last executing test programs:

15.589509355s ago: executing program 0 (id=1243):
ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0xc004743e, 0x0)
prlimit64(0x0, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x0, 0x0)
chdir(&(0x7f0000000240)='./file0\x00')
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='projid_map\x00')
pread64(r0, &(0x7f0000002100)=""/4116, 0x1014, 0x0)
r1 = creat(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
syz_mount_image$btrfs(&(0x7f0000005100), &(0x7f0000005140)='./file0\x00', 0x16, &(0x7f0000000080), 0x1, 0x5124, &(0x7f000000a2c0)="$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")
chdir(&(0x7f0000000240)='./file0\x00')
mkdirat(0xffffffffffffffff, 0x0, 0x0)
lsetxattr$system_posix_acl(0x0, &(0x7f0000002440)='system.posix_acl_default\x00', &(0x7f00000000c0)=ANY=[@ANYRES32=0xee01, @ANYRES8=r1, @ANYBLOB="02", @ANYBLOB="020000", @ANYRES32=0x0, @ANYBLOB='\b\x00', @ANYRES32=0x0, @ANYBLOB="d12400", @ANYRES32=0x0, @ANYBLOB="100000000000000020"], 0x5c, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6(0xa, 0x806, 0x0)
bind$inet6(r5, &(0x7f0000000100)={0xa, 0x4e23}, 0x1c)
listen(r5, 0x3)
socket$inet_dccp(0x2, 0x6, 0x0)
r6 = accept4(r5, 0x0, 0x0, 0x0)
sendmmsg(r6, &(0x7f0000001500), 0x588, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa}, 0x48)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r7, 0x29, 0x1b, &(0x7f0000000000)={@empty}, 0x20)

12.634723251s ago: executing program 0 (id=1246):
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/igmp\x00')
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, 0x0, 0x0)
preadv(r0, 0x0, 0x0, 0x359, 0x0)
setsockopt$RDS_RECVERR(r0, 0x114, 0x5, &(0x7f0000000040)=0x1, 0x4)
socket$vsock_stream(0x28, 0x1, 0x0)
r1 = memfd_create(&(0x7f0000000180)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xe0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xe6\xfb\b\x00n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3', 0x0)
r2 = dup(r1)
r3 = fanotify_init(0x8, 0x0)
fanotify_mark(r3, 0x1, 0x40000033, r2, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
socket$inet_smc(0x2b, 0x1, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
poll(&(0x7f0000003600)=[{}], 0x1, 0x0)
r7 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$SOCK_DIAG_BY_FAMILY(r7, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000001080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="24000000140001e5635527510300000010", @ANYRES64, @ANYRESHEX=r0, @ANYBLOB], 0x24}}, 0x0)
r8 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000300)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd)
r9 = add_key(&(0x7f0000000240)='big_key\x00', &(0x7f0000000080)={'syz', 0x2}, &(0x7f0000000340)="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", 0x341, r8)
keyctl$read(0xb, r9, &(0x7f0000003640)=""/4103, 0x1007)
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="240000001a00010000000000000000000005001b00110000ff00"/36], 0x24}, 0x1, 0x0, 0x0, 0x20040040}, 0x0)

12.276419485s ago: executing program 2 (id=1249):
r0 = socket$kcm(0xa, 0x922000000003, 0x11)
setsockopt$sock_attach_bpf(r0, 0x29, 0x24, &(0x7f00000000c0), 0x4)
r1 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="48000000150081fb7059ae08060c04000aff0f11000000040011018701546fabca1b4e7d06a6bd7c493872f750375ed08a562af5745e17b8c119418f0f000000d6e74703c48f93b8", 0x48}], 0x1}, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x9)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000400)={{0x14, 0x3eb}, [@NFT_MSG_DELTABLE={0x20, 0x2, 0xa, 0x5, 0x0, 0x0, {0x7, 0x0, 0x8}, [@NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x1}]}, @NFT_MSG_DELOBJ={0x20, 0x14, 0xa, 0x401, 0x0, 0x0, {0x3, 0x0, 0x4}, [@NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x6c, 0x16, 0xa, 0x201, 0x0, 0x0, {0x2, 0x0, 0x4}, [@NFTA_FLOWTABLE_HOOK={0x58, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x54, 0x3, 0x0, 0x1, [{0x14, 0x1, 'nr0\x00'}, {0x14, 0x1, 'wg2\x00'}, {0x14, 0x1, 'veth0_to_batadv\x00'}, {0x14, 0x1, 'hsr0\x00'}]}]}]}, @NFT_MSG_NEWTABLE={0x108, 0x0, 0xa, 0x0, 0x0, 0x0, {0x5, 0x0, 0x8}, [@NFTA_TABLE_USERDATA={0xb2, 0x6, "e7794878de817e3f32a287a004956c2ceb471d019e54b66b469a309ed075ca2aa50478d5e89258d20c20256892e2d8a4ca925d02988b3dbfcd6f7955e81e99e63fcaaf5c9c9a5ceaf9e22e09ac3f897e0fd0d74e7d1761ce0062c832c0fee948ea5b464bc3903469b8b4b82dd86f42ecc1357a46ce3d5a96bda3bd9e40a41d3ee3906eb0d048bfb73199137808239b0d6d618e7441e1b37e56b5393b59d8cd44c0f3e30de982c03e456aa40d6768"}, @NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x4}, @NFTA_TABLE_FLAGS={0x8}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x3}]}, @NFT_MSG_NEWRULE={0x20, 0x6, 0xa, 0x801, 0x0, 0x0, {0xa, 0x0, 0x9}, [@NFTA_RULE_TABLE={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_DELTABLE={0x38, 0x2, 0xa, 0x401, 0x0, 0x0, {0x0, 0x0, 0x6}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_HANDLE={0xc, 0x4, 0x1, 0x0, 0x3}]}, @NFT_MSG_DELSETELEM={0x1d80, 0xe, 0xa, 0x3, 0x0, 0x0, {0x5, 0x0, 0x6}, [@NFTA_SET_ELEM_LIST_SET={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_ELEM_LIST_SET_ID={0x8, 0x4, 0x1, 0x0, 0x3}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x1ce0, 0x3, 0x0, 0x1, [{0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_TIMEOUT={0xc}]}, {0x440, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x3}, @NFTA_SET_ELEM_USERDATA={0xdc, 0x6, 0x1, 0x0, "ce7faf1e7d0e2a7423490e8a8ad2a39cec2e98b5fc0d7c3e8bedf2a4730b22db0f7e3064df5844ef4cf22379bfa564b326061c359c68a9c92535f449c24028ca4a7591d1d8d7f130115b4b1093b252d54eb2b92d58c5821d27a6ae78d32d59d131d87f536f0c32caabea23075f2d312ab5a57d741ebe557827ec9e0fd362a0353a8cc14ab8f7ea32232a6d50906fde432248b237349592ef37a2172f0fd36b19522ff498ef1136b311f1d57aba127646e954c124a5af9312855af00515dffd21dbe97bf194291e48a1f991d7f79272bc26612ba4484d8ac7"}, @NFTA_SET_ELEM_USERDATA={0xec, 0x6, 0x1, 0x0, "0db1b4c6ab5b950bb1fddb7b0d21877efeb5e0df7d6e83448baaf9719225e76240f6183dcc8afe0d8027b280b760d684fd461743007810123d8322d64c4f8aafb67f72d42d7cef3acf82a7737982d28ea6ad390bf95322d05b56e7c2075fd8627262b3b49e8172b717a0afdd63726a3eac3de50d895fb0ef965ccd6845f1b86161f6ead5e753e521915da2e5e7d7bde6ce8a943a49b295e5e5c5644bc0986c4e040ec5937d5ea28a04785686d3448c99f04d18d5be60975d94a44724be11bfa6927e4b79cdf33dd23fa19fa7517ef3744fdce2c105c242533a76d625f5a04e62028d814174fc2f4f"}, @NFTA_SET_ELEM_KEY={0x4}, @NFTA_SET_ELEM_USERDATA={0x4}, @NFTA_SET_ELEM_EXPRESSIONS={0xdc, 0xb, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, @cmp={{0x8}, @void}}, {0x10, 0x1, 0x0, 0x1, @reject={{0xb}, @void}}, {0x28, 0x1, 0x0, 0x1, @fwd={{0x8}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_FWD_SREG_ADDR={0x8, 0x2, 0x1, 0x0, 0x10}, @NFTA_FWD_NFPROTO={0x8, 0x3, 0x1, 0x0, 0x2}, @NFTA_FWD_SREG_DEV={0x8, 0x1, 0x1, 0x0, 0x12}]}}}, {0x10, 0x1, 0x0, 0x1, @numgen={{0xb}, @void}}, {0x2c, 0x1, 0x0, 0x1, @payload={{0xc}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_PAYLOAD_OFFSET={0x8, 0x3, 0x1, 0x0, 0x3a}, @NFTA_PAYLOAD_LEN={0x8, 0x4, 0x1, 0x0, 0x4}, @NFTA_PAYLOAD_DREG={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @notrack={{0xc}, @void}}, {0x14, 0x1, 0x0, 0x1, @redir={{0xa}, @val={0x4}}}, {0x34, 0x1, 0x0, 0x1, @range={{0xa}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_RANGE_OP={0x8, 0x2, 0x1, 0x0, 0x1}, @NFTA_RANGE_TO_DATA={0x10, 0x4, 0x0, 0x1, [@NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}]}]}, @NFTA_RANGE_SREG={0x8}]}}}]}, @NFTA_SET_ELEM_KEY={0xfc, 0x1, 0x0, 0x1, [@NFTA_DATA_VALUE={0x91, 0x1, "ca8b3ff2f9f9c77359e857e78e314af05e0178ff735135cff3333fb066bdfc6acf7276cac9f1ad951cfe43356e803766b76eefd50cd0727d7940b9e389328856e7ba1cae358336b4ac389bd61e560b410ebe6423a582e656becc6c9812ae886b73b82d1e136256af51e1e1d3044906de7bae1949dfc97e193e6ab7f89890cb51b73e170df8acd37903c5300099"}, @NFTA_DATA_VALUE={0x23, 0x1, "d2b1c5abb9605ba5e3f29fe77ece7024bfe14fb33c1cdb336ad7856fe80a37"}, @NFTA_DATA_VALUE={0x40, 0x1, "347ecf24bb964a40c255692c785193c37dea346a9150e4ad1a29c1467ca2485f7f0bb06d7e9173e2dfaeb6bdb140da8806182fe9fd0ea6a4b5f02da0"}]}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x539}, @NFTA_SET_ELEM_EXPRESSIONS={0x7c, 0xb, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, @ct={{0x7}, @void}}, {0x10, 0x1, 0x0, 0x1, @tunnel={{0xb}, @void}}, {0xc, 0x1, 0x0, 0x1, @dup_ipv4={{0x8}, @void}}, {0x40, 0x1, 0x0, 0x1, @byteorder={{0xe}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_BYTEORDER_OP={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_BYTEORDER_OP={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_BYTEORDER_DREG={0x8, 0x2, 0x1, 0x0, 0x12}, @NFTA_BYTEORDER_SREG={0x8, 0x1, 0x1, 0x0, 0xd}, @NFTA_BYTEORDER_OP={0x8}]}}}, {0x10, 0x1, 0x0, 0x1, @notrack={{0xc}, @void}}]}]}, {0x15a8, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_SET_ELEM_FLAGS={0x8}, @NFTA_SET_ELEM_EXPRESSIONS={0x1594, 0xb, 0x0, 0x1, [{0x10, 0x1, 0x0, 0x1, @dup={{0x8}, @val={0x4}}}, {0x20, 0x1, 0x0, 0x1, @target={{0xb}, @val={0x10, 0x2, 0x0, 0x1, [@NFTA_TARGET_NAME={0xc, 0x1, 'ip6gre0\x00'}]}}}, {0x28, 0x1, 0x0, 0x1, @objref={{0xb}, @val={0x18, 0x2, 0x0, 0x1, [@NFTA_OBJREF_IMM_TYPE={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_OBJREF_IMM_NAME={0x9, 0x2, 'syz0\x00'}]}}}, {0x1538, 0x1, 0x0, 0x1, @cmp={{0x8}, @val={0x152c, 0x2, 0x0, 0x1, [@NFTA_CMP_DATA={0x38, 0x3, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x1c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x7}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1}]}, @NFTA_DATA_VERDICT={0x18, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}]}]}, @NFTA_CMP_DATA={0x28, 0x3, 0x0, 0x1, [@NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8}]}, @NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0xa}]}, @NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8}]}]}, @NFTA_CMP_SREG={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_CMP_DATA={0xfe8, 0x3, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x38, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0xeb5}, @NFTA_VERDICT_CHAIN_ID={0x8}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x6}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CODE={0x8}]}, @NFTA_DATA_VALUE={0xf74, 0x1, "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"}, @NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}]}, @NFTA_DATA_VALUE={0x4}, @NFTA_DATA_VALUE={0x4}, @NFTA_DATA_VALUE={0x15, 0x1, "abc9bafab3c823c901f022a5f7cc708b60"}, @NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8}]}]}, @NFTA_CMP_DATA={0x37c, 0x3, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x5c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x8}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x6fe5d486}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VALUE={0x4}, @NFTA_DATA_VALUE={0xf4, 0x1, "938a4c1e83a8433a1c5d9f1487bae4dfc5151a899f3cd89ed759aee63454e916565414cfbd95c5b0ac1c6835581ae6b13977ba462485842d8f07b1d882429b634cf15000228c5d57b9ac83cd15233c663a219bdb0c21aed8d53cf6353a96b564aca51f71e0fad459df6394ba75c9ca8cbf5c43dc047f580271c7dcf74e3ade5373a6890a665283e77982740779ce700df7992d1380ef68db3418cf9e81b1a9c41b76bea1e37f9cfc375dace6152c6577d8bb042037ceeb83fb320626d230a302362e4c6b520f413eacf05620237e1ffac6fe58aebf9d23375ef32a712dfc193c75fb78d2e9154a58a4f12fd52a024278"}, @NFTA_DATA_VALUE={0xe5, 0x1, "ecce7e3ad79b1ffc109fb8dbcfcc5ccb37ba0922ebdda2d9f1e50587a85535595d03b79aa95892d68c410d6baae805bfaefe3690f50f23bc400a6db94e9d4a5a39af73d37c38a80d7ad9c21ade7e361332ca0da24f1d19ad0089df9d8f841dcd5618516d74a79716145e0c31ee0c676da00d65a5e5e7bb2975055c5f33d43036cce448417ed2474394be8403843476b6fdef52fe950d74052ccbf4d57d6566b468dca84164a312584509a2241faf82edd9e3d60b4b3173b60c0abe52fa16541cb33e794ea249273c28842e41d69eee9609cc2dc8ea6d1129bada08328b101ec56a"}, @NFTA_DATA_VALUE={0x55, 0x1, "cbd286689ebbfa9448104af4916dc3c11b521b2f8691850eca52646e1ba5f8e65ea08e04bca149293a5ff9ed7a4511df78e236a0a21ae1fb12ba649172d81f1e8178959d28578a8c58f70b15d18673b82e"}, @NFTA_DATA_VALUE={0xc5, 0x1, "7ffd9b353db1f25c460be515037b14861e9da1f361d3ca88e576979bc142a8d294ec897fff743620dea79e93132bbc122c61087275f181fc617bf6da7327bb8d48400c7866148c1a3ba53fcc59712ef169f5e67800b177d7ec2ef5ce353f4aa9bafbe48df604d618500f6979bc44d59ff2c30b22892c0f79c74ebf802b3e002cd031c6ae1fcc4085c8291ab8afdec4da11287693a20e081813f1c9e7e0711edb1d47997b9309c038a7f07c2e81913df263a1ace3fc8d128353c2d8ca1f96b23cea"}, @NFTA_DATA_VERDICT={0x1c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x302}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x5}]}]}, @NFTA_CMP_SREG={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_CMP_OP={0x8, 0x2, 0x1, 0x0, 0xc38fb83d428d3e87}, @NFTA_CMP_DATA={0x14c, 0x3, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x44, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x40}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}, @NFTA_DATA_VERDICT={0x10, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}, @NFTA_DATA_VALUE={0x1f, 0x1, "bc81f26c8964c00d1e4914d2edbd04451e10c14df73f42095c24af"}, @NFTA_DATA_VERDICT={0x24, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}]}, @NFTA_DATA_VERDICT={0xc, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x8}]}, @NFTA_DATA_VALUE={0x4}, @NFTA_DATA_VERDICT={0x54, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x8}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffd}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x3}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x4}]}, @NFTA_DATA_VERDICT={0x4c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffb}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}, @NFTA_VERDICT_CODE={0x8}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CHAIN_ID={0x8}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffe}]}]}]}}}]}]}, {0xdc, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8}, @NFTA_SET_ELEM_USERDATA={0xc2, 0x6, 0x1, 0x0, "ccc039257d846714a5074b8b4ee17c771bc035af76d9fcc412089c74f5e34f08a3bc2adf1588e260cdde3eb4f784e3c0a69f3be37a908cda68827d5d49185b786fae317f86f3660b8885b3eede5d868bb852786191ca233f937322304c3b8a8cd1dd7f90a300fd624868bf86209777a9aed6b2fa1fa3886fbedabb94bad44702d4ade8b343cf45b758132853ea7a1916f33eed3b917c149537810cc43f9b008ac4abca79590996841d14d90eb1b84060d02408fe69f5c5ca7eb936c87097"}, @NFTA_SET_ELEM_EXPIRATION={0xc, 0x5, 0x1, 0x0, 0x8}]}, {0x1f8, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY_END={0x1ec, 0xa, 0x0, 0x1, [@NFTA_DATA_VALUE={0x4b, 0x1, "9c8f2ff8bf1fbf8f52a18a596bdb34860a5efa4ab6cb4d5769d873134008b6dcf065c37dcc0c33430f7d0555dc6cd52066cb1103560488a51cc7057a8de4fcfb3751082f7978f1"}, @NFTA_DATA_VALUE={0xe3, 0x1, "49f4159d0b188ddd5e2d2edf0d2c892c4b34631628a9bf59721a2923c0c4b79e487bce0c40bb01fae44cf10c8a6ff8c371c68b5343877cd98756348238959360745f4547aeeecb893061cb81a02c2fbd00d131e58d7b3e1a72ba904b0f0ee7a8b85fa301bed815c5c247b4a449ac04e086d7831f50e796150bc7da86b9fac95d3cdaa7378aea62f1f061bd09cb14aedd4e4dde8abc299bd3364dd470b003102e1333c75b0299696f76a48b4d2093ecdeb864dbefbbce4bb3fd04c42a5d25d50c55967fb78f280156374f04efe19c2412b91dcf3fd913d86d9a886438217321"}, @NFTA_DATA_VERDICT={0x1c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xffffffffffffffff}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x1c66}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x8}]}, @NFTA_DATA_VERDICT={0x10, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}]}, @NFTA_DATA_VERDICT={0x24, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CODE={0x8, 0x1, 0x0, 0x1, 0xfffffffffffffffc}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}]}, @NFTA_DATA_VALUE={0x67, 0x1, "14000ffd146dcfbaa23d0f37cd0d7efda89bfde9542996b69288b31076536401f90dfcb4c9b6c94d22de55563520d7ea77692616a9bb5d3747c4f642cea70b5434899374b6e1a5dca0e88e6c59a4aaf88d3c7f6c27e3c216bc40708104bd072e5c169c"}]}, @NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}]}, {0x10, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz2\x00'}]}]}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x78, 0x3, 0x0, 0x1, [{0x74, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_FLAGS={0x8}, @NFTA_SET_ELEM_TIMEOUT={0xc, 0x4, 0x1, 0x0, 0x100}, @NFTA_SET_ELEM_OBJREF={0x9, 0x9, 'syz0\x00'}, @NFTA_SET_ELEM_KEY={0x40, 0x1, 0x0, 0x1, [@NFTA_DATA_VERDICT={0x3c, 0x2, 0x0, 0x1, [@NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz2\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz0\x00'}, @NFTA_VERDICT_CHAIN={0x9, 0x2, 'syz1\x00'}, @NFTA_VERDICT_CHAIN_ID={0x8, 0x3, 0x1, 0x0, 0x9}]}]}, @NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_SET_ELEM_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}]}]}]}, @NFT_MSG_DELCHAIN={0x30, 0x5, 0xa, 0x5ac7ddc35f4e9a78, 0x0, 0x0, {0x5, 0x0, 0x3}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_TYPE={0x8, 0x7, 'nat\x00'}, @NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x1}]}], {0x14, 0x3f5}}, 0x1fe4}}, 0x0)
syz_emit_ethernet(0x6c, &(0x7f0000000240)=ANY=[@ANYBLOB="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"], 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
r4 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
getsockopt$SO_COOKIE(r2, 0x1, 0x39, &(0x7f0000000180), &(0x7f0000000200)=0x8)
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000040), 0x0, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}})
ioctl$sock_inet_SIOCSIFADDR(r4, 0x8916, &(0x7f0000000140)={'ip6gre0\x00', {0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}})
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000ab4000000060a01040000000000000000020000280900010073797a30000000000900020073797a320000000088000480100001800c000100636f756e7465720014000180090001006d6173710000000004000280600001800a0001006c696d6974000000500002800c000140000000000000000808000440000000010c00014000000000000080010c00024000000000000000090800034000000fba0c00024000000000000000000c000140000000000000000714000000110001"], 0xdc}}, 0x0)
ioctl$VHOST_SET_VRING_BASE(r3, 0x4008af12, &(0x7f00000003c0)={0x1, 0x10})
open(0x0, 0x145142, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
syz_genetlink_get_family_id$devlink(0x0, 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r6 = getpid()
sched_setscheduler(r6, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r7=>0xffffffffffffffff})
connect$unix(r7, &(0x7f000057eff8)=@abs, 0x6e)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)

