last executing test programs:

18.446311281s ago: executing program 4 (id=304):
socket$inet_mptcp(0x2, 0x1, 0x106)
memfd_create(&(0x7f0000000300)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\xafa\xac\x06\x9c&\xf5\xe3j\xfa\tcqM\xb8R\x86\xd9\xd2.\x9f\x12\xed\x10\f\xbd\x1a|\x8a\xbb\xda\xcfY\x98gU@\xf2M\xc0\xb5\xdf\x9a\x8d\xdb,n\xae\x0eT\x80\x8c\xfd\xd7\xb0\x94\x82t\x96\rKx\xc5\x9b\x8c\x87\x96\x8bc\xbc\xee\xcc\x9f\xe3F\x99V4\x8e;M\xa9\x823\xe3\xb3mG\x8f\xdb\xed\x1b\x05\xec\xfc\xd1\xb5\xfd\xec@\xdeU\xdd\xa4\xc1\xe4L)\x8e\xe5\x91\x8e\xd4\x89\xef\x95T\x05G\xac\xb8\xc1: )mh\xc7\xf1?\xbb\x13;\xad\x95\xd70\xb6\x0e\x7f\x84r\x0e\xbf\xc5\xf6\xd4\xdd\t\x14\x18\xf7\xefi\x93\x03\xd2\xf2\bK\"\xd2\xb5\xaa\xb8\xc8\xe0\xac\x99\xe8su\xcd\xc3E\x12\xd7\xdd\x96!\x16Tu\xe3\xf0\x84#R\xd9\xe3~Wj\xb0r\x87\'\xea\a\xcfOeK\x9daW\xf4\x87@\x9c\xf3\xf1K\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x91\xe6\xdb\xc2\xa5h\'\xdfIn\x97\x0263~\xeb\xbe(i\n\xc2k4\x7f\x12\xa9e`SOs\x8c\xb4\xe7FeQ\xc6$\x92j_U\xfa\b\xea\xb0bYkW\xc0\x05\aC{\xcc\x03T\x17\xa5Sk\x87P\xc2\x97D\xb2\xfa\x1b\x9fe\xf4\x10\x1a\xad\x92\xce\x88\x1b\xbc\xe14\x19\xaa\xd3\r\xf4\xa2\xc3\x9e=\xa0 \xe6j\xe5\x85\xf8\x97\x03\x15\xaa\x920\xdcrI\xd8\b\xfb\xc7\xe7xX\x00>d\xbb\xa71\xad\x9a\xfb\xe6\x13\x87\x93\\\xe5W-\xfc\xfd\xb8O\xb9j\xb8\xf2\x9dx\xb2\x86\xad\x92', 0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x0, &(0x7f0000000240)=0x80007)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
landlock_create_ruleset(&(0x7f00000001c0)={0x1407, 0x3, 0x1}, 0x14, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000040)={0x26, 'hash\x00', 0x0, 0x0, 'sha256-ni\x00'}, 0xffffffffffffffbd)
r1 = creat(&(0x7f0000000500)='./file0\x00', 0x0)
close(r1)
openat$vicodec0(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r2 = socket$tipc(0x1e, 0x2, 0x0)
mount$9p_fd(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000100)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}})
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r3, 0x9)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
sendmmsg(r4, &(0x7f0000002840)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20044000)
connect$inet(r4, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff)
fsetxattr$trusted_overlay_redirect(r5, &(0x7f0000000140), &(0x7f0000000280)='./file0\x00', 0x8, 0x1)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)={0x14, r6, 0x1, 0x70bd2c, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x800)
r7 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
bind$bt_hci(r7, &(0x7f0000000000)={0x27}, 0x74)
openat$snapshot(0xffffffffffffff9c, &(0x7f00000000c0), 0xc2d41, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)

15.031418105s ago: executing program 4 (id=309):
r0 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_LISTEN_ALL_NSID(r0, 0x10e, 0x8, &(0x7f0000000000)=0x2, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2002, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000080)="67400f07c40249af4b8bb9800000c00f3235010200000f300f20a366450f769e00000100440f20c03588001d00445b66baf80cb88cf4b684ef66bafc0ced460f01c9c4827d24c366ba4cf0ff07ef87f345a57a43e16806a4", 0x58}], 0x1, 0x7c, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
ioctl$KVM_SET_SREGS(r3, 0x4138ae84, &(0x7f00000001c0)={{0x1ffe, 0xeeee0000, 0xa, 0x9, 0xfb, 0xe4, 0x40, 0x7, 0x0, 0x2b, 0x19}, {0x5000, 0x2000, 0x3, 0x0, 0x40, 0x5, 0x7d, 0x6, 0x5, 0x3, 0x3, 0xb5}, {0xeeef0000, 0xdddd0000, 0xe, 0x5, 0x3, 0x7, 0x10, 0x9, 0x1, 0xa7, 0x5, 0x81}, {0x80a0000, 0xeeee0000, 0xb, 0x6, 0x4, 0x42, 0xb, 0xff, 0x8, 0x7, 0xe}, {0x10000, 0xd000, 0xb, 0x3, 0x3, 0x6, 0xab, 0x7f, 0x7, 0x83, 0xf6, 0x83}, {0x1000, 0x100000, 0xc, 0x7, 0xb1, 0x81, 0x1, 0xa0, 0x80, 0xf, 0x1}, {0x3000, 0x8000000, 0x4, 0x5, 0x7, 0x5, 0x7, 0x3, 0x5, 0x81, 0x1, 0x70}, {0x100000, 0x1000, 0x4, 0x5, 0xf, 0x7, 0x6, 0x34, 0x2, 0xc, 0xb0, 0x9}, {0x808d000, 0x30}, {0x10000, 0x7}, 0x80000031, 0x0, 0x8000000, 0x102064, 0x3, 0x0, 0x3000, [0xaffe, 0x1000, 0x3, 0xff]})
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e00000004000000080000000c"], 0x48)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x2, 0x4, 0x4, 0x1, 0x1004}, 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000e00000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='percpu_alloc_percpu\x00', r8}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x3, 0x3, &(0x7f0000000740)=@framed, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r9 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r9, &(0x7f0000000400)={0x2, 0x4e20, @remote}, 0x10)
sendmmsg$inet(r9, &(0x7f0000005240), 0x4000095, 0x4008880)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000001080)=[{&(0x7f0000000040)="a72d11a15c068c0a7d2eaebc5cea1f81510ff6091475aeec600831aa9d3944e60bc2ad06a619c560aa0118b28f68f1eb14549d633b4b23f179fb680716faa43414787559be90843c35ab30acad8a6740140e00721abc2eb362f7bde53b3c992d3e28ccc20ec84fdc569947047f6c09a647ee8c0a747b951e66c068ccf1af93ee9e6f9528ff", 0x85}], 0x1}, 0x9fc)
r10 = syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2)
ioctl$VIDIOC_S_EXT_CTRLS(r10, 0xc0205648, &(0x7f0000000100)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000040)={0x98f90b, 0xf4c, '\x00', @p_u16=&(0x7f00000000c0)}})

14.127648891s ago: executing program 0 (id=316):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x2008080, &(0x7f0000000280)=ANY=[@ANYBLOB='iocharset=cp869,iocharset=cp863,nonumtail=0,nonumtail=0,shortname=mixed,codepage=862,un[_xlate=1,nfs,uni_xlate=1,iocharset=cp949,utf8=1,rodir,utf8=0,\x00'], 0x81, 0x2c8, &(0x7f0000000780)="$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")
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000240)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x2b1245d, 0x0, 0xfc, 0x0, &(0x7f00000000c0))
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x80098, 0x0)
openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x101040, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_emit_ethernet(0x66, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x14, 0x3a, 0x100, 0x70bd2b, 0x25dfdbf9, {0xe}}, 0x14}, 0x1, 0x0, 0x0, 0x2040080}, 0x4000000)
socket$inet(0x2, 0x4000000000000001, 0x0)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x8fff, 0x0)
execve(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)
openat$binfmt_register(0xffffffffffffff9c, 0x0, 0x1, 0x0)
openat$binfmt_register(0xffffffffffffff9c, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r2 = openat$sequencer(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$SNDCTL_SYNTH_MEMAVL(r2, 0xc004510e, &(0x7f00000000c0)=0xd)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x14)
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='dyn'])
getcwd(&(0x7f0000000140)=""/115, 0x73)

12.517982133s ago: executing program 4 (id=321):
write$cgroup_pid(0xffffffffffffffff, 0x0, 0x0) (async)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0, 0x24}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba)
sendmsg$IPCTNL_MSG_EXP_GET(0xffffffffffffffff, 0x0, 0x8000) (async)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c0000001000850619fbb7c75150926b00000000", @ANYRES32=r3, @ANYBLOB="fe000000000000001c0012000c000100626f6e64000000000c0002000800010004"], 0x3c}}, 0x0) (async)
socket$igmp6(0xa, 0x3, 0x2) (async)
r4 = socket$netlink(0x10, 0x3, 0x0) (async)
r5 = socket$packet(0x11, 0x3, 0x300)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200))
sendmsg$nl_route(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000400)=ANY=[@ANYBLOB="200000001000250800170000000000000a000000", @ANYRES32=r6, @ANYBLOB="0174"], 0x20}}, 0x0) (async)
r7 = socket(0x1, 0x803, 0x0)
getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000007c0)=@newlink={0x50, 0x10, 0xf11, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x104}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @veth={{0x9}, {0x18, 0x2, 0x0, 0x1, @val=@VETH_INFO_PEER={0x14, 0x1, {{0x0, 0x0, 0x0, 0x0, 0x20, 0x20}}}}}}, @IFLA_MASTER={0x8, 0xa, r8}]}, 0x50}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r9 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r9, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0) (async)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000180)=ANY=[@ANYBLOB="1201fb0019030320d812010079de01ec020109021b0001000003000904000001785ecc0009058502"], 0x0) (async)
sendmsg$NFT_BATCH(r9, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a58000000060a010400000000000000000a0000010900010073797a31000000002c0004802800018007000100637400001c0002800500030001000000080002400000001208000440000000150900020073797a32"], 0x80}, 0x1, 0x0, 0x0, 0x4008091}, 0x24000000) (async)
syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f0000000780)='./file0\x00', 0x0, &(0x7f0000000000), 0x4, 0x758, &(0x7f00000007c0)="$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") (async)
sendmsg$IPCTNL_MSG_CT_NEW(r9, &(0x7f0000000340)={&(0x7f00000002c0)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f0000000300)={&(0x7f0000000440)={0xe0, 0x0, 0x1, 0x101, 0x0, 0x0, {0xe, 0x0, 0x8}, [@CTA_SYNPROXY={0x2c, 0x18, 0x0, 0x1, [@CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x9}, @CTA_SYNPROXY_ISN={0x8, 0x1, 0x1, 0x0, 0x2}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x2}, @CTA_SYNPROXY_TSOFF={0x8, 0x3, 0x1, 0x0, 0x15e9}, @CTA_SYNPROXY_ITS={0x8, 0x2, 0x1, 0x0, 0x6}]}, @CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x3408}, @CTA_LABELS={0xc, 0x16, 0x1, 0x0, [0x5, 0x1]}, @CTA_HELP={0x10, 0x5, 0x0, 0x1, {0xa, 0x1, 'Q.931\x00'}}, @CTA_TUPLE_REPLY={0x74, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x41}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x1}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private1={0xfc, 0x1, '\x00', 0x1}}, {0x14, 0x4, @private2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x84}}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0xbada}]}, 0xe0}, 0x1, 0x0, 0x0, 0x4000010}, 0xdc)

11.45099657s ago: executing program 3 (id=323):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r6 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_ERR_FILTER(r6, 0x65, 0x7, &(0x7f00000001c0)=0x8, 0x4)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'lo\x00', <r7=>0x0})
sendmsg$can_raw(r6, &(0x7f0000000440)={&(0x7f0000000000)={0x1d, r7}, 0x10, &(0x7f00000005c0)={&(0x7f0000000b00)=@canfd={{0x0, 0x1, 0x0, 0x1}, 0x12, 0x6, 0x0, 0x0, "41aa852ed0ee53ae210696985995de3bb842da1d072d09fc23839199cfdd79ce5b8fd9f8c96b59f6550648cb7ddc3acb99961b8c5a1f2624e07c9ff92be5eff9"}, 0x48}, 0x1, 0x0, 0x0, 0x48004}, 0x80) (fail_nth: 3)

11.363691431s ago: executing program 1 (id=324):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0xe1}, 0x0)
syz_mount_image$xfs(&(0x7f00000000c0), &(0x7f0000009740)='./file0\x00', 0x4000000, &(0x7f0000000100)={[{@grpquota}, {@bsdgroups}]}, 0xff, 0x9882, &(0x7f000001c800)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='rdma.current\x00', 0x275a, 0x0)
readahead(r0, 0x100000000, 0xc5)

11.206463452s ago: executing program 2 (id=325):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_tcp_int(r0, 0x6, 0x3, 0xffffffffffffffff, &(0x7f0000000040)=0x2)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=ANY=[@ANYRES8=r1, @ANYRES32=r0, @ANYRES16=r0], 0x50}, 0x1, 0x0, 0x0, 0x58840}, 0x0)
mount$tmpfs(0x0, &(0x7f0000000080)='./cgroup\x00', &(0x7f0000000f80), 0x400, &(0x7f0000000000)=ANY=[@ANYBLOB='mpol=bind:7-N:', @ANYRESOCT, @ANYBLOB='f'])
r2 = fcntl$dupfd(r1, 0x0, r1)
getsockopt$inet_udp_int(r2, 0x11, 0x1, &(0x7f00000000c0), &(0x7f0000000100)=0x4)

11.206210042s ago: executing program 4 (id=326):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x1fe, 0x0, 0x10000, 0x1000, &(0x7f00001d2000/0x1000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
r3 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000340), 0x2, 0x0)
ioctl$VIDIOC_ENUM_FMT(r3, 0xc0405602, &(0x7f00000000c0)={0x5b, 0xa, 0x0, "b75cbb1844038d2cd97c94fc49f31638b5f9623a74002a5b00", 0x31303553})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r5 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @broadcast})
write$tun(r4, &(0x7f0000000380)=ANY=[@ANYBLOB="0800080007000100000014000000460a0fc0006400000b6c9078ac1e0101ac14141a440451033297e3ba0fa8a2e71bd9fe1a399b5110420b70460c0dad392d66248a43540df968e7fcaab34569c0e36170578c0d3c546a98b26295e2592f360905866eb4720fed03a977a3df4224895629fd6ccec64f13a999f18f518e3ee28798381975e862f1db9dccdb2f1c1fb60f5ffc7a339d40a8bd1f24cede8a32f182f142e194d4fb48224759faf813ea80e6a853e79b4fe27fe3e1aec5897b314a7f0d515b07b1835986b4885e9826d902c40f16cd77c58b6433ab039955ce9db11f36f459e7114ace6c9989eecea80a81fd39f339356c7c33910000da2486503a7973f6db4806cf3e5ca94cf7e1f79fd00decd76100c18251a59d1474caabf4d3ca6a9a9885df710e68c5b0dc11832dbb5eecb5c88c2f8f02bdbd88569ad4a740359cbca8c378118220d73bdd1e661c3a74f77aa931b11cd38119b0f084bb96e84803fca6566c33ee1e4e34ab0253fbf24f9f5974af5e1fc2a43a4ec9dd9928a8f38a128ea27c429300ae5a6bd7740471f973d8224b2b07879f4fbe7dcbed776a72ebdc713bcf1d7aa45b01c32a1003e6670d58510bd79ba2fde5cb2b82cef2cc315648f4e9d96d848ba327949b8926253cbdef6888a8982108b6ac7a1108533dd3fe125002e2e286362d1055082a9d73ec5ac3080f2a501ff27250b62c8965f371cf92b32d6422d79f66261eb08a2f8fe50049e102c69ce703d116d0834208cc957d0f1376457a90245816d7642412897fdd2f982fdfbc3af65aa0446b00c767b79aec40e460887ea02188e3a0960eea39b144859467b881978378c9fd5932d9e0f63148179fe2c2f6d40987b63a6e384e63027f03d8039d707522942d5dc88fd842524d006290b6a65e9cc86cc5b401a60ec4aedfb3bf4d0447bb681810a16b9684b72c2f4593ef834a0203e78cd1d9dbc978e9ae8f3ab62c07f1e41d59470decee7b0cc41ac49e4b75a9ab6da65849f62ec217bb39ed161e7d337822d96badbd74d66451ea9a74bed591dc9631bf639dcf7846ee428a9fa55bfceedf3b1c23642f3b58dd0a7273664c6c49c9160a4b9cc5b72d0210e305b94e2cb09ae1d4af9d365b5093851f229c8c30aef75d45ccdbab4b86d801a9ad3b27f26ba601d531c0743717aa7aae29d37f496fec7682c5a1abd321ad61941a2d23fcac6af1d1875e308c8d8c64a5152be47b59c09d293f46b857310a99f1885f0a49d432aa0d39a3e8fc885e75e66b63215133175a19267c8d0adf7d8f644e742ed5369d1405e99e63b78727f135e0243f24d9ce354a1562102ee8de4c191508343b86bf7e7519ddd770ce4cc969cadf335da8bacf716155e17e590561b2f437194c97ad46622a6ae3dd68d9993e6744954f4cd308bd6594fdccedc578e80aed274a65219697229059723ac37d535cca0e9c314e7941b4160bbd2ffba71f26ffe3228431bc81463078ad70583277ef18bce23ca2e5b9a00670956ea8e0e2c739c006106c8c9ee3f92ba728d8490742b74a9a18cbedfc4e69bb87e0da4c7dfb964374c28c837d4641fb99a19b233675f8526af395335e0185cf3934805442ac379980b687a7128e53284ba9e741b5fe9bc969bfbd55cbce76842915e076e2adf844338d16d3802c681bafdcc60465bd34dfc2d1c069ceee40060e0570fc1275ccabfe3f9be3e84ceedf72cd649c082232008e2b0c94594588c00e0fe911bbf1c12eb6c37ce05674a7597feecf27f5e051ffa824d9ff93638dfa9a84c77562aa2cf897f55a97b79c18544ad03480e1011b8f93e0ead9c2c6672448f585c5803ae99be777fbc662ef4450c1e936ed8b3c8047f00e72adc84561f417f8e5e1dde4967005d96a64fc75d9f486b3ebdb5904a0a56ec48542f0efce939f66fd69259e7376ad37e84434ea90f35b2d3bd63b5c36b267d8f2c7dc5a50b46e00ed086dff8b039e07b84c60611269d4f282ad04dc8e0b481eece2f8a614734be73617f0ad5be195446b09dca4cf1f32653dd3e188aece76f3014deb2ba61744835c0f735234b6a4637c948a7b4fd4203b286ca87d669e325d70277075b094f59eb1dff6c9c05c40d5e464c563df79486e1a32e6ed9bcf675aac7968b4e98dc4e210215b0d3b6a2525b2e3df11f3f1490eb39cabffbe32e23659121fde8e4e346e0f595aaf3666a5f6f118c1a1128039502ac04c40b85eb4c54e6c95b8d1c2aac74ae9e1c355ccde9d54d5d833293f5df09224482179e5bcd8e227c9eaacb5793498be490de32baba49172a6e14c2cd4e6462ceb0a905a1d64804840ce62e350c6efac10a7fcb029f84af64e2256d45afd3b3f59379895740e0cec72ed67d1a7d87dd264743d9c951cb5aa8bc6f1d1bc9b23303d5aa7f8f6f961326757456057000cb2bacf78cc229002777e932c2640b8dfa793846ca49fa93996db95104a8808a1906b19df17e754b90582b6c49efb3ddce067dd9292291cfd2bb0323ce8098f29e4fce0de31cf5c7e2e2da5d0d0996a8be776de8fecfd3ce68e80d21f1701f6b90ac51278abbd727d19411e0ebe001b990b177b8db0c592b18a4b5e4a6221902362e5b20e6e6f2131a5a5e03c1150b179ef40c933c2fef1b79de738652ec4c32565f5cf751a11db177099c4e2e5bd7616cd0dd501d5bfccf5691de3cca590365328648baf8a9487a3c212193c9bb837594460967e823067a9465eba7001eaf609a810488ef5c147aaa5e9e8c75b585ac3582b6915e20b5aa2f79b7a94857122988c56dbce1ea52de1a56652e839bb853be3ee16052b33fb83ca54d8e4e19440a5e81492107043a66286f63ca87a1f7b8a4e0300a7eb6005419cfd28cb37e9e374f4d0143973286e87070754025c1a6fccfdc6858eaca8c35ecb19584ce7141cc79a5bc813469161b87a19fc21f3373d1f25b3427916dd1be2a589b70ea3b39fcc7801e13beaf19b76164faf3dc4ab8faa5648d24eddd6caceaa0d5ac9cad633c19a4a4d059ee823a49b7cf82c5777d376c111f58ea8fd473429907852301a2c856f27bd0c687ab5be0e2bbef64ddee1601375a4440e3f59d60f57caebfe457f82432523ec4a61cdbb7f1e91e4b05fda892df131c274b19929d26f7a5a6d3ca487983f729601ed9bb4bf5c1cc3d453d406e9534688dec6a2dd0b9db149365c125a95e129565e62cc91f7d960abe1055b730ae0994e7eb08392d5745d0e4f529c4defc3d3e43d0815b0cc63effa88d20c13b14e780c2f6c89a1ee5e4db45a5c272186cc3e51b13dab3add5f467e8ca0f4c45a1fc76db2f0cbf794102946aafcd8cd8a3e935a606b9721645c4d550ae0907f345593736506efc626498c974753d474a73626041d3a54f8fb50de2a6335611a3779da3a02daceb2256d9b102d4d30dd3cd389a04b1a7a6076879f36534bb3379debb46ed1fa2c40096c752017dd024345c58313b43070ff7bef94dc3cafbe6ec20d59e5ea3c196ba3b783bfa87384407efc664cd350c80ac397516018e35371956e414755cde304d2a228c1540ba6fd6a7402d11c666964f024da4c016eb556ba2c5fab86c60c12efb1496295d80f0383526e8e0fc55a287bbd3cb966a916f57958d8b6ef97aa0c4b47f7746bab6b99698c1c96b25c4e2e084147866fe0970b109dd26984adc0758eb6442712cc46dcd8ed3038b0595252eed1b8a46525862662d1e67eba66ac341f8d27853eed54854f488f079bd48df6ce7a4be8b1b61fd23a2dc4d3ade0992011539cc63f80fcfc75008c20cb639348cb218f8f476a6d56917f4ca07e67fc20ea2e9642eaf2182b397e279f5f6c70438fb8aa39cba788588c181461ea7efe1a0dd5b95eb26f7158b91012f7ce0ee1b4e79ce4da377bea4551738a0f491a84f19b3be9827b4469c299527aa9c20b8bf12f919976a0356bba720fb97800763c79bcbb10d89280f0f97cdd19aa0d54828b308195fac170613cf4b515e340a9ef2c97f618a9f50b30ae34ebeed9a38b4c6969680accc740b154ecb014fb5d543a59ccb98a7de2823a2dec39f331cb503eb74fef61262c6d4050bc723caee834eb28c64ce007f6027375e936b62387cf1778970e88b0574a0106d4c855be7425767c551b2fa644d9d8a59f787e7610581b768057d229673344571c3d6e3f10975b2859f568398b0638f89524d9ad0c1588617c3883a1227b714c81cdf28da54f33968c1c50f28da01c308eb31d319b3e77f96bec001c9300000000100000009cc0062283ac112868592619db14d60700000000000000cd2f7b07ae4ec14ca3ef4b955ea5b2b153a279b080f6236d418075b86850974c8850efb306d5c304e726bf2643b4403e6d46b0e0395b02e93308b4b2c3e957308d497dc51c753344a7878f1f0c91295fd76e3d1cc9ef813161c6b92b7ea6068ceb97d8f45a4ce57af7d7632d699951f7fe3c71c3a32b014c74425c67e5030546b10cf7edcec2eca5ba31dc62c08f83f35bc2e36b93f15f071bc2537ebe9c0700000000000000e10323d0ceaa2cc47fe4f6ad101d454c761f9863e94af91199ce5f12469bca7ba39314b84aa7efa4bdc18f7700c19511d48d6132450111d70401a8ac73565d5386ca12345e884d08b23f9c901000a95eb4167865e58c28b112f47c96beeaa6657c923e25e56529107c5c30e65bb485d5ed21b91332db4e09df7e59dcfa05c994570deb3f9b838e22ae4abbf9a9a8c319cc9112c8dba7c2278f78b9578b0254c46a4c04b8fa4fedad6bd275f70b1618971ef6503379bfb0a508c9944328afff67fd24e35f2c0f2c820091a89e3f75e68e7f980ddc9154d273f7f2ce7a6294aefe93136860786679b80e41f6636ff45efeacfb52e2ba2bd9bd9c9030079a46caca5c4b340c17d01ba8ecbc5c561b2038481a8321c009d12136a3ad5461881d998eeaac5236fdcd8f81fb5e53848bb096d9198fd0d38830d1809f2a632b31e2b67754140c907ed58aead048b2d8af9a1c407e48db815212cfdcca97222dabdfe01f311a73e1e82c3e189ec5add48d3f8190eb9e14b58e540f7f1388a7c687629eadb19fd8a133dc8177629270ecaabff79efb6c1f750d89b9e6c5f34c6238066f8e3e425e46a27b3c0d2e9e2ed3cffe2a6f39b8e0137ea5de689b94107fb4748a5feb3902f0feba64dae4c2e69bc8d86463575c6b0ef4a8a64fef41121e57a8c67eda07e9fc8f98299677de198ea0a649ef3c00591940b2c27ba1414aaa1633deb52e3a44cfa8d7a00d014317c026a7d7f42a34b97128e1bf9cda4d8315819ac73ed5061bf9b5631d07b09b85b78ff1b6eb86e9e8c4faa0f991cd6fa0b0eb71b39c20ca9bc7c156f3bd255a5b408df172396bafd7f0fb11c6eaf1eb0a06576d37bee00424bf699584b1dfed68f0d8d8a35f0427c783fe2d79b4373628971e87501a5e4bb05b5058d0b2132741f26e76065b6f4017d963c8ee5605c4c5b6eebb96fca0a41893cb6add3fb0d728abeb860f22cedbd36e464bdaf124a7041460f7af3d64b54e9ffd240b5afad9baf6e5dd8406bc1b205da5848f51fc9dd5197716e144e1b0386614bd3cfd5ddb80ada1e5ca74c8960093a553b1f6288aa7f53663cdd867f658e51b95772dc7a6fa45fa03e14988a33250e6c16fbf0351769080d64ddfbdbf77e1215563bf2e82ecc38a682846d7e2e2ac4e87d715f97f15e84c3df04affee49612a735907d3c4d310a54a6f60b3fc66ada502479c9c64c20017abcbf1755b5d5db46a217d6bb57ec80b7c903205360006f28f4ffb3f4079b80792507a4e4f96368c5b54be3511d691c8ba92cd7655aa77b337a98b6a026a661fe79bc271bb614a3102d3eb4bae95e477c11ffbcd56cb5611ce2033742f0d8caad06a02b5c52728c13f30605ba3c2d65cf85e561c79ad66fbcccef468e03eafefbcaf9cca1a941dc978e75730e65fe39e35bed9c052ad80c394d5ee371785219e2be9bed4d71952f90bb22c3d7ada7185b7d859add21eb02f76e163f32fdc55"], 0xfce)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x19, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_emit_vhci(&(0x7f0000000140)=ANY=[@ANYBLOB="ea1606aaaaaaaeaa1057022593761012079f957a53dccfd11b56866cfc41cea84ffa32932f20e68169d6f42e64e12468e00d081c8fbdd519bf0cef92797f242aacbf35833b389d457110dc457fd65469d73e499dddb7a418e85f7e275e05"], 0x9)

