C0] R13: ffff8881037f20c0 R14: 0000000000000000 R15: ffff88813fca23c0
[ 1573.648701][    C0]  ? finish_task_switch+0x17c/0x920
[ 1573.648906][    C0]  __schedule+0x2682/0x76d0
[ 1573.649095][    C0]  ? kmsan_get_metadata+0xfb/0x160
[ 1573.649259][    C0]  ? __cond_resched+0xb9/0x130
[ 1573.649455][    C0]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1573.649627][    C0]  ? preempt_schedule_irq+0xa1/0x110
[ 1573.649848][    C0]  ? stack_depot_save_flags+0x35/0x7b0
[ 1573.650046][    C0]  ? kmsan_get_metadata+0xfb/0x160
[ 1573.650224][    C0]  ? kmsan_get_metadata+0xfb/0x160
[ 1573.650422][    C0]  __cond_resched+0xb9/0x130
[ 1573.650630][    C0]  vfree+0x59c/0xa20
[ 1573.650851][    C0]  kvfree+0x3b/0x60
[ 1573.651023][    C0]  bch2_fs_btree_write_buffer_exit+0x1f8/0x2c0
[ 1573.651227][    C0]  bch2_fs_release+0x298/0xaa0
[ 1573.651430][    C0]  ? kmsan_get_metadata+0xfb/0x160
[ 1573.651599][    C0]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1573.651764][    C0]  ? __pfx_bch2_fs_release+0x10/0x10
[ 1573.651968][    C0]  ? __pfx_bch2_fs_release+0x10/0x10
[ 1573.652166][    C0]  kobject_put+0x2b9/0x3b0
[ 1573.652398][    C0]  bch2_fs_free+0x716/0x7e0
[ 1573.652600][    C0]  bch2_kill_sb+0x4a/0x70
[ 1573.652793][    C0]  ? __pfx_bch2_kill_sb+0x10/0x10
[ 1573.653000][    C0]  deactivate_locked_super+0xc8/0x3c0
[ 1573.653226][    C0]  deactivate_super+0x12f/0x140
[ 1573.653436][    C0]  cleanup_mnt+0x6fb/0x780
[ 1573.653594][    C0]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[ 1573.653806][    C0]  ? __pfx___cleanup_mnt+0x10/0x10
[ 1573.653974][    C0]  __cleanup_mnt+0x22/0x30
[ 1573.654130][    C0]  task_work_run+0x209/0x2b0
[ 1573.654308][    C0]  exit_to_user_mode_loop+0x2a6/0x330
[ 1573.654485][    C0]  do_syscall_64+0x1e3/0x210
[ 1573.654633][    C0]  ? irqentry_exit+0x16/0x60
[ 1573.654762][    C0]  ? clear_bhb_loop+0x40/0x90
[ 1573.654909][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1573.655057][    C0] RIP: 0033:0x7fa842f8fcd7
[ 1573.655158][    C0] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 1573.655274][    C0] RSP: 002b:00007ffd69c154b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 1573.655405][    C0] RAX: 0000000000000000 RBX: 00007fa843010b55 RCX: 00007fa842f8fcd7
[ 1573.655497][    C0] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd69c15570
[ 1573.655587][    C0] RBP: 00007ffd69c15570 R08: 0000000000000000 R09: 0000000000000000
[ 1573.655674][    C0] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd69c16600
[ 1573.655766][    C0] R13: 00007fa843010b55 R14: 000000000017efd9 R15: 00007ffd69c16640
[ 1573.655896][    C0]  </TASK>
[ 1574.112777][    C0] F2FS-fs (loop7): Stopped filesystem due to reason: 3
[ 1574.150555][T20927] F2FS-fs (loop7): do_checkpoint failed err:-5, stop checkpoint
[ 1574.167452][ T5872] gspca_cpia1: usb_control_msg 02, error -110
[ 1574.174862][ T5872] gspca_cpia1: usb_control_msg 05, error -32
[ 1574.182025][ T5872] gspca_cpia1: usb_control_msg 05, error -32
[ 1574.189644][ T5872] gspca_cpia1: usb_control_msg 05, error -32
[ 1574.196999][ T5872] gspca_cpia1: usb_control_msg 05, error -32
[ 1574.203265][ T5872] cpia1 1-1:0.0: unexpected systemstate: 00
[ 1574.273452][ T1603] usb 1-1: USB disconnect, device number 38
[ 1575.693050][ T1603] usb 1-1: new full-speed USB device number 39 using dummy_hcd
[ 1575.902045][ T1603] usb 1-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[ 1575.911749][ T1603] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1575.920115][ T1603] usb 1-1: Product: syz
[ 1575.924696][ T1603] usb 1-1: Manufacturer: syz
[ 1575.929552][ T1603] usb 1-1: SerialNumber: syz
[ 1576.015005][ T1603] usb 1-1: config 0 descriptor??
[ 1576.088554][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[ 1576.095612][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[ 1576.286856][ T1603] usb 1-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[ 1576.760613][T22176] netlink: 'syz.2.5820': attribute type 30 has an invalid length.
[ 1577.281157][ T1603] dvb_usb_rtl28xxu 1-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[ 1577.322589][ T1603] usb 1-1: USB disconnect, device number 39
[ 1577.832210][T22191] netlink: 96 bytes leftover after parsing attributes in process `syz.2.5826'.
[ 1578.304607][T22204] loop0: detected capacity change from 0 to 128
[ 1578.365000][T22204] hpfs: hpfs_map_sector(): read error
[ 1578.399101][T22205] netlink: 28 bytes leftover after parsing attributes in process `syz.8.5832'.
[ 1578.706138][T22210] xt_NFQUEUE: number of total queues is 0
[ 1578.713116][ T1603] IPVS: starting estimator thread 0...
[ 1578.731870][T22211] loop3: detected capacity change from 0 to 1024
[ 1578.803201][T22214] IPVS: using max 240 ests per chain, 12000 per kthread
[ 1578.870373][T22211] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1579.155654][T22211] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 49 with max blocks 4 with error 28
[ 1579.168638][T22211] EXT4-fs (loop3): This should not happen!! Data will be lost
[ 1579.168638][T22211] 
[ 1579.178741][T22211] EXT4-fs (loop3): Total free blocks count 0
[ 1579.185183][T22211] EXT4-fs (loop3): Free/Dirty block details
[ 1579.191279][T22211] EXT4-fs (loop3): free_blocks=0
[ 1579.196621][T22211] EXT4-fs (loop3): dirty_blocks=0
[ 1579.201849][T22211] EXT4-fs (loop3): Block reservation details
[ 1579.208203][T22211] EXT4-fs (loop3): i_reserved_data_blocks=0
[ 1579.794253][T20905] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1580.895962][T22241] smb3: Unknown parameter 'rdmaMhcE'
[ 1581.340672][T22250] vxcan0: tx drop: invalid da for name 0x0000000000000003
[ 1581.693232][ T1603] usb 1-1: new high-speed USB device number 40 using dummy_hcd
[ 1581.853483][ T1603] usb 1-1: Using ep0 maxpacket: 8
[ 1581.905936][ T1603] usb 1-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2e.04
[ 1581.915754][ T1603] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1581.925018][ T1603] usb 1-1: Product: syz
[ 1581.929422][ T1603] usb 1-1: Manufacturer: syz
[ 1581.934619][ T1603] usb 1-1: SerialNumber: syz
[ 1582.011634][ T1603] usb 1-1: config 0 descriptor??
[ 1582.242984][ T1603] usb 1-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[ 1582.635439][ T1603] dvb_usb_rtl28xxu 1-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[ 1582.684107][ T1603] usb 1-1: USB disconnect, device number 40
[ 1582.903742][T21719] usb 3-1: new high-speed USB device number 28 using dummy_hcd
[ 1583.073495][T21719] usb 3-1: Using ep0 maxpacket: 16
[ 1583.103058][T21719] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1583.114627][T21719] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[ 1583.130507][T21719] usb 3-1: New USB device found, idVendor=057e, idProduct=2019, bcdDevice= 0.00
[ 1583.140447][T21719] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1583.255600][T16907] Bluetooth: hci1: command 0x0406 tx timeout
[ 1583.275998][T21719] usb 3-1: config 0 descriptor??
[ 1583.825696][T21719] nintendo 0003:057E:2019.0041: item fetching failed at offset 2/5
[ 1583.880989][T21719] nintendo 0003:057E:2019.0041: HID parse failed
[ 1583.901265][T21719] nintendo 0003:057E:2019.0041: probe - fail = -22
[ 1583.908655][T21719] nintendo 0003:057E:2019.0041: probe with driver nintendo failed with error -22
[ 1583.909880][T22265] loop3: detected capacity change from 0 to 32768
[ 1583.985838][T22265] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[ 1583.989895][T21719] usb 3-1: USB disconnect, device number 28
[ 1584.027054][T22265] overlayfs: upper fs does not support tmpfile.
[ 1584.037247][T22265] overlayfs: upper fs does not support RENAME_WHITEOUT.
[ 1584.056474][T22265] overlayfs: upper fs missing required features.
[ 1584.185214][T20905] ocfs2: Unmounting device (7,3) on (node local)
[ 1584.925966][T22292] lo: entered allmulticast mode
[ 1584.950401][T22291] lo: left allmulticast mode
[ 1584.985781][T20873] Bluetooth: hci1: unexpected event 0x06 length: 4 > 3
[ 1586.042519][T22297] loop7: detected capacity change from 0 to 32768
[ 1586.060828][T22297] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.5871 (22297)
[ 1586.099751][T22297] BTRFS info (device loop7): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1586.111380][T22297] BTRFS info (device loop7): using sha256 (sha256-x86_64) checksum algorithm
[ 1586.122552][T22297] BTRFS info (device loop7): disk space caching is enabled
[ 1586.130623][T22297] BTRFS warning (device loop7): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[ 1586.369843][T22324] syzkaller1: entered promiscuous mode
[ 1586.376633][T22324] syzkaller1: entered allmulticast mode
[ 1586.426370][T22297] BTRFS info (device loop7): rebuilding free space tree
[ 1586.477939][T22329] syzkaller1: tun_chr_ioctl cmd 1074025677
[ 1586.484612][T22329] syzkaller1: Linktype set failed because interface is up
[ 1586.492501][T22297] BTRFS info (device loop7): disabling free space tree
[ 1586.499968][T22297] BTRFS info (device loop7): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1586.514606][T22297] BTRFS info (device loop7): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1586.766925][T20714] BTRFS info (device loop7): qgroup scan completed (inconsistency flag cleared)
[ 1586.770365][T20927] BTRFS info (device loop7): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1587.987017][T22351] block nbd0: NBD_DISCONNECT
[ 1587.992026][T22351] block nbd0: Send disconnect failed -22
[ 1588.044425][T22351] block nbd0: Disconnected due to user request.
