last executing test programs:

7.61287238s ago: executing program 3 (id=885):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000200)='./file0\x00', 0x3200014, &(0x7f00000006c0)=ANY=[], 0x1, 0x626, &(0x7f0000000240)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
getdents64(r0, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x402)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(0x0, r1)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000700)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000380)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="050000000000000000002100000008000300", @ANYRES32=r3, @ANYBLOB="10007d8005", @ANYRES8=0x0, @ANYRES32=r1], 0x2c}, 0x1, 0x0, 0x0, 0x20004080}, 0x0)

6.812406251s ago: executing program 2 (id=888):
pwritev2(0xffffffffffffffff, 0x0, 0x0, 0xe7b, 0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0x40305829, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000002280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',grou', @ANYRESDEC=0x0, @ANYBLOB])
statx(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x100, 0x800, 0x0)
read$FUSE(r0, &(0x7f0000006380)={0x2020, 0x0, <r1=>0x0, 0x0, <r2=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000004300)="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", 0x2000, &(0x7f0000000b40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000a00)={0x130, 0x0, 0x403, {0x1, 0x7, 0x0, '\x00', {0x1, 0xad4, 0x8, 0x8, 0x0, r2, 0x5000, '\x00', 0x1, 0x8, 0x100000000, 0x3, {0x6, 0x6}, {0x20000000000004}, {0x100000000, 0xc}, {0x8, 0xa02}, 0x4, 0x80000b, 0x4, 0x3}}}})
write$FUSE_INIT(r0, &(0x7f0000001200)={0x50, 0x0, r1, {0x7, 0x2b, 0x0, 0x0, 0x0, 0x0, 0x400004, 0x2, 0x0, 0x0, 0x0, 0x9}}, 0x50)

6.274393588s ago: executing program 3 (id=889):
socket(0x9, 0x4, 0x10009)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/vlan/vlan1\x00')
r1 = epoll_create1(0x0)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000380)={0x20000010})
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000040)={0xa})
sendmmsg(0xffffffffffffffff, &(0x7f0000007fc0), 0x800001d, 0x810)
r3 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r3, 0xc0045516, &(0x7f00000001c0)=0x7)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r3, 0xc1105517, &(0x7f0000000340)={{0xfffffffe, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x6, 0x2, 0x4, 0x0, 0x0, 0x0, 'syz1\x00', 0x0})
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0xff, 0x7fff0000}]})
close_range(r4, 0xffffffffffffffff, 0x0)

6.002949757s ago: executing program 1 (id=890):
r0 = syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x402)
ioctl$USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000040)={0x1, 0xb, 0x8, 0x40, 0x0, 0x5, 0x0}) (fail_nth: 3)

5.585284294s ago: executing program 2 (id=892):
r0 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r0, &(0x7f0000001000)={0x2, 0x4e21, @loopback}, 0x10)
sendmsg$rds(r0, &(0x7f0000000180)={&(0x7f0000000080)={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0}, 0x0)

5.266692751s ago: executing program 1 (id=893):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_mptcp_buf(r0, 0x11c, 0x2, 0x0, 0x0)

5.253093792s ago: executing program 3 (id=894):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_mptcp_buf(r0, 0x11c, 0x2, 0x0, &(0x7f0000000000))

5.13436348s ago: executing program 2 (id=895):
dup(0xffffffffffffffff)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r1, 0x2000)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
openat$proc_mixer(0xffffffffffffff9c, 0x0, 0x82000, 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000002280)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x0, 0x0, 0x0)
socket$kcm(0x10, 0x3, 0x10)
read$FUSE(r2, &(0x7f0000000100)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r2, &(0x7f0000002140)={0x50, 0x0, r3, {0x7, 0x8, 0xfffffff4, 0x238d117e436b1559, 0x4, 0x6, 0x86, 0x1, 0xc00, 0x0, 0x20, 0xfff}}, 0x50)

4.907473522s ago: executing program 4 (id=896):
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000940), 0x81000, 0x0)
ioctl$PTP_SYS_OFFSET(r0, 0x43403d05, 0x0)
socket(0x2b, 0x5, 0x200)
sched_setattr(0x0, &(0x7f0000000180)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffd}, 0x0)
ioprio_set$pid(0x1, 0x0, 0x2004)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000002540), 0x2, 0x0)
r2 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
write(r2, &(0x7f0000000000)="bf2e95a079d76acb4f9539525c2f", 0xe)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000a40)={<r3=>0xffffffffffffffff}, 0x111}}, 0x20)
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
socket$packet(0x11, 0xa, 0x300)
r6 = syz_io_uring_setup(0x231, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0x0, 0x1}, &(0x7f0000000000)=<r7=>0x0, &(0x7f0000000100)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0})
io_uring_enter(r6, 0x7a98, 0xf7b0, 0x61, 0x0, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58000000160a034984dbf30000000000020000000900020073797a32000000000900010073797a30000000002c0003800800014000000000040002"], 0x80}, 0x1, 0x0, 0x0, 0x44}, 0x0)
write$RDMA_USER_CM_CMD_QUERY(r4, &(0x7f0000000300)={0x13, 0x10, 0xfa00, {0x0, r3, 0x2}}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000300)='qdisc_enqueue\x00', r9, 0x0, 0x2}, 0x18)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x29, 0x24, &(0x7f00000000c0), 0x4)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f00000007c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1, 0x4}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000780)="f4000900062b2c25fe80000000000000dc8b71d5decf66cc00"/40, 0x28}], 0x1}, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r10, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=@newtaction={0x78, 0x30, 0xb, 0x0, 0x0, {}, [{0x64, 0x1, [@m_ct={0x60, 0x1, 0x0, 0x0, {{0x7}, {0x38, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x6, 0x7, 0x0, 0x0, 0x20000000}}, @TCA_CT_MARK={0x8, 0x10, 0xfffffffe}, @TCA_CT_LABELS={0x14, 0x7, "0feee70ca9233ab46fd70502750a5ede"}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x78}}, 0x10000810)
r11 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/sys/net/ipv4/vs/sync_refresh_period\x00', 0x2, 0x0)
sendfile(r11, r11, 0x0, 0x457)

4.867884179s ago: executing program 1 (id=897):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000000c0)={'vcan0\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f0000000340)={0x1d, r1, 0x0, {0x2, 0x0, 0x6}, 0xfe}, 0x18)
setsockopt$sock_int(r0, 0x1, 0x6, &(0x7f0000000040)=0x1, 0x4)
sendmsg$inet(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000ec0)=[{0x0}, {&(0x7f0000000f00)="a28e4be3c9d25f2ece62ccb995188acdf07ede1f22c11e75", 0x18}, {0x0}], 0x3}, 0x4c805)

4.750235448s ago: executing program 3 (id=898):
ioctl$UI_SET_LEDBIT(0xffffffffffffffff, 0x40045569, 0x7)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_TX_RING(0xffffffffffffffff, 0x11b, 0x3, &(0x7f0000000140)=0x4000, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000280)={'batadv_slave_1\x00'})
r1 = socket$xdp(0x2c, 0x3, 0x0)
mknod$loop(&(0x7f0000000180)='./file0\x00', 0x0, 0x1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={0x0, 0x3c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0xb, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], 0x2, 0x5505, &(0x7f0000002480)="$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")
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@type_tag={0x8, 0x0, 0x0, 0x12, 0x3}, @typedef={0x8, 0x0, 0x0, 0x8, 0xffffffff}, @const={0x0, 0x0, 0x0, 0xa, 0x2}]}}, 0x0, 0x3e, 0x0, 0x1}, 0x28)
setsockopt$XDP_RX_RING(r1, 0x11b, 0x2, 0x0, 0x0)
r3 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$inet_int(r3, 0x0, 0xf, &(0x7f0000d10ffc)=0xfffffffa, 0x4)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000080)=[@in6={0xa, 0x4e24, 0x9, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x2}, @in={0x2, 0x4e24, @broadcast}, @in6={0xa, 0x4e22, 0x90, @loopback}], 0x48)
clock_gettime(0x0, &(0x7f00000079c0)={<r4=>0x0, <r5=>0x0})
write$evdev(0xffffffffffffffff, &(0x7f0000007a00)=[{{r4, r5/1000+60000}, 0x4, 0x2ad, 0xfffffff8}], 0x18)

4.506922713s ago: executing program 0 (id=899):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000200)='./file0\x00', 0x3200014, &(0x7f00000006c0)=ANY=[], 0x1, 0x626, &(0x7f0000000240)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
getdents64(r0, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000000), 0x1ff, 0x402)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(0x0, r1)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000700)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000380)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="050000000000000000002100000008000300", @ANYRES32=r3, @ANYBLOB="10007d8005", @ANYRES8=0x0, @ANYRES32=r1], 0x2c}, 0x1, 0x0, 0x0, 0x20004080}, 0x0)

3.958070604s ago: executing program 4 (id=900):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a20000000000a01040000000000000000010000030900010073797a30000000002c000000030a01010000000000000000010000000900010073797a30000000000900030073797a32000000009c000000060a010400000000000000000100000008000b400000000074000480340001800b000100657874686472000024000280080001400000000c0800034000000000080004400000002205000200070000003c0001800c00010062697477697365002c000280080003400000000208000140000000140800024000000012080007800400010008000640000000110900010073797a30"], 0x110}}, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
setresuid(0xee00, 0xee01, 0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x101000, 0x0)
ioctl$KDSIGACCEPT(r2, 0x4b4e, 0x0)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r4 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
pwritev2(r4, 0x0, 0x0, 0x5412, 0x0, 0x0)
setsockopt$sock_int(r3, 0x1, 0x20, &(0x7f0000000100)=0xbf, 0x4)
ioctl$TUNSETOWNER(0xffffffffffffffff, 0x400454cc, 0x0)
getsockopt$packet_int(r1, 0x107, 0x12, 0x0, &(0x7f0000000080))

3.305498076s ago: executing program 1 (id=901):
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x6, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000040000000000000003000000180100002020702500000000002020209c1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000ffffff7f850000001c00000095"], 0x0, 0x5, 0x0, 0x0, 0x41000, 0x22}, 0x94)
munmap(&(0x7f0000002000/0x2000)=nil, 0x2000)
r0 = syz_io_uring_setup(0x3b, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000100)=<r2=>0x0)
r3 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$vim2m_VIDIOC_CREATE_BUFS(r3, 0xc100565c, &(0x7f0000000240)={0x0, 0x1, 0x4, {0x1, @sliced={0x0, [0x9, 0x401, 0x3, 0x0, 0x4e, 0x3, 0x33cd, 0x400, 0xff, 0xfff, 0xbb8, 0x0, 0x7f, 0x401, 0x3, 0x480, 0x712, 0x1, 0x200, 0x0, 0x7ff, 0x7, 0x3, 0x1, 0x1, 0x8, 0xe912, 0x9, 0x8, 0x3000, 0xc, 0x4, 0x1, 0x28, 0x6, 0xa, 0x4, 0x7, 0x2, 0x6, 0x8, 0x6, 0x2, 0x0, 0x5, 0x6, 0x1, 0x75], 0x400}}, 0xc})
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
syz_io_uring_submit(r1, r2, &(0x7f0000000380)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r4, 0x0, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, &(0x7f00000014c0)=ANY=[@ANYBLOB="1010"], 0x1010}, 0x0, 0xe3d08660d3cd4684})
io_uring_enter(r0, 0x92, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x6, 0xb, &(0x7f0000000380)=ANY=[], &(0x7f0000000480)='syzkaller\x00', 0xc, 0xe4, &(0x7f00000000c0)=""/228, 0x40f00, 0x23, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x55}, 0x23)