10.503559557s ago: executing program 0 (id=327):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)=<r1=>0x0)
sched_setaffinity(r1, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x30, r0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
mkdir(&(0x7f0000000280)='./file1\x00', 0x9f550acf755c461f)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r3 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r4=>0x0})
r5 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000100)="2e00000038000511d25a80698c63940d0300fc602f0000000b000200001ec0003715de60cfd9a1af05d81d00d1bd", 0x2e}], 0x1, 0x0, 0x0, 0x39c}, 0x0)
openat$sequencer(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bind$can_j1939(r3, &(0x7f0000000380)={0x1d, r4, 0x8000000000000003, {0x1}, 0xff}, 0xfffffe4e)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r6 = socket$nl_route(0x10, 0x3, 0x0)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, 0x0, 0x24008800)
r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r8, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
sendmsg$GTP_CMD_ECHOREQ(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={0x0}, 0x1, 0x0, 0x0, 0x8000400}, 0x4000)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x8}, 0x4040800)
r9 = socket$inet_udp(0x2, 0x2, 0x0)
r10 = socket$inet6_dccp(0xa, 0x6, 0x0)
sendmsg$inet6(r10, &(0x7f0000000340)={&(0x7f0000000280)={0xa, 0x4e20, 0xfffffff4, @loopback, 0x37bf}, 0x1c, &(0x7f0000000300)=[{&(0x7f00000008c0)="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", 0x1000}], 0x1, &(0x7f00000018c0)=ANY=[@ANYRES8=r1], 0x228}, 0x4849)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000680)={'bridge0\x00'})
sendmsg$nl_route(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000006c0)=ANY=[], 0x50}, 0x1, 0x4000, 0x0, 0x4884}, 0x0)

10.414057707s ago: executing program 0 (id=328):
socket$nl_route(0x10, 0x3, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x28100, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x40, &(0x7f0000000080)={[{@errors_remount}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x2}}]}, 0x0, 0x4f7, &(0x7f0000000540)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x141842, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000240)='./bus\x00', 0x187102, 0x1)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r0, 0x0)
chdir(&(0x7f0000000040)='./file0\x00')
syz_mount_image$exfat(0x0, &(0x7f0000000340)='./bus\x00', 0x120462, 0x0, 0x0, 0x0, &(0x7f0000000000))

10.356570988s ago: executing program 3 (id=329):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0b00000008000000010001000900000001"], 0x50)
close(r0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x9, 0x7, 0x8, 0x40, 0x42, 0x1}, 0x50)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff1e}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f00000002c0)=ANY=[@ANYRESDEC=r2, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb70300000800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r1}, &(0x7f0000000080), &(0x7f0000000180)=r3}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000040)='sys_exit\x00', r4}, 0x10)

10.291664228s ago: executing program 2 (id=330):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
r0 = syz_io_uring_setup(0xf00, &(0x7f0000000180), &(0x7f0000000100), &(0x7f0000000140))
io_uring_register$IORING_REGISTER_EVENTFD_ASYNC(r0, 0x7, 0x0, 0x300)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
bpf$BPF_GET_MAP_INFO(0x3, 0x0, 0x0)
capset(&(0x7f0000000080)={0x20080522}, &(0x7f00000000c0)={0x200000, 0x200002, 0x7})
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_GET(r2, 0x4b72, &(0x7f0000000040)={0x1, 0x1, 0x12, 0xc, 0x17d, 0x0})

10.154272439s ago: executing program 3 (id=331):
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000001a300)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="1c0000005e007f0a7eed1168379a3601ffc4910700004f78d4"], 0x1c}}, 0x0)

9.311506525s ago: executing program 2 (id=332):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f00000000c0))
openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0)
ioctl$sock_FIOGETOWN(r0, 0x8903, &(0x7f0000000000)=<r2=>0x0)
syz_pidfd_open(r2, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x8100, 0x0)
unshare(0x20400)
pselect6(0x40, &(0x7f00000001c0), 0x0, &(0x7f00000002c0)={0x3ff}, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffe, 0x0, 0x0, 0x3, 0x2000000000000000}, 0x0, &(0x7f00000002c0)={0x3ff, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x0, 0x0)

9.016156717s ago: executing program 0 (id=333):
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(0xffffffffffffffff, 0xc0045516, &(0x7f0000000000)=0xffb)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, &(0x7f0000000080)={{0x1009, 0x0, 0x0, 0x80, 'syz0\x00'}, 0x5, 0x0, 0x1, 0x0, 0x0, 0x8, 'syz1\x00', 0x0})
socket$inet6(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xf65f2000)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
ptrace$ARCH_ENABLE_TAGGED_ADDR(0x1e, 0x0, 0x2, 0x4002)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=@ipv6_newrule={0x24, 0x20, 0x2d2c6d60ea1da725, 0x70bd29, 0x25dfdbfd, {0xa, 0x0, 0x0, 0x7, 0xff, 0x0, 0x0, 0x1, 0x10002}, [@FIB_RULE_POLICY=@FRA_DPORT_RANGE={0x8, 0x18, {0x4e23, 0x4e23}}]}, 0x24}, 0x1, 0x0, 0x0, 0x20008081}, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c00000010001fff000000000000000400000000", @ANYRES32=0x0, @ANYBLOB="00000100020000001c0002800b00010062726964676500000c0002800500170001000000"], 0x3c}}, 0x20044000)
r5 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x48)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1000001, 0x40010, r5, 0x4b1c7000)

8.259410172s ago: executing program 3 (id=334):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000080)={0x0, 0x20, &(0x7f0000000680)=[{&(0x7f0000000340)="d80000001c0081044e81f782db44b904021d0802010000000500f0a1180002000000000000000e1208000f0100810401a8001600200001400300000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef075c11503c6bbace8017cb090000001fb791643a5ee4001b146218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e0060000000000000080bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd68adbef3d93452a00"/216, 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x20004800)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_HEADER(r2, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000040)={&(0x7f00000000c0)={0x44, 0xc, 0x6, 0x101, 0x0, 0x0, {0xa, 0x0, 0x3}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x44}, 0x1, 0x0, 0x0, 0x804}, 0xc050)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff})
sendmmsg$inet(r3, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0x0)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)

8.051582324s ago: executing program 2 (id=335):
getsockopt$MRT6(0xffffffffffffffff, 0x29, 0xd0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x6, 0x200002)
ioctl$EVIOCGLED(r0, 0x80404519, &(0x7f0000000880)=""/4096)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000a00)={&(0x7f00000000c0)={0x14, r3, 0xf03, 0x0, 0x0, {0x34}}, 0x14}, 0x1, 0x0, 0x0, 0x44005}, 0x0) (fail_nth: 3)
syz_usb_control_io$uac1(0xffffffffffffffff, 0x0, &(0x7f0000000580)={0x44, &(0x7f0000000380)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = timerfd_create(0x0, 0x0)
flistxattr(r4, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x8, 0x0, 0x0, 0x1ac81b, 0x0, 0x0, 0x0, 0x1000000}}, 0x0, 0x2, 0xde, &(0x7f0000000340)=""/222}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x48)

6.385448615s ago: executing program 4 (id=336):
getsockopt$MRT6(0xffffffffffffffff, 0x29, 0xd0, 0xffffffffffffffff, 0x0)
r0 = fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff)
r1 = bpf$OBJ_GET_MAP(0x7, &(0x7f0000001d40)=@generic={&(0x7f0000001c40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x8}, 0x18)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000001d80)={0x1b, 0x0, 0x0, 0xf, 0x0, 0x1, 0x5de7, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x3, 0x3}, 0x50)
r3 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000001e00)={0x0, 0x401, 0x10}, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001f00)={0x18, 0x1b, &(0x7f0000001a00)=@framed={{0x18, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x1}, [@alu={0xac62639fb9586446, 0x0, 0xc, 0x7, 0x7, 0xfffffffffffffff6, 0xfffffffffffffffc}, @cb_func={0x18, 0xb, 0x4, 0x0, 0x3}, @map_val={0x18, 0x2, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x801}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x1}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}, @map_fd={0x18, 0xa}, @btf_id={0x18, 0x8, 0x3, 0x0, 0x1}, @map_fd={0x18, 0x8}]}, &(0x7f0000001b00)='GPL\x00', 0x6, 0x28, &(0x7f0000001b40)=""/40, 0xbe97804d92f066e, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000001b80)={0x4, 0x3}, 0x8, 0x10, &(0x7f0000001bc0)={0x4, 0x3, 0xfffffff9, 0xb72d}, 0x10, 0x0, 0x0, 0x5, &(0x7f0000001e40)=[0xffffffffffffffff, 0xffffffffffffffff, r0, r1, r2, r3], &(0x7f0000001e80)=[{0x4, 0x5, 0xf, 0x5}, {0x8000, 0x7fffffff, 0x0, 0xa}, {0x2, 0x1, 0x1, 0x9}, {0x2, 0x2, 0xf, 0x8}, {0x5, 0x3, 0x10, 0xb}], 0x10, 0x8}, 0x94)
r4 = syz_open_dev$evdev(&(0x7f0000000040), 0x6, 0x200002)
ioctl$EVIOCGLED(r4, 0x80404519, &(0x7f0000000880)=""/4096)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
syz_mount_image$udf(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x100c007, &(0x7f0000000100)={[{@gid}, {@utf8}, {@gid_ignore}, {@novrs, 0x0}, {@noadinicb}, {@bs={'bs', 0x3d, 0xe}}, {@partition={'partition', 0x3d, 0x4}}, {@session={'session', 0x3d, 0x9}}, {@gid}], [{@dont_measure}]}, 0xfd, 0xc2f, &(0x7f0000000280)="$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")
r5 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r5, &(0x7f0000000400)=""/194, 0xc2)
r6 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r6, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$devlink(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000a00)={&(0x7f00000000c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r8, @ANYBLOB="030f0000005b2f78777bc107ba00"], 0x14}, 0x1, 0x0, 0x0, 0x44005}, 0x0)
r9 = syz_usb_connect$uac1(0x4, 0xdf, &(0x7f0000000600)={{0x12, 0x1, 0x310, 0x0, 0x0, 0x0, 0xff, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xcd, 0x3, 0x1, 0x24, 0x10, 0x3, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0x8000, 0x6}, [@processing_unit={0x9, 0x24, 0x7, 0x1, 0x4, 0x5, "902e"}, @input_terminal={0xc, 0x24, 0x2, 0x5, 0x203, 0x5, 0x9, 0x8, 0x4, 0x7}]}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_i_discrete={0xb, 0x24, 0x2, 0x1, 0xf8, 0x4, 0xa, 0x5c, "8faa95"}, @as_header={0x7, 0x24, 0x1, 0xa, 0x7, 0x1}, @format_type_i_continuous={0xc, 0x24, 0x2, 0x1, 0x5a, 0x3, 0x6, 0xe3, "b5ae", "12a6"}, @as_header={0x7, 0x24, 0x1, 0x80, 0x0, 0x3}, @as_header={0x7, 0x24, 0x1, 0xd2, 0x6, 0x1001}, @format_type_ii_discrete={0xf, 0x24, 0x2, 0x2, 0x100, 0x4, 0x2, "e4d4bbd88f57"}]}, {{0x9, 0x5, 0x1, 0x9, 0x20, 0x7, 0x0, 0x8, {0x7, 0x25, 0x1, 0x1, 0x9a, 0xb42}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {[@format_type_ii_discrete={0xc, 0x24, 0x2, 0x2, 0x7, 0x9, 0x2, "529438"}, @as_header={0x7, 0x24, 0x1, 0x25, 0xe, 0x4}, @format_type_ii_discrete={0xb, 0x24, 0x2, 0x2, 0x8d4, 0x0, 0x5, 'x/'}]}, {{0x9, 0x5, 0x82, 0x9, 0x400, 0x5, 0xc, 0xff, {0x7, 0x25, 0x1, 0x81, 0x2, 0x6}}}}}}}]}}, &(0x7f0000001900)={0xa, &(0x7f0000000100)={0xa, 0x6, 0x110, 0x2, 0x9, 0xc, 0x10, 0x81}, 0x29, &(0x7f0000000180)={0x5, 0xf, 0x29, 0x2, [@ss_container_id={0x14, 0x10, 0x4, 0x5, "21fa30df60c1d511f4e7b15f74a0b444"}, @ssp_cap={0x10, 0x10, 0xa, 0x2, 0x1, 0x8, 0xf, 0x1, [0xcf]}]}, 0x8, [{0x4, &(0x7f00000001c0)=@lang_id={0x4, 0x3, 0x860}}, {0x4, &(0x7f0000000240)=@lang_id={0x4, 0x3, 0xc75}}, {0xe2, &(0x7f0000000700)=@string={0xe2, 0x3, "81e225d40db43cd2155a4b98fb9bb10847d9378d842aa6f622a7f13964d1c3e8a0a0750269ed147733c7d9d526a4804364b497f6b1efa1f90d1a258214292c6b42a1c160f49ed80a0995240c7f431150a4183a0a9507e30276731ca219c5bc83c47765d4998d24af549b8e521d98d2f591b10a74533e3e6c52f7a8ba714569b7cb1d6a08e7a67dd75d293e754748ec0b74064f544e67327d92ea2d7d4de0929b8d0211f5fc80fa247f0d547a872d9a06a590e67bd6884e73e91c75f71ed2cd7a48e65b569c62de7d3ff607191a86423b5fe4654039e8ffdc7968a7b37f58db2e"}}, {0x4, &(0x7f0000000280)=@lang_id={0x4, 0x3, 0x1007}}, {0x53, &(0x7f0000000500)=@string={0x53, 0x3, "3ce86c7f0485904d63f6bab3f3171289caa92867fbf4f6c768142566e7b1294aa88629ee33013eaf501b139052c9b010dd6c48bcb0bd593cecdb557db26c4dfd7878ffab2fae054c6dd3041cb91cfc983b"}}, {0x4, &(0x7f0000000800)=@lang_id={0x4, 0x3, 0x419}}, {0x4, &(0x7f0000001880)=@lang_id={0x4}}, {0x4, &(0x7f00000018c0)=@lang_id={0x4, 0x3, 0x140c}}]})
syz_usb_control_io$uac1(r9, 0x0, &(0x7f0000000580)={0x44, &(0x7f0000001980)=ANY=[@ANYBLOB="8cc5e8b7deced9b54a7ae5b6692ee00ce619a3b7e46bf6c4f87c72bcc745d6"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000003140)='./bus\x00', 0x1008002, &(0x7f0000000400)={[{@grpquota}, {@delalloc}, {@resuid}, {@errors_remount}, {@dioread_nolock}, {@nojournal_checksum}, {@nomblk_io_submit}, {@noauto_da_alloc}]}, 0x1, 0x5d8, &(0x7f00000005c0)="$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")
syz_open_dev$loop(0x0, 0x81, 0x2a82)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
creat(&(0x7f0000000d80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
symlink(&(0x7f0000000900)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
rename(&(0x7f0000000400)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000e80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')
timerfd_create(0x0, 0x0)

6.368621166s ago: executing program 2 (id=337):
socket$igmp6(0xa, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4})
ioctl$I2C_RDWR(0xffffffffffffffff, 0x707, &(0x7f0000000b80)={0x0})
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x378, 0x0, 0x700001b, 0x148, 0x0, 0x148, 0x2e0, 0x206, 0x240, 0x2e0, 0x240, 0x7fffffe, 0x0, {[{{@ip={@local, @rand_addr, 0x0, 0x0, 'tunl0\x00', 'bond_slave_1\x00', {0xff}, {}, 0x0, 0x1}, 0x1ea, 0x1e8, 0x208, 0x0, {0x390, 0x8f00}, [@common=@inet=@hashlimit2={{0x150}, {'pim6reg1\x00', {0x5, 0x1ff, 0x1, 0x5, 0x1, 0x100, 0x1, 0x8, 0x20}, {0x8}}}, @common=@inet=@socket2={{0x28}}]}, @unspec=@NOTRACK={0x20}}, {{@uncond, 0x0, 0xb0, 0xd8, 0x0, {}, [@common=@set={{0x40}, {{0x0, [0x1, 0x6275dd3c01ecbf44, 0x2, 0x5, 0x2], 0x4, 0x2}}}]}, @common=@unspec=@NFQUEUE3={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x3d8)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4001, 0x0, @loopback}, 0x1c)
r3 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r3, &(0x7f0000000280)=[{&(0x7f00000005c0)="580000001400192340834b80040d8c560a06ffffff7f000000000000000058000b480400945f64009400050038925a01000000800000008004000000ff0109000000fff5dd0000000800030006", 0x4d}], 0x1)
r4 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r4, 0x0, 0x0)
r5 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r5, &(0x7f0000000300)={0x18, 0x0, {0x15, @remote, 'gre0\x00'}}, 0x1e)
r6 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$PPPIOCATTCHAN(r6, 0x40047438, &(0x7f0000000040)=0x2)
ioctl$PPPIOCBRIDGECHAN(r6, 0x40047435, &(0x7f0000000180)=0x2)
r7 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SUBFLOW_CREATE(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r7, 0x300, 0x70bd26, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x200000c0}, 0x40044)
syz_open_dev$sndpcmp(&(0x7f0000000040), 0x0, 0x0)

6.276197976s ago: executing program 1 (id=338):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x40, &(0x7f00000001c0)=ANY=[@ANYBLOB="000a000000000fd60730000000000a0000000000000000000000000000000000000000000000000000000d00000000000000000000ef60fc4bd8ecc4e3200000000006004dee00000000000032acaace3269d4"], 0xd0060)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10)
syz_emit_ethernet(0x0, 0x0, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000080)='fdinfo/3\x00')
fsopen(&(0x7f0000000000)='msdos\x00', 0x1)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x4000, &(0x7f00000001c0)={[{@usrquota}, {@grpjquota}, {@nodelalloc}]}, 0x1, 0x4bc, &(0x7f0000000a40)="$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")
r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r5, 0x40086602, &(0x7f0000000000)=0x62001411)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
mount$fuse(0x0, 0x0, &(0x7f0000000340), 0x888000, 0x0)
io_uring_register$IORING_REGISTER_FILES(r4, 0x2, &(0x7f0000000440), 0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)={0x42c00, 0x23, 0x8}, 0x18)
shmctl$IPC_RMID(0x0, 0x0)

6.139042117s ago: executing program 3 (id=339):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000001c0)=<r1=>0x0)
sched_setaffinity(r1, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x30, r0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
mkdir(&(0x7f0000000280)='./file1\x00', 0x9f550acf755c461f)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x5, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r3 = socket(0x1d, 0x2, 0x6)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r4=>0x0})
r5 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000100)="2e00000038000511d25a80698c63940d0300fc602f0000000b000200001ec0003715de60cfd9a1af05d81d00d1bd", 0x2e}], 0x1, 0x0, 0x0, 0x39c}, 0x0)
openat$sequencer(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bind$can_j1939(r3, &(0x7f0000000380)={0x1d, r4, 0x8000000000000003, {0x1}, 0xff}, 0xfffffe4e)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r6 = socket$nl_route(0x10, 0x3, 0x0)
read$msr(0xffffffffffffffff, &(0x7f0000019680)=""/102392, 0x18ff8)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, 0x0, 0x24008800)
r8 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r8, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
sendmsg$GTP_CMD_ECHOREQ(0xffffffffffffffff, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={0x0}, 0x1, 0x0, 0x0, 0x8000400}, 0x4000)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x8}, 0x4040800)
r9 = socket$inet_udp(0x2, 0x2, 0x0)
r10 = socket$inet6_dccp(0xa, 0x6, 0x0)
sendmsg$inet6(r10, &(0x7f0000000340)={&(0x7f0000000280)={0xa, 0x4e20, 0xfffffff4, @loopback, 0x37bf}, 0x1c, &(0x7f0000000300)=[{&(0x7f00000008c0)="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", 0x1000}], 0x1, &(0x7f00000018c0)=ANY=[@ANYRES8=r1], 0x228}, 0x4849)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000680)={'bridge0\x00'})
sendmsg$nl_route(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000006c0)=ANY=[], 0x50}, 0x1, 0x4000, 0x0, 0x4884}, 0x0)

3.502925126s ago: executing program 1 (id=340):
getsockopt$MRT6(0xffffffffffffffff, 0x29, 0xd0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x6, 0x200002)
ioctl$EVIOCGLED(r0, 0x80404519, &(0x7f0000000880)=""/4096)
bind$inet6(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$devlink(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_GET(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000a00)={&(0x7f00000000c0)={0x14, r3, 0xf03, 0x0, 0x0, {0x34}}, 0x14}, 0x1, 0x0, 0x0, 0x44005}, 0x0)
syz_usb_control_io$uac1(0xffffffffffffffff, 0x0, &(0x7f0000000580)={0x44, &(0x7f0000000380)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r4 = timerfd_create(0x0, 0x0)
flistxattr(r4, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x3, &(0x7f0000000080)=@framed={{0x18, 0x8, 0x0, 0x0, 0x1ac81b, 0x0, 0x0, 0x0, 0x1000000}}, 0x0, 0x2, 0xde, &(0x7f0000000340)=""/222}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x48)

3.205054858s ago: executing program 0 (id=341):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0b00000008000000010001000900000001"], 0x50)
close(r0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x9, 0x7, 0x8, 0x40, 0x42, 0x1}, 0x50)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000b000000095"], 0x0, 0xd, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff1e}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x14, &(0x7f00000002c0)=ANY=[@ANYRESDEC=r2, @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r1}, &(0x7f0000000080), &(0x7f0000000180)=r3}, 0x20)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f0000000040)='sys_exit\x00', r4}, 0x10)

1.317867751s ago: executing program 1 (id=342):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_GET(r0, 0x4b72, &(0x7f0000000040)={0x1, 0x1, 0x12, 0xc, 0x17d, 0x0})

1.247161821s ago: executing program 4 (id=343):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000140)={0x26, 'hash\x00', 0x0, 0x0, 'hmac(sm3)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, 0x0, 0x0)
r1 = accept4(r0, 0x0, 0x0, 0x80800)
sendmsg$NL80211_CMD_SET_WIPHY(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000003c0)=ANY=[], 0x54}, 0x1, 0x0, 0x0, 0x24000005}, 0x8081)
accept4$tipc(r1, 0x0, 0x0, 0x80800)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c10, &(0x7f0000000400), 0xff, 0x23f, &(0x7f0000000540)="$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")
setxattr$system_posix_acl(&(0x7f0000002a00)='.\x00', &(0x7f0000002a40)='system.posix_acl_default\x00', &(0x7f0000000000)=ANY=[@ANYBLOB="0200f60000009f9124a6999e19c900"/26], 0x24, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x840000000002, 0x3, 0xff)
setsockopt$inet_int(r2, 0x0, 0x16, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x98400, &(0x7f0000000100)=ANY=[], 0x1, 0x2f4, &(0x7f0000000500)="$eJzs3M9PE1sUwPHTn7QlUBYv7+W95IUb3ehmAtW10hhIjE0kSI0/EpMBptp0bEmnwdQY0ZVb4x/hgrBkR6L8A2zc6caNOzYmLmRhrOn8oKVMKYVKEb6fhMxhzj3tvZ2SnNt02Lrz+nEhZ2k5vSLBmJKAiMi2yIgExRNwj0E7jkqzF3Jx8NvH/2/dvXcjnclMzig1lZ69lFJKDY++e/Is7g5bH5DNkQdbX1NfNv/e/Hfr5+yjvKXyliqWKkpXc6XPFX3ONNRC3ipoSk2bhm4ZKl+0jLKTLzn5nFlaXKwqvbgwlFgsG5al9GJVFYyqqpRUpVxVoYd6vqg0TVNDCUEn2ZWZGT19yOL5Hk8Gv0m5nNZDIhLfk8mu9GVCAACgr1r7/6CoXvb/q+c2KoO314bd/n896tf/X/7kPNau/j8mIr79v/f8vv2/3l3/v7cjOluO1P/jZBiN7jkVaIT1ZDmtJ9y/X9vL+6tjdkD/DwAAAAAAAAAAAAAAAAAAAADAn2C7VkvWarWkd/R+6rmYiDT/3iIkIlePf8bopXbXf6Dz9ccp0LhxLzwsYr5ayi5lnaM7YENETDFkTJLyw34/uOqxd+eRqhuR9+ayW7+8lA3ZmXRO8nb9uCQj0lpfq01dz0yOK8fu+ogkmutTkpS//OtTvvVRuXC+qV6TpHyYl5KYsmDPo1H/fFypazczLfVxexwAAAAAAKeBpnb47t81rV3eqd/ZX7d+PhBq7K/HfPfnYfkv3N+1AwAAAABwVljVpwXdNI3yPkFcOo9xgsgBxrQG4W4GdxF4Kzxolfddhh5P42CB9+S7UjH3ZM9flkAXL0ubICiHqRqtr0YddRXex0btxsj0xPFfQTv4583b7717wCtrsQ4rPXwQ2v8NEHG//gUAAADgFGk0/d6Zif5OCAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAM+g4/jtav9cIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnBS/AgAA//9p2gTn")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r3 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r3, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
socket$unix(0x1, 0x1, 0x0)
write(0xffffffffffffffff, &(0x7f00000000c0)="29000000140005b7ff000000040860eb0101b6ff02159f02c26ed638eeb738", 0x1f)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
openat$ptp0(0xffffffffffffff9c, &(0x7f00000000c0), 0x400080, 0x0)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401)
ioctl$BLKTRACESETUP(r5, 0xc0481273, &(0x7f0000000b40)={'\x00', 0x7, 0x2a4, 0x8, 0x0, 0x4000000000000005})
write$binfmt_script(r4, &(0x7f0000000040), 0x208e24b)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x397)