[ 1588.050993][T22351] block nbd0: shutting down sockets
[ 1589.224846][T22359] loop3: detected capacity change from 0 to 32768
[ 1589.236379][T22359] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.5891 (22359)
[ 1589.259078][T22359] BTRFS info (device loop3): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[ 1589.274281][T22359] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm
[ 1589.290037][T22359] BTRFS info (device loop3): using free-space-tree
[ 1589.770882][T20905] BTRFS info (device loop3): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[ 1592.326259][T22421] input: syz1 as /devices/virtual/input/input87
[ 1592.653700][ T1603] usb 1-1: new high-speed USB device number 41 using dummy_hcd
[ 1592.884696][ T1603] usb 1-1: New USB device found, idVendor=6189, idProduct=182d, bcdDevice= 1.73
[ 1592.894337][ T1603] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1592.902594][ T1603] usb 1-1: Product: syz
[ 1592.907185][ T1603] usb 1-1: Manufacturer: syz
[ 1592.912031][ T1603] usb 1-1: SerialNumber: syz
[ 1592.938170][ T1603] usb 1-1: config 0 descriptor??
[ 1593.474453][T16907] Bluetooth: hci4: command 0x0406 tx timeout
[ 1594.001239][ T1603] asix 1-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random
[ 1594.138582][T22446] loop3: detected capacity change from 0 to 4096
[ 1594.838273][T22460] 9pnet_fd: Insufficient options for proto=fd
[ 1595.012918][ T1603] asix 1-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[ 1595.023365][ T1603] asix 1-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffb9
[ 1595.036252][ T1603] asix 1-1:0.0: probe with driver asix failed with error -71
[ 1595.055452][ T1603] usb 1-1: USB disconnect, device number 41
[ 1595.771534][T22470] loop3: detected capacity change from 0 to 64
[ 1595.793360][ T1603] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[ 1595.823470][T22472] loop7: detected capacity change from 0 to 512
[ 1595.913593][T22472] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1595.931613][T22472] ext4 filesystem being mounted at /97/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1595.999314][ T1603] usb 3-1: config index 0 descriptor too short (expected 45, got 36)
[ 1596.008048][ T1603] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1596.020005][ T1603] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 1596.033017][ T1603] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[ 1596.045256][ T1603] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1596.059322][ T1603] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1596.069052][ T1603] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1596.083746][ T1603] usb 3-1: config 0 descriptor??
[ 1596.091354][T22468] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1596.311543][T20927] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1596.578313][ T1603] plantronics 0003:047F:FFFF.0042: reserved main item tag 0xd
[ 1596.755099][ T1603] plantronics 0003:047F:FFFF.0042: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[ 1596.839156][ T5872] usb 3-1: USB disconnect, device number 29
[ 1597.726765][T22491] loop0: detected capacity change from 0 to 32768
[ 1597.736678][T22491] XFS: ikeep mount option is deprecated.
[ 1597.770381][T22497] loop3: detected capacity change from 0 to 128
[ 1597.786126][T22491] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1598.130960][T22491] XFS (loop0): Ending clean mount
[ 1598.143593][T22491] XFS (loop0): Quotacheck needed: Please wait.
[ 1598.168727][T22491] XFS (loop0): Quotacheck: Done.
[ 1598.323969][T20792] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1598.416827][T20712] kworker/u8:11: attempt to access beyond end of device
[ 1598.416827][T20712] loop3: rw=1, sector=145, nr_sectors = 896 limit=128
[ 1598.612564][T16907] Bluetooth: hci3: command 0x0405 tx timeout
[ 1599.119751][T22510] loop7: detected capacity change from 0 to 32768
[ 1599.334351][T22510] bcachefs (loop7): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,foreground_target=invalid label 767,background_target=invalid device 7,nojournal_transaction_names
[ 1599.334495][T22510]   allowing incompatible features above 0.0: (unknown version)
[ 1599.334565][T22510]   features: lz4
[ 1599.370481][T22510] bcachefs (loop7): Using encoding defined by superblock: utf8-12.1.0
[ 1599.379105][T22510] bcachefs (loop7): initializing new filesystem
[ 1599.395331][T22510] bcachefs (loop7): going read-write
[ 1599.433560][T22510] bcachefs (loop7): marking superblocks
[ 1599.526600][T22510] bcachefs (loop7): initializing freespace
[ 1599.558360][T22510] bcachefs (loop7): done initializing freespace
[ 1599.587952][T22510] bcachefs (loop7): reading snapshots table
[ 1599.594375][T22510] bcachefs (loop7): reading snapshots done
[ 1599.785081][T22510] bcachefs (loop7): done starting filesystem
[ 1600.198809][T20927] bcachefs (loop7): shutting down
[ 1600.204372][T20927] bcachefs (loop7): going read-only
[ 1600.211648][T20927] bcachefs (loop7): finished waiting for writes to stop
[ 1600.227213][T20927] bcachefs (loop7): flushing journal and stopping allocators, journal seq 2
[ 1600.402153][T20927] bcachefs (loop7): flushing journal and stopping allocators complete, journal seq 3
[ 1600.440936][T20927] bcachefs (loop7): clean shutdown complete, journal seq 4
[ 1600.474309][T20927] bcachefs (loop7): marking filesystem clean
[ 1600.646264][T20927] bcachefs (loop7): shutdown complete
[ 1600.919337][T22539] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5956'.
[ 1601.606707][T22549] netlink: 76 bytes leftover after parsing attributes in process `syz.0.5960'.
[ 1601.650238][    C1] net_ratelimit: 1847 callbacks suppressed
[ 1601.650323][    C1] Dead loop on virtual device ipvlan1, fix it urgently!
[ 1603.227766][T22554] loop0: detected capacity change from 0 to 40427
[ 1603.266592][T22554] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[ 1603.274812][T22554] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[ 1603.382576][T22554] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[ 1603.674997][T22554] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[ 1603.682341][T22554] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1603.729448][T22554] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[ 1603.737722][T22554] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[ 1603.745807][T22554] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[ 1603.753668][T22554] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[ 1603.761446][T22554] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[ 1603.769435][T22554] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[ 1603.777307][T22554] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[ 1603.921303][T22573] netlink: 277 bytes leftover after parsing attributes in process `syz.8.5970'.
[ 1605.183806][ T5872] usb 3-1: new high-speed USB device number 30 using dummy_hcd
[ 1605.354791][ T5872] usb 3-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[ 1605.364417][ T5872] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1605.410847][ T5872] usb 3-1: config 0 descriptor??
[ 1606.933815][ T5872] pegasus 3-1:0.0: can't reset MAC
[ 1606.940242][ T5872] pegasus 3-1:0.0: probe with driver pegasus failed with error -5
[ 1606.962230][ T5872] usb 3-1: USB disconnect, device number 30
[ 1607.789178][T22617] loop3: detected capacity change from 0 to 2048
[ 1607.965056][T22620] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1608.043623][T22617] NILFS error (device loop3): nilfs_dotdot: directory #12 missing '..'
[ 1608.054942][T22617] Remounting filesystem read-only
[ 1608.315506][T20905] NILFS (loop3): disposed unprocessed dirty file(s) when detaching log writer
[ 1608.472005][T22624] Invalid ELF header magic: != ELF
[ 1608.973226][ T1603] usb 4-1: new full-speed USB device number 11 using dummy_hcd
[ 1609.139516][ T1603] usb 4-1: config 0 has an invalid interface number: 128 but max is 0
[ 1609.148701][ T1603] usb 4-1: config 0 has no interface number 0
[ 1609.225618][ T1603] usb 4-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[ 1609.237144][ T1603] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1609.246031][ T1603] usb 4-1: Product: syz
[ 1609.250477][ T1603] usb 4-1: Manufacturer: syz
[ 1609.255510][ T1603] usb 4-1: SerialNumber: syz
[ 1609.296899][ T1603] usb 4-1: config 0 descriptor??
[ 1609.664908][T22647] dummy0: entered promiscuous mode
[ 1609.680387][T22647] bond0: entered promiscuous mode
[ 1609.686080][T22647] bond_slave_0: entered promiscuous mode
[ 1609.693874][T22647] bond_slave_1: entered promiscuous mode
[ 1609.710847][T22647] hsr1: entered allmulticast mode
[ 1609.716520][T22647] dummy0: entered allmulticast mode
[ 1609.722159][T22647] bond0: entered allmulticast mode
[ 1609.727861][T22647] bond_slave_0: entered allmulticast mode
[ 1609.734580][T22647] bond_slave_1: entered allmulticast mode
[ 1609.872376][T22644] loop7: detected capacity change from 0 to 2048
[ 1610.050648][T22644] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1610.068024][T22644] ext4 filesystem being mounted at /107/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1610.387772][ T1603] usb 4-1: non-Atmel transceiver xxxxe6de
[ 1610.460140][T20927] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1610.597299][ T1603] usb 4-1: Firmware version (0.0) predates our first public release.
[ 1610.605992][ T1603] usb 4-1: Please update to version 0.2 or newer
[ 1610.670298][ T1603] usb 4-1: atusb_probe: initialization failed, error = -19
[ 1610.734081][ T1603] usb 4-1: USB disconnect, device number 11
[ 1611.006154][T22666] syzkaller1: entered promiscuous mode
[ 1611.011896][T22666] syzkaller1: entered allmulticast mode
[ 1611.147984][T21719] usb 3-1: new high-speed USB device number 31 using dummy_hcd
[ 1611.344081][T21719] usb 3-1: Using ep0 maxpacket: 16
[ 1611.377440][T21719] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1611.390941][T21719] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1611.401597][T21719] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[ 1611.415812][T21719] usb 3-1: New USB device found, idVendor=0955, idProduct=7214, bcdDevice=ed.00
[ 1611.425492][T21719] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1611.529590][T21719] usb 3-1: config 0 descriptor??
[ 1611.951251][T22663] random: crng reseeded on system resumption
[ 1612.133104][T21719] input: HID 0955:7214 Haptics as /devices/virtual/input/input89
[ 1612.205483][T21719] shield 0003:0955:7214.0043: Registered Thunderstrike controller
[ 1612.217850][T21719] shield 0003:0955:7214.0043: : USB HID v0.00 Device [HID 0955:7214] on usb-dummy_hcd.2-1/input0
[ 1612.247244][T22673] loop7: detected capacity change from 0 to 4096
[ 1612.272582][T22673] ntfs3(loop7): Different NTFS sector size (4096) and media sector size (512).
[ 1612.386792][ T5879] shield 0003:0955:7214.0043: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[ 1612.401939][T21719] usb 3-1: USB disconnect, device number 31
[ 1612.421267][ T5879] shield 0003:0955:7214.0043: Failed to output Thunderstrike HOSTCMD request HID report due to -EPROTO
[ 1612.433795][ T5879] shield 0003:0955:7214.0043: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[ 1612.446725][ T5879] shield 0003:0955:7214.0043: Failed to output Thunderstrike HOSTCMD request HID report due to -ENODEV
[ 1612.616487][T22673] ntfs3(loop7): ino=19, mi_enum_attr
[ 1612.622277][T22673] ntfs3(loop7): Mark volume as dirty due to NTFS errors
[ 1613.523418][T21719] usb 3-1: new high-speed USB device number 32 using dummy_hcd
[ 1613.743118][T21719] usb 3-1: Using ep0 maxpacket: 16
[ 1613.831580][T21719] usb 3-1: config 0 has no interfaces?