10.642472329s ago: executing program 0 (id=1251):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
open(&(0x7f0000000300)='./bus\x00', 0x0, 0x0)
socket$kcm(0x10, 0x3, 0x10)
openat$vicodec1(0xffffffffffffff9c, 0x0, 0x2, 0x0)
syz_open_dev$dri(0x0, 0xfffffffffffffffd, 0x799583)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000080005300000000faff0000940000b363d28f3e570000000f000002"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
socket$inet6(0xa, 0x80002, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r2, 0x3b81, &(0x7f0000000080)={0x19, 0x0, <r3=>0x0})
ioctl$IOMMU_IOAS_MAP$PAGES(r2, 0x3b85, &(0x7f0000000040)={0x28, 0x7, r3, 0x0, &(0x7f0000ff7000/0x2000)=nil, 0x2000})
ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r2, 0x3ba0, &(0x7f00000001c0)={0x48, 0x5, r3, 0x0, <r4=>0xffffffffffffffff, 0x1})
ioctl$IOMMU_TEST_OP_ACCESS_PAGES$syz(r2, 0x3ba0, &(0x7f0000000140)={0x48, 0x7, r4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x12f9c5})
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000700)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000240)={0x24, 0x0, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
r6 = socket(0x11, 0x800000003, 0x0)
setsockopt$WPAN_WANTACK(r6, 0x0, 0x0, 0x0, 0x0)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x20, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x2c, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @nat={{0x8}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_NAT_FAMILY={0x8, 0x2, 0x1, 0x0, 0xa}, @NFTA_NAT_REG_ADDR_MIN={0x8}, @NFTA_NAT_TYPE={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xbc}}, 0x0)
syz_emit_ethernet(0x1b2, &(0x7f0000000740)=ANY=[@ANYBLOB="aaaaaaaaaaaabbbbbbbbbbbb86dd696c7693013821ff00000000000000000000000000000000fc0000000000000000000000000000013a02010000000000fe800000000000000000000000000027000404020104eeef588000000000000000000000000000aa000000000000000000000000000000000402020800000000ff0100000000000000000000000000013a0a01050000000000000000000000000000ffffac14143dff0200000000000000000000000000010000000000000000000000000000000120010000000000000000000000000000fe8000000000000000000000000000aa080000000000000005020004000000008402040103600200fc0100000000000000000000000000004e234e2304719078ee3177bf0de4dc71eddeba44e8c482061819aaf50acbe41233f10abe852d2bf3f5d70c7490943d71f3f4f7bb2036b98b1315bc1a13a3239670cc69697a104dc85e989a6c80ab45b6cf3d19cae6596e97ebca2a6de620e4605e414465ac284ddadde67ceab52e66a557824b725290ea4b9c98005c67123c5a6210a3b8678dfeb04844118013f771577b13b7b7f251045c588c7c4d857f145bb4b5afefade4635c62b7367031d53944769e7bb7567e4eafb3299066bb65e9c2e387a29dcf8b4277a0b65d75c82a4ff63a84c04520d254a98dab31400460"], 0x0)
syz_80211_inject_frame(&(0x7f0000000280)=@broadcast, &(0x7f00000005c0)=ANY=[@ANYBLOB="80000000080211000001080211000000080211000000000000000000000000106400010092dac765c6170bdec39b6a000006"], 0x36)
syz_80211_inject_frame(&(0x7f0000000580), &(0x7f0000000bc0)=@data_frame={@msdu=@type10={{0x0, 0x2, 0xf, 0x1, 0x0, 0x0, 0x0, 0x1, 0x1}, {0x8}, @initial, @device_a, @broadcast, {0xf, 0xf03}, "", @value={0x0, 0x1, 0x2, 0x0, 0x4}}, @a_msdu=[{@device_a, @broadcast, 0x19, "611ff807b3510941547a2d34a944ca01db3369dee7e9f0ee33"}, {@device_b, @broadcast, 0x71, "68ce9aad37800c378d9cf50f19d20b6829aa7530e834c4be3641aef9ecf1891db66b2dee7d3c3a95c43977792ece3507c71af4f685eff1b45a16547aee6e33373318f86b26ec6470207167c428b3504c77eef220f98895847581d183bfc2ef6e596b1c04fc2d3c06197d4ccd84929124aa"}]}, 0xc2)

10.286416098s ago: executing program 3 (id=1252):
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000300)={'ip6_vti0\x00', &(0x7f0000000040)={'syztnl2\x00', <r0=>0x0, 0x29, 0x4, 0x1, 0x1, 0x2, @local, @private2={0xfc, 0x2, '\x00', 0x1}, 0x7, 0x58, 0x4, 0x100}})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000a00)=@getchain={0x3c, 0x66, 0x8, 0x70bd2a, 0x25dfdbfc, {0x0, 0x0, 0x0, r0, {0x9, 0xb}, {0x8, 0xfff4}, {0x8, 0x4}}, [{0x8, 0xb, 0x9}, {0x8, 0xb, 0xfffffff4}, {0x8, 0xb, 0x6}]}, 0x8}}, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x3, &(0x7f0000000800)=@framed, &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
io_uring_setup(0x1695, &(0x7f0000000080)={0x0, 0xffe, 0x0, 0x0, 0x4})
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(0xffffffffffffffff, 0x10, &(0x7f0000000200)={0xf1, 0x0, 0x0, 0x0}, 0x20)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e21, @empty}, 0x10)
connect$inet(r2, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window, @mss, @window, @window], 0x20000000000000e4)
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f00000001c0), 0xc7)
setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000100)='illinois\x00', 0x9)
sendto$inet(r2, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r2, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r3, 0x0)
recvmmsg(r1, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x118}, {&(0x7f00000007c0)=""/154, 0x14}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})
ioctl$TUNGETDEVNETNS(r3, 0x54e3, 0x0)

9.683570322s ago: executing program 2 (id=1254):
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
syz_open_dev$dri(0x0, 0x0, 0x0)
syz_open_dev$dri(&(0x7f00000000c0), 0x1, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(0xffffffffffffffff, 0xc018643a, 0x0)
fspick(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
r1 = socket$alg(0x26, 0x5, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
ioctl$SNDRV_RAWMIDI_IOCTL_INFO(0xffffffffffffffff, 0xc0245720, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x10, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
madvise(&(0x7f0000870000/0x4000)=nil, 0x4000, 0x0)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0xf, &(0x7f0000018000)=0x9, 0x4)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000080)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @rand_addr=0x64010101}]}, &(0x7f0000000100)=0x10)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0)
ioctl$KVM_SET_MSRS(r0, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="05000000107ecbd1020000000000000b000000000000007b0a0000000000000300000000000000910800000000000000000000000088927b5ea48f7ea00000393a000004000000ae08000000000000020000000000000000"])
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r3, 0x40505330, &(0x7f0000000100)={{0x0, 0x1}, {0xe}, 0x0, 0x6})

9.110357931s ago: executing program 3 (id=1255):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x2, 0xc, 0x1008}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000940)={'gretap0\x00', &(0x7f0000000880)={'gretap0\x00', 0x0, 0x18f4d1ac39cdd773, 0x7, 0x0, 0x1, {{0x1a, 0x4, 0x2, 0x3, 0x68, 0x68, 0x0, 0xff, 0x4, 0x0, @broadcast, @initdev={0xac, 0x1e, 0x1, 0x0}, {[@cipso={0x86, 0x8, 0xffffffffffffffff, [{0x0, 0x2}]}, @timestamp={0x44, 0x1c, 0xd7, 0x0, 0x9, [0x0, 0x2, 0x4, 0x800, 0x0, 0xa8af]}, @end, @cipso={0x86, 0x2b, 0x2, [{0x2, 0x9, "b8360a833504fd"}, {0x1, 0xf, "63a87ee1564de6608d6f8267ea"}, {0x7, 0xd, "b711f4bc542491092d0c23"}]}, @end]}}}}})
r1 = open(0x0, 0x0, 0x0)
mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
pwritev2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1a, 0x0, 0x2, 0x7f, 0x1884, r0, 0x200, '\x00', 0x0, r1, 0x4, 0x20000000, 0x5}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x80042, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f0000000080)=0xd)
writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000340)="031f31b1f09d76af21e3b0224966a232dc1f5bfd8a29f730b10a53e756087a1df416fd804b636964220910b05962d95d7fb7873e8a0b7b62d7384dbd12b536f0e55e588092441663f9665e4b39f8eb3430840ac3c6ad014d6268fca6b3fc43da09b1d0a95d18e26a8e0ddd857f4911abb72ced02e4f1fe5ebb35042436374c7119229c019819a8491bdd74a299ca4fa71ee05f4c49c99de404b76d08fb1938674fa45fd06104cfcc08e9c017a2769a77e1a9e4da0e451353ca53b990500b18e4f4bb5cf1309fe4707c3f7200"/218, 0xda}, {&(0x7f0000000640)="ffb3ef96fd55310531a92b9d4b2ebcb168c3e90db153fe8bc3c9e2cfd50d22329495b92a7e12a948fff8e40f44798512135fd8fec900cca0c10e9e61d61cff5507f9298209ab8dd95ba0cb024a07dc20d07ac8940c729de29318e23818b2169da4374e8ec904573105b3dafbed9c3958b6570ec6117f2a8b7823b94056c0bcfd679f57db483bb7631bfd74f5f73cdebd19d4bd31a81d7c73c4428a65dc3820987e1ea1c45773112d4e2b1cc8064f220c7b2d673f84d4b1a5a9aedc2063b740198f57d0848358b2cf118bfcdc7c40303dee672f1ca6384e006460df438bde154a0c", 0xe1}, {&(0x7f0000000140)="74812905b8bd297a48dc5adfa4052d6e7cdd8c1615a231859ac522b4ae78d7f1b3619ed73f0e93cf3ccd30f4e58303dfd9d20af483a3406d486bad53698267735b", 0x41}, {&(0x7f0000000000)="7c73c1e117e291cb6cef4163ed06963af9a19a5183aa91163ef7aa02b707e09546e781172decfece433c", 0x2a}, {&(0x7f00000004c0)="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", 0xfe44}], 0x5)
timer_create(0x0, &(0x7f0000000040)={0x0, 0x12, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000280))
r4 = gettid()
ioctl$FITRIM(r3, 0xc0185879, &(0x7f00000007c0)={0x10000, 0x58a, 0x5})
timer_settime(0x0, 0x0, &(0x7f0000000000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
tkill(r4, 0x14)
r5 = socket$netlink(0x10, 0x3, 0x0)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_ULP(r6, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r6, 0x11a, 0x1, &(0x7f0000000440)=@gcm_128={{0x303}, "e453f079df21d540", "1ec2d524d78682576ec2d9e13dad1018", "993161e3", "be0692db0b429ee8"}, 0x28)
write$binfmt_script(r6, &(0x7f0000001300), 0x8f)
setsockopt$inet6_tcp_TCP_REPAIR(r6, 0x6, 0x19, &(0x7f00000007c0), 0x4)
r7 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r8=>0x0})
sendmsg$nl_route(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000a40)=ANY=[@ANYBLOB="2c00000013000500000000000000000007000000", @ANYRES32=r8, @ANYBLOB="00000000000000000c001a800800108004000780a9c937b4a3f7d7392cab54fbaa76a735139685c619d3e8933304b65b6370d32cb2c6bdb0340a9db80ad162ed4ed018a9639d5658115920b6c7902b79f2af8d8a27b911d32dfbd4ab8d8ee985612955a4c4dad025970f19eefbfcf62801f3e7aa6b6425a438b2b88e0e2e32f6c1ffd38331e71ed67bde79365af2d950633d4c1b7978fa69e542f0b27796a878f744fe7eef69a4a5f8ee512f1d950a8cdd2c8e283382dc44d20a918cdd04c6"], 0x2c}}, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$IEEE802154_LLSEC_DEL_KEY(0xffffffffffffffff, 0x0, 0x0)

8.716558911s ago: executing program 2 (id=1257):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000300)={'wlan1\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_CQM(r0, &(0x7f0000000200)={0x0, 0xe, &(0x7f0000000280)={&(0x7f00000002c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000003f00000008000300", @ANYRES32=r1, @ANYBLOB="18005e800800020000000000080001"], 0x34}}, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
getpgrp(0x0)
wait4(0x0, &(0x7f0000000100), 0x4, &(0x7f0000000480))
socket(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@bloom_filter={0x1e, 0x3, 0x80000000, 0x6, 0x100, 0xffffffffffffffff, 0xdc, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x3, 0x0, 0xe}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3f, 0xd, &(0x7f0000000240)=ANY=[], 0x0, 0x100, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x90)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x4, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000040)={0x50, 0x0, 0x0, {0x7, 0x1f}}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x19, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r3}, 0x10)
bpf$MAP_CREATE(0x2000000000000000, 0x0, 0x0)
r4 = getpid()
sched_setscheduler(r4, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)

8.705897077s ago: executing program 0 (id=1258):
ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0xc004743e, 0x0)
prlimit64(0x0, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x0, 0x0)
chdir(&(0x7f0000000240)='./file0\x00')
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='projid_map\x00')
pread64(r0, &(0x7f0000002100)=""/4116, 0x1014, 0x0)
r1 = creat(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
syz_mount_image$btrfs(&(0x7f0000005100), &(0x7f0000005140)='./file0\x00', 0x16, &(0x7f0000000080), 0x1, 0x5124, &(0x7f000000a2c0)="$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")
chdir(&(0x7f0000000240)='./file0\x00')
mkdirat(0xffffffffffffffff, 0x0, 0x0)
lsetxattr$system_posix_acl(0x0, &(0x7f0000002440)='system.posix_acl_default\x00', &(0x7f00000000c0)=ANY=[@ANYRES32=0xee01, @ANYRES8=r1, @ANYBLOB="02", @ANYBLOB="020000", @ANYRES32=0x0, @ANYBLOB='\b\x00', @ANYRES32=0x0, @ANYBLOB="d12400", @ANYRES32=0x0, @ANYBLOB="100000000000000020"], 0x5c, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6(0xa, 0x806, 0x0)
bind$inet6(r5, &(0x7f0000000100)={0xa, 0x4e23}, 0x1c)
listen(r5, 0x3)
socket$inet_dccp(0x2, 0x6, 0x0)
r6 = accept4(r5, 0x0, 0x0, 0x0)
sendmmsg(r6, &(0x7f0000001500), 0x588, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa}, 0x48)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r7, 0x29, 0x1b, &(0x7f0000000000)={@empty}, 0x20)

8.49058628s ago: executing program 4 (id=1259):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x3, &(0x7f0000000080)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffffb2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000400)='sched_switch\x00', r0}, 0x10)
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r1, &(0x7f0000000040)={0x2, 0x4e21, @empty}, 0x10)
connect$inet(r1, &(0x7f0000000140)={0x2, 0x4e21, @multicast2}, 0x10)
sendto(r1, &(0x7f0000000880)='%', 0x1, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f0000002640)=[{{0x0, 0xfffffffffffffeb4, &(0x7f0000002500)=[{&(0x7f0000000000)=""/49, 0x31}], 0x1}}], 0x3ffff95, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000240)=@abs, 0x6e)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0xd, 0xf, &(0x7f0000000080)=ANY=[@ANYRES32, @ANYRESHEX=0x0, @ANYRESOCT=r0], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
syz_init_net_socket$x25(0x9, 0x5, 0x0)
socket$kcm(0x29, 0x2, 0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(0xffffffffffffffff, 0x84, 0x1f, 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x5c831, 0xffffffffffffffff, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000380), 0x4000000004882, 0x0)
r3 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r3, 0x4010640d, &(0x7f0000000040)={0x1})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r4, &(0x7f0000000240), 0x0, 0x0, 0x0)
io_setup(0x1, &(0x7f00000004c0))
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYRESHEX=r2], &(0x7f00000000c0)='syzkaller\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x10}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000012c0)={&(0x7f0000000040)='kfree\x00', r5}, 0x10)
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f0000000440)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-cipher_null\x00'}, 0x58)
accept$alg(r6, 0x0, 0x0)
close_range(r6, 0xffffffffffffffff, 0x0)