1.246438912s ago: executing program 3 (id=344):
socket$igmp6(0xa, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0xb, 0x59032, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4})
ioctl$I2C_RDWR(0xffffffffffffffff, 0x707, &(0x7f0000000b80)={0x0})
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x4001, 0x3, 0x378, 0x0, 0x700001b, 0x148, 0x0, 0x148, 0x2e0, 0x206, 0x240, 0x2e0, 0x240, 0x7fffffe, 0x0, {[{{@ip={@local, @rand_addr, 0x0, 0x0, 'tunl0\x00', 'bond_slave_1\x00', {0xff}, {}, 0x0, 0x1}, 0x1ea, 0x1e8, 0x208, 0x0, {0x390, 0x8f00}, [@common=@inet=@hashlimit2={{0x150}, {'pim6reg1\x00', {0x5, 0x1ff, 0x1, 0x5, 0x1, 0x100, 0x1, 0x8, 0x20}, {0x8}}}, @common=@inet=@socket2={{0x28}}]}, @unspec=@NOTRACK={0x20}}, {{@uncond, 0x0, 0xb0, 0xd8, 0x0, {}, [@common=@set={{0x40}, {{0x0, [0x1, 0x6275dd3c01ecbf44, 0x2, 0x5, 0x2], 0x4, 0x2}}}]}, @common=@unspec=@NFQUEUE3={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x3d8)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x4001, 0x0, @loopback}, 0x1c) (fail_nth: 3)
r3 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r3, &(0x7f0000000280)=[{&(0x7f00000005c0)="580000001400192340834b80040d8c560a06ffffff7f000000000000000058000b480400945f64009400050038925a01000000800000008004000000ff0109000000fff5dd0000000800030006", 0x4d}], 0x1)
r4 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r4, 0x0, 0x0)
r5 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r5, &(0x7f0000000300)={0x18, 0x0, {0x15, @remote, 'gre0\x00'}}, 0x1e)
r6 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$PPPIOCATTCHAN(r6, 0x40047438, &(0x7f0000000040)=0x2)
ioctl$PPPIOCBRIDGECHAN(r6, 0x40047435, &(0x7f0000000180)=0x2)
r7 = syz_genetlink_get_family_id$mptcp(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_SUBFLOW_CREATE(0xffffffffffffffff, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000080)={0x1c, r7, 0x300, 0x70bd26, 0x25dfdbfe, {}, [@MPTCP_PM_ATTR_RCV_ADD_ADDRS={0x8, 0x2, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x200000c0}, 0x40044)
syz_open_dev$sndpcmp(&(0x7f0000000040), 0x0, 0x0)

1.160855492s ago: executing program 1 (id=345):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000001000)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
openat$cgroup_pressure(0xffffffffffffffff, &(0x7f0000000100)='memory.pressure\x00', 0x2, 0x0)
r3 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
ioctl$SNDCTL_DSP_RESET(r3, 0x5000, 0x0)
io_uring_enter(0xffffffffffffffff, 0xa3d, 0x0, 0x0, 0x0, 0xff39)
shutdown(0xffffffffffffffff, 0x1)

1.002922853s ago: executing program 2 (id=346):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
getsockopt$IP_VS_SO_GET_DESTS(r0, 0x0, 0x484, &(0x7f00000000c0)=""/24, &(0x7f0000000340)=0x18) (fail_nth: 3)

673.429646ms ago: executing program 0 (id=347):
r0 = openat$damon_kdamond_pid(0xffffffffffffff9c, &(0x7f0000000040), 0x10200, 0x100)
r1 = openat$cgroup_ro(r0, &(0x7f0000000080)='blkio.bfq.io_merged\x00', 0x275a, 0x0)
write$cgroup_subtree(r1, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000001000/0x1000)=nil, 0x1000, 0x2000001, 0x12, r1, 0x0)
r2 = socket$inet6_sctp(0xa, 0x801, 0x84)
getsockopt$IP_VS_SO_GET_VERSION(r2, 0x0, 0x480, &(0x7f0000001080), &(0x7f00000010c0)=0x40)

0s ago: executing program 1 (id=348):
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000090024206d041cc340000000000109022400010000a00009040000010301010009210008000122010009058103"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000340)={0x24, 0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="3d52b988e580132ee6a808312e81b5c0fcbe04000028a2", @ANYRES32=r0], 0x0}, 0x0)
prlimit64(0x0, 0x3, &(0x7f0000000140)={0x8, 0x20008008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000400180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$netlink(0x10, 0x3, 0x8)
bind$netlink(r3, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r3, 0x1, 0x21, &(0x7f0000000000)=0xfffffffe, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r3, 0x10e, 0x4, &(0x7f0000000480)=0x17fe, 0x4)
ioctl$sock_SIOCETHTOOL(r3, 0x8946, &(0x7f00000000c0)={'syz_tun\x00', &(0x7f0000000040)=@ethtool_link_settings={0x2, 0x0, 0x0, 0x1, 0x7, 0x0, 0x4, 0x4c, 0xf3, 0x8, [0x10000000, 0x0, 0x0, 0xd, 0x5, 0x0, 0x2, 0x40000002]}})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(r4, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="010027bd7000fcdbdf25030000001800018014000000000005000200"/46], 0x34}, 0x1, 0x0, 0x0, 0x20009805}, 0x4000080)
sched_setscheduler(r1, 0x1, &(0x7f0000001000)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002100)={<r6=>0xffffffffffffffff})
connect$unix(r6, &(0x7f0000000180)=@abs, 0x6e)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0xb, &(0x7f0000000380)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
openat$cgroup_pressure(0xffffffffffffffff, &(0x7f0000000100)='io.pressure\x00', 0x2, 0x0)
openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000040), 0x203, 0x0)
socket(0x5, 0x3, 0x6)
socket$nl_generic(0x10, 0x3, 0x10)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