[ 1613.837523][T21719] usb 3-1: New USB device found, idVendor=0763, idProduct=1015, bcdDevice=56.88
[ 1613.848873][T21719] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1613.926039][T21719] usb 3-1: config 0 descriptor??
[ 1614.158710][T21719] usb 3-1: USB disconnect, device number 32
[ 1614.810864][T22706] netlink: 12 bytes leftover after parsing attributes in process `syz.3.6022'.
[ 1615.172222][T22710] bond1: (slave vti0): The slave device specified does not support setting the MAC address
[ 1615.193522][T22710] bond1: (slave vti0): Error -95 calling set_mac_address
[ 1615.205627][T22703] loop0: detected capacity change from 0 to 40427
[ 1615.215939][T22703] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[ 1615.224072][T22703] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[ 1615.335705][T22703] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[ 1615.626857][T22703] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[ 1615.634390][T22703] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1617.344285][T22732] loop7: detected capacity change from 0 to 32768
[ 1617.384136][T22732] XFS (loop7): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1617.910853][T22732] XFS (loop7): Ending clean mount
[ 1617.926607][T22732] XFS (loop7): Quotacheck needed: Please wait.
[ 1617.969063][T22732] XFS (loop7): Quotacheck: Done.
[ 1618.096464][T20927] XFS (loop7): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1618.546570][T11354] usb 1-1: new high-speed USB device number 42 using dummy_hcd
[ 1618.794405][T11354] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1618.807222][T11354] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 1618.819962][T11354] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[ 1618.830286][T11354] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1618.843777][T11354] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1618.853346][T11354] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1619.146107][T11354] usb 1-1: config 0 descriptor??
[ 1619.763539][T11354] plantronics 0003:047F:FFFF.0044: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[ 1619.973377][T21719] usb 1-1: USB disconnect, device number 42
[ 1623.246235][T22814] loop3: detected capacity change from 0 to 512
[ 1623.390136][T22814] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1623.404188][T22814] ext4 filesystem being mounted at /123/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1623.492924][T22814] EXT4-fs error (device loop3): ext4_do_update_inode:5563: inode #2: comm syz.3.6062: corrupted inode contents
[ 1623.506670][T22814] EXT4-fs error (device loop3): ext4_dirty_inode:6454: inode #2: comm syz.3.6062: mark_inode_dirty error
[ 1623.520958][T22814] EXT4-fs error (device loop3): ext4_do_update_inode:5563: inode #2: comm syz.3.6062: corrupted inode contents
[ 1623.534241][T22814] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #2: comm syz.3.6062: mark_inode_dirty error
[ 1623.587789][T22814] EXT4-fs error (device loop3): ext4_get_first_dir_block:3536: inode #18: comm syz.3.6062: directory missing '.'
[ 1623.826206][T20905] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1624.300019][T22831] team0: entered promiscuous mode
[ 1624.305590][T22831] team_slave_0: entered promiscuous mode
[ 1624.314328][T22831] team_slave_1: entered promiscuous mode
[ 1624.324064][T22831] 8021q: adding VLAN 0 to HW filter on device macvlan2
[ 1624.339940][T22831] bond0: (slave macvlan2): Enslaving as an active interface with an up link
[ 1624.755106][T16907] Bluetooth: hci5: Opcode 0x1003 failed: -110
[ 1624.760084][T22839] netlink: 104 bytes leftover after parsing attributes in process `syz.7.6070'.
[ 1624.963347][ T1603] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[ 1625.143196][ T1603] usb 4-1: Using ep0 maxpacket: 32
[ 1625.173138][ T1603] usb 4-1: config 0 has an invalid interface number: 23 but max is 0
[ 1625.181746][ T1603] usb 4-1: config 0 has no interface number 0
[ 1625.188205][ T1603] usb 4-1: config 0 interface 23 has no altsetting 0
[ 1625.204920][T22847] loop7: detected capacity change from 0 to 2048
[ 1625.228672][ T1603] usb 4-1: New USB device found, idVendor=0557, idProduct=2002, bcdDevice=b6.ad
[ 1625.239247][ T1603] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1625.248043][ T1603] usb 4-1: Product: syz
[ 1625.252466][ T1603] usb 4-1: Manufacturer: syz
[ 1625.257419][ T1603] usb 4-1: SerialNumber: syz
[ 1625.281239][ T1603] usb 4-1: config 0 descriptor??
[ 1625.341203][T22849] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1625.606443][ T1603] kaweth 4-1:0.23: Firmware present in device.
[ 1625.800170][ T1603] kaweth 4-1:0.23: Statistics collection: 0
[ 1625.816755][ T1603] kaweth 4-1:0.23: Multicast filter limit: 0
[ 1625.825730][ T1603] kaweth 4-1:0.23: MTU: 0
[ 1625.830358][ T1603] kaweth 4-1:0.23: Read MAC address 00:00:00:00:00:00
[ 1625.980146][T22856] netlink: 4 bytes leftover after parsing attributes in process `syz.8.6077'.
[ 1626.418969][ T1603] kaweth 4-1:0.23: kaweth interface created at eth37
[ 1626.475134][T22862] loop0: detected capacity change from 0 to 2048
[ 1626.612455][ T1603] usb 4-1: USB disconnect, device number 12
[ 1627.545446][T11354] usb 1-1: new high-speed USB device number 43 using dummy_hcd
[ 1627.714474][T11354] usb 1-1: Using ep0 maxpacket: 16
[ 1627.746850][T11354] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[ 1627.758971][T11354] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1627.852916][T11354] usb 1-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[ 1627.862563][T11354] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1627.875513][T11354] usb 1-1: Product: syz
[ 1627.879958][T11354] usb 1-1: Manufacturer: syz
[ 1627.886916][T11354] usb 1-1: SerialNumber: syz
[ 1627.929968][T11354] usb 1-1: config 0 descriptor??
[ 1627.957768][T11354] em28xx 1-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[ 1627.967735][T11354] em28xx 1-1:0.0: Audio interface 0 found (Vendor Class)
[ 1628.660105][T11354] em28xx 1-1:0.0: unknown em28xx chip ID (0)
[ 1628.695050][T11354] em28xx 1-1:0.0: Config register raw data: 0xfffffffb
[ 1628.925106][T11354] em28xx 1-1:0.0: AC97 chip type couldn't be determined
[ 1628.932954][T11354] em28xx 1-1:0.0: No AC97 audio processor
[ 1628.971630][T22901] dvmrp1: entered allmulticast mode
[ 1628.984663][T11354] usb 1-1: USB disconnect, device number 43
[ 1628.992824][T11354] em28xx 1-1:0.0: Disconnecting em28xx
[ 1629.033721][T22904] dvmrp1: left allmulticast mode
[ 1629.044309][T11354] em28xx 1-1:0.0: Freeing device
[ 1629.183611][T22897] loop7: detected capacity change from 0 to 8192
[ 1630.421832][T22909] loop3: detected capacity change from 0 to 40427
[ 1630.449192][T22909] F2FS-fs (loop3): invalid crc value
[ 1630.502145][T22919] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1630.731422][T22909] F2FS-fs (loop3): Start checkpoint disabled!
[ 1630.753496][T22909] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[ 1630.814467][T22925] bond0: option min_links: invalid value (18446744072132493311)
[ 1630.823996][T22925] bond0: option min_links: allowed values 0 - 2147483647
[ 1630.951995][T20712] kworker/u8:11: attempt to access beyond end of device
[ 1630.951995][T20712] loop3: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[ 1630.968332][T20712] CPU: 1 UID: 0 PID: 20712 Comm: kworker/u8:11 Tainted: G        W           6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(none) 
[ 1630.968524][T20712] Tainted: [W]=WARN
[ 1630.968579][T20712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1630.968700][T20712] Workqueue: writeback wb_workfn (flush-7:3)
[ 1630.968938][T20712] Call Trace:
[ 1630.968997][T20712]  <TASK>
[ 1630.969051][T20712]  __dump_stack+0x26/0x30
[ 1630.969223][T20712]  dump_stack_lvl+0x1df/0x270
[ 1630.969421][T20712]  dump_stack+0x1e/0x25
[ 1630.969585][T20712]  f2fs_handle_critical_error+0xa6f/0xc20
[ 1630.969781][T20712]  f2fs_stop_checkpoint+0x65/0x80
[ 1630.969943][T20712]  f2fs_write_end_io+0xb4b/0x1920
[ 1630.970114][T20712]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1630.970325][T20712]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 1630.970490][T20712]  bio_endio+0xe27/0xf80
[ 1630.970732][T20712]  submit_bio_noacct+0x214/0x2710
[ 1630.970995][T20712]  submit_bio+0x5a9/0x5d0
[ 1630.971207][T20712]  f2fs_submit_write_bio+0x92/0x250
[ 1630.971403][T20712]  __submit_merged_bio+0x16f/0x6a0
[ 1630.971593][T20712]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1630.971778][T20712]  __submit_merged_write_cond+0x458/0x9a0
[ 1630.972020][T20712]  f2fs_write_data_pages+0x4bb2/0x5480
[ 1630.972298][T20712]  ? kmsan_get_metadata+0xfb/0x160
[ 1630.972482][T20712]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1630.972650][T20712]  ? __update_load_avg_cfs_rq+0xd7f/0x1010
[ 1630.972786][T20712]  ? kmsan_get_metadata+0xfb/0x160
[ 1630.972940][T20712]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1630.973104][T20712]  ? __rb_insert_augmented+0x80/0x11b0
[ 1630.973256][T20712]  ? kmsan_get_metadata+0xfb/0x160
[ 1630.973402][T20712]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1630.973555][T20712]  ? kmsan_get_metadata+0xfb/0x160
[ 1630.973706][T20712]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1630.973864][T20712]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1630.974011][T20712]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1630.974154][T20712]  do_writepages+0x3f2/0x860
[ 1630.974341][T20712]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1630.974535][T20712]  ? queue_io+0x721/0x790
[ 1630.974733][T20712]  ? kmsan_get_metadata+0xfb/0x160
[ 1630.974917][T20712]  __writeback_single_inode+0x101/0x1190
[ 1630.975135][T20712]  ? kmsan_get_metadata+0xfb/0x160
[ 1630.975307][T20712]  writeback_sb_inodes+0xaa9/0x1c90
[ 1630.975603][T20712]  ? kmsan_get_metadata+0xfb/0x160
[ 1630.975809][T20712]  wb_writeback+0x4ce/0xc00
[ 1630.976022][T20712]  ? queue_io+0x421/0x790
[ 1630.976229][T20712]  wb_workfn+0x397/0x1910
[ 1630.976426][T20712]  ? kmsan_get_metadata+0xfb/0x160
[ 1630.976607][T20712]  ? __pfx_wb_workfn+0x10/0x10
[ 1630.976789][T20712]  process_scheduled_works+0xb8e/0x1d80
[ 1630.977051][T20712]  worker_thread+0xedf/0x1590
[ 1630.977272][T20712]  kthread+0xd5c/0xf00
[ 1630.977404][T20712]  ? __pfx_worker_thread+0x10/0x10
[ 1630.977619][T20712]  ? __pfx_kthread+0x10/0x10
[ 1630.977768][T20712]  ret_from_fork+0x1e3/0x310
[ 1630.977915][T20712]  ? __pfx_kthread+0x10/0x10
[ 1630.978047][T20712]  ret_from_fork_asm+0x1a/0x30
[ 1630.978237][T20712]  </TASK>
[ 1631.275709][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1631.287367][T20712] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 1631.295673][T20712] CPU: 1 UID: 0 PID: 20712 Comm: kworker/u8:11 Tainted: G        W           6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(none) 
[ 1631.295860][T20712] Tainted: [W]=WARN
[ 1631.295913][T20712] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1631.296017][T20712] Workqueue: writeback wb_workfn (flush-7:3)