8.125230201s ago: executing program 3 (id=1260):
ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0xc004743e, 0x0)
prlimit64(0x0, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x0, 0x0)
chdir(&(0x7f0000000240)='./file0\x00')
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='projid_map\x00')
pread64(r0, &(0x7f0000002100)=""/4116, 0x1014, 0x0)
r1 = creat(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
syz_mount_image$btrfs(&(0x7f0000005100), &(0x7f0000005140)='./file0\x00', 0x16, &(0x7f0000000080), 0x1, 0x5124, &(0x7f000000a2c0)="$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")
chdir(&(0x7f0000000240)='./file0\x00')
mkdirat(0xffffffffffffffff, 0x0, 0x0)
lsetxattr$system_posix_acl(0x0, &(0x7f0000002440)='system.posix_acl_default\x00', &(0x7f00000000c0)=ANY=[@ANYRES32=0xee01, @ANYRES8=r1, @ANYBLOB="02", @ANYBLOB="020000", @ANYRES32=0x0, @ANYBLOB='\b\x00', @ANYRES32=0x0, @ANYBLOB="d12400", @ANYRES32=0x0, @ANYBLOB="100000000000000020"], 0x5c, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$inet6(0xa, 0x806, 0x0)
bind$inet6(r5, &(0x7f0000000100)={0xa, 0x4e23}, 0x1c)
listen(r5, 0x3)
socket$inet_dccp(0x2, 0x6, 0x0)
r6 = accept4(r5, 0x0, 0x0, 0x0)
sendmmsg(r6, &(0x7f0000001500), 0x588, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xa}, 0x48)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r7, 0x29, 0x1b, &(0x7f0000000000)={@empty}, 0x20)

7.816958378s ago: executing program 4 (id=1261):
r0 = syz_open_procfs(0x0, &(0x7f0000000080)='net/igmp\x00')
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r0, 0x84, 0x17, 0x0, 0x0)
preadv(r0, 0x0, 0x0, 0x359, 0x0)
setsockopt$RDS_RECVERR(r0, 0x114, 0x5, &(0x7f0000000040)=0x1, 0x4)
socket$vsock_stream(0x28, 0x1, 0x0)
r1 = memfd_create(&(0x7f0000000180)='-B\xd5NI\xc5j\x9appp\xf0\b\x84\xa2m\x00\v\x18\x004\xa6Ey\xdb\xd1\xa7\xb1S\xf1:)\x00\xca\xd7Uw\x00\xbc\xfa2\xb3\xbb\x8d\xac\xacva}knh#\xcf)\x0f\xc8\xe0:\x9cc\x10d\xee\xa9\x8b\x066\xb8G c\xe1$\xff\x97k\xde\xc5\xe96\xddU)\xc98M\xe6\xfb\b\x00n=\x7f=\xcdJx\xaa\x8f~\xb90a\xa9\xb2\x04K\x98\x93=\xabQ\xf7\x05\x1d\xa1\xce\x8b\x19\xea\xef\xe3', 0x0)
r2 = dup(r1)
r3 = fanotify_init(0x8, 0x0)
fanotify_mark(r3, 0x1, 0x40000033, r2, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
socket$inet_smc(0x2b, 0x1, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
poll(&(0x7f0000003600)=[{}], 0x1, 0x0)
r7 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$SOCK_DIAG_BY_FAMILY(r7, &(0x7f00000010c0)={0x0, 0x0, &(0x7f0000001080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="24000000140001e5635527510300000010", @ANYRES64, @ANYRESHEX=r0, @ANYBLOB], 0x24}}, 0x0)
r8 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000300)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd)
r9 = add_key(&(0x7f0000000240)='big_key\x00', &(0x7f0000000080)={'syz', 0x2}, &(0x7f0000000340)="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", 0x341, r8)
keyctl$read(0xb, r9, &(0x7f0000003640)=""/4103, 0x1007)
r10 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r10, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="240000001a00010000000000000000000005001b00110000ff00"/36], 0x24}, 0x1, 0x0, 0x0, 0x20040040}, 0x0)

6.546738324s ago: executing program 0 (id=1262):
syz_mount_image$hfs(&(0x7f0000000080), &(0x7f0000000240)='./file0\x00', 0x200000, &(0x7f0000000940)={[{@part={'part', 0x3d, 0x397}}, {@codepage={'codepage', 0x3d, 'default'}}, {@uid}, {@part={'part', 0x3d, 0x3}}, {@umask={'umask', 0x3d, 0x1}}, {@type={'type', 0x3d, "ad1c721c"}}, {@type={'type', 0x3d, "66dc3f23"}}, {@file_umask={'file_umask', 0x3d, 0x3}}, {@gid}, {@umask={'umask', 0x3d, 0x5}}, {@uid}]}, 0x4, 0x322, &(0x7f0000000600)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='cpuacct.usage_percpu_sys\x00', 0x275a, 0x0)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x0, 0x0)
dup(r1)
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f00000002c0)='./bus\x00', 0x3000001, &(0x7f0000000300)={[{@usrquota}, {@quota}, {@grpquota}, {@discard_size={'discard', 0x3d, 0x4}}, {@errors_continue}, {@usrquota}, {@integrity, 0x0}, {@nodiscard}, {@discard}, {@umask={'umask', 0x3d, 0x2}}, {@quota}, {@gid}, {@iocharset={'iocharset', 0x3d, 'macturkish'}}, {@resize}], [{@fsmagic={'fsmagic', 0x3d, 0x3ff}}, {@uid_gt={'uid>', 0xffffffffffffffff}}, {@fscontext={'fscontext', 0x3d, 'sysadm_u'}}]}, 0x1, 0x61ef, &(0x7f00000065c0)="$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")
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000840)={'#! ', './file1/file0'}, 0x11)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x20605)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r5, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue1\x00'})
writev(r5, &(0x7f0000000580)=[{&(0x7f0000000000)="1e8292", 0xfff6}], 0x2)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r0, 0x0)

6.2549156s ago: executing program 4 (id=1263):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000000300)=""/102400, 0x19000)
r1 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x0, 0x0)
mount$fuse(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='fd=', @ANYRESHEX, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYBLOB=',group_id=', @ANYRES64=r1])
read$FUSE(0xffffffffffffffff, &(0x7f000000c3c0)={0x2020, 0x0, 0x0, <r2=>0x0}, 0x2020)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'ipvlan1\x00', <r3=>0x0})
setsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f0000000300)={{{@in=@dev={0xac, 0x14, 0x14, 0x3c}, @in=@rand_addr=0x64010100, 0x4e23, 0x7, 0x4e23, 0x0, 0x2, 0x20, 0xa0, 0x33, r3, r2}, {0x200, 0x9, 0x80000001, 0x800, 0x401, 0x100000000001, 0x5584, 0x7fffffffffffffff}, {0xfffffffffffffffe, 0x2, 0xffffffff, 0x8}, 0xca, 0x6e6bbc, 0x1, 0x0, 0x1}, {{@in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x4d4, 0x6c}, 0xa, @in=@multicast2, 0x3505, 0x3, 0x1, 0x0, 0x8001, 0xb5, 0x10001}}, 0xe8)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000000240)={0x0, <r5=>0x0}, &(0x7f0000000280)=0x5)
setreuid(0x0, r5)
fstat(r1, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, <r6=>0x0})
r7 = getuid()
lstat(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, <r8=>0x0})
ioctl$DRM_IOCTL_GET_CLIENT(0xffffffffffffffff, 0xc0286405, &(0x7f0000000180)={0x9, 0x5ae9, {0xffffffffffffffff}, {<r9=>0xffffffffffffffff}, 0x0, 0x4})
r10 = getegid()
r11 = getegid()
setresgid(r11, 0x0, 0x0)
setfsgid(r11)
setresgid(r11, 0x0, 0x0)
r12 = semget(0x2, 0x0, 0x80)
r13 = getuid()
getgroups(0x6, &(0x7f0000000000)=[<r14=>0xee00, 0xee01, 0xee00, 0xee00, 0xee00, 0xee01])
ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000080)=<r15=>0x0)
newfstatat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000019300)={0x0, 0x0, 0x0, 0x0, 0x0, <r16=>0x0}, 0x4000)
semctl$IPC_SET(r12, 0x0, 0x1, &(0x7f0000000340)={{0x3, r13, r14, r15, r16, 0x121, 0x5}, 0x6, 0x2, 0x0, 0x0, 0x0, 0x0, 0xb0})
fsetxattr$system_posix_acl(r0, &(0x7f0000000000)='system.posix_acl_access\x00', &(0x7f0000000200)=ANY=[@ANYBLOB="02000000010002000000000002000600", @ANYRES32=0xee00, @ANYBLOB="02000700", @ANYRES32=r2, @ANYBLOB="02000600", @ANYRES32=r5, @ANYBLOB="02000000", @ANYRES32=r6, @ANYBLOB="5e57e46d", @ANYRES32=r7, @ANYBLOB="02000600", @ANYRES32=r8, @ANYBLOB="02000100", @ANYRES32=r9, @ANYBLOB="040006000000000008000500", @ANYRES32=r10, @ANYBLOB="08000100", @ANYRES32=r11, @ANYBLOB="08000200", @ANYRES32=0xee01, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=r16, @ANYBLOB="10000100000000002000010000000000"], 0x7c, 0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9)

5.90240011s ago: executing program 1 (id=1264):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$int_in(r2, 0x5452, &(0x7f0000000040)=0x8000)
splice(r0, 0x0, r3, 0x0, 0x7, 0x11)
writev(r1, &(0x7f0000000280)=[{&(0x7f0000000180)='Y', 0x1}], 0x1)

5.318698004s ago: executing program 3 (id=1265):
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000300)={'ip6_vti0\x00', &(0x7f0000000040)={'syztnl2\x00', <r0=>0x0, 0x29, 0x4, 0x1, 0x1, 0x2, @local, @private2={0xfc, 0x2, '\x00', 0x1}, 0x7, 0x58, 0x4, 0x100}})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000a00)=@getchain={0x3c, 0x66, 0x8, 0x70bd2a, 0x25dfdbfc, {0x0, 0x0, 0x0, r0, {0x9, 0xb}, {0x8, 0xfff4}, {0x8, 0x4}}, [{0x8, 0xb, 0x9}, {0x8, 0xb, 0xfffffff4}, {0x8, 0xb, 0x6}]}, 0x8}}, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x3, &(0x7f0000000800)=@framed, &(0x7f00000007c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
io_uring_setup(0x1695, &(0x7f0000000080)={0x0, 0xffe, 0x0, 0x0, 0x4})
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(0xffffffffffffffff, 0x10, &(0x7f0000000200)={0xf1, 0x0, 0x0, 0x0}, 0x20)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e21, @empty}, 0x10)
connect$inet(r2, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r2, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window, @mss, @window, @window], 0x20000000000000e4)
setsockopt$inet_tcp_TCP_REPAIR(r2, 0x6, 0x13, &(0x7f00000001c0), 0xc7)
setsockopt$inet_tcp_TCP_CONGESTION(r2, 0x6, 0xd, &(0x7f0000000100)='illinois\x00', 0x9)
sendto$inet(r2, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x0)
recvfrom$inet(r2, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r3, 0x0)
recvmmsg(r1, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x118}, {&(0x7f00000007c0)=""/154, 0x14}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})
ioctl$TUNGETDEVNETNS(r3, 0x54e3, 0x0)

5.074725282s ago: executing program 1 (id=1266):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10)
r3 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r3, &(0x7f00000001c0)=[{&(0x7f0000000200)="580000001500add427323b472545b4560a117fff0b0082001b59000d00ff0028925aa80020007b00090080000efffeffe809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee00000000000000000200000000", 0x58}], 0x1)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_AUTHENTICATE(r4, &(0x7f0000002940)={0x0, 0x0, &(0x7f0000002900)={&(0x7f0000000240)={0x1c, r0, 0x1, 0x0, 0x0, {{0xc}, {@val={0x8, 0x3, r5}, @void}}}, 0x1c}}, 0x0)

4.807407184s ago: executing program 1 (id=1267):
socket$unix(0x1, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000340)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000100)=ANY=[@ANYBLOB="120100004f92b90857152077ebb7000000010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000f80)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000e00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, &(0x7f0000001740)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000001600)={0x40, 0x19, 0x2, "6e9b"}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$hid(r0, 0x0, &(0x7f0000000b40)={0x2c, &(0x7f0000000000)=ANY=[@ANYBLOB="000080"], 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r4 = signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x7b, 0x0, &(0x7f0000000080))
setsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0xd, 0x0, 0x0)
iopl(0x3)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = gettid()
timer_create(0x2, &(0x7f000049efa0)={0x0, 0x7, 0x4, @tid=r5}, &(0x7f0000044000))
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x16}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0)
timer_settime(0x0, 0x1, &(0x7f0000000300)={{0x77359400}, {0x0, 0x989680}}, 0x0)
r6 = openat$cgroup_procs(r4, &(0x7f0000000040)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r6, &(0x7f00000000c0), 0x12)

4.56743457s ago: executing program 4 (id=1268):
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
syz_open_dev$dri(0x0, 0x0, 0x0)
syz_open_dev$dri(&(0x7f00000000c0), 0x1, 0x0)
ioctl$DRM_IOCTL_WAIT_VBLANK(0xffffffffffffffff, 0xc018643a, 0x0)
fspick(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x0)
r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1)
r1 = socket$alg(0x26, 0x5, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
ioctl$SNDRV_RAWMIDI_IOCTL_INFO(0xffffffffffffffff, 0xc0245720, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x10, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
madvise(&(0x7f0000870000/0x4000)=nil, 0x4000, 0x0)
r2 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0xf, &(0x7f0000018000)=0x9, 0x4)
getsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000080)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @rand_addr=0x64010101}]}, &(0x7f0000000100)=0x10)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, 0x0, 0x0)
ioctl$KVM_SET_MSRS(r0, 0x4008ae89, &(0x7f0000000180)=ANY=[@ANYBLOB="05000000107ecbd1020000000000000b000000000000007b0a0000000000000300000000000000910800000000000000000000000088927b5ea48f7ea00000393a000004000000ae08000000000000020000000000000000"])
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(r3, 0x40505330, &(0x7f0000000100)={{0x0, 0x1}, {0xe}, 0x0, 0x6})

4.114118963s ago: executing program 2 (id=1269):
r0 = bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f0000000140), 0x4)
preadv2(r0, &(0x7f0000000180)=[{&(0x7f0000000280)=""/245, 0xf5}, {&(0x7f0000000bc0)=""/4096, 0x1000}, {&(0x7f00000005c0)=""/231, 0xe7}], 0x3, 0x7, 0xffffffff, 0x12)
r1 = openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000000), 0x400000, 0x0)
mkdirat(r1, &(0x7f0000000100)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r3 = dup(r2)
write$FUSE_BMAP(r3, &(0x7f0000000100)={0x18}, 0x18)
ioctl$USBDEVFS_DISCONNECT_CLAIM(0xffffffffffffffff, 0x8108551b, &(0x7f0000000380)={0x0, 0x0, "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"})
r4 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_TRY_FMT(r4, 0xc0d05640, &(0x7f0000000040)={0x4, @vbi})
r5 = socket$nl_route(0x10, 0x3, 0x0)
r6 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r6, 0x8933, &(0x7f00000011c0)={'vxcan0\x00', <r7=>0x0})
bind$can_j1939(r6, &(0x7f0000001200)={0x1d, r7}, 0x18)
connect$can_j1939(r6, &(0x7f0000000080)={0x1d, r7}, 0x18)
writev(r6, &(0x7f0000000240)=[{&(0x7f0000000000)='h', 0xfdef}], 0x1)
setsockopt$SO_J1939_FILTER(r6, 0x6b, 0x1, &(0x7f0000000700)=[{0x2, 0x3, {}, {}, 0x0, 0xfd}, {0x0, 0x0, {0x1}}], 0x40)
ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f0000000240)={'vxcan0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000002c0)=@getchain={0x24, 0x11, 0x839, 0x0, 0x0, {0x0, 0x0, 0x0, r8}}, 0x24}}, 0x0)

3.726273819s ago: executing program 2 (id=1270):
socket$nl_route(0x10, 0x3, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7ffffdbf}]})
setregid(0xffffffffffffffff, 0x0)
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000140), 0x80000, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000180)=0x8)

3.724726262s ago: executing program 3 (id=1271):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x9)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x0, 0x0, 0x0, 0x0, 0x21, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000300)={0x0, 0x0, 0x0, &(0x7f0000000380), 0x0, r1, 0x0, 0xa0028000}, 0x38)
add_key$user(0x0, &(0x7f0000000440), 0x0, 0x0, 0xfffffffffffffffd)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.current\x00', 0x275a, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='sys_exit\x00', r3}, 0x10)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000c00), 0x4000, 0x0)
ioctl$TUNSETOFFLOAD(r4, 0xc004743e, 0x20001400)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="1503"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x67000000}, 0x90)
ioctl$TUNSETOFFLOAD(r4, 0x4010744d, 0x20000000)
syz_mount_image$nilfs2(&(0x7f0000000ec0), &(0x7f0000000100)='./file1\x00', 0x200845c, &(0x7f0000000140)=ANY=[@ANYRES8=0x0, @ANYRES8, @ANYRESOCT, @ANYRESHEX=0x0, @ANYRESDEC, @ANYRESOCT, @ANYRES32, @ANYRES16, @ANYRESHEX=0x0], 0x1, 0xf59, &(0x7f0000000f00)="$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")
ioctl$SIOCNRDECOBS(0xffffffffffffffff, 0x89e2)
r5 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r5, &(0x7f0000000880)=""/150, 0x96)
sendmsg$NFT_BATCH(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a3c0000001200000000000000020000000900020073797a310000000008000440000000000900010073797a30000000000800064000000000140000001100010000000000000000000000000aa0d900d889424a33aea7e2d9d592e797fef051922c6b74ad702265c8fa2129401c8cd10f492f62cccbb6e969760b5ff66016b798b0b104951c192d364f524e1f984d8d55c9201e258d79e18d1226b696dea9fca309"], 0x64}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000240)={0x0, 0x68, &(0x7f0000000000)={&(0x7f0000001940)=ANY=[@ANYBLOB="140000001000017400000000e80000000000000a50000000120a09020000000000000000020000000900020073797a3100000000080004400000000f0900010073797a30000000000800034000000001"], 0x64}}, 0x0)
openat$nci(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000000480)='./file0\x00', &(0x7f0000000280), 0x0)
syz_io_uring_setup(0x5214, &(0x7f0000000140)={0x0, 0x53af, 0x40, 0x0, 0xffffffff}, 0x0, &(0x7f0000000040))
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
socket$alg(0x26, 0x5, 0x0)
openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(0xffffffffffffffff, 0x0, 0x4004884)