3.295234303s ago: executing program 2 (id=902):
pwritev2(0xffffffffffffffff, 0x0, 0x0, 0xe7b, 0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0x40305829, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000002280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_i', @ANYRESDEC=0x0, @ANYBLOB])
statx(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x100, 0x800, 0x0)
read$FUSE(r0, &(0x7f0000006380)={0x2020, 0x0, <r1=>0x0, 0x0, <r2=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000004300)="00e7a0633e8438bafa888b9b02144af32e296a0a01dc194d649b6fa26d6d5e63bac4a04baeeb8aacb22c6eec461b67db6a737737c6d2687acb00572f92e3fdb5d0cb2f11121c557a943020200755bcab77b39c406b733239e2bb1175b9322ba39dc7d67da8f77aed1714dae2e6c24c3ea96be9d151c6ab7b3c54bbe507b8b2461fb4be8dc90042184af6d48f8ace16abb5e3fc943cf61cdb75624a259bdb5f7829b9775820f85f2d1a6ee6c6c2af4fd41ab8a41ecb2612abf13cd2c6f9f3e6db505e4bbe68cc000cf5fa6d5636191a4b366ab59af52132a3f9678d4ed1bd577bacffb3b52850804005eebf3dfa4763168ff30490a11acdbbf4c3312a45f30139f6b72b1e7cdec185006bb30e0e8fa88da2cefc718cae7e9830f7ca101e4e23c6bd16bfacf4a9927fb13af4b79c86ab999beda4ad396abdda354a42fb4ef21d6749175dc21a0cf9191aa4f90d274b50370a580ad8dcd166d2b06c0d8b071973c3fde30f7e2bc371a51ca5866bf8b24eaac75bf482dd4436b214ff62d32e20df223b0b680ede28b3a49e66e330a8a3ecace0db9855d235d5ff23765e742d1a739c2ac8743f4c62664a3b347279da55a1a5b16e1e2828b584a013577d50f890e3894d9e8d6bfccdfb2b70221f12a7fac24b7a8818edce72b65f622c77bf1312771a2c0d805ec9a25c536c91868762032255be78903b77b2c1a773a03996fabba69214e76f5df6df0375b592692a2c3c86c75a3be56fe598ddaea0b9901d20db7e43e128e04e5509283f833c24c625887288459db5727210ba9a301fb8c934dd1d8dca68039fe5b2e1a8d7cdfc6d875e5851098100c3cd42544ed90bb55b58d20a501fabbc485d148c615a3b070fa0520da2ed68ee115a4411d5418b47f3d95616096f67a7a36d68f1e8df82eca8ef96fb4a96b3422fe046a37ea5f5967513a559bd770fecab7228b0692f439765c9e9c6ea4fc608e0b27f9b49064daa2bac06f83f6d87ebc61fa3a29bb5ed39641245ce8cf43770df32a84838802b0827ca5a40e2003915e2ed108a005637bb028d29bd2cfd28a1bd55e67ed1b6b7b72163c27c4b0e36d1b134d6dfdb165a66fb46498fc04bb8053b84098af5b18758631d1318d625a6fa4d3ce5a4d3a90e10c6363a26b5ae96c2d56f87ad21a6118af6847d041f88f852ddc3f250c088ef5cb31198f3ac81cff9a5bab26ed56c09f8416188974e08349f7da28fc754b98c1ac4ea0060ac1e1b1c49f7dbadbc59254b265dc418cab9ac14e2bbecc4c3103543e37984efb1f61315e10d2b422732217d3a9b0cfe4561f3765d3bda60be239e02bdc164dd631582e8c87dd8fa60d63dcf9e7f3dadc4ce5e4433a42425b8ee8cb8a2defab0bf9b6109c90b5655b79b18c06884f2670a985d454e08e54de69f645cb0cbb70620bd988ee717c310ae77b4abe81c01c6e7f47268ee20bc30b9062830917705682eba2c5ef966b877f33294aa5f8b29d3dd5ed92302087f34fa18d19a005de05f925e3e93c8c0f24507ff20cd23d9ae5452c32ff58c78ccdb1ab32c98edfaa6d2c3971934ca8f849ac360c286566eb72b0793f12cef84bd282368d533247ee750f18aeda484167f3d680e4aaa3aa0694441d4ff6a71531f1a30f87eeb71afd04c5d686e1f86f27586f4e2c8ff77c09612ba1af9b3fb93efd31af42f8e0498f35d07c662b743a08f2839cad8f95b90cbb4fc0ed2ca45dd093a549cde4c6ff08ce09a2cbc6f9f78b6f96643357f92f8f403202742057731fd3e343a87c0affe803cfdbddb8c2694ab63f2dc35da705624747e30a943000fc82c40f10e1975d2e2ec15aefd531b6dbc053606b054dc976f44d5b5a5f37e9c08532ce16cf8bca55ab6c814ceb855ab50b8b52620f8645a9dc25fcb732080d84bf39c3ebb235b4d96da527b64ec4b72f69e91d16a4efcaf76f2e1f968ca68a06f60b01ec7becc9ffd7877c0992cb0f80fb3daabc039513896bd7697843be06aba53e7761e11e075c61ef2d897d4d9f90041c14283746feeb3f0d456ba4be27843350fe43e7c1110b4439489139f6dae01c43f23ec71f08d3042663c65e059d368e4e2c6e49de45bf078d3182a1bc1208bc59379e705aa3309579947409f2a8b3d79099c8619f916e7a6fa333d2312a274247156b8c25cbcfcc59ef13339c700f56a8691dff39bd4338789001872c0d90929037dc0ad99b380a6ba73f331f73f9274f4c2bf5233d7482edf37bf6ffed4f2c0ee44a1d57cae0d644f25591dc03bf837571a82d0c31b61be7ff85a5b3843e8f96a50eaa43f5c137ecfc4e4530d08a2afa4ba02fcc50117a4ad0d5862302017639344c82749f673dbd650e49b35302d0acbab45c0973198291bb42b4cfcd3b0c272074341ea8eca19e122cd234da6d41bf5eedb706e16c17687ed8b84db67130796d26b94eac83bbcd785b603242bd6252c155711efd7dd22cc54e1eaf6d910d0f22c701f3d4da0314dd2829c6ee13bbcbd126558b47b8066bf0766c792a012315bd29bfeda8f28a2c1f4e638b701758e19a0e5bd5b4f19048b00a877d956292e345f8a3a8367892f955bcb5e50ca145ec5e2c9309e25941bd277e393aaad38f9b72a42514b27da6856223c37a1fc1327fa760551d3fdeb0b222ab180b16c9eea138cf4f327e88fdfee293c5b6b007028eb796a60772148282dcd17ffc1c90ed8b6540ede933545ed5a5301d6ff39734444ff3d85cda4ac3befa5083a4685e9e231eba4a91a35f4f7f48fd5ac2447c64c010e2a9f8e80691c95460e1995444466ec5f3cd71fe509a26ff0b7f3254bc8c3255e903834e841b37c70b267fb33deb0d1ed4ea84a869453ba508fc255b12cf847103d5195046c930ae4a75c956f22fcfe4186d547686b54bd7a534940d5d62216994eac0e8ed3bd2bd59354e6b9c6b5b10511d54a8b928040f1e1024a423b0cf519fc6e9673df5c48c0778c7edb8fa8d8ace77463a77d2d6313160e1ee72742953e433b6732ced59c93464fd91520847db238610ed0c289fc55647881a7d6257cf28090c75a6f19df079cfd35742a74a5ab270314f7c8039c20ff0f3f543d029b75a741b5dc6425241ac2ffabf1f96288e6d4ba34da09fb6049c2c8753fbd41fdb4bc68c57bf374ef4feb0df00c41319debb26afba2ff39e1799a1c2137f4e920ee5b02d93789b6b0c853e8143dae5b08ee85da2ea7c31803610ce797293ea95c16ade6dae2afb008e59d8b9505737f008b5227df5f1e4eb5d707f502698a17ead9b1f5ec09dff34248ff2fb153dc6df4812e39754a4baa42e1d8b77fbddef3ca091701ac28ae5fd422dbd8db5b122d3965383abc37a52d2fca5ce56eba974dba3d059cefe40e3c35c9daa8ae31198214303c1dcb90d58fc983ccfd504fa43925636f94b128d44e8aa5cd3ecfabd50a84062d03f7508a0575ab65ecc749d3ef566fdbc529a8139b7a7fb3a9bd784df52cddc6f2699044ba47615163fbbe19f3d88d38a8b71fe52b2611ca74341429d1cef1a7e350545be29d2caa560e60352cab074c298c44ca2c07f9795ce52f10aa3e2fcdef371f24e309b19e52218881f25a4674527edbe3b3bd0b9b536d810c6f9500c0c81bcfd9a440dd91c1d35c52758d2b2ae1a8497bb394c4f09d3947cf777727b0d1daf5ac4fe4fa3c247a791702cb84b96321b7fec81bf549d4eb5d6dafe019b26187417c68b064e4308908535a3e77b6cd3e28caaf12d726f15590b7958e40134d045a38cbb689131a7e85532f1c63dd4bac9e4d00645cd7b2b71704563f3738b92044a8153f6ba717800ab7cb238175c376d7add2c5ec38e4c856f1ab9c3ee33f6ca6d576ae908dd290e4bae23470182e253765e04e8eb02a791c4396a511ef467879a9e2818b8a4b1b0b39a6c44e816e3ebf6e3be93929dfcb38d5dad7d20b60215447674d0608b8b02331ac20e57083cb9b4449fecbb149441aea0ad82f00a82d87d743fc80d410922bc20923516885440f43c9f32beb81ce148def6140952583a7825c2d2fe012d52d30ef66d32a8a0864ac5c1737e2506228d41ff0515ee80be4cf012927dde0fd2a07cac68eff8c4437f2844d4df07936fd8753e5909f962c5c767f8719cc295bdfa8a16f3f36ff56e34d7b14b6b8c46d5af248b04a9c5396f84990e23d145670950bce5f5638e5e2cea37c371a4483729338f1305cbb32fa1c05dd9d21d2a69e5fa3abe9a2dad2237be20b4088393c04aa66cf13718de4bffac72f641a8c017a1d5568fa15a6a06e4dc833874ec95af6f115bdadf15179bfc8c4e3e64f26f1299e282c4ab397340934efc1e601afc630fe195e8ae7d8da1310568cab4f2fad085d0ec39710d8b7c812b3fd55c6f50925bcfc90fbcb35b8daa0f1e1f69d82fae2034039f7ad6921694ed48a55a68bc541e6d86f1e33c261a92d48b50eb58a03d8e31b2f6564a4ddc3ee988d0dc47b4b610a9a9dcb87571b5c1edb3362df0ec3d58872157e0f7247dfa8100b4478b705702a5620c9201010f40232327550db333e845dbecd6aadbd0a94c064862b1100b4dd45ece811b8c0275e3753e11b4bcd8bc5ed7668e72afa5bc5cc17b4c313273755f532ecfdefdf2d5c47999453a3b7c158d98332f0bd3a820cfb2c8c3bcd43197e7395a032cec6e41662079f2f654965aebc393e22b5c8516d9b8ad01e33ee481a4ac46a2df304dadeaa9e5274d340aaebe14dcea315fe1279f1a41a5c7aa8c94bf4b3d48757503171f53488e01210145e62c0de7c39737848dbdb1b207d4d33b8de180b020e8a76b1b521905e5e3ce97292f8558fb68efdee774681bfffcf1dc3eef35f660dd1659a32950de2d50e762313beee330d9c2a9fe8ce5e4e61ddd86378d3551335f6ef62053d3b248a8c33a11abdf3f3aa1975a15f4a6957a13d5b12a44d0f2b52b9a2d996e98c630c0f2abca80c7ae89efcf81ae284a0d19582cb1319d207077e5657d245533181ed6e07e0f7647123fc46c37bd75b4f4d181112b4a08acdcf445332cb9dde69a0923dd9244dd2ecd818b19588939922e3b2d8dd9d9fed95fa55b0e4564b38aca2c4d24eebc634664400177fbdeaeb278bb1d8eb11baf4be5c87d4f8d9a855bfa75df4c51fb4eec87a27c59df9a47d82523b08022a1c0fb22ff6f93c3d2cc22a4111a6ec5be428cba33617be65739c2240248f3a02d01ddf2d6aca9e537a2296b16d082d2b868504371dd5e41898885b03ebfaca73b40e8924ece83c1c80de6ce14943e1199c6f81bf359f44c3ed5ae3c6eacb730b1039f0b6555347bd566dfff45a7a2176420ab2b40916a73b66a3ad07af6e1ac5597393d203fa1ad34d4564af956a0a3e2997e27a4e5eff67dd89cce8875d995e00c1858234f149f6ad4cac2b8056966f726df57b8c4ee8f22f23097ba1471b1f1036e3a499400fccdb75b56eb13e9eca1407d5bff4b075b06d00fcbfcafc28431eb33156232e73c6577e3eca437330c494ede57b9609e1f40634918dea767338b5542197410cdc000143ace89ca0b7bf645b3267f74767d7c7fce05d2f59c137204e56bfa711f66903c511f681cf7a1b4f9fc0f42b7c438ff8957e1059375321df5b0c5c884f46d94c21686e1300582d34928bc398653118f79bfeea2e7cfbbf31a7718f4aab50fae57db94203d43e060365c9a7455241be03d82dffc3783d0f6aa170c0866eb0dad07485831526922d8348a7a16e2e9903a2ac93c58c6dce83127fab17703ec004a519ae5675baffb31bf4b52f9ca992a84017a44d68dc693abd829947342f277fdcbc87168bcc03c32b8b1e81a1915af2517c464af07d52b79d1b0e53164c82ba049f81e92ed1dc20a88fd72e9ce7aa4b22a7cc57dc5527d14f62bc29cfc9d57ed26fd523cac39ac00ba12d3a49d694709924275fc0793d56acf9558818dc9eb210749fa5307d45886b879257d627cee0542b51c2ce6ce134100efb47c92456ece5b73cdc051f570810a8d534222649eb56cf73a377162b753de6c282bcd4a25dda21dd10901bd8dfe8fd4ba8a70811c39707beded23dd60f23e2933372e3a6bce099899b07f0a4c4956fd98e956a8649622c77717de099463c0c6c9389ab4a1ae10f8ddd086d876af2943ee0b6b402ae5f89e09922e8c510ec0caa0a83e366e916400bfec88a52ab457037a35ddc6a8e2289c33684a5915c37bf5d227cbc65a737b52bdcb4fbbb7b4e7f965db116b46044d0870846c730dce12e120b1fe6dd5798ced24cad72c59a3f44de4978b8bc05a1dbeb766be6e2abf6ef46c67a58a370e54e92d89e5f44525e82b94a388d8d0cb20c3469a258c1633c9dddb6854aee255f93f59435ff317622f6899250aa185c207644275278580c5d32401741fe264a2e03b80f442ed58fd0704ebac923ac6a5abb7f0c695252f82e3fbcf2b99d721589a8fe3fad4d5926aee3d7bfafb6739e525faae3d25b12841fa2cc61dddc44d36acb9a8b72d60ecdd9c8cf04f9bac341b5e0f9bc59042db8126324888b07afe72b18cce36d61eec975b6b4ef5dc4a16ac14440cf770599bd4db630bd110eb63a03a80cd95c16d314a4de60cc5115bf0754cb7ab84a827ecefafa96069c721a5979f227fdc2467b4cd1975dafb5b28e1d6f3c1c3a2816ad831dd98c1378a03798c128f176426eaa0e361571e758d54bf4ec2c988355f016e16d6cd5cf97bb4891ab33f5623b7e796af313cc7a9e2f9510cd2bead1ea5dd080d9de1f595b2629ebccf69a0feaed3963ae8a6c89edd66fbf6e566379898185828925f8669668d6bddff961b08aaedbbe7fc196931a887ec740da6bcdab8f826a34aa2aa1e406a258558f3baf022a64222df4d6ee8726c79ba3dd6e11a19e4b4bb49b4a8cd99c189e6392f08ad731e415b65d0ccb919dca46efe9f79e21437111ab09e926d3038182044ae047bf1cc92e2d2644c528985719667a1a8abaf65d0f211172ea789b2fa016e1a88325d1ed706239da4dbb9e2079e3598b4ae5885667587ba1e0921c9ba55d7a3be4c47bc2f2f3547ce9efe32e5a22855f761bd4cbe1cd9337eda4bd7d82a918084d7e116b656104ca87e64b1b8c62323c3c296c5b5b98051feb607b872edf9f789744aff710c4b7279711182bcac6b76c05f5cd982f52f451e7e29046550e012e01d8cdd3e305427030f4247488c9136303084c12175c5c781cdd08aede5a356ea0ccdd05a460be3c7b4bfd62c3ce9ab68e285a36c1546d0b18edad71f69f5bedb340772e1bbb035514b085067259e39f59dc292a12557350c66904b253efee29a5eb7a6920f583c899dc46a1d3e2af2db3a3d1a0e8d1f98722a16c6cc1e401058d60c8c436d8f1166ba53bdde5810f9d0288528affd486c266546a864c92af3df8abd451cc1e0d6bfea534865cea9d49b3ea5e390fa823118df8a61e31022f5fbb8ceee870bf2e60890263c4d14e24d053d0fddf665ff80a66fa00a5957f8a30fe82a4b82cf2f6b4d49def98f66bfcdaa0aef13314e950ca9f3849b1edf3b82eaf74a0dbcf45c3dba9bd2d853281a78484f1efaf4150da1207ec3cb61fbcbf759f8182b7052b28d7164b73197b0a440759fe9d5ddf827f1897a174e82fb968a9a07c61bee44bc1f7f9ee5c6de04c02d57735c5fab741b36aec7c8642e56cba932a08b8e8a9d3eb066a4ee7cbf22e5abbd4346de59eca1f24ad9f7f9ff7621e5f30dd08f4cddda8e80e496908109f5212a72bab1378d1237def07bdda4178719975346c68405de15153031fb17535894e5e3c1de6fdd507333f0226b78ba7cae509cfb48d6735ede9392650bf85ac1db919b1e9fe0a823119d8253204dbb2f7a8f524be6d419f3a45c5051a7a88ef0bd41586d90c11a894d647f03895f671a6e19f1c70e32668653aba8366a3d372522f49844081a9637db080663ab02f4a8af502955d5411461b62f85308c91852f8fb9f0bdddd500b4a133791d3a2f91a82dc4b09f5ad2196a9172ab0cd3fafe7266e9f6d159110d99ca8da8a34b17be17a04ad4509a9fffab1e45e10f10e0cf9cfbd9c761ad044064c07e473fdc626289cfb88b13a11455c069b70aa02426d9119ac878a14c9483be9c0d5bcbb5fa76c8d06531f59c7cf7c26372e750e2f332418ca769e5e7fbeb3ada7bb58b573a0635e2e3ad9a53ddb809ea01086a3fa993ad57e89da6f9c5e61bd0f8ba69212a386b2aa1ae17520d7fb989dbe14021885eb50fa3048aebd42c861a09a308b660d382c0480ead8a52a1e14927c7c77957f94bb59ccfd557f8c4a7af23360a298a603d20ebc386db041d8c306b3e32b0bff541bdec5ff75c3b40950815cf9f89d48a382f67e44c409d046c01fb1262aca0df6f5238a3c3c09977261494f7361ba326815d6e23f49e4d6d4b54665081067332265fff59cf54af9da0db9d19bc611cbcb6e6f3f1e2e1ffb6cdd6253578d78d06a2ff5f9250f1994c5749e3ce49231fbd63bba28e948f9150933e3ae31299babaa41043b181a100882e613b4b4b8f49ceeb742d22f860853a9b917f5a323a8a1fb1f3363a7be4407fba44b408f259b5db79a055b92ce3d7a0649cc59f4afa2b1f69959d5c6f5eef1fa7987a47bee4491f685c52e9db1ee1a231ab5a4bae1019c97868a409dd0d57b32525394a233023c4a7ac429808bbcb57a34b41883202744c3bdebc0a637773273f19c2be6e806bef7fc1002846db762ee4e16867773808c5477987d5851d5b1641d070feabc203cb3d7943ffb206272fcac1bccb616352d85975f5a22c0f247548535ad9fb83fb2be17689453f10691143c060cd964df63c3c70e7b1cfc7e2b468015f327f9869353477bfeeed330b03ddd9e4e0a2441182244da283d7a59d2b2b20e6de3e3a47c26aeef4944c1190bba674523a6c3c4ed6bac53b9edffcb0e9fb19d8bf36949d03ef6a7e59eb903a00d9614f642d1932c766421906f5b177963c71e881453560e3ffcec792e8dc46b1832a8fcb2ab2268a9c1fb648d1c6fa1c8cbd50d5a2d8264fbc6c063e6daac5519d362da389dcd3d12c8039f991de91e728abf5bab95c3aef66dd8cc36c60e73cb10afb02eff6df20ff12c59b142b07fc48fe94612de80b8b958f78256fd7cf3c6f79a83867f3bb5f70da392957badadecefdf7b6e4ebd39ff945397c7d302ca0a5a3918d8abb893cd9cdd680916a50fe19699ff0476ad82e6ba46523f26ccc5eb65313c1df1077c8876d2b73bf86ba311862d12b0c557a92ef827197121512e87f817167d4b17c7e225a48b3f8fbbf4187438e0e9b78e905cdbeb72e80dfb37ec0104f5186b39b4ff34f0cdf4b74dc915acd3f98874cd6a67308d0ad9697121ac477550b1affe004f433705933f9647522be65cb5a7471120ec942aeb956f195be0c1783102cf7d842f2968222ae1a7fa6513f200d3fa85d71724956ed697f0673ee3b40a4d46ba4850439ec125b708ed52b52b9f72906477d520c90a9f5dd49a7a33a328137a183f439895532b78ae451a8c3db789bc862fbc37241d523027e1a008629c969380f6eb55f9cf3f0675bca6851f00df6aaf90de9f62d5c179945ef81d1073850301f97e379ea415d830e3f3751cf83e2dba541cb6cdd89e6b674f2c53e329e5f3dd418d534ada6469a5b3bca5b7cfbdfdd6df4abaf77d4520d0311e801145c91b52586a56086e663841b702f52cef9fff8cfb7b33dfa125688ba6b4fadd1dca8defaf4259ca85323b23d3bbb45933562c25af3e8d7bc6ad4a50ae974f8d207994b3bd74a6812ab6a40fcaf96bb4e17bd20d742b14c72226caef3e0f5c56c4930071e9f9a894f18650fbb785c6f707605c86b634c9722c8690cf3a954f68d7c2db3a257339ade67a41259f6f878dd0ab7876deffa77f6f00819282a8f4c4da84c6cf4f335cd0410770a2b1a1fbb3f85f4489eeceb78bbfddb2d1866c57b41f6ed179a0bc3750a486403d23473f2feef43ebc5af1018d9c20089e277d77fb9c34f425c8f8af4c49864b57572fa8c232e61ef37194251a1ddc2f73ffecd57e638751cb72bcb2c40d22540166ca1e8588f24b010c9fbd962e3a2c23a7e93f131df61b8703ce326ed80cc87912d3c6aaa27574bbe8d65bcaecd660c31cead132a44b1d0e4a53cacc0b82a263c4e7783944af0af08ea9e68e8e25ed9111cfef841f1b2fd24164f9097f70efe09b1109e5cb91fe68a2760381fd63a7fd422dd578a60661abc9ee3a5db1c2cde2fb21f2040f1ed3fc27b99e254256949d0560e8b98fa028fca50768caa951a87bf8969af498d50a9ee773c9caa7d9f7d8e1955506013f198cda316d79b177e59f233b98f727afd2494fc18642f0015adab756ea6742690c7d00f28655b915ce4eb8b3ba2e8559ba23e1ff1ccc9f79ae2df85f924459c56715dec78ef4592352eb1a850cd65ecd36e1a9121e888586b7b2fa84da920b8cf44480433e61ab076b10171c0537524bb170a4b99b0b0c437418a665b7ef909652b6483b20362e557c1480c2a2a0efa221fc59054a48122b52d38245f9bd026001635be5b155f5c766a59306fbde231fa72b4d74449a2fe8fb969496ee26af5881adaafb4189b439877ab8f78709cfd32c10ea576a010bfc137b7a4aae137ea3d29070ce3bc8dbe6655e967115ca3461ad9d28b9cf8af07441e68a54ec5e889846f3978f07ba51f7d5af5da78c5c675dc5d0c1a4a399ff4247203573a46fb903eaf7bc886e6cbd3126fa4a3fe3bb13bbdfea7da871f6563aa750f6ad7895b34b2809563dcf5ed30f1c60cef4138aa49d4f55e396534ed10cf4d857723a2b442f47d79de162c30ec6c4daf939b4c88649494e3682d1da81b4a5928d8e18a16c46707a685305e592589acb484e28e9d5af89c44b6e563d125ec97c0155410527406d94b90bc9576a662db99da1cb82b04d610d02187ce08f22ea0e8fd31919d53fa6aaf980e31ca7f8610e695a41919c24136a8406c62d5f15fca36507002b54ece17664b5247583ad60d863f283f3c288946139575dcaedc978762e85f534e56334ef0221c34ffae054ddf79339b8f08701e9699b11041df8f518dd33203363c8098fbefb01555bcc2542422777b38d8dff11b15aadb0c251ce2c5b32f8735b3cb784f2e5731b48feb5a0e791a1106abdea0f7d1f087737cbe7fdf523fa14c9be2a2987511004c5b7ac1814ef6961db16799698242452c469a07c30e4a1f73193c74a41bdd88aef50035e4648bc9dfa276951798420a45e4085932bdb9381af3cc4678bd962af616549e4020d2c9fd25e2117a6d8934fde2218273d7833d60ea492e251417a27e7fb32012a940a6b6487af4b64958bf05f1b1107732149d227eeda5ca5a43cf583dc297d66072a1acd75e93a7caefd36a0d581e21d5cb08654c4ecef46ebac5391546e0b7d2a6418548d8f816446bcf237f676e873e6bae9107234abe5ab24c53ea472ad10653cef068fd9f4e729fc0d526e489f8df13af5575f1e70e0ec22899728b0659d70fc2dd509d9df3ec170638f89e540f4d3f02aa9b1b1819f84da596e0d7b45a5818061728f8eeccd2bea0f460dd7e18cb95f2364c50e351f0690e184eb63ebbb14a0b4b2117e44f3b2b3", 0x2000, &(0x7f0000000b40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000a00)={0x130, 0x0, 0x403, {0x1, 0x7, 0x0, '\x00', {0x1, 0xad4, 0x8, 0x8, 0x0, r2, 0x5000, '\x00', 0x1, 0x8, 0x100000000, 0x3, {0x6, 0x6}, {0x20000000000004}, {0x100000000, 0xc}, {0x8, 0xa02}, 0x4, 0x80000b, 0x4, 0x3}}}})
write$FUSE_INIT(r0, &(0x7f0000001200)={0x50, 0x0, r1, {0x7, 0x2b, 0x0, 0x0, 0x0, 0x0, 0x400004, 0x2, 0x0, 0x0, 0x0, 0x9}}, 0x50)

3.286359174s ago: executing program 0 (id=903):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000000)=ANY=[@ANYBLOB="1400000010000100000000ff000000000000000a48000000030a01030000000000000000050000000900810073797a3000de00000900030073797a300000000014000480080002400000001208000140000000000800054000000000140000001100010000000000000000000000000a9d5e11d7db4289c37c994479ae9b1b335a4597382e44bf155cd7c3a62016b477bd90fbd8f628988a2fa576e6df091a87354ed9834aa059234ac1026aeb5081a8f5f91ad20051bf0dce7fed1ac4846c020089c82f0b000000a4a5271b467c69da306c3c90217ce9d50d9d121053496398f61976fa44739c75b8c08844bf5a330dd9ef4cfad59dd1539d58bcd98c355d8f052fd3f739609c00ec0a6e2d724db9000000000000000000001cb656d0656760eb87e829433b698bf03dd1a90485f2fa1e39bea8b406c736cdbe358721e8587c4119c04c6220aaadaa3a7fac8e24071fe233a42c270906d8fbe8dfda49963c87608399ec779a97f9254b7332cc6d8a922b96a41e5b8b3a2791783f5ac3c92b259e8764d6684463ad9411a9637ec049f730a4d7fe9e821ec9513880504141955d34597afea8394db690b57dad6ab3000000c8c62e85aec0694dd22aaab0e01ccd50647ca342315a474c2faac4bbe19c4032439fc3abb3b7556c665bcf9a2183859667432158e901bf9396d2a384b735ba8c05aeace884f4e0871ec61ab2649f77935509be73421cb3cc75ccbc0d343db80906792cb3ae73e6d768b57e364377f2b44e6fd2d735cc19a79b0c1669eb43ff497f9ede97eca854c2d37dea21e5513f37bf8533b2e5ee0aead33006ed7847bdc4ae866984a9bc268dc34aedd6a46226d434a0f8cadd62f18293914e8c0ec0d3ad95716a58435e39c86ee647"], 0x70}}, 0x8000)

2.859769707s ago: executing program 4 (id=904):
socket(0x9, 0x4, 0x10009)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/vlan/vlan1\x00')
r1 = epoll_create1(0x0)
r2 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000380)={0x20000010})
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r0, &(0x7f0000000040)={0xa})
sendmmsg(0xffffffffffffffff, &(0x7f0000007fc0), 0x800001d, 0x810)
r3 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r3, 0xc0045516, &(0x7f00000001c0)=0x7)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r3, 0xc1105517, &(0x7f0000000340)={{0xfffffffe, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x6, 0x2, 0x4, 0x0, 0x0, 0x0, 'syz1\x00', 0x0})
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0xff, 0x7fff0000}]})
close_range(r4, 0xffffffffffffffff, 0x0)

2.484286814s ago: executing program 0 (id=905):
mmap(&(0x7f0000ff4000/0xc000)=nil, 0xc000, 0x1000003, 0x20031, 0xffffffffffffffff, 0xffffe000)
mlock2(&(0x7f0000ffa000/0x2000)=nil, 0x2000, 0x1)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
bind$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x1, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x0, 0x2}, 0xe) (async)
bind$bt_l2cap(r1, &(0x7f0000000000)={0x1f, 0x1, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x11}, 0x0, 0x2}, 0xe)
bind$bt_l2cap(r0, &(0x7f0000000340)={0x1f, 0x1, @none, 0x0, 0x1}, 0xe)
syz_clone(0xe200, 0x0, 0x0, 0x0, 0x0, 0x0) (async)
syz_clone(0xe200, 0x0, 0x0, 0x0, 0x0, 0x0)
mlock2(&(0x7f0000ffc000/0x3000)=nil, 0x3000, 0x0)

2.355508326s ago: executing program 2 (id=906):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f000000c280)={&(0x7f0000000380)={{0x14}, [@NFT_MSG_NEWCHAIN={0x48, 0x3, 0xa, 0x301, 0x0, 0x0, {0x5}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x12}, @NFTA_HOOK_HOOKNUM={0x8}]}, @NFTA_CHAIN_POLICY={0x8}]}], {0x14}}, 0x70}}, 0x8000)

2.215906672s ago: executing program 1 (id=907):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x88}, 0x0)
syz_mount_image$squashfs(&(0x7f0000000300), &(0x7f0000000000)='./file1\x00', 0x200009a, &(0x7f00000029c0)=ANY=[@ANYBLOB="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"], 0x5, 0x1b8, &(0x7f0000000140)="$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")
stat(&(0x7f0000000440)='./file1\x00', 0x0)
r0 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000000c0), 0x4)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000680)={r0, 0xe0, &(0x7f0000000580)={0x0, <r1=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000840), ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, &(0x7f0000000780), &(0x7f0000000740)=[0x0, 0x0, 0x0, 0x0], 0x0, 0x5e, &(0x7f0000000480)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f0000000340), &(0x7f0000000500), 0x8, 0x70, 0x8, 0x8, &(0x7f00000004c0)}}, 0x10)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0xfffffffffffffffe)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdir(0x0, 0x0)
newfstatat(0xffffffffffffff9c, 0x0, 0x0, 0x4000)
mount$9p_fd(0x0, 0x0, 0x0, 0x18004, &(0x7f0000000380)=ANY=[@ANYRESHEX, @ANYBLOB, @ANYRES32=r1])
keyctl$chown(0x4, 0x0, 0xee01, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$NLBL_CIPSOV4_C_REMOVE(r2, &(0x7f0000000800)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000400)={&(0x7f0000000a40)=ANY=[@ANYBLOB="64020000", @ANYRES16=r3, @ANYBLOB="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"], 0x264}, 0x1, 0x0, 0x0, 0xc041}, 0x400c0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x143042, 0x0)
r5 = epoll_create1(0x0)
fsetxattr$trusted_overlay_origin(r4, &(0x7f00000006c0), &(0x7f0000000700), 0x2, 0x1)
r6 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_DEVCONFIG(r6, 0x40946400, 0x0)
ioctl$COMEDI_DEVCONFIG(r6, 0x40946400, &(0x7f00000000c0)={'8255\x00', [0x4f27, 0x5, 0x4, 0x401, 0x1, 0xcc7, 0xfff, 0x5c952399, 0x0, 0x3ff, 0x2, 0x300, 0x1, 0x1, 0x6, 0xe1cc, 0x0, 0xe0000000, 0x3, 0x1ff, 0x80000089, 0xfffffffd, 0x0, 0x20001e56, 0xffffeadb, 0xffffffff, 0x3d, 0x8, 0x4, 0x7ff, 0xdffffffa]})
ioctl$FS_IOC_SETFLAGS(r5, 0x40088a01, &(0x7f0000000000)=0x100)
fanotify_init(0xf00, 0x0)
r7 = syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301)
ioctl$USBDEVFS_IOCTL(r7, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r7, 0x80045505, &(0x7f0000000040)=@usbdevfs_connect)
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x8008000000010, &(0x7f0000000000)="17000000010001000003d68c5ee17688a2002b08030300c7ccd43f3bb0d1ec973a40895aea2922ecff3f0000000300000a0000000098fc5ad9485b0000880000d6a6f4605fa9ef4609ad392e72c8db0000dba67e06000000e28900000200df018000000000f50607bdff59100ac45761547a681f009cee4a5acb3da400001fb700674f00c88ebbf9315033bf79ac2dff060115003901000000000000ea000000000000000002ffff02dfccebf6ba0008400200000000e905", 0xb8)

1.58197707s ago: executing program 3 (id=908):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_mptcp_buf(r0, 0x11c, 0x2, &(0x7f0000000100)=""/222, 0x0)

1.525631245s ago: executing program 2 (id=909):
unshare(0x20000400)
r0 = socket$igmp(0x2, 0x3, 0x2)
getsockopt$MRT(r0, 0x0, 0xd1, 0x0, 0x0)
syz_usb_connect(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x250, 0x29, 0x4e, 0x76, 0x10, 0x6cd, 0x202, 0xf498, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x7, 0x6, 0xd0, 0x6, [{{0x9, 0x4, 0x4f, 0x6, 0x2, 0x81, 0x6a, 0x2, 0x0, [], [{{0x9, 0x5, 0xf, 0xc, 0x200, 0xfd, 0xd6, 0x3}}, {{0x9, 0x5, 0xeac52930e4ba5b07, 0x13, 0x200, 0x40, 0x81, 0x2}}]}}]}}]}}, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0})
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000000e00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x31)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000680)={&(0x7f0000000000)='tlb_flush\x00', r1}, 0x10)
modify_ldt$write(0x1, &(0x7f0000000240)={0x0, 0x0, 0x1000}, 0x10)
modify_ldt$write(0x1, &(0x7f0000000000)={0x0, 0x1000, 0xffffffffffffffff, 0x1, 0x0, 0x1, 0x0, 0x1, 0x0, 0x1}, 0x10)
socket$tipc(0x1e, 0x2, 0x0)