[ 1631.296204][T20712] Call Trace:
[ 1631.296254][T20712]  <TASK>
[ 1631.296305][T20712]  __dump_stack+0x26/0x30
[ 1631.296467][T20712]  dump_stack_lvl+0x1df/0x270
[ 1631.296642][T20712]  dump_stack+0x1e/0x25
[ 1631.296800][T20712]  f2fs_handle_critical_error+0xa6f/0xc20
[ 1631.296977][T20712]  f2fs_stop_checkpoint+0x65/0x80
[ 1631.297119][T20712]  f2fs_write_end_io+0xb4b/0x1920
[ 1631.297309][T20712]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 1631.297456][T20712]  bio_endio+0xe27/0xf80
[ 1631.297642][T20712]  submit_bio_noacct+0x214/0x2710
[ 1631.297884][T20712]  submit_bio+0x5a9/0x5d0
[ 1631.298076][T20712]  f2fs_submit_write_bio+0x92/0x250
[ 1631.298274][T20712]  __submit_merged_bio+0x16f/0x6a0
[ 1631.298457][T20712]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1631.298625][T20712]  __submit_merged_write_cond+0x458/0x9a0
[ 1631.298850][T20712]  f2fs_write_data_pages+0x4bb2/0x5480
[ 1631.299158][T20712]  ? kmsan_get_metadata+0xfb/0x160
[ 1631.299318][T20712]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1631.299502][T20712]  ? __update_load_avg_cfs_rq+0xd7f/0x1010
[ 1631.299671][T20712]  ? kmsan_get_metadata+0xfb/0x160
[ 1631.299834][T20712]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1631.300013][T20712]  ? __rb_insert_augmented+0x80/0x11b0
[ 1631.300174][T20712]  ? kmsan_get_metadata+0xfb/0x160
[ 1631.300334][T20712]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1631.300501][T20712]  ? kmsan_get_metadata+0xfb/0x160
[ 1631.300659][T20712]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1631.300829][T20712]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1631.300997][T20712]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1631.301142][T20712]  do_writepages+0x3f2/0x860
[ 1631.301333][T20712]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1631.301493][T20712]  ? queue_io+0x721/0x790
[ 1631.301663][T20712]  ? kmsan_get_metadata+0xfb/0x160
[ 1631.301838][T20712]  __writeback_single_inode+0x101/0x1190
[ 1631.302032][T20712]  ? kmsan_get_metadata+0xfb/0x160
[ 1631.302192][T20712]  writeback_sb_inodes+0xaa9/0x1c90
[ 1631.302461][T20712]  ? kmsan_get_metadata+0xfb/0x160
[ 1631.302642][T20712]  wb_writeback+0x4ce/0xc00
[ 1631.302834][T20712]  ? queue_io+0x421/0x790
[ 1631.303010][T20712]  wb_workfn+0x397/0x1910
[ 1631.303165][T20712]  ? kmsan_get_metadata+0xfb/0x160
[ 1631.303325][T20712]  ? __pfx_wb_workfn+0x10/0x10
[ 1631.303472][T20712]  process_scheduled_works+0xb8e/0x1d80
[ 1631.303707][T20712]  worker_thread+0xedf/0x1590
[ 1631.303921][T20712]  kthread+0xd5c/0xf00
[ 1631.304049][T20712]  ? __pfx_worker_thread+0x10/0x10
[ 1631.304241][T20712]  ? __pfx_kthread+0x10/0x10
[ 1631.304407][T20712]  ret_from_fork+0x1e3/0x310
[ 1631.304536][T20712]  ? __pfx_kthread+0x10/0x10
[ 1631.304667][T20712]  ret_from_fork_asm+0x1a/0x30
[ 1631.304864][T20712]  </TASK>
[ 1631.599501][T20712] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 1631.693483][T22930] loop7: detected capacity change from 0 to 512
[ 1631.713596][T22924] loop0: detected capacity change from 0 to 2048
[ 1631.757598][T22931] netlink: 'syz.8.6105': attribute type 1 has an invalid length.
[ 1631.787768][T22924] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1631.896842][T22931] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1631.924173][T22930] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[ 1632.018229][T22933] bond1: (slave ip6gretap1): making interface the new active one
[ 1632.032800][T22933] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[ 1632.068201][T22930] EXT4-fs (loop7): 1 truncate cleaned up
[ 1632.082186][T22930] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1632.183611][T11354] usb 1-1: new high-speed USB device number 44 using dummy_hcd
[ 1632.374103][T11354] usb 1-1: Using ep0 maxpacket: 32
[ 1632.395244][T22937] netlink: 1 bytes leftover after parsing attributes in process `syz.2.6109'.
[ 1632.428169][T11354] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1632.439811][T11354] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1632.450081][T11354] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 1632.459650][T11354] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1632.485969][T11354] usb 1-1: config 0 descriptor??
[ 1632.498239][T11354] hub 1-1:0.0: USB hub found
[ 1632.551962][T20927] EXT4-fs error (device loop7): htree_dirblock_to_tree:1080: inode #2: block 13: comm syz-executor: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0
[ 1632.702748][T11354] hub 1-1:0.0: 1 port detected
[ 1633.013422][T22055] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1633.291246][ T8851] bridge_slave_1: left allmulticast mode
[ 1633.301682][ T8851] bridge_slave_1: left promiscuous mode
[ 1633.309431][ T8851] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1633.345932][T11354] hub 1-1:0.0: activate --> -90
[ 1633.385218][ T8851] bridge_slave_0: left allmulticast mode
[ 1633.391121][ T8851] bridge_slave_0: left promiscuous mode
[ 1633.398673][ T8851] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1633.550772][T11354] hub 1-1:0.0: hub_ext_port_status failed (err = -71)
[ 1633.559494][ T5872] usb 1-1: USB disconnect, device number 44
[ 1633.980750][ T8851] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1634.031751][ T8851] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1634.075148][ T8851] bond0 (unregistering): Released all slaves
[ 1634.639320][ T8851] hsr_slave_0: left promiscuous mode
[ 1634.662967][ T8851] hsr_slave_1: left promiscuous mode
[ 1634.671162][ T8851] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1634.679128][ T8851] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1634.694388][ T8851] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1634.702075][ T8851] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1634.750527][ T8851] veth1_macvtap: left promiscuous mode
[ 1634.756569][ T8851] veth0_macvtap: left promiscuous mode
[ 1634.763135][ T8851] veth1_vlan: left promiscuous mode
[ 1634.768734][ T8851] veth0_vlan: left promiscuous mode
[ 1635.313773][ T8851] team0 (unregistering): Port device team_slave_1 removed
[ 1635.454849][ T8851] team0 (unregistering): Port device team_slave_0 removed
[ 1636.252328][T16907] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1636.264559][T16907] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1636.279088][T16907] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1636.296959][T16907] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1636.321539][T16907] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1637.033406][T22963] chnl_net:caif_netlink_parms(): no params data found
[ 1637.568563][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[ 1637.575685][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[ 1637.673092][T22987] loop0: detected capacity change from 0 to 64
[ 1637.966521][T22987] overlayfs: upper fs needs to support d_type.
[ 1637.978131][T22987] overlayfs: upper fs does not support RENAME_WHITEOUT.
[ 1637.987066][T22987] overlayfs: failed to set xattr on upper
[ 1637.994267][T22987] overlayfs: ...falling back to redirect_dir=nofollow.
[ 1638.002407][T22987] overlayfs: ...falling back to index=off.
[ 1638.011980][T22987] overlayfs: ...falling back to uuid=null.
[ 1638.433431][T20873] Bluetooth: hci3: command tx timeout
[ 1638.889488][T22963] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1638.899554][T22963] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1638.907430][T22963] bridge_slave_0: entered allmulticast mode
[ 1638.916798][T22963] bridge_slave_0: entered promiscuous mode
[ 1638.938148][T22963] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1638.947040][T22963] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1638.954809][T22963] bridge_slave_1: entered allmulticast mode
[ 1638.964331][T22963] bridge_slave_1: entered promiscuous mode
[ 1639.149612][T20792] Trying to free block not in datazone
[ 1639.167651][T22963] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1639.179790][T20792] Trying to free block not in datazone
[ 1639.204235][T20792] Trying to free block not in datazone
[ 1639.229220][T22963] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1639.438428][T22963] team0: Port device team_slave_0 added
[ 1639.469759][T22963] team0: Port device team_slave_1 added
[ 1639.593567][T22963] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1639.600753][T22963] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1639.627391][T22963] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1639.652192][T22963] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1639.660773][T22963] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1639.688156][T22963] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1639.899068][T22963] hsr_slave_0: entered promiscuous mode
[ 1639.909451][T22963] hsr_slave_1: entered promiscuous mode
[ 1639.918100][T22963] debugfs: 'hsr0' already exists in 'hsr'
[ 1639.924739][T22963] Cannot create hsr debugfs directory
[ 1640.519595][T20873] Bluetooth: hci3: command tx timeout
[ 1641.558845][T22963] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1641.711710][T22963] 8021q: adding VLAN 0 to HW filter on device team0
[ 1641.771773][T20057] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1641.779405][T20057] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1641.818147][T23031] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6144'.
[ 1641.842860][T23031] vxlan0: entered promiscuous mode
[ 1641.874391][T20057] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1641.881923][T20057] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1642.153791][T22963] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1642.603025][T20873] Bluetooth: hci3: command tx timeout
[ 1643.192082][T23047] Bluetooth: hci0: unsupported parameter 5148
[ 1643.199971][T23047] Bluetooth: hci0: unsupported parameter 65024
[ 1643.206853][T23047] Bluetooth: hci0: unsupported parameter 5148
[ 1643.214109][T23047] Bluetooth: hci0: unsupported parameter 65024
[ 1643.714958][T22963] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1643.811379][T23056] Invalid ELF header magic: != ELF
[ 1643.893705][T23058] loop0: detected capacity change from 0 to 1024
[ 1644.271075][T23066] binder: 23064:23066 ioctl c0306201 200000000380 returned -14
[ 1644.567559][T23070] relay: one or more items not logged [item size (56) > sub-buffer size (10)]
[ 1644.673808][T20873] Bluetooth: hci3: command tx timeout
[ 1645.666233][T22963] veth0_vlan: entered promiscuous mode
[ 1645.811294][T22963] veth1_vlan: entered promiscuous mode
[ 1646.240466][T22963] veth0_macvtap: entered promiscuous mode
[ 1646.312882][T22963] veth1_macvtap: entered promiscuous mode
[ 1646.459911][T22963] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1646.529993][T22963] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1646.562884][T23094] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6169'.