3.58166046s ago: executing program 2 (id=1272):
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000000)={'sit0\x00', &(0x7f00000002c0)={'syztnl1\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x31, 0x4, 0x0, 0x0, 0xc4, 0x0, 0x0, 0x0, 0x29, 0x0, @broadcast, @remote, {[@timestamp={0x44, 0x18, 0x0, 0x0, 0x9, [0x401, 0x5, 0x0, 0x1, 0x4]}, @timestamp_prespec={0x44, 0x3c, 0xc0, 0x3, 0x0, [{@private=0xa010100}, {@multicast1, 0x40005}, {@remote, 0x8}, {@dev={0xac, 0x14, 0x14, 0x32}, 0x659}, {@broadcast, 0x9}, {@multicast1, 0xffd200}, {@private=0xa010100}]}, @timestamp_prespec={0x44, 0x34, 0x0, 0x3, 0x8, [{@dev}, {@remote}, {@multicast2}, {@private=0xa010101}, {@rand_addr=0x64010101}, {@multicast2}]}, @noop, @noop, @lsrr={0x83, 0xf, 0xdc, [@private=0xa010102, @rand_addr=0x64010102, @multicast1]}, @rr={0x7, 0x17, 0x0, [@dev, @remote, @multicast1, @private=0xa010102, @remote]}]}}}}})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000004, 0x28011, r2, 0x0)
r3 = dup(r1)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000051d8d984b3c04f3d36c38b1475558229eae2727100000000000000ff001ccf5d3bb12befca724b56fd08e0261690c852b07944a7c084e284fed9480e5281f8e09005d0fc4d251a4f3c0cbcb9c80ea7388c226aedff9f48fd5a6efff56d9a36cb492f79f3f065fa552eed0a5ba3550d80"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000200)='sched_switch\x00'}, 0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
sched_setscheduler(r5, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f00000bd000), 0x318, 0x0)
openat$ttyprintk(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="14000000246eb20e15faa611"], 0x14}}, 0x0)
r8 = getpid()
r9 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0)
write$cgroup_pid(r9, &(0x7f0000000000)=r8, 0x12)
ioctl$EXT4_IOC_SWAP_BOOT(r3, 0x6611)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0xd000})

3.53054474s ago: executing program 4 (id=1273):
r0 = socket$alg(0x26, 0x5, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./bus\x00', 0x21a400e, &(0x7f0000000280)={[{@journal_checksum}, {@orlov}, {@data_err_ignore}, {@nolazytime}, {@init_itable_val={'init_itable', 0x3d, 0x4}}, {@acl}]}, 0x1, 0x42f, &(0x7f0000000400)="$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")
r1 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000240)='blkio.throttle.io_serviced\x00', 0x275a, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuset.effective_cpus\x00', 0x275a, 0x0)
ftruncate(r2, 0x2000009)
write$cgroup_int(r1, &(0x7f00000000c0), 0x12)
write$binfmt_script(r2, &(0x7f0000000140), 0xfcb8)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0x40305829, &(0x7f0000000000)={0x17c04, 0xffffffffffffffff, 0x0, 0x100000001})
ioctl$EXT4_IOC_MOVE_EXT(r1, 0x40305829, &(0x7f00000000c0)={0x17c04, 0xffffffffffffffff, 0x3efc, 0xfffffffe})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080))
r3 = socket$netlink(0x10, 0x3, 0x0)
unshare(0x22020600)
r4 = syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/mnt\x00')
syz_mount_image$btrfs(&(0x7f00000055c0), &(0x7f0000005600)='./file0\x00', 0x0, &(0x7f0000000040)={[{@noacl}]}, 0x1, 0x5599, &(0x7f0000005680)="$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")
mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000100), 0xfecc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r6, 0x0)
r7 = socket(0xa, 0x6, 0x0)
getsockopt$inet6_mreq(r7, 0x10d, 0xc3, 0x0, &(0x7f0000000080))
setns(r4, 0x0)
close_range(r3, 0xffffffffffffffff, 0x0)
bind$alg(r0, &(0x7f0000000180)={0x26, 'hash\x00', 0x0, 0x0, 'cmac(aes-generic)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000003c0)="9f908745ba311ad4ac6e05d137882535", 0x10)
r8 = accept(r0, 0x0, 0x0)
r9 = syz_socket_connect_nvme_tcp()
getsockopt$IP_SET_OP_GET_BYINDEX(r9, 0x1, 0x53, &(0x7f0000000000)={0x7, 0x7, 0x4}, &(0x7f0000000100)=0x28)
sendmsg$TIPC_NL_NAME_TABLE_GET(r8, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000b80)=ANY=[], 0x280}}, 0x0)

654.891905ms ago: executing program 0 (id=1274):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
r1 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c)
listen(r1, 0x101)
r2 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r2, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)
connect$inet(r2, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
sendmmsg$inet(r2, &(0x7f0000003740)=[{{0x0, 0x0, &(0x7f0000001700)=[{&(0x7f0000000240)='B', 0xffc3}], 0x1}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000000100)="7185ee512e71", 0x6}], 0x1}}], 0x4, 0x0)
getsockopt$inet_sctp_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x10, &(0x7f00000005c0), &(0x7f0000000600)=0x8)

549.557154ms ago: executing program 1 (id=1275):
open(&(0x7f0000000100)='./file0\x00', 0x101bff, 0x0)
r0 = open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0)
fcntl$setsig(r0, 0xa, 0x21)
fcntl$setlease(r0, 0x400, 0x0)
r1 = open(&(0x7f00009e1000)='./file0\x00', 0x0, 0x0)
fcntl$setsig(r1, 0xa, 0x11)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
fcntl$setlease(r1, 0x400, 0x0)
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x161842, 0x0)
fcntl$getflags(r1, 0x401)
futex_waitv(&(0x7f0000001080)=[{0x3, &(0x7f0000001040)=0x3, 0x82}], 0x1, 0x0, &(0x7f0000001100), 0x0)

314.127568ms ago: executing program 3 (id=1276):
r0 = openat$iommufd(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$IOMMU_VFIO_IOAS$GET(r0, 0x3b88, &(0x7f0000000480)={0xc})
ioctl$IOMMU_TEST_OP_DESTROY_ACCESS_PAGES(r0, 0x3ba0, &(0x7f00000004c0)={0x48})
socket$inet_mptcp(0x2, 0x1, 0x106)
openat$cgroup_type(0xffffffffffffffff, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
ioctl$HIDIOCGRDESC(r1, 0x90044802, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@bloom_filter={0x1e, 0x0, 0x8, 0x5, 0x40, 0xffffffffffffffff, 0xffffffff, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x5}, 0x48)
ioctl$FS_IOC_READ_VERITY_METADATA(0xffffffffffffffff, 0xc0286687, &(0x7f0000000100)={0x0, 0x4, 0x0, 0x0})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
socket(0x0, 0x1, 0x2)
r2 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'lo\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000340)=@newqdisc={0x54, 0x24, 0xf0b, 0x0, 0x0, {0x60, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x4}}, @TCA_STAB={0x24, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x7f}}, {0x4}}]}]}, 0x54}}, 0x2c04c050)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10012, 0xffffffffffffffff, 0x0)
clock_gettime(0x2, &(0x7f0000000400))
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r4, 0x84, 0xb, &(0x7f0000000280)={0x0, 0x4}, 0xe)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000003c0)=[@in6={0xa, 0x0, 0x4, @loopback, 0x10000}]}, &(0x7f0000000180)=0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@nfs_export_on}]})
chdir(&(0x7f00000000c0)='./bus\x00')
r5 = creat(&(0x7f0000000440)='./file0\x00', 0x0)
open_by_handle_at(r5, &(0x7f0000000540)=ANY=[@ANYBLOB="0800000000d80000015ef54f984fd9a997a2642b69f33967f66b2181278d25f4106d2c196c4b3f3307da1ef26bf39cc33f92319b78accdb0671d7e36cfc96848cd30365f707780d70ca8784246dce4cd96d1c41cce"], 0x0)

212.798023ms ago: executing program 1 (id=1277):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10)
r3 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r3, &(0x7f00000001c0)=[{&(0x7f0000000200)="580000001500add427323b472545b4560a117fff0b0082001b59000d00ff0028925aa80020007b00090080000efffeffe809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee00000000000000000200000000", 0x58}], 0x1)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_AUTHENTICATE(r4, &(0x7f0000002940)={0x0, 0x0, &(0x7f0000002900)={&(0x7f0000000240)={0x1c, r0, 0x1, 0x0, 0x0, {{0xc}, {@val={0x8, 0x3, r5}, @void}}}, 0x1c}}, 0x0)

23.704304ms ago: executing program 4 (id=1278):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r0, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r0, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[<r1=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r0, 0xc01864c6, &(0x7f0000000300)={&(0x7f0000000280)=[r1], 0xf4240})

0s ago: executing program 1 (id=1279):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_CQM(r0, &(0x7f0000000200)={0x0, 0xe, &(0x7f0000000280)={&(0x7f00000002c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000003f00000008000300", @ANYRES32, @ANYBLOB="18005e800800020000000000080001"], 0x34}}, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
getpgrp(0x0)
wait4(0x0, &(0x7f0000000100), 0x4, &(0x7f0000000480))
socket(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@bloom_filter={0x1e, 0x3, 0x80000000, 0x6, 0x100, 0xffffffffffffffff, 0xdc, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x3, 0x0, 0xe}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3f, 0xd, &(0x7f0000000240)=ANY=[], 0x0, 0x100, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, 0x90)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x4, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000040)={0x50, 0x0, 0x0, {0x7, 0x1f}}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x19, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000500)='percpu_free_percpu\x00', r2}, 0x10)
bpf$MAP_CREATE(0x2000000000000000, 0x0, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)

kernel console output (not intermixed with test programs):