1.36119723s ago: executing program 4 (id=910):
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000940), 0x81000, 0x0)
ioctl$PTP_SYS_OFFSET(r0, 0x43403d05, 0x0)
socket(0x2b, 0x5, 0x200)
sched_setattr(0x0, &(0x7f0000000180)={0x38, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xfffffffd}, 0x0)
ioprio_set$pid(0x1, 0x0, 0x2004)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000002540), 0x2, 0x0)
r2 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
write(r2, &(0x7f0000000000)="bf2e95a079d76acb4f9539525c2f", 0xe)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x1, &(0x7f0000000a40)={<r3=>0xffffffffffffffff}, 0x111}}, 0x20)
r4 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
socket$packet(0x11, 0xa, 0x300)
r6 = syz_io_uring_setup(0x231, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0x0, 0x1}, &(0x7f0000000000)=<r7=>0x0, &(0x7f0000000100)=<r8=>0x0)
syz_io_uring_submit(r7, r8, &(0x7f00000009c0)=@IORING_OP_WRITE={0x17, 0x0, 0x0, @fd_index=0x3, 0xffffffffffffffff, 0x0})
io_uring_enter(r6, 0x7a98, 0xf7b0, 0x61, 0x0, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58000000160a034984dbf30000000000020000000900020073797a32000000000900010073797a30000000002c0003800800014000000000040002"], 0x80}, 0x1, 0x0, 0x0, 0x44}, 0x0)
write$RDMA_USER_CM_CMD_QUERY(r4, &(0x7f0000000300)={0x13, 0x10, 0xfa00, {0x0, r3, 0x2}}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000300)='qdisc_enqueue\x00', r9, 0x0, 0x2}, 0x18)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x29, 0x24, &(0x7f00000000c0), 0x4)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={&(0x7f00000007c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1, 0x4}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000780)="f4000900062b2c25fe80000000000000dc8b71d5decf66cc00"/40, 0x28}], 0x1}, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)
socket$nl_route(0x10, 0x3, 0x0)
r10 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000380)='/proc/sys/net/ipv4/vs/sync_refresh_period\x00', 0x2, 0x0)
sendfile(r10, r10, 0x0, 0x457)

1.224544231s ago: executing program 0 (id=911):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00', r2}, 0x10)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)=@newtaction={0x8c, 0x30, 0x1, 0x0, 0x0, {}, [{0x78, 0x1, [@m_ct={0x2c, 0x2, 0x0, 0x0, {{0x7}, {0x4}, {0x4, 0x2}, {0xc}, {0xc}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0xfffffffffffffffe, 0x4}}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0x8c}}, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000500)='\x00', 0x101000, 0x110)
connect$can_bcm(r0, &(0x7f00000000c0), 0x10)
r3 = socket(0x10, 0x3, 0x0)
sendto$inet6(r3, &(0x7f0000000000)="7800000018002507b9409b14ffff00000202be04020506056403040c5c0009003f0020010a0000000d0085a168216b46d32345653600648d27000b000a00080049935ade4a460c89b6ec0cff3959547f509058ba86c902007a00004a32000402160008200800000000", 0x69, 0x0, 0x0, 0x0)

1.067164419s ago: executing program 3 (id=912):
r0 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f00000000c0)={'vcan0\x00', <r1=>0x0})
bind$can_j1939(r0, &(0x7f0000000340)={0x1d, r1, 0x0, {0x2, 0x0, 0x6}, 0xfe}, 0x18)
setsockopt$sock_int(r0, 0x1, 0x6, &(0x7f0000000040)=0x1, 0x4)
sendmsg$inet(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000ec0)=[{0x0}, {&(0x7f0000000f00)="a28e4be3c9d25f2ece62ccb995188acdf07ede1f22c11e75", 0x18}, {0x0}], 0x3}, 0x4c805)

969.507407ms ago: executing program 1 (id=913):
dup(0xffffffffffffffff)
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x13, r1, 0x2000)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000002280)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x0, 0x0, 0x0)
socket$kcm(0x10, 0x3, 0x10)
read$FUSE(r2, &(0x7f0000000100)={0x2020, 0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r2, &(0x7f0000002140)={0x50, 0x0, r3, {0x7, 0x8, 0xfffffff4, 0x238d117e436b1559, 0x4, 0x6, 0x86, 0x1, 0xc00, 0x0, 0x20, 0xfff}}, 0x50)

665.095753ms ago: executing program 0 (id=914):
r0 = socket$igmp6(0xa, 0x3, 0x2)
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000040)=0x4)
ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000080)={@ipv4={'\x00', '\xff\xff', @remote}, 0x7b, r1})
r2 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r2, 0x1, 0x11, &(0x7f0000000240)={0x0, <r3=>0x0}, &(0x7f0000000280)=0x5)
setuid(r3)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)=@newlink={0x40, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x137b}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x10, 0x2, 0x0, 0x1, [@IFLA_GENEVE_REMOTE={0x8, 0x2, @broadcast}, @IFLA_GENEVE_COLLECT_METADATA={0x4}]}}}]}, 0x40}}, 0x20048840)
mount$overlay(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140), 0x1a01090, &(0x7f00000003c0)={[{@index_on}, {@uuid_auto}, {@redirect_dir_off}, {@metacopy_on}, {@userxattr}, {@uuid_auto}, {@index_on}, {@uuid_off}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_auto}], [{@uid_gt={'uid>', r3}}, {@smackfsroot={'smackfsroot', 0x3d, '\xff\xff'}}, {@euid_gt={'euid>', r3}}]})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x1, 0x1, &(0x7f0000000640)=ANY=[@ANYBLOB="6f30000002000000"], &(0x7f00000002c0)='GPL\x00', 0xf}, 0x94)
setsockopt$sock_timeval(r4, 0x1, 0x42, &(0x7f0000000180), 0x10)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f000000af00)=[{{&(0x7f0000002700)={0xa, 0x4e22, 0x5, @mcast2, 0x401}, 0x1c, 0x0, 0x0, &(0x7f0000002c40)=[@dstopts={{0x18, 0x29, 0x37, {0x21}}}, @flowinfo={{0x13, 0x29, 0xb, 0x7}}], 0x30}}], 0x1, 0x40000)

565.148508ms ago: executing program 4 (id=915):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=@newlink={0x7c, 0x10, 0x401, 0x0, 0x4000000, {}, [@IFLA_LINKINFO={0x5c, 0x12, 0x0, 0x1, @ip6erspan={{0xe}, {0x48, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x14, 0x18, @loopback}, @IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_ERSPAN_VER={0x5, 0x16, 0x2}, @IFLA_GRE_LOCAL={0x14, 0x6, @private1={0xfc, 0x1, '\x00', 0x1}}, @IFLA_GRE_TTL={0x5, 0x8, 0x7}, @IFLA_GRE_ENCAP_DPORT={0x6, 0x11, 0x4e23}]}}}]}, 0x7c}}, 0x0)

209.532765ms ago: executing program 0 (id=916):
pwritev2(0xffffffffffffffff, 0x0, 0x0, 0xe7b, 0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0x40305829, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000002280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_i', @ANYRESDEC=0x0, @ANYBLOB])
statx(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x100, 0x800, 0x0)
read$FUSE(r0, &(0x7f0000006380)={0x2020, 0x0, <r1=>0x0, 0x0, <r2=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000004300)="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", 0x2000, &(0x7f0000000b40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000a00)={0x130, 0x0, 0x403, {0x1, 0x7, 0x0, '\x00', {0x1, 0xad4, 0x8, 0x8, 0x0, r2, 0x5000, '\x00', 0x1, 0x8, 0x100000000, 0x3, {0x6, 0x6}, {0x20000000000004}, {0x100000000, 0xc}, {0x8, 0xa02}, 0x4, 0x80000b, 0x4, 0x3}}}})
write$FUSE_INIT(r0, &(0x7f0000001200)={0x50, 0x0, r1, {0x7, 0x2b, 0x0, 0x0, 0x0, 0x0, 0x400004, 0x2, 0x0, 0x0, 0x0, 0x9}}, 0x50)

0s ago: executing program 4 (id=917):
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
write$cgroup_pressure(0xffffffffffffffff, &(0x7f0000000080)={'some', 0x20, 0x2000000005, 0x20, 0x10000000fffff}, 0x2f)
syz_open_dev$sndctrl(&(0x7f0000000040), 0x2, 0x0)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue1\x00'})
write$sndseq(r0, &(0x7f0000000080)=[{0x84, 0x77, 0x0, 0x0, @time={0x10000, 0x1}, {}, {}, @raw8={"f82adb20b2413951abee003c"}}], 0xfffffef8)
r1 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000340), 0x40000, 0x0)
r2 = io_uring_setup(0x664d, &(0x7f0000002ec0)={0x0, 0x9645, 0x80, 0x1, 0x4, 0x0, r1})
r3 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r3, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
r4 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r4, &(0x7f0000000240)={&(0x7f0000000080)=@name={0x1e, 0x2, 0x0, {{0x41}}}, 0x10, 0x0, 0x0, 0x0, 0x0, 0x801}, 0x4000045)
syz_mount_image$udf(&(0x7f00000004c0), &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000340)=ANY=[], 0x1, 0x489, &(0x7f0000000580)="$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")
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002f40)={0x18, 0x36, &(0x7f0000002e00)=ANY=[], &(0x7f0000002e00)='syzkaller\x00', 0xc, 0xff6, &(0x7f0000001e00)=""/4086, 0x41000, 0x73, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xc7}, 0x94)
r5 = open(&(0x7f0000000080)='./bus\x00', 0x62142, 0x0)
setrlimit(0x1, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff})
pwrite64(r5, &(0x7f0000000300)='_', 0x10000000, 0x10000000005)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup/cgroup.procs\x00', 0xa000, 0x1da)
read$FUSE(r6, &(0x7f0000000080)={0x2020}, 0x2020)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r7 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r8 = openat$cgroup_procs(r7, &(0x7f0000000040)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r8, &(0x7f00000000c0), 0x12)
close_range(r2, 0xffffffffffffffff, 0x0)
ioctl$vim2m_VIDIOC_REQBUFS(0xffffffffffffffff, 0xc0145608, &(0x7f0000002e40)={0x1, 0x3, 0x2, 0x0, 0x7e})
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r9 = fanotify_init(0x200, 0x0)
r10 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000b00)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)
fanotify_mark(r9, 0x101, 0x10, r10, 0x0)

kernel console output (not intermixed with test programs):