 Please wait.
[   98.580267][ T4596] XFS (loop4): Quotacheck: Done.
[   98.787756][ T4602] loop3: detected capacity change from 0 to 32768
[   98.896573][ T4602] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   98.977880][ T4621] IPVS: set_ctl: invalid protocol: 59 100.1.1.1:20004
[   99.004721][ T4602] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[   99.189633][ T4602] BTRFS error (device loop3): support for check_integrity* not compiled in!
[   99.367271][ T4607] loop0: detected capacity change from 0 to 32768
[   99.427840][ T4602] BTRFS error (device loop3): open_ctree failed: -22
[   99.441830][ T4607] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop0 scanned by syz.0.31 (4607)
[   99.469376][ T4607] BTRFS info (device loop0): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[   99.483132][ T4607] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm
[   99.502491][ T4607] BTRFS info (device loop0): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[   99.537234][ T4278] XFS (loop4): Unmounting Filesystem
[   99.546205][ T4607] BTRFS info (device loop0): use zstd compression, level 3
[   99.590410][ T4607] BTRFS info (device loop0): using free space tree
[   99.653155][ T4265] ocfs2: Unmounting device (7,2) on (node local)
[   99.811961][ T4387] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by udevd (4387)
[   99.916018][ T4607] BTRFS info (device loop0): enabling ssd optimizations
[  100.000565][   T27] audit: type=1800 audit(1762156417.362:3): pid=4607 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.31" name="file1" dev="loop0" ino=260 res=0 errno=0
[  100.646360][ T4639] loop2: detected capacity change from 0 to 32768
[  100.671355][ T4270] BTRFS info (device loop0): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  100.925743][ T4639] XFS (loop2): Mounting V5 Filesystem
[  101.078013][ T4639] XFS (loop2): Ending clean mount
[  101.122361][ T4639] XFS (loop2): Quotacheck needed: Please wait.
[  101.155343][ T4651] loop3: detected capacity change from 0 to 32768
[  101.198652][ T4639] XFS (loop2): Quotacheck: Done.
[  101.230582][ T4651] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  101.307814][ T4651] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  101.329011][ T4651] BTRFS error (device loop3): support for check_integrity* not compiled in!
[  101.436041][ T4651] BTRFS error (device loop3): open_ctree failed: -22
[  101.590620][ T4669] IPVS: set_ctl: invalid protocol: 59 100.1.1.1:20004
[  102.010077][ T4265] XFS (loop2): Unmounting Filesystem
[  102.027814][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  102.461498][ T4653] loop4: detected capacity change from 0 to 32768
[  102.471548][ T4387] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by udevd (4387)
[  102.783417][ T4679] loop0: detected capacity change from 0 to 32768
[  102.848015][ T4679] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 scanned by syz.0.42 (4679)
[  102.864972][ T4679] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  102.875274][ T4679] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  102.883986][ T4679] BTRFS info (device loop0): using free space tree
[  103.767889][ T4679] BTRFS info (device loop0): enabling ssd optimizations
[  103.820121][ T4720] FAULT_INJECTION: forcing a failure.
[  103.820121][ T4720] name failslab, interval 1, probability 0, space 0, times 1
[  103.863052][ T4720] CPU: 1 PID: 4720 Comm: syz.2.45 Not tainted syzkaller #0
[  103.870340][ T4720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  103.880458][ T4720] Call Trace:
[  103.883795][ T4720]  <TASK>
[  103.886756][ T4720]  dump_stack_lvl+0x168/0x22e
[  103.891590][ T4720]  ? show_regs_print_info+0x12/0x12
[  103.896844][ T4720]  ? load_image+0x3b0/0x3b0
[  103.901502][ T4720]  ? __might_sleep+0xd0/0xd0
[  103.906147][ T4720]  ? __lock_acquire+0x7c50/0x7c50
[  103.911486][ T4720]  ? __se_sys_memfd_create+0xee/0x340
[  103.916919][ T4720]  should_fail_ex+0x399/0x4d0
[  103.921653][ T4720]  should_failslab+0x5/0x20
[  103.926203][ T4720]  slab_pre_alloc_hook+0x59/0x310
[  103.931273][ T4720]  kmem_cache_alloc_lru+0x49/0x2e0
[  103.936422][ T4720]  ? shmem_alloc_inode+0x24/0x40
[  103.941423][ T4720]  shmem_alloc_inode+0x24/0x40
[  103.946225][ T4720]  ? shmem_match+0x160/0x160
[  103.950857][ T4720]  new_inode_pseudo+0x5f/0x1c0
[  103.955669][ T4720]  new_inode+0x25/0x1c0
[  103.959884][ T4720]  shmem_get_inode+0x347/0xbf0
[  103.964711][ T4720]  __shmem_file_setup+0x10b/0x290
[  103.969868][ T4720]  ? shmem_file_setup+0x13/0x30
[  103.974777][ T4720]  __se_sys_memfd_create+0x1e1/0x340
[  103.980113][ T4720]  do_syscall_64+0x4c/0xa0
[  103.984582][ T4720]  ? clear_bhb_loop+0x60/0xb0
[  103.989307][ T4720]  ? clear_bhb_loop+0x60/0xb0
[  103.994033][ T4720]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  103.999971][ T4720] RIP: 0033:0x7f24af18efc9
[  104.004452][ T4720] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  104.024205][ T4720] RSP: 002b:00007f24affd9e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  104.032670][ T4720] RAX: ffffffffffffffda RBX: 0000000000000553 RCX: 00007f24af18efc9
[  104.040692][ T4720] RDX: 00007f24affd9ef0 RSI: 0000000000000000 RDI: 00007f24af212960
[  104.048708][ T4720] RBP: 00002000000009c0 R08: 00007f24affd9bb7 R09: 00007f24affd9e40
[  104.056725][ T4720] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000000
[  104.065172][ T4720] R13: 00007f24affd9ef0 R14: 00007f24affd9eb0 R15: 00002000000001c0
[  104.073203][ T4720]  </TASK>
[  104.084754][ T4723] netlink: 4 bytes leftover after parsing attributes in process `syz.4.47'.
[  104.774448][ T4731] loop3: detected capacity change from 0 to 512
[  104.883542][ T4731] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  105.005127][ T4731] EXT4-fs error (device loop3): ext4_orphan_get:1426: comm syz.3.50: bad orphan inode 13
[  105.107568][ T4731] ext4_test_bit(bit=12, block=18) = 1
[  105.113036][ T4731] is_bad_inode(inode)=0
[  105.117256][ T4731] NEXT_ORPHAN(inode)=0
[  105.177635][ T4731] max_ino=32
[  105.181015][ T4731] i_nlink=1
[  105.184263][ T4731] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  105.257960][ T4270] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  105.896987][ T4730] loop1: detected capacity change from 0 to 32768
[  105.966601][ T4280] EXT4-fs (loop3): unmounting filesystem.
[  106.011562][ T4733] loop2: detected capacity change from 0 to 32768
[  106.072467][ T4733] XFS (loop2): Mounting V5 Filesystem
[  106.076969][ T4730] XFS (loop1): Mounting V5 Filesystem
[  106.173888][ T4763] loop0: detected capacity change from 0 to 512
[  106.238794][ T4730] XFS (loop1): Ending clean mount
[  106.270467][ T4769] netlink: 'syz.3.54': attribute type 2 has an invalid length.
[  106.297005][ T4769] netlink: 'syz.3.54': attribute type 1 has an invalid length.
[  106.302495][ T4733] XFS (loop2): Ending clean mount
[  106.305369][ T4730] XFS (loop1): Quotacheck needed: Please wait.
[  106.338812][ T4733] XFS (loop2): Quotacheck needed: Please wait.
[  106.351891][ T4763] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  106.394894][ T4763] ext4 filesystem being mounted at /9/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  106.399562][ T4730] XFS (loop1): Quotacheck: Done.
[  106.473619][ T4733] XFS (loop2): Quotacheck: Done.
[  106.885671][ T4780] IPVS: set_ctl: invalid protocol: 59 100.1.1.1:20004
[  107.101254][ T4782] IPVS: set_ctl: invalid protocol: 59 100.1.1.1:20004
[  107.414535][ T4778] netlink: 'syz.0.53': attribute type 1 has an invalid length.
[  107.455152][ T4271] XFS (loop1): Unmounting Filesystem
[  107.491658][ T4265] XFS (loop2): Unmounting Filesystem
[  107.540782][ T4763] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5929: Corrupt filesystem
[  107.590078][ T4763] EXT4-fs (loop0): Remounting filesystem read-only
[  107.596694][ T4763] EXT4-fs error (device loop0): ext4_ext_tree_init:879: inode #18: comm syz.0.53: mark_inode_dirty error
[  107.698567][ T4763] EXT4-fs (loop0): Remounting filesystem read-only
[  107.706437][ T4763] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5929: Corrupt filesystem
[  107.759207][ T4763] EXT4-fs (loop0): Remounting filesystem read-only
[  107.813400][ T4763] EXT4-fs error (device loop0): __ext4_new_inode:1350: inode #18: comm syz.0.53: mark_inode_dirty error
[  107.898119][ T4763] EXT4-fs (loop0): Remounting filesystem read-only
[  107.927944][ T4763] EXT4-fs error (device loop0) in __ext4_new_inode:1352: Corrupt filesystem
[  107.970599][ T4763] EXT4-fs (loop0): Remounting filesystem read-only
[  107.994172][ T4763] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5929: Corrupt filesystem
[  108.019093][ T4763] EXT4-fs (loop0): Remounting filesystem read-only
[  108.033550][ T4763] EXT4-fs error (device loop0): ext4_evict_inode:279: inode #18: comm syz.0.53: mark_inode_dirty error
[  108.058984][ T4763] EXT4-fs (loop0): Remounting filesystem read-only
[  108.092802][ T4763] EXT4-fs warning (device loop0): ext4_evict_inode:282: couldn't mark inode dirty (err -117)
[  108.297947][ T4785] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  108.315894][ T4785] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  108.668910][ T4736] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 128: padding at end of block bitmap is not set
[  108.787876][ T4736] EXT4-fs (loop0): Remounting filesystem read-only
[  109.002291][ T4785] Bluetooth: hci1: Suspend notifier action (1) failed: -4
[  109.002929][ T4785] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  109.003085][ T4785] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  109.011833][ T4797] loop1: detected capacity change from 0 to 512
[  109.012610][ T4797] EXT4-fs: Ignoring removed oldalloc option
[  109.037517][ T4785] Bluetooth: hci2: Suspend notifier action (1) failed: -4
[  109.038561][ T4785] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  109.038643][ T4785] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  109.041479][ T4785] Bluetooth: hci3: Suspend notifier action (1) failed: -4
[  109.042687][ T4785] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  109.042794][ T4785] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  109.044456][ T4785] Bluetooth: hci4: Suspend notifier action (1) failed: -4
[  109.079169][ T4778] EXT4-fs error (device loop0): ext4_search_dir:1549: inode #2: block 3: comm syz.0.53: bad entry in directory: inode out of bounds - offset=44, inode=12, rec_len=16, size=2048 fake=0
[  109.147733][ T4778] EXT4-fs (loop0): Remounting filesystem read-only
[  109.148231][ T4783] EXT4-fs error (device loop0): ext4_search_dir:1549: inode #2: block 3: comm syz.0.53: bad entry in directory: inode out of bounds - offset=44, inode=12, rec_len=16, size=2048 fake=0
[  109.164939][ T4797] EXT4-fs error (device loop1): ext4_xattr_inode_iget:400: comm syz.1.57: Parent and EA inode have the same ino 15
[  109.192329][ T4797] EXT4-fs (loop1): 1 orphan inode deleted
[  109.192392][ T4797] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  109.193352][ T4806] FAULT_INJECTION: forcing a failure.
[  109.193352][ T4806] name fail_page_alloc, interval 1, probability 0, space 0, times 1
[  109.193451][ T4806] CPU: 0 PID: 4806 Comm: syz.4.61 Not tainted syzkaller #0
[  109.193472][ T4806] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  109.193485][ T4806] Call Trace:
[  109.193492][ T4806]  <TASK>
[  109.193501][ T4806]  dump_stack_lvl+0x168/0x22e
[  109.193534][ T4806]  ? show_regs_print_info+0x12/0x12
[  109.193560][ T4806]  ? load_image+0x3b0/0x3b0
[  109.193594][ T4806]  ? __lock_acquire+0x7c50/0x7c50
[  109.193630][ T4806]  should_fail_ex+0x399/0x4d0
[  109.193666][ T4806]  prepare_alloc_pages+0x1e2/0x5f0
[  109.193713][ T4806]  __alloc_pages+0x123/0x4e0
[  109.193745][ T4806]  ? zone_statistics+0x170/0x170
[  109.193777][ T4806]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  109.193816][ T4806]  ? copy_page_from_iter+0xe4/0x100
[  109.193849][ T4806]  pipe_write+0x633/0x1b00
[  109.193889][ T4806]  ? pipe_read+0x1200/0x1200
[  109.193911][ T4806]  ? end_current_label_crit_section+0x14b/0x170
[  109.193937][ T4806]  ? common_file_perm+0x171/0x1c0
[  109.193963][ T4806]  ? fsnotify_perm+0x5a/0x550
[  109.193983][ T4806]  vfs_write+0x44c/0x960
[  109.194008][ T4806]  ? file_end_write+0x250/0x250
[  109.194032][ T4806]  ? __fget_files+0x44a/0x4d0
[  109.194058][ T4806]  ? __fdget_pos+0x1d4/0x360
[  109.194077][ T4806]  ? ksys_write+0x71/0x240
[  109.194099][ T4806]  ksys_write+0x143/0x240
[  109.194122][ T4806]  ? __ia32_sys_read+0x80/0x80
[  109.194146][ T4806]  ? lockdep_hardirqs_on+0x94/0x140
[  109.194170][ T4806]  do_syscall_64+0x4c/0xa0
[  109.194186][ T4806]  ? clear_bhb_loop+0x60/0xb0
[  109.194202][ T4806]  ? clear_bhb_loop+0x60/0xb0
[  109.194219][ T4806]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  109.194234][ T4806] RIP: 0033:0x7fb702b8efc9
[  109.194247][ T4806] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  109.194260][ T4806] RSP: 002b:00007fb700df6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  109.194277][ T4806] RAX: ffffffffffffffda RBX: 00007fb702de6090 RCX: 00007fb702b8efc9
[  109.194288][ T4806] RDX: 0000000000011000 RSI: 0000200000000040 RDI: 0000000000000008
[  109.194298][ T4806] RBP: 00007fb700df6090 R08: 0000000000000000 R09: 0000000000000000
[  109.194307][ T4806] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  109.194316][ T4806] R13: 00007fb702de6128 R14: 00007fb702de6090 R15: 00007ffda387ec98
[  109.194337][ T4806]  </TASK>
[  109.254595][ T4808] 9pnet_fd: Insufficient options for proto=fd
[  109.659719][ T4271] EXT4-fs (loop1): unmounting filesystem.
[  110.018401][ T4275] Bluetooth: hci1: command 0x0c1a tx timeout
[  110.082303][ T4824] Zero length message leads to an empty skb
[  110.284366][ T4763] tty tty20: ldisc open failed (-12), clearing slot 19
[  110.652024][ T4829] loop3: detected capacity change from 0 to 32768
[  110.665506][ T4829] BTRFS: device fsid c6b85f58-0c7e-41ca-a553-c8d9f94f6663 devid 1 transid 8 /dev/loop3 scanned by syz.3.64 (4829)
[  110.682452][ T4829] BTRFS info (device loop3): first mount of filesystem c6b85f58-0c7e-41ca-a553-c8d9f94f6663
[  110.693961][ T4829] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm
[  110.703681][ T4829] BTRFS info (device loop3): setting incompat feature flag for COMPRESS_LZO (0x8)
[  110.712980][ T4829] BTRFS info (device loop3): use lzo compression, level 0
[  110.720219][ T4829] BTRFS info (device loop3): using free space tree
[  110.854207][ T4823] loop4: detected capacity change from 0 to 32768
[  110.967215][ T4823] XFS (loop4): Mounting V5 Filesystem
[  111.045383][ T4829] BTRFS info (device loop3): enabling ssd optimizations
[  111.060879][ T4275] Bluetooth: hci4: command 0x0c1a tx timeout
[  111.067277][ T4275] Bluetooth: hci3: command 0x0c1a tx timeout
[  111.073422][ T4277] Bluetooth: hci2: command 0x0c1a tx timeout
[  111.157798][ T4823] XFS (loop4): Ending clean mount
[  111.229188][ T4823] XFS (loop4): Quotacheck needed: Please wait.
[  111.368569][ T4823] XFS (loop4): Quotacheck: Done.
[  111.394091][ T4870] bridge0: port 2(bridge_slave_1) entered disabled state
[  111.403558][ T4870] bridge0: port 1(bridge_slave_0) entered disabled state
[  111.707821][ T4875] IPVS: set_ctl: invalid protocol: 59 100.1.1.1:20004
[  112.182979][ T4275] Bluetooth: hci1: command 0x0406 tx timeout
[  112.225069][ T4278] XFS (loop4): Unmounting Filesystem
[  112.761247][ T4280] BTRFS info (device loop3): last unmount of filesystem c6b85f58-0c7e-41ca-a553-c8d9f94f6663
[  113.148234][ T4275] Bluetooth: hci3: command 0x0406 tx timeout
[  113.155674][ T4277] Bluetooth: hci2: command 0x0406 tx timeout
[  113.161805][ T4267] Bluetooth: hci4: command 0x0406 tx timeout
[  114.445805][ T4916] loop3: detected capacity change from 0 to 512
[  114.449965][ T4915] netlink: 60 bytes leftover after parsing attributes in process `syz.2.85'.
[  114.495060][ T4916] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  114.533104][ T4915] unsupported nlmsg_type 40
[  114.545636][ T4916] EXT4-fs (loop3): invalid journal inode
[  114.553724][ T4891] loop1: detected capacity change from 0 to 32768
[  114.558724][ T4916] EXT4-fs (loop3): can't get journal size
[  114.598672][ T4891] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz.1.82 (4891)
[  114.651353][ T4891] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  114.673886][ T4916] EXT4-fs (loop3): 1 truncate cleaned up
[  114.697935][ T4891] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  114.716720][ T4916] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  114.772606][ T4891] BTRFS info (device loop1): using free space tree
[  114.844091][ T4927] Driver unsupported XDP return value 0 on prog  (id 27) dev N/A, expect packet loss!
[  115.116273][ T4891] BTRFS info (device loop1): enabling ssd optimizations
[  115.217742][ T4267] Bluetooth: hci2: command 0x0406 tx timeout
[  115.464455][ T4280] EXT4-fs (loop3): unmounting filesystem.
[  115.515494][ T4271] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  115.649677][ T4955] FAULT_INJECTION: forcing a failure.
[  115.649677][ T4955] name failslab, interval 1, probability 0, space 0, times 0
[  115.662477][ T4955] CPU: 0 PID: 4955 Comm: syz.0.91 Not tainted syzkaller #0
[  115.669748][ T4955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  115.679829][ T4955] Call Trace:
[  115.683137][ T4955]  <TASK>
[  115.686096][ T4955]  dump_stack_lvl+0x168/0x22e
[  115.690814][ T4955]  ? show_regs_print_info+0x12/0x12
[  115.696041][ T4955]  ? load_image+0x3b0/0x3b0
[  115.700602][ T4955]  ? __might_sleep+0xd0/0xd0
[  115.705230][ T4955]  ? __lock_acquire+0x7c50/0x7c50
[  115.710291][ T4955]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  115.716310][ T4955]  should_fail_ex+0x399/0x4d0
[  115.721029][ T4955]  should_failslab+0x5/0x20
[  115.725620][ T4955]  slab_pre_alloc_hook+0x59/0x310
[  115.730672][ T4955]  ? lockdep_hardirqs_on+0x94/0x140
[  115.735906][ T4955]  ? snd_pcm_hw_params_old_user+0x5a/0xce0
[  115.741762][ T4955]  __kmem_cache_alloc_node+0x4f/0x260
[  115.747351][ T4955]  ? snd_pcm_hw_params_old_user+0x5a/0xce0
[  115.753205][ T4955]  kmalloc_trace+0x26/0xe0
[  115.757699][ T4955]  ? snd_pcm_poll+0x620/0x620
[  115.762414][ T4955]  snd_pcm_hw_params_old_user+0x5a/0xce0
[  115.768097][ T4955]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  115.774120][ T4955]  ? lock_chain_count+0x20/0x20
[  115.779011][ T4955]  ? asm_sysvec_reschedule_ipi+0x16/0x20
[  115.784676][ T4955]  ? lockdep_hardirqs_on+0x94/0x140
[  115.789911][ T4955]  ? asm_sysvec_reschedule_ipi+0x16/0x20
[  115.795573][ T4955]  ? snd_pcm_poll+0x620/0x620
[  115.800295][ T4955]  ? snd_pcm_poll+0x620/0x620
[  115.805099][ T4955]  snd_pcm_ioctl+0x8a/0xb0
[  115.809553][ T4955]  __se_sys_ioctl+0xfa/0x170
[  115.814179][ T4955]  do_syscall_64+0x4c/0xa0
[  115.818624][ T4955]  ? clear_bhb_loop+0x60/0xb0
[  115.823326][ T4955]  ? clear_bhb_loop+0x60/0xb0
[  115.828031][ T4955]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  115.833951][ T4955] RIP: 0033:0x7f6382b8efc9
[  115.838390][ T4955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  115.858038][ T4955] RSP: 002b:00007f6380db4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  115.866495][ T4955] RAX: ffffffffffffffda RBX: 00007f6382de6180 RCX: 00007f6382b8efc9
[  115.874513][ T4955] RDX: 0000200000001580 RSI: 00000000c1004111 RDI: 0000000000000007
[  115.882522][ T4955] RBP: 00007f6380db4090 R08: 0000000000000000 R09: 0000000000000000
[  115.890528][ T4955] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  115.898527][ T4955] R13: 00007f6382de6218 R14: 00007f6382de6180 R15: 00007fff21dc3288
[  115.906573][ T4955]  </TASK>
[  116.320693][ T4964] FAULT_INJECTION: forcing a failure.
[  116.320693][ T4964] name fail_futex, interval 1, probability 0, space 0, times 1
[  116.334064][ T4964] CPU: 1 PID: 4964 Comm: syz.2.95 Not tainted syzkaller #0
[  116.341309][ T4964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  116.351410][ T4964] Call Trace:
[  116.354722][ T4964]  <TASK>
[  116.357684][ T4964]  dump_stack_lvl+0x168/0x22e
[  116.362415][ T4964]  ? show_regs_print_info+0x12/0x12
[  116.367658][ T4964]  ? load_image+0x3b0/0x3b0
[  116.372217][ T4964]  should_fail_ex+0x399/0x4d0
[  116.376942][ T4964]  futex_lock_pi_atomic+0xfc/0xc60
[  116.382095][ T4964]  ? pi_state_update_owner+0x360/0x360
[  116.387635][ T4964]  ? futex_setup_timer+0xc0/0xc0
[  116.392625][ T4964]  futex_lock_pi+0x1cb/0x880
[  116.397266][ T4964]  ? fixup_pi_state_owner+0x5c0/0x5c0
[  116.402717][ T4964]  ? __lock_acquire+0x7c50/0x7c50
[  116.407782][ T4964]  ? file_end_write+0x156/0x250
[  116.412685][ T4964]  do_futex+0x1c1/0x320
[  116.416898][ T4964]  ? __ia32_sys_get_robust_list+0x80/0x80
[  116.422664][ T4964]  ? mutex_unlock+0x10/0x10
[  116.427226][ T4964]  __se_sys_futex+0x14a/0x440
[  116.431963][ T4964]  ? __x64_sys_futex+0xf0/0xf0
[  116.436782][ T4964]  ? __x64_sys_futex+0x1d/0xf0
[  116.441590][ T4964]  do_syscall_64+0x4c/0xa0
[  116.446040][ T4964]  ? clear_bhb_loop+0x60/0xb0
[  116.450743][ T4964]  ? clear_bhb_loop+0x60/0xb0
[  116.455439][ T4964]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  116.461347][ T4964] RIP: 0033:0x7f24af18efc9
[  116.465777][ T4964] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  116.485392][ T4964] RSP: 002b:00007f24affda038 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[  116.493824][ T4964] RAX: ffffffffffffffda RBX: 00007f24af3e5fa0 RCX: 00007f24af18efc9
[  116.501808][ T4964] RDX: 0000000000000002 RSI: 0000000000000086 RDI: 000020000000cffc
[  116.509790][ T4964] RBP: 00007f24affda090 R08: 0000000000000000 R09: 00000000fffffffc
[  116.517768][ T4964] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  116.525748][ T4964] R13: 00007f24af3e6038 R14: 00007f24af3e5fa0 R15: 00007ffef70191b8
[  116.533744][ T4964]  </TASK>
[  116.703998][ T4922] loop4: detected capacity change from 0 to 32768
[  116.903689][ T4922] XFS (loop4): Mounting V5 Filesystem
[  116.936895][ T4978] openvswitch: netlink: Missing key (keys=40, expected=80)
[  117.018511][ T4922] XFS (loop4): Ending clean mount
[  117.053902][ T4922] XFS (loop4): Quotacheck needed: Please wait.
[  117.185004][ T4992] loop2: detected capacity change from 0 to 128
[  117.232240][ T4922] XFS (loop4): Quotacheck: Done.
[  117.562996][ T4996] IPVS: set_ctl: invalid protocol: 59 100.1.1.1:20004
[  118.040162][ T4278] XFS (loop4): Unmounting Filesystem
[  118.116980][ T5005] vcan0: tx address claim with dlc 0
[  118.328744][ T5009] loop2: detected capacity change from 0 to 8
[  118.362513][ T5007] loop3: detected capacity change from 0 to 1024
[  118.691616][ T5012] netlink: 'syz.4.106': attribute type 2 has an invalid length.
[  118.710618][ T5012] netlink: 10 bytes leftover after parsing attributes in process `syz.4.106'.
[  118.796272][ T5007] hfsplus: xattr searching failed
[  119.245633][ T5010] syz.2.107 (5010) used greatest stack depth: 20800 bytes left
[  119.255885][   T33] hfsplus: b-tree write err: -5, ino 3
[  119.319785][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  119.328147][    T0] NOHZ tick-stop error: local softirq work is pending, handler #382!!!
[  119.336438][    T0] NOHZ tick-stop error: local softirq work is pending, handler #382!!!
[  119.344740][    T0] NOHZ tick-stop error: local softirq work is pending, handler #382!!!
[  119.353042][    T0] NOHZ tick-stop error: local softirq work is pending, handler #382!!!
[  119.361345][    T0] NOHZ tick-stop error: local softirq work is pending, handler #382!!!
[  120.069060][ T5028] loop4: detected capacity change from 0 to 128
[  120.132068][ T5028] capability: warning: `syz.4.112' uses deprecated v2 capabilities in a way that may be insecure
[  120.766195][ T5033] usb usb5: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  120.913178][ T5031] FAULT_INJECTION: forcing a failure.
[  120.913178][ T5031] name failslab, interval 1, probability 0, space 0, times 0
[  120.926436][ T5031] CPU: 0 PID: 5031 Comm: syz.2.113 Not tainted syzkaller #0
[  120.933759][ T5031] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  120.943831][ T5031] Call Trace:
[  120.947118][ T5031]  <TASK>
[  120.950049][ T5031]  dump_stack_lvl+0x168/0x22e
[  120.954761][ T5031]  ? show_regs_print_info+0x12/0x12
[  120.959970][ T5031]  ? load_image+0x3b0/0x3b0
[  120.964504][ T5031]  ? __might_sleep+0xd0/0xd0
[  120.969146][ T5031]  ? __lock_acquire+0x7c50/0x7c50
[  120.974221][ T5031]  should_fail_ex+0x399/0x4d0
[  120.978947][ T5031]  should_failslab+0x5/0x20
[  120.983497][ T5031]  slab_pre_alloc_hook+0x59/0x310
[  120.988565][ T5031]  kmem_cache_alloc_node+0x5a/0x320
[  120.993796][ T5031]  ? __alloc_skb+0xfc/0x7e0
[  120.998344][ T5031]  __alloc_skb+0xfc/0x7e0
[  121.002710][ T5031]  ? netlink_autobind+0xda/0x300
[  121.007705][ T5031]  netlink_sendmsg+0x645/0xbc0
[  121.012519][ T5031]  ? netlink_getsockopt+0x540/0x540
[  121.017757][ T5031]  ? aa_sock_msg_perm+0x94/0x150
[  121.022794][ T5031]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  121.028151][ T5031]  ? security_socket_sendmsg+0x7c/0xa0
[  121.033664][ T5031]  ? netlink_getsockopt+0x540/0x540
[  121.038906][ T5031]  ____sys_sendmsg+0x59b/0x970
[  121.043723][ T5031]  ? __sys_sendmsg_sock+0x30/0x30
[  121.048793][ T5031]  ? __import_iovec+0x315/0x500
[  121.053697][ T5031]  ? import_iovec+0x6f/0xa0
[  121.058255][ T5031]  ___sys_sendmsg+0x21c/0x290
[  121.062982][ T5031]  ? __sys_sendmsg+0x270/0x270
[  121.067806][ T5031]  ? __lock_acquire+0x7c50/0x7c50
[  121.072903][ T5031]  ? __fdget+0x17c/0x200
[  121.077223][ T5031]  __se_sys_sendmsg+0x19e/0x270
[  121.082160][ T5031]  ? __x64_sys_sendmsg+0x80/0x80
[  121.087132][ T5031]  ? lockdep_hardirqs_on+0x94/0x140
[  121.092359][ T5031]  do_syscall_64+0x4c/0xa0