[ 1647.733480][T23102] loop0: detected capacity change from 0 to 32768
[ 1647.930067][T23102] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[ 1648.135418][T20792] ocfs2: Unmounting device (7,0) on (node local)
[ 1649.154577][T20873] Bluetooth: hci5: Opcode 0x1003 failed: -110
[ 1651.625078][T23146] netlink: 'syz.3.6185': attribute type 14 has an invalid length.
[ 1651.636181][T23146] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6185'.
[ 1651.733216][T23146] netlink: 'syz.3.6185': attribute type 14 has an invalid length.
[ 1651.741418][T23146] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6185'.
[ 1652.851633][T23169] loop0: detected capacity change from 0 to 1024
[ 1653.324643][T20720] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1653.332958][T20720] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1653.450782][T20057] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1653.459636][T20057] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1655.120340][T23196] loop0: detected capacity change from 0 to 32768
[ 1655.217642][T23203] netlink: 'syz.3.6207': attribute type 4 has an invalid length.
[ 1656.996998][T23220] loop9: detected capacity change from 0 to 32768
[ 1657.035106][T23220] XFS (loop9): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1657.341715][T23244] netlink: 104 bytes leftover after parsing attributes in process `syz.2.6220'.
[ 1657.420706][T23220] XFS (loop9): Ending clean mount
[ 1657.434020][T23220] XFS (loop9): Quotacheck needed: Please wait.
[ 1657.550320][T23220] XFS (loop9): Quotacheck: Done.
[ 1657.866746][T22963] XFS (loop9): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1658.421035][T23258] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6228'.
[ 1658.430608][T23258] netlink: 'syz.0.6228': attribute type 30 has an invalid length.
[ 1658.474326][T23258] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6228'.
[ 1658.484458][T23258] netlink: 'syz.0.6228': attribute type 30 has an invalid length.
[ 1659.868519][T23281] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6237'.
[ 1661.005839][T23291] loop3: detected capacity change from 0 to 32768
[ 1661.018721][T23291] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.6241 (23291)
[ 1661.062085][T23291] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1661.073942][T23291] BTRFS info (device loop3): using crc32c (crc32c-x86_64) checksum algorithm
[ 1661.083979][T23291] BTRFS info (device loop3): using free-space-tree
[ 1661.138933][T23300] netlink: 120 bytes leftover after parsing attributes in process `syz.0.6245'.
[ 1661.305486][T20905] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1661.846893][T23325] overlayfs: failed to clone upperpath
[ 1661.889203][T23325] overlayfs: failed to clone upperpath
[ 1662.266621][T23321] loop9: detected capacity change from 0 to 40427
[ 1662.285020][T23321] F2FS-fs (loop9): build fault injection rate: 14
[ 1662.292577][T23321] F2FS-fs (loop9): build fault injection type: 0x3bfe8c
[ 1662.329852][T23321] F2FS-fs (loop9): invalid crc value
[ 1662.351891][    C0] F2FS-fs (loop9): inject read IO error in f2fs_read_end_io of bio_endio+0xe27/0xf80
[ 1662.388728][    C1] F2FS-fs (loop9): inject read IO error in f2fs_read_end_io of bio_endio+0xe27/0xf80
[ 1662.537870][T23332] overlayfs: failed to clone upperpath
[ 1662.670713][T23321] F2FS-fs (loop9): inject page alloc in f2fs_grab_cache_folio of f2fs_get_tmp_folio+0x38/0x50
[ 1662.696944][T23321] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5
[ 1662.743335][T23321] F2FS-fs (loop9): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_new_node_folio+0x831/0x19b0
[ 1662.785163][T23321] F2FS-fs (loop9): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_xattr_generic_get+0x199/0x1f0
[ 1662.799574][T23321] F2FS-fs (loop9): inject inconsistent footer in sanity_check_node_footer of f2fs_get_dnode_of_data+0x310/0x2ce0
[ 1662.812047][T23321] F2FS-fs (loop9): inconsistent node block, node_type:1, nid:10, node_footer[nid:10,ino:10,ofs:0,cpver:0,blkaddr:0]
[ 1662.923206][T23324] netlink: zone id is out of range
[ 1662.928673][T23324] netlink: zone id is out of range
[ 1662.934214][T23324] netlink: zone id is out of range
[ 1662.940336][T23324] netlink: zone id is out of range
[ 1662.945886][T23324] netlink: zone id is out of range
[ 1662.951207][T23324] netlink: zone id is out of range
[ 1662.956665][T23324] netlink: zone id is out of range
[ 1662.961990][T23324] netlink: zone id is out of range
[ 1662.967856][T23324] netlink: zone id is out of range
[ 1662.975194][T23324] netlink: zone id is out of range
[ 1662.985729][T22963] syz-executor: attempt to access beyond end of device
[ 1662.985729][T22963] loop9: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1663.003593][T22963] CPU: 0 UID: 0 PID: 22963 Comm: syz-executor Tainted: G        W           6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(none) 
[ 1663.003776][T22963] Tainted: [W]=WARN
[ 1663.003823][T22963] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1663.003900][T22963] Call Trace:
[ 1663.003948][T22963]  <TASK>
[ 1663.003995][T22963]  __dump_stack+0x26/0x30
[ 1663.004148][T22963]  dump_stack_lvl+0x1df/0x270
[ 1663.004298][T22963]  dump_stack+0x1e/0x25
[ 1663.004424][T22963]  f2fs_handle_critical_error+0xa6f/0xc20
[ 1663.004582][T22963]  f2fs_stop_checkpoint+0x65/0x80
[ 1663.004700][T22963]  f2fs_write_end_io+0xb4b/0x1920
[ 1663.004832][T22963]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1663.004979][T22963]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 1663.005102][T22963]  bio_endio+0xe27/0xf80
[ 1663.005261][T22963]  submit_bio_noacct+0x214/0x2710
[ 1663.005464][T22963]  submit_bio+0x5a9/0x5d0
[ 1663.005626][T22963]  f2fs_submit_write_bio+0x92/0x250
[ 1663.005790][T22963]  __submit_merged_bio+0x16f/0x6a0
[ 1663.005949][T22963]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1663.006085][T22963]  __submit_merged_write_cond+0x458/0x9a0
[ 1663.006286][T22963]  f2fs_write_data_pages+0x4bb2/0x5480
[ 1663.006528][T22963]  ? kmsan_get_metadata+0xfb/0x160
[ 1663.006664][T22963]  ? kmsan_get_metadata+0xfb/0x160
[ 1663.006793][T22963]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1663.006936][T22963]  ? __pfx_folios_put_refs+0x1/0x10
[ 1663.007085][T22963]  ? filter_irq_stacks+0x49/0x190
[ 1663.007212][T22963]  ? stack_depot_save_flags+0x35/0x7b0
[ 1663.007393][T22963]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[ 1663.007580][T22963]  ? kmsan_get_metadata+0xfb/0x160
[ 1663.007710][T22963]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1663.007845][T22963]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1663.007976][T22963]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1663.008104][T22963]  do_writepages+0x3f2/0x860
[ 1663.008282][T22963]  ? _raw_spin_unlock+0x30/0x50
[ 1663.008442][T22963]  ? wbc_attach_and_unlock_inode+0x131/0x680
[ 1663.008623][T22963]  filemap_fdatawrite+0x207/0x260
[ 1663.008826][T22963]  f2fs_sync_dirty_inodes+0x2ab/0x9e0
[ 1663.008995][T22963]  f2fs_write_checkpoint+0xfe2/0x2b00
[ 1663.009251][T22963]  kill_f2fs_super+0x2ff/0x970
[ 1663.009431][T22963]  ? __pfx_kill_f2fs_super+0x10/0x10
[ 1663.009589][T22963]  deactivate_locked_super+0xc8/0x3c0
[ 1663.009786][T22963]  deactivate_super+0x12f/0x140
[ 1663.009965][T22963]  cleanup_mnt+0x6fb/0x780
[ 1663.010114][T22963]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[ 1663.010316][T22963]  ? __pfx___cleanup_mnt+0x10/0x10
[ 1663.010484][T22963]  __cleanup_mnt+0x22/0x30
[ 1663.010650][T22963]  task_work_run+0x209/0x2b0
[ 1663.010806][T22963]  exit_to_user_mode_loop+0x2a6/0x330
[ 1663.010963][T22963]  do_syscall_64+0x1e3/0x210
[ 1663.011094][T22963]  ? irqentry_exit+0x16/0x60
[ 1663.011207][T22963]  ? clear_bhb_loop+0x40/0x90
[ 1663.011344][T22963]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1663.011490][T22963] RIP: 0033:0x7ff586f8fcd7
[ 1663.011577][T22963] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 1663.011685][T22963] RSP: 002b:00007ffcae7fc958 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 1663.011793][T22963] RAX: 0000000000000000 RBX: 00007ff587010b55 RCX: 00007ff586f8fcd7
[ 1663.011874][T22963] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffcae7fca10
[ 1663.011947][T22963] RBP: 00007ffcae7fca10 R08: 0000000000000000 R09: 0000000000000000
[ 1663.012022][T22963] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffcae7fdaa0
[ 1663.012100][T22963] R13: 00007ff587010b55 R14: 0000000000195fb6 R15: 00007ffcae7fdae0
[ 1663.012206][T22963]  </TASK>
[ 1663.371591][T22963] F2FS-fs (loop9): Stopped filesystem due to reason: 3
[ 1665.217942][T23360] netlink: 'syz.3.6264': attribute type 1 has an invalid length.
[ 1665.317713][T23360] bond2: entered promiscuous mode
[ 1665.324411][T23360] 8021q: adding VLAN 0 to HW filter on device bond2
[ 1665.514088][T23364] netlink: 8 bytes leftover after parsing attributes in process `syz.8.6265'.
[ 1665.668933][T23361] 8021q: adding VLAN 0 to HW filter on device bond2
[ 1665.678264][T23361] bond2: (slave ip6gre1): The slave device specified does not support setting the MAC address
[ 1665.691261][T23361] bond2: (slave ip6gre1): Setting fail_over_mac to active for active-backup mode
[ 1665.715111][T23361] bond2: (slave ip6gre1): making interface the new active one
[ 1665.722928][T23361] ip6gre1: entered promiscuous mode
[ 1665.735443][T23361] bond2: (slave ip6gre1): Enslaving as an active interface with an up link
[ 1665.869400][T23359] loop0: detected capacity change from 0 to 32768
[ 1665.977234][T23359] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1666.305424][T23359] XFS (loop0): Ending clean mount
[ 1666.319736][T23359] XFS (loop0): Quotacheck needed: Please wait.
[ 1666.367202][T23382] loop9: detected capacity change from 0 to 256
[ 1666.386534][T23359] XFS (loop0): Quotacheck: Done.
[ 1666.443788][T23382] exFAT-fs (loop9): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d)
[ 1666.511224][T23382] exFAT-fs (loop9): error, invalid access to FAT free cluster (entry 0x00000008)
[ 1666.521094][T23382] exFAT-fs (loop9): Filesystem has been set read-only
[ 1666.528552][T23382] exFAT-fs (loop9): error, failed to bmap (inode : ffff888013d5d770 iblock : 8, err : -5)
[ 1666.555051][T20792] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1666.580680][T23382] exFAT-fs (loop9): error, invalid access to FAT free cluster (entry 0x00000008)
[ 1666.590279][T23382] exFAT-fs (loop9): write: fail to zero from 10 to 36864(-5)
[ 1668.351482][T23402] netlink: 'syz.9.6279': attribute type 9 has an invalid length.