56380][ T7301]  ? kmsan_get_metadata+0x20/0x160
[  396.256613][ T7301]  __x64_sys_fanotify_mark+0xf3/0x1a0
[  396.256875][ T7301]  x64_sys_call+0x3000/0x3e20
[  396.257094][ T7301]  do_syscall_64+0xd9/0x210
[  396.257279][ T7301]  ? irqentry_exit+0x16/0x60
[  396.257447][ T7301]  ? clear_bhb_loop+0x40/0x90
[  396.257622][ T7301]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  396.257789][ T7301] RIP: 0033:0x7fe4bf78ebe9
[  396.257909][ T7301] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  396.258061][ T7301] RSP: 002b:00007fe4c052a038 EFLAGS: 00000246 ORIG_RAX: 000000000000012d
[  396.258214][ T7301] RAX: ffffffffffffffda RBX: 00007fe4bf9b5fa0 RCX: 00007fe4bf78ebe9
[  396.258330][ T7301] RDX: 000000000800003e RSI: 0000000000000001 RDI: 0000000000000004
[  396.258429][ T7301] RBP: 00007fe4c052a090 R08: 0000000000000000 R09: 0000000000000000
[  396.258530][ T7301] R10: 0000000000000005 R11: 0000000000000246 R12: 0000000000000001
[  396.258622][ T7301] R13: 00007fe4bf9b6038 R14: 00007fe4bf9b5fa0 R15: 00007ffe9fab5698
[  396.258774][ T7301]  </TASK>
[  396.598569][ T7304] use of bytesused == 0 is deprecated and will be removed in the future,
[  396.615930][ T7304] use the actual size instead.
[  396.961229][ T7309] netlink: 8 bytes leftover after parsing attributes in process `syz.0.408'.
[  397.690866][ T1900] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  397.860531][ T1900] usb 2-1: Using ep0 maxpacket: 32
[  397.897303][ T1900] usb 2-1: config 0 has an invalid interface number: 51 but max is 0
[  397.907719][ T1900] usb 2-1: config 0 has no interface number 0
[  397.914669][ T1900] usb 2-1: config 0 interface 51 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  397.925616][ T1900] usb 2-1: config 0 interface 51 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  397.965695][ T7323] loop4: detected capacity change from 0 to 1024
[  398.006839][ T1900] usb 2-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  398.016812][ T1900] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  398.028476][ T1900] usb 2-1: Product: syz
[  398.033407][ T1900] usb 2-1: Manufacturer: syz
[  398.042209][ T1900] usb 2-1: SerialNumber: syz
[  398.060033][ T1900] usb 2-1: config 0 descriptor??
[  398.078790][ T1900] quatech2 2-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  398.245718][   T24] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  398.389388][ T1900] usb 2-1: qt2_setup_urbs - submit read urb failed -90
[  398.398679][ T1900] quatech2 2-1:0.51: probe with driver quatech2 failed with error -90
[  398.463629][   T24] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  398.474442][   T24] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  398.484313][   T24] usb 3-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47
[  398.493851][   T24] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  398.571941][   T24] usb 3-1: config 0 descriptor??
[  398.615492][ T1614] usb 2-1: USB disconnect, device number 16
[  398.802699][ T7333] loop3: detected capacity change from 0 to 1024
[  398.876449][ T7333] EXT4-fs (loop3): orphan cleanup on readonly fs
[  398.937282][ T7333] EXT4-fs (loop3): 1 truncate cleaned up
[  398.950654][ T7333] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  399.195618][ T5823] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  399.349944][   T24] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[  399.562534][   T24] usb 5-1: config 0 has an invalid interface number: 9 but max is 0
[  399.573858][   T24] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  399.588337][   T24] usb 5-1: config 0 has no interface number 0
[  399.596641][   T24] usb 5-1: New USB device found, idVendor=0421, idProduct=0302, bcdDevice=45.e8
[  399.607301][   T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  399.753277][   T24] usb 5-1: config 0 descriptor??
[  399.766843][   T24] rndis_host 5-1:0.9: More than one union descriptor, skipping ...
[  399.776894][   T24] usb 5-1: bad CDC descriptors
[  399.789076][   T24] cdc_acm 5-1:0.9: More than one union descriptor, skipping ...
[  400.026058][ T7353] netlink: 4 bytes leftover after parsing attributes in process `syz.0.423'.
[  400.052102][ T7354] netlink: 8 bytes leftover after parsing attributes in process `syz.4.418'.
[  400.066061][ T7354] bridge0: port 2(bridge_slave_1) entered disabled state
[  400.077336][ T7354] bridge0: port 1(bridge_slave_0) entered disabled state
[  400.149412][ T7356] FAULT_INJECTION: forcing a failure.
[  400.149412][ T7356] name failslab, interval 1, probability 0, space 0, times 0
[  400.166106][ T7356] CPU: 1 UID: 0 PID: 7356 Comm: syz.1.424 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(none) 
[  400.166278][ T7356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  400.166387][ T7356] Call Trace:
[  400.166445][ T7356]  <TASK>
[  400.166503][ T7356]  __dump_stack+0x26/0x30
[  400.166708][ T7356]  dump_stack_lvl+0x1df/0x270
[  400.166914][ T7356]  dump_stack+0x1e/0x25
[  400.167094][ T7356]  should_fail_ex+0x7dc/0x8a0
[  400.167339][ T7356]  should_failslab+0x15b/0x200
[  400.167538][ T7356]  kmem_cache_alloc_noprof+0xf0/0xec0
[  400.167758][ T7356]  ? __inet_bhash2_update_saddr+0x34b/0x2860
[  400.167949][ T7356]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  400.168134][ T7356]  ? kmsan_get_metadata+0xfb/0x160
[  400.168335][ T7356]  __inet_bhash2_update_saddr+0x34b/0x2860
[  400.168537][ T7356]  ? kmsan_get_metadata+0xfb/0x160
[  400.168720][ T7356]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  400.168918][ T7356]  ? xfrm_lookup_route+0x212/0x2b0
[  400.169121][ T7356]  inet_bhash2_update_saddr+0x3f/0x50
[  400.169302][ T7356]  tcp_v4_connect+0x105c/0x1d90
[  400.169574][ T7356]  ? __pfx_tcp_v4_connect+0x10/0x10
[  400.169777][ T7356]  __inet_stream_connect+0x2c4/0x15f0
[  400.169956][ T7356]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  400.170199][ T7356]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  400.170395][ T7356]  ? __local_bh_enable_ip+0x75/0xb0
[  400.170558][ T7356]  ? _raw_spin_unlock_bh+0x2d/0x40
[  400.170725][ T7356]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  400.170922][ T7356]  inet_stream_connect+0x69/0xd0
[  400.171102][ T7356]  __sys_connect+0x51a/0x680
[  400.171259][ T7356]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  400.171515][ T7356]  ? kmsan_get_metadata+0xfb/0x160
[  400.171688][ T7356]  ? __pfx_inet_stream_connect+0x10/0x10
[  400.171892][ T7356]  __x64_sys_connect+0x95/0x100
[  400.172056][ T7356]  x64_sys_call+0x3744/0x3e20
[  400.172266][ T7356]  do_syscall_64+0xd9/0x210
[  400.172457][ T7356]  ? irqentry_exit+0x16/0x60
[  400.172626][ T7356]  ? clear_bhb_loop+0x40/0x90
[  400.172805][ T7356]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  400.172975][ T7356] RIP: 0033:0x7fb88d58ebe9
[  400.173092][ T7356] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  400.173231][ T7356] RSP: 002b:00007fb88e4c9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  400.173389][ T7356] RAX: ffffffffffffffda RBX: 00007fb88d7b5fa0 RCX: 00007fb88d58ebe9
[  400.173505][ T7356] RDX: 0000000000000010 RSI: 0000200000000000 RDI: 0000000000000003
[  400.173606][ T7356] RBP: 00007fb88e4c9090 R08: 0000000000000000 R09: 0000000000000000
[  400.173714][ T7356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  400.173811][ T7356] R13: 00007fb88d7b6038 R14: 00007fb88d7b5fa0 R15: 00007fff6303c4f8
[  400.173964][ T7356]  </TASK>
[  400.519422][   T24] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[  400.698750][   T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  400.712207][   T24] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  400.728836][   T24] usb 4-1: New USB device found, idVendor=04d8, idProduct=c002, bcdDevice= 0.00
[  400.738677][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  400.761463][   T24] usb 4-1: config 0 descriptor??
[  401.064806][ T7360] loop1: detected capacity change from 0 to 1024
[  401.196093][ T1614] usb 3-1: USB disconnect, device number 19
[  401.490955][   T24] usbhid 4-1:0.0: can't add hid device: -71
[  401.498427][   T24] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  401.544577][   T24] usb 4-1: USB disconnect, device number 23
[  401.591271][ T7365] loop2: detected capacity change from 0 to 1024
[  401.634780][ T7365] EXT4-fs: Ignoring removed bh option
[  401.716069][ T7365] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  401.840468][ T7365] ipvlan2: entered promiscuous mode
[  401.855892][ T7365] bridge0: port 3(ipvlan2) entered blocking state
[  401.864215][ T7365] bridge0: port 3(ipvlan2) entered disabled state
[  401.874037][ T7365] ipvlan2: entered allmulticast mode
[  401.880092][ T7365] bridge0: entered allmulticast mode
[  401.889912][ T7365] ipvlan2: left allmulticast mode
[  401.896428][ T7365] bridge0: left allmulticast mode
[  402.566766][ T1614] usb 5-1: USB disconnect, device number 25
[  402.795789][ T5816] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  402.871079][ T5866] usb 4-1: new high-speed USB device number 24 using dummy_hcd
[  403.028816][ T7385] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[  403.040566][ T7385] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[  403.051240][ T7385] overlayfs: missing 'lowerdir'
[  403.095862][ T5866] usb 4-1: Using ep0 maxpacket: 32
[  403.140095][ T5866] usb 4-1: config 0 has an invalid interface number: 51 but max is 0
[  403.149693][ T5866] usb 4-1: config 0 has no interface number 0
[  403.156403][ T5866] usb 4-1: config 0 interface 51 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  403.174750][ T5866] usb 4-1: config 0 interface 51 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[  403.238708][ T5866] usb 4-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  403.253882][ T5866] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  403.270114][ T5866] usb 4-1: Product: syz
[  403.274933][ T5866] usb 4-1: Manufacturer: syz
[  403.282459][ T5866] usb 4-1: SerialNumber: syz
[  403.356548][ T5866] usb 4-1: config 0 descriptor??
[  403.403935][ T5866] quatech2 4-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  403.426208][ T7392] netlink: 4 bytes leftover after parsing attributes in process `syz.0.435'.
[  403.649964][ T5866] usb 4-1: qt2_setup_urbs - submit read urb failed -90
[  403.660078][ T5866] quatech2 4-1:0.51: probe with driver quatech2 failed with error -90
[  403.866529][ T5866] usb 4-1: USB disconnect, device number 24
[  403.992495][ T5817] Bluetooth: hci0: unexpected event for opcode 0x0809
[  404.641437][ T7407] loop0: detected capacity change from 0 to 512
[  404.678184][ T7407] EXT4-fs: Conflicting test_dummy_encryption options
[  405.251225][ T7403] loop1: detected capacity change from 0 to 32768
[  405.262200][ T7403] btrfs: Deprecated parameter 'usebackuproot'
[  405.268936][ T7403] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  405.282220][ T7403] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.439 (7403)
[  405.312736][   T24] usb 4-1: new high-speed USB device number 25 using dummy_hcd
[  405.343722][ T7403] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  405.357347][ T7403] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[  405.368603][ T7403] BTRFS info (device loop1): using free-space-tree
[  405.377559][ T5866] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[  405.534708][   T24] usb 4-1: config 0 has an invalid interface number: 9 but max is 0
[  405.544814][   T24] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  405.557031][   T24] usb 4-1: config 0 has no interface number 0
[  405.564947][   T24] usb 4-1: New USB device found, idVendor=0421, idProduct=0302, bcdDevice=45.e8
[  405.575471][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  405.602391][ T5866] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  405.622710][ T5866] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  405.635708][ T5866] usb 3-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47
[  405.645681][ T5866] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  405.669013][ T5866] usb 3-1: config 0 descriptor??
[  405.701222][ T7403] BTRFS info (device loop1): rebuilding free space tree
[  405.851645][   T24] usb 4-1: config 0 descriptor??
[  405.930608][   T24] rndis_host 4-1:0.9: More than one union descriptor, skipping ...
[  405.940655][   T24] usb 4-1: bad CDC descriptors
[  405.947997][   T24] cdc_acm 4-1:0.9: More than one union descriptor, skipping ...
[  406.200859][ T7427] netlink: 8 bytes leftover after parsing attributes in process `syz.3.442'.
[  406.737272][ T5810] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  406.899294][ T7405] loop4: detected capacity change from 0 to 32768
[  407.985504][   T24] usb 3-1: USB disconnect, device number 20
[  408.419784][ T5866] usb 4-1: USB disconnect, device number 25
[  408.881873][ T7449] netlink: 4 bytes leftover after parsing attributes in process `syz.3.447'.
[  408.932161][ T7450] netlink: 'syz.1.446': attribute type 1 has an invalid length.
[  409.367833][ T7454] loop4: detected capacity change from 0 to 512
[  409.486705][ T7454] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  409.497816][ T7454] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[  409.573901][ T7454] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  409.601131][ T7454] System zones: 0-2, 18-18, 34-35
[  409.618325][ T7454] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  409.641151][ T7454] EXT4-fs (loop4): warning: mounting unchecked fs, running e2fsck is recommended
[  409.665898][ T7454] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[  409.689192][ T7454] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 r/w.
[  409.801447][ T7454] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.449: bg 0: block 353: padding at end of block bitmap is not set
[  409.874301][ T7465] loop2: detected capacity change from 0 to 8
[  410.065247][ T7465] netlink: 8 bytes leftover after parsing attributes in process `syz.2.453'.
[  410.075518][ T7465] netlink: 8 bytes leftover after parsing attributes in process `syz.2.453'.
[  410.108588][ T5807] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  410.716082][ T7473] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  410.760001][ T5866] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[  410.785509][ T7477] loop2: detected capacity change from 0 to 128
[  410.930932][ T7473] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  410.970304][ T5866] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  410.982953][ T5866] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  410.993663][ T5866] usb 5-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47
[  411.010763][ T5866] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  411.082799][ T5866] usb 5-1: config 0 descriptor??
[  411.109354][ T7480] loop3: detected capacity change from 0 to 256
[  411.182032][ T7473] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  411.390515][ T7473] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  411.724466][ T3493] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  411.779040][ T5866] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[  411.781863][ T3493] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  411.796478][   T24] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  411.827759][ T3493] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  411.846373][ T3493] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  411.963387][ T5866] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[  411.982390][ T5866] usb 3-1: config 0 has no interface number 0
[  411.988938][ T5866] usb 3-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  412.001485][ T5866] usb 3-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  412.010075][   T24] usb 2-1: Using ep0 maxpacket: 32
[  412.012168][ T5866] usb 3-1: config 0 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  412.031717][ T5866] usb 3-1: New USB device found, idVendor=28bd, idProduct=0042, bcdDevice= 0.00
[  412.042756][ T5866] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  412.058721][   T24] usb 2-1: config 0 has an invalid interface number: 51 but max is 0
[  412.070755][   T24] usb 2-1: config 0 has no interface number 0
[  412.087033][ T5866] usb 3-1: config 0 descriptor??
[  412.191767][   T24] usb 2-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  412.202423][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  412.211904][   T24] usb 2-1: Product: syz
[  412.216990][   T24] usb 2-1: Manufacturer: syz
[  412.224465][   T24] usb 2-1: SerialNumber: syz
[  412.333351][   T24] usb 2-1: config 0 descriptor??
[  412.405589][   T24] quatech2 2-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  412.625553][   T24] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  412.710988][   T24] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  412.712153][ T7497] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  412.826522][ T5866] input: HID 28bd:0042 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.1/0003:28BD:0042.0006/input/input8
[  412.855969][ T7498] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  412.866605][ T7498] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  413.010608][    C1] usb 2-1: qt2_read_bulk_callback - non-zero urb status: -71
[  413.034975][ T7497] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  413.038523][   T24] usb 2-1: USB disconnect, device number 17
[  413.121721][ T5866] uclogic 0003:28BD:0042.0006: input,hidraw0: USB HID v0.00 Keypad [HID 28bd:0042] on usb-dummy_hcd.2-1/input1
[  413.145253][   T24] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  413.223463][   T24] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  413.241317][   T24] quatech2 2-1:0.51: device disconnected
[  413.317499][ T7497] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  413.468314][ T7497] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  413.802338][   T24] usb 5-1: USB disconnect, device number 26
[  414.410340][   T24] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  414.590592][   T24] usb 2-1: Using ep0 maxpacket: 16
[  414.641650][   T24] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  414.654079][   T24] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  414.693619][   T24] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  414.704049][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  414.714320][   T24] usb 2-1: Product: syz
[  414.719240][   T24] usb 2-1: Manufacturer: syz
[  414.728749][   T24] usb 2-1: SerialNumber: syz
[  415.069347][ T5866] usb 3-1: USB disconnect, device number 21
[  415.307315][ T7512] loop1: detected capacity change from 0 to 2048
[  415.564971][   T24] usb 2-1: 0:2 : does not exist
[  415.610710][   T24] usb 2-1: 5:0: failed to get current value for ch 0 (-22)
[  415.729429][   T24] usb 2-1: USB disconnect, device number 18
[  415.937252][ T3820] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  416.091113][ T3820] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  416.098644][ T7525] loop2: detected capacity change from 0 to 256
[  416.101053][ T3820] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  416.160724][ T3820] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  417.094932][ T5866] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  417.301537][ T5866] usb 2-1: Using ep0 maxpacket: 32
[  417.350903][ T5866] usb 2-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f
[  417.362680][ T5866] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  417.372017][ T5866] usb 2-1: Product: syz
[  417.377186][ T5866] usb 2-1: Manufacturer: syz
[  417.382857][ T5866] usb 2-1: SerialNumber: syz
[  417.403747][ T5866] usb 2-1: config 0 descriptor??
[  417.813041][ T7549] team_slave_0: entered promiscuous mode
[  417.819191][ T7549] team_slave_1: entered promiscuous mode
[  417.826520][ T7549] vlan2: entered promiscuous mode
[  417.833527][ T7549] team0: entered promiscuous mode
[  418.144066][ T5866] airspy 2-1:0.0: usb_control_msg() failed -71 request 09
[  418.151944][ T5866] airspy 2-1:0.0: Could not detect board
[  418.158793][ T5866] airspy 2-1:0.0: probe with driver airspy failed with error -71
[  418.186194][ T5866] usb 2-1: USB disconnect, device number 19
[  418.478982][ T7553] loop2: detected capacity change from 0 to 512
[  418.529901][ T7553] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  418.571483][ T7553] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c118, mo2=0002]
[  418.646977][ T7553] EXT4-fs error (device loop2): ext4_iget_extra_inode:5104: inode #15: comm syz.2.482: corrupted in-inode xattr: e_value size too large
[  418.676485][ T7553] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.482: couldn't read orphan inode 15 (err -117)
[  418.695820][ T7556] netlink: 12 bytes leftover after parsing attributes in process `syz.3.483'.
[  418.744385][ T7553] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  419.189023][ T5816] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  419.422883][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[  419.431519][ T1290] ieee802154 phy1 wpan1: encryption failed: -22
[  420.268188][ T7567] loop1: detected capacity change from 0 to 16
[  420.274459][ T7563] loop3: detected capacity change from 0 to 32768
[  420.301309][ T7563] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.486 (7563)
[  420.331814][ T7563] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  420.343039][ T7563] BTRFS info (device loop3): using sha256 (sha256-lib) checksum algorithm
[  420.353358][ T7563] BTRFS info (device loop3): disk space caching is enabled
[  420.371320][ T7563] BTRFS warning (device loop3): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2
[  420.380199][ T7567] erofs (device loop1): rootino(nid 36) is not a directory(i_mode 127766)
[  420.554482][ T7563] BTRFS info (device loop3): rebuilding free space tree
[  420.598647][ T7563] BTRFS info (device loop3): disabling free space tree
[  420.607391][ T7563] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  420.620276][ T7563] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  420.697342][ T7586] loop0: detected capacity change from 0 to 128
[  420.901720][ T5823] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  421.058197][ T7569] netlink: 8 bytes leftover after parsing attributes in process `syz.1.488'.
[  422.241674][ T1900] usb 5-1: new high-speed USB device number 27 using dummy_hcd
[  422.394069][ T7603] sp0: Synchronizing with TNC
[  422.442880][ T1900] usb 5-1: Using ep0 maxpacket: 32
[  422.499272][ T1900] usb 5-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f
[  422.509077][ T1900] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  422.520669][ T1900] usb 5-1: Product: syz
[  422.525760][ T1900] usb 5-1: Manufacturer: syz
[  422.531986][ T1900] usb 5-1: SerialNumber: syz
[  422.586921][ T1900] usb 5-1: config 0 descriptor??
[  422.690720][ T7610] loop0: detected capacity change from 0 to 128
[  422.892212][ T7610] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  422.931542][ T7610] ext4 filesystem being mounted at /106/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  422.966075][ T7600] bond_slave_0: entered promiscuous mode
[  422.974390][ T7600] bond_slave_1: entered promiscuous mode
[  422.981360][ T7600] vlan2: entered promiscuous mode
[  422.986693][ T7600] bond0: entered promiscuous mode
[  423.269371][ T1900] airspy 5-1:0.0: usb_control_msg() failed -71 request 09
[  423.278151][ T1900] airspy 5-1:0.0: Could not detect board
[  423.285145][ T1900] airspy 5-1:0.0: probe with driver airspy failed with error -71
[  423.358324][ T1900] usb 5-1: USB disconnect, device number 27
[  424.750476][ T7631] infiniband syz!: set active
[  424.756001][ T7631] infiniband syz!: added team_slave_0
[  424.883102][ T7631] RDS/IB: syz!: added
[  424.887660][ T7631] smc: adding ib device syz! with port count 1
[  424.896495][ T7631] smc:    ib device syz! port 1 has pnetid 
[  425.966637][ T5812] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  426.502831][ T7644] fuse: Bad value for 'fd'
[  427.596375][ T7652] netlink: 8 bytes leftover after parsing attributes in process `syz.3.510'.
[  428.605211][ T7659] loop4: detected capacity change from 0 to 2048
[  428.772114][ T7666] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  428.894226][ T7668] netlink: 132 bytes leftover after parsing attributes in process `syz.2.517'.
[  429.102350][ T5866] usb 5-1: new full-speed USB device number 28 using dummy_hcd
[  429.175878][ T7665] loop1: detected capacity change from 0 to 2048
[  429.300970][ T5866] usb 5-1: config 0 has an invalid interface number: 128 but max is 0
[  429.310713][ T5866] usb 5-1: config 0 has no interface number 0
[  429.365807][ T7665] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  429.367681][ T5866] usb 5-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[  429.383800][ T7665] ext4 filesystem being mounted at /122/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  429.416521][ T5866] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  429.425649][ T5866] usb 5-1: Product: syz