[  121.096794][ T5031]  ? clear_bhb_loop+0x60/0xb0
[  121.101486][ T5031]  ? clear_bhb_loop+0x60/0xb0
[  121.106179][ T5031]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  121.112096][ T5031] RIP: 0033:0x7f24af18efc9
[  121.116541][ T5031] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  121.136189][ T5031] RSP: 002b:00007f24affb9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  121.144718][ T5031] RAX: ffffffffffffffda RBX: 00007f24af3e6090 RCX: 00007f24af18efc9
[  121.152699][ T5031] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000006
[  121.160678][ T5031] RBP: 00007f24affb9090 R08: 0000000000000000 R09: 0000000000000000
[  121.168665][ T5031] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  121.176659][ T5031] R13: 00007f24af3e6128 R14: 00007f24af3e6090 R15: 00007ffef70191b8
[  121.184661][ T5031]  </TASK>
[  121.266231][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  121.287247][ T5037] Bluetooth: MGMT ver 1.22
[  121.483657][ T5026] loop3: detected capacity change from 0 to 32768
[  121.528769][ T5026] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 scanned by syz.3.111 (5026)
[  121.604610][ T5026] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  121.652025][ T5026] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  121.697821][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  121.787710][ T5026] BTRFS info (device loop3): using free space tree
[  122.752322][ T5026] BTRFS error (device loop3): open_ctree failed: -12
[  123.001192][ T5064] loop0: detected capacity change from 0 to 2048
[  123.155981][ T4438] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 scanned by udevd (4438)
[  123.184245][ T5064] NILFS (loop0): couldn't find nilfs on the device
[  123.831279][ T5071] netlink: 'syz.3.121': attribute type 2 has an invalid length.
[  124.004215][ T5071] netlink: 10 bytes leftover after parsing attributes in process `syz.3.121'.
[  124.087161][ T4347] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  124.347908][ T4347] usb 2-1: Using ep0 maxpacket: 8
[  124.486711][ T4347] usb 2-1: config index 0 descriptor too short (expected 301, got 45)
[  124.585741][ T4347] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  124.599981][ T5085] loop4: detected capacity change from 0 to 256
[  124.627608][ T4347] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  124.647066][ T4347] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  124.688873][ T4347] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  124.748067][ T4347] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  124.757175][ T4347] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  124.817225][ T5085] FAT-fs (loop4): Directory bread(block 64) failed
[  124.841134][ T5085] FAT-fs (loop4): Directory bread(block 65) failed
[  124.870261][ T5085] FAT-fs (loop4): Directory bread(block 66) failed
[  124.876865][ T5085] FAT-fs (loop4): Directory bread(block 67) failed
[  125.008918][ T5085] FAT-fs (loop4): Directory bread(block 68) failed
[  125.016237][ T5085] FAT-fs (loop4): Directory bread(block 69) failed
[  125.027338][ T5085] FAT-fs (loop4): Directory bread(block 70) failed
[  125.035491][ T5085] FAT-fs (loop4): Directory bread(block 71) failed
[  125.488100][ T5085] FAT-fs (loop4): Directory bread(block 72) failed
[  125.495449][ T4347] usb 2-1: GET_CAPABILITIES returned 0
[  125.502546][ T4347] usbtmc 2-1:16.0: can't read capabilities
[  125.568157][ T5085] FAT-fs (loop4): Directory bread(block 73) failed
[  125.852255][ T4347] usb 2-1: USB disconnect, device number 2
[  125.883295][ T5098] netlink: 'syz.2.128': attribute type 2 has an invalid length.
[  125.937619][ T5098] netlink: 10 bytes leftover after parsing attributes in process `syz.2.128'.
[  126.343932][ T5107] batman_adv: batadv0: Adding interface: dummy0
[  126.350814][ T5107] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  126.382808][ T5107] batman_adv: batadv0: Interface activated: dummy0
[  126.467763][   T22] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  127.062357][ T5109] batadv0: mtu less than device minimum
[  127.119516][ T5109] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  127.132283][ T5109] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  127.144569][ T5109] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  127.156831][ T5109] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  127.169191][ T5109] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  127.181842][ T5109] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  127.194179][ T5109] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  127.206508][ T5109] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  127.214613][   T22] usb 1-1: Using ep0 maxpacket: 16
[  127.219153][ T5109] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  127.242365][   T22] usb 1-1: config 1 has an invalid interface number: 138 but max is 0
[  127.260552][ T5113] loop4: detected capacity change from 0 to 64
[  127.275629][   T22] usb 1-1: config 1 has no interface number 0
[  127.295363][   T22] usb 1-1: config 1 interface 138 altsetting 13 has an invalid endpoint with address 0x0, skipping
[  127.345761][   T22] usb 1-1: config 1 interface 138 altsetting 13 endpoint 0x3 has an invalid bInterval 181, changing to 11
[  127.373639][   T22] usb 1-1: config 1 interface 138 altsetting 13 has an invalid endpoint with address 0x0, skipping
[  127.394833][   T22] usb 1-1: config 1 interface 138 altsetting 13 has an invalid endpoint with address 0x0, skipping
[  127.416009][   T22] usb 1-1: config 1 interface 138 altsetting 13 has an invalid endpoint with address 0x0, skipping
[  127.447589][   T22] usb 1-1: config 1 interface 138 altsetting 13 has an invalid endpoint with address 0xCF, skipping
[  127.467571][   T22] usb 1-1: config 1 interface 138 has no altsetting 0
[  127.492399][   T22] usb 1-1: New USB device found, idVendor=045e, idProduct=0409, bcdDevice=73.ff
[  127.521987][   T22] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  127.536988][   T22] usb 1-1: Product: 㰁
[  127.547605][   T22] usb 1-1: Manufacturer: Ⰹ
[  127.552323][   T22] usb 1-1: SerialNumber: ♞
[  127.578538][ T5100] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  127.642686][ T5104] loop2: detected capacity change from 0 to 32768
[  127.755005][ T5104] ialloc: diAlloc returned -5!
[  127.814351][ T5100] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  127.864161][ T5100] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  127.967383][ T5123] netlink: 'syz.3.136': attribute type 2 has an invalid length.
[  127.975799][ T5123] netlink: 10 bytes leftover after parsing attributes in process `syz.3.136'.
[  128.031173][   T22] usb 1-1: USB disconnect, device number 2
[  128.208085][ T5127] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  128.219929][ T5127] SET target dimension over the limit!
[  129.428809][ T5137] Bluetooth: MGMT ver 1.22
[  129.585505][ T5143] loop4: detected capacity change from 0 to 512
[  129.629710][ T5143] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  129.684446][   T27] audit: type=1326 audit(1762156447.042:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5144 comm="syz.0.140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6382b8efc9 code=0x7ffc0000
[  129.707968][ T5145] mmap: syz.0.140 (5145) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  129.722416][ T5143] EXT4-fs (loop4): orphan cleanup on readonly fs
[  129.737412][   T27] audit: type=1326 audit(1762156447.062:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5144 comm="syz.0.140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6382b8efc9 code=0x7ffc0000
[  129.742755][ T5143] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:511: comm syz.4.141: Block bitmap for bg 0 marked uninitialized
[  129.782754][   T27] audit: type=1326 audit(1762156447.062:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5144 comm="syz.0.140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f6382b8efc9 code=0x7ffc0000
[  129.819604][   T27] audit: type=1326 audit(1762156447.062:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5144 comm="syz.0.140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6382b8efc9 code=0x7ffc0000
[  129.842891][ T5147] xt_CT: You must specify a L4 protocol and not use inversions on it
[  129.858685][  T108] ERROR: (device loop2): diUpdatePMap: the iag is outside the map
[  129.858685][  T108] 
[  130.049135][  T108] ERROR: (device loop2): remounting filesystem as read-only
[  130.056695][   T27] audit: type=1326 audit(1762156447.062:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5144 comm="syz.0.140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6382b8efc9 code=0x7ffc0000
[  130.307610][ T5143] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6165: Corrupt filesystem
[  130.342433][   T27] audit: type=1326 audit(1762156447.062:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5144 comm="syz.0.140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6382b8efc9 code=0x7ffc0000
[  130.373603][   T27] audit: type=1326 audit(1762156447.072:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5144 comm="syz.0.140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6382b8efc9 code=0x7ffc0000
[  130.397943][ T5143] EXT4-fs (loop4): 1 orphan inode deleted
[  130.407050][ T5143] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  130.416488][   T27] audit: type=1326 audit(1762156447.072:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5144 comm="syz.0.140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6382b8efc9 code=0x7ffc0000
[  130.456008][   T27] audit: type=1326 audit(1762156447.072:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5144 comm="syz.0.140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=216 compat=0 ip=0x7f6382b8efc9 code=0x7ffc0000
[  130.563216][   T27] audit: type=1326 audit(1762156447.122:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5144 comm="syz.0.140" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6382b8efc9 code=0x7ffc0000
[  130.601596][ T5157] loop3: detected capacity change from 0 to 512
[  130.631326][ T4278] EXT4-fs (loop4): unmounting filesystem.
[  130.832050][ T5159] netlink: 4 bytes leftover after parsing attributes in process `syz.3.144'.
[  130.929995][ T5163] x_tables: duplicate underflow at hook 1
[  131.133452][ T5161] loop4: detected capacity change from 0 to 4096
[  131.244432][ T5161] ntfs: volume version 3.1.
[  131.712683][ T5173] netlink: 'syz.1.149': attribute type 2 has an invalid length.
[  131.738802][ T5175] loop0: detected capacity change from 0 to 65
[  131.776216][ T5173] netlink: 10 bytes leftover after parsing attributes in process `syz.1.149'.
[  131.821629][ T5175] BFS-fs: bfs_fill_super(): loop0 is unclean, continuing
[  131.867889][ T5175] BFS-fs: bfs_fill_super(): NOTE: filesystem loop0 was created with 512 inodes, the real maximum is 511, mounting anyway
[  132.056897][ T5179] syz.0.150 uses old SIOCAX25GETINFO
[  132.820743][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  132.827094][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  133.123992][ T5201] loop2: detected capacity change from 0 to 128
[  133.200277][ T5201] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  133.276478][ T5201] ext4 filesystem being mounted at /30/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  133.388123][ T5201] fscrypt (loop2, inode 12): Unsupported encryption flags (0x80)
[  133.419213][ T5212] netlink: 'syz.0.162': attribute type 2 has an invalid length.
[  133.487525][ T5212] netlink: 10 bytes leftover after parsing attributes in process `syz.0.162'.
[  133.586251][ T4265] EXT4-fs (loop2): unmounting filesystem.
[  133.717204][ T5220] FAULT_INJECTION: forcing a failure.
[  133.717204][ T5220] name failslab, interval 1, probability 0, space 0, times 0
[  133.737794][ T5220] CPU: 0 PID: 5220 Comm: syz.2.165 Not tainted syzkaller #0
[  133.745154][ T5220] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  133.755243][ T5220] Call Trace:
[  133.758550][ T5220]  <TASK>
[  133.761506][ T5220]  dump_stack_lvl+0x168/0x22e
[  133.766227][ T5220]  ? show_regs_print_info+0x12/0x12
[  133.771472][ T5220]  ? load_image+0x3b0/0x3b0
[  133.776020][ T5220]  ? __might_sleep+0xd0/0xd0
[  133.780661][ T5220]  ? __lock_acquire+0x7c50/0x7c50
[  133.785723][ T5220]  should_fail_ex+0x399/0x4d0
[  133.790451][ T5220]  should_failslab+0x5/0x20
[  133.794996][ T5220]  slab_pre_alloc_hook+0x59/0x310
[  133.800064][ T5220]  kmem_cache_alloc+0x56/0x2f0
[  133.804859][ T5220]  ? fcntl_setlk+0xa7/0x1020
[  133.809492][ T5220]  fcntl_setlk+0xa7/0x1020
[  133.813954][ T5220]  ? __might_fault+0xa6/0x120
[  133.818684][ T5220]  ? __lock_acquire+0x7c50/0x7c50
[  133.823766][ T5220]  ? vfs_lock_file+0xd0/0xd0
[  133.828397][ T5220]  ? __might_fault+0xa6/0x120
[  133.833106][ T5220]  ? __might_fault+0xc2/0x120
[  133.837822][ T5220]  ? __might_fault+0xa6/0x120
[  133.842540][ T5220]  do_fcntl+0x4e4/0x11c0
[  133.846838][ T5220]  ? mutex_unlock+0x10/0x10
[  133.851393][ T5220]  ? kill_fasync+0x4b0/0x4b0
[  133.856029][ T5220]  ? __fget_files+0x28/0x4d0
[  133.860669][ T5220]  ? __fget_files+0x44a/0x4d0
[  133.865394][ T5220]  ? tomoyo_file_fcntl+0x74/0x200
[  133.870467][ T5220]  ? bpf_lsm_file_fcntl+0x5/0x10
[  133.875452][ T5220]  ? security_file_fcntl+0x7c/0xa0
[  133.880613][ T5220]  __se_sys_fcntl+0xc9/0x190
[  133.885264][ T5220]  do_syscall_64+0x4c/0xa0
[  133.889722][ T5220]  ? clear_bhb_loop+0x60/0xb0
[  133.894451][ T5220]  ? clear_bhb_loop+0x60/0xb0
[  133.899206][ T5220]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  133.905164][ T5220] RIP: 0033:0x7f24af18efc9
[  133.909655][ T5220] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  133.929317][ T5220] RSP: 002b:00007f24affda038 EFLAGS: 00000246 ORIG_RAX: 0000000000000048
[  133.937780][ T5220] RAX: ffffffffffffffda RBX: 00007f24af3e5fa0 RCX: 00007f24af18efc9
[  133.945798][ T5220] RDX: 0000200000000500 RSI: 0000000000000006 RDI: 0000000000000003
[  133.953813][ T5220] RBP: 00007f24affda090 R08: 0000000000000000 R09: 0000000000000000
[  133.961821][ T5220] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  133.969832][ T5220] R13: 00007f24af3e6038 R14: 00007f24af3e5fa0 R15: 00007ffef70191b8
[  133.977864][ T5220]  </TASK>
[  134.184082][ T5231] FAULT_INJECTION: forcing a failure.
[  134.184082][ T5231] name failslab, interval 1, probability 0, space 0, times 0
[  134.233692][ T5233] tipc: Started in network mode
[  134.234008][ T5231] CPU: 0 PID: 5231 Comm: syz.3.168 Not tainted syzkaller #0
[  134.246257][ T5231] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  134.249011][ T5233] tipc: Node identity 263994380ae9, cluster identity 4711
[  134.256353][ T5231] Call Trace:
[  134.256365][ T5231]  <TASK>
[  134.256374][ T5231]  dump_stack_lvl+0x168/0x22e
[  134.256408][ T5231]  ? show_regs_print_info+0x12/0x12
[  134.279719][ T5231]  ? load_image+0x3b0/0x3b0
[  134.284290][ T5231]  ? __lock_acquire+0x7c50/0x7c50
[  134.289371][ T5231]  should_fail_ex+0x399/0x4d0
[  134.294105][ T5231]  should_failslab+0x5/0x20
[  134.295368][ T5233] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  134.298638][ T5231]  slab_pre_alloc_hook+0x59/0x310
[  134.298667][ T5231]  ? sock_kmalloc+0x92/0xf0
[  134.298690][ T5231]  __kmem_cache_alloc_node+0x4f/0x260
[  134.298715][ T5231]  ? sock_kmalloc+0x92/0xf0
[  134.298743][ T5231]  __kmalloc+0xa0/0x240
[  134.326001][ T5234] device syzkaller0 entered promiscuous mode
[  134.329010][ T5231]  sock_kmalloc+0x92/0xf0
[  134.329042][ T5231]  af_alg_alloc_areq+0x89/0x230
[  134.329070][ T5231]  skcipher_recvmsg+0x316/0xd40
[  134.329109][ T5231]  ? skcipher_sendmsg+0xe0/0xe0
[  134.354063][ T5231]  ? bpf_lsm_socket_recvmsg+0x5/0x10
[  134.359394][ T5231]  ? security_socket_recvmsg+0x85/0xb0
[  134.364938][ T5231]  ? skcipher_sendmsg+0xe0/0xe0
[  134.369846][ T5231]  ____sys_recvmsg+0x292/0x580
[  134.374685][ T5231]  ? __sys_recvmsg_sock+0x40/0x40
[  134.379796][ T5231]  ? import_iovec+0x6f/0xa0
[  134.384353][ T5231]  ___sys_recvmsg+0x1b2/0x510
[  134.389083][ T5231]  ? __sys_recvmsg+0x270/0x270
[  134.393902][ T5231]  ? common_file_perm+0x171/0x1c0
[  134.398990][ T5231]  ? __fget_files+0x44a/0x4d0
[  134.403731][ T5231]  ? __fdget+0x17c/0x200
[  134.408023][ T5231]  __x64_sys_recvmsg+0x1eb/0x2b0
[  134.413016][ T5231]  ? ___sys_recvmsg+0x510/0x510
[  134.417929][ T5231]  ? lockdep_hardirqs_on+0x94/0x140
[  134.423183][ T5231]  do_syscall_64+0x4c/0xa0
[  134.427637][ T5231]  ? clear_bhb_loop+0x60/0xb0
[  134.432353][ T5231]  ? clear_bhb_loop+0x60/0xb0
[  134.437082][ T5231]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  134.443018][ T5231] RIP: 0033:0x7f40c258efc9
[  134.447470][ T5231] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  134.467114][ T5231] RSP: 002b:00007f40c342b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002f
[  134.475578][ T5231] RAX: ffffffffffffffda RBX: 00007f40c27e5fa0 RCX: 00007f40c258efc9
[  134.483591][ T5231] RDX: 0000000000000000 RSI: 00002000000005c0 RDI: 0000000000000004
[  134.491603][ T5231] RBP: 00007f40c342b090 R08: 0000000000000000 R09: 0000000000000000
[  134.499615][ T5231] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  134.507629][ T5231] R13: 00007f40c27e6038 R14: 00007f40c27e5fa0 R15: 00007fffdbd67148
[  134.515657][ T5231]  </TASK>
[  134.576563][ T5235] tipc: Resetting bearer <eth:syzkaller0>
[  134.807159][ T5238] loop3: detected capacity change from 0 to 512
[  134.825516][ T5238] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  134.854464][ T5238] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  134.866360][ T5232] tipc: Resetting bearer <eth:syzkaller0>
[  134.883783][ T5238] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2819: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  134.899916][ T5238] EXT4-fs (loop3): 1 truncate cleaned up
[  134.905626][ T5238] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  134.930475][ T5232] tipc: Disabling bearer <eth:syzkaller0>
[  134.964584][ T5240] device pim6reg1 entered promiscuous mode
[  134.983624][ T5228] loop0: detected capacity change from 0 to 32768
[  135.134105][ T5228] XFS (loop0): Mounting V5 Filesystem
[  135.258031][ T5228] XFS (loop0): Ending clean mount
[  135.266144][ T5228] XFS (loop0): Quotacheck needed: Please wait.
[  135.347079][ T5228] XFS (loop0): Quotacheck: Done.
[  135.571265][ T5261] IPVS: set_ctl: invalid protocol: 59 100.1.1.1:20004
[  135.781448][ T4270] XFS (loop0): Unmounting Filesystem
[  135.950043][ T5266] netlink: 'syz.1.176': attribute type 2 has an invalid length.
[  135.983917][ T5266] netlink: 10 bytes leftover after parsing attributes in process `syz.1.176'.
[  136.214085][ T5269] loop0: detected capacity change from 0 to 1024
[  136.239060][ T5269] hfsplus: invalid gid specified
[  136.263728][ T5269] hfsplus: unable to parse mount options
[  136.307924][ T5273] FAULT_INJECTION: forcing a failure.
[  136.307924][ T5273] name failslab, interval 1, probability 0, space 0, times 0
[  136.363039][ T5273] CPU: 0 PID: 5273 Comm: syz.1.178 Not tainted syzkaller #0
[  136.370398][ T5273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  136.380492][ T5273] Call Trace:
[  136.383801][ T5273]  <TASK>
[  136.386760][ T5273]  dump_stack_lvl+0x168/0x22e
[  136.391483][ T5273]  ? show_regs_print_info+0x12/0x12
[  136.396717][ T5273]  ? load_image+0x3b0/0x3b0
[  136.401270][ T5273]  ? __might_sleep+0xd0/0xd0
[  136.405925][ T5273]  ? __lock_acquire+0x7c50/0x7c50
[  136.410989][ T5273]  ? __se_sys_memfd_create+0xee/0x340
[  136.416408][ T5273]  should_fail_ex+0x399/0x4d0
[  136.421138][ T5273]  should_failslab+0x5/0x20
[  136.425685][ T5273]  slab_pre_alloc_hook+0x59/0x310
[  136.430749][ T5273]  kmem_cache_alloc_lru+0x49/0x2e0
[  136.435895][ T5273]  ? shmem_alloc_inode+0x24/0x40
[  136.440879][ T5273]  shmem_alloc_inode+0x24/0x40
[  136.445679][ T5273]  ? shmem_match+0x160/0x160
[  136.450301][ T5273]  new_inode_pseudo+0x5f/0x1c0
[  136.455083][ T5273]  new_inode+0x25/0x1c0
[  136.459263][ T5273]  shmem_get_inode+0x347/0xbf0
[  136.464056][ T5273]  __shmem_file_setup+0x10b/0x290
[  136.469099][ T5273]  ? shmem_file_setup+0x13/0x30
[  136.473967][ T5273]  __se_sys_memfd_create+0x1e1/0x340
[  136.479267][ T5273]  do_syscall_64+0x4c/0xa0
[  136.483707][ T5273]  ? clear_bhb_loop+0x60/0xb0
[  136.488396][ T5273]  ? clear_bhb_loop+0x60/0xb0
[  136.493091][ T5273]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  136.498993][ T5273] RIP: 0033:0x7f117b58efc9
[  136.503420][ T5273] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  136.523059][ T5273] RSP: 002b:00007f117c518e18 EFLAGS: 00000202 ORIG_RAX: 000000000000013f
[  136.531512][ T5273] RAX: ffffffffffffffda RBX: 00000000000006f7 RCX: 00007f117b58efc9
[  136.539503][ T5273] RDX: 00007f117c518ef0 RSI: 0000000000000000 RDI: 00007f117b612960
[  136.547490][ T5273] RBP: 0000200000001f80 R08: 00007f117c518bb7 R09: 00007f117c518e40
[  136.555508][ T5273] R10: 000000000000000a R11: 0000000000000202 R12: 0000200000000080
[  136.563494][ T5273] R13: 00007f117c518ef0 R14: 00007f117c518eb0 R15: 0000200000000300
[  136.571488][ T5273]  </TASK>
[  137.253090][ T5278] SET target dimension over the limit!
[  137.443431][ T5281] loop0: detected capacity change from 0 to 128
[  137.573756][ T5281] FAT-fs (loop0): Directory bread(block 414) failed
[  137.621207][ T5281] FAT-fs (loop0): Directory bread(block 415) failed
[  137.679261][ T5281] FAT-fs (loop0): Directory bread(block 416) failed
[  137.725740][ T5281] FAT-fs (loop0): Directory bread(block 417) failed
[  137.764363][ T5281] FAT-fs (loop0): Directory bread(block 418) failed
[  137.800088][ T5281] FAT-fs (loop0): Directory bread(block 419) failed
[  137.832897][ T5281] FAT-fs (loop0): Directory bread(block 420) failed
[  137.862564][ T5281] FAT-fs (loop0): Directory bread(block 421) failed
[  137.905791][ T5281] FAT-fs (loop0): Directory bread(block 414) failed
[  137.921698][ T5281] FAT-fs (loop0): Directory bread(block 415) failed
[  138.036438][ T5284] loop1: detected capacity change from 0 to 512
[  138.049213][ T5284] EXT4-fs: Mount option(s) incompatible with ext3
[  138.103110][ T4438] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  138.483101][ T5264] loop2: detected capacity change from 0 to 32768
[  138.574428][ T5264] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  138.631748][ T5264] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  138.720928][ T5264] gfs2: fsid=syz:syz.s: journal 0 mapped with 3 extents in 0ms
[  138.984611][ T4280] EXT4-fs (loop3): unmounting filesystem.
[  139.037372][ T5264] gfs2: fsid=syz:syz.s: first mount done, others may mount
[  139.214099][ T5300] loop3: detected capacity change from 0 to 1024
[  139.269747][ T5283] loop1: detected capacity change from 0 to 32768
[  139.290555][ T5283] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.180 (5283)
[  139.336594][   T27] kauditd_printk_skb: 26 callbacks suppressed
[  139.336610][   T27] audit: type=1400 audit(1762156456.692:27): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=5299 comm="syz.3.188"
[  139.624288][   T27] audit: type=1400 audit(1762156456.722:28): apparmor="DENIED" operation="setprocattr" info="exec" error=-22 profile="unconfined" pid=5299 comm="syz.3.188"
[  139.999464][ T5283] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  140.076038][ T5283] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  140.089766][ T4387] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  140.148090][ T5283] BTRFS info (device loop1): using free space tree
[  140.307640][ T4744] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  140.326097][ T5315] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  140.383544][ T5296] loop4: detected capacity change from 0 to 32768
[  140.386979][ T5315] device syzkaller0 entered promiscuous mode
[  140.477452][ T5327] loop2: detected capacity change from 0 to 256
[  140.500277][ T5283] BTRFS info (device loop1): enabling ssd optimizations
[  140.653626][ T4744] usb 1-1: Using ep0 maxpacket: 16
[  140.665084][ T5339] SET target dimension over the limit!
[  141.027685][ T4744] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  141.039726][ T4744] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  141.052959][ T4744] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  141.077646][ T4744] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  141.098600][ T4744] usb 1-1: config 0 descriptor??
[  141.172683][ T5296] XFS (loop4): Mounting V5 Filesystem
[  141.371269][ T5345] loop0: detected capacity change from 0 to 256
[  141.439893][ T4742] tipc: Node number set to 751866936
[  141.467249][ T5296] XFS (loop4): Ending clean mount
[  141.486307][ T5296] XFS (loop4): Quotacheck needed: Please wait.
[  141.592004][ T5296] XFS (loop4): Quotacheck: Done.
[  141.608846][ T4271] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  141.879518][ T5352] IPVS: set_ctl: invalid protocol: 59 100.1.1.1:20004
[  142.452248][ T4278] XFS (loop4): Unmounting Filesystem
[  142.560346][ T4509] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 9 /dev/loop1 scanned by udevd (4509)
[  143.256039][ T4744] usbhid 1-1:0.0: can't add hid device: -71
[  143.284822][ T4744] usbhid: probe of 1-1:0.0 failed with error -71
[  143.323238][ T4744] usb 1-1: USB disconnect, device number 3
[  143.452747][ T5367] FAULT_INJECTION: forcing a failure.
[  143.452747][ T5367] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  143.466311][ T5367] CPU: 0 PID: 5367 Comm: syz.1.196 Not tainted syzkaller #0
[  143.473657][ T5367] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  143.483746][ T5367] Call Trace:
[  143.487097][ T5367]  <TASK>
[  143.490048][ T5367]  dump_stack_lvl+0x168/0x22e
[  143.494737][ T5367]  ? show_regs_print_info+0x12/0x12
[  143.499942][ T5367]  ? load_image+0x3b0/0x3b0