[ 1668.360028][T23402] netlink: 4 bytes leftover after parsing attributes in process `syz.9.6279'.
[ 1668.543943][T23402] netlink: 'syz.9.6279': attribute type 9 has an invalid length.
[ 1668.554319][T23402] netlink: 4 bytes leftover after parsing attributes in process `syz.9.6279'.
[ 1668.618111][T23406] overlayfs: failed to resolve './file0': -2
[ 1669.251502][T23408] loop3: detected capacity change from 0 to 2048
[ 1669.315757][T23408] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1669.365427][T23416] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1669.423076][   T30] audit: type=1800 audit(2000001367.491:447): pid=23408 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.6281" name="file1" dev="loop3" ino=15 res=0 errno=0
[ 1669.545822][ T5879] usb 10-1: new high-speed USB device number 8 using dummy_hcd
[ 1669.757663][ T5879] usb 10-1: Using ep0 maxpacket: 32
[ 1669.780530][ T5879] usb 10-1: New USB device found, idVendor=0ac8, idProduct=0321, bcdDevice=6f.be
[ 1669.790537][ T5879] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1669.845062][ T5879] usb 10-1: config 0 descriptor??
[ 1669.884907][ T5879] gspca_main: vc032x-2.14.0 probing 0ac8:0321
[ 1669.895318][T23421] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6287'.
[ 1669.904987][T23421] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6287'.
[ 1670.584042][T23434] net_ratelimit: 33 callbacks suppressed
[ 1670.584119][T23434] IPv4: Oversized IP packet from 172.20.20.24
[ 1670.600421][    C0] IPv4: Oversized IP packet from 172.20.20.24
[ 1670.608323][    C0] IPv4: Oversized IP packet from 172.20.20.24
[ 1671.215891][T11354] usb 1-1: new high-speed USB device number 45 using dummy_hcd
[ 1671.408686][T11354] usb 1-1: Using ep0 maxpacket: 32
[ 1671.465823][T11354] usb 1-1: config 0 has an invalid interface number: 184 but max is 0
[ 1671.474772][T11354] usb 1-1: config 0 has no interface number 0
[ 1671.481105][T11354] usb 1-1: config 0 interface 184 has no altsetting 0
[ 1671.589454][T11354] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[ 1671.601815][T11354] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1671.611051][T11354] usb 1-1: Product: syz
[ 1671.615759][T11354] usb 1-1: Manufacturer: syz
[ 1671.621371][T11354] usb 1-1: SerialNumber: syz
[ 1671.789519][T11354] usb 1-1: config 0 descriptor??
[ 1671.853995][T11354] smsc75xx v1.0.0
[ 1671.854006][ T5879] gspca_vc032x: reg_w err -71
[ 1671.854066][ T5879] gspca_vc032x: I2c Bus Busy Wait 00
[ 1671.868338][ T5879] gspca_vc032x: I2c Bus Busy Wait 00
[ 1671.873987][ T5879] gspca_vc032x: I2c Bus Busy Wait 00
[ 1671.879516][ T5879] gspca_vc032x: I2c Bus Busy Wait 00
[ 1671.885187][ T5879] gspca_vc032x: I2c Bus Busy Wait 00
[ 1671.890697][ T5879] gspca_vc032x: I2c Bus Busy Wait 00
[ 1671.896295][ T5879] gspca_vc032x: I2c Bus Busy Wait 00
[ 1671.901798][ T5879] gspca_vc032x: I2c Bus Busy Wait 00
[ 1671.910273][ T5879] gspca_vc032x: I2c Bus Busy Wait 00
[ 1671.916679][ T5879] gspca_vc032x: I2c Bus Busy Wait 00
[ 1671.922208][ T5879] gspca_vc032x: I2c Bus Busy Wait 00
[ 1671.930207][ T5879] gspca_vc032x: I2c Bus Busy Wait 00
[ 1671.936572][ T5879] gspca_vc032x: I2c Bus Busy Wait 00
[ 1671.942061][ T5879] gspca_vc032x: I2c Bus Busy Wait 00
[ 1671.947711][ T5879] gspca_vc032x: I2c Bus Busy Wait 00
[ 1671.954049][ T5879] gspca_vc032x: I2c Bus Busy Wait 00
[ 1671.959568][ T5879] gspca_vc032x: I2c Bus Busy Wait 00
[ 1671.965203][ T5879] gspca_vc032x: I2c Bus Busy Wait 00
[ 1671.970701][ T5879] gspca_vc032x: Unknown sensor...
[ 1671.976415][ T5879] vc032x 10-1:0.0: probe with driver vc032x failed with error -22
[ 1672.221274][ T5879] usb 10-1: USB disconnect, device number 8
[ 1672.681728][T23455] loop3: detected capacity change from 0 to 256
[ 1673.170266][T11354] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -71
[ 1673.181816][T11354] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[ 1673.500670][T11354] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[ 1673.512049][T11354] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71
[ 1673.522367][T11354] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_reset
[ 1673.533044][T11354] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[ 1673.547357][T11354] smsc75xx 1-1:0.184: probe with driver smsc75xx failed with error -71
[ 1673.703276][T11354] usb 1-1: USB disconnect, device number 45
[ 1674.430475][T23483] vlan2: entered allmulticast mode
[ 1674.436119][T23483] veth0_to_hsr: entered allmulticast mode
[ 1674.788833][T23493] bridge_slave_0: left allmulticast mode
[ 1674.796453][T23493] bridge_slave_0: left promiscuous mode
[ 1674.803277][T23493] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1674.840806][T23493] bridge_slave_1: left allmulticast mode
[ 1674.847206][T23493] bridge_slave_1: left promiscuous mode
[ 1674.854142][T23493] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1674.989957][T23493] bond0: (slave bond_slave_0): Releasing backup interface
[ 1675.066609][T23493] bond0: (slave bond_slave_1): Releasing backup interface
[ 1675.095583][T23493] team_slave_0: left promiscuous mode
[ 1675.145737][T23493] team0: Port device team_slave_0 removed
[ 1675.157764][T23493] team_slave_1: left promiscuous mode
[ 1675.190706][T23493] team0: Port device team_slave_1 removed
[ 1675.207910][T23493] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1675.215887][T23493] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1675.262972][T23493] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1675.270806][T23493] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1675.446946][T23493] bond0: (slave macvlan2): Releasing backup interface
[ 1675.520223][T23493] team0: left promiscuous mode
[ 1675.581752][T23493] bond2: (slave ip6gre1): Releasing backup interface
[ 1675.591237][T23493] ip6gre1: left promiscuous mode
[ 1676.253256][ T5879] usb 4-1: new full-speed USB device number 13 using dummy_hcd
[ 1676.430275][ T5879] usb 4-1: config 0 has an invalid interface number: 128 but max is 0
[ 1676.440817][ T5879] usb 4-1: config 0 has no interface number 0
[ 1676.486265][ T5879] usb 4-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[ 1676.495754][ T5879] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1676.504157][ T5879] usb 4-1: Product: syz
[ 1676.508549][ T5879] usb 4-1: Manufacturer: syz
[ 1676.517672][ T5879] usb 4-1: SerialNumber: syz
[ 1676.545118][ T5879] usb 4-1: config 0 descriptor??
[ 1676.985440][ T5879] usb 4-1: Firmware: major: 230, minor: 61, hardware type: UNKNOWN (237)
[ 1677.209848][ T5879] usb 4-1: no permanent extended address found, random address set
[ 1677.218221][ T5879] usb 4-1: atusb_probe: initialization failed, error = -524
[ 1677.229449][ T5879] atusb 4-1:0.128: probe with driver atusb failed with error -524
[ 1677.413756][ T5872] usb 4-1: USB disconnect, device number 13
[ 1678.580156][   T30] audit: type=1326 audit(2000001376.631:448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23552 comm="syz.8.6343" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb72e58e9a9 code=0x0
[ 1678.629314][T23551] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6342'.
[ 1681.385870][T23590] loop0: detected capacity change from 0 to 2048
[ 1681.465147][T23590] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1681.665020][T23590] UDF-fs: warning (device loop0): udf_rmdir: empty directory has nlink != 2 (0)
[ 1682.685847][T23619] netlink: 'syz.2.6372': attribute type 12 has an invalid length.
[ 1682.694346][T23619] netlink: 'syz.2.6372': attribute type 29 has an invalid length.
[ 1682.702502][T23619] netlink: 148 bytes leftover after parsing attributes in process `syz.2.6372'.
[ 1682.716050][T23619] netlink: 'syz.2.6372': attribute type 1 has an invalid length.
[ 1682.873139][ T5879] libceph: connect (1)[c::]:6789 error -101
[ 1682.879730][ T5879] libceph: mon0 (1)[c::]:6789 connect error
[ 1683.164217][ T5879] libceph: connect (1)[c::]:6789 error -101
[ 1683.172901][ T5879] libceph: mon0 (1)[c::]:6789 connect error
[ 1683.632123][T23622] ceph: No mds server is up or the cluster is laggy
[ 1683.877508][T23639] loop0: detected capacity change from 0 to 16
[ 1683.991240][T23639] erofs (device loop0): mounted with root inode @ nid 36.