get+0x51/0x180
[  439.926215][    C1]  #1: ffffffff8e33ce38 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830
[  439.937201][    C1] 1 lock held by syz.1.889/8908:
[  439.942188][    C1]  #0: ffffffff8f60a948 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6eb/0xd00
[  439.951799][    C1] 1 lock held by syz.0.890/8915:
[  439.956760][    C1]  #0: ffffffff8f60a948 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6eb/0xd00
[  439.966261][    C1] 1 lock held by syz.0.890/8918:
[  439.971258][    C1]  #0: ffffffff8f60a948 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6eb/0xd00
[  439.980862][    C1] 
[  439.983204][    C1] =============================================
[  439.983204][    C1] 
[  440.058888][   T12] team0 (unregistering): Port device team_slave_1 removed
[  440.163314][   T12] team0 (unregistering): Port device team_slave_0 removed
[  440.379754][ T1246] ieee802154 phy0 wpan0: encryption failed: -22
[  440.386161][ T1246] ieee802154 phy1 wpan1: encryption failed: -22
[  441.018961][    C1] DEBUG: waiting rtnl_mutex for 741 jiffies.
[  441.025058][    C1] task:syz-executor    state:D stack:21728 pid:8794  tgid:8794  ppid:8779   flags:0x00004000
[  441.035460][    C1] Call Trace:
[  441.038900][    C1]  <TASK>
[  441.041941][    C1]  __schedule+0x1800/0x4a60
[  441.046798][    C1]  ? __pfx___schedule+0x10/0x10
[  441.051950][    C1]  ? __pfx_lock_release+0x10/0x10
[  441.057582][    C1]  ? __mutex_trylock_common+0x92/0x2e0
[  441.063607][    C1]  ? schedule+0x90/0x320
[  441.067956][    C1]  schedule+0x14b/0x320
[  441.072227][    C1]  schedule_preempt_disabled+0x13/0x30
[  441.077889][    C1]  __mutex_lock+0x6a4/0xd70
[  441.082495][    C1]  ? __mutex_lock+0x527/0xd70
[  441.087304][    C1]  ? rtnetlink_rcv_msg+0x6eb/0xd00
[  441.092472][    C1]  ? __pfx___mutex_lock+0x10/0x10
[  441.097546][    C1]  ? get_rtnl_holder+0x144/0x190
[  441.102610][    C1]  rtnetlink_rcv_msg+0x6eb/0xd00
[  441.107581][    C1]  ? rtnetlink_rcv_msg+0x1a7/0xd00
[  441.112728][    C1]  ? __lock_acquire+0x1384/0x2050
[  441.117784][    C1]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  441.123325][    C1]  netlink_rcv_skb+0x1e3/0x430
[  441.128232][    C1]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  441.133819][    C1]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  441.139486][    C1]  ? netlink_deliver_tap+0x2e/0x1b0
[  441.144740][    C1]  netlink_unicast+0x7f6/0x990
[  441.149571][    C1]  ? __pfx_netlink_unicast+0x10/0x10
[  441.154896][    C1]  ? __virt_addr_valid+0x183/0x530
[  441.160041][    C1]  ? __check_object_size+0x49c/0x900
[  441.165355][    C1]  ? bpf_lsm_netlink_send+0x9/0x10
[  441.170509][    C1]  netlink_sendmsg+0x8e4/0xcb0
[  441.175342][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  441.180659][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  441.186679][    C1]  ? aa_sock_msg_perm+0x91/0x160
[  441.191656][    C1]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  441.196992][    C1]  ? security_socket_sendmsg+0x87/0xb0
[  441.202551][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  441.207893][    C1]  __sock_sendmsg+0x221/0x270
[  441.212622][    C1]  __sys_sendto+0x3a4/0x4f0
[  441.217426][    C1]  ? __pfx___sys_sendto+0x10/0x10
[  441.222631][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  441.228677][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  441.235142][    C1]  __x64_sys_sendto+0xde/0x100
[  441.239951][    C1]  do_syscall_64+0xf3/0x230
[  441.244466][    C1]  ? clear_bhb_loop+0x35/0x90
[  441.249310][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  441.255259][    C1] RIP: 0033:0x7f312b777cac
[  441.259711][    C1] RSP: 002b:00007fff4c09fdd0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  441.268157][    C1] RAX: ffffffffffffffda RBX: 00007f312c434620 RCX: 00007f312b777cac
[  441.276163][    C1] RDX: 0000000000000068 RSI: 00007f312c434670 RDI: 0000000000000003
[  441.284250][    C1] RBP: 0000000000000000 R08: 00007fff4c09fe24 R09: 000000000000000c
[  441.292349][    C1] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  441.300362][    C1] R13: 0000000000000000 R14: 00007f312c434670 R15: 0000000000000000
[  441.308437][    C1]  </TASK>
[  441.311775][    C1] DEBUG: holding rtnl_mutex for 770 jiffies.
[  441.317791][    C1] task:kworker/u8:1    state:D stack:19512 pid:12    tgid:12    ppid:2      flags:0x00004000
[  441.328034][    C1] Workqueue: netns cleanup_net
[  441.332887][    C1] Call Trace:
[  441.336331][    C1]  <TASK>
[  441.339315][    C1]  __schedule+0x1800/0x4a60
[  441.343880][    C1]  ? __pfx___schedule+0x10/0x10
[  441.348798][    C1]  ? __pfx_lock_release+0x10/0x10
[  441.353846][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  441.359826][    C1]  ? kthread_data+0x52/0xd0
[  441.364373][    C1]  ? wq_worker_sleeping+0x66/0x240
[  441.369539][    C1]  ? schedule+0x90/0x320
[  441.373800][    C1]  schedule+0x14b/0x320
[  441.378009][    C1]  synchronize_rcu_expedited+0x684/0x830
[  441.383687][    C1]  ? __pfx_synchronize_rcu_expedited+0x10/0x10
[  441.389917][    C1]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[  441.395234][    C1]  ? __pfx___might_resched+0x10/0x10
[  441.400582][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  441.406778][    C1]  ? __pfx_autoremove_wake_function+0x10/0x10
[  441.412889][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  441.419492][    C1]  synchronize_rcu+0x11b/0x360
[  441.424367][    C1]  ? __pfx_synchronize_rcu+0x10/0x10
[  441.429736][    C1]  lockdep_unregister_key+0x4b7/0x540
[  441.435182][    C1]  ? __pfx_lockdep_unregister_key+0x10/0x10
[  441.441133][    C1]  ? rcu_is_watching+0x15/0xb0
[  441.445964][    C1]  ? qdisc_reset+0x3bf/0x5b0
[  441.450624][    C1]  __qdisc_destroy+0x165/0x410
[  441.455515][    C1]  dev_shutdown+0x9b/0x450
[  441.459963][    C1]  unregister_netdevice_many_notify+0x97b/0x1c40
[  441.466331][    C1]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  441.473230][    C1]  ? unregister_netdevice_queue+0x26b/0x370
[  441.479167][    C1]  ? batadv_softif_destroy_netlink+0x1e3/0x270
[  441.485350][    C1]  default_device_exit_batch+0xa0f/0xa90
[  441.491041][    C1]  ? __pfx___might_resched+0x10/0x10
[  441.496388][    C1]  ? __pfx_default_device_exit_batch+0x10/0x10
[  441.503403][    C1]  ? cfg802154_pernet_exit+0xc3/0xe0
[  441.508742][    C1]  ? __pfx_default_device_exit_batch+0x10/0x10
[  441.514921][    C1]  cleanup_net+0x89d/0xcc0
[  441.519398][    C1]  ? __pfx_cleanup_net+0x10/0x10
[  441.524348][    C1]  ? process_scheduled_works+0x945/0x1830
[  441.530214][    C1]  process_scheduled_works+0xa2c/0x1830
[  441.535825][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  441.541851][    C1]  ? assign_work+0x364/0x3d0
[  441.546473][    C1]  worker_thread+0x86d/0xd40
[  441.551320][    C1]  ? __kthread_parkme+0x169/0x1d0
[  441.556386][    C1]  ? __pfx_worker_thread+0x10/0x10
[  441.561558][    C1]  kthread+0x2f0/0x390
[  441.565664][    C1]  ? __pfx_worker_thread+0x10/0x10
[  441.570807][    C1]  ? __pfx_kthread+0x10/0x10
[  441.575438][    C1]  ret_from_fork+0x4b/0x80
[  441.579931][    C1]  ? __pfx_kthread+0x10/0x10
[  441.584525][    C1]  ret_from_fork_asm+0x1a/0x30
[  441.589340][    C1]  </TASK>
[  441.592357][    C1] DEBUG: waiting rtnl_mutex for 775 jiffies.
[  441.598340][    C1] task:kworker/0:2     state:D stack:22160 pid:929   tgid:929   ppid:2      flags:0x00004000
[  441.608543][    C1] Workqueue: events linkwatch_event
[  441.613759][    C1] Call Trace:
[  441.617049][    C1]  <TASK>
[  441.619998][    C1]  __schedule+0x1800/0x4a60
[  441.624526][    C1]  ? __pfx___schedule+0x10/0x10
[  441.629412][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  441.635474][    C1]  ? __pfx_lock_release+0x10/0x10
[  441.640557][    C1]  ? kick_pool+0x45c/0x620
[  441.645009][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  441.650248][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[  441.655767][    C1]  ? schedule+0x90/0x320
[  441.660036][    C1]  schedule+0x14b/0x320
[  441.664276][    C1]  schedule_preempt_disabled+0x13/0x30
[  441.670405][    C1]  __mutex_lock+0x6a4/0xd70
[  441.674976][    C1]  ? __mutex_lock+0x527/0xd70
[  441.679686][    C1]  ? linkwatch_event+0xe/0x60
[  441.684367][    C1]  ? __pfx___mutex_lock+0x10/0x10
[  441.689538][    C1]  ? get_rtnl_holder+0x144/0x190
[  441.694485][    C1]  ? process_scheduled_works+0x945/0x1830
[  441.700252][    C1]  linkwatch_event+0xe/0x60
[  441.704766][    C1]  process_scheduled_works+0xa2c/0x1830
[  441.710402][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  441.716414][    C1]  ? assign_work+0x364/0x3d0
[  441.721045][    C1]  worker_thread+0x86d/0xd40
[  441.725667][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  441.731588][    C1]  ? __kthread_parkme+0x169/0x1d0
[  441.736640][    C1]  ? __pfx_worker_thread+0x10/0x10
[  441.741804][    C1]  kthread+0x2f0/0x390
[  441.745906][    C1]  ? __pfx_worker_thread+0x10/0x10
[  441.751049][    C1]  ? __pfx_kthread+0x10/0x10
[  441.755659][    C1]  ret_from_fork+0x4b/0x80
[  441.760108][    C1]  ? __pfx_kthread+0x10/0x10
[  441.764698][    C1]  ret_from_fork_asm+0x1a/0x30
[  441.769702][    C1]  </TASK>
[  441.772724][    C1] 
[  441.772724][    C1] Showing all locks held in the system:
[  441.780463][    C1] 5 locks held by kworker/u8:1/12:
[  441.785582][    C1]  #0: ffff888015edd948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  441.796557][    C1]  #1: ffffc90000117d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  441.807172][    C1]  #2: ffffffff8f5fddd0 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0
[  441.816631][    C1]  #3: ffffffff8f60a948 (rtnl_mutex){+.+.}-{3:3}, at: default_device_exit_batch+0xe9/0xa90
[  441.826714][    C1]  #4: ffffffff8e33ce38 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x381/0x830
[  441.837696][    C1] 3 locks held by kworker/u8:3/53:
[  441.843035][    C1] 3 locks held by kworker/0:2/929:
[  441.848169][    C1]  #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  441.859187][    C1]  #1: ffffc9000404fd00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  441.870203][    C1]  #2: ffffffff8f60a948 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60
[  441.879234][    C1] 5 locks held by kworker/u8:6/2470:
[  441.884528][    C1] 2 locks held by getty/4861:
[  441.889234][    C1]  #0: ffff88802aa7f0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  441.899306][    C1]  #1: ffffc900031332f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10
[  441.909815][    C1] 1 lock held by syz-executor/8794:
[  441.915045][    C1]  #0: ffffffff8f60a948 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6eb/0xd00
[  441.924534][    C1] 2 locks held by syz.2.886/8902:
[  441.929631][    C1]  #0: ffff88807a300208 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: sock_close+0x90/0x240
[  441.940146][    C1]  #1: ffffffff8f60a948 (rtnl_mutex){+.+.}-{3:3}, at: raw_release+0x1b8/0x8b0
[  441.949118][    C1] 1 lock held by syz.4.887/8905:
[  441.954057][    C1] 1 lock held by syz.1.889/8908:
[  441.959044][    C1]  #0: ffffffff8f60a948 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6eb/0xd00
[  441.968558][    C1] 1 lock held by syz.0.890/8915:
[  441.973592][    C1]  #0: ffffffff8f60a948 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6eb/0xd00
[  441.983056][    C1] 1 lock held by syz.0.890/8918:
[  441.988003][    C1]  #0: ffffffff8f60a948 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6eb/0xd00
[  441.997461][    C1] 
[  441.999801][    C1] =============================================
[  441.999801][    C1] 
[  442.219373][ T8918] netlink: 'syz.0.890': attribute type 7 has an invalid length.
[  442.227157][ T8918] netlink: 'syz.0.890': attribute type 8 has an invalid length.
[  442.278944][ T8918] netlink: 'syz.0.890': attribute type 13 has an invalid length.
[  442.300595][ T8794] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  442.336650][ T8794] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  442.346714][ T7155] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  442.364716][ T8931] warning: `syz.1.892' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  442.517276][ T8933] netlink: 8 bytes leftover after parsing attributes in process `syz.4.893'.
[  442.525111][ T8794] team0: Port device team_slave_0 added
[  442.553134][ T8794] team0: Port device team_slave_1 added
[  442.827848][ T8794] batman_adv: batadv0: Adding interface: batadv_slave_0
[  443.128357][ T8794] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  443.615685][ T8794] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  443.693448][ T8794] batman_adv: batadv0: Adding interface: batadv_slave_1
[  443.706386][ T8794] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  443.736316][ T8794] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  444.631575][ T8951] loop0: detected capacity change from 0 to 64
[  444.740218][ T8794] hsr_slave_0: entered promiscuous mode
[  444.805528][ T8794] hsr_slave_1: entered promiscuous mode
[  444.849688][ T8794] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  444.879817][ T8794] Cannot create hsr debugfs directory
[  444.910598][ T8949] netlink: 4 bytes leftover after parsing attributes in process `syz.4.899'.
[  445.892962][ T8963] netlink: 'syz.4.903': attribute type 2 has an invalid length.
[  446.150160][ T8794] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  446.188917][ T8794] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  446.193079][ T8968] loop4: detected capacity change from 0 to 64
[  446.213736][ T8794] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  446.250430][ T8794] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  446.483972][ T8970] netlink: 'syz.2.904': attribute type 7 has an invalid length.
[  446.973387][ T8970] netlink: 'syz.2.904': attribute type 8 has an invalid length.
[  447.098740][ T8970] netlink: 'syz.2.904': attribute type 13 has an invalid length.
[  447.785363][ T8794] 8021q: adding VLAN 0 to HW filter on device bond0
[  448.342027][ T8794] 8021q: adding VLAN 0 to HW filter on device team0
[  448.415747][ T5158] bridge0: port 1(bridge_slave_0) entered blocking state
[  448.423054][ T5158] bridge0: port 1(bridge_slave_0) entered forwarding state
[  448.555080][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[  448.562523][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[  448.636204][ T8990] FAULT_INJECTION: forcing a failure.
[  448.636204][ T8990] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  448.670835][ T8990] CPU: 1 UID: 0 PID: 8990 Comm: syz.0.911 Not tainted 6.10.0-next-20240719-syzkaller #0
[  448.680644][ T8990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  448.690835][ T8990] Call Trace:
[  448.694146][ T8990]  <TASK>
[  448.697112][ T8990]  dump_stack_lvl+0x241/0x360
[  448.701844][ T8990]  ? __pfx_dump_stack_lvl+0x10/0x10
[  448.707275][ T8990]  ? __pfx__printk+0x10/0x10
[  448.711927][ T8990]  ? __pfx_lock_release+0x10/0x10
[  448.717013][ T8990]  should_fail_ex+0x3b0/0x4e0
[  448.721746][ T8990]  _copy_from_iter+0x1f6/0x1960
[  448.726646][ T8990]  ? __virt_addr_valid+0x183/0x530
[  448.731799][ T8990]  ? __pfx_lock_release+0x10/0x10
[  448.736909][ T8990]  ? __alloc_skb+0x28f/0x440
[  448.741546][ T8990]  ? __pfx__copy_from_iter+0x10/0x10
[  448.746991][ T8990]  ? __virt_addr_valid+0x183/0x530
[  448.752497][ T8990]  ? __virt_addr_valid+0x183/0x530
[  448.757690][ T8990]  ? __virt_addr_valid+0x45f/0x530
[  448.762848][ T8990]  ? __check_object_size+0x49c/0x900
[  448.768196][ T8990]  netlink_sendmsg+0x73d/0xcb0
[  448.773012][ T8990]  ? __pfx_netlink_sendmsg+0x10/0x10
[  448.778313][ T8990]  ? __import_iovec+0x536/0x820
[  448.783180][ T8990]  ? aa_sock_msg_perm+0x91/0x160
[  448.788142][ T8990]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  448.793436][ T8990]  ? security_socket_sendmsg+0x87/0xb0
[  448.798970][ T8990]  ? __pfx_netlink_sendmsg+0x10/0x10
[  448.804438][ T8990]  __sock_sendmsg+0x221/0x270
[  448.809143][ T8990]  ____sys_sendmsg+0x525/0x7d0
[  448.814047][ T8990]  ? __pfx_____sys_sendmsg+0x10/0x10
[  448.819363][ T8990]  __sys_sendmsg+0x2b0/0x3a0
[  448.823969][ T8990]  ? __pfx___sys_sendmsg+0x10/0x10
[  448.829182][ T8990]  ? vfs_write+0x7c4/0xc90
[  448.833652][ T8990]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  448.840040][ T8990]  ? do_syscall_64+0x100/0x230
[  448.844820][ T8990]  ? do_syscall_64+0xb6/0x230
[  448.849521][ T8990]  do_syscall_64+0xf3/0x230
[  448.854033][ T8990]  ? clear_bhb_loop+0x35/0x90
[  448.858756][ T8990]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  448.864697][ T8990] RIP: 0033:0x7fbf30975f19
[  448.869227][ T8990] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  448.889025][ T8990] RSP: 002b:00007fbf3167f048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  448.897556][ T8990] RAX: ffffffffffffffda RBX: 00007fbf30b05f60 RCX: 00007fbf30975f19
[  448.905630][ T8990] RDX: 0000000000000000 RSI: 0000000020000080 RDI: 0000000000000017
[  448.913624][ T8990] RBP: 00007fbf3167f0a0 R08: 0000000000000000 R09: 0000000000000000
[  448.921704][ T8990] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  448.929694][ T8990] R13: 000000000000000b R14: 00007fbf30b05f60 R15: 00007ffdee60e8d8
[  448.937694][ T8990]  </TASK>
[  448.974385][ T8794] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  449.005117][ T8794] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  449.037826][    C1] eth0: bad gso: type: 1, size: 1408
[  449.281119][ T9003] dccp_invalid_packet: P.type (REQUEST) not Data || [Data]Ack, while P.X == 0
[  449.448379][ T9003] loop1: detected capacity change from 0 to 1024
[  449.487298][ T9003] hfsplus: invalid extent btree flag
[  449.503723][ T9003] hfsplus: failed to load extents file
[  449.661307][ T9000] loop1: detected capacity change from 0 to 1024
[  449.671383][ T9012] loop2: detected capacity change from 0 to 64
[  449.681407][ T9000] EXT4-fs: Ignoring removed orlov option
[  449.696103][ T9000] EXT4-fs (loop1): Test dummy encryption mode enabled
[  449.701192][ T8794] 8021q: adding VLAN 0 to HW filter on device batadv0
[  449.727848][ T9000] EXT4-fs (loop1): stripe (7) is not aligned with cluster size (16), stripe is disabled
[  449.824027][ T9000] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  450.004076][ T8794] veth0_vlan: entered promiscuous mode
[  450.077758][ T8794] veth1_vlan: entered promiscuous mode
[  450.146452][ T9003] netlink: 16 bytes leftover after parsing attributes in process `syz.1.914'.
[  450.184320][ T9003] netlink: 8 bytes leftover after parsing attributes in process `syz.1.914'.
[  450.224196][ T9018] loop0: detected capacity change from 0 to 64
[  450.388913][ T9000] fscrypt: AES-256-XTS using implementation "xts-aes-aesni-avx"
[  450.407324][ T8794] veth0_macvtap: entered promiscuous mode
[  450.840955][ T8794] veth1_macvtap: entered promiscuous mode
[  450.963447][ T5102] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  451.011192][ T8794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  451.053549][ T8794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  451.104807][ T8794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  451.148582][ T8794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  451.184183][ T8794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  451.215227][ T8794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  451.235543][ T8794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  451.256913][ T8794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  451.285851][ T8794] batman_adv: batadv0: Interface activated: batadv_slave_0
[  451.340166][ T8794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  451.380353][ T8794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  451.419571][ T8794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  451.444769][ T8794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  451.475316][ T8794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  451.488730][ T5158] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[  451.503540][ T8794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  451.516055][ T8794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  451.537464][ T8794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  451.562917][ T8794] batman_adv: batadv0: Interface activated: batadv_slave_1
[  451.594175][ T8794] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  451.786726][ T8794] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  451.808966][ T5158] usb 2-1: config 0 has an invalid descriptor of length 169, skipping remainder of the config