[  143.504457][ T5367]  ? __lock_acquire+0x7c50/0x7c50
[  143.509497][ T5367]  should_fail_ex+0x399/0x4d0
[  143.514187][ T5367]  _copy_from_user+0x2c/0x170
[  143.518889][ T5367]  snd_ctl_elem_add_user+0xa7/0x340
[  143.524142][ T5367]  ? __kmem_cache_free+0xb6/0x1f0
[  143.529206][ T5367]  ? security_file_ioctl+0x6c/0xa0
[  143.534360][ T5367]  ? __se_sys_ioctl+0x48/0x170
[  143.539169][ T5367]  ? snd_ctl_fasync+0x50/0x50
[  143.543929][ T5367]  ? raw_spin_rq_unlock_irq+0xc/0x90
[  143.549260][ T5367]  ? update_load_avg+0x596/0x1460
[  143.554328][ T5367]  snd_ctl_ioctl+0x9a3/0x16a0
[  143.559049][ T5367]  ? raw_spin_rq_unlock_irq+0x11/0x90
[  143.564460][ T5367]  ? snd_ctl_poll+0x120/0x120
[  143.569184][ T5367]  ? raw_spin_rq_unlock_irq+0x11/0x90
[  143.574596][ T5367]  ? __schedule+0x137c/0x40b0
[  143.579319][ T5367]  ? __sched_text_start+0x8/0x8
[  143.584196][ T5367]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  143.590220][ T5367]  ? lock_chain_count+0x20/0x20
[  143.595108][ T5367]  ? asm_sysvec_call_function_single+0x16/0x20
[  143.601268][ T5367]  ? lockdep_hardirqs_on+0x94/0x140
[  143.606479][ T5367]  ? asm_sysvec_call_function_single+0x16/0x20
[  143.612640][ T5367]  ? snd_ctl_poll+0x120/0x120
[  143.617326][ T5367]  ? __se_sys_ioctl+0xee/0x170
[  143.622099][ T5367]  ? snd_ctl_poll+0x120/0x120
[  143.626803][ T5367]  __se_sys_ioctl+0xfa/0x170
[  143.631430][ T5367]  do_syscall_64+0x4c/0xa0
[  143.635871][ T5367]  ? clear_bhb_loop+0x60/0xb0
[  143.640569][ T5367]  ? clear_bhb_loop+0x60/0xb0
[  143.645255][ T5367]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  143.651153][ T5367] RIP: 0033:0x7f117b58efc9
[  143.655572][ T5367] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  143.675191][ T5367] RSP: 002b:00007f117c4f8038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  143.683730][ T5367] RAX: ffffffffffffffda RBX: 00007f117b7e6090 RCX: 00007f117b58efc9
[  143.691736][ T5367] RDX: 0000200000001340 RSI: 00000000c1105517 RDI: 000000000000000c
[  143.699738][ T5367] RBP: 00007f117c4f8090 R08: 0000000000000000 R09: 0000000000000000
[  143.707755][ T5367] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  143.715733][ T5367] R13: 00007f117b7e6128 R14: 00007f117b7e6090 R15: 00007fff7fa6a698
[  143.723747][ T5367]  </TASK>
[  144.482025][ T5377] loop4: detected capacity change from 0 to 512
[  144.605318][ T5377] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.200: iget: bad i_size value: 38620345925642
[  144.636508][ T5377] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.200: couldn't read orphan inode 15 (err -117)
[  144.747657][ T5385] netlink: 'syz.1.199': attribute type 2 has an invalid length.
[  144.788218][ T5377] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  144.823952][ T5385] netlink: 10 bytes leftover after parsing attributes in process `syz.1.199'.
[  144.961185][ T5307] tipc: Resetting bearer <eth:syzkaller0>
[  145.526569][ T5307] tipc: Disabling bearer <eth:syzkaller0>
[  145.785939][ T5395] loop2: detected capacity change from 0 to 512
[  145.992857][ T5401] FAULT_INJECTION: forcing a failure.
[  145.992857][ T5401] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  146.025757][ T5401] CPU: 1 PID: 5401 Comm: syz.3.207 Not tainted syzkaller #0
[  146.033118][ T5401] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  146.043210][ T5401] Call Trace:
[  146.046521][ T5401]  <TASK>
[  146.049482][ T5401]  dump_stack_lvl+0x168/0x22e
[  146.054205][ T5401]  ? show_regs_print_info+0x12/0x12
[  146.058575][ T5386] syz.0.202 (5386): drop_caches: 2
[  146.059421][ T5401]  ? load_image+0x3b0/0x3b0
[  146.069276][ T5401]  ? __lock_acquire+0x7c50/0x7c50
[  146.074322][ T5401]  ? snprintf+0xd7/0x120
[  146.078583][ T5401]  should_fail_ex+0x399/0x4d0
[  146.083280][ T5401]  _copy_to_user+0x2c/0x130
[  146.087797][ T5401]  simple_read_from_buffer+0xe3/0x150
[  146.093182][ T5401]  proc_fail_nth_read+0x19a/0x210
[  146.098212][ T5401]  ? proc_fault_inject_write+0x2f0/0x2f0
[  146.103847][ T5401]  ? fsnotify_perm+0x248/0x550
[  146.108615][ T5401]  ? proc_fault_inject_write+0x2f0/0x2f0
[  146.114248][ T5401]  vfs_read+0x2c0/0x920
[  146.118418][ T5401]  ? kernel_read+0x1e0/0x1e0
[  146.123018][ T5401]  ? __fget_files+0x28/0x4d0
[  146.127614][ T5401]  ? __fget_files+0x44a/0x4d0
[  146.132300][ T5401]  ? __fdget_pos+0x2ae/0x360
[  146.136899][ T5401]  ? ksys_read+0x71/0x240
[  146.141241][ T5401]  ksys_read+0x143/0x240
[  146.145513][ T5401]  ? vfs_write+0x960/0x960
[  146.149943][ T5401]  ? lockdep_hardirqs_on+0x94/0x140
[  146.155154][ T5401]  do_syscall_64+0x4c/0xa0
[  146.159577][ T5401]  ? clear_bhb_loop+0x60/0xb0
[  146.164254][ T5401]  ? clear_bhb_loop+0x60/0xb0
[  146.168933][ T5401]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  146.174863][ T5401] RIP: 0033:0x7f40c258d9dc
[  146.179284][ T5401] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  146.198894][ T5401] RSP: 002b:00007f40c33e9030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  146.207391][ T5401] RAX: ffffffffffffffda RBX: 00007f40c27e6180 RCX: 00007f40c258d9dc
[  146.215410][ T5401] RDX: 000000000000000f RSI: 00007f40c33e90a0 RDI: 000000000000000a
[  146.223490][ T5401] RBP: 00007f40c33e9090 R08: 0000000000000000 R09: 0000000000000000
[  146.231472][ T5401] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  146.239470][ T5401] R13: 00007f40c27e6218 R14: 00007f40c27e6180 R15: 00007fffdbd67148
[  146.247546][ T5401]  </TASK>
[  146.250703][    C1] vkms_vblank_simulate: vblank timer overrun
[  146.278215][ T4278] EXT4-fs (loop4): unmounting filesystem.
[  146.358757][ T5395] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.206: iget: bad i_size value: 38620345925642
[  146.446847][ T5395] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.206: couldn't read orphan inode 15 (err -117)
[  146.597644][ T5395] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  146.651337][   T27] audit: type=1800 audit(1762156464.012:29): pid=5395 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.206" name="file2" dev="loop2" ino=16 res=0 errno=0
[  146.964996][ T4265] EXT4-fs (loop2): unmounting filesystem.
[  147.264801][ T5409] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  147.274245][ T5409] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  147.283977][ T5409] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  147.292885][ T5409] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  147.540729][ T5399] loop1: detected capacity change from 0 to 32768
[  147.687451][ T5399] XFS (loop1): Mounting V5 Filesystem
[  147.741633][ T5415] binder: 5411:5415 ioctl c0306201 0 returned -14
[  147.836977][ T5399] XFS (loop1): Ending clean mount
[  147.863558][ T5399] XFS (loop1): Quotacheck needed: Please wait.
[  147.940399][ T5399] XFS (loop1): Quotacheck: Done.
[  148.145071][ T5423] loop0: detected capacity change from 0 to 512
[  148.167212][ T5425] IPVS: set_ctl: invalid protocol: 59 100.1.1.1:20004
[  148.320867][ T5433] loop2: detected capacity change from 0 to 512
[  148.406062][ T4271] XFS (loop1): Unmounting Filesystem
[  148.424493][ T5423] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  148.439633][ T5433] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.212: inode has both inline data and extents flags
[  148.474424][ T5423] ext4 filesystem being mounted at /42/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  148.543807][ T5435] netlink: 'syz.0.210': attribute type 1 has an invalid length.
[  148.568891][ T5435] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5929: Corrupt filesystem
[  148.599241][ T5433] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.212: couldn't read orphan inode 15 (err -117)
[  148.627880][ T5433] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  148.648320][ T5435] EXT4-fs (loop0): Remounting filesystem read-only
[  148.665821][ T5435] EXT4-fs error (device loop0): ext4_ext_tree_init:879: inode #18: comm syz.0.210: mark_inode_dirty error
[  148.745009][ T5435] EXT4-fs (loop0): Remounting filesystem read-only
[  148.782402][ T5435] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5929: Corrupt filesystem
[  149.013648][ T5435] EXT4-fs (loop0): Remounting filesystem read-only
[  149.131944][ T5435] EXT4-fs error (device loop0): __ext4_new_inode:1350: inode #18: comm syz.0.210: mark_inode_dirty error
[  149.483086][ T5435] EXT4-fs (loop0): Remounting filesystem read-only
[  149.494834][ T5435] EXT4-fs error (device loop0) in __ext4_new_inode:1352: Corrupt filesystem
[  149.540751][ T5435] EXT4-fs (loop0): Remounting filesystem read-only
[  149.559789][ T5435] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5929: Corrupt filesystem
[  149.597550][ T5435] EXT4-fs (loop0): Remounting filesystem read-only
[  149.606960][ T5443] netlink: 'syz.3.215': attribute type 2 has an invalid length.
[  149.624781][ T5435] EXT4-fs error (device loop0): ext4_evict_inode:279: inode #18: comm syz.0.210: mark_inode_dirty error
[  149.641225][ T5443] netlink: 10 bytes leftover after parsing attributes in process `syz.3.215'.
[  149.658882][ T4265] EXT4-fs (loop2): unmounting filesystem.
[  149.668649][ T5435] EXT4-fs (loop0): Remounting filesystem read-only
[  149.717646][ T5435] EXT4-fs warning (device loop0): ext4_evict_inode:282: couldn't mark inode dirty (err -117)
[  149.924468][ T4270] EXT4-fs (loop0): unmounting filesystem.
[  150.154790][ T5461] netlink: 32 bytes leftover after parsing attributes in process `syz.3.220'.
[  150.941256][ T5453] loop1: detected capacity change from 0 to 32768
[  151.174726][ T5482] FAULT_INJECTION: forcing a failure.
[  151.174726][ T5482] name failslab, interval 1, probability 0, space 0, times 0
[  151.207583][ T5482] CPU: 1 PID: 5482 Comm: syz.2.226 Not tainted syzkaller #0
[  151.214951][ T5482] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  151.225044][ T5482] Call Trace:
[  151.228356][ T5482]  <TASK>
[  151.231321][ T5482]  dump_stack_lvl+0x168/0x22e
[  151.236052][ T5482]  ? show_regs_print_info+0x12/0x12
[  151.241293][ T5482]  ? load_image+0x3b0/0x3b0
[  151.245848][ T5482]  ? __might_sleep+0xd0/0xd0
[  151.250489][ T5482]  ? __lock_acquire+0x7c50/0x7c50
[  151.255561][ T5482]  should_fail_ex+0x399/0x4d0
[  151.260286][ T5482]  should_failslab+0x5/0x20
[  151.264834][ T5482]  slab_pre_alloc_hook+0x59/0x310
[  151.269899][ T5482]  kmem_cache_alloc_node+0x5a/0x320
[  151.275136][ T5482]  ? __alloc_skb+0xfc/0x7e0
[  151.279680][ T5482]  __alloc_skb+0xfc/0x7e0
[  151.284065][ T5482]  ? security_socket_getpeersec_dgram+0x9d/0xc0
[  151.290360][ T5482]  netlink_sendmsg+0x645/0xbc0
[  151.295177][ T5482]  ? netlink_getsockopt+0x540/0x540
[  151.300436][ T5482]  ? aa_sock_msg_perm+0x94/0x150
[  151.305426][ T5482]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  151.310743][ T5482]  ? security_socket_sendmsg+0x7c/0xa0
[  151.316253][ T5482]  ? netlink_getsockopt+0x540/0x540
[  151.321492][ T5482]  ____sys_sendmsg+0x59b/0x970
[  151.326304][ T5482]  ? __sys_sendmsg_sock+0x30/0x30
[  151.331370][ T5482]  ? __import_iovec+0x315/0x500
[  151.336275][ T5482]  ? import_iovec+0x6f/0xa0
[  151.340826][ T5482]  ___sys_sendmsg+0x21c/0x290
[  151.345548][ T5482]  ? __sys_sendmsg+0x270/0x270
[  151.350370][ T5482]  ? __lock_acquire+0x7c50/0x7c50
[  151.355427][ T5482]  ? __fdget+0x17c/0x200
[  151.359689][ T5482]  __se_sys_sendmsg+0x19e/0x270
[  151.364564][ T5482]  ? __x64_sys_sendmsg+0x80/0x80
[  151.369546][ T5482]  ? lockdep_hardirqs_on+0x94/0x140
[  151.374767][ T5482]  do_syscall_64+0x4c/0xa0
[  151.379198][ T5482]  ? clear_bhb_loop+0x60/0xb0
[  151.383885][ T5482]  ? clear_bhb_loop+0x60/0xb0
[  151.388608][ T5482]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  151.394542][ T5482] RIP: 0033:0x7f24af18efc9
[  151.399053][ T5482] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  151.418757][ T5482] RSP: 002b:00007f24affda038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  151.427185][ T5482] RAX: ffffffffffffffda RBX: 00007f24af3e5fa0 RCX: 00007f24af18efc9
[  151.435161][ T5482] RDX: 0000000000004010 RSI: 0000200000000340 RDI: 0000000000000004
[  151.443139][ T5482] RBP: 00007f24affda090 R08: 0000000000000000 R09: 0000000000000000
[  151.451120][ T5482] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  151.459102][ T5482] R13: 00007f24af3e6038 R14: 00007f24af3e5fa0 R15: 00007ffef70191b8
[  151.467097][ T5482]  </TASK>
[  151.717765][ T5484] netlink: 'syz.1.227': attribute type 2 has an invalid length.
[  151.725486][ T5484] netlink: 10 bytes leftover after parsing attributes in process `syz.1.227'.
[  151.771373][ T5486] loop2: detected capacity change from 0 to 16
[  151.836472][ T5486] erofs: (device loop2): EXPERIMENTAL compressed fragments feature in use. Use at your own risk!
[  151.869870][ T5486] erofs: (device loop2): EXPERIMENTAL global deduplication feature in use. Use at your own risk!
[  151.960230][ T5486] erofs: (device loop2): mounted with root inode @ nid 36.
[  152.083978][ T5489] loop1: detected capacity change from 0 to 512
[  152.226809][ T5489] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  152.248869][ T5489] ext4 filesystem being mounted at /46/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  152.309695][ T5495] loop0: detected capacity change from 0 to 256
[  152.411633][ T5496] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5929: Corrupt filesystem
[  152.510179][ T5496] EXT4-fs (loop1): Remounting filesystem read-only
[  152.537420][ T5496] EXT4-fs error (device loop1): ext4_ext_tree_init:879: inode #18: comm syz.1.229: mark_inode_dirty error
[  152.551438][ T5495] FAT-fs (loop0): Directory bread(block 64) failed
[  152.568317][ T5495] FAT-fs (loop0): Directory bread(block 65) failed
[  152.574984][ T5495] FAT-fs (loop0): Directory bread(block 66) failed
[  152.587351][ T5496] EXT4-fs (loop1): Remounting filesystem read-only
[  152.616210][ T5496] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5929: Corrupt filesystem
[  152.637003][ T5495] FAT-fs (loop0): Directory bread(block 67) failed
[  152.648350][ T5496] EXT4-fs (loop1): Remounting filesystem read-only
[  152.658575][ T5495] FAT-fs (loop0): Directory bread(block 68) failed
[  152.665177][ T5495] FAT-fs (loop0): Directory bread(block 69) failed
[  152.672095][ T5496] EXT4-fs error (device loop1): __ext4_new_inode:1350: inode #18: comm syz.1.229: mark_inode_dirty error
[  152.707017][ T5496] EXT4-fs (loop1): Remounting filesystem read-only
[  152.724531][ T5495] FAT-fs (loop0): Directory bread(block 70) failed
[  152.784855][ T5495] FAT-fs (loop0): Directory bread(block 71) failed
[  152.845171][ T5496] EXT4-fs error (device loop1) in __ext4_new_inode:1352: Corrupt filesystem
[  152.901389][ T5495] FAT-fs (loop0): Directory bread(block 72) failed
[  152.976766][ T5496] EXT4-fs (loop1): Remounting filesystem read-only
[  153.004829][ T5495] FAT-fs (loop0): Directory bread(block 73) failed
[  153.057774][ T5496] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5929: Corrupt filesystem
[  153.175379][ T5496] EXT4-fs (loop1): Remounting filesystem read-only
[  153.253312][ T5496] EXT4-fs error (device loop1): ext4_evict_inode:279: inode #18: comm syz.1.229: mark_inode_dirty error
[  153.401439][ T5496] EXT4-fs (loop1): Remounting filesystem read-only
[  153.498079][ T5496] EXT4-fs warning (device loop1): ext4_evict_inode:282: couldn't mark inode dirty (err -117)
[  153.789985][ T4271] EXT4-fs (loop1): unmounting filesystem.
[  153.796183][ T5500] tipc: Started in network mode
[  153.822280][ T5500] tipc: Node identity 0a33fcb7b389, cluster identity 4711
[  153.875421][ T5500] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  153.910780][ T5501] device syzkaller0 entered promiscuous mode
[  154.283262][ T5492] tipc: Resetting bearer <eth:syzkaller0>
[  154.434691][ T5492] tipc: Disabling bearer <eth:syzkaller0>
[  155.360475][ T5520] loop4: detected capacity change from 0 to 32768
[  155.385250][ T5520] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  155.393590][ T5520] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  155.414488][ T5520] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms
[  155.429463][ T4742] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  155.436766][ T4742] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  155.545240][ T5503] loop2: detected capacity change from 0 to 32768
[  155.573540][ T5503] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop2 scanned by syz.2.232 (5503)
[  155.625729][ T5523] netlink: 'syz.0.239': attribute type 2 has an invalid length.
[  155.627361][ T4742] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 190ms
[  155.679058][ T5523] netlink: 10 bytes leftover after parsing attributes in process `syz.0.239'.
[  155.704725][ T4742] gfs2: fsid=syz:syz.0: jid=0: Done
[  155.735164][ T5520] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  155.759600][ T5520] gfs2: fsid=syz:syz.0: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  155.769684][ T5520] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error
[  155.769684][ T5520]   inode = 12 2341
[  155.769684][ T5520]   function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602
[  155.788684][ T5520] gfs2: fsid=syz:syz.0: G:  s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:3 m:20 p:1
[  155.797787][ T5520] gfs2: fsid=syz:syz.0:  H: s:SH f:H e:0 p:5520 [syz.4.238] __gfs2_lookup+0x8c/0x260
[  155.807664][ T5520] gfs2: fsid=syz:syz.0:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  155.816099][ T5520] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  155.823612][ T5520] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount.
[  155.832443][ T5520] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0
[  155.839613][ T5520] gfs2: fsid=syz:syz.0: File system withdrawn
[  155.845722][ T5520] CPU: 0 PID: 5520 Comm: syz.4.238 Not tainted syzkaller #0
[  155.853007][ T5520] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  155.863076][ T5520] Call Trace:
[  155.866415][ T5520]  <TASK>
[  155.869380][ T5520]  dump_stack_lvl+0x168/0x22e
[  155.874070][ T5520]  ? kobject_uevent_env+0x35f/0x8a0
[  155.879294][ T5520]  ? show_regs_print_info+0x12/0x12
[  155.884528][ T5520]  ? load_image+0x3b0/0x3b0
[  155.889057][ T5520]  ? kobject_uevent_env+0x35f/0x8a0
[  155.894276][ T5520]  gfs2_withdraw+0x143f/0x1780
[  155.899066][ T5520]  ? gfs2_lm+0x220/0x220
[  155.903406][ T5520]  ? load_image+0x3b0/0x3b0
[  155.907940][ T5520]  ? gfs2_consist_inode_i+0xf1/0x110
[  155.913260][ T5520]  gfs2_dirent_scan+0x525/0x650
[  155.918161][ T5520]  ? gfs2_dirent_search+0x7e0/0x7e0
[  155.923398][ T5520]  ? gfs2_dirent_search+0x7e0/0x7e0
[  155.928617][ T5520]  gfs2_dirent_search+0x2dd/0x7e0
[  155.933666][ T5520]  ? gfs2_permission+0x3f1/0x4c0
[  155.938627][ T5520]  ? gfs2_dir_search+0x220/0x220
[  155.943602][ T5520]  ? gfs2_lookupi+0x640/0x640
[  155.948308][ T5520]  gfs2_dir_search+0x49/0x220
[  155.952997][ T5520]  gfs2_lookupi+0x45f/0x640
[  155.957517][ T5520]  ? __lock_acquire+0x7c50/0x7c50
[  155.962565][ T5520]  ? gfs2_lookup_simple+0xf0/0xf0
[  155.967646][ T5520]  ? __gfs2_lookup+0x8c/0x260
[  155.972325][ T5520]  ? d_alloc_parallel+0x13e0/0x1530
[  155.977556][ T5520]  ? __d_lookup+0x8b/0x7c0
[  155.982022][ T5520]  __gfs2_lookup+0x8c/0x260
[  155.986556][ T5520]  ? d_alloc_parallel+0x33f/0x1530
[  155.991695][ T5520]  ? gfs2_atomic_open+0x210/0x210
[  155.996722][ T5520]  ? __d_lookup+0x8b/0x7c0
[  156.001150][ T5520]  ? d_hash_and_lookup+0x1b0/0x1b0
[  156.006291][ T5520]  ? rwsem_write_trylock+0x12f/0x1b0
[  156.011621][ T5520]  gfs2_atomic_open+0x8e/0x210
[  156.016401][ T5520]  ? gfs2_rename2+0x1d70/0x1d70
[  156.021265][ T5520]  path_openat+0xe20/0x2e70
[  156.025796][ T5520]  ? do_filp_open+0x3c0/0x3c0
[  156.030492][ T5520]  do_filp_open+0x1c1/0x3c0
[  156.035022][ T5520]  ? vfs_tmpfile+0x480/0x480
[  156.039678][ T5520]  ? _raw_spin_unlock+0x24/0x40
[  156.044707][ T5520]  ? alloc_fd+0x58f/0x630
[  156.049061][ T5520]  do_sys_openat2+0x142/0x490
[  156.053755][ T5520]  ? do_sys_open+0xe0/0xe0
[  156.058182][ T5520]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  156.064177][ T5520]  ? lock_chain_count+0x20/0x20
[  156.069045][ T5520]  __x64_sys_openat+0x135/0x160
[  156.073908][ T5520]  do_syscall_64+0x4c/0xa0
[  156.078330][ T5520]  ? clear_bhb_loop+0x60/0xb0
[  156.083042][ T5520]  ? clear_bhb_loop+0x60/0xb0
[  156.087727][ T5520]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  156.093639][ T5520] RIP: 0033:0x7fb702b8efc9
[  156.098092][ T5520] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  156.117734][ T5520] RSP: 002b:00007fb703943038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  156.126153][ T5520] RAX: ffffffffffffffda RBX: 00007fb702de5fa0 RCX: 00007fb702b8efc9
[  156.134146][ T5520] RDX: 000000000000275a RSI: 0000200000000280 RDI: ffffffffffffff9c
[  156.142120][ T5520] RBP: 00007fb702c11f91 R08: 0000000000000000 R09: 0000000000000000
[  156.150093][ T5520] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  156.158175][ T5520] R13: 00007fb702de6038 R14: 00007fb702de5fa0 R15: 00007ffda387ec98
[  156.166190][ T5520]  </TASK>
[  156.202471][ T5503] BTRFS info (device loop2): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  156.227802][ T5503] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm
[  156.256937][ T5520] RDS: rds_bind could not find a transport for fe80::2a, load rds_tcp or rds_rdma?
[  156.296131][ T5503] BTRFS info (device loop2): using free space tree
[  156.438645][ T5520] process 'syz.4.238' launched '/dev/fd/-1' with NULL argv: empty string added
[  156.695156][ T5512] loop3: detected capacity change from 0 to 40427
[  156.763608][ T5512] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  156.824763][ T5512] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  157.518829][ T5512] F2FS-fs (loop3): invalid crc value
[  157.576937][ T5512] F2FS-fs (loop3): Failed to start F2FS issue_checkpoint_thread (-12)
[  157.705242][ T5503] BTRFS error (device loop2): open_ctree failed: -12
[  157.796494][ T5562] FAULT_INJECTION: forcing a failure.
[  157.796494][ T5562] name failslab, interval 1, probability 0, space 0, times 0
[  157.897920][ T5562] CPU: 0 PID: 5562 Comm: syz.3.245 Not tainted syzkaller #0
[  157.905283][ T5562] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  157.915392][ T5562] Call Trace:
[  157.918704][ T5562]  <TASK>
[  157.921663][ T5562]  dump_stack_lvl+0x168/0x22e
[  157.926411][ T5562]  ? show_regs_print_info+0x12/0x12
[  157.931665][ T5562]  ? load_image+0x3b0/0x3b0
[  157.936232][ T5562]  ? __might_sleep+0xd0/0xd0
[  157.940871][ T5562]  ? __lock_acquire+0x7c50/0x7c50
[  157.945944][ T5562]  should_fail_ex+0x399/0x4d0
[  157.950674][ T5562]  should_failslab+0x5/0x20
[  157.955226][ T5562]  slab_pre_alloc_hook+0x59/0x310
[  157.960295][ T5562]  kmem_cache_alloc_node+0x5a/0x320
[  157.965532][ T5562]  ? __alloc_skb+0xfc/0x7e0
[  157.970094][ T5562]  __alloc_skb+0xfc/0x7e0
[  157.974651][ T5562]  ? netlink_autobind+0xda/0x300
[  157.979735][ T5562]  netlink_sendmsg+0x645/0xbc0
[  157.984565][ T5562]  ? netlink_getsockopt+0x540/0x540
[  157.989810][ T5562]  ? aa_sock_msg_perm+0x94/0x150
[  157.994795][ T5562]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  158.000113][ T5562]  ? security_socket_sendmsg+0x7c/0xa0
[  158.005621][ T5562]  ? netlink_getsockopt+0x540/0x540
[  158.010859][ T5562]  ____sys_sendmsg+0x59b/0x970
[  158.015674][ T5562]  ? __sys_sendmsg_sock+0x30/0x30
[  158.020745][ T5562]  ? __import_iovec+0x315/0x500
[  158.025646][ T5562]  ? import_iovec+0x6f/0xa0
[  158.030202][ T5562]  ___sys_sendmsg+0x21c/0x290
[  158.034932][ T5562]  ? __sys_sendmsg+0x270/0x270
[  158.039793][ T5562]  ? __fdget+0x17c/0x200
[  158.044082][ T5562]  __sys_sendmmsg+0x272/0x490
[  158.048810][ T5562]  ? __ia32_sys_sendmsg+0x80/0x80
[  158.053888][ T5562]  ? mutex_unlock+0x10/0x10
[  158.058439][ T5562]  ? __fget_files+0x44a/0x4d0
[  158.063171][ T5562]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  158.069199][ T5562]  ? lock_chain_count+0x20/0x20
[  158.074100][ T5562]  __x64_sys_sendmmsg+0x9c/0xb0
[  158.079081][ T5562]  do_syscall_64+0x4c/0xa0
[  158.083540][ T5562]  ? clear_bhb_loop+0x60/0xb0
[  158.088255][ T5562]  ? clear_bhb_loop+0x60/0xb0
[  158.092971][ T5562]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  158.098907][ T5562] RIP: 0033:0x7f40c258efc9
[  158.103359][ T5562] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  158.123020][ T5562] RSP: 002b:00007f40c342b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  158.131472][ T5562] RAX: ffffffffffffffda RBX: 00007f40c27e5fa0 RCX: 00007f40c258efc9
[  158.139476][ T5562] RDX: 040000000000009f RSI: 00002000000002c0 RDI: 0000000000000004
[  158.147477][ T5562] RBP: 00007f40c342b090 R08: 0000000000000000 R09: 0000000000000000
[  158.155580][ T5562] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  158.163585][ T5562] R13: 00007f40c27e6038 R14: 00007f40c27e5fa0 R15: 00007fffdbd67148
[  158.171702][ T5562]  </TASK>
[  159.148365][ T5577] netlink: 'syz.0.251': attribute type 2 has an invalid length.
[  159.158246][ T5577] netlink: 10 bytes leftover after parsing attributes in process `syz.0.251'.
[  159.317075][ T5581] loop1: detected capacity change from 0 to 256
[  159.334254][ T5584] loop0: detected capacity change from 0 to 4096
[  159.341807][ T5584] ntfs3: Unknown parameter '0x0000000000000003'
[  159.422730][ T4966] libceph: connect (1)[c::]:6789 error -101
[  159.454367][ T4966] libceph: mon0 (1)[c::]:6789 connect error
[  159.543254][ T5581] FAT-fs (loop1): Directory bread(block 64) failed
[  159.605120][ T5581] FAT-fs (loop1): Directory bread(block 65) failed
[  159.638856][ T5581] FAT-fs (loop1): Directory bread(block 66) failed
[  159.790527][ T4444] libceph: connect (1)[c::]:6789 error -101
[  159.799724][ T4444] libceph: mon0 (1)[c::]:6789 connect error