[  429.430894][ T5866] usb 5-1: Manufacturer: syz
[  429.435998][ T5866] usb 5-1: SerialNumber: syz
[  429.509031][ T7680] fuse: Bad value for 'fd'
[  429.535876][ T7665] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  429.743218][ T5866] usb 5-1: config 0 descriptor??
[  430.127772][ T7684] tipc: Failed to obtain node identity
[  430.134913][ T7684] tipc: Enabling of bearer <ib:ip6gre0> rejected, failed to enable media
[  430.416758][ T7659] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  430.428412][ T7659] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  431.174352][ T5866] usb 5-1: Firmware version (0.0) predates our first public release.
[  431.183964][ T5866] usb 5-1: Please update to version 0.2 or newer
[  431.343722][ T5866] usb 5-1: USB disconnect, device number 28
[  431.386492][ T7694] loop0: detected capacity change from 0 to 1764
[  431.413091][ T7682] loop1: detected capacity change from 0 to 4096
[  431.781844][ T7682] ntfs3(loop1): Failed to read $AttrDef (-4).
[  433.008371][ T7720] FAULT_INJECTION: forcing a failure.
[  433.008371][ T7720] name failslab, interval 1, probability 0, space 0, times 0
[  433.023629][ T7720] CPU: 1 UID: 0 PID: 7720 Comm: syz.1.535 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(none) 
[  433.023800][ T7720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  433.023897][ T7720] Call Trace:
[  433.023954][ T7720]  <TASK>
[  433.024010][ T7720]  __dump_stack+0x26/0x30
[  433.024215][ T7720]  dump_stack_lvl+0x1df/0x270
[  433.024426][ T7720]  dump_stack+0x1e/0x25
[  433.024608][ T7720]  should_fail_ex+0x7dc/0x8a0
[  433.024853][ T7720]  should_failslab+0x15b/0x200
[  433.025051][ T7720]  __kmalloc_noprof+0x182/0x1310
[  433.025251][ T7720]  ? tomoyo_encode+0x626/0xa10
[  433.025435][ T7720]  ? prepend_path+0xff2/0x10c0
[  433.025642][ T7720]  ? kmsan_get_metadata+0xfb/0x160
[  433.025828][ T7720]  ? kmsan_get_metadata+0xfb/0x160
[  433.026029][ T7720]  tomoyo_encode+0x626/0xa10
[  433.026247][ T7720]  tomoyo_realpath_from_path+0x92e/0x9f0
[  433.026493][ T7720]  tomoyo_path_number_perm+0x1d0/0x7d0
[  433.026727][ T7720]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  433.026954][ T7720]  ? kmsan_get_metadata+0xfb/0x160
[  433.027133][ T7720]  ? kmsan_get_metadata+0xfb/0x160
[  433.027374][ T7720]  tomoyo_path_chown+0xd7/0x270
[  433.027584][ T7720]  security_path_chown+0x1c4/0x740
[  433.027785][ T7720]  chown_common+0x6ac/0xc30
[  433.028004][ T7720]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  433.028326][ T7720]  ksys_fchown+0x225/0x370
[  433.028490][ T7720]  __x64_sys_fchown+0x95/0x100
[  433.028650][ T7720]  x64_sys_call+0x9b3/0x3e20
[  433.028859][ T7720]  do_syscall_64+0xd9/0x210
[  433.029049][ T7720]  ? irqentry_exit+0x16/0x60
[  433.029219][ T7720]  ? clear_bhb_loop+0x40/0x90
[  433.029402][ T7720]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  433.029568][ T7720] RIP: 0033:0x7fb88d58ebe9
[  433.029686][ T7720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  433.029827][ T7720] RSP: 002b:00007fb88e4c9038 EFLAGS: 00000246 ORIG_RAX: 000000000000005d
[  433.029979][ T7720] RAX: ffffffffffffffda RBX: 00007fb88d7b5fa0 RCX: 00007fb88d58ebe9
[  433.030095][ T7720] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  433.030192][ T7720] RBP: 00007fb88e4c9090 R08: 0000000000000000 R09: 0000000000000000
[  433.030293][ T7720] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  433.030397][ T7720] R13: 00007fb88d7b6038 R14: 00007fb88d7b5fa0 R15: 00007fff6303c4f8
[  433.030549][ T7720]  </TASK>
[  433.303480][ T7720] ERROR: Out of memory at tomoyo_realpath_from_path.
[  433.948003][ T7726] loop2: detected capacity change from 0 to 1764
[  433.994742][ T7728] FAULT_INJECTION: forcing a failure.
[  433.994742][ T7728] name failslab, interval 1, probability 0, space 0, times 0
[  434.009183][ T7728] CPU: 0 UID: 0 PID: 7728 Comm: syz.4.541 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(none) 
[  434.009360][ T7728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  434.009461][ T7728] Call Trace:
[  434.009516][ T7728]  <TASK>
[  434.009581][ T7728]  __dump_stack+0x26/0x30
[  434.009775][ T7728]  dump_stack_lvl+0x1df/0x270
[  434.009987][ T7728]  dump_stack+0x1e/0x25
[  434.010169][ T7728]  should_fail_ex+0x7dc/0x8a0
[  434.010412][ T7728]  should_failslab+0x15b/0x200
[  434.010663][ T7728]  __kmalloc_noprof+0x182/0x1310
[  434.010863][ T7728]  ? copy_splice_read+0x12a/0x1160
[  434.011039][ T7728]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  434.011221][ T7728]  ? kmsan_get_metadata+0xfb/0x160
[  434.011418][ T7728]  copy_splice_read+0x12a/0x1160
[  434.011600][ T7728]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  434.011809][ T7728]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  434.011990][ T7728]  ? kmsan_get_metadata+0xfb/0x160
[  434.012173][ T7728]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  434.012375][ T7728]  splice_direct_to_actor+0x788/0x1550
[  434.012583][ T7728]  ? __msan_warning+0x1b/0x30
[  434.012738][ T7728]  ? __pfx_direct_splice_actor+0x10/0x10
[  434.012976][ T7728]  ? __pfx_shmem_file_splice_read+0x10/0x10
[  434.013183][ T7728]  do_splice_direct+0x1e0/0x350
[  434.013413][ T7728]  ? __pfx_direct_file_splice_eof+0x10/0x10
[  434.013679][ T7728]  do_sendfile+0x9eb/0x1110
[  434.013874][ T7728]  __se_sys_sendfile64+0x1e3/0x280
[  434.014096][ T7728]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  434.014298][ T7728]  __x64_sys_sendfile64+0xbd/0x120
[  434.014539][ T7728]  x64_sys_call+0x36b8/0x3e20
[  434.014753][ T7728]  do_syscall_64+0xd9/0x210
[  434.014938][ T7728]  ? irqentry_exit+0x16/0x60
[  434.015156][ T7728]  ? clear_bhb_loop+0x40/0x90
[  434.015327][ T7728]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  434.015496][ T7728] RIP: 0033:0x7fe4bf78ebe9
[  434.015623][ T7728] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  434.015766][ T7728] RSP: 002b:00007fe4c052a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028
[  434.015917][ T7728] RAX: ffffffffffffffda RBX: 00007fe4bf9b5fa0 RCX: 00007fe4bf78ebe9
[  434.016033][ T7728] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 000000000000000a
[  434.016131][ T7728] RBP: 00007fe4c052a090 R08: 0000000000000000 R09: 0000000000000000
[  434.016232][ T7728] R10: 0000000100000002 R11: 0000000000000246 R12: 0000000000000001
[  434.016334][ T7728] R13: 00007fe4bf9b6038 R14: 00007fe4bf9b5fa0 R15: 00007ffe9fab5698
[  434.016489][ T7728]  </TASK>
[  434.829190][ T7732] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  435.057905][ T7732] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  435.275787][ T7735] netlink: 40 bytes leftover after parsing attributes in process `syz.4.545'.
[  435.288488][ T7732] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  435.503370][ T7732] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  436.102530][ T4131] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  436.295430][ T5030] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  436.418192][ T5030] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  436.460063][ T5030] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  436.511045][ T7750] vivid-000: =================  START STATUS  =================
[  436.521546][ T7750] vivid-000: ==================  END STATUS  ==================
[  437.490508][ T7762] loop3: detected capacity change from 0 to 1764
[  437.578805][ T7764] loop4: detected capacity change from 0 to 16
[  437.606817][ T7764] erofs (device loop4): mounted with root inode @ nid 36.
[  438.496256][ T7774] vlan2: entered allmulticast mode
[  438.502239][ T7774] bond0: entered allmulticast mode
[  438.507837][ T7774] bond_slave_0: entered allmulticast mode
[  438.514574][ T7774] bond_slave_1: entered allmulticast mode
[  439.141825][ T7786] ------------[ cut here ]------------
[  439.149740][ T7786] verifier bug: REG INVARIANTS VIOLATION (true_reg1): range bounds violation u64=[0x0, 0x0] s64=[0x0, 0x0] u32=[0x80632f4, 0x0] s32=[0x0, 0x0] var_off=(0x0, 0x0)(1)
[  439.170679][ T7786] WARNING: CPU: 0 PID: 7786 at kernel/bpf/verifier.c:2728 reg_bounds_sanity_check+0xb26/0x14b0
[  439.183509][ T7786] Modules linked in:
[  439.188491][ T7786] CPU: 0 UID: 0 PID: 7786 Comm: syz.4.564 Not tainted 6.17.0-rc1-syzkaller #0 PREEMPT(none) 
[  439.200108][ T7786] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  439.219322][ T7786] RIP: 0010:reg_bounds_sanity_check+0xb26/0x14b0
[  439.229417][ T7786] Code: ff ff ff b5 20 ff ff ff ff b5 18 ff ff ff ff b5 48 ff ff ff ff b5 10 ff ff ff ff b5 08 ff ff ff e8 5f 18 02 ff 48 83 c4 38 90 <0f> 0b 90 90 4c 8b bd 70 ff ff ff e9 83 f8 ff ff 8b 3a e8 d3 64 79
[  439.252293][ T7786] RSP: 0018:ffff888056136f58 EFLAGS: 00010282
[  439.259116][ T7786] RAX: ffffffff81207e8e RBX: ffff88805d8d2ad0 RCX: 0000000000080000
[  439.268748][ T7786] RDX: ffffc9000a008000 RSI: 000000000000acc0 RDI: 000000000000acc1
[  439.278203][ T7786] RBP: ffff8880561370d8 R08: ffffea000000000f R09: 0000000000000000
[  439.287553][ T7786] R10: ffff888237b73028 R11: ffff88823f263620 R12: 0000000000000000
[  439.296244][ T7786] R13: ffff888057af4ce0 R14: 0000000000000000 R15: 0000000000000000
[  439.300855][ T5817] Bluetooth: hci3: command 0x0406 tx timeout
[  439.312552][ T7786] FS:  00007fe4bd9f66c0(0000) GS:ffff8881aa698000(0000) knlGS:0000000000000000
[  439.325950][ T7786] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  439.334057][ T7786] CR2: 00007f304113cf98 CR3: 0000000050c4c000 CR4: 00000000003526f0
[  439.343919][ T7786] Call Trace:
[  439.348086][ T7786]  <TASK>
[  439.352482][ T7786]  ? kmsan_get_metadata+0xfb/0x160
[  439.358224][ T7786]  reg_set_min_max+0x267/0x440
[  439.364541][ T7786]  check_cond_jmp_op+0x3187/0x4820
[  439.371067][ T7786]  do_check+0x2374/0x15760
[  439.375872][ T7786]  ? kmsan_get_metadata+0xfb/0x160
[  439.382642][ T7786]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  439.389799][ T7786]  do_check_common+0x2482/0x3740
[  439.395622][ T7786]  bpf_check+0x61f8/0x2a100
[  439.401197][ T7786]  ? pcpu_block_refresh_hint+0x450/0x580
[  439.417111][ T7786]  ? kmsan_get_metadata+0xfb/0x160
[  439.426116][ T7786]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  439.433946][ T7786]  ? pcpu_block_update_hint_alloc+0x12df/0x1390
[  439.441900][ T7786]  ? kmsan_get_metadata+0x150/0x160
[  439.447874][ T7786]  ? kmsan_get_metadata+0xfb/0x160
[  439.455793][ T7786]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  439.463106][ T7786]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  439.470688][ T7786]  ? kmsan_get_metadata+0xfb/0x160
[  439.476609][ T7786]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  439.483555][ T7786]  ? kmsan_get_metadata+0xfb/0x160
[  439.489088][ T7786]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  439.496003][ T7786]  ? strncpy_from_user+0xb1/0x470
[  439.502131][ T7786]  ? stack_depot_save_flags+0x35/0x7b0
[  439.507002][ T7791] netlink: 8 bytes leftover after parsing attributes in process `syz.3.567'.
[  439.508535][ T7786]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  439.508723][ T7786]  ? kmsan_get_metadata+0xfb/0x160
[  439.544020][ T7786]  ? kmsan_get_metadata+0xfb/0x160
[  439.550313][ T7786]  ? kmsan_get_metadata+0xfb/0x160
[  439.556122][ T7786]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  439.563885][ T7786]  ? kmsan_get_metadata+0xfb/0x160
[  439.570859][ T7786]  ? kmsan_get_metadata+0xfb/0x160
[  439.577531][ T7786]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  439.584880][ T7786]  bpf_prog_load+0x28e6/0x2e50
[  439.590974][ T7786]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  439.598515][ T7786]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  439.605961][ T7786]  ? security_bpf+0x88/0x620
[  439.611129][ T7786]  ? _copy_from_user+0xcb/0x100
[  439.625006][ T7786]  __sys_bpf+0x7f4/0xed0
[  439.633218][ T7786]  __x64_sys_bpf+0xa4/0xf0
[  439.638306][ T7786]  x64_sys_call+0x3550/0x3e20
[  439.644561][ T7786]  do_syscall_64+0xd9/0x210
[  439.650627][ T7786]  ? irqentry_exit+0x16/0x60
[  439.656016][ T7786]  ? clear_bhb_loop+0x40/0x90
[  439.662137][ T7786]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  439.669325][ T7786] RIP: 0033:0x7fe4bf78ebe9
[  439.674837][ T7786] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  439.726061][ T7786] RSP: 002b:00007fe4bd9f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  439.738500][ T7786] RAX: ffffffffffffffda RBX: 00007fe4bf9b6090 RCX: 00007fe4bf78ebe9
[  439.748487][ T7786] RDX: 0000000000000048 RSI: 00002000000054c0 RDI: 0000000000000005
[  439.758331][ T7786] RBP: 00007fe4bf811e19 R08: 0000000000000000 R09: 0000000000000000
[  439.767245][ T7786] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  439.776790][ T7786] R13: 00007fe4bf9b6128 R14: 00007fe4bf9b6090 R15: 00007ffe9fab5698
[  439.786168][ T7786]  </TASK>
[  439.790036][ T7786] ---[ end trace 0000000000000000 ]---
[  439.800848][   T30] audit: type=1326 audit(1754865427.177:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7783 comm="syz.4.564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4bf78ebe9 code=0x7fc00000
[  439.833577][   T30] audit: type=1326 audit(1754865427.177:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7783 comm="syz.4.564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fe4bf78ebe9 code=0x7fc00000
[  439.863075][   T30] audit: type=1326 audit(1754865427.177:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7783 comm="syz.4.564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4bf78ebe9 code=0x7fc00000
[  439.889206][   T30] audit: type=1326 audit(1754865427.177:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7783 comm="syz.4.564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4bf78ebe9 code=0x7fc00000
[  439.931228][   T30] audit: type=1326 audit(1754865427.177:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7783 comm="syz.4.564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4bf78ebe9 code=0x7fc00000
[  439.961277][   T30] audit: type=1326 audit(1754865427.177:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7783 comm="syz.4.564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4bf78ebe9 code=0x7fc00000
[  439.985999][   T30] audit: type=1326 audit(1754865427.177:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7783 comm="syz.4.564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4bf78ebe9 code=0x7fc00000
[  440.010863][   T30] audit: type=1326 audit(1754865427.177:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7783 comm="syz.4.564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4bf78ebe9 code=0x7fc00000
[  440.042597][   T30] audit: type=1326 audit(1754865427.177:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7783 comm="syz.4.564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4bf78ebe9 code=0x7fc00000
[  440.070927][   T30] audit: type=1326 audit(1754865427.177:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7783 comm="syz.4.564" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe4bf78ebe9 code=0x7fc00000
[  440.236675][ T5866] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[  440.460435][ T5866] usb 3-1: Using ep0 maxpacket: 16
[  440.489161][ T5866] usb 3-1: unable to get BOS descriptor or descriptor too short
[  440.520737][ T7795] loop1: detected capacity change from 0 to 1764
[  440.531440][ T5866] usb 3-1: config 0 has no interfaces?
[  440.544819][ T7797] netlink: 'syz.4.569': attribute type 3 has an invalid length.
[  440.583669][ T5866] usb 3-1: New USB device found, idVendor=07cf, idProduct=1001, bcdDevice=8f.8b
[  440.595827][ T5866] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  440.606821][ T5866] usb 3-1: Product: syz
[  440.612695][ T5866] usb 3-1: Manufacturer: syz
[  440.617993][ T5866] usb 3-1: SerialNumber: syz
[  440.702661][ T5866] usb 3-1: config 0 descriptor??
[  440.933179][ T7784] netlink: 28 bytes leftover after parsing attributes in process `syz.2.565'.
[  440.954652][ T7784] netlink: 32 bytes leftover after parsing attributes in process `syz.2.565'.
[  440.972437][ T7784] netlink: 28 bytes leftover after parsing attributes in process `syz.2.565'.
[  441.005754][ T1900] usb 3-1: USB disconnect, device number 22
[  441.877708][ T7806] netlink: 'syz.1.572': attribute type 24 has an invalid length.
[  442.878058][ T7821] loop0: detected capacity change from 0 to 256
[  442.930362][ T5866] usb 4-1: new high-speed USB device number 26 using dummy_hcd
[  442.947752][ T7821] msdos: Unknown parameter ')�'
[  443.121375][ T5866] usb 4-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47
[  443.132004][ T5866] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  443.163354][ T7826] netlink: 'syz.4.581': attribute type 3 has an invalid length.
[  443.211101][ T5817] Bluetooth: hci0: command 0x0406 tx timeout
[  443.234367][ T5866] usb 4-1: config 0 descriptor??
[  443.288569][ T5866] gspca_main: STV06xx-2.14.0 probing 046d:0870
[  443.713187][ T7830] binder: 7828:7830 ioctl c0306201 200000000080 returned -22
[  443.858255][ T7830] 9pnet: p9_errstr2errno: server reported unknown error 184467
[  443.908669][ T5866] usb 4-1: USB disconnect, device number 26
[  444.267249][ T7840] netlink: 8 bytes leftover after parsing attributes in process `syz.0.588'.
[  444.361723][ T7836] sctp: [Deprecated]: syz.4.586 (pid 7836) Use of int in max_burst socket option.
[  444.361723][ T7836] Use struct sctp_assoc_value instead
[  444.381959][ T7839] netlink: 4 bytes leftover after parsing attributes in process `syz.1.587'.
[  444.852099][ T7843] netlink: 'syz.2.589': attribute type 24 has an invalid length.
[  445.631006][ T1900] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  445.691706][ T7855] netlink: 'syz.3.594': attribute type 3 has an invalid length.
[  445.862004][ T1900] usb 2-1: Using ep0 maxpacket: 16
[  445.896944][ T1900] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  445.911020][ T1900] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  445.996296][ T1900] usb 2-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  446.007238][ T1900] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  446.017082][ T1900] usb 2-1: Product: syz
[  446.021789][ T1900] usb 2-1: Manufacturer: syz
[  446.026834][ T1900] usb 2-1: SerialNumber: syz
[  446.133137][ T1900] usb 2-1: config 0 descriptor??
[  446.162632][ T1900] em28xx 2-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  446.177308][ T1900] em28xx 2-1:0.0: Audio interface 0 found (Vendor Class)
[  446.640680][ T7861] syzkaller1: entered promiscuous mode
[  446.647080][ T7861] syzkaller1: entered allmulticast mode
[  446.770554][   T24] usb 3-1: new high-speed USB device number 23 using dummy_hcd
[  446.969600][ T1900] em28xx 2-1:0.0: unknown em28xx chip ID (0)
[  446.996857][ T1900] em28xx 2-1:0.0: Config register raw data: 0xfffffffb
[  447.005754][   T24] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  447.017276][   T24] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  447.040478][   T24] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  447.052002][   T24] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  447.060857][   T24] usb 3-1: SerialNumber: syz
[  447.362434][   T24] usb 3-1: 0:2 : does not exist
[  447.368284][   T24] usb 3-1: unit 5: unexpected type 0x03
[  447.464544][ T1900] em28xx 2-1:0.0: AC97 chip type couldn't be determined
[  447.472818][ T1900] em28xx 2-1:0.0: No AC97 audio processor
[  447.547343][   T24] usb 3-1: USB disconnect, device number 23
[  447.557373][ T1900] usb 2-1: USB disconnect, device number 20
[  447.566295][ T1900] em28xx 2-1:0.0: Disconnecting em28xx
[  447.603483][ T1900] em28xx 2-1:0.0: Freeing device
[  448.199983][ T1614] usb 5-1: new high-speed USB device number 29 using dummy_hcd
[  448.440272][ T1614] usb 5-1: Using ep0 maxpacket: 32
[  448.492625][ T1614] usb 5-1: config 0 has an invalid interface number: 12 but max is 0
[  448.501704][ T1614] usb 5-1: config 0 has no interface number 0
[  448.508410][ T1614] usb 5-1: config 0 interface 12 has no altsetting 0
[  448.568530][ T1614] usb 5-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  448.579141][ T1614] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  448.589688][ T1614] usb 5-1: Product: syz
[  448.594649][ T1614] usb 5-1: Manufacturer: syz
[  448.600541][ T1614] usb 5-1: SerialNumber: syz
[  448.713120][ T1614] usb 5-1: config 0 descriptor??
[  448.900141][ T7886] netlink: 'syz.3.607': attribute type 3 has an invalid length.
[  448.975721][ T7883] loop1: detected capacity change from 0 to 1024
[  449.170744][ T7873] netlink: 8 bytes leftover after parsing attributes in process `syz.4.602'.
[  449.223991][ T7873] netlink: 'syz.4.602': attribute type 12 has an invalid length.
[  449.233205][ T7873] netlink: 132 bytes leftover after parsing attributes in process `syz.4.602'.
[  449.375961][ T7873] loop4: detected capacity change from 0 to 8
[  449.497415][ T7873] SQUASHFS error: lzo decompression failed, data probably corrupt
[  449.509430][ T7873] SQUASHFS error: Failed to read block 0x91: -5
[  449.518578][ T7873] SQUASHFS error: Unable to read metadata cache entry [8f]
[  449.527291][ T7873] SQUASHFS error: Unable to read inode 0x11f
[  449.620328][ T5866] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[  449.736463][ T7873] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  449.747887][ T7873] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  449.851318][ T5866] usb 2-1: Using ep0 maxpacket: 8
[  449.903553][ T1614] f81534 5-1:0.12: f81534_get_register: reg: 1003 failed: -71
[  449.914536][ T1614] f81534 5-1:0.12: f81534_find_config_idx: read failed: -71
[  449.923731][ T1614] f81534 5-1:0.12: f81534_calc_num_ports: find idx failed: -71
[  449.932560][ T1614] f81534 5-1:0.12: probe with driver f81534 failed with error -71
[  449.980835][ T5866] usb 2-1: config index 0 descriptor too short (expected 52745, got 18)
[  449.991651][ T5866] usb 2-1: config 1 has too many interfaces: 125, using maximum allowed: 32
[  450.001458][ T5866] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  450.013824][ T5866] usb 2-1: config 1 has 0 interfaces, different from the descriptor's value: 125
[  450.041344][ T1614] usb 5-1: USB disconnect, device number 29
[  450.082396][ T7896] loop0: detected capacity change from 0 to 8
[  450.130367][ T5866] usb 2-1: New USB device found, idVendor=0ccd, idProduct=10a3, bcdDevice=23.a2
[  450.140468][ T5866] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  450.149229][ T5866] usb 2-1: Product: syz
[  450.154244][ T5866] usb 2-1: Manufacturer: syz
[  450.166560][ T5866] usb 2-1: SerialNumber: syz
[  450.644350][ T7903] FAULT_INJECTION: forcing a failure.
[  450.644350][ T7903] name failslab, interval 1, probability 0, space 0, times 0
[  450.658828][ T7903] CPU: 0 UID: 0 PID: 7903 Comm: syz.2.613 Tainted: G        W           6.17.0-rc1-syzkaller #0 PREEMPT(none) 
[  450.659041][ T7903] Tainted: [W]=WARN
[  450.659111][ T7903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  450.659204][ T7903] Call Trace:
[  450.659276][ T7903]  <TASK>
[  450.659332][ T7903]  __dump_stack+0x26/0x30
[  450.659529][ T7903]  dump_stack_lvl+0x1df/0x270
[  450.659729][ T7903]  dump_stack+0x1e/0x25
[  450.659906][ T7903]  should_fail_ex+0x7dc/0x8a0
[  450.660150][ T7903]  should_failslab+0x15b/0x200
[  450.660340][ T7903]  __kmalloc_cache_noprof+0xcb/0xed0
[  450.660543][ T7903]  ? nl80211_dump_station+0x360/0x1a90
[  450.660740][ T7903]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  450.660911][ T7903]  ? kmsan_get_metadata+0xfb/0x160
[  450.661116][ T7903]  nl80211_dump_station+0x360/0x1a90
[  450.661429][ T7903]  ? kmsan_get_metadata+0xfb/0x160
[  450.661617][ T7903]  ? __pfx_nl80211_dump_station+0x10/0x10
[  450.661820][ T7903]  ? __pfx_nl80211_dump_station+0x10/0x10
[  450.662024][ T7903]  genl_dumpit+0x14e/0x290
[  450.662236][ T7903]  ? __pfx_genl_dumpit+0x10/0x10
[  450.662440][ T7903]  netlink_dump+0xb9b/0x17d0
[  450.662677][ T7903]  __netlink_dump_start+0x716/0xd60
[  450.662878][ T7903]  genl_family_rcv_msg_dumpit+0x27d/0x370
[  450.663112][ T7903]  ? __pfx_genl_start+0x10/0x10
[  450.663307][ T7903]  ? __pfx_genl_dumpit+0x10/0x10
[  450.663510][ T7903]  ? __pfx_genl_done+0x10/0x10
[  450.663729][ T7903]  genl_rcv_msg+0xa7a/0xc10
[  450.663928][ T7903]  ? __pfx_nl80211_dump_station+0x10/0x10
[  450.664173][ T7903]  netlink_rcv_skb+0x54a/0x680
[  450.664368][ T7903]  ? __pfx_genl_rcv_msg+0x10/0x10
[  450.664598][ T7903]  genl_rcv+0x41/0x60
[  450.664780][ T7903]  ? __pfx_genl_rcv+0x10/0x10
[  450.664970][ T7903]  netlink_unicast+0xf04/0x12b0
[  450.665169][ T7903]  netlink_sendmsg+0x10b3/0x1250
[  450.665380][ T7903]  ? __pfx_netlink_sendmsg+0x10/0x10
[  450.665556][ T7903]  ? __pfx_netlink_sendmsg+0x10/0x10
[  450.665730][ T7903]  __sock_sendmsg+0x333/0x3d0
[  450.665944][ T7903]  ____sys_sendmsg+0x7e0/0xd80
[  450.666160][ T7903]  ___sys_sendmsg+0x271/0x3b0
[  450.666363][ T7903]  ? __rcu_read_unlock+0x6d/0xd0