[  452.015885][ T8794] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  452.043303][ T8794] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  454.485564][ T5158] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 2
[  454.805140][ T5158] usb 2-1: string descriptor 0 read error: -71
[  454.828628][ T5158] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  454.882766][ T5158] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  455.772426][ T5158] usb 2-1: config 0 descriptor??
[  455.808199][ T5158] usb 2-1: can't set config #0, error -71
[  455.842631][ T5158] usb 2-1: USB disconnect, device number 15
[  456.090709][ T9045] FAULT_INJECTION: forcing a failure.
[  456.090709][ T9045] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  456.147655][ T9045] CPU: 0 UID: 0 PID: 9045 Comm: syz.2.924 Not tainted 6.10.0-next-20240719-syzkaller #0
[  456.157546][ T9045] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  456.167900][ T9045] Call Trace:
[  456.171287][ T9045]  <TASK>
[  456.174259][ T9045]  dump_stack_lvl+0x241/0x360
[  456.179067][ T9045]  ? __pfx_dump_stack_lvl+0x10/0x10
[  456.184738][ T9045]  ? __pfx__printk+0x10/0x10
[  456.189360][ T9045]  ? __pfx_lock_release+0x10/0x10
[  456.194418][ T9045]  should_fail_ex+0x3b0/0x4e0
[  456.199113][ T9045]  _copy_from_iter+0x1f6/0x1960
[  456.204074][ T9045]  ? __virt_addr_valid+0x183/0x530
[  456.209283][ T9045]  ? __pfx_lock_release+0x10/0x10
[  456.214350][ T9045]  ? __alloc_skb+0x28f/0x440
[  456.219062][ T9045]  ? __pfx__copy_from_iter+0x10/0x10
[  456.224365][ T9045]  ? __virt_addr_valid+0x183/0x530
[  456.229526][ T9045]  ? __virt_addr_valid+0x183/0x530
[  456.234646][ T9045]  ? __virt_addr_valid+0x45f/0x530
[  456.239858][ T9045]  ? __check_object_size+0x49c/0x900
[  456.245160][ T9045]  netlink_sendmsg+0x73d/0xcb0
[  456.249964][ T9045]  ? __pfx_netlink_sendmsg+0x10/0x10
[  456.255290][ T9045]  ? __import_iovec+0x536/0x820
[  456.260159][ T9045]  ? aa_sock_msg_perm+0x91/0x160
[  456.265114][ T9045]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  456.270496][ T9045]  ? security_socket_sendmsg+0x87/0xb0
[  456.275978][ T9045]  ? __pfx_netlink_sendmsg+0x10/0x10
[  456.281363][ T9045]  __sock_sendmsg+0x221/0x270
[  456.286065][ T9045]  ____sys_sendmsg+0x525/0x7d0
[  456.290859][ T9045]  ? __pfx_____sys_sendmsg+0x10/0x10
[  456.296269][ T9045]  __sys_sendmsg+0x2b0/0x3a0
[  456.300887][ T9045]  ? __pfx___sys_sendmsg+0x10/0x10
[  456.306106][ T9045]  ? vfs_write+0x7c4/0xc90
[  456.310579][ T9045]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  456.316937][ T9045]  ? do_syscall_64+0x100/0x230
[  456.321725][ T9045]  ? do_syscall_64+0xb6/0x230
[  456.326414][ T9045]  do_syscall_64+0xf3/0x230
[  456.330934][ T9045]  ? clear_bhb_loop+0x35/0x90
[  456.335657][ T9045]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  456.341566][ T9045] RIP: 0033:0x7fc77c775f19
[  456.346005][ T9045] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  456.365628][ T9045] RSP: 002b:00007fc77d4ed048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  456.374456][ T9045] RAX: ffffffffffffffda RBX: 00007fc77c905f60 RCX: 00007fc77c775f19
[  456.382466][ T9045] RDX: 0000000000000000 RSI: 0000000020000300 RDI: 0000000000000003
[  456.390460][ T9045] RBP: 00007fc77d4ed0a0 R08: 0000000000000000 R09: 0000000000000000
[  456.398449][ T9045] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  456.406520][ T9045] R13: 000000000000000b R14: 00007fc77c905f60 R15: 00007ffc49107038
[  456.414525][ T9045]  </TASK>
[  456.417771][    C0] vkms_vblank_simulate: vblank timer overrun
[  456.525390][ T9047] 9pnet_fd: Insufficient options for proto=fd
[  456.543297][    C1] eth0: bad gso: type: 1, size: 1408
[  456.743781][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  456.767324][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  456.820177][ T9052] netlink: 'syz.1.927': attribute type 2 has an invalid length.
[  456.823808][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  456.843586][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  457.045288][ T9059] loop1: detected capacity change from 0 to 64
[  457.309023][ T9061] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  457.385450][ T9061] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  458.868627][ T5161] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[  459.390782][ T5161] usb 5-1: config 0 has an invalid descriptor of length 169, skipping remainder of the config
[  459.410115][ T5161] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 2
[  459.438241][ T5161] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  459.460037][ T5161] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  459.483668][ T5161] usb 5-1: SerialNumber: syz
[  459.502772][ T5161] usb 5-1: config 0 descriptor??
[  460.846720][ T5156] usb 5-1: USB disconnect, device number 22
[  460.944354][    C1] eth0: bad gso: type: 1, size: 1408
[  460.972758][ T9087] batadv0: entered promiscuous mode
[  460.986391][ T9087] veth0: entered promiscuous mode
[  461.045486][ T9091] loop1: detected capacity change from 0 to 64
[  461.111496][ T9092] netlink: 'syz.0.933': attribute type 11 has an invalid length.
[  463.652775][ T9123] loop0: detected capacity change from 0 to 64
[  466.343000][ T5105] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[  466.358725][  T929] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  467.120703][ T5105] usb 2-1: config 0 has an invalid descriptor of length 169, skipping remainder of the config
[  467.473710][ T9144] netlink: 'syz.2.951': attribute type 11 has an invalid length.
[  467.484064][ T5105] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 2
[  467.500966][  T929] usb 4-1: config 0 has an invalid descriptor of length 169, skipping remainder of the config
[  467.501094][ T5105] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  467.529041][ T5105] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  467.538085][ T5105] usb 2-1: SerialNumber: syz
[  467.571928][  T929] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 2
[  467.572884][ T5105] usb 2-1: config 0 descriptor??
[  467.723596][  T929] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  467.905356][  T929] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  467.926650][ T9131] loop4: detected capacity change from 0 to 32768
[  467.981121][ T9131] xfs: Unknown parameter 'biosize'
[  467.986881][  T929] usb 4-1: SerialNumber: syz
[  468.126816][  T929] usb 4-1: config 0 descriptor??
[  470.430106][ T5105] usb 4-1: USB disconnect, device number 11
[  470.526501][ T5156] usb 2-1: USB disconnect, device number 16
[  470.830734][ T9172] loop4: detected capacity change from 0 to 64
[  471.078767][ T9177] loop1: detected capacity change from 0 to 512
[  471.092340][ T9177] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  471.118771][ T9177] EXT4-fs (loop1): blocks per group (71) and clusters per group (32768) inconsistent
[  472.099522][    T8] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  472.108640][ T9186] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  472.137778][ T9186] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  472.328670][    T8] usb 4-1: device descriptor read/64, error -71
[  472.489905][ T9188] loop1: detected capacity change from 0 to 64
[  472.658878][    T8] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  472.724087][ T9188] hfs: unable to open extent tree
[  472.753914][ T9188] hfs: can't find a HFS filesystem on dev loop1
[  472.848755][    T8] usb 4-1: device descriptor read/64, error -71
[  473.142139][    T8] usb usb4-port1: attempt power cycle
[  473.443068][ T9201] loop2: detected capacity change from 0 to 32768
[  473.461083][ T9197] vivid-003: disconnect
[  473.555673][ T9201] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  473.671807][ T9197] loop1: detected capacity change from 0 to 764
[  473.699797][ T9197] iso9660: Unknown parameter '/dev/ptmx'
[  473.882257][    T8] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  473.927965][ T9196] vivid-003: reconnect
[  473.933829][    T8] usb 4-1: device descriptor read/8, error -71
[  474.890754][ T9201] XFS (loop2): Ending clean mount
[  474.904901][ T9213] fuse: Bad value for 'fd'
[  474.905542][ T9201] XFS (loop2): Quotacheck needed: Please wait.
[  475.054525][ T9201] XFS (loop2): Quotacheck: Done.
[  475.774399][ T9218] FAULT_INJECTION: forcing a failure.
[  475.774399][ T9218] name failslab, interval 1, probability 0, space 0, times 0
[  475.787203][ T9218] CPU: 0 UID: 0 PID: 9218 Comm: syz.2.964 Not tainted 6.10.0-next-20240719-syzkaller #0
[  475.797074][ T9218] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  475.807180][ T9218] Call Trace:
[  475.810505][ T9218]  <TASK>
[  475.813480][ T9218]  dump_stack_lvl+0x241/0x360
[  475.818296][ T9218]  ? __pfx_dump_stack_lvl+0x10/0x10
[  475.823634][ T9218]  ? __pfx__printk+0x10/0x10
[  475.828377][ T9218]  ? kmem_cache_alloc_noprof+0x44/0x2a0
[  475.833978][ T9218]  ? __pfx___might_resched+0x10/0x10
[  475.839408][ T9218]  should_fail_ex+0x3b0/0x4e0
[  475.844129][ T9218]  ? security_file_alloc+0x28/0x130
[  475.849377][ T9218]  should_failslab+0xac/0x100
[  475.854100][ T9218]  ? security_file_alloc+0x28/0x130
[  475.859341][ T9218]  kmem_cache_alloc_noprof+0x6c/0x2a0
[  475.864801][ T9218]  security_file_alloc+0x28/0x130
[  475.869869][ T9218]  init_file+0x99/0x200
[  475.874067][ T9218]  alloc_empty_file+0xb8/0x1d0
[  475.878880][ T9218]  path_openat+0x105/0x3470
[  475.883434][ T9218]  ? mark_lock+0x9a/0x360
[  475.887817][ T9218]  ? __pfx_stack_trace_save+0x10/0x10
[  475.893252][ T9218]  ? __lock_acquire+0x1384/0x2050
[  475.898351][ T9218]  ? __lock_acquire+0x1384/0x2050
[  475.903420][ T9218]  ? __pfx_path_openat+0x10/0x10
[  475.908428][ T9218]  do_filp_open+0x235/0x490
[  475.912984][ T9218]  ? __pfx_do_filp_open+0x10/0x10
[  475.918082][ T9218]  ? _raw_spin_unlock+0x28/0x50
[  475.923074][ T9218]  ? alloc_fd+0x5a1/0x640
[  475.927451][ T9218]  do_sys_openat2+0x13e/0x1d0
[  475.932171][ T9218]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  475.938195][ T9218]  ? __pfx_do_sys_openat2+0x10/0x10
[  475.943437][ T9218]  ? __fget_files+0x3f6/0x470
[  475.948173][ T9218]  __x64_sys_openat+0x247/0x2a0
[  475.953079][ T9218]  ? __pfx___x64_sys_openat+0x10/0x10
[  475.958500][ T9218]  ? do_syscall_64+0x100/0x230
[  475.963304][ T9218]  ? do_syscall_64+0xb6/0x230
[  475.968016][ T9218]  do_syscall_64+0xf3/0x230
[  475.972819][ T9218]  ? clear_bhb_loop+0x35/0x90
[  475.977572][ T9218]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  475.983702][ T9218] RIP: 0033:0x7fc77c775f19
[  475.988154][ T9218] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  476.007895][ T9218] RSP: 002b:00007fc77d4cc048 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[  476.016363][ T9218] RAX: ffffffffffffffda RBX: 00007fc77c906038 RCX: 00007fc77c775f19
[  476.024474][ T9218] RDX: 0000000000000000 RSI: 0000000020000000 RDI: ffffffffffffff9c
[  476.032501][ T9218] RBP: 00007fc77d4cc0a0 R08: 0000000000000000 R09: 0000000000000000
[  476.040606][ T9218] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  476.048711][ T9218] R13: 000000000000006e R14: 00007fc77c906038 R15: 00007ffc49107038
[  476.056761][ T9218]  </TASK>
[  476.073620][    T8] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[  476.728762][ T7155] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  476.762137][    T8] usb 4-1: device descriptor read/8, error -71
[  476.828635][ T5160] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[  476.891136][    T8] usb usb4-port1: unable to enumerate USB device
[  477.054498][ T5160] usb 5-1: config 0 has an invalid descriptor of length 169, skipping remainder of the config
[  477.085959][ T5160] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 2
[  477.126496][ T5160] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  477.175620][ T5160] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  477.198820][ T5160] usb 5-1: SerialNumber: syz
[  477.235859][ T5160] usb 5-1: config 0 descriptor??
[  477.662060][    T8] usb 5-1: USB disconnect, device number 23
[  477.935446][ T9222] loop1: detected capacity change from 0 to 32768
[  477.968918][ T9222] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.968 (9222)
[  477.989278][ T9224] loop3: detected capacity change from 0 to 32768
[  477.996762][ T9224] btrfs: Unknown parameter 'permit_directio'
[  478.006973][ T9222] BTRFS info (device loop1): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  478.027540][ T9222] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[  478.050987][ T9222] BTRFS info (device loop1): using free-space-tree
[  478.058850][   T48] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  478.121370][ T9227] loop2: detected capacity change from 0 to 32768
[  478.140217][ T9227] xfs: Unknown parameter 'biosize'
[  478.278759][   T48] usb 1-1: Using ep0 maxpacket: 32
[  478.297656][   T48] usb 1-1: config index 0 descriptor too short (expected 156, got 27)
[  478.307601][   T48] usb 1-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  478.351412][   T48] usb 1-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  478.383151][   T48] usb 1-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  478.451963][   T48] usb 1-1: config 0 interface 0 has no altsetting 0
[  478.485788][   T48] usb 1-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  478.495696][   T48] usb 1-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  478.519923][   T48] usb 1-1: Product: syz
[  478.529985][   T48] usb 1-1: Manufacturer: syz
[  478.537144][   T48] usb 1-1: SerialNumber: syz
[  478.586886][   T48] usb 1-1: config 0 descriptor??
[  478.595761][ T5102] BTRFS info (device loop1): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[  478.620678][   T48] ldusb 1-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  478.637232][   T48] ldusb 1-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  478.884045][    T8] usb 1-1: USB disconnect, device number 18
[  478.915211][    T8] ldusb 1-1:0.0: LD USB Device #0 now disconnected
[  479.268105][ T9265] loop4: detected capacity change from 0 to 64
[  479.323616][ T9263] netlink: 'syz.1.972': attribute type 2 has an invalid length.
[  479.415608][ T9267] bridge0: port 1(bridge_slave_0) entered disabled state
[  479.436842][ T9267] bridge0: entered allmulticast mode
[  479.501554][ T9269] vivid-000: disconnect
[  479.555300][ T9224] loop3: detected capacity change from 0 to 4096
[  479.568952][ T9267] loop2: detected capacity change from 0 to 764
[  479.582183][ T9224] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512).
[  479.595942][ T9267] iso9660: Unknown parameter '/dev/ptmx'
[  479.649656][ T9224] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  479.684305][ T9266] vivid-000: reconnect
[  479.691051][ T9224] ntfs3: loop3: Failed to load $Extend (-22).
[  479.718996][ T9224] ntfs3: loop3: Failed to initialize $Extend.
[  480.816624][ T9280] netlink: 8 bytes leftover after parsing attributes in process `syz.1.979'.
[  480.840383][    C1] eth0: bad gso: type: 1, size: 1408
[  480.946488][ T9280] netlink: 4 bytes leftover after parsing attributes in process `syz.1.979'.
[  481.308836][ T5156] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[  481.516672][ T5156] usb 3-1: config 0 has an invalid descriptor of length 169, skipping remainder of the config
[  481.533546][ T5156] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 2
[  481.724004][ T5156] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  481.749301][ T5156] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  481.757775][ T5156] usb 3-1: SerialNumber: syz
[  483.678780][ T5156] usb 3-1: config 0 descriptor??
[  484.080427][   T48] usb 3-1: USB disconnect, device number 19
[  484.167029][ T9307] loop3: detected capacity change from 0 to 256
[  484.184334][ T9307] exfat: Unknown parameter 'erÉš®øû{rors'
[  484.754313][ T9312] vivid-000: disconnect
[  484.840585][ T9312] loop2: detected capacity change from 0 to 764
[  484.855467][ T9312] iso9660: Unknown parameter '/dev/ptmx'
[  484.899543][ T9312] fuse: Bad value for 'fd'
[  484.931846][ T9311] vivid-000: reconnect
[  485.436071][ T9319] loop4: detected capacity change from 0 to 512
[  485.605098][ T9319] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  485.885876][ T9319] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #17: comm syz.4.990: iget: bad i_size value: -6917529027641081756
[  485.906165][ T9319] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.990: couldn't read orphan inode 17 (err -117)
[  485.951291][ T9319] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  485.988732][ T5156] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[  486.082445][ T9329] loop1: detected capacity change from 0 to 64
[  486.194328][ T5156] usb 3-1: config 0 has an invalid descriptor of length 169, skipping remainder of the config
[  486.217256][ T5156] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 2
[  486.419676][ T5156] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  486.445445][ T5156] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  486.466003][ T5156] usb 3-1: SerialNumber: syz
[  486.481565][ T5156] usb 3-1: config 0 descriptor??
[  486.718945][ T5160] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  486.933786][ T5160] usb 4-1: config 0 has an invalid descriptor of length 169, skipping remainder of the config
[  486.935050][ T9327] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 65: padding at end of block bitmap is not set
[  486.944618][ T5160] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 2
[  487.028277][ T5160] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  487.046116][ T5160] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  487.055628][ T5160] usb 4-1: SerialNumber: syz
[  487.063803][ T5160] usb 4-1: config 0 descriptor??
[  487.314651][ T5160] usb 3-1: USB disconnect, device number 20
[  487.385390][ T9348] __quota_error: 59 callbacks suppressed
[  487.385473][ T9348] Quota error (device loop4): write_blk: dquota write failed
[  487.399621][ T9348] Quota error (device loop4): qtree_write_dquot: Error -28 occurred while creating quota
[  487.412354][ T9348] EXT4-fs error (device loop4): ext4_acquire_dquot:6848: comm syz.4.990: Failed to acquire dquot type 0
[  487.615198][   T48] usb 4-1: USB disconnect, device number 16
[  487.882961][    C1] eth0: bad gso: type: 1, size: 1408
[  487.912879][ T5802] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  489.542257][ T9366] loop3: detected capacity change from 0 to 512
[  489.621896][ T9366] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  489.702359][ T9354] loop4: detected capacity change from 0 to 32768
[  489.709900][ T9354] xfs: Unknown parameter 'biosize'
[  489.869084][ T9372] FAULT_INJECTION: forcing a failure.
[  489.869084][ T9372] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  489.937500][ T9372] CPU: 1 UID: 0 PID: 9372 Comm: syz.2.1006 Not tainted 6.10.0-next-20240719-syzkaller #0
[  489.947403][ T9372] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  489.958381][ T9372] Call Trace:
[  489.961808][ T9372]  <TASK>
[  489.965042][ T9372]  dump_stack_lvl+0x241/0x360
[  489.969792][ T9372]  ? __pfx_dump_stack_lvl+0x10/0x10
[  489.975138][ T9372]  ? __pfx__printk+0x10/0x10
[  489.979784][ T9372]  ? __pfx_lock_release+0x10/0x10
[  489.984869][ T9372]  should_fail_ex+0x3b0/0x4e0
[  489.989642][ T9372]  _copy_from_iter+0x1f6/0x1960
[  489.994545][ T9372]  ? __virt_addr_valid+0x183/0x530
[  489.999790][ T9372]  ? __pfx_lock_release+0x10/0x10
[  490.004879][ T9372]  ? __alloc_skb+0x28f/0x440
[  490.009529][ T9372]  ? __pfx__copy_from_iter+0x10/0x10
[  490.014857][ T9372]  ? __virt_addr_valid+0x183/0x530
[  490.020005][ T9372]  ? __virt_addr_valid+0x183/0x530
[  490.025161][ T9372]  ? __virt_addr_valid+0x45f/0x530
[  490.030406][ T9372]  ? __check_object_size+0x49c/0x900
[  490.035840][ T9372]  netlink_sendmsg+0x73d/0xcb0
[  490.040691][ T9372]  ? __pfx_netlink_sendmsg+0x10/0x10
[  490.046027][ T9372]  ? __import_iovec+0x536/0x820
[  490.050922][ T9372]  ? aa_sock_msg_perm+0x91/0x160
[  490.056076][ T9372]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  490.061397][ T9372]  ? security_socket_sendmsg+0x87/0xb0
[  490.066918][ T9372]  ? __pfx_netlink_sendmsg+0x10/0x10
[  490.072250][ T9372]  __sock_sendmsg+0x221/0x270
[  490.076998][ T9372]  ____sys_sendmsg+0x525/0x7d0
[  490.081826][ T9372]  ? __pfx_____sys_sendmsg+0x10/0x10
[  490.087183][ T9372]  __sys_sendmsg+0x2b0/0x3a0
[  490.091829][ T9372]  ? __pfx___sys_sendmsg+0x10/0x10
[  490.097427][ T9372]  ? vfs_write+0x7c4/0xc90