[  159.882660][ T5581] FAT-fs (loop1): Directory bread(block 67) failed
[  160.057659][ T5581] FAT-fs (loop1): Directory bread(block 68) failed
[  160.067990][ T5581] FAT-fs (loop1): Directory bread(block 69) failed
[  160.075063][ T5581] FAT-fs (loop1): Directory bread(block 70) failed
[  160.092663][ T5576] RDS: rds_bind could not find a transport for fe80::2a, load rds_tcp or rds_rdma?
[  160.105504][ T5570] ceph: No mds server is up or the cluster is laggy
[  160.113161][ T5581] FAT-fs (loop1): Directory bread(block 71) failed
[  160.135454][ T5581] FAT-fs (loop1): Directory bread(block 72) failed
[  160.172781][ T5581] FAT-fs (loop1): Directory bread(block 73) failed
[  160.304684][ T5594] SET target dimension over the limit!
[  160.863339][ T4444] libceph: connect (1)[c::]:6789 error -101
[  160.912454][ T4444] libceph: mon0 (1)[c::]:6789 connect error
[  161.940773][ T5600] tipc: Started in network mode
[  161.945723][ T5600] tipc: Node identity 1a400cc3045a, cluster identity 4711
[  161.987722][ T5600] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  162.028732][ T5599] device syzkaller0 entered promiscuous mode
[  162.891964][ T5610] loop2: detected capacity change from 0 to 256
[  162.917282][ T5579] tipc: Resetting bearer <eth:syzkaller0>
[  162.997281][ T5610] exfat: Deprecated parameter 'namecase'
[  163.031211][ T5579] tipc: Disabling bearer <eth:syzkaller0>
[  163.087658][ T4444] tipc: Node number set to 505023683
[  163.104891][ T5610] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  163.423161][ T5621] RDS: rds_bind could not find a transport for fe80::2a, load rds_tcp or rds_rdma?
[  163.603178][ T5626] FAULT_INJECTION: forcing a failure.
[  163.603178][ T5626] name failslab, interval 1, probability 0, space 0, times 0
[  163.616175][ T5626] CPU: 0 PID: 5626 Comm: syz.4.263 Not tainted syzkaller #0
[  163.623491][ T5626] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  163.633551][ T5626] Call Trace:
[  163.636848][ T5626]  <TASK>
[  163.639785][ T5626]  dump_stack_lvl+0x168/0x22e
[  163.644478][ T5626]  ? show_regs_print_info+0x12/0x12
[  163.649682][ T5626]  ? load_image+0x3b0/0x3b0
[  163.654202][ T5626]  ? __might_sleep+0xd0/0xd0
[  163.658805][ T5626]  ? __lock_acquire+0x7c50/0x7c50
[  163.663852][ T5626]  should_fail_ex+0x399/0x4d0
[  163.668567][ T5626]  should_failslab+0x5/0x20
[  163.673109][ T5626]  slab_pre_alloc_hook+0x59/0x310
[  163.678169][ T5626]  kmem_cache_alloc_node+0x5a/0x320
[  163.683369][ T5626]  ? __alloc_skb+0xfc/0x7e0
[  163.687882][ T5626]  __alloc_skb+0xfc/0x7e0
[  163.692250][ T5626]  ? netlink_autobind+0xda/0x300
[  163.697204][ T5626]  netlink_sendmsg+0x645/0xbc0
[  163.701982][ T5626]  ? netlink_getsockopt+0x540/0x540
[  163.707196][ T5626]  ? lockdep_hardirqs_on+0x94/0x140
[  163.712416][ T5626]  ? aa_sock_msg_perm+0x94/0x150
[  163.717426][ T5626]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  163.722737][ T5626]  ? security_socket_sendmsg+0x7c/0xa0
[  163.728220][ T5626]  ? netlink_getsockopt+0x540/0x540
[  163.733435][ T5626]  ____sys_sendmsg+0x59b/0x970
[  163.738240][ T5626]  ? __sys_sendmsg_sock+0x30/0x30
[  163.743280][ T5626]  ? __import_iovec+0x315/0x500
[  163.748158][ T5626]  ? import_iovec+0x6f/0xa0
[  163.752706][ T5626]  ___sys_sendmsg+0x21c/0x290
[  163.757402][ T5626]  ? __sys_sendmsg+0x270/0x270
[  163.762202][ T5626]  ? __lock_acquire+0x7c50/0x7c50
[  163.767260][ T5626]  ? __fdget+0x17c/0x200
[  163.771521][ T5626]  __se_sys_sendmsg+0x19e/0x270
[  163.776392][ T5626]  ? __x64_sys_sendmsg+0x80/0x80
[  163.781356][ T5626]  ? lockdep_hardirqs_on+0x94/0x140
[  163.786580][ T5626]  do_syscall_64+0x4c/0xa0
[  163.791013][ T5626]  ? clear_bhb_loop+0x60/0xb0
[  163.795712][ T5626]  ? clear_bhb_loop+0x60/0xb0
[  163.800406][ T5626]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  163.806403][ T5626] RIP: 0033:0x7fb702b8efc9
[  163.810827][ T5626] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  163.830447][ T5626] RSP: 002b:00007fb700df6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  163.838874][ T5626] RAX: ffffffffffffffda RBX: 00007fb702de6090 RCX: 00007fb702b8efc9
[  163.846855][ T5626] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000007
[  163.854834][ T5626] RBP: 00007fb700df6090 R08: 0000000000000000 R09: 0000000000000000
[  163.862829][ T5626] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  163.870829][ T5626] R13: 00007fb702de6128 R14: 00007fb702de6090 R15: 00007ffda387ec98
[  163.878835][ T5626]  </TASK>
[  163.881930][    C0] vkms_vblank_simulate: vblank timer overrun
[  164.353502][ T5623] netlink: 'syz.1.262': attribute type 2 has an invalid length.
[  164.364650][ T5623] netlink: 10 bytes leftover after parsing attributes in process `syz.1.262'.
[  164.636766][ T5633] loop4: detected capacity change from 0 to 512
[  164.666043][ T5633] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  164.695811][ T5633] EXT4-fs (loop4): 1 truncate cleaned up
[  164.724477][ T5633] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  164.845614][ T5630] loop2: detected capacity change from 0 to 8192
[  164.858965][ T5637] loop1: detected capacity change from 0 to 1024
[  164.913716][ T5630] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  165.047668][ T5630] REISERFS (device loop2): found reiserfs format "3.6" with non-standard journal
[  165.119094][ T5630] REISERFS (device loop2): using ordered data mode
[  165.784313][ T5630] reiserfs: using flush barriers
[  165.794442][ T5630] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  165.818928][ T5630] REISERFS (device loop2): checking transaction log (loop2)
[  166.205332][ T5650] xt_CT: You must specify a L4 protocol and not use inversions on it
[  166.417784][ T4376] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  166.421825][ T5630] REISERFS (device loop2): Using tea hash to sort names
[  166.443011][ T5630] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage.
[  166.629129][ T4376] usb 1-1: device descriptor read/64, error -71
[  167.287559][ T4376] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  167.472527][ T4376] usb 1-1: device descriptor read/64, error -71
[  167.608199][ T4376] usb usb1-port1: attempt power cycle
[  167.831473][ T5665] loop1: detected capacity change from 0 to 512
[  168.008431][ T5669] loop2: detected capacity change from 0 to 40427
[  168.040763][ T5669] F2FS-fs (loop2): invalid crc value
[  168.086214][ T5669] F2FS-fs (loop2): Found nat_bits in checkpoint
[  168.116900][ T4376] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  168.132502][ T5669] F2FS-fs (loop2): Start checkpoint disabled!
[  168.166646][ T5669] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[  168.175829][ T4376] usb 1-1: device descriptor read/8, error -71
[  168.240515][ T5665] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  168.300679][ T5665] ext4 filesystem being mounted at /57/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  168.447650][ T4376] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  168.838237][ T4376] usb 1-1: device descriptor read/8, error -71
[  168.957962][ T4376] usb usb1-port1: unable to enumerate USB device
[  168.988593][ T5680] netlink: 'syz.3.276': attribute type 2 has an invalid length.
[  168.996313][ T5680] netlink: 10 bytes leftover after parsing attributes in process `syz.3.276'.
[  169.115157][ T4271] EXT4-fs (loop1): unmounting filesystem.
[  169.305712][ T5024] kworker/u4:12: attempt to access beyond end of device
[  169.305712][ T5024] loop2: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  169.369956][ T5683] loop1: detected capacity change from 0 to 128
[  169.825345][ T4278] EXT4-fs (loop4): unmounting filesystem.
[  169.833794][ T5694] loop0: detected capacity change from 0 to 128
[  170.452500][ T5708] FAULT_INJECTION: forcing a failure.
[  170.452500][ T5708] name failslab, interval 1, probability 0, space 0, times 0
[  170.471277][ T5708] CPU: 1 PID: 5708 Comm: syz.3.286 Not tainted syzkaller #0
[  170.478736][ T5708] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  170.488827][ T5708] Call Trace:
[  170.492134][ T5708]  <TASK>
[  170.495100][ T5708]  dump_stack_lvl+0x168/0x22e
[  170.499827][ T5708]  ? show_regs_print_info+0x12/0x12
[  170.505073][ T5708]  ? load_image+0x3b0/0x3b0
[  170.509638][ T5708]  ? __might_sleep+0xd0/0xd0
[  170.514292][ T5708]  ? __lock_acquire+0x7c50/0x7c50
[  170.519373][ T5708]  should_fail_ex+0x399/0x4d0
[  170.524100][ T5708]  should_failslab+0x5/0x20
[  170.528653][ T5708]  slab_pre_alloc_hook+0x59/0x310
[  170.533728][ T5708]  kmem_cache_alloc_node+0x5a/0x320
[  170.538964][ T5708]  ? __alloc_skb+0xfc/0x7e0
[  170.543517][ T5708]  __alloc_skb+0xfc/0x7e0
[  170.547975][ T5708]  ? netlink_autobind+0xda/0x300
[  170.549432][ T5711] loop0: detected capacity change from 0 to 512
[  170.553204][ T5708]  netlink_sendmsg+0x645/0xbc0
[  170.553247][ T5708]  ? netlink_getsockopt+0x540/0x540
[  170.569499][ T5708]  ? aa_sock_msg_perm+0x94/0x150
[  170.574469][ T5708]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  170.579775][ T5708]  ? security_socket_sendmsg+0x7c/0xa0
[  170.585267][ T5708]  ? netlink_getsockopt+0x540/0x540
[  170.590594][ T5708]  ____sys_sendmsg+0x59b/0x970
[  170.595415][ T5708]  ? __sys_sendmsg_sock+0x30/0x30
[  170.600466][ T5708]  ? __import_iovec+0x315/0x500
[  170.605359][ T5708]  ? import_iovec+0x6f/0xa0
[  170.609893][ T5708]  ___sys_sendmsg+0x21c/0x290
[  170.614594][ T5708]  ? __sys_sendmsg+0x270/0x270
[  170.619425][ T5708]  ? __lock_acquire+0x7c50/0x7c50
[  170.624499][ T5708]  ? __fdget+0x17c/0x200
[  170.628771][ T5708]  __se_sys_sendmsg+0x19e/0x270
[  170.633647][ T5708]  ? __x64_sys_sendmsg+0x80/0x80
[  170.638615][ T5708]  ? lockdep_hardirqs_on+0x94/0x140
[  170.643837][ T5708]  do_syscall_64+0x4c/0xa0
[  170.648267][ T5708]  ? clear_bhb_loop+0x60/0xb0
[  170.652961][ T5708]  ? clear_bhb_loop+0x60/0xb0
[  170.657673][ T5708]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  170.663591][ T5708] RIP: 0033:0x7f40c258efc9
[  170.668018][ T5708] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  170.687639][ T5708] RSP: 002b:00007f40c342b038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  170.696151][ T5708] RAX: ffffffffffffffda RBX: 00007f40c27e5fa0 RCX: 00007f40c258efc9
[  170.704136][ T5708] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000003
[  170.712120][ T5708] RBP: 00007f40c342b090 R08: 0000000000000000 R09: 0000000000000000
[  170.720105][ T5708] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  170.728260][ T5708] R13: 00007f40c27e6038 R14: 00007f40c27e5fa0 R15: 00007fffdbd67148
[  170.736270][ T5708]  </TASK>
[  170.792792][ T5711] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  170.822341][ T4376] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  170.835817][ T5711] ext4 filesystem being mounted at /58/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  170.896448][ T5718] netlink: 'syz.3.289': attribute type 2 has an invalid length.
[  170.905232][ T5711] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5929: Corrupt filesystem
[  170.915525][ T5718] netlink: 10 bytes leftover after parsing attributes in process `syz.3.289'.
[  170.925261][ T5711] EXT4-fs (loop0): Remounting filesystem read-only
[  170.932423][ T5711] EXT4-fs error (device loop0): ext4_ext_tree_init:879: inode #18: comm syz.0.288: mark_inode_dirty error
[  170.954192][ T5711] EXT4-fs (loop0): Remounting filesystem read-only
[  170.976855][ T5711] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5929: Corrupt filesystem
[  170.997284][ T5711] EXT4-fs (loop0): Remounting filesystem read-only
[  171.019782][ T5711] EXT4-fs error (device loop0): __ext4_new_inode:1350: inode #18: comm syz.0.288: mark_inode_dirty error
[  171.050366][ T5711] EXT4-fs (loop0): Remounting filesystem read-only
[  171.056968][ T5711] EXT4-fs error (device loop0) in __ext4_new_inode:1352: Corrupt filesystem
[  171.065973][ T4376] usb 5-1: Using ep0 maxpacket: 8
[  171.079302][ T4376] usb 5-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[  171.080008][ T5711] EXT4-fs (loop0): Remounting filesystem read-only
[  171.100022][ T5711] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5929: Corrupt filesystem
[  171.110356][ T5711] EXT4-fs (loop0): Remounting filesystem read-only
[  171.116924][ T5711] EXT4-fs error (device loop0): ext4_evict_inode:279: inode #18: comm syz.0.288: mark_inode_dirty error
[  171.127536][ T4376] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  171.140349][ T5711] EXT4-fs (loop0): Remounting filesystem read-only
[  171.147095][ T5711] EXT4-fs warning (device loop0): ext4_evict_inode:282: couldn't mark inode dirty (err -117)
[  171.169210][ T4376] pvrusb2: Hardware description: Terratec Grabster AV400
[  171.176347][ T4376] pvrusb2: **********
[  171.180582][ T4444] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  171.196387][ T4376] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[  171.211481][ T4376] pvrusb2: Important functionality might not be entirely working.
[  171.236478][ T4270] EXT4-fs (loop0): unmounting filesystem.
[  171.252986][ T4376] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[  171.295022][ T4376] pvrusb2: **********
[  171.371004][ T2310] pvrusb2: Invalid write control endpoint
[  171.420083][ T4444] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  171.451757][ T4444] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  171.466149][ T5725] loop3: detected capacity change from 0 to 256
[  171.497773][ T4444] usb 3-1: New USB device found, idVendor=054c, idProduct=0df2, bcdDevice=d6.af
[  171.519679][ T5725] exfat: Deprecated parameter 'namecase'
[  171.527307][ T4444] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  171.562237][ T4444] usb 3-1: config 0 descriptor??
[  171.570212][ T5701] pvrusb2: Invalid write control endpoint
[  171.591298][ T5725] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d)
[  171.683321][ T2310] pvrusb2: Invalid write control endpoint
[  171.705181][ T2310] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[  171.736527][ T2310] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[  171.754853][ T2310] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[  171.803515][ T2310] pvrusb2: Device being rendered inoperable
[  171.837634][ T2310] cx25840 1-0044: Unable to detect h/w, assuming cx23887
[  171.866759][ T2310] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[  171.919934][ T2310] pvrusb2: Attached sub-driver cx25840
[  171.925897][ T2310] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[  171.985623][ T2310] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[  172.164558][ T5730] loop3: detected capacity change from 0 to 4096
[  172.219282][ T4444] usbhid 3-1:0.0: can't add hid device: -71
[  172.235603][ T4444] usbhid: probe of 3-1:0.0 failed with error -71
[  172.270934][ T4444] usb 3-1: USB disconnect, device number 2
[  172.328802][ T4347] usb 5-1: USB disconnect, device number 2
[  172.483736][ T5727] loop0: detected capacity change from 0 to 40427
[  172.574295][ T5727] F2FS-fs (loop0): build fault injection attr: rate: 771, type: 0x3ffff
[  172.598458][ T5733] loop4: detected capacity change from 0 to 2048
[  172.613093][ T5727] F2FS-fs (loop0): invalid crc value
[  172.655474][ T5727] F2FS-fs (loop0): Found nat_bits in checkpoint
[  172.856554][ T5727] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  172.871776][ T5720] loop1: detected capacity change from 0 to 65536
[  172.984893][ T5727] syz.0.292: attempt to access beyond end of device
[  172.984893][ T5727] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  173.047689][ T4347] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  173.064825][ T5720] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[  173.079326][ T5720] XFS (loop1): Mounting V5 Filesystem
[  173.170482][ T4270] syz-executor: attempt to access beyond end of device
[  173.170482][ T4270] loop0: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  173.231740][ T4347] usb 5-1: New USB device found, idVendor=05ac, idProduct=0241, bcdDevice=40.bf
[  173.247152][ T4347] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  173.255974][ T5720] XFS (loop1): Ending clean mount
[  173.261998][ T4347] usb 5-1: Product: syz
[  173.270516][ T4347] usb 5-1: Manufacturer: syz
[  173.279959][ T4347] usb 5-1: SerialNumber: syz
[  173.297438][ T4347] usb 5-1: config 0 descriptor??
[  173.327109][ T4347] input: bcm5974 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input5
[  173.402577][ T4446] XFS (loop1): Metadata CRC error detected at xfs_agf_read_verify+0x18d/0x250, xfs_agf block 0x1 
[  173.427568][ T4446] XFS (loop1): Unmount and run xfs_repair
[  173.445638][ T4446] XFS (loop1): First 128 bytes of corrupted metadata buffer:
[  173.475640][ T4446] 00000000: 58 41 47 46 00 00 00 01 00 00 00 00 00 00 40 00  XAGF..........@.
[  173.502690][ T4446] 00000010: 00 00 00 02 00 00 00 03 00 00 00 00 00 00 00 01  ................
[  173.507134][ T3623] bcm5974 5-1:0.0: could not read from device
[  173.531174][ T4446] 00000020: 00 00 00 01 00 00 00 00 00 00 00 01 01 00 00 04  ................
[  173.555729][ T4446] 00000030: 00 00 00 04 00 00 3f ca 00 00 3f c7 00 00 00 00  ......?...?.....
[  173.565579][ T4347] usb 5-1: USB disconnect, device number 3
[  173.575720][ T3623] bcm5974 5-1:0.0: could not read from device
[  173.600234][ T4446] 00000040: 9b 73 48 e5 2f a0 41 a5 95 26 c5 3a 67 8b 01 f3  .sH./.A..&.:g...
[  173.638084][ T4446] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  173.671886][ T4446] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  173.702438][ T4446] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  173.730887][ T5720] XFS (loop1): metadata I/O error in "xfs_read_agf+0x2a0/0x620" at daddr 0x1 len 1 error 74
[  173.745290][ T4376] XFS (loop1): Metadata CRC error detected at xfs_agf_read_verify+0x18d/0x250, xfs_agf block 0x8001 
[  173.762173][ T4376] XFS (loop1): Unmount and run xfs_repair
[  173.780348][ T4376] XFS (loop1): First 128 bytes of corrupted metadata buffer:
[  173.783014][ T5720] XFS (loop1): Metadata I/O Error (0x1) detected at xfs_trans_read_buf_map+0x54e/0x9a0 (fs/xfs/xfs_trans_buf.c:296).  Shutting down filesystem.
[  173.788201][ T4376] 00000000: 58 41 47 46 00 00 00 01 00 00 00 01 00 00 40 00  XAGF..........@.
[  173.842809][ T4376] 00000010: 00 00 00 02 00 00 00 03 00 00 00 00 00 00 00 01  ................
[  173.854447][ T4280] ntfs3: loop3: ntfs_evict_inode r=5 failed, -22.
[  173.870173][ T4280] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  173.879664][ T4376] 00000020: 00 00 00 01 00 00 00 00 00 00 00 01 00 00 00 04  ................
[  173.890944][ T5720] XFS (loop1): Please unmount the filesystem and rectify the problem(s)
[  173.904390][ T4376] 00000030: 00 00 00 04 00 00 3b 5f 00 00 3b 5c 00 00 00 00  ......;_..;\....
[  173.934617][ T4376] 00000040: 9b 73 48 e5 2f a0 41 a5 95 26 c5 3a 67 8b 01 f3  .sH./.A..&.:g...
[  174.003538][ T4376] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  174.042152][ T4376] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  174.101738][ T5758] netlink: 108 bytes leftover after parsing attributes in process `syz.0.297'.
[  174.617660][ T4376] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00  ................
[  174.709757][ T4448] libceph: connect (1)[c::]:6789 error -101
[  174.718033][ T4448] libceph: mon0 (1)[c::]:6789 connect error
[  174.761413][ T5764] netlink: 'syz.0.301': attribute type 2 has an invalid length.
[  174.769411][ T5764] netlink: 10 bytes leftover after parsing attributes in process `syz.0.301'.
[  175.004876][ T5765] loop2: detected capacity change from 0 to 32768
[  175.012381][ T4444] usb 2-1: new full-speed USB device number 3 using dummy_hcd
[  175.034229][ T4448] libceph: connect (1)[c::]:6789 error -101
[  175.043829][ T5765] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  175.052079][ T5765] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  175.061800][ T4448] libceph: mon0 (1)[c::]:6789 connect error
[  175.072498][ T5765] gfs2: fsid=syz:syz.0: journal 0 mapped with 16 extents in 0ms
[  175.083436][ T4347] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  175.097552][ T4347] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  175.097613][ T4446] usb 4-1: new full-speed USB device number 2 using dummy_hcd
[  175.142544][ T4347] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 44ms
[  175.154989][ T4347] gfs2: fsid=syz:syz.0: jid=0: Done
[  175.167726][ T4271] XFS (loop1): Unmounting Filesystem
[  175.173768][ T5765] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  175.220945][ T5765] gfs2: fsid=syz:syz.0: gfs2_check_dirent: gfs2_dirent too small (not first in block)
[  175.231441][ T5765] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error
[  175.231441][ T5765]   inode = 12 2341
[  175.231441][ T5765]   function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602
[  175.250435][ T5765] gfs2: fsid=syz:syz.0: G:  s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:3 m:20 p:1
[  175.259850][ T5765] gfs2: fsid=syz:syz.0:  H: s:SH f:H e:0 p:5765 [syz.2.299] __gfs2_lookup+0x8c/0x260
[  175.269480][ T5765] gfs2: fsid=syz:syz.0:  I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0
[  175.277960][ T5765] gfs2: fsid=syz:syz.0: about to withdraw this file system
[  175.285175][ T5765] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount.
[  175.293993][ T5765] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0
[  175.302121][ T5765] gfs2: fsid=syz:syz.0: File system withdrawn
[  175.308301][ T5765] CPU: 0 PID: 5765 Comm: syz.2.299 Not tainted syzkaller #0
[  175.315606][ T5765] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  175.325670][ T5765] Call Trace:
[  175.328970][ T5765]  <TASK>
[  175.331944][ T5765]  dump_stack_lvl+0x168/0x22e
[  175.336666][ T5765]  ? kobject_uevent_env+0x35f/0x8a0
[  175.342008][ T5765]  ? show_regs_print_info+0x12/0x12
[  175.347429][ T5765]  ? load_image+0x3b0/0x3b0
[  175.351973][ T5765]  ? kobject_uevent_env+0x35f/0x8a0
[  175.357196][ T5765]  gfs2_withdraw+0x143f/0x1780
[  175.361989][ T5765]  ? gfs2_lm+0x220/0x220
[  175.366247][ T5765]  ? load_image+0x3b0/0x3b0
[  175.370772][ T5765]  ? gfs2_consist_inode_i+0xf1/0x110
[  175.376095][ T5765]  gfs2_dirent_scan+0x525/0x650
[  175.380959][ T5765]  ? gfs2_dirent_search+0x7e0/0x7e0
[  175.386168][ T5765]  ? gfs2_dirent_search+0x7e0/0x7e0
[  175.391393][ T5765]  gfs2_dirent_search+0x2dd/0x7e0
[  175.396469][ T5765]  ? gfs2_permission+0x3f1/0x4c0
[  175.400500][ T5771] RDS: rds_bind could not find a transport for fe80::2a, load rds_tcp or rds_rdma?
[  175.401431][ T5765]  ? gfs2_dir_search+0x220/0x220
[  175.412233][ T5760] ceph: No mds server is up or the cluster is laggy
[  175.415672][ T5765]  ? gfs2_lookupi+0x640/0x640
[  175.427003][ T5765]  gfs2_dir_search+0x49/0x220
[  175.431707][ T5765]  gfs2_lookupi+0x45f/0x640
[  175.436226][ T5765]  ? __lock_acquire+0x7c50/0x7c50
[  175.441289][ T5765]  ? gfs2_lookup_simple+0xf0/0xf0
[  175.446328][ T5765]  ? __gfs2_lookup+0x8c/0x260
[  175.451098][ T5765]  ? d_alloc_parallel+0x13e0/0x1530
[  175.456318][ T5765]  ? __d_lookup+0x8b/0x7c0
[  175.460771][ T5765]  __gfs2_lookup+0x8c/0x260
[  175.465283][ T5765]  ? d_alloc_parallel+0x33f/0x1530
[  175.470416][ T5765]  ? gfs2_atomic_open+0x210/0x210
[  175.475458][ T5765]  ? __d_lookup+0x8b/0x7c0
[  175.479885][ T5765]  ? d_hash_and_lookup+0x1b0/0x1b0
[  175.485033][ T5765]  ? rwsem_write_trylock+0x12f/0x1b0
[  175.490348][ T5765]  gfs2_atomic_open+0x8e/0x210
[  175.495125][ T5765]  ? gfs2_rename2+0x1d70/0x1d70
[  175.499989][ T5765]  path_openat+0xe20/0x2e70
[  175.504525][ T5765]  ? do_filp_open+0x3c0/0x3c0
[  175.509229][ T5765]  do_filp_open+0x1c1/0x3c0
[  175.513798][ T5765]  ? vfs_tmpfile+0x480/0x480
[  175.518453][ T5765]  ? _raw_spin_unlock+0x24/0x40
[  175.523337][ T5765]  ? alloc_fd+0x58f/0x630
[  175.527731][ T5765]  do_sys_openat2+0x142/0x490
[  175.532472][ T5765]  ? do_sys_open+0xe0/0xe0
[  175.536943][ T5765]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  175.542980][ T5765]  ? lock_chain_count+0x20/0x20
[  175.547895][ T5765]  __x64_sys_openat+0x135/0x160
[  175.552833][ T5765]  do_syscall_64+0x4c/0xa0
[  175.557322][ T5765]  ? clear_bhb_loop+0x60/0xb0
[  175.562044][ T5765]  ? clear_bhb_loop+0x60/0xb0
[  175.566739][ T5765]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  175.572643][ T5765] RIP: 0033:0x7f24af18efc9
[  175.577064][ T5765] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  175.596685][ T5765] RSP: 002b:00007f24affb9038 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  175.605281][ T5765] RAX: ffffffffffffffda RBX: 00007f24af3e6090 RCX: 00007f24af18efc9
[  175.613257][ T5765] RDX: 000000000000275a RSI: 0000200000000280 RDI: ffffffffffffff9c
[  175.621236][ T5765] RBP: 00007f24af211f91 R08: 0000000000000000 R09: 0000000000000000
[  175.629211][ T5765] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  175.637271][ T5765] R13: 00007f24af3e6128 R14: 00007f24af3e6090 R15: 00007ffef70191b8
[  175.645257][ T5765]  </TASK>
[  175.683643][ T4966] libceph: connect (1)[c::]:6789 error -101
[  175.704752][ T4966] libceph: mon0 (1)[c::]:6789 connect error
[  175.764923][ T4446] usb 4-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  175.781204][ T4446] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  175.790862][ T4446] usb 4-1: Product: syz
[  175.796155][ T4446] usb 4-1: Manufacturer: syz
[  175.815091][ T4446] usb 4-1: SerialNumber: syz
[  175.857875][ T4446] usb 4-1: config 0 descriptor??
[  176.147840][ T4446] usb 4-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  177.266323][ T5780] random: crng reseeded on system resumption
[  177.931544][ T5792] loop0: detected capacity change from 0 to 8192
[  177.934913][ T5796] loop1: detected capacity change from 0 to 256