[  450.666527][ T7903]  ? __fget_files+0x3b4/0x4a0
[  450.666724][ T7903]  ? __fget_files+0x3b9/0x4a0
[  450.666941][ T7903]  ? kmsan_get_metadata+0xfb/0x160
[  450.667128][ T7903]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  450.667331][ T7903]  __x64_sys_sendmsg+0x211/0x3e0
[  450.667530][ T7903]  ? kmsan_get_metadata+0xfb/0x160
[  450.667734][ T7903]  x64_sys_call+0x1dfd/0x3e20
[  450.667960][ T7903]  do_syscall_64+0xd9/0x210
[  450.668248][ T7903]  ? irqentry_exit+0x16/0x60
[  450.668471][ T7903]  ? clear_bhb_loop+0x40/0x90
[  450.668660][ T7903]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  450.668838][ T7903] RIP: 0033:0x7feb51d8ebe9
[  450.668971][ T7903] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  450.669115][ T7903] RSP: 002b:00007feb52c8f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  450.669270][ T7903] RAX: ffffffffffffffda RBX: 00007feb51fb5fa0 RCX: 00007feb51d8ebe9
[  450.669407][ T7903] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000003
[  450.669504][ T7903] RBP: 00007feb52c8f090 R08: 0000000000000000 R09: 0000000000000000
[  450.669605][ T7903] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  450.669698][ T7903] R13: 00007feb51fb6038 R14: 00007feb51fb5fa0 R15: 00007ffc8123d1e8
[  450.669839][ T7903]  </TASK>
[  451.265611][ T7906] FAULT_INJECTION: forcing a failure.
[  451.265611][ T7906] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  451.286211][ T7906] CPU: 1 UID: 0 PID: 7906 Comm: syz.0.614 Tainted: G        W           6.17.0-rc1-syzkaller #0 PREEMPT(none) 
[  451.286418][ T7906] Tainted: [W]=WARN
[  451.286478][ T7906] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  451.286571][ T7906] Call Trace:
[  451.286628][ T7906]  <TASK>
[  451.286687][ T7906]  __dump_stack+0x26/0x30
[  451.286887][ T7906]  dump_stack_lvl+0x1df/0x270
[  451.287099][ T7906]  dump_stack+0x1e/0x25
[  451.287277][ T7906]  should_fail_ex+0x7dc/0x8a0
[  451.287524][ T7906]  should_fail+0x2a/0x40
[  451.287723][ T7906]  should_fail_usercopy+0x2e/0x40
[  451.287951][ T7906]  _copy_from_user+0x33/0x100
[  451.288119][ T7906]  do_sys_poll+0x266/0x2120
[  451.288322][ T7906]  ? is_module_text_address+0x1f4/0x240
[  451.288503][ T7906]  ? kernel_text_address+0x10e/0x1a0
[  451.288717][ T7906]  ? do_syscall_64+0xc1/0x210
[  451.288906][ T7906]  ? filter_irq_stacks+0x49/0x190
[  451.289156][ T7906]  ? stack_depot_save_flags+0x35/0x7b0
[  451.289370][ T7906]  ? kmsan_get_metadata+0xfb/0x160
[  451.289549][ T7906]  ? kmsan_get_metadata+0xfb/0x160
[  451.289730][ T7906]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  451.289918][ T7906]  ? kstrtoull+0x51/0x3a0
[  451.290098][ T7906]  ? kmsan_get_metadata+0xfb/0x160
[  451.290280][ T7906]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  451.290474][ T7906]  ? _parse_integer_limit+0x3dc/0x440
[  451.290687][ T7906]  ? kmsan_get_metadata+0xfb/0x160
[  451.290866][ T7906]  ? kmsan_get_metadata+0xfb/0x160
[  451.291047][ T7906]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  451.291255][ T7906]  ? sigprocmask+0x2e1/0x380
[  451.291408][ T7906]  ? filter_irq_stacks+0x49/0x190
[  451.291643][ T7906]  ? stack_depot_save_flags+0x35/0x7b0
[  451.291860][ T7906]  ? kmsan_get_metadata+0xfb/0x160
[  451.292042][ T7906]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  451.292240][ T7906]  ? set_user_sigmask+0x3d/0x310
[  451.292392][ T7906]  ? __se_sys_ppoll+0x3a8/0x510
[  451.292590][ T7906]  ? set_user_sigmask+0xd4/0x310
[  451.292746][ T7906]  ? __se_sys_ppoll+0x68/0x510
[  451.292927][ T7906]  ? __x64_sys_ppoll+0xe4/0x150
[  451.293118][ T7906]  __se_sys_ppoll+0x427/0x510
[  451.293291][ T7906]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  451.293515][ T7906]  ? kmsan_get_metadata+0xfb/0x160
[  451.293692][ T7906]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  451.293867][ T7906]  __x64_sys_ppoll+0xe4/0x150
[  451.294082][ T7906]  x64_sys_call+0x2324/0x3e20
[  451.294273][ T7906]  do_syscall_64+0xd9/0x210
[  451.294447][ T7906]  ? irqentry_exit+0x16/0x60
[  451.294601][ T7906]  ? clear_bhb_loop+0x40/0x90
[  451.294761][ T7906]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  451.294938][ T7906] RIP: 0033:0x7f304038ebe9
[  451.295051][ T7906] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  451.295179][ T7906] RSP: 002b:00007f304111c038 EFLAGS: 00000246 ORIG_RAX: 000000000000010f
[  451.295329][ T7906] RAX: ffffffffffffffda RBX: 00007f30405b6090 RCX: 00007f304038ebe9
[  451.295432][ T7906] RDX: 0000000000000000 RSI: 20000000000000dc RDI: 00002000000000c0
[  451.295530][ T7906] RBP: 00007f304111c090 R08: 0000000000000000 R09: 0000000000000000
[  451.295634][ T7906] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  451.295723][ T7906] R13: 00007f30405b6128 R14: 00007f30405b6090 R15: 00007ffd9c19f298
[  451.295853][ T7906]  </TASK>
[  452.142914][ T5866] usb 2-1: USB disconnect, device number 21
[  452.812545][ T7920] netlink: 'syz.4.619': attribute type 3 has an invalid length.
[  453.056198][ T7922] netlink: 16 bytes leftover after parsing attributes in process `syz.3.621'.
[  453.070552][ T7922] IPVS: Unknown mcast interface: wg0
[  453.683102][ T7932] sp0: Synchronizing with TNC
[  454.003163][ T7932] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  454.094158][ T7932] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  454.112006][ T7940] loop4: detected capacity change from 0 to 256
[  454.163646][ T7945] loop3: detected capacity change from 0 to 164
[  454.216093][ T7932] bond0 (unregistering): Released all slaves
[  454.276748][ T7948] capability: warning: `syz.1.625' uses 32-bit capabilities (legacy support in use)
[  454.346125][ T7945] iso9660: Corrupted directory entry in block 4 of inode 1792
[  454.701254][ T1900] usb 3-1: new high-speed USB device number 24 using dummy_hcd
[  454.880342][ T1900] usb 3-1: device descriptor read/64, error -71
[  455.130310][ T1900] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[  455.191939][ T7958] netlink: 'syz.4.633': attribute type 3 has an invalid length.
[  455.299994][ T1900] usb 3-1: device descriptor read/64, error -71
[  455.413658][ T1900] usb usb3-port1: attempt power cycle
[  455.830527][ T1900] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[  455.890815][ T1900] usb 3-1: device descriptor read/8, error -71
[  456.170232][ T1900] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[  456.230594][ T1900] usb 3-1: device descriptor read/8, error -71
[  456.350505][ T1900] usb usb3-port1: unable to enumerate USB device
[  456.564012][ T7979] loop0: detected capacity change from 0 to 2048
[  456.683762][ T7979] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  456.791445][ T7979] syz.0.642 uses obsolete (PF_INET,SOCK_PACKET)
[  456.823171][ T5866] usb 4-1: new high-speed USB device number 27 using dummy_hcd
[  456.996500][ T5866] usb 4-1: Using ep0 maxpacket: 16
[  457.046013][ T5866] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  457.058451][ T5866] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  457.114461][ T5866] usb 4-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  457.132306][ T5866] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  457.143596][ T5866] usb 4-1: Product: syz
[  457.148948][ T5866] usb 4-1: Manufacturer: syz
[  457.155984][ T5866] usb 4-1: SerialNumber: syz
[  457.203802][ T5866] usb 4-1: config 0 descriptor??
[  457.233684][ T5812] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  457.281520][ T5866] em28xx 4-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  457.293518][ T5866] em28xx 4-1:0.0: Audio interface 0 found (Vendor Class)
[  457.697191][ T7992] netlink: 'syz.0.646': attribute type 3 has an invalid length.
[  457.833935][ T5866] em28xx 4-1:0.0: unknown em28xx chip ID (0)
[  457.868814][ T5866] em28xx 4-1:0.0: Config register raw data: 0xfffffffb
[  458.084431][ T5866] em28xx 4-1:0.0: AC97 chip type couldn't be determined
[  458.092357][ T5866] em28xx 4-1:0.0: No AC97 audio processor
[  458.138158][ T5866] usb 4-1: USB disconnect, device number 27
[  458.155151][ T5866] em28xx 4-1:0.0: Disconnecting em28xx
[  458.208226][ T5866] em28xx 4-1:0.0: Freeing device
[  458.279381][ T7996] 9pnet_fd: Insufficient options for proto=fd
[  458.339862][ T5817] Bluetooth: hci0: command 0x0406 tx timeout
[  459.066046][ T8008] netlink: 44 bytes leftover after parsing attributes in process `syz.2.654'.
[  459.364761][ T8002] loop1: detected capacity change from 0 to 736
[  459.862601][ T8018] netlink: 'syz.4.659': attribute type 3 has an invalid length.
[  459.882517][ T1900] usb 3-1: new high-speed USB device number 28 using dummy_hcd
[  460.122231][ T1900] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  460.134519][ T1900] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  460.215663][ T1900] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  460.226083][ T1900] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  460.234715][ T1900] usb 3-1: SerialNumber: syz
[  460.550442][ T1900] usb 3-1: 0:2 : does not exist
[  460.659261][ T1900] usb 3-1: USB disconnect, device number 28
[  460.780025][ T8030] loop3: detected capacity change from 0 to 256
[  461.179413][ T8033] loop4: detected capacity change from 0 to 1024
[  461.213002][ T5817] Bluetooth: hci4: command 0x0406 tx timeout
[  461.226914][ T8033] hfsplus: Unknown parameter ''
[  461.287999][ T8033] loop4: detected capacity change from 0 to 1024
[  461.298368][ T8033] hfsplus: Unknown parameter ''
[  461.435448][ T8033] loop4: detected capacity change from 0 to 1024
[  461.466455][ T8033] hfsplus: Unknown parameter ''
[  461.687833][ T8033] loop4: detected capacity change from 0 to 1024
[  461.761879][ T8033] hfsplus: Unknown parameter ''
[  461.895263][ T8047] loop3: detected capacity change from 0 to 1024
[  462.097041][ T8033] loop4: detected capacity change from 0 to 1024
[  462.112891][ T8047] netlink: 32 bytes leftover after parsing attributes in process `syz.3.672'.
[  462.126950][ T8047] netlink: 32 bytes leftover after parsing attributes in process `syz.3.672'.
[  462.172819][ T8033] hfsplus: Unknown parameter ''
[  462.390411][ T8051] netlink: 'syz.2.673': attribute type 3 has an invalid length.
[  462.408498][ T8033] loop4: detected capacity change from 0 to 1024
[  462.420308][ T8041] sctp: failed to load transform for md5: -2
[  462.492025][ T8033] hfsplus: Unknown parameter ''
[  462.684951][ T8033] loop4: detected capacity change from 0 to 1024
[  462.718084][ T5030] hfsplus: bad catalog file entry
[  462.730826][ T8033] hfsplus: Unknown parameter ''
[  462.752157][ T5030] hfsplus: b-tree write err: -5, ino 3
[  462.954641][ T8033] loop4: detected capacity change from 0 to 1024
[  462.996521][ T8033] hfsplus: Unknown parameter ''
[  463.142639][ T8059] 8021q: adding VLAN 0 to HW filter on device bond0
[  463.296193][ T8033] loop4: detected capacity change from 0 to 1024
[  463.355535][ T8033] hfsplus: Unknown parameter ''
[  463.558973][ T8033] loop4: detected capacity change from 0 to 1024
[  463.609800][ T8033] hfsplus: Unknown parameter ''
[  463.853457][ T8033] loop4: detected capacity change from 0 to 1024
[  463.872527][ T8033] hfsplus: Unknown parameter ''
[  464.208902][ T8069] netlink: 224 bytes leftover after parsing attributes in process `syz.0.678'.
[  464.219016][ T8069] netlink: 4 bytes leftover after parsing attributes in process `syz.0.678'.
[  464.733800][ T8078] sctp: [Deprecated]: syz.1.680 (pid 8078) Use of int in max_burst socket option.
[  464.733800][ T8078] Use struct sctp_assoc_value instead
[  465.132211][   T30] audit: type=1326 audit(1754865452.547:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8080 comm="syz.2.684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb51d8ebe9 code=0x7ffc0000
[  465.155996][    C0] vkms_vblank_simulate: vblank timer overrun
[  465.163948][   T30] audit: type=1326 audit(1754865452.547:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8080 comm="syz.2.684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb51d8ebe9 code=0x7ffc0000
[  465.187935][    C0] vkms_vblank_simulate: vblank timer overrun
[  465.195469][   T30] audit: type=1326 audit(1754865452.557:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8080 comm="syz.2.684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7feb51d8ebe9 code=0x7ffc0000
[  465.219374][    C0] vkms_vblank_simulate: vblank timer overrun
[  465.234476][   T30] audit: type=1326 audit(1754865452.557:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8080 comm="syz.2.684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb51d8ebe9 code=0x7ffc0000
[  465.258046][    C0] vkms_vblank_simulate: vblank timer overrun
[  465.265396][   T30] audit: type=1326 audit(1754865452.557:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8080 comm="syz.2.684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7feb51d8ebe9 code=0x7ffc0000
[  465.289034][    C0] vkms_vblank_simulate: vblank timer overrun
[  465.295955][   T30] audit: type=1326 audit(1754865452.557:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8080 comm="syz.2.684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb51d8ebe9 code=0x7ffc0000
[  465.326387][   T30] audit: type=1326 audit(1754865452.557:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8080 comm="syz.2.684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7feb51d8ebe9 code=0x7ffc0000
[  465.354630][   T30] audit: type=1326 audit(1754865452.557:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8080 comm="syz.2.684" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7feb51d8ebe9 code=0x7ffc0000
[  465.794449][ T8090] netlink: 'syz.3.689': attribute type 7 has an invalid length.
[  466.132842][ T8094] 8021q: adding VLAN 0 to HW filter on device bond1
[  466.279783][ T8099] FAULT_INJECTION: forcing a failure.
[  466.279783][ T8099] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  466.294438][ T8099] CPU: 1 UID: 0 PID: 8099 Comm: syz.1.692 Tainted: G        W           6.17.0-rc1-syzkaller #0 PREEMPT(none) 
[  466.294648][ T8099] Tainted: [W]=WARN
[  466.294727][ T8099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  466.294821][ T8099] Call Trace:
[  466.294879][ T8099]  <TASK>
[  466.294951][ T8099]  __dump_stack+0x26/0x30
[  466.295156][ T8099]  dump_stack_lvl+0x1df/0x270
[  466.295375][ T8099]  dump_stack+0x1e/0x25
[  466.295559][ T8099]  should_fail_ex+0x7dc/0x8a0
[  466.295786][ T8099]  should_fail+0x2a/0x40
[  466.295985][ T8099]  should_fail_usercopy+0x2e/0x40
[  466.296209][ T8099]  _copy_from_user+0x33/0x100
[  466.296374][ T8099]  kstrtouint_from_user+0x75/0x140
[  466.296582][ T8099]  ? kmsan_get_metadata+0xfb/0x160
[  466.296768][ T8099]  ? proc_fail_nth_write+0x43/0x300
[  466.296942][ T8099]  ? vfs_write+0x487/0x15d0
[  466.297131][ T8099]  proc_fail_nth_write+0x61/0x300
[  466.297299][ T8099]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  466.297491][ T8099]  ? __pfx_proc_fail_nth_write+0x10/0x10
[  466.297660][ T8099]  vfs_write+0x487/0x15d0
[  466.297837][ T8099]  ? stack_depot_save_flags+0x35/0x7b0
[  466.298053][ T8099]  ? kmsan_get_metadata+0xfb/0x160
[  466.298231][ T8099]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  466.298411][ T8099]  ? kmsan_get_metadata+0xfb/0x160
[  466.298611][ T8099]  __x64_sys_write+0x1fb/0x4d0
[  466.298825][ T8099]  x64_sys_call+0x3014/0x3e20
[  466.299063][ T8099]  do_syscall_64+0xd9/0x210
[  466.299250][ T8099]  ? irqentry_exit+0x16/0x60
[  466.299419][ T8099]  ? clear_bhb_loop+0x40/0x90
[  466.299592][ T8099]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  466.299758][ T8099] RIP: 0033:0x7fb88d58d69f
[  466.299873][ T8099] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 f9 92 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 4c 93 02 00 48
[  466.300112][ T8099] RSP: 002b:00007fb88e4a8030 EFLAGS: 00000293 ORIG_RAX: 0000000000000001
[  466.300268][ T8099] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fb88d58d69f
[  466.300383][ T8099] RDX: 0000000000000001 RSI: 00007fb88e4a80a0 RDI: 0000000000000003
[  466.300491][ T8099] RBP: 00007fb88e4a8090 R08: 0000000000000000 R09: 0000000000000000
[  466.300599][ T8099] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001
[  466.300699][ T8099] R13: 00007fb88d7b6128 R14: 00007fb88d7b6090 R15: 00007fff6303c4f8
[  466.300859][ T8099]  </TASK>
[  467.134815][ T5817] Bluetooth: hci0: command 0x0406 tx timeout
[  467.323021][ T8105] loop4: detected capacity change from 0 to 4096
[  467.348381][ T8105] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[  467.656605][ T8105] ntfs3(loop4): ino=19, mi_enum_attr
[  467.664231][ T8105] ntfs3(loop4): Mark volume as dirty due to NTFS errors
[  468.726056][ T8113] loop1: detected capacity change from 0 to 32768
[  468.727403][ T8116] loop3: detected capacity change from 0 to 1024
[  468.738791][ T8113] btrfs: Deprecated parameter 'usebackuproot'
[  468.752511][ T8113] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  468.790338][ T8119] loop2: detected capacity change from 0 to 512
[  468.872684][ T8113] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.698 (8113)
[  468.892359][ T8113] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  468.892649][ T8113] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[  468.893030][ T8113] BTRFS info (device loop1): using free-space-tree
[  469.070313][ T8119] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2
[  469.145459][ T8113] BTRFS info (device loop1): rebuilding free space tree
[  469.312583][ T8119] EXT4-fs (loop2): 1 truncate cleaned up
[  469.315286][ T8119] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  469.761005][ T8145] sctp: [Deprecated]: syz.3.702 (pid 8145) Use of int in max_burst socket option.
[  469.761005][ T8145] Use struct sctp_assoc_value instead
[  470.162534][ T5810] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  470.811247][ T8135] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 227 vs 220 free clusters
[  470.988367][ T5816] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  471.919924][ T8164] loop2: detected capacity change from 0 to 1024
[  471.929928][ T5817] Bluetooth: hci0: command 0x0406 tx timeout
[  471.969170][ T8162] loop4: detected capacity change from 0 to 512
[  472.030639][ T8162] EXT4-fs (loop4): Test dummy encryption mode enabled
[  472.086907][ T8162] EXT4-fs (loop4): mounted filesystem 00000005-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  472.158992][ T8162] program syz.4.711 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  472.297099][ T5807] EXT4-fs (loop4): unmounting filesystem 00000005-0000-0000-0000-000000000000.
[  472.554911][ T8171] tipc: Started in network mode
[  472.560984][ T8171] tipc: Node identity baf139c6c0e, cluster identity 4711
[  472.570946][ T8171] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  472.674350][ T8171] syzkaller0: entered promiscuous mode
[  472.680792][ T8171] syzkaller0: entered allmulticast mode
[  472.785443][ T8169] loop1: detected capacity change from 0 to 4096
[  472.843970][ T8169] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  472.873152][ T8169] EXT4-fs error (device loop1): ext4_ext_check_inode:523: inode #3: comm syz.1.704: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  472.904211][ T8169] EXT4-fs error (device loop1): ext4_quota_enable:7127: comm syz.1.704: Bad quota inode: 3, type: 0
[  472.920340][ T8170] tipc: Resetting bearer <eth:syzkaller0>
[  472.922456][ T8169] EXT4-fs warning (device loop1): ext4_enable_quotas:7168: Failed to enable quota tracking (type=0, err=-117, ino=3). Please run e2fsck to fix.
[  472.946991][ T8169] EXT4-fs (loop1): mount failed
[  473.025474][ T8170] tipc: Disabling bearer <eth:syzkaller0>
[  473.747581][ T8191] loop1: detected capacity change from 0 to 512
[  473.838254][ T8191] Quota error (device loop1): v2_read_file_info: Block with free entry 4294901759 out of range (1, 6).
[  473.852072][ T8191] EXT4-fs warning (device loop1): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  473.880701][ T8191] EXT4-fs (loop1): mount failed
[  473.951586][ T5866] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[  474.130313][ T5866] usb 3-1: Using ep0 maxpacket: 32
[  474.151051][ T5866] usb 3-1: config 0 has an invalid interface number: 51 but max is 0
[  474.160501][ T5866] usb 3-1: config 0 has no interface number 0
[  474.219658][ T5866] usb 3-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  474.235111][ T5866] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  474.246596][ T5866] usb 3-1: Product: syz
[  474.252029][ T5866] usb 3-1: Manufacturer: syz
[  474.257119][ T5866] usb 3-1: SerialNumber: syz
[  474.315420][ T5866] usb 3-1: config 0 descriptor??
[  474.398181][ T5866] quatech2 3-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  474.654963][ T5866] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  474.732048][ T5866] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  474.812105][ T5817] Bluetooth: hci3: command 0x0406 tx timeout
[  475.064950][    C0] usb 3-1: qt2_read_bulk_callback - non-zero urb status: -71
[  475.070339][ T1900] usb 3-1: USB disconnect, device number 29
[  475.152088][ T1900] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  475.223396][ T1900] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  475.237597][ T1900] quatech2 3-1:0.51: device disconnected
[  475.840010][ T5866] usb 4-1: new high-speed USB device number 28 using dummy_hcd
[  475.894891][ T8220] loop1: detected capacity change from 0 to 256
[  476.008774][ T5866] usb 4-1: Using ep0 maxpacket: 32
[  476.046854][ T5866] usb 4-1: config 6 has an invalid interface number: 136 but max is 2
[  476.061382][ T5866] usb 4-1: config 6 has an invalid interface number: 200 but max is 2
[  476.077840][ T5866] usb 4-1: config 6 contains an unexpected descriptor of type 0x2, skipping
[  476.092468][ T5866] usb 4-1: config 6 has an invalid interface number: 183 but max is 2
[  476.103291][ T5866] usb 4-1: config 6 has an invalid interface number: 161 but max is 2
[  476.108220][ T8223] netlink: 'syz.1.732': attribute type 13 has an invalid length.
[  476.114823][ T5866] usb 4-1: config 6 contains an unexpected descriptor of type 0x2, skipping
[  476.134863][ T5866] usb 4-1: config 6 has 4 interfaces, different from the descriptor's value: 3
[  476.145910][ T5866] usb 4-1: config 6 has no interface number 0
[  476.154560][ T5866] usb 4-1: config 6 has no interface number 1
[  476.161887][ T5866] usb 4-1: config 6 has no interface number 2
[  476.174867][ T5866] usb 4-1: config 6 has no interface number 3
[  476.184462][ T5866] usb 4-1: config 6 interface 136 altsetting 255 endpoint 0xC has invalid maxpacket 1024, setting to 64
[  476.197905][ T5866] usb 4-1: config 6 interface 136 altsetting 255 endpoint 0xE has an invalid bInterval 0, changing to 7
[  476.210804][ T5866] usb 4-1: config 6 interface 136 altsetting 255 has an invalid descriptor for endpoint zero, skipping
[  476.222606][ T5866] usb 4-1: config 6 interface 136 altsetting 255 has an invalid descriptor for endpoint zero, skipping
[  476.234682][ T5866] usb 4-1: config 6 interface 136 altsetting 255 endpoint 0x9 has an invalid bInterval 223, changing to 7
[  476.255465][ T5866] usb 4-1: config 6 interface 136 altsetting 255 has a duplicate endpoint with address 0xC, skipping
[  476.268975][ T5866] usb 4-1: config 6 interface 136 altsetting 255 has a duplicate endpoint with address 0x5, skipping
[  476.286955][ T5866] usb 4-1: config 6 interface 136 altsetting 255 has a duplicate endpoint with address 0xC, skipping
[  476.300892][ T5866] usb 4-1: config 6 interface 136 altsetting 255 has an invalid descriptor for endpoint zero, skipping
[  476.314234][ T5866] usb 4-1: config 6 interface 200 altsetting 10 has 0 endpoint descriptors, different from the interface descriptor's value: 7
[  476.329655][ T5866] usb 4-1: config 6 interface 183 altsetting 210 has a duplicate endpoint with address 0xE, skipping
[  476.343432][ T5866] usb 4-1: config 6 interface 183 altsetting 210 has a duplicate endpoint with address 0x2, skipping
[  476.356976][ T5866] usb 4-1: config 6 interface 183 altsetting 210 endpoint 0xD has invalid maxpacket 1023, setting to 64
[  476.371832][ T5866] usb 4-1: config 6 interface 183 altsetting 210 has a duplicate endpoint with address 0x2, skipping
[  476.391076][ T5866] usb 4-1: config 6 interface 183 altsetting 210 has a duplicate endpoint with address 0xD, skipping
[  476.406751][ T5866] usb 4-1: config 6 interface 183 altsetting 210 has a duplicate endpoint with address 0xB, skipping
[  476.419938][ T5866] usb 4-1: config 6 interface 183 altsetting 210 has a duplicate endpoint with address 0xB, skipping
[  476.435234][ T5866] usb 4-1: config 6 interface 183 altsetting 210 has 9 endpoint descriptors, different from the interface descriptor's value: 12
[  476.454503][ T5866] usb 4-1: too many endpoints for config 6 interface 161 altsetting 46: 88, using maximum allowed: 30
[  476.470736][ T5866] usb 4-1: config 6 interface 161 altsetting 46 endpoint 0x3 has invalid maxpacket 512, setting to 64
[  476.490082][ T5866] usb 4-1: config 6 interface 161 altsetting 46 has a duplicate endpoint with address 0x5, skipping