[ 1685.039559][T23658] overlayfs: failed to clone upperpath
[ 1690.900491][T23716] loop0: detected capacity change from 0 to 128
[ 1692.832814][T23670] Set syz1 is full, maxelem 65536 reached
[ 1692.863091][   T30] audit: type=1800 audit(2000001390.921:449): pid=23716 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.6409" name="file1" dev="loop0" ino=1048859 res=0 errno=0
[ 1692.921917][T23716] syz.0.6409: attempt to access beyond end of device
[ 1692.921917][T23716] loop0: rw=2049, sector=129, nr_sectors = 1 limit=128
[ 1692.935820][T23716] buffer_io_error: 1734 callbacks suppressed
[ 1692.935912][T23716] Buffer I/O error on dev loop0, logical block 129, lost async page write
[ 1692.950930][T23716] syz.0.6409: attempt to access beyond end of device
[ 1692.950930][T23716] loop0: rw=2049, sector=130, nr_sectors = 1 limit=128
[ 1692.964720][T23716] Buffer I/O error on dev loop0, logical block 130, lost async page write
[ 1692.973621][T23716] syz.0.6409: attempt to access beyond end of device
[ 1692.973621][T23716] loop0: rw=2049, sector=139, nr_sectors = 1 limit=128
[ 1692.987412][T23716] Buffer I/O error on dev loop0, logical block 139, lost async page write
[ 1692.999092][T23716] syz.0.6409: attempt to access beyond end of device
[ 1692.999092][T23716] loop0: rw=2049, sector=140, nr_sectors = 1 limit=128
[ 1693.012870][T23716] Buffer I/O error on dev loop0, logical block 140, lost async page write
[ 1693.023569][T23716] syz.0.6409: attempt to access beyond end of device
[ 1693.023569][T23716] loop0: rw=2049, sector=141, nr_sectors = 1 limit=128
[ 1693.037889][T23716] Buffer I/O error on dev loop0, logical block 141, lost async page write
[ 1693.046758][T23716] syz.0.6409: attempt to access beyond end of device
[ 1693.046758][T23716] loop0: rw=2049, sector=142, nr_sectors = 1 limit=128
[ 1693.060620][T23716] Buffer I/O error on dev loop0, logical block 142, lost async page write
[ 1693.069553][T23716] syz.0.6409: attempt to access beyond end of device
[ 1693.069553][T23716] loop0: rw=2049, sector=143, nr_sectors = 1 limit=128
[ 1693.083334][T23716] Buffer I/O error on dev loop0, logical block 143, lost async page write
[ 1693.092111][T23716] syz.0.6409: attempt to access beyond end of device
[ 1693.092111][T23716] loop0: rw=2049, sector=144, nr_sectors = 1 limit=128
[ 1693.107724][T23716] Buffer I/O error on dev loop0, logical block 144, lost async page write
[ 1693.117254][T23716] syz.0.6409: attempt to access beyond end of device
[ 1693.117254][T23716] loop0: rw=2049, sector=147, nr_sectors = 1 limit=128
[ 1693.132791][T23716] Buffer I/O error on dev loop0, logical block 147, lost async page write
[ 1693.141589][T23716] syz.0.6409: attempt to access beyond end of device
[ 1693.141589][T23716] loop0: rw=2049, sector=148, nr_sectors = 1 limit=128
[ 1693.156061][T23716] Buffer I/O error on dev loop0, logical block 148, lost async page write
[ 1694.067533][T23744] loop9: detected capacity change from 0 to 1024
[ 1694.341481][T23750] loop3: detected capacity change from 0 to 256
[ 1694.374320][T23751] netlink: 8 bytes leftover after parsing attributes in process `syz.8.6424'.
[ 1694.383775][T23751] netlink: 'syz.8.6424': attribute type 31 has an invalid length.
[ 1694.406853][T23750] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1694.417852][T23750] exFAT-fs (loop3): Medium has reported failures. Some data may be lost.
[ 1694.441017][T23751] netlink: 8 bytes leftover after parsing attributes in process `syz.8.6424'.
[ 1694.450343][T23751] netlink: 'syz.8.6424': attribute type 31 has an invalid length.
[ 1694.528529][T23750] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x2d0d25cc, utbl_chksum : 0xe619d30d)
[ 1694.570017][T23753] loop0: detected capacity change from 0 to 256
[ 1695.260168][T23766] loop0: detected capacity change from 0 to 1024
[ 1695.403874][T23766] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1696.073394][T23766] EXT4-fs error (device loop0): ext4_xattr_inode_iget:442: comm syz.0.6431: error while reading EA inode 20 err=-116
[ 1696.585165][T23766] EXT4-fs (loop0): Remounting filesystem read-only
[ 1696.592240][T23766] EXT4-fs warning (device loop0): ext4_xattr_block_set:2190: inode #19: comm syz.0.6431: dec ref error=-30
[ 1696.631531][T23765] loop9: detected capacity change from 0 to 65536
[ 1696.640876][T23765] XFS: attr2 mount option is deprecated.
[ 1696.851578][T23765] XFS (loop9): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[ 1697.028178][T20792] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1697.038697][T23765] XFS (loop9): Ending clean mount
[ 1697.055213][T23765] XFS (loop9): Quotacheck needed: Please wait.
[ 1697.085346][T23765] XFS (loop9): Quotacheck: Done.
[ 1697.176707][T22963] XFS (loop9): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[ 1697.858508][T23800] netlink: 'syz.3.6443': attribute type 3 has an invalid length.
[ 1699.009042][ T1293] ieee802154 phy0 wpan0: encryption failed: -22
[ 1699.016566][ T1293] ieee802154 phy1 wpan1: encryption failed: -22
[ 1700.735502][T23823] loop0: detected capacity change from 0 to 40427
[ 1700.749896][T23830] loop3: detected capacity change from 0 to 512
[ 1700.765070][T23823] F2FS-fs (loop0): invalid crc value
[ 1700.894937][T23830] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1701.114763][T23823] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1701.251884][T20792] bio_check_eod: 21 callbacks suppressed
[ 1701.251961][T20792] syz-executor: attempt to access beyond end of device
[ 1701.251961][T20792] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[ 1701.273735][T20792] CPU: 1 UID: 0 PID: 20792 Comm: syz-executor Tainted: G        W           6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(none) 
[ 1701.273913][T20792] Tainted: [W]=WARN
[ 1701.273964][T20792] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1701.274041][T20792] Call Trace:
[ 1701.274090][T20792]  <TASK>
[ 1701.274137][T20792]  __dump_stack+0x26/0x30
[ 1701.274304][T20792]  dump_stack_lvl+0x1df/0x270
[ 1701.274472][T20792]  dump_stack+0x1e/0x25
[ 1701.274613][T20792]  f2fs_handle_critical_error+0xa6f/0xc20
[ 1701.274781][T20792]  f2fs_stop_checkpoint+0x65/0x80
[ 1701.274914][T20792]  f2fs_write_end_io+0xb4b/0x1920
[ 1701.275068][T20792]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1701.275238][T20792]  ? __pfx_f2fs_write_end_io+0x10/0x10
[ 1701.275377][T20792]  bio_endio+0xe27/0xf80
[ 1701.275553][T20792]  submit_bio_noacct+0x214/0x2710
[ 1701.275780][T20792]  submit_bio+0x5a9/0x5d0
[ 1701.275988][T20792]  f2fs_submit_write_bio+0x92/0x250
[ 1701.276183][T20792]  __submit_merged_bio+0x16f/0x6a0
[ 1701.276362][T20792]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1701.276515][T20792]  __submit_merged_write_cond+0x458/0x9a0
[ 1701.276717][T20792]  f2fs_write_data_pages+0x4bb2/0x5480
[ 1701.276968][T20792]  ? kmsan_get_metadata+0xfb/0x160
[ 1701.277108][T20792]  ? kmsan_get_metadata+0xfb/0x160
[ 1701.277249][T20792]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1701.277391][T20792]  ? __pfx_folios_put_refs+0x1/0x10
[ 1701.277546][T20792]  ? filter_irq_stacks+0x49/0x190
[ 1701.277682][T20792]  ? stack_depot_save_flags+0x35/0x7b0
[ 1701.277864][T20792]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[ 1701.278055][T20792]  ? kmsan_get_metadata+0xfb/0x160
[ 1701.278198][T20792]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1701.278341][T20792]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1701.278479][T20792]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[ 1701.278611][T20792]  do_writepages+0x3f2/0x860
[ 1701.278816][T20792]  ? _raw_spin_unlock+0x30/0x50
[ 1701.278988][T20792]  ? wbc_attach_and_unlock_inode+0x131/0x680
[ 1701.279192][T20792]  filemap_fdatawrite+0x207/0x260
[ 1701.279415][T20792]  f2fs_sync_dirty_inodes+0x2ab/0x9e0
[ 1701.279634][T20792]  f2fs_write_checkpoint+0xfe2/0x2b00
[ 1701.279935][T20792]  kill_f2fs_super+0x2ff/0x970
[ 1701.280131][T20792]  ? __pfx_kill_f2fs_super+0x10/0x10
[ 1701.280310][T20792]  deactivate_locked_super+0xc8/0x3c0
[ 1701.280540][T20792]  deactivate_super+0x12f/0x140
[ 1701.280731][T20792]  cleanup_mnt+0x6fb/0x780
[ 1701.280878][T20792]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[ 1701.281076][T20792]  ? __pfx___cleanup_mnt+0x10/0x10
[ 1701.281231][T20792]  __cleanup_mnt+0x22/0x30
[ 1701.281370][T20792]  task_work_run+0x209/0x2b0
[ 1701.281527][T20792]  exit_to_user_mode_loop+0x2a6/0x330
[ 1701.281688][T20792]  do_syscall_64+0x1e3/0x210
[ 1701.281828][T20792]  ? irqentry_exit+0x16/0x60
[ 1701.281946][T20792]  ? clear_bhb_loop+0x40/0x90
[ 1701.282084][T20792]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1701.282230][T20792] RIP: 0033:0x7f012878fcd7
[ 1701.282328][T20792] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[ 1701.282441][T20792] RSP: 002b:00007fff7ca82d68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[ 1701.282560][T20792] RAX: 0000000000000000 RBX: 00007f0128810b55 RCX: 00007f012878fcd7
[ 1701.282646][T20792] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff7ca82e20
[ 1701.282719][T20792] RBP: 00007fff7ca82e20 R08: 0000000000000000 R09: 0000000000000000
[ 1701.282803][T20792] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff7ca83eb0
[ 1701.282881][T20792] R13: 00007f0128810b55 R14: 000000000019f535 R15: 00007fff7ca83ef0
[ 1701.282992][T20792]  </TASK>
[ 1701.648190][T20792] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[ 1702.138696][T23848] overlayfs: failed to resolve './file0': -2
[ 1702.157266][T23850] netlink: 'syz.9.6462': attribute type 21 has an invalid length.
[ 1702.166504][T23850] netlink: 'syz.9.6462': attribute type 22 has an invalid length.
[ 1702.175518][T23850] netlink: 'syz.9.6462': attribute type 23 has an invalid length.
[ 1702.183682][T23850] netlink: 'syz.9.6462': attribute type 25 has an invalid length.
[ 1702.191760][T23850] netlink: 'syz.9.6462': attribute type 26 has an invalid length.
[ 1702.200092][T23850] netlink: 16 bytes leftover after parsing attributes in process `syz.9.6462'.
[ 1702.242491][T20905] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1702.583290][T23857] input: syz0 as /devices/virtual/input/input91
[ 1703.400342][T23861] loop9: detected capacity change from 0 to 4096
[ 1703.729586][T23867] fanotify: failed to encode fid (type=0, len=0, err=-2)
[ 1703.813702][T23861] ntfs3(loop9): ino=5, "/" mi_enum_attr
[ 1707.307652][T23920] loop9: detected capacity change from 0 to 32768
[ 1707.317088][T23920] btrfs: Deprecated parameter 'usebackuproot'
[ 1707.323528][T23920] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[ 1707.338795][T23920] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop9 (7:9) scanned by syz.9.6492 (23920)
[ 1707.372276][T23920] BTRFS info (device loop9): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1707.384283][T23920] BTRFS info (device loop9): using crc32c (crc32c-x86_64) checksum algorithm
[ 1707.393579][T23920] BTRFS info (device loop9): using free-space-tree
[ 1707.584052][ T8851] BTRFS warning (device loop9): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0xc926492d level 0
[ 1707.598278][T23920] BTRFS error (device loop9): failed to load root extent
[ 1707.605923][T23920] BTRFS warning (device loop9): try to load backup roots slot 1
[ 1707.617924][T20720] BTRFS warning (device loop9): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0x80379423 level 0
[ 1707.633279][T23920] BTRFS warning (device loop9): couldn't read tree root
[ 1707.642899][T23920] BTRFS warning (device loop9): try to load backup roots slot 2
[ 1707.651626][T20718] BTRFS error (device loop9): level verify failed on logical 5255168 mirror 1 wanted 0 found 1
[ 1707.662927][T23920] BTRFS warning (device loop9): couldn't read tree root
[ 1707.672826][T23920] BTRFS warning (device loop9): try to load backup roots slot 3
[ 1707.710098][T23920] BTRFS info (device loop9): rebuilding free space tree
[ 1707.740233][T23920] BTRFS info (device loop9): checking UUID tree
[ 1708.094793][T22963] BTRFS info (device loop9): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1709.677544][T23967] loop0: detected capacity change from 0 to 32768
[ 1709.718586][T23967] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1710.337302][T23967] XFS (loop0): Ending clean mount
[ 1710.350657][T23967] XFS (loop0): Quotacheck needed: Please wait.