[  490.102216][ T9372]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  490.108604][ T9372]  ? do_syscall_64+0x100/0x230
[  490.113415][ T9372]  ? do_syscall_64+0xb6/0x230
[  490.118218][ T9372]  do_syscall_64+0xf3/0x230
[  490.122811][ T9372]  ? clear_bhb_loop+0x35/0x90
[  490.127537][ T9372]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  490.133472][ T9372] RIP: 0033:0x7fc77c775f19
[  490.137918][ T9372] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  490.157911][ T9372] RSP: 002b:00007fc77d4ed048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  490.166718][ T9372] RAX: ffffffffffffffda RBX: 00007fc77c905f60 RCX: 00007fc77c775f19
[  490.174828][ T9372] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000009
[  490.182836][ T9372] RBP: 00007fc77d4ed0a0 R08: 0000000000000000 R09: 0000000000000000
[  490.190881][ T9372] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  490.198902][ T9372] R13: 000000000000000b R14: 00007fc77c905f60 R15: 00007ffc49107038
[  490.207040][ T9372]  </TASK>
[  490.210237][    C1] vkms_vblank_simulate: vblank timer overrun
[  490.788931][ T8794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  490.999202][ T9379] vlan2: entered promiscuous mode
[  491.004307][ T9379] ip6gretap0: entered promiscuous mode
[  491.116561][ T9383] loop3: detected capacity change from 0 to 512
[  491.188399][ T9383] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  491.276578][ T9396] 9pnet_fd: Insufficient options for proto=fd
[  491.278748][ T9383] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #17: comm syz.3.1009: iget: bad i_size value: -6917529027641081756
[  491.350203][ T9383] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.1009: couldn't read orphan inode 17 (err -117)
[  491.371429][ T9383] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  491.468770][ T5160] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[  491.488656][ T5156] usb 5-1: new high-speed USB device number 24 using dummy_hcd
[  491.671276][ T5160] usb 3-1: config 0 has an invalid descriptor of length 169, skipping remainder of the config
[  491.694038][ T5160] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 2
[  491.695109][ T5156] usb 5-1: config 0 has an invalid descriptor of length 169, skipping remainder of the config
[  491.706064][ T5160] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  491.735234][ T5160] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  491.747121][ T5160] usb 3-1: SerialNumber: syz
[  491.763085][ T5160] usb 3-1: config 0 descriptor??
[  491.832313][ T5156] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 2
[  491.873520][ T5156] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  491.882970][ T5156] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  491.891770][ T5156] usb 5-1: SerialNumber: syz
[  491.923820][ T5156] usb 5-1: config 0 descriptor??
[  491.960655][ T9382] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1009: bg 0: block 65: padding at end of block bitmap is not set
[  492.075416][ T9382] Quota error (device loop3): write_blk: dquota write failed
[  492.137592][ T9382] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  492.209171][ T9382] EXT4-fs error (device loop3): ext4_acquire_dquot:6848: comm syz.3.1009: Failed to acquire dquot type 0
[  492.241950][ T5105] usb 3-1: USB disconnect, device number 21
[  492.271099][ T9411] loop1: detected capacity change from 0 to 64
[  492.485256][ T5160] usb 5-1: USB disconnect, device number 24
[  492.561079][ T8794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  492.944589][ T9418] loop3: detected capacity change from 0 to 32768
[  493.134546][ T9418] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.1016 (9418)
[  493.167753][ T9418] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  493.178804][ T9418] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  493.187774][ T9418] BTRFS info (device loop3): using free-space-tree
[  493.201291][ T9423] vivid-000: disconnect
[  493.371854][ T9423] loop2: detected capacity change from 0 to 764
[  493.630608][ T9423] iso9660: Unknown parameter '/dev/ptmx'
[  494.249903][ T9423] fuse: Bad value for 'fd'
[  494.357926][ T9421] vivid-000: reconnect
[  494.472957][ T8794] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  496.706593][ T9461] 9pnet_fd: Insufficient options for proto=fd
[  496.930014][ T9465] FAULT_INJECTION: forcing a failure.
[  496.930014][ T9465] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  496.952305][ T9465] CPU: 0 UID: 0 PID: 9465 Comm: syz.3.1021 Not tainted 6.10.0-next-20240719-syzkaller #0
[  496.962187][ T9465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  496.972371][ T9465] Call Trace:
[  496.975684][ T9465]  <TASK>
[  496.978655][ T9465]  dump_stack_lvl+0x241/0x360
[  496.983382][ T9465]  ? __pfx_dump_stack_lvl+0x10/0x10
[  496.988628][ T9465]  ? __pfx__printk+0x10/0x10
[  496.993282][ T9465]  ? __pfx_lock_release+0x10/0x10
[  496.998369][ T9465]  should_fail_ex+0x3b0/0x4e0
[  497.003112][ T9465]  _copy_from_user+0x2f/0xe0
[  497.007768][ T9465]  copy_msghdr_from_user+0xae/0x680
[  497.013034][ T9465]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  497.018910][ T9465]  __sys_sendmsg+0x23d/0x3a0
[  497.023560][ T9465]  ? __pfx___sys_sendmsg+0x10/0x10
[  497.028720][ T9465]  ? vfs_write+0x7c4/0xc90
[  497.033243][ T9465]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  497.039624][ T9465]  ? do_syscall_64+0x100/0x230
[  497.044440][ T9465]  ? do_syscall_64+0xb6/0x230
[  497.049173][ T9465]  do_syscall_64+0xf3/0x230
[  497.053717][ T9465]  ? clear_bhb_loop+0x35/0x90
[  497.058446][ T9465]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  497.064380][ T9465] RIP: 0033:0x7f312b775f19
[  497.068917][ T9465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  497.088571][ T9465] RSP: 002b:00007f312c5b7048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  497.097064][ T9465] RAX: ffffffffffffffda RBX: 00007f312b905f60 RCX: 00007f312b775f19
[  497.103781][ T9449] loop2: detected capacity change from 0 to 32768
[  497.105050][ T9465] RDX: 0000000000000000 RSI: 0000000020000900 RDI: 0000000000000003
[  497.105076][ T9465] RBP: 00007f312c5b70a0 R08: 0000000000000000 R09: 0000000000000000
[  497.105094][ T9465] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  497.130417][ T9449] xfs: Unknown parameter 'biosize'
[  497.135523][ T9465] R13: 000000000000000b R14: 00007f312b905f60 R15: 00007fff4c0a01f8
[  497.135570][ T9465]  </TASK>
[  498.727383][ T9490] loop0: detected capacity change from 0 to 256
[  498.746917][ T9490] exfat: Deprecated parameter 'utf8'
[  498.759018][ T9490] exfat: Deprecated parameter 'namecase'
[  498.764862][ T9490] exfat: Deprecated parameter 'namecase'
[  498.772104][ T9490] exfat: Deprecated parameter 'namecase'
[  498.786812][ T9490] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6e84b2e, utbl_chksum : 0xe619d30d)
[  499.166376][ T9492] loop1: detected capacity change from 0 to 32768
[  499.871688][ T9492] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.1032 (9492)
[  500.004546][ T9497] loop2: detected capacity change from 0 to 64
[  500.032267][ T9492] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  500.043440][ T9492] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[  500.052431][ T9492] BTRFS info (device loop1): using free-space-tree
[  500.471566][ T9501] loop4: detected capacity change from 0 to 256
[  500.806867][   T29] audit: type=1800 audit(1721755227.097:211): pid=9501 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1035" name="file1" dev="loop4" ino=1048676 res=0 errno=0
[  500.879127][ T9518] netlink: 'syz.3.1036': attribute type 2 has an invalid length.
[  500.991962][   T29] audit: type=1804 audit(1721755227.297:212): pid=9522 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.1035" name="/newroot/167/bus/bus" dev="loop4" ino=1048677 res=1 errno=0
[  501.111930][ T9522] FAT-fs (loop4): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  501.129219][ T5102] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  501.148134][ T9522] FAT-fs (loop4): Filesystem has been set read-only
[  501.216662][ T9527] FAULT_INJECTION: forcing a failure.
[  501.216662][ T9527] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  501.277662][ T9527] CPU: 0 UID: 0 PID: 9527 Comm: syz.0.1037 Not tainted 6.10.0-next-20240719-syzkaller #0
[  501.287634][ T9527] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  501.297733][ T9527] Call Trace:
[  501.301054][ T9527]  <TASK>
[  501.304031][ T9527]  dump_stack_lvl+0x241/0x360
[  501.308848][ T9527]  ? __pfx_dump_stack_lvl+0x10/0x10
[  501.314092][ T9527]  ? __pfx__printk+0x10/0x10
[  501.318737][ T9527]  ? __pfx_lock_release+0x10/0x10
[  501.323817][ T9527]  should_fail_ex+0x3b0/0x4e0
[  501.328532][ T9527]  _copy_from_iter+0x1f6/0x1960
[  501.333424][ T9527]  ? __virt_addr_valid+0x183/0x530
[  501.338583][ T9527]  ? __pfx_lock_release+0x10/0x10
[  501.343676][ T9527]  ? __alloc_skb+0x28f/0x440
[  501.348395][ T9527]  ? __pfx__copy_from_iter+0x10/0x10
[  501.353726][ T9527]  ? __virt_addr_valid+0x183/0x530
[  501.358966][ T9527]  ? __virt_addr_valid+0x183/0x530
[  501.364107][ T9527]  ? __virt_addr_valid+0x45f/0x530
[  501.369261][ T9527]  ? __check_object_size+0x49c/0x900
[  501.374588][ T9527]  netlink_sendmsg+0x73d/0xcb0
[  501.379399][ T9527]  ? __pfx_netlink_sendmsg+0x10/0x10
[  501.384738][ T9527]  ? __import_iovec+0x536/0x820
[  501.389723][ T9527]  ? aa_sock_msg_perm+0x91/0x160
[  501.394702][ T9527]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  501.400190][ T9527]  ? security_socket_sendmsg+0x87/0xb0
[  501.405780][ T9527]  ? __pfx_netlink_sendmsg+0x10/0x10
[  501.411097][ T9527]  __sock_sendmsg+0x221/0x270
[  501.415837][ T9527]  ____sys_sendmsg+0x525/0x7d0
[  501.420745][ T9527]  ? __pfx_____sys_sendmsg+0x10/0x10
[  501.426089][ T9527]  __sys_sendmsg+0x2b0/0x3a0
[  501.430721][ T9527]  ? __pfx___sys_sendmsg+0x10/0x10
[  501.435952][ T9527]  ? vfs_write+0x7c4/0xc90
[  501.440462][ T9527]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  501.446838][ T9527]  ? do_syscall_64+0x100/0x230
[  501.451662][ T9527]  ? do_syscall_64+0xb6/0x230
[  501.456376][ T9527]  do_syscall_64+0xf3/0x230
[  501.460937][ T9527]  ? clear_bhb_loop+0x35/0x90
[  501.465692][ T9527]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  501.471623][ T9527] RIP: 0033:0x7fbf30975f19
[  501.476078][ T9527] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  501.495828][ T9527] RSP: 002b:00007fbf3167f048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  501.504303][ T9527] RAX: ffffffffffffffda RBX: 00007fbf30b05f60 RCX: 00007fbf30975f19
[  501.512339][ T9527] RDX: 0000000000000000 RSI: 0000000020000280 RDI: 0000000000000009
[  501.520369][ T9527] RBP: 00007fbf3167f0a0 R08: 0000000000000000 R09: 0000000000000000
[  501.528385][ T9527] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  501.536504][ T9527] R13: 000000000000000b R14: 00007fbf30b05f60 R15: 00007ffdee60e8d8
[  501.544805][ T9527]  </TASK>
[  501.913419][ T1246] ieee802154 phy0 wpan0: encryption failed: -22
[  501.920365][ T1246] ieee802154 phy1 wpan1: encryption failed: -22
[  502.936420][ T9547] 9pnet_fd: Insufficient options for proto=fd
[  503.304134][ T9526] loop3: detected capacity change from 0 to 32768
[  503.323437][ T9550] loop2: detected capacity change from 0 to 64
[  503.331188][ T9526] xfs: Unknown parameter 'biosize'
[  504.926590][ T9566] loop1: detected capacity change from 0 to 256
[  504.966724][ T9562] loop3: detected capacity change from 0 to 4096
[  504.971081][ T9566] exfat: Deprecated parameter 'utf8'
[  505.007469][ T9566] exfat: Deprecated parameter 'namecase'
[  505.011266][ T9562] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512).
[  505.037904][ T9566] exfat: Deprecated parameter 'namecase'
[  505.048132][ T9566] exfat: Deprecated parameter 'namecase'
[  505.088180][ T9562] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  505.127486][ T9566] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6e84b2e, utbl_chksum : 0xe619d30d)
[  505.137162][ T9568] netlink: 'syz.4.1050': attribute type 2 has an invalid length.
[  505.164385][ T9562] ntfs3: loop3: Failed to initialize $Extend/$ObjId.
[  506.785364][ T9584] loop4: detected capacity change from 0 to 64
[  506.852750][ T9587] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1053'.
[  506.958697][ T9581] netlink: 'syz.0.1053': attribute type 1 has an invalid length.
[  507.081684][ T9591] FAULT_INJECTION: forcing a failure.
[  507.081684][ T9591] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  507.133120][ T9591] CPU: 1 UID: 0 PID: 9591 Comm: syz.1.1055 Not tainted 6.10.0-next-20240719-syzkaller #0
[  507.143002][ T9591] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  507.153100][ T9591] Call Trace:
[  507.156412][ T9591]  <TASK>
[  507.159368][ T9591]  dump_stack_lvl+0x241/0x360
[  507.164092][ T9591]  ? __pfx_dump_stack_lvl+0x10/0x10
[  507.169417][ T9591]  ? __pfx__printk+0x10/0x10
[  507.174061][ T9591]  ? __pfx_lock_release+0x10/0x10
[  507.179143][ T9591]  should_fail_ex+0x3b0/0x4e0
[  507.183868][ T9591]  _copy_from_iter+0x1f6/0x1960
[  507.188773][ T9591]  ? __virt_addr_valid+0x183/0x530
[  507.193925][ T9591]  ? __pfx_lock_release+0x10/0x10
[  507.199004][ T9591]  ? __alloc_skb+0x28f/0x440
[  507.203637][ T9591]  ? __pfx__copy_from_iter+0x10/0x10
[  507.208978][ T9591]  ? __virt_addr_valid+0x183/0x530
[  507.214214][ T9591]  ? __virt_addr_valid+0x183/0x530
[  507.219411][ T9591]  ? __virt_addr_valid+0x45f/0x530
[  507.224582][ T9591]  ? __check_object_size+0x49c/0x900
[  507.229916][ T9591]  netlink_sendmsg+0x73d/0xcb0
[  507.234735][ T9591]  ? __pfx_netlink_sendmsg+0x10/0x10
[  507.240069][ T9591]  ? __import_iovec+0x536/0x820
[  507.244962][ T9591]  ? aa_sock_msg_perm+0x91/0x160
[  507.249946][ T9591]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  507.255267][ T9591]  ? security_socket_sendmsg+0x87/0xb0
[  507.260778][ T9591]  ? __pfx_netlink_sendmsg+0x10/0x10
[  507.266097][ T9591]  __sock_sendmsg+0x221/0x270
[  507.270830][ T9591]  ____sys_sendmsg+0x525/0x7d0
[  507.275650][ T9591]  ? __pfx_____sys_sendmsg+0x10/0x10
[  507.280998][ T9591]  __sys_sendmsg+0x2b0/0x3a0
[  507.285641][ T9591]  ? __pfx___sys_sendmsg+0x10/0x10
[  507.286388][ T9595] netlink: 'syz.2.1056': attribute type 2 has an invalid length.
[  507.290871][ T9591]  ? vfs_write+0x7c4/0xc90
[  507.290954][ T9591]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  507.309559][ T9591]  ? do_syscall_64+0x100/0x230
[  507.314458][ T9591]  ? do_syscall_64+0xb6/0x230
[  507.319176][ T9591]  do_syscall_64+0xf3/0x230
[  507.323726][ T9591]  ? clear_bhb_loop+0x35/0x90
[  507.328455][ T9591]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  507.334394][ T9591] RIP: 0033:0x7fb92f575f19
[  507.338930][ T9591] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  507.358667][ T9591] RSP: 002b:00007fb930425048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  507.367133][ T9591] RAX: ffffffffffffffda RBX: 00007fb92f705f60 RCX: 00007fb92f575f19
[  507.368966][ T9579] bond1: (slave gre1): The slave device specified does not support setting the MAC address
[  507.375386][ T9591] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000003
[  507.375410][ T9591] RBP: 00007fb9304250a0 R08: 0000000000000000 R09: 0000000000000000
[  507.375425][ T9591] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  507.375440][ T9591] R13: 000000000000000b R14: 00007fb92f705f60 R15: 00007ffec946e818
[  507.375476][ T9591]  </TASK>
[  507.420681][    C1] vkms_vblank_simulate: vblank timer overrun
[  507.480600][ T9579] bond1: (slave gre1): Setting fail_over_mac to active for active-backup mode
[  507.543358][ T9579] bond1: (slave gre1): making interface the new active one
[  507.625037][ T9579] bond1: (slave gre1): Enslaving as an active interface with an up link
[  507.682316][ T9581] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1053'.
[  509.038243][ T9611] loop2: detected capacity change from 0 to 1024
[  509.096210][ T9611] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  510.068258][ T9621] EXT4-fs error (device loop2): ext4_clear_blocks:883: inode #14: comm syz.2.1061: attempt to clear invalid blocks 1886221359 len 1
[  511.051580][ T9631] fuse: Bad value for 'fd'
[  511.383206][ T7155] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  511.718422][ T9633] loop0: detected capacity change from 0 to 4096
[  511.730715][    C1] eth0: bad gso: type: 1, size: 1408
[  511.739507][ T9633] ntfs3: Unknown parameter '
'
[  511.773074][ T9635] loop1: detected capacity change from 0 to 256
[  511.781298][ T9635] exfat: Deprecated parameter 'utf8'
[  511.786714][ T9635] exfat: Deprecated parameter 'namecase'
[  511.796605][ T9635] exfat: Deprecated parameter 'namecase'
[  511.804174][ T9635] exfat: Deprecated parameter 'namecase'
[  511.847270][ T9635] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6e84b2e, utbl_chksum : 0xe619d30d)
[  513.190049][ T9655] loop4: detected capacity change from 0 to 32768
[  513.199465][ T9655] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1072 (9655)
[  514.077627][ T9669] loop3: detected capacity change from 0 to 512
[  514.171399][ T4497] Bluetooth: hci2: command 0x0406 tx timeout
[  514.179758][ T9669] EXT4-fs (loop3): orphan cleanup on readonly fs
[  514.188733][ T9672] FAULT_INJECTION: forcing a failure.
[  514.188733][ T9672] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  514.192038][ T9668] loop1: detected capacity change from 0 to 32768
[  514.210632][ T9668] BTRFS: device /dev/loop1 (7:1) using temp-fsid cb8a51e0-3d14-47d1-8470-3a5e659329f7
[  514.220935][ T9668] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.1074 (9668)
[  514.259594][ T9655] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  514.270145][ T9655] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[  514.273570][ T9672] CPU: 0 UID: 0 PID: 9672 Comm: syz.2.1076 Not tainted 6.10.0-next-20240719-syzkaller #0
[  514.278982][ T9655] BTRFS info (device loop4): using free-space-tree
[  514.288688][ T9672] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  514.288710][ T9672] Call Trace:
[  514.288722][ T9672]  <TASK>
[  514.288733][ T9672]  dump_stack_lvl+0x241/0x360
[  514.288767][ T9672]  ? __pfx_dump_stack_lvl+0x10/0x10
[  514.288791][ T9672]  ? __pfx__printk+0x10/0x10
[  514.326157][ T9672]  ? __pfx_lock_release+0x10/0x10
[  514.331220][ T9672]  should_fail_ex+0x3b0/0x4e0
[  514.335919][ T9672]  _copy_from_iter+0x1f6/0x1960
[  514.340796][ T9672]  ? __virt_addr_valid+0x183/0x530
[  514.346018][ T9672]  ? __pfx_lock_release+0x10/0x10
[  514.351178][ T9672]  ? __alloc_skb+0x28f/0x440
[  514.355778][ T9672]  ? __pfx__copy_from_iter+0x10/0x10
[  514.361100][ T9672]  ? __virt_addr_valid+0x183/0x530
[  514.366220][ T9672]  ? __virt_addr_valid+0x183/0x530
[  514.371342][ T9672]  ? __virt_addr_valid+0x45f/0x530
[  514.376459][ T9672]  ? __check_object_size+0x49c/0x900
[  514.381762][ T9672]  netlink_sendmsg+0x73d/0xcb0
[  514.386548][ T9672]  ? __pfx_netlink_sendmsg+0x10/0x10
[  514.391849][ T9672]  ? __import_iovec+0x536/0x820
[  514.396716][ T9672]  ? aa_sock_msg_perm+0x91/0x160
[  514.401668][ T9672]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  514.406962][ T9672]  ? security_socket_sendmsg+0x87/0xb0
[  514.412445][ T9672]  ? __pfx_netlink_sendmsg+0x10/0x10
[  514.417753][ T9672]  __sock_sendmsg+0x221/0x270
[  514.422455][ T9672]  ____sys_sendmsg+0x525/0x7d0
[  514.427242][ T9672]  ? __pfx_____sys_sendmsg+0x10/0x10
[  514.432559][ T9672]  __sys_sendmsg+0x2b0/0x3a0
[  514.437264][ T9672]  ? __pfx___sys_sendmsg+0x10/0x10
[  514.442386][ T9672]  ? vfs_write+0x7c4/0xc90
[  514.446875][ T9672]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  514.453219][ T9672]  ? do_syscall_64+0x100/0x230
[  514.458101][ T9672]  ? do_syscall_64+0xb6/0x230
[  514.462789][ T9672]  do_syscall_64+0xf3/0x230
[  514.467300][ T9672]  ? clear_bhb_loop+0x35/0x90
[  514.471994][ T9672]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  514.477902][ T9672] RIP: 0033:0x7fc77c775f19
[  514.482328][ T9672] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  514.502029][ T9672] RSP: 002b:00007fc77d4ed048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  514.510455][ T9672] RAX: ffffffffffffffda RBX: 00007fc77c905f60 RCX: 00007fc77c775f19
[  514.518525][ T9672] RDX: 0000000000000000 RSI: 00000000200010c0 RDI: 0000000000000005
[  514.526590][ T9672] RBP: 00007fc77d4ed0a0 R08: 0000000000000000 R09: 0000000000000000
[  514.534575][ T9672] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  514.542567][ T9672] R13: 000000000000000b R14: 00007fc77c905f60 R15: 00007ffc49107038
[  514.550577][ T9672]  </TASK>