[  476.508824][ T5866] usb 4-1: config 6 interface 161 altsetting 46 has a duplicate endpoint with address 0x3, skipping
[  476.520942][ T5866] usb 4-1: config 6 interface 161 altsetting 46 has a duplicate endpoint with address 0x3, skipping
[  476.533181][ T5866] usb 4-1: config 6 interface 161 altsetting 46 has 4 endpoint descriptors, different from the interface descriptor's value: 88
[  476.549316][ T5866] usb 4-1: config 6 interface 136 has no altsetting 0
[  476.549772][ T5866] usb 4-1: config 6 interface 200 has no altsetting 0
[  476.549908][ T5866] usb 4-1: config 6 interface 183 has no altsetting 0
[  476.550043][ T5866] usb 4-1: config 6 interface 161 has no altsetting 0
[  476.567434][ T8223] gretap0: refused to change device tx_queue_len
[  476.567553][ T8223] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  476.737014][ T5866] usb 4-1: New USB device found, idVendor=1e0e, idProduct=9100, bcdDevice=8d.63
[  476.737199][ T5866] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  476.737346][ T5866] usb 4-1: Product: syz
[  476.737464][ T5866] usb 4-1: Manufacturer: syz
[  476.737580][ T5866] usb 4-1: SerialNumber: syz
[  476.745562][ T5866] usb 4-1: rejected 1 configuration due to insufficient available bus power
[  476.745725][ T5866] usb 4-1: no configuration chosen from 1 choice
[  476.843083][ T8231] loop2: detected capacity change from 0 to 512
[  477.024134][ T8231] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2
[  477.043926][ T8231] EXT4-fs (loop2): 1 truncate cleaned up
[  477.046301][ T8231] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  477.849841][ T5817] Bluetooth: hci0: command 0x0406 tx timeout
[  478.441750][ T8250] loop1: detected capacity change from 0 to 128
[  478.456230][ T8250] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  478.465694][ T8250] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 77: 0x5f != 0xd8
[  478.465866][ T8250] UDF-fs: error (device loop1): udf_process_sequence: Primary Volume Descriptor not found!
[  478.466083][ T8250] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 77: 0x5f != 0xd8
[  478.466222][ T8250] UDF-fs: error (device loop1): udf_process_sequence: Primary Volume Descriptor not found!
[  478.466421][ T8250] UDF-fs: Scanning with blocksize 512 failed
[  478.491451][ T8250] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  478.495050][ T8250] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=512, location=512
[  478.495206][ T8250] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[  478.495306][ T8250] UDF-fs: Scanning with blocksize 1024 failed
[  478.509057][ T8250] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  478.522995][ T8250] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=512, location=512
[  478.523147][ T8250] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[  478.523246][ T8250] UDF-fs: Scanning with blocksize 2048 failed
[  478.547944][ T8250] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  478.554890][ T8250] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=512, location=512
[  478.555041][ T8250] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[  478.555138][ T8250] UDF-fs: Scanning with blocksize 4096 failed
[  478.555217][ T8250] UDF-fs: warning (device loop1): udf_fill_super: No partition found (1)
[  478.763902][ T5866] usb 4-1: USB disconnect, device number 28
[  479.588280][ T8237] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1289: group 0, block bitmap and bg descriptor inconsistent: 227 vs 220 free clusters
[  479.669306][ T8265] FAULT_INJECTION: forcing a failure.
[  479.669306][ T8265] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  479.670113][ T8265] CPU: 1 UID: 0 PID: 8265 Comm: syz.0.751 Tainted: G        W           6.17.0-rc1-syzkaller #0 PREEMPT(none) 
[  479.670311][ T8265] Tainted: [W]=WARN
[  479.670372][ T8265] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  479.670466][ T8265] Call Trace:
[  479.670523][ T8265]  <TASK>
[  479.670580][ T8265]  __dump_stack+0x26/0x30
[  479.670788][ T8265]  dump_stack_lvl+0x1df/0x270
[  479.670994][ T8265]  dump_stack+0x1e/0x25
[  479.671185][ T8265]  should_fail_ex+0x7dc/0x8a0
[  479.671431][ T8265]  should_fail+0x2a/0x40
[  479.671636][ T8265]  should_fail_usercopy+0x2e/0x40
[  479.671877][ T8265]  _copy_to_user+0x35/0x120
[  479.672170][ T8265]  simple_read_from_buffer+0x1b2/0x340
[  479.672407][ T8265]  proc_fail_nth_read+0x1e0/0x2d0
[  479.672669][ T8265]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  479.672833][ T8265]  vfs_read+0x27c/0xf90
[  479.673061][ T8265]  ? stack_depot_save_flags+0x35/0x7b0
[  479.673275][ T8265]  ? kmsan_get_metadata+0xfb/0x160
[  479.673463][ T8265]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  479.673653][ T8265]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  479.673858][ T8265]  __x64_sys_read+0x1fb/0x4d0
[  479.674091][ T8265]  x64_sys_call+0x2f9c/0x3e20
[  479.674312][ T8265]  do_syscall_64+0xd9/0x210
[  479.674509][ T8265]  ? irqentry_exit+0x16/0x60
[  479.674704][ T8265]  ? clear_bhb_loop+0x40/0x90
[  479.674883][ T8265]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  479.675067][ T8265] RIP: 0033:0x7f304038d5fc
[  479.675191][ T8265] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  479.675347][ T8265] RSP: 002b:00007f303e5f6030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  479.675503][ T8265] RAX: ffffffffffffffda RBX: 00007f30405b6090 RCX: 00007f304038d5fc
[  479.675629][ T8265] RDX: 000000000000000f RSI: 00007f303e5f60a0 RDI: 000000000000000a
[  479.675748][ T8265] RBP: 00007f303e5f6090 R08: 0000000000000000 R09: 0000000000000000
[  479.675853][ T8265] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  479.675952][ T8265] R13: 00007f30405b6128 R14: 00007f30405b6090 R15: 00007ffd9c19f298
[  479.676292][ T8265]  </TASK>
[  479.797445][ T8258] bridge0: port 2(bridge_slave_1) entered disabled state
[  479.800888][ T8258] bridge0: port 1(bridge_slave_0) entered disabled state
[  480.610744][ T8264] loop1: detected capacity change from 0 to 40427
[  480.623694][ T8264] F2FS-fs (loop1): Image doesn't support compression
[  480.623817][ T8264] F2FS-fs (loop1): build fault injection rate: 690
[  480.666925][ T8264] F2FS-fs (loop1): invalid crc value
[  480.846948][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[  480.847257][ T1290] ieee802154 phy1 wpan1: encryption failed: -22
[  481.051567][ T5817] Bluetooth: hci4: command 0x0406 tx timeout
[  481.082773][ T8264] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  481.156239][ T8264] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  481.540244][ T5866] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[  481.861630][ T5866] usb 2-1: New USB device found, idVendor=0572, idProduct=cb01, bcdDevice=26.65
[  481.872214][ T5866] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  481.881208][ T5866] usb 2-1: Product: syz
[  481.885981][ T5866] usb 2-1: Manufacturer: syz
[  481.891243][ T5866] usb 2-1: SerialNumber: syz
[  482.072145][ T5866] usb 2-1: config 0 descriptor??
[  482.142668][ T5816] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  482.290488][ T5866] usb 2-1: ignoring: probably an ADSL modem
[  482.301067][ T8273] loop3: detected capacity change from 0 to 40427
[  482.321157][ T8273] F2FS-fs (loop3): build fault injection rate: 14
[  482.333508][ T8273] F2FS-fs (loop3): invalid crc value
[  482.706539][ T8273] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  482.739982][ T5866] cxacru 2-1:0.0: usbatm_usb_probe: bind failed: -19!
[  482.758551][ T8273] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  482.985017][ T5866] usb 2-1: USB disconnect, device number 22
[  483.014772][ T8286] netlink: 8 bytes leftover after parsing attributes in process `syz.0.758'.
[  483.230021][   T30] audit: type=1800 audit(1754865470.637:47): pid=8273 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.753" name="file1" dev="loop3" ino=10 res=0 errno=0
[  483.779049][ T5823] syz-executor: attempt to access beyond end of device
[  483.779049][ T5823] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  483.796329][ T5823] CPU: 0 UID: 0 PID: 5823 Comm: syz-executor Tainted: G        W           6.17.0-rc1-syzkaller #0 PREEMPT(none) 
[  483.796537][ T5823] Tainted: [W]=WARN
[  483.796594][ T5823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  483.796689][ T5823] Call Trace:
[  483.796751][ T5823]  <TASK>
[  483.796810][ T5823]  __dump_stack+0x26/0x30
[  483.797018][ T5823]  dump_stack_lvl+0x1df/0x270
[  483.797227][ T5823]  dump_stack+0x1e/0x25
[  483.797421][ T5823]  f2fs_handle_critical_error+0xa6f/0xc20
[  483.797696][ T5823]  f2fs_stop_checkpoint+0x65/0x80
[  483.797916][ T5823]  f2fs_write_end_io+0x101c/0x1bc0
[  483.798201][ T5823]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  483.798432][ T5823]  bio_endio+0xe27/0xf80
[  483.798669][ T5823]  submit_bio_noacct+0x214/0x2710
[  483.798897][ T5823]  submit_bio+0x57c/0x630
[  483.799078][ T5823]  f2fs_submit_write_bio+0x92/0x250
[  483.799293][ T5823]  __submit_merged_bio+0x16f/0x6a0
[  483.799505][ T5823]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  483.799713][ T5823]  __submit_merged_write_cond+0x458/0x9a0
[  483.799944][ T5823]  f2fs_write_data_pages+0x4bb2/0x5480
[  483.800273][ T5823]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  483.800520][ T5823]  ? kmsan_get_metadata+0xfb/0x160
[  483.800705][ T5823]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  483.800901][ T5823]  ? free_unref_folios+0x29ad/0x2a20
[  483.801129][ T5823]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  483.801361][ T5823]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  483.801535][ T5823]  ? kmsan_get_metadata+0xfb/0x160
[  483.801711][ T5823]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  483.801892][ T5823]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  483.802245][ T5823]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  483.802463][ T5823]  do_writepages+0x3f2/0x860
[  483.802640][ T5823]  ? _raw_spin_unlock+0x30/0x50
[  483.802794][ T5823]  ? wbc_attach_and_unlock_inode+0x131/0x680
[  483.803062][ T5823]  filemap_fdatawrite+0x207/0x260
[  483.803344][ T5823]  f2fs_sync_dirty_inodes+0x2ab/0x9e0
[  483.803551][ T5823]  f2fs_write_checkpoint+0xfe2/0x2b00
[  483.803865][ T5823]  kill_f2fs_super+0x2ff/0x970
[  483.804079][ T5823]  ? __pfx_kill_f2fs_super+0x10/0x10
[  483.804243][ T5823]  deactivate_locked_super+0xc8/0x3c0
[  483.804438][ T5823]  deactivate_super+0x12f/0x140
[  483.804609][ T5823]  cleanup_mnt+0x6fb/0x780
[  483.804838][ T5823]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  483.805034][ T5823]  ? __pfx___cleanup_mnt+0x10/0x10
[  483.805244][ T5823]  __cleanup_mnt+0x22/0x30
[  483.805446][ T5823]  task_work_run+0x209/0x2b0
[  483.805647][ T5823]  exit_to_user_mode_loop+0x2a6/0x330
[  483.805834][ T5823]  do_syscall_64+0x1e3/0x210
[  483.806026][ T5823]  ? irqentry_exit+0x16/0x60
[  483.806186][ T5823]  ? clear_bhb_loop+0x40/0x90
[  483.806356][ T5823]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  483.806522][ T5823] RIP: 0033:0x7f8c2c18ff17
[  483.806635][ T5823] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  483.806770][ T5823] RSP: 002b:00007fffdfe36388 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  483.806921][ T5823] RAX: 0000000000000000 RBX: 00007f8c2c211c05 RCX: 00007f8c2c18ff17
[  483.807030][ T5823] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fffdfe36440
[  483.807126][ T5823] RBP: 00007fffdfe36440 R08: 0000000000000000 R09: 0000000000000000
[  483.807224][ T5823] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fffdfe374d0
[  483.807326][ T5823] R13: 00007f8c2c211c05 R14: 0000000000075f61 R15: 00007fffdfe37510
[  483.807469][ T5823]  </TASK>
[  484.186850][ T5823] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  486.377503][ T8309] loop4: detected capacity change from 0 to 32768
[  486.387312][ T8309] btrfs: Deprecated parameter 'usebackuproot'
[  486.394176][ T8309] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  486.414488][ T8309] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.769 (8309)
[  486.596803][ T8309] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  486.609332][ T8309] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm
[  486.624506][ T8309] BTRFS info (device loop4): using free-space-tree
[  486.966548][ T8309] BTRFS info (device loop4): rebuilding free space tree
[  487.095091][ T8328] netlink: 'syz.2.770': attribute type 2 has an invalid length.
[  487.134178][ T8328] netlink: 8 bytes leftover after parsing attributes in process `syz.2.770'.
[  488.087864][ T5807] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  488.452802][ T8332] loop2: detected capacity change from 0 to 32768
[  488.489395][ T8332] (syz.2.771,8332,1):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #66: rec_len is smaller than minimal - offset=56, inode=56294995342131268, rec_len=0, name_len=18
[  488.511642][ T8332] (syz.2.771,8332,1):ocfs2_init_global_system_inodes:465 ERROR: status = -22
[  488.521885][ T8332] (syz.2.771,8332,1):ocfs2_init_global_system_inodes:467 ERROR: Unable to load system inode 1, possibly corrupt fs?
[  488.522085][ T8332] (syz.2.771,8332,1):ocfs2_init_global_system_inodes:476 ERROR: status = -22
[  488.547224][ T8332] (syz.2.771,8332,1):ocfs2_initialize_super:2198 ERROR: status = -22
[  488.556563][ T8332] (syz.2.771,8332,1):ocfs2_fill_super:1177 ERROR: status = -22
[  489.140253][   T30] audit: type=1326 audit(1754865476.527:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8334 comm="syz.3.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c2c18ebe9 code=0x7ffc0000
[  489.167767][   T30] audit: type=1326 audit(1754865476.557:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8334 comm="syz.3.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c2c18ebe9 code=0x7ffc0000
[  489.205994][   T30] audit: type=1326 audit(1754865476.627:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8334 comm="syz.3.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f8c2c12add9 code=0x7ffc0000
[  489.231358][   T30] audit: type=1326 audit(1754865476.627:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8334 comm="syz.3.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f8c2c12add9 code=0x7ffc0000
[  489.260159][   T30] audit: type=1326 audit(1754865476.687:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8334 comm="syz.3.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f8c2c12add9 code=0x7ffc0000
[  489.287417][   T30] audit: type=1326 audit(1754865476.687:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8334 comm="syz.3.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=225 compat=0 ip=0x7f8c2c18ebe9 code=0x7ffc0000
[  489.312995][   T30] audit: type=1326 audit(1754865476.687:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8334 comm="syz.3.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c2c18ebe9 code=0x7ffc0000
[  489.337789][   T30] audit: type=1326 audit(1754865476.687:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8334 comm="syz.3.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c2c18ebe9 code=0x7ffc0000
[  489.556329][ T8340] fuse: Bad value for 'group_id'
[  489.562356][ T8340] fuse: Bad value for 'group_id'
[  489.623839][ T8341] loop1: detected capacity change from 0 to 512
[  489.680741][   T30] audit: type=1326 audit(1754865476.927:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8334 comm="syz.3.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f8c2c12add9 code=0x7ffc0000
[  489.707645][   T30] audit: type=1326 audit(1754865476.927:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8334 comm="syz.3.764" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f8c2c18ebe9 code=0x7ffc0000
[  489.902939][ T8341] EXT4-fs warning (device loop1): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  489.921947][ T8341] EXT4-fs (loop1): mount failed
[  491.289600][ T8335] comedi comedi2: reset error (fatal)
[  492.724439][ T8375] FAULT_INJECTION: forcing a failure.
[  492.724439][ T8375] name failslab, interval 1, probability 0, space 0, times 0
[  492.745243][ T8375] CPU: 1 UID: 0 PID: 8375 Comm: syz.2.783 Tainted: G        W           6.17.0-rc1-syzkaller #0 PREEMPT(none) 
[  492.745433][ T8375] Tainted: [W]=WARN
[  492.745479][ T8375] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  492.745572][ T8375] Call Trace:
[  492.745627][ T8375]  <TASK>
[  492.745685][ T8375]  __dump_stack+0x26/0x30
[  492.746128][ T8375]  dump_stack_lvl+0x1df/0x270
[  492.746330][ T8375]  dump_stack+0x1e/0x25
[  492.746505][ T8375]  should_fail_ex+0x7dc/0x8a0
[  492.746895][ T8375]  should_failslab+0x15b/0x200
[  492.747091][ T8375]  __kmalloc_cache_noprof+0xcb/0xed0
[  492.747283][ T8375]  ? nl80211_dump_station+0x3d5/0x1a90
[  492.747457][ T8375]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[  492.747635][ T8375]  ? kmsan_get_metadata+0xfb/0x160
[  492.747836][ T8375]  nl80211_dump_station+0x3d5/0x1a90
[  492.748143][ T8375]  ? kmsan_get_metadata+0xfb/0x160
[  492.748318][ T8375]  ? __pfx_nl80211_dump_station+0x10/0x10
[  492.748499][ T8375]  ? __pfx_nl80211_dump_station+0x10/0x10
[  492.748716][ T8375]  genl_dumpit+0x14e/0x290
[  492.748917][ T8375]  ? __pfx_genl_dumpit+0x10/0x10
[  492.749118][ T8375]  netlink_dump+0xb9b/0x17d0
[  492.749355][ T8375]  __netlink_dump_start+0x716/0xd60
[  492.749553][ T8375]  genl_family_rcv_msg_dumpit+0x27d/0x370
[  492.749786][ T8375]  ? __pfx_genl_start+0x10/0x10
[  492.749975][ T8375]  ? __pfx_genl_dumpit+0x10/0x10
[  492.750172][ T8375]  ? __pfx_genl_done+0x10/0x10
[  492.750398][ T8375]  genl_rcv_msg+0xa7a/0xc10
[  492.750620][ T8375]  ? __pfx_nl80211_dump_station+0x10/0x10
[  492.750859][ T8375]  netlink_rcv_skb+0x54a/0x680
[  492.751054][ T8375]  ? __pfx_genl_rcv_msg+0x10/0x10
[  492.751280][ T8375]  genl_rcv+0x41/0x60
[  492.751459][ T8375]  ? __pfx_genl_rcv+0x10/0x10
[  492.751664][ T8375]  netlink_unicast+0xf04/0x12b0
[  492.752045][ T8375]  netlink_sendmsg+0x10b3/0x1250
[  492.752281][ T8375]  ? __pfx_netlink_sendmsg+0x10/0x10
[  492.752465][ T8375]  ? __pfx_netlink_sendmsg+0x10/0x10
[  492.752667][ T8375]  __sock_sendmsg+0x333/0x3d0
[  492.753197][ T8375]  ____sys_sendmsg+0x7e0/0xd80
[  492.753433][ T8375]  ___sys_sendmsg+0x271/0x3b0
[  492.753657][ T8375]  ? __rcu_read_unlock+0x6d/0xd0
[  492.753827][ T8375]  ? __fget_files+0x3b4/0x4a0
[  492.754047][ T8375]  ? __fget_files+0x3b9/0x4a0
[  492.754258][ T8375]  ? kmsan_get_metadata+0xfb/0x160
[  492.754464][ T8375]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  492.754669][ T8375]  __x64_sys_sendmsg+0x211/0x3e0
[  492.754878][ T8375]  ? kmsan_get_metadata+0xfb/0x160
[  492.755088][ T8375]  x64_sys_call+0x1dfd/0x3e20
[  492.755302][ T8375]  do_syscall_64+0xd9/0x210
[  492.755494][ T8375]  ? irqentry_exit+0x16/0x60
[  492.755658][ T8375]  ? clear_bhb_loop+0x40/0x90
[  492.755832][ T8375]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  492.756014][ T8375] RIP: 0033:0x7feb51d8ebe9
[  492.756135][ T8375] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  492.756276][ T8375] RSP: 002b:00007feb52c8f038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  492.756432][ T8375] RAX: ffffffffffffffda RBX: 00007feb51fb5fa0 RCX: 00007feb51d8ebe9
[  492.756548][ T8375] RDX: 0000000000000000 RSI: 0000200000000280 RDI: 0000000000000003
[  492.756648][ T8375] RBP: 00007feb52c8f090 R08: 0000000000000000 R09: 0000000000000000
[  492.756749][ T8375] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[  492.756846][ T8375] R13: 00007feb51fb6038 R14: 00007feb51fb5fa0 R15: 00007ffc8123d1e8
[  492.757416][ T8375]  </TASK>
[  493.245944][ T8374] fuse: Bad value for 'fd'
[  493.555895][ T8385] netlink: 4 bytes leftover after parsing attributes in process `syz.2.788'.
[  493.620380][ T8385] erspan0: entered promiscuous mode
[  493.626266][ T8385] macvtap1: entered promiscuous mode
[  493.633375][ T8385] macvtap1: entered allmulticast mode
[  493.639246][ T8385] erspan0: entered allmulticast mode
[  493.660587][ T1900] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  493.671937][ T8385] netlink: 4 bytes leftover after parsing attributes in process `syz.2.788'.
[  493.694177][ T8385] erspan0: left allmulticast mode
[  493.703990][ T8385] erspan0: left promiscuous mode
[  493.799298][    C0] vcan0: j1939_tp_rxtimer: 0xffff88804f5f6e00: rx timeout, send abort
[  493.839252][ T1900] usb 5-1: config 0 has an invalid interface number: 9 but max is 0
[  493.850038][ T1900] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  493.862662][ T1900] usb 5-1: config 0 has no interface number 0
[  493.869241][ T1900] usb 5-1: New USB device found, idVendor=0421, idProduct=0302, bcdDevice=45.e8
[  493.878797][ T1900] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  493.942339][ T1900] usb 5-1: config 0 descriptor??
[  493.968506][ T1900] rndis_host 5-1:0.9: More than one union descriptor, skipping ...
[  493.977110][ T1900] usb 5-1: bad CDC descriptors
[  493.992221][ T1900] cdc_acm 5-1:0.9: More than one union descriptor, skipping ...
[  494.195832][ T8380] netlink: 8 bytes leftover after parsing attributes in process `syz.4.787'.
[  494.242157][ T5866] usb 5-1: USB disconnect, device number 30
[  494.300533][    C0] vcan0: j1939_tp_rxtimer: 0xffff888050165000: rx timeout, send abort
[  494.310105][    C0] vcan0: j1939_tp_rxtimer: 0xffff88804f5f6e00: abort rx timeout. Force session deactivation
[  494.813172][    C0] vcan0: j1939_tp_rxtimer: 0xffff888050165000: abort rx timeout. Force session deactivation
[  495.640426][ T1900] usb 2-1: new full-speed USB device number 23 using dummy_hcd
[  495.842894][ T8415] netlink: 4 bytes leftover after parsing attributes in process `syz.4.801'.
[  495.864090][ T1900] usb 2-1: unable to read config index 0 descriptor/start: -61
[  495.874093][ T1900] usb 2-1: can't read configurations, error -61
[  495.879595][ T8415] erspan0: entered promiscuous mode
[  495.887010][ T8415] macvtap1: entered promiscuous mode
[  495.894638][ T8415] macvtap1: entered allmulticast mode
[  495.901043][ T8415] erspan0: entered allmulticast mode
[  495.950541][ T8417] netlink: 4 bytes leftover after parsing attributes in process `syz.4.801'.
[  495.975401][ T8417] erspan0: left allmulticast mode
[  495.982962][ T8417] erspan0: left promiscuous mode
[  496.060913][ T1900] usb 2-1: new full-speed USB device number 24 using dummy_hcd
[  496.257381][ T1900] usb 2-1: unable to read config index 0 descriptor/start: -61
[  496.268084][ T1900] usb 2-1: can't read configurations, error -61
[  496.310359][ T1900] usb usb2-port1: attempt power cycle
[  496.679851][ T1900] usb 2-1: new full-speed USB device number 25 using dummy_hcd
[  496.762054][ T1900] usb 2-1: unable to read config index 0 descriptor/start: -61
[  496.771448][ T1900] usb 2-1: can't read configurations, error -61
[  496.896752][    C1] vcan0: j1939_tp_rxtimer: 0xffff88804f5f9c00: rx timeout, send abort
[  496.939043][ T1900] usb 2-1: new full-speed USB device number 26 using dummy_hcd
[  497.012247][ T1900] usb 2-1: unable to read config index 0 descriptor/start: -61
[  497.020582][ T1900] usb 2-1: can't read configurations, error -61
[  497.077170][ T1900] usb usb2-port1: unable to enumerate USB device
[  497.397721][    C1] vcan0: j1939_tp_rxtimer: 0xffff88804f5f9e00: rx timeout, send abort
[  497.410945][    C1] vcan0: j1939_tp_rxtimer: 0xffff88804f5f9c00: abort rx timeout. Force session deactivation
[  497.910287][    C1] vcan0: j1939_tp_rxtimer: 0xffff88804f5f9e00: abort rx timeout. Force session deactivation
[  497.953579][ T8438] netlink: 'syz.3.811': attribute type 3 has an invalid length.
[  498.077190][ T1900] usb 3-1: new high-speed USB device number 30 using dummy_hcd
[  498.166250][ T8439] loop4: detected capacity change from 0 to 512
[  498.429045][ T1900] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  498.429202][ T1900] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  498.442681][ T1900] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  498.442867][ T1900] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  498.443013][ T1900] usb 3-1: SerialNumber: syz
[  498.558467][ T8439] EXT4-fs error (device loop4): ext4_orphan_get:1418: comm syz.4.812: bad orphan inode 11862016
[  498.565289][ T8439] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  498.566094][ T8439] ext4 filesystem being mounted at /150/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  498.787888][ T1900] usb 3-1: 0:2 : does not exist
[  499.071665][ T1900] usb 3-1: USB disconnect, device number 30
[  499.545566][ T5807] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  501.043204][ T8469] loop1: detected capacity change from 0 to 512
[  501.046046][ T8469] EXT4-fs: Ignoring removed bh option
[  501.048533][ T8469] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  501.093105][ T8469] EXT4-fs (loop1): 1 truncate cleaned up
[  501.096176][ T8469] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  501.126874][   T30] kauditd_printk_skb: 127 callbacks suppressed