[  178.033003][ T4387] I/O error, dev loop0, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  178.119823][ T5796] FAT-fs (loop1): Directory bread(block 64) failed
[  178.126511][ T5796] FAT-fs (loop1): Directory bread(block 65) failed
[  178.217802][ T5796] FAT-fs (loop1): Directory bread(block 66) failed
[  178.381035][ T5796] FAT-fs (loop1): Directory bread(block 67) failed
[  178.388021][ T5796] FAT-fs (loop1): Directory bread(block 68) failed
[  178.394604][ T5796] FAT-fs (loop1): Directory bread(block 69) failed
[  178.401698][ T5796] FAT-fs (loop1): Directory bread(block 70) failed
[  178.416475][ T5796] FAT-fs (loop1): Directory bread(block 71) failed
[  178.423369][ T5796] FAT-fs (loop1): Directory bread(block 72) failed
[  178.430033][ T5796] FAT-fs (loop1): Directory bread(block 73) failed
[  178.843621][ T5794] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  178.907894][ T5757] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  178.916550][ T5757] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  179.169994][ T5803] loop0: detected capacity change from 0 to 256
[  179.233737][ T4446] dvb_usb_rtl28xxu: probe of 4-1:0.0 failed with error -71
[  179.278928][ T4446] usb 4-1: USB disconnect, device number 2
[  179.879434][ T5819] loop2: detected capacity change from 0 to 512
[  180.006025][ T5819] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  180.022869][ T5827] netlink: 'syz.3.315': attribute type 2 has an invalid length.
[  180.030773][ T5827] netlink: 10 bytes leftover after parsing attributes in process `syz.3.315'.
[  180.056104][ T5819] ext4 filesystem being mounted at /59/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  180.350458][ T4265] EXT4-fs (loop2): unmounting filesystem.
[  180.364103][ T5834] loop0: detected capacity change from 0 to 256
[  181.524318][ T5839] FAULT_INJECTION: forcing a failure.
[  181.524318][ T5839] name failslab, interval 1, probability 0, space 0, times 0
[  181.601727][ T5839] CPU: 1 PID: 5839 Comm: syz.3.320 Not tainted syzkaller #0
[  181.609093][ T5839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  181.619188][ T5839] Call Trace:
[  181.622493][ T5839]  <TASK>
[  181.625447][ T5839]  dump_stack_lvl+0x168/0x22e
[  181.630162][ T5839]  ? show_regs_print_info+0x12/0x12
[  181.635398][ T5839]  ? load_image+0x3b0/0x3b0
[  181.639958][ T5839]  ? __might_sleep+0xd0/0xd0
[  181.644605][ T5839]  ? __lock_acquire+0x7c50/0x7c50
[  181.649685][ T5839]  should_fail_ex+0x399/0x4d0
[  181.654424][ T5839]  should_failslab+0x5/0x20
[  181.658976][ T5839]  slab_pre_alloc_hook+0x59/0x310
[  181.664040][ T5839]  ? snd_pcm_oss_change_params_locked+0x1d4/0x3ee0
[  181.670596][ T5839]  __kmem_cache_alloc_node+0x4f/0x260
[  181.676015][ T5839]  ? snd_pcm_oss_change_params_locked+0x1d4/0x3ee0
[  181.682566][ T5839]  kmalloc_trace+0x26/0xe0
[  181.687054][ T5839]  snd_pcm_oss_change_params_locked+0x1d4/0x3ee0
[  181.693436][ T5839]  ? __mutex_trylock_common+0x14f/0x250
[  181.699040][ T5839]  ? trace_raw_output_contention_end+0xd0/0xd0
[  181.705336][ T5839]  ? rcu_is_watching+0x11/0xa0
[  181.710155][ T5839]  ? __mutex_lock+0x19e/0xaf0
[  181.714891][ T5839]  ? __lock_acquire+0x7c50/0x7c50
[  181.719979][ T5839]  ? snd_pcm_oss_read2+0x3c0/0x3c0
[  181.725132][ T5839]  ? mutex_lock_nested+0x10/0x10
[  181.730124][ T5839]  ? aa_file_perm+0x3ef/0xec0
[  181.734834][ T5839]  ? verify_lock_unused+0x140/0x140
[  181.740163][ T5839]  ? aa_file_perm+0x117/0xec0
[  181.744882][ T5839]  snd_pcm_oss_write+0x2f8/0x1110
[  181.749961][ T5839]  ? snd_pcm_oss_read+0x8b0/0x8b0
[  181.755028][ T5839]  ? end_current_label_crit_section+0x14b/0x170
[  181.761330][ T5839]  ? common_file_perm+0x171/0x1c0
[  181.766414][ T5839]  ? fsnotify_perm+0x5a/0x550
[  181.771142][ T5839]  ? security_file_permission+0x75/0xa0
[  181.776736][ T5839]  ? snd_pcm_oss_read+0x8b0/0x8b0
[  181.781806][ T5839]  vfs_write+0x2c4/0x960
[  181.786110][ T5839]  ? file_end_write+0x250/0x250
[  181.791012][ T5839]  ? __fget_files+0x28/0x4d0
[  181.795660][ T5839]  ? __fget_files+0x44a/0x4d0
[  181.800413][ T5839]  ? __fdget_pos+0x1d4/0x360
[  181.805054][ T5839]  ? ksys_write+0x71/0x240
[  181.809526][ T5839]  ksys_write+0x143/0x240
[  181.813929][ T5839]  ? __ia32_sys_read+0x80/0x80
[  181.818756][ T5839]  ? lockdep_hardirqs_on+0x94/0x140
[  181.824023][ T5839]  do_syscall_64+0x4c/0xa0
[  181.828499][ T5839]  ? clear_bhb_loop+0x60/0xb0
[  181.833220][ T5839]  ? clear_bhb_loop+0x60/0xb0
[  181.838012][ T5839]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  181.843947][ T5839] RIP: 0033:0x7f40c258efc9
[  181.848399][ T5839] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  181.868038][ T5839] RSP: 002b:00007f40c342b038 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  181.876468][ T5839] RAX: ffffffffffffffda RBX: 00007f40c27e5fa0 RCX: 00007f40c258efc9
[  181.884452][ T5839] RDX: 000000000000fdbc RSI: 0000200000000500 RDI: 0000000000000006
[  181.892438][ T5839] RBP: 00007f40c342b090 R08: 0000000000000000 R09: 0000000000000000
[  181.900429][ T5839] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  181.908417][ T5839] R13: 00007f40c27e6038 R14: 00007f40c27e5fa0 R15: 00007fffdbd67148
[  181.916411][ T5839]  </TASK>
[  181.933833][ T5853] FAULT_INJECTION: forcing a failure.
[  181.933833][ T5853] name failslab, interval 1, probability 0, space 0, times 0
[  182.344314][ T5852] netlink: 'syz.4.321': attribute type 1 has an invalid length.
[  182.351608][ T5853] CPU: 1 PID: 5853 Comm: syz.2.322 Not tainted syzkaller #0
[  182.360178][ T5853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  182.370282][ T5853] Call Trace:
[  182.373584][ T5853]  <TASK>
[  182.376543][ T5853]  dump_stack_lvl+0x168/0x22e
[  182.381275][ T5853]  ? show_regs_print_info+0x12/0x12
[  182.386512][ T5853]  ? load_image+0x3b0/0x3b0
[  182.391070][ T5853]  ? __might_sleep+0xd0/0xd0
[  182.395716][ T5853]  ? __lock_acquire+0x7c50/0x7c50
[  182.400787][ T5853]  should_fail_ex+0x399/0x4d0
[  182.405508][ T5853]  should_failslab+0x5/0x20
[  182.410035][ T5853]  slab_pre_alloc_hook+0x59/0x310
[  182.415077][ T5853]  kmem_cache_alloc_node+0x5a/0x320
[  182.420287][ T5853]  ? __alloc_skb+0xfc/0x7e0
[  182.424812][ T5853]  __alloc_skb+0xfc/0x7e0
[  182.429154][ T5853]  ? netlink_autobind+0xda/0x300
[  182.434110][ T5853]  netlink_sendmsg+0x645/0xbc0
[  182.438897][ T5853]  ? netlink_getsockopt+0x540/0x540
[  182.444111][ T5853]  ? aa_sock_msg_perm+0x94/0x150
[  182.449073][ T5853]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  182.454398][ T5853]  ? security_socket_sendmsg+0x7c/0xa0
[  182.459892][ T5853]  ? netlink_getsockopt+0x540/0x540
[  182.465107][ T5853]  ____sys_sendmsg+0x59b/0x970
[  182.469892][ T5853]  ? __sys_sendmsg_sock+0x30/0x30
[  182.474933][ T5853]  ? __import_iovec+0x315/0x500
[  182.479810][ T5853]  ? import_iovec+0x6f/0xa0
[  182.484357][ T5853]  ___sys_sendmsg+0x21c/0x290
[  182.489051][ T5853]  ? __sys_sendmsg+0x270/0x270
[  182.493879][ T5853]  ? __lock_acquire+0x7c50/0x7c50
[  182.498934][ T5853]  ? __fdget+0x17c/0x200
[  182.503196][ T5853]  __se_sys_sendmsg+0x19e/0x270
[  182.508081][ T5853]  ? __x64_sys_sendmsg+0x80/0x80
[  182.513048][ T5853]  ? lockdep_hardirqs_on+0x94/0x140
[  182.518267][ T5853]  do_syscall_64+0x4c/0xa0
[  182.522701][ T5853]  ? clear_bhb_loop+0x60/0xb0
[  182.527387][ T5853]  ? clear_bhb_loop+0x60/0xb0
[  182.532078][ T5853]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  182.537986][ T5853] RIP: 0033:0x7f24af18efc9
[  182.542416][ T5853] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  182.562036][ T5853] RSP: 002b:00007f24affda038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  182.570483][ T5853] RAX: ffffffffffffffda RBX: 00007f24af3e5fa0 RCX: 00007f24af18efc9
[  182.578477][ T5853] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000004
[  182.586475][ T5853] RBP: 00007f24affda090 R08: 0000000000000000 R09: 0000000000000000
[  182.594462][ T5853] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  182.602449][ T5853] R13: 00007f24af3e6038 R14: 00007f24af3e5fa0 R15: 00007ffef70191b8
[  182.610445][ T5853]  </TASK>
[  183.114450][ T5863] FAULT_INJECTION: forcing a failure.
[  183.114450][ T5863] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  183.128671][ T5863] CPU: 1 PID: 5863 Comm: syz.3.323 Not tainted syzkaller #0
[  183.136001][ T5863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  183.146083][ T5863] Call Trace:
[  183.149389][ T5863]  <TASK>
[  183.152342][ T5863]  dump_stack_lvl+0x168/0x22e
[  183.157235][ T5863]  ? show_regs_print_info+0x12/0x12
[  183.162465][ T5863]  ? load_image+0x3b0/0x3b0
[  183.167097][ T5863]  ? __lock_acquire+0x7c50/0x7c50
[  183.172159][ T5863]  should_fail_ex+0x399/0x4d0
[  183.176885][ T5863]  _copy_from_user+0x2c/0x170
[  183.181595][ T5863]  iovec_from_user+0x143/0x360
[  183.186408][ T5863]  __import_iovec+0x6d/0x500
[  183.191046][ T5863]  ? __might_fault+0xc2/0x120
[  183.195754][ T5863]  import_iovec+0x6f/0xa0
[  183.200127][ T5863]  ___sys_sendmsg+0x1e4/0x290
[  183.204841][ T5863]  ? __sys_sendmsg+0x270/0x270
[  183.209685][ T5863]  ? __fdget+0x17c/0x200
[  183.213970][ T5863]  __se_sys_sendmsg+0x19e/0x270
[  183.218858][ T5863]  ? __x64_sys_sendmsg+0x80/0x80
[  183.223850][ T5863]  ? syscall_enter_from_user_mode+0x2a/0x80
[  183.229789][ T5863]  do_syscall_64+0x4c/0xa0
[  183.234241][ T5863]  ? clear_bhb_loop+0x60/0xb0
[  183.238944][ T5863]  ? clear_bhb_loop+0x60/0xb0
[  183.243652][ T5863]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  183.249570][ T5863] RIP: 0033:0x7f40c258efc9
[  183.254009][ T5863] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  183.273642][ T5863] RSP: 002b:00007f40c33e9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  183.282084][ T5863] RAX: ffffffffffffffda RBX: 00007f40c27e6180 RCX: 00007f40c258efc9
[  183.290083][ T5863] RDX: 0000000000000080 RSI: 0000200000000440 RDI: 0000000000000008
[  183.298097][ T5863] RBP: 00007f40c33e9090 R08: 0000000000000000 R09: 0000000000000000
[  183.306090][ T5863] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  183.314083][ T5863] R13: 00007f40c27e6218 R14: 00007f40c27e6180 R15: 00007fffdbd67148
[  183.322095][ T5863]  </TASK>
[  183.610015][ T5865] tmpfs: Bad value for 'mpol'
[  183.692988][ T5869] netlink: 'syz.0.327': attribute type 2 has an invalid length.
[  183.705521][ T5869] netlink: 10 bytes leftover after parsing attributes in process `syz.0.327'.
[  183.774715][ T5866] device syzkaller1 entered promiscuous mode
[  183.956737][ T5872] loop0: detected capacity change from 0 to 512
[  184.304742][ T5872] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  184.440303][ T5872] ext4 filesystem being mounted at /69/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  185.404744][ T4270] EXT4-fs (loop0): unmounting filesystem.
[  185.891610][ T5861] loop1: detected capacity change from 0 to 32768
[  185.996434][ T5861] XFS (loop1): Mounting V5 Filesystem
[  186.045917][ T5896] netlink: 132 bytes leftover after parsing attributes in process `syz.3.334'.
[  186.067875][ T5861] XFS (loop1): log mount failed
[  186.291307][ T5903] FAULT_INJECTION: forcing a failure.
[  186.291307][ T5903] name failslab, interval 1, probability 0, space 0, times 0
[  186.304251][ T5903] CPU: 0 PID: 5903 Comm: syz.2.335 Not tainted syzkaller #0
[  186.311570][ T5903] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  186.321651][ T5903] Call Trace:
[  186.324968][ T5903]  <TASK>
[  186.327927][ T5903]  dump_stack_lvl+0x168/0x22e
[  186.332647][ T5903]  ? show_regs_print_info+0x12/0x12
[  186.337880][ T5903]  ? load_image+0x3b0/0x3b0
[  186.342432][ T5903]  ? __might_sleep+0xd0/0xd0
[  186.347065][ T5903]  ? __lock_acquire+0x7c50/0x7c50
[  186.352145][ T5903]  should_fail_ex+0x399/0x4d0
[  186.356865][ T5903]  should_failslab+0x5/0x20
[  186.361407][ T5903]  slab_pre_alloc_hook+0x59/0x310
[  186.366467][ T5903]  kmem_cache_alloc_node+0x5a/0x320
[  186.371694][ T5903]  ? __alloc_skb+0xfc/0x7e0
[  186.376242][ T5903]  __alloc_skb+0xfc/0x7e0
[  186.380607][ T5903]  ? netlink_autobind+0xda/0x300
[  186.385587][ T5903]  netlink_sendmsg+0x645/0xbc0
[  186.390398][ T5903]  ? netlink_getsockopt+0x540/0x540
[  186.395639][ T5903]  ? aa_sock_msg_perm+0x94/0x150
[  186.400623][ T5903]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  186.406130][ T5903]  ? security_socket_sendmsg+0x7c/0xa0
[  186.411633][ T5903]  ? netlink_getsockopt+0x540/0x540
[  186.416869][ T5903]  ____sys_sendmsg+0x59b/0x970
[  186.421678][ T5903]  ? __sys_sendmsg_sock+0x30/0x30
[  186.426737][ T5903]  ? __import_iovec+0x315/0x500
[  186.431642][ T5903]  ? import_iovec+0x6f/0xa0
[  186.436190][ T5903]  ___sys_sendmsg+0x21c/0x290
[  186.440995][ T5903]  ? __sys_sendmsg+0x270/0x270
[  186.445815][ T5903]  ? __lock_acquire+0x7c50/0x7c50
[  186.450897][ T5903]  ? __fdget+0x17c/0x200
[  186.455181][ T5903]  __se_sys_sendmsg+0x19e/0x270
[  186.460082][ T5903]  ? __x64_sys_sendmsg+0x80/0x80
[  186.465082][ T5903]  ? lockdep_hardirqs_on+0x94/0x140
[  186.470338][ T5903]  do_syscall_64+0x4c/0xa0
[  186.474791][ T5903]  ? clear_bhb_loop+0x60/0xb0
[  186.479500][ T5903]  ? clear_bhb_loop+0x60/0xb0
[  186.484215][ T5903]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  186.490143][ T5903] RIP: 0033:0x7f24af18efc9
[  186.494588][ T5903] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  186.514320][ T5903] RSP: 002b:00007f24affb9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  186.522782][ T5903] RAX: ffffffffffffffda RBX: 00007f24af3e6090 RCX: 00007f24af18efc9
[  186.530801][ T5903] RDX: 0000000000000000 RSI: 0000200000000080 RDI: 0000000000000005
[  186.538809][ T5903] RBP: 00007f24affb9090 R08: 0000000000000000 R09: 0000000000000000
[  186.546828][ T5903] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  186.554996][ T5903] R13: 00007f24af3e6128 R14: 00007f24af3e6090 R15: 00007ffef70191b8
[  186.563017][ T5903]  </TASK>
[  188.244043][ T5908] loop4: detected capacity change from 0 to 2048
[  188.271296][ T5908] UDF-fs: error (device loop4): udf_process_sequence: Primary Volume Descriptor not found!
[  188.302386][ T5908] UDF-fs: unknown compression code (0)
[  188.448198][ T5914] UDF-fs: unknown compression code (0)
[  188.462355][ T5914] UDF-fs: unknown compression code (0)
[  190.920124][ T5919] netlink: 'syz.3.339': attribute type 2 has an invalid length.
[  191.516398][ T5919] netlink: 10 bytes leftover after parsing attributes in process `syz.3.339'.
[  193.271002][ T5936] FAULT_INJECTION: forcing a failure.
[  193.271002][ T5936] name failslab, interval 1, probability 0, space 0, times 0
[  193.285085][ T5936] CPU: 0 PID: 5936 Comm: syz.3.344 Not tainted syzkaller #0
[  193.292410][ T5936] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  193.302510][ T5936] Call Trace:
[  193.305830][ T5936]  <TASK>
[  193.308830][ T5936]  dump_stack_lvl+0x168/0x22e
[  193.313550][ T5936]  ? show_regs_print_info+0x12/0x12
[  193.318794][ T5936]  ? load_image+0x3b0/0x3b0
[  193.323375][ T5936]  should_fail_ex+0x399/0x4d0
[  193.328109][ T5936]  should_failslab+0x5/0x20
[  193.332651][ T5936]  slab_pre_alloc_hook+0x59/0x310
[  193.337715][ T5936]  ? inet_bind2_bucket_find+0x5e/0x610
[  193.343223][ T5936]  kmem_cache_alloc+0x56/0x2f0
[  193.348034][ T5936]  ? __inet_hash_connect+0xc2c/0x1930
[  193.353454][ T5936]  __inet_hash_connect+0xc2c/0x1930
[  193.358718][ T5936]  ? inet_bhash2_reset_saddr+0x80/0x80
[  193.364237][ T5936]  ? rcu_is_watching+0x11/0xa0
[  193.365083][ T5944] loop4: detected capacity change from 0 to 128
[  193.369049][ T5936]  ? inet6_hash_connect+0x77/0xd0
[  193.380428][ T5936]  tcp_v6_connect+0xe89/0x17b0
[  193.385252][ T5936]  ? tcp_v6_pre_connect+0xf0/0xf0
[  193.390325][ T5936]  ? memset+0x1e/0x40
[  193.394351][ T5936]  ? verify_lock_unused+0x140/0x140
[  193.399589][ T5936]  ? sha256+0x333/0x570
[  193.403821][ T5936]  __inet_stream_connect+0x298/0xea0
[  193.409162][ T5936]  ? lock_chain_count+0x20/0x20
[  193.414066][ T5936]  ? inet_stream_connect+0x4d/0xa0
[  193.419199][ T5936]  ? __local_bh_enable_ip+0x12a/0x1b0
[  193.424587][ T5936]  ? inet_dgram_connect+0x360/0x360
[  193.429799][ T5936]  ? __local_bh_enable_ip+0x12a/0x1b0
[  193.435183][ T5936]  ? _local_bh_enable+0xa0/0xa0
[  193.440057][ T5936]  ? lock_sock_nested+0x66/0x100
[  193.445030][ T5936]  inet_stream_connect+0x62/0xa0
[  193.449988][ T5936]  mptcp_connect+0x37a/0x580
[  193.454613][ T5936]  __inet_stream_connect+0x298/0xea0
[  193.459937][ T5936]  ? lock_chain_count+0x20/0x20
[  193.464817][ T5936]  ? inet_stream_connect+0x4d/0xa0
[  193.469981][ T5936]  ? __local_bh_enable_ip+0x12a/0x1b0
[  193.475400][ T5936]  ? inet_dgram_connect+0x360/0x360
[  193.480647][ T5936]  ? __local_bh_enable_ip+0x12a/0x1b0
[  193.486069][ T5936]  ? _local_bh_enable+0xa0/0xa0
[  193.490947][ T5936]  ? lock_sock_nested+0x66/0x100
[  193.495935][ T5936]  inet_stream_connect+0x62/0xa0
[  193.500889][ T5936]  ? __inet_stream_connect+0xea0/0xea0
[  193.506361][ T5936]  __sys_connect+0x389/0x410
[  193.510984][ T5936]  ? __sys_connect_file+0x170/0x170
[  193.516228][ T5936]  __x64_sys_connect+0x76/0x80
[  193.521010][ T5936]  do_syscall_64+0x4c/0xa0
[  193.525470][ T5936]  ? clear_bhb_loop+0x60/0xb0
[  193.530186][ T5936]  ? clear_bhb_loop+0x60/0xb0
[  193.534882][ T5936]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  193.540788][ T5936] RIP: 0033:0x7f40c258efc9
[  193.545211][ T5936] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  193.564833][ T5936] RSP: 002b:00007f40c340a038 EFLAGS: 00000246 ORIG_RAX: 000000000000002a
[  193.573261][ T5936] RAX: ffffffffffffffda RBX: 00007f40c27e6090 RCX: 00007f40c258efc9
[  193.581262][ T5936] RDX: 000000000000001c RSI: 0000200000000000 RDI: 0000000000000006
[  193.589320][ T5936] RBP: 00007f40c340a090 R08: 0000000000000000 R09: 0000000000000000
[  193.597396][ T5936] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  193.605379][ T5936] R13: 00007f40c27e6128 R14: 00007f40c27e6090 R15: 00007fffdbd67148
[  193.613379][ T5936]  </TASK>
[  194.108507][ T5944] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  194.138181][ T5950] FAULT_INJECTION: forcing a failure.
[  194.138181][ T5950] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  194.169359][ T5944] ext4 filesystem being mounted at /62/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  194.263264][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  194.269646][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  194.272748][ T4267] ------------[ cut here ]------------
[  194.281580][ T5950] CPU: 0 PID: 5950 Comm: syz.2.346 Not tainted syzkaller #0
[  194.281779][ T4267] WARNING: CPU: 1 PID: 4267 at net/bluetooth/hci_conn.c:668 hci_conn_timeout+0x24f/0x450
[  194.289017][ T5950] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  194.289031][ T5950] Call Trace:
[  194.289040][ T5950]  <TASK>
[  194.289049][ T5950]  dump_stack_lvl+0x168/0x22e
[  194.289080][ T5950]  ? show_regs_print_info+0x12/0x12
[  194.298904][ T4267] Modules linked in:
[  194.308923][ T5950]  ? load_image+0x3b0/0x3b0
[  194.312231][ T4267] 
[  194.312241][ T4267] CPU: 1 PID: 4267 Comm: kworker/u5:1 Not tainted syzkaller #0
[  194.315165][ T5950]  ? __lock_acquire+0x7c50/0x7c50
[  194.319859][ T4267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  194.325047][ T5950]  ? snprintf+0xd7/0x120
[  194.328973][ T4267] Workqueue: hci2 hci_conn_timeout
[  194.333428][ T5950]  should_fail_ex+0x399/0x4d0
[  194.335752][ T4267] 
[  194.335760][ T4267] RIP: 0010:hci_conn_timeout+0x24f/0x450
[  194.343289][ T5950]  _copy_to_user+0x2c/0x130
[  194.343318][ T5950]  simple_read_from_buffer+0xe3/0x150
[  194.348389][ T4267] Code: 1f 8e e8 d4 23 ae f8 48 8b 35 45 89 fc 04 bf 08 00 00 00 48 89 da 5b 41 5c 41 5d 41 5e 41 5f 5d e9 a6 42 30 f8 e8 b1 f4 5d f8 <0f> 0b e9 35 fe ff ff 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c dd fd
[  194.358603][ T5950]  proc_fail_nth_read+0x19a/0x210
[  194.358632][ T5950]  ? proc_fault_inject_write+0x2f0/0x2f0
[  194.362859][ T4267] RSP: 0018:ffffc90003da7c08 EFLAGS: 00010293
[  194.367964][ T5950]  ? fsnotify_perm+0x248/0x550
[  194.367992][ T5950]  ? proc_fault_inject_write+0x2f0/0x2f0
[  194.372736][ T4267] 
[  194.372744][ T4267] RAX: ffffffff8922e1af RBX: ffff88801fb46330 RCX: ffff88801c7a1dc0
[  194.375064][ T5950]  vfs_read+0x2c0/0x920
[  194.380725][ T4267] RDX: 0000000000000000 RSI: 00000000ffffffff RDI: 0000000000000000
[  194.385192][ T5950]  ? kernel_read+0x1e0/0x1e0
[  194.390571][ T4267] RBP: 00000000ffffffff R08: dffffc0000000000 R09: ffffed1003f68c03
[  194.410499][ T5950]  ? __fget_files+0x28/0x4d0
[  194.410530][ T5950]  ? __fget_files+0x44a/0x4d0
[  194.415538][ T4267] R10: ffffed1003f68c03 R11: 1ffff11003f68c02 R12: dffffc0000000000
[  194.421193][ T5950]  ? __fdget_pos+0x2ae/0x360
[  194.427262][ T4267] R13: dffffc0000000000 R14: ffff88801fb46000 R15: ffff88801fb46010
[  194.432026][ T5950]  ? ksys_read+0x71/0x240
[  194.432058][ T5950]  ksys_read+0x143/0x240
[  194.437710][ T4267] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  194.440006][ T5950]  ? vfs_write+0x960/0x960
[  194.447988][ T4267] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  194.452117][ T5950]  ? lockdep_hardirqs_on+0x94/0x140
[  194.460107][ T4267] CR2: 0000200000002a00 CR3: 000000000c88e000 CR4: 00000000003506e0
[  194.464664][ T5950]  do_syscall_64+0x4c/0xa0
[  194.472674][ T4267] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  194.477237][ T5950]  ? clear_bhb_loop+0x60/0xb0
[  194.482056][ T4267] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  194.489990][ T5950]  ? clear_bhb_loop+0x60/0xb0
[  194.490030][ T5950]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  194.490054][ T5950] RIP: 0033:0x7f24af18d9dc
[  194.494655][ T4267] Call Trace:
[  194.494670][ T4267]  <TASK>
[  194.502666][ T5950] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  194.502692][ T5950] RSP: 002b:00007f24affda030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  194.502715][ T5950] RAX: ffffffffffffffda RBX: 00007f24af3e5fa0 RCX: 00007f24af18d9dc
[  194.502731][ T5950] RDX: 000000000000000f RSI: 00007f24affda0a0 RDI: 0000000000000004
[  194.507084][ T4267]  ? process_one_work+0x7a1/0x1160
[  194.511320][ T5950] RBP: 00007f24affda090 R08: 0000000000000000 R09: 0000000000000000
[  194.511336][ T5950] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000001
[  194.511349][ T5950] R13: 00007f24af3e6038 R14: 00007f24af3e5fa0 R15: 00007ffef70191b8
[  194.511380][ T5950]  </TASK>
[  194.520396][ T4267]  process_one_work+0x898/0x1160
[  194.672616][ T4267]  ? worker_detach_from_pool+0x240/0x240
[  194.678332][ T4267]  ? _raw_spin_lock_irq+0xab/0xe0
[  194.683406][ T4267]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  194.688857][ T4267]  ? kthread_data+0x4b/0xc0
[  194.693403][ T4267]  worker_thread+0xaa2/0x1250
[  194.698157][ T4267]  kthread+0x29d/0x330
[  194.702264][ T4267]  ? worker_clr_flags+0x1a0/0x1a0
[  194.707343][ T4267]  ? kthread_blkcg+0xd0/0xd0
[  194.712009][ T4267]  ret_from_fork+0x1f/0x30
[  194.716472][ T4267]  </TASK>
[  194.719568][ T4267] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  194.726956][ T4267] CPU: 1 PID: 4267 Comm: kworker/u5:1 Not tainted syzkaller #0
[  194.734509][ T4267] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  194.744572][ T4267] Workqueue: hci2 hci_conn_timeout
[  194.749700][ T4267] Call Trace:
[  194.752982][ T4267]  <TASK>
[  194.755915][ T4267]  dump_stack_lvl+0x168/0x22e
[  194.760599][ T4267]  ? memcpy+0x3c/0x60
[  194.764595][ T4267]  ? show_regs_print_info+0x12/0x12
[  194.769801][ T4267]  ? load_image+0x3b0/0x3b0
[  194.774324][ T4267]  panic+0x2c9/0x710
[  194.778229][ T4267]  ? bpf_jit_dump+0xd0/0xd0
[  194.782745][ T4267]  ? ret_from_fork+0x1f/0x30
[  194.787435][ T4267]  __warn+0x2f8/0x4f0
[  194.791440][ T4267]  ? hci_conn_timeout+0x24f/0x450
[  194.796574][ T4267]  ? hci_conn_timeout+0x24f/0x450
[  194.801599][ T4267]  report_bug+0x2ba/0x4f0
[  194.805938][ T4267]  ? hci_conn_timeout+0x24f/0x450
[  194.810971][ T4267]  handle_bug+0x3a/0x70
[  194.815133][ T4267]  exc_invalid_op+0x16/0x40
[  194.819647][ T4267]  asm_exc_invalid_op+0x16/0x20
[  194.824500][ T4267] RIP: 0010:hci_conn_timeout+0x24f/0x450
[  194.830157][ T4267] Code: 1f 8e e8 d4 23 ae f8 48 8b 35 45 89 fc 04 bf 08 00 00 00 48 89 da 5b 41 5c 41 5d 41 5e 41 5f 5d e9 a6 42 30 f8 e8 b1 f4 5d f8 <0f> 0b e9 35 fe ff ff 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c dd fd
[  194.849769][ T4267] RSP: 0018:ffffc90003da7c08 EFLAGS: 00010293
[  194.855840][ T4267] RAX: ffffffff8922e1af RBX: ffff88801fb46330 RCX: ffff88801c7a1dc0
[  194.863816][ T4267] RDX: 0000000000000000 RSI: 00000000ffffffff RDI: 0000000000000000
[  194.871786][ T4267] RBP: 00000000ffffffff R08: dffffc0000000000 R09: ffffed1003f68c03
[  194.879764][ T4267] R10: ffffed1003f68c03 R11: 1ffff11003f68c02 R12: dffffc0000000000
[  194.887837][ T4267] R13: dffffc0000000000 R14: ffff88801fb46000 R15: ffff88801fb46010
[  194.895831][ T4267]  ? hci_conn_timeout+0x24f/0x450
[  194.900875][ T4267]  ? hci_conn_timeout+0x24f/0x450
[  194.905911][ T4267]  ? process_one_work+0x7a1/0x1160
[  194.911031][ T4267]  process_one_work+0x898/0x1160
[  194.915985][ T4267]  ? worker_detach_from_pool+0x240/0x240
[  194.921627][ T4267]  ? _raw_spin_lock_irq+0xab/0xe0
[  194.926694][ T4267]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  194.932100][ T4267]  ? kthread_data+0x4b/0xc0
[  194.936629][ T4267]  worker_thread+0xaa2/0x1250
[  194.941337][ T4267]  kthread+0x29d/0x330
[  194.945424][ T4267]  ? worker_clr_flags+0x1a0/0x1a0
[  194.950455][ T4267]  ? kthread_blkcg+0xd0/0xd0
[  194.955058][ T4267]  ret_from_fork+0x1f/0x30
[  194.959493][ T4267]  </TASK>
[  194.962905][ T4267] Kernel Offset: disabled
[  194.967335][ T4267] Rebooting in 86400 seconds..