[ 1710.388721][T23967] XFS (loop0): Quotacheck: Done.
[ 1710.557518][T20792] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1712.143347][T24014] loop3: detected capacity change from 0 to 32768
[ 1712.155541][T24014] ocfs2: Unknown parameter '0xffffffffffffffff����01777777777777777777777��l��6�������|U�m7IØܥ�f/�|~c'
[ 1712.871923][T24018] loop0: detected capacity change from 0 to 40427
[ 1712.889336][T24018] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[ 1712.897525][T24018] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[ 1713.034924][T24018] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[ 1713.385914][T24018] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[ 1713.393453][T24018] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1713.873674][T24026] loop3: detected capacity change from 0 to 4096
[ 1714.018212][T24026] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1714.233056][T24041] overlayfs: failed to clone upperpath
[ 1714.680681][T20905] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1718.246555][T24070] overlayfs: failed to resolve './bus': -2
[ 1719.064110][T24073] loop0: detected capacity change from 0 to 4096
[ 1719.149460][T24073] NILFS (loop0): invalid segment: Checksum error in segment payload
[ 1719.157999][T24073] NILFS (loop0): trying rollback from an earlier position
[ 1719.282074][T24073] NILFS (loop0): recovery complete
[ 1720.063266][T24076] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1720.325132][T24038] Set syz1 is full, maxelem 65536 reached
[ 1721.109547][T24093] loop0: detected capacity change from 0 to 128
[ 1721.142076][T24092] overlayfs: "xino=on" is useless with all layers on same fs, ignore.
[ 1721.218941][T24093] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1721.243274][T24093] ext4 filesystem being mounted at /205/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1721.665778][T20792] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1722.234447][T24102] netlink: 'syz.3.6558': attribute type 10 has an invalid length.
[ 1722.293672][T24102] netlink: 'syz.3.6558': attribute type 10 has an invalid length.
[ 1722.972398][T24106] tls_set_device_offload_rx: netdev not found
[ 1723.857676][   T30] audit: type=1326 audit(2000001421.931:450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24115 comm="syz.0.6563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f012878e9a9 code=0x7fc00000
[ 1724.590103][   T30] audit: type=1326 audit(2000001422.661:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24115 comm="syz.0.6563" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f012878e9a9 code=0x7fc00000
[ 1724.914894][T24130] loop9: detected capacity change from 0 to 128
[ 1724.976687][T24130] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1724.996087][T24133] netlink: 12 bytes leftover after parsing attributes in process `syz.0.6569'.
[ 1725.029422][T24130] ext4 filesystem being mounted at /65/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1725.348039][T22963] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1725.927815][T24144] netlink: 56 bytes leftover after parsing attributes in process `syz.8.6574'.
[ 1726.345652][T24151] Dead loop on virtual device ipvlan1, fix it urgently!
[ 1726.353929][T24151] =====================================================
[ 1726.361175][T24151] BUG: KMSAN: uninit-value in __schedule+0x81d/0x76d0
[ 1726.368347][T24151]  __schedule+0x81d/0x76d0
[ 1726.373218][T24151]  schedule+0x17d/0x3c0
[ 1726.377634][T24151]  schedule_timeout+0x6d/0x240
[ 1726.385204][T24151]  sctp_wait_for_connect+0x477/0x820
[ 1726.390724][T24151]  __sctp_connect+0x1466/0x1570
[ 1726.396656][T24151]  sctp_inet_connect+0x29f/0x320
[ 1726.402248][T24151]  __sys_connect+0x51a/0x680
[ 1726.408047][T24151]  __x64_sys_connect+0x95/0x100
[ 1726.413561][T24151]  x64_sys_call+0x3744/0x3e20
[ 1726.418483][T24151]  do_syscall_64+0xd9/0x210
[ 1726.423420][T24151]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1726.429551][T24151] 
[ 1726.432003][T24151] Local variable acpar created at:
[ 1726.437465][T24151]  ip6t_do_table+0x70/0x2280
[ 1726.442285][T24151]  nf_hook_slow+0xe1/0x3d0
[ 1726.447463][T24151] 
[ 1726.449960][T24151] CPU: 0 UID: 0 PID: 24151 Comm: syz.0.6577 Tainted: G        W           6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(none) 
[ 1726.464050][T24151] Tainted: [W]=WARN
[ 1726.467999][T24151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1726.478322][T24151] =====================================================
[ 1726.488061][T24151] Disabling lock debugging due to kernel taint
[ 1726.495299][T24151] Kernel panic - not syncing: kmsan.panic set ...
[ 1726.501893][T24151] CPU: 0 UID: 0 PID: 24151 Comm: syz.0.6577 Tainted: G    B   W           6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(none) 
[ 1726.515552][T24151] Tainted: [B]=BAD_PAGE, [W]=WARN
[ 1726.520822][T24151] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1726.531062][T24151] Call Trace:
[ 1726.534493][T24151]  <TASK>
[ 1726.537561][T24151]  __dump_stack+0x26/0x30
[ 1726.542136][T24151]  dump_stack_lvl+0x53/0x270
[ 1726.546963][T24151]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1726.553012][T24151]  dump_stack+0x1e/0x25
[ 1726.557436][T24151]  panic+0x4bd/0xd50
[ 1726.561622][T24151]  kmsan_report+0x31c/0x320
[ 1726.566326][T24151]  ? __msan_warning+0x1b/0x30
[ 1726.571181][T24151]  ? __schedule+0x81d/0x76d0
[ 1726.576060][T24151]  ? schedule+0x17d/0x3c0
[ 1726.580661][T24151]  ? schedule_timeout+0x6d/0x240
[ 1726.585850][T24151]  ? sctp_wait_for_connect+0x477/0x820
[ 1726.591574][T24151]  ? __sctp_connect+0x1466/0x1570
[ 1726.596843][T24151]  ? sctp_inet_connect+0x29f/0x320
[ 1726.602164][T24151]  ? __sys_connect+0x51a/0x680
[ 1726.607123][T24151]  ? __x64_sys_connect+0x95/0x100
[ 1726.612351][T24151]  ? x64_sys_call+0x3744/0x3e20
[ 1726.617454][T24151]  ? do_syscall_64+0xd9/0x210
[ 1726.622327][T24151]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1726.628610][T24151]  ? kmsan_get_metadata+0xfb/0x160
[ 1726.633951][T24151]  ? kmsan_get_metadata+0xfb/0x160
[ 1726.639288][T24151]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1726.645350][T24151]  ? is_mmconf_reserved+0x771/0x7b0
[ 1726.650782][T24151]  ? filter_irq_stacks+0x49/0x190
[ 1726.656021][T24151]  ? stack_depot_save_flags+0x35/0x7b0
[ 1726.661727][T24151]  ? kmsan_get_metadata+0xfb/0x160
[ 1726.667078][T24151]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[ 1726.673781][T24151]  ? kmsan_get_metadata+0xfb/0x160
[ 1726.679120][T24151]  ? schedule+0x17d/0x3c0
[ 1726.683701][T24151]  ? schedule+0x17d/0x3c0
[ 1726.688268][T24151]  __msan_warning+0x1b/0x30
[ 1726.693046][T24151]  __schedule+0x81d/0x76d0
[ 1726.697723][T24151]  ? prepare_to_wait_exclusive+0x6a/0x380
[ 1726.703760][T24151]  ? __msan_warning+0x1b/0x30
[ 1726.708666][T24151]  ? kmsan_get_metadata+0xfb/0x160
[ 1726.714042][T24151]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1726.720101][T24151]  ? hrtimer_nanosleep_restart+0xf1/0x140
[ 1726.726101][T24151]  ? filter_irq_stacks+0x49/0x190
[ 1726.731356][T24151]  ? kmsan_get_metadata+0xfb/0x160
[ 1726.736736][T24151]  schedule+0x17d/0x3c0
[ 1726.741147][T24151]  ? schedule_timeout+0x44/0x240
[ 1726.746331][T24151]  ? sctp_wait_for_connect+0x477/0x820
[ 1726.752052][T24151]  schedule_timeout+0x6d/0x240
[ 1726.757100][T24151]  ? _raw_spin_unlock_bh+0x2d/0x40
[ 1726.762496][T24151]  ? release_sock+0x21d/0x270
[ 1726.767373][T24151]  sctp_wait_for_connect+0x477/0x820
[ 1726.772899][T24151]  ? __pfx_autoremove_wake_function+0x10/0x10
[ 1726.779417][T24151]  __sctp_connect+0x1466/0x1570
[ 1726.784506][T24151]  ? kmsan_internal_unpoison_memory+0x14/0x20
[ 1726.790876][T24151]  sctp_inet_connect+0x29f/0x320
[ 1726.796029][T24151]  __sys_connect+0x51a/0x680
[ 1726.800854][T24151]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[ 1726.807513][T24151]  ? kmsan_internal_unpoison_memory+0x14/0x20
[ 1726.813841][T24151]  ? kmsan_get_metadata+0xfb/0x160
[ 1726.819173][T24151]  ? __pfx_sctp_inet_connect+0x10/0x10
[ 1726.824860][T24151]  __x64_sys_connect+0x95/0x100
[ 1726.829966][T24151]  x64_sys_call+0x3744/0x3e20
[ 1726.834916][T24151]  do_syscall_64+0xd9/0x210
[ 1726.839630][T24151]  ? irqentry_exit+0x16/0x60
[ 1726.844410][T24151]  ? clear_bhb_loop+0x40/0x90
[ 1726.849310][T24151]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1726.855428][T24151] RIP: 0033:0x7f012878e9a9
[ 1726.860045][T24151] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1726.879886][T24151] RSP: 002b:00007f0129665038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[ 1726.888503][T24151] RAX: ffffffffffffffda RBX: 00007f01289b5fa0 RCX: 00007f012878e9a9
[ 1726.896638][T24151] RDX: 000000000000001c RSI: 0000200000000300 RDI: 0000000000000003
[ 1726.904762][T24151] RBP: 00007f0128810d69 R08: 0000000000000000 R09: 0000000000000000
[ 1726.912879][T24151] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1726.921008][T24151] R13: 0000000000000000 R14: 00007f01289b5fa0 R15: 00007fff7ca83ad8
[ 1726.929202][T24151]  </TASK>
[ 1726.932814][T24151] Kernel Offset: disabled
[ 1726.937231][T24151] Rebooting in 86400 seconds..