[  501.126966][   T30] audit: type=1800 audit(1754865488.527:184): pid=8469 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.821" name="file2" dev="loop1" ino=16 res=0 errno=0
[  501.127239][   T30] audit: type=1804 audit(1754865488.537:185): pid=8469 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.821" name="/newroot/162/file2/file2" dev="loop1" ino=16 res=1 errno=0
[  501.238046][ T8465] loop4: detected capacity change from 0 to 2048
[  501.416917][    C1] vcan0: j1939_tp_rxtimer: 0xffff88804f5f9e00: rx timeout, send abort
[  501.436664][ T8465] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  501.437157][ T8465] ext4 filesystem being mounted at /151/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  501.684859][ T5810] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  501.857004][ T8481] loop2: detected capacity change from 0 to 128
[  501.878545][ T8480] netlink: 'syz.3.824': attribute type 3 has an invalid length.
[  501.917145][    C1] vcan0: j1939_tp_rxtimer: 0xffff88804f5f9e00: abort rx timeout. Force session deactivation
[  501.931107][    C1] vcan0: j1939_tp_rxtimer: 0xffff88804f5f9000: rx timeout, send abort
[  502.040714][ T1900] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  502.051333][ T8481] FAULT_INJECTION: forcing a failure.
[  502.051333][ T8481] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  502.066104][ T8481] CPU: 0 UID: 0 PID: 8481 Comm: syz.2.825 Tainted: G        W           6.17.0-rc1-syzkaller #0 PREEMPT(none) 
[  502.066300][ T8481] Tainted: [W]=WARN
[  502.066359][ T8481] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  502.066459][ T8481] Call Trace:
[  502.066513][ T8481]  <TASK>
[  502.066569][ T8481]  __dump_stack+0x26/0x30
[  502.066786][ T8481]  dump_stack_lvl+0x1df/0x270
[  502.066986][ T8481]  dump_stack+0x1e/0x25
[  502.067165][ T8481]  should_fail_ex+0x7dc/0x8a0
[  502.067404][ T8481]  should_fail+0x2a/0x40
[  502.067610][ T8481]  should_fail_usercopy+0x2e/0x40
[  502.067828][ T8481]  strncpy_from_user+0x38/0x470
[  502.068011][ T8481]  ? kmsan_get_metadata+0xfb/0x160
[  502.068182][ T8481]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  502.068365][ T8481]  getname_flags+0x179/0xac0
[  502.068602][ T8481]  __x64_sys_rename+0x9d/0x140
[  502.068797][ T8481]  x64_sys_call+0x269/0x3e20
[  502.069006][ T8481]  do_syscall_64+0xd9/0x210
[  502.069181][ T8481]  ? irqentry_exit+0x16/0x60
[  502.069330][ T8481]  ? clear_bhb_loop+0x40/0x90
[  502.069511][ T8481]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  502.069679][ T8481] RIP: 0033:0x7feb51d8ebe9
[  502.069792][ T8481] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  502.069931][ T8481] RSP: 002b:00007feb52c8f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[  502.070077][ T8481] RAX: ffffffffffffffda RBX: 00007feb51fb5fa0 RCX: 00007feb51d8ebe9
[  502.070192][ T8481] RDX: 0000000000000000 RSI: 0000200000000240 RDI: 0000200000000140
[  502.070297][ T8481] RBP: 00007feb52c8f090 R08: 0000000000000000 R09: 0000000000000000
[  502.070397][ T8481] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  502.070498][ T8481] R13: 00007feb51fb6038 R14: 00007feb51fb5fa0 R15: 00007ffc8123d1e8
[  502.070646][ T8481]  </TASK>
[  502.277505][    C0] vkms_vblank_simulate: vblank timer overrun
[  502.360612][ T1900] usb 5-1: device descriptor read/64, error -71
[  502.440406][    C1] vcan0: j1939_tp_rxtimer: 0xffff88804f5f9000: abort rx timeout. Force session deactivation
[  502.497910][ T8485] loop3: detected capacity change from 0 to 512
[  502.623581][ T8485] EXT4-fs error (device loop3): ext4_orphan_get:1418: comm syz.3.827: bad orphan inode 11862016
[  502.663838][ T1900] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[  502.733822][ T8485] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  502.749349][ T8485] ext4 filesystem being mounted at /182/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  502.860211][ T1900] usb 5-1: device descriptor read/64, error -71
[  502.973072][ T1900] usb usb5-port1: attempt power cycle
[  503.149812][   T24] usb 3-1: new high-speed USB device number 31 using dummy_hcd
[  503.251648][ T5807] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  503.354350][   T24] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  503.367205][   T24] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  503.437303][   T24] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  503.448330][   T24] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  503.457624][   T24] usb 3-1: SerialNumber: syz
[  503.635159][ T5823] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  503.793842][   T24] usb 3-1: 0:2 : does not exist
[  503.958761][   T24] usb 3-1: USB disconnect, device number 31
[  504.858900][ T8506] loop4: detected capacity change from 0 to 32768
[  504.869178][ T8506] btrfs: Deprecated parameter 'usebackuproot'
[  504.877765][ T8506] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  504.890549][ T8506] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.832 (8506)
[  504.913844][ T8506] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  504.926455][ T8506] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm
[  504.936024][ T8506] BTRFS info (device loop4): using free-space-tree
[  505.188132][ T8506] BTRFS info (device loop4): rebuilding free space tree
[  505.219945][ T8519] netlink: 'syz.2.837': attribute type 3 has an invalid length.
[  505.372192][ T8529] loop3: detected capacity change from 0 to 64
[  505.434814][ T8529] hfs: unable to load codepage "macturkist��d=�_7�v�;������w7�i���]^֚��6q�Dt��n*�h*�m�'��C�u� �N\����Fi��$�g+A�9�n�jS���S+�������hbo7±q6�Ӕl��n��־��n���^��k��T@D|��_�
[  505.434814][ T8529] ����w�0x0000000000000000"
[  505.500131][    C1] vcan0: j1939_tp_rxtimer: 0xffff88804d0aa200: rx timeout, send abort
[  505.673411][ T8537] netlink: 8 bytes leftover after parsing attributes in process `syz.2.839'.
[  505.798729][ T8529] loop3: detected capacity change from 0 to 1024
[  505.901380][ T8529] hfsplus: bad catalog entry type
[  505.923298][ T5807] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  505.955981][ T8529] (unnamed net_device) (uninitialized): option lacp_rate: invalid value (60)
[  506.001241][    C1] vcan0: j1939_tp_rxtimer: 0xffff88804d0ab600: rx timeout, send abort
[  506.019800][    C1] vcan0: j1939_tp_rxtimer: 0xffff88804d0aa200: abort rx timeout. Force session deactivation
[  506.464469][ T5866] usb 3-1: new high-speed USB device number 32 using dummy_hcd
[  506.510315][    C1] vcan0: j1939_tp_rxtimer: 0xffff88804d0ab600: abort rx timeout. Force session deactivation
[  506.670263][ T8543] netlink: 'syz.1.842': attribute type 2 has an invalid length.
[  506.698980][ T3493] hfsplus: b-tree write err: -5, ino 4
[  506.734483][ T5866] usb 3-1: Using ep0 maxpacket: 8
[  506.825629][ T8543] netlink: 8 bytes leftover after parsing attributes in process `syz.1.842'.
[  506.832577][ T5866] usb 3-1: New USB device found, idVendor=0ccd, idProduct=0069, bcdDevice=6e.55
[  506.848746][ T5866] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  506.863091][ T5866] usb 3-1: Product: syz
[  506.867956][ T5866] usb 3-1: Manufacturer: syz
[  506.873401][ T5866] usb 3-1: SerialNumber: syz
[  506.944288][ T5866] usb 3-1: config 0 descriptor??
[  507.242890][ T8549] loop3: detected capacity change from 0 to 1024
[  507.246318][ T8541] fuse: blksize only supported for fuseblk
[  508.693732][ T8561] loop4: detected capacity change from 0 to 1024
[  508.859917][ T8565] netlink: 'syz.1.849': attribute type 3 has an invalid length.
[  508.896147][ T5866] usb 3-1: dvb_usb_v2: usb_bulk_msg() failed=-22
[  508.929169][ T5866] dvb_usb_af9015 3-1:0.0: probe with driver dvb_usb_af9015 failed with error -22
[  509.001499][ T5866] usb 3-1: USB disconnect, device number 32
[  509.009999][   T24] usb 4-1: new high-speed USB device number 29 using dummy_hcd
[  509.198085][   T24] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  509.209873][   T24] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  509.315135][   T24] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  509.325835][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  509.336348][   T24] usb 4-1: SerialNumber: syz
[  509.677032][   T24] usb 4-1: 0:2 : does not exist
[  509.738829][   T24] usb 4-1: USB disconnect, device number 29
[  509.850741][ T5866] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[  509.880546][    C0] vcan0: j1939_tp_rxtimer: 0xffff88804d0ab600: rx timeout, send abort
[  510.093201][ T5866] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  510.105384][ T5866] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  510.215474][ T5866] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  510.226293][ T5866] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  510.235839][ T5866] usb 2-1: SerialNumber: syz
[  510.381693][    C0] vcan0: j1939_tp_rxtimer: 0xffff888050307000: rx timeout, send abort
[  510.391659][    C0] vcan0: j1939_tp_rxtimer: 0xffff88804d0ab600: abort rx timeout. Force session deactivation
[  510.602325][ T5866] usb 2-1: 0:2 : does not exist
[  510.840141][ T5866] usb 2-1: USB disconnect, device number 27
[  510.891400][    C0] vcan0: j1939_tp_rxtimer: 0xffff888050307000: abort rx timeout. Force session deactivation
[  511.073730][ T8577] loop4: detected capacity change from 0 to 40427
[  511.101762][ T8577] F2FS-fs (loop4): invalid crc value
[  511.141234][ T8579] loop2: detected capacity change from 0 to 1024
[  511.473083][ T8577] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  511.484554][ T8577] F2FS-fs (loop4): Start checkpoint disabled!
[  511.503242][ T8577] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  511.733567][ T8584] loop3: detected capacity change from 0 to 512
[  512.033536][ T8584] EXT4-fs error (device loop3): ext4_orphan_get:1418: comm syz.3.857: bad orphan inode 11862016
[  512.166398][ T8584] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  512.181555][ T8584] ext4 filesystem being mounted at /188/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  512.604335][ T8595] loop2: detected capacity change from 0 to 736
[  513.017288][ T8600] netlink: 4 bytes leftover after parsing attributes in process `syz.1.862'.
[  513.028824][ T8600] netlink: 4 bytes leftover after parsing attributes in process `syz.1.862'.
[  513.194347][ T5823] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  513.660976][ T8608] 8021q: adding VLAN 0 to HW filter on device bond1
[  513.999813][    C0] vcan0: j1939_tp_rxtimer: 0xffff888116f73a00: rx timeout, send abort
[  514.492757][ T8620] loop4: detected capacity change from 0 to 1024
[  514.500861][    C0] vcan0: j1939_tp_rxtimer: 0xffff888116f73c00: rx timeout, send abort
[  514.510699][    C0] vcan0: j1939_tp_rxtimer: 0xffff888116f73a00: abort rx timeout. Force session deactivation
[  515.011025][    C0] vcan0: j1939_tp_rxtimer: 0xffff888116f73c00: abort rx timeout. Force session deactivation
[  515.320127][   T24] usb 4-1: new high-speed USB device number 30 using dummy_hcd
[  515.445105][ T8631] fuse: Unknown parameter 'grou00000000000000000000'
[  515.495100][   T24] usb 4-1: Using ep0 maxpacket: 16
[  515.500475][ T5866] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[  515.535228][   T24] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  515.547075][   T24] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  515.628598][   T24] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  515.639120][   T24] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  515.648781][   T24] usb 4-1: Product: syz
[  515.654811][   T24] usb 4-1: Manufacturer: syz
[  515.659811][   T24] usb 4-1: SerialNumber: syz
[  515.707998][ T5866] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  515.720178][ T5866] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  515.731030][ T5866] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  515.745245][ T5866] usb 5-1: New USB device found, idVendor=1b96, idProduct=0007, bcdDevice= 0.00
[  515.755376][ T5866] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  515.812032][ T5866] usb 5-1: config 0 descriptor??
[  516.151222][   T24] usb 4-1: 0:2 : does not exist
[  516.281020][ T8629] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  516.291922][ T8629] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  516.566781][ T8629] loop4: detected capacity change from 0 to 512
[  516.611062][ T8629] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  516.820642][ T8629] EXT4-fs error (device loop4): ext4_get_branch:178: inode #11: block 4294967295: comm syz.4.875: invalid block
[  516.834826][   T24] usb 4-1: 5:0: failed to get current value for ch 0 (-22)
[  516.915014][ T8629] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.875: invalid indirect mapped block 4294967295 (level 1)
[  516.958068][   T24] usb 4-1: USB disconnect, device number 30
[  517.035032][ T8629] EXT4-fs error (device loop4): ext4_free_branches:1023: inode #11: comm syz.4.875: invalid indirect mapped block 4294967295 (level 1)
[  517.110760][ T8629] EXT4-fs (loop4): 2 truncates cleaned up
[  517.119383][ T8629] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  517.323584][ T5866] ntrig 0003:1B96:0007.0007: invalid report_size -220567808
[  517.332158][ T5866] ntrig 0003:1B96:0007.0007: item 0 4 1 7 parsing failed
[  517.386934][ T5866] ntrig 0003:1B96:0007.0007: parse failed
[  517.394000][ T5866] ntrig 0003:1B96:0007.0007: probe with driver ntrig failed with error -22
[  517.562253][   T24] usb 5-1: USB disconnect, device number 34
[  518.016660][    C0] vcan0: j1939_tp_rxtimer: 0xffff88813dc5ee00: rx timeout, send abort
[  518.298447][ T8642] EXT4-fs error (device loop4): ext4_validate_block_bitmap:432: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[  518.517573][    C0] vcan0: j1939_tp_rxtimer: 0xffff88813dc5f000: rx timeout, send abort
[  518.529950][    C0] vcan0: j1939_tp_rxtimer: 0xffff88813dc5ee00: abort rx timeout. Force session deactivation
[  518.760627][ T5807] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  519.027046][    C0] vcan0: j1939_tp_rxtimer: 0xffff88813dc5f000: abort rx timeout. Force session deactivation
[  519.265716][ T8655] loop3: detected capacity change from 0 to 1024
[  519.496088][ T8658] netlink: 504 bytes leftover after parsing attributes in process `syz.4.886'.
[  519.767369][ T8662] fuse: Unknown parameter 'grou00000000000000000000'
[  520.194675][ T8667] FAULT_INJECTION: forcing a failure.
[  520.194675][ T8667] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  520.215290][ T8667] CPU: 0 UID: 0 PID: 8667 Comm: syz.1.890 Tainted: G        W           6.17.0-rc1-syzkaller #0 PREEMPT(none) 
[  520.215496][ T8667] Tainted: [W]=WARN
[  520.215553][ T8667] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  520.215647][ T8667] Call Trace:
[  520.215704][ T8667]  <TASK>
[  520.215758][ T8667]  __dump_stack+0x26/0x30
[  520.215959][ T8667]  dump_stack_lvl+0x1df/0x270
[  520.216161][ T8667]  dump_stack+0x1e/0x25
[  520.216341][ T8667]  should_fail_ex+0x7dc/0x8a0
[  520.216707][ T8667]  should_fail+0x2a/0x40
[  520.216926][ T8667]  should_fail_usercopy+0x2e/0x40
[  520.217163][ T8667]  _copy_from_user+0x33/0x100
[  520.217332][ T8667]  proc_control+0x57/0x100
[  520.217527][ T8667]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  520.217734][ T8667]  usbdev_ioctl+0x101b/0x4800
[  520.217970][ T8667]  ? __pfx_usbdev_ioctl+0x10/0x10
[  520.218142][ T8667]  __se_sys_ioctl+0x239/0x400
[  520.218330][ T8667]  __x64_sys_ioctl+0x97/0xe0
[  520.218495][ T8667]  x64_sys_call+0x1cbc/0x3e20
[  520.218712][ T8667]  do_syscall_64+0xd9/0x210
[  520.218892][ T8667]  ? irqentry_exit+0x16/0x60
[  520.219112][ T8667]  ? clear_bhb_loop+0x40/0x90
[  520.219310][ T8667]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  520.219484][ T8667] RIP: 0033:0x7fb88d58ebe9
[  520.219634][ T8667] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  520.219772][ T8667] RSP: 002b:00007fb88e4c9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  520.219921][ T8667] RAX: ffffffffffffffda RBX: 00007fb88d7b5fa0 RCX: 00007fb88d58ebe9
[  520.220032][ T8667] RDX: 0000200000000040 RSI: 00000000c0185500 RDI: 0000000000000003
[  520.220135][ T8667] RBP: 00007fb88e4c9090 R08: 0000000000000000 R09: 0000000000000000
[  520.220230][ T8667] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  520.220318][ T8667] R13: 00007fb88d7b6038 R14: 00007fb88d7b5fa0 R15: 00007fff6303c4f8
[  520.220482][ T8667]  </TASK>
[  521.506954][ T8682] netlink: 'syz.4.896': attribute type 2 has an invalid length.
[  521.710542][    C0] vcan0: j1939_tp_rxtimer: 0xffff88813dc5ee00: rx timeout, send abort
[  522.211594][    C0] vcan0: j1939_tp_rxtimer: 0xffff88813dc5f000: rx timeout, send abort
[  522.229666][    C0] vcan0: j1939_tp_rxtimer: 0xffff88813dc5ee00: abort rx timeout. Force session deactivation
[  522.720526][    C0] vcan0: j1939_tp_rxtimer: 0xffff88813dc5f000: abort rx timeout. Force session deactivation
[  522.810325][ T8685] loop3: detected capacity change from 0 to 40427
[  522.830966][ T8685] F2FS-fs (loop3): invalid crc value
[  523.238221][ T8697] fuse: Unknown parameter 'group_i00000000000000000000'
[  523.243089][ T8685] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 1
[  523.256974][ T8685] F2FS-fs (loop3): Start checkpoint disabled!
[  523.278458][ T8685] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  524.306254][ T8708] loop1: detected capacity change from 0 to 8
[  524.515714][ T8708] SQUASHFS error: Corrupted symlink
[  524.745020][ T8708] SQUASHFS error: Corrupted symlink
[  524.786885][ T8708] comedi comedi3: 8255: I/O port conflict (0x5,4)
[  524.794639][ T8708] comedi comedi3: 8255: I/O port conflict (0x4,4)
[  524.802602][ T8708] comedi comedi3: 8255: I/O port conflict (0x1,4)
[  524.812932][ T8708] comedi comedi3: 8255: I/O port conflict (0x5c952399,4)
[  525.107950][ T8716] netlink: 'syz.4.910': attribute type 2 has an invalid length.
[  525.201328][ T5866] usb 3-1: new high-speed USB device number 33 using dummy_hcd
[  525.403907][ T5866] usb 3-1: Using ep0 maxpacket: 16
[  525.442787][ T5866] usb 3-1: unable to get BOS descriptor or descriptor too short
[  525.462935][ T5866] usb 3-1: config 7 has an invalid interface number: 79 but max is 0
[  525.472331][ T5866] usb 3-1: config 7 has no interface number 0
[  525.480015][ T5866] usb 3-1: config 7 interface 79 altsetting 6 endpoint 0xF has invalid maxpacket 512, setting to 64
[  525.491929][ T5866] usb 3-1: config 7 interface 79 altsetting 6 endpoint 0x7 has an invalid bInterval 64, changing to 10
[  525.504906][ T5866] usb 3-1: config 7 interface 79 has no altsetting 0
[  525.534849][ T5866] usb 3-1: New USB device found, idVendor=06cd, idProduct=0202, bcdDevice=f4.98
[  525.545339][ T5866] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  525.555297][ T5866] usb 3-1: Product: syz
[  525.560175][ T5866] usb 3-1: Manufacturer: syz
[  525.565235][ T5866] usb 3-1: SerialNumber: syz
[  525.601979][    C0] vcan0: j1939_tp_rxtimer: 0xffff8881185da400: rx timeout, send abort
[  525.809775][ T8727] netlink: 'syz.4.915': attribute type 24 has an invalid length.
[  526.103034][    C0] vcan0: j1939_tp_rxtimer: 0xffff8881185da600: rx timeout, send abort
[  526.113011][    C0] vcan0: j1939_tp_rxtimer: 0xffff8881185da400: abort rx timeout. Force session deactivation
[  526.164850][ T8729] fuse: Unknown parameter 'group_i00000000000000000000'
[  526.474842][ T5823] =====================================================
[  526.483449][ T5823] BUG: KMSAN: kernel-infoleak-after-free in _copy_to_user+0xcc/0x120
[  526.492475][ T5823]  _copy_to_user+0xcc/0x120
[  526.498120][ T5823]  copy_siginfo_to_user+0x3f/0x140
[  526.504959][ T5823]  x64_setup_rt_frame+0x1392/0x2590
[  526.511321][ T5823]  arch_do_signal_or_restart+0x63c/0xbf0
[  526.517746][ T5823]  exit_to_user_mode_loop+0xec/0x330
[  526.523941][ T5823]  do_syscall_64+0x1e3/0x210
[  526.529331][ T5823]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  526.536929][ T5823] 
[  526.539997][ T5823] Uninit was stored to memory at:
[  526.546206][ T5823]  __dequeue_signal+0x4d6/0x970
[  526.557578][ T5823]  dequeue_signal+0x1c0/0x840
[  526.564714][ T5823]  get_signal+0xbf8/0x2a20
[  526.570254][ T5823]  arch_do_signal_or_restart+0x53/0xbf0
[  526.577459][ T5823]  exit_to_user_mode_loop+0xec/0x330
[  526.584049][ T5823]  do_syscall_64+0x1e3/0x210
[  526.590592][ T5823]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  526.597457][ T5823] 
[  526.600343][ T5823] Uninit was created at:
[  526.606037][ T5823]  kmem_cache_free+0x2a1/0xec0
[  526.612387][    C0] vcan0: j1939_tp_rxtimer: 0xffff8881185da600: abort rx timeout. Force session deactivation
[  526.623972][ T5823]  __sigqueue_free+0x23a/0x270
[  526.629739][ T5823]  __dequeue_signal+0x66b/0x970
[  526.635789][ T5823]  dequeue_signal+0x1c0/0x840
[  526.641354][ T5823]  get_signal+0xbf8/0x2a20
[  526.646369][ T5823]  arch_do_signal_or_restart+0x53/0xbf0
[  526.658683][ T5823]  exit_to_user_mode_loop+0xec/0x330
[  526.666360][ T5823]  do_syscall_64+0x1e3/0x210
[  526.671492][ T5823]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  526.678097][ T5823] 
[  526.681044][ T5823] Bytes 12-15 of 48 are uninitialized
[  526.687647][ T5823] Memory access of size 48 starts at ffff888047ca3df0
[  526.695377][ T5823] Data copied to user address 00007fffdfe36f70
[  526.702033][ T5823] 
[  526.704759][ T5823] CPU: 0 UID: 0 PID: 5823 Comm: syz-executor Tainted: G        W           6.17.0-rc1-syzkaller #0 PREEMPT(none) 
[  526.719680][ T5823] Tainted: [W]=WARN
[  526.724036][ T5823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  526.735571][ T5823] =====================================================
[  526.744242][ T5823] Disabling lock debugging due to kernel taint
[  526.751485][ T5823] Kernel panic - not syncing: kmsan.panic set ...
[  526.758522][ T5823] CPU: 0 UID: 0 PID: 5823 Comm: syz-executor Tainted: G    B   W           6.17.0-rc1-syzkaller #0 PREEMPT(none) 
[  526.771029][ T5823] Tainted: [B]=BAD_PAGE, [W]=WARN
[  526.776387][ T5823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  526.787390][ T5823] Call Trace:
[  526.791421][ T5823]  <TASK>
[  526.794922][ T5823]  __dump_stack+0x26/0x30
[  526.799472][ T5823]  dump_stack_lvl+0x53/0x270
[  526.804799][ T5823]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  526.811113][ T5823]  dump_stack+0x1e/0x25
[  526.815592][ T5823]  vpanic+0x361/0xc50
[  526.820027][ T5823]  panic+0x15d/0x160
[  526.824289][ T5823]  kmsan_report+0x31c/0x320
[  526.830069][ T5823]  ? copy_fpstate_to_sigframe+0x11c1/0x13d0
[  526.836583][ T5823]  ? kmsan_internal_check_memory+0x16c/0x230
[  526.843861][ T5823]  ? kmsan_copy_to_user+0xf1/0x190
[  526.849646][ T5823]  ? _copy_to_user+0xcc/0x120
[  526.854722][ T5823]  ? copy_siginfo_to_user+0x3f/0x140
[  526.860338][ T5823]  ? x64_setup_rt_frame+0x1392/0x2590
[  526.866072][ T5823]  ? arch_do_signal_or_restart+0x63c/0xbf0
[  526.872497][ T5823]  ? exit_to_user_mode_loop+0xec/0x330
[  526.878436][ T5823]  ? do_syscall_64+0x1e3/0x210
[  526.883650][ T5823]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  526.890382][ T5823]  ? stack_depot_save_flags+0x35/0x7b0
[  526.896154][ T5823]  ? kmsan_get_metadata+0xfb/0x160
[  526.902350][ T5823]  ? kmsan_internal_check_memory+0x9c/0x230
[  526.909009][ T5823]  ? copy_fpstate_to_sigframe+0x126f/0x13d0
[  526.915441][ T5823]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  526.921633][ T5823]  ? kmsan_get_metadata+0xfb/0x160
[  526.927399][ T5823]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  526.934138][ T5823]  kmsan_internal_check_memory+0x16c/0x230
[  526.940614][ T5823]  kmsan_copy_to_user+0xf1/0x190
[  526.946223][ T5823]  _copy_to_user+0xcc/0x120
[  526.951081][ T5823]  copy_siginfo_to_user+0x3f/0x140
[  526.956662][ T5823]  x64_setup_rt_frame+0x1392/0x2590
[  526.962374][ T5823]  arch_do_signal_or_restart+0x63c/0xbf0
[  526.968504][ T5823]  exit_to_user_mode_loop+0xec/0x330
[  526.974567][ T5823]  do_syscall_64+0x1e3/0x210
[  526.979463][ T5823]  ? clear_bhb_loop+0x40/0x90
[  526.984444][ T5823]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  526.991307][ T5823] RIP: 0033:0x7f8c2c18d550
[  526.995951][ T5823] Code: 48 89 44 24 20 75 93 44 89 54 24 0c e8 49 94 02 00 44 8b 54 24 0c 89 da 48 89 ee 41 89 c0 bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 38 44 89 c7 89 44 24 0c e8 9c 94 02 00 8b 44
[  527.016998][ T5823] RSP: 002b:00007fffdfe37400 EFLAGS: 00000293 ORIG_RAX: 0000000000000101
[  527.025804][ T5823] RAX: 0000000000000003 RBX: 0000000000000002 RCX: 00007f8c2c18d550
[  527.034584][ T5823] RDX: 0000000000000002 RSI: 00007fffdfe37510 RDI: 00000000ffffff9c
[  527.043575][ T5823] RBP: 00007fffdfe37510 R08: 0000000000000000 R09: 00007fffdfe371c7
[  527.051956][ T5823] R10: 0000000000000000 R11: 0000000000000293 R12: 00000000000000c7
[  527.060063][ T5823] R13: 00000000000927c0 R14: 00000000000803f4 R15: 00007fffdfe37510
[  527.068490][ T5823]  </TASK>
[  527.072409][ T5823] Kernel Offset: disabled
[  527.076823][ T5823] Rebooting in 86400 seconds..