[  514.565116][ T9669] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1075: bg 0: block 248: padding at end of block bitmap is not set
[  514.596543][ T9668] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  514.607195][ T9668] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[  514.615976][ T9668] BTRFS info (device loop1): using free-space-tree
[  514.640689][ T9669] Quota error (device loop3): write_blk: dquota write failed
[  514.649732][ T9669] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  514.662038][ T9669] EXT4-fs error (device loop3): ext4_acquire_dquot:6848: comm syz.3.1075: Failed to acquire dquot type 1
[  514.705557][ T9669] EXT4-fs (loop3): 1 truncate cleaned up
[  514.829644][ T9669] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  515.177554][ T9694] loop2: detected capacity change from 0 to 512
[  515.234657][ T8794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  515.267143][ T9694] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  517.448725][ T9717] netlink: 'syz.0.1080': attribute type 2 has an invalid length.
[  517.458071][ T9694] EXT4-fs error (device loop2): ext4_orphan_get:1391: inode #17: comm syz.2.1078: iget: bad i_size value: -6917529027641081756
[  517.473387][ T5102] BTRFS info (device loop1): last unmount of filesystem cb8a51e0-3d14-47d1-8470-3a5e659329f7
[  517.486023][ T5802] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  517.520100][ T9694] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.1078: couldn't read orphan inode 17 (err -117)
[  517.568849][ T9694] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  517.732194][ T9723] loop0: detected capacity change from 0 to 64
[  518.143824][ T9725] loop4: detected capacity change from 0 to 64
[  518.381650][ T9734] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1078: bg 0: block 65: padding at end of block bitmap is not set
[  518.399462][ T9734] Quota error (device loop2): write_blk: dquota write failed
[  518.407092][ T9734] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  518.417396][ T9734] EXT4-fs error (device loop2): ext4_acquire_dquot:6848: comm syz.2.1078: Failed to acquire dquot type 0
[  518.632063][ T9733] loop4: detected capacity change from 0 to 4096
[  518.659398][ T9733] ntfs3: Unknown parameter '
'
[  518.747629][ T9721] loop3: detected capacity change from 0 to 32768
[  518.795465][ T9721] xfs: Unknown parameter 'biosize'
[  519.061661][ T9746] loop1: detected capacity change from 0 to 1024
[  520.985476][ T9764] 9pnet_fd: Insufficient options for proto=fd
[  520.999114][ T7155] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  521.033979][    C1] eth0: bad gso: type: 1, size: 1408
[  521.163224][ T9766] loop3: detected capacity change from 0 to 4096
[  521.175680][ T9769] netlink: 'syz.1.1093': attribute type 2 has an invalid length.
[  521.196490][ T9766] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512).
[  521.384988][ T9773] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1094'.
[  521.571856][ T9771] loop2: detected capacity change from 0 to 32768
[  521.583569][ T9771] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.1092 (9771)
[  521.612019][ T9771] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  521.622411][ T9771] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[  521.622874][ T9766] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  521.631306][ T9771] BTRFS info (device loop2): using free-space-tree
[  521.756371][ T9766] ntfs3: loop3: Failed to initialize $Extend/$ObjId.
[  522.080890][ T9795] bridge0: port 2(bridge_slave_1) entered disabled state
[  522.088825][ T9795] bridge0: port 1(bridge_slave_0) entered disabled state
[  522.114638][ T5162] usb 2-1: new high-speed USB device number 17 using dummy_hcd
[  522.176477][ T9795] bridge0: entered allmulticast mode
[  522.203511][ T9797] vivid-002: disconnect
[  522.758346][ T9795] loop3: detected capacity change from 0 to 764
[  522.794062][ T9795] iso9660: Unknown parameter '/dev/ptmx'
[  522.976990][ T9794] vivid-002: reconnect
[  523.039041][ T7155] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  523.148826][ T5162] usb 2-1: New USB device found, idVendor=05ac, idProduct=0290, bcdDevice=dc.1b
[  523.150881][ T9802] loop3: detected capacity change from 0 to 64
[  523.158032][ T5162] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  523.176919][ T5162] usb 2-1: config 0 descriptor??
[  523.201594][ T5162] input: bcm5974 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input12
[  523.413545][ T9804] A link change request failed with some changes committed already. Interface vlan0 may have been left with an inconsistent configuration, please check.
[  523.432738][ T5162] usb 2-1: USB disconnect, device number 17
[  523.705472][ T9798] loop0: detected capacity change from 0 to 32768
[  523.734088][ T9813] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1099'.
[  523.744527][ T9798] xfs: Unknown parameter 'biosize'
[  523.864126][ T9815] loop4: detected capacity change from 0 to 512
[  523.883595][ T9815] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  523.966604][ T9815] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #17: comm syz.4.1103: iget: bad i_size value: -6917529027641081756
[  523.994118][ T9815] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.1103: couldn't read orphan inode 17 (err -117)
[  524.011134][ T9815] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  524.097200][ T9821] FAULT_INJECTION: forcing a failure.
[  524.097200][ T9821] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  524.157310][ T9821] CPU: 0 UID: 0 PID: 9821 Comm: syz.1.1104 Not tainted 6.10.0-next-20240719-syzkaller #0
[  524.167201][ T9821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  524.177389][ T9821] Call Trace:
[  524.180710][ T9821]  <TASK>
[  524.183684][ T9821]  dump_stack_lvl+0x241/0x360
[  524.188415][ T9821]  ? __pfx_dump_stack_lvl+0x10/0x10
[  524.193671][ T9821]  ? __pfx__printk+0x10/0x10
[  524.198324][ T9821]  ? __pfx_lock_release+0x10/0x10
[  524.203589][ T9821]  should_fail_ex+0x3b0/0x4e0
[  524.208324][ T9821]  strncpy_from_user+0x36/0x2e0
[  524.213222][ T9821]  ? kmem_cache_alloc_noprof+0x185/0x2a0
[  524.218904][ T9821]  getname_flags+0xf1/0x540
[  524.223458][ T9821]  __x64_sys_rename+0x6a/0x90
[  524.228182][ T9821]  do_syscall_64+0xf3/0x230
[  524.232731][ T9821]  ? clear_bhb_loop+0x35/0x90
[  524.237554][ T9821]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  524.243494][ T9821] RIP: 0033:0x7fb92f575f19
[  524.247950][ T9821] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  524.267775][ T9821] RSP: 002b:00007fb930425048 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[  524.276308][ T9821] RAX: ffffffffffffffda RBX: 00007fb92f705f60 RCX: 00007fb92f575f19
[  524.284327][ T9821] RDX: 0000000000000000 RSI: 0000000020000f00 RDI: 0000000020000400
[  524.292432][ T9821] RBP: 00007fb9304250a0 R08: 0000000000000000 R09: 0000000000000000
[  524.300444][ T9821] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  524.308458][ T9821] R13: 000000000000000b R14: 00007fb92f705f60 R15: 00007ffec946e818
[  524.316921][ T9821]  </TASK>
[  524.320011][    C0] vkms_vblank_simulate: vblank timer overrun
[  524.348812][ T9824] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1105'.
[  524.367585][ T9824] netlink: 'syz.0.1105': attribute type 1 has an invalid length.
[  524.589964][ T9833] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1103: bg 0: block 65: padding at end of block bitmap is not set
[  524.612991][ T9833] Quota error (device loop4): write_blk: dquota write failed
[  524.622035][ T9833] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  524.632185][ T9833] EXT4-fs error (device loop4): ext4_acquire_dquot:6848: comm syz.4.1103: Failed to acquire dquot type 0
[  525.007540][    C1] eth0: bad gso: type: 1, size: 1408
[  525.021019][ T5802] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  525.250294][ T9834] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  527.333396][ T9848] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  527.341448][ T9838] loop0: detected capacity change from 0 to 4096
[  527.412426][ T9838] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512).
[  527.602290][ T9844] loop4: detected capacity change from 0 to 32768
[  527.610071][ T9844] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1110 (9844)
[  527.636506][ T9844] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  527.647071][ T9844] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[  527.656198][ T9844] BTRFS info (device loop4): using free-space-tree
[  527.693564][ T9838] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  527.782242][ T9838] ntfs3: loop0: Failed to initialize $Extend/$ObjId.
[  528.102547][ T9860] loop3: detected capacity change from 0 to 32768
[  528.131119][ T9860] BTRFS: device /dev/loop3 (7:3) using temp-fsid e24e0946-329f-4832-99ea-4cd53fc0a8b1
[  528.140952][ T9860] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.1112 (9860)
[  528.349659][ T9860] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  528.360020][ T9860] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  528.369231][ T9860] BTRFS info (device loop3): using free-space-tree
[  528.405464][ T5156] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  528.691430][ T5156] usb 2-1: New USB device found, idVendor=05ac, idProduct=0290, bcdDevice=dc.1b
[  529.156520][ T5156] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  529.179843][ T5156] usb 2-1: config 0 descriptor??
[  529.200376][ T5802] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  529.226897][ T5156] input: bcm5974 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input13
[  530.077955][    T8] usb 2-1: USB disconnect, device number 18
[  530.146714][ T9850] loop2: detected capacity change from 0 to 32768
[  530.211595][ T8794] BTRFS info (device loop3): last unmount of filesystem e24e0946-329f-4832-99ea-4cd53fc0a8b1
[  530.304029][ T9871] loop0: detected capacity change from 0 to 32768
[  530.316104][ T9871] xfs: Unknown parameter 'biosize'
[  530.327528][ T9850] XFS (loop2): Mounting V5 Filesystem ca7e2101-b8f1-4838-8e2d-7637b90620e6
[  530.556637][ T9850] XFS (loop2): Ending clean mount
[  530.617824][ T9904] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1118'.
[  530.660521][ T7155] XFS (loop2): Unmounting Filesystem ca7e2101-b8f1-4838-8e2d-7637b90620e6
[  530.721925][ T9901] netlink: 'syz.0.1118': attribute type 1 has an invalid length.
[  530.781986][ T9909] loop4: detected capacity change from 0 to 64
[  530.795344][ T9906] loop1: detected capacity change from 0 to 512
[  530.844656][ T9906] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  530.889427][ T9911] loop3: detected capacity change from 0 to 64
[  530.950316][ T9906] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #17: comm syz.1.1121: iget: bad i_size value: -6917529027641081756
[  530.985068][ T9916] loop0: detected capacity change from 0 to 64
[  530.996454][ T9906] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.1121: couldn't read orphan inode 17 (err -117)
[  531.066010][ T9906] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  531.514319][ T9923] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1119'.
[  531.597954][ T9921] netlink: 'syz.2.1119': attribute type 1 has an invalid length.
[  531.861251][ T9926] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1121: bg 0: block 65: padding at end of block bitmap is not set
[  531.882099][ T9926] Quota error (device loop1): write_blk: dquota write failed
[  531.890597][ T9926] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  531.900941][ T9926] EXT4-fs error (device loop1): ext4_acquire_dquot:6848: comm syz.1.1121: Failed to acquire dquot type 0
[  531.941681][ T9921] bond1: (slave gre1): The slave device specified does not support setting the MAC address
[  531.958664][ T9921] bond1: (slave gre1): Setting fail_over_mac to active for active-backup mode
[  531.981745][ T9921] bond1: (slave gre1): making interface the new active one
[  531.994353][ T9921] bond1: (slave gre1): Enslaving as an active interface with an up link
[  532.031074][ T9930] vivid-002: disconnect
[  532.109624][ T9930] loop3: detected capacity change from 0 to 764
[  532.127089][ T9930] iso9660: Unknown parameter '/dev/ptmx'
[  532.415777][ T9933] loop2: detected capacity change from 0 to 32768
[  532.450791][ T9933] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.1126 (9933)
[  532.465440][ T9928] vivid-002: reconnect
[  532.478004][ T9933] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  532.488302][ T9933] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[  532.497059][ T9933] BTRFS info (device loop2): using free-space-tree
[  532.508954][ T9935] netlink: 'syz.4.1125': attribute type 11 has an invalid length.
[  534.086212][ T7155] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  535.665665][ T5102] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  535.856709][    C1] eth0: bad gso: type: 1, size: 1408
[  535.992819][ T9955] loop4: detected capacity change from 0 to 32768
[  536.629579][ T9986] loop2: detected capacity change from 0 to 16
[  537.800777][ T9988] vivid-000: disconnect
[  537.826133][ T9988] loop2: detected capacity change from 0 to 764
[  537.833470][ T9988] iso9660: Unknown parameter '/dev/ptmx'
[  537.910193][ T9987] vivid-000: reconnect
[  538.086238][ T9996] loop0: detected capacity change from 0 to 64
[  538.419797][ T9993] loop1: detected capacity change from 0 to 32768
[  538.432979][ T9993] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.1139 (9993)
[  538.457354][ T9993] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  538.467683][ T9993] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[  538.476622][ T9993] BTRFS info (device loop1): using free-space-tree
[  538.527167][T10000] netlink: 'syz.4.1138': attribute type 11 has an invalid length.
[  539.439404][T10021] loop2: detected capacity change from 0 to 64
[  539.469668][T10014] loop3: detected capacity change from 0 to 2048
[  539.801347][T10014] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[  540.016995][T10014] NILFS (loop3): error -4 creating segctord thread
[  540.149484][ T5102] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  541.580981][T10036] FAULT_INJECTION: forcing a failure.
[  541.580981][T10036] name failslab, interval 1, probability 0, space 0, times 0
[  541.593841][T10036] CPU: 0 UID: 0 PID: 10036 Comm: syz.4.1147 Not tainted 6.10.0-next-20240719-syzkaller #0
[  541.603769][T10036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  541.613853][T10036] Call Trace:
[  541.617162][T10036]  <TASK>
[  541.620119][T10036]  dump_stack_lvl+0x241/0x360
[  541.624923][T10036]  ? __pfx_dump_stack_lvl+0x10/0x10
[  541.630152][T10036]  ? __pfx__printk+0x10/0x10
[  541.634787][T10036]  ? kmem_cache_alloc_node_noprof+0x49/0x320
[  541.640814][T10036]  ? __pfx___might_resched+0x10/0x10
[  541.646154][T10036]  should_fail_ex+0x3b0/0x4e0
[  541.650871][T10036]  should_failslab+0xac/0x100
[  541.655583][T10036]  ? __alloc_skb+0x1c3/0x440
[  541.660303][T10036]  kmem_cache_alloc_node_noprof+0x71/0x320
[  541.666154][T10036]  __alloc_skb+0x1c3/0x440
[  541.670613][T10036]  ? __pfx___alloc_skb+0x10/0x10
[  541.675673][T10036]  ? netlink_autobind+0xd6/0x2f0
[  541.680642][T10036]  ? netlink_autobind+0x2b0/0x2f0
[  541.685713][T10036]  netlink_sendmsg+0x638/0xcb0
[  541.690528][T10036]  ? __pfx_netlink_sendmsg+0x10/0x10
[  541.695847][T10036]  ? __import_iovec+0x536/0x820
[  541.700908][T10036]  ? aa_sock_msg_perm+0x91/0x160
[  541.705883][T10036]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  541.711200][T10036]  ? security_socket_sendmsg+0x87/0xb0
[  541.716705][T10036]  ? __pfx_netlink_sendmsg+0x10/0x10
[  541.722023][T10036]  __sock_sendmsg+0x221/0x270
[  541.726755][T10036]  ____sys_sendmsg+0x525/0x7d0
[  541.731567][T10036]  ? __pfx_____sys_sendmsg+0x10/0x10
[  541.736905][T10036]  __sys_sendmsg+0x2b0/0x3a0
[  541.741538][T10036]  ? __pfx___sys_sendmsg+0x10/0x10
[  541.746687][T10036]  ? vfs_write+0x7c4/0xc90
[  541.751191][T10036]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  541.757560][T10036]  ? do_syscall_64+0x100/0x230
[  541.762358][T10036]  ? do_syscall_64+0xb6/0x230
[  541.767074][T10036]  do_syscall_64+0xf3/0x230
[  541.771610][T10036]  ? clear_bhb_loop+0x35/0x90
[  541.776325][T10036]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  541.782257][T10036] RIP: 0033:0x7f2b02175f19
[  541.786709][T10036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  541.806352][T10036] RSP: 002b:00007f2b02f14048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  541.814981][T10036] RAX: ffffffffffffffda RBX: 00007f2b02306110 RCX: 00007f2b02175f19
[  541.822979][T10036] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000009
[  541.830977][T10036] RBP: 00007f2b02f140a0 R08: 0000000000000000 R09: 0000000000000000
[  541.838973][T10036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  541.846989][T10036] R13: 000000000000006e R14: 00007f2b02306110 R15: 00007ffc71495448
[  541.855023][T10036]  </TASK>
[  541.858160][    C0] vkms_vblank_simulate: vblank timer overrun
[  544.517583][T10049] loop1: detected capacity change from 0 to 512
[  544.540897][T10051] bridge0: port 2(bridge_slave_1) entered disabled state
[  544.548736][T10051] bridge0: port 1(bridge_slave_0) entered disabled state
[  544.559958][T10049] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  544.569911][T10051] bridge0: entered allmulticast mode
[  544.609888][T10049] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #17: comm syz.1.1145: iget: bad i_size value: -6917529027641081756
[  544.650171][T10051] vivid-001: disconnect
[  544.657085][T10049] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.1145: couldn't read orphan inode 17 (err -117)
[  544.689064][T10049] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  544.919765][T10051] loop0: detected capacity change from 0 to 764
[  544.946489][T10051] iso9660: Unknown parameter '/dev/ptmx'
[  545.006926][T10058] openvswitch: netlink: nsh attribute has 4 unknown bytes.
[  545.061658][T10050] vivid-001: reconnect
[  545.375188][T10041] loop4: detected capacity change from 0 to 32768
[  545.560184][T10062] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1145: bg 0: block 65: padding at end of block bitmap is not set
[  545.640001][T10062] Quota error (device loop1): write_blk: dquota write failed
[  545.647723][T10062] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  545.657890][T10062] EXT4-fs error (device loop1): ext4_acquire_dquot:6848: comm syz.1.1145: Failed to acquire dquot type 0
[  545.876196][T10043] loop3: detected capacity change from 0 to 32768
[  546.298969][   T55] Bluetooth: hci4: command 0x0406 tx timeout
[  546.852109][T10043] XFS (loop3): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  546.978807][T10043] XFS (loop3): Ending clean mount
[  547.325622][T10081] loop0: detected capacity change from 0 to 32768
[  547.336728][T10081] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1155 (10081)
[  547.366601][T10081] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  547.377005][T10081] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  547.385941][T10081] BTRFS info (device loop0): using free-space-tree
[  547.489944][ T8794] XFS (loop3): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd
[  548.398174][T10099] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  548.432218][ T8538] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  548.465368][T10110] loop2: detected capacity change from 0 to 64
[  548.474792][T10109] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  549.062991][T10113] loop3: detected capacity change from 0 to 1024
[  549.093641][T10113] EXT4-fs (loop3): Test dummy encryption mode enabled
[  549.126293][T10113] EXT4-fs (loop3): stripe (7) is not aligned with cluster size (16), stripe is disabled
[  549.178918][    C1] eth0: bad gso: type: 1, size: 1408
[  549.206176][ T5102] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  549.448348][T10113] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  550.292702][T10122] loop1: detected capacity change from 0 to 64
[  550.339064][T10123] vivid-004: disconnect
[  550.472028][T10119] vivid-004: reconnect
[  550.541074][ T8794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  551.688292][T10131] loop3: detected capacity change from 0 to 32768
[  552.776006][T10139] loop4: detected capacity change from 0 to 256
[  552.839975][T10126] loop0: detected capacity change from 0 to 32768
[  552.849473][T10126] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1163 (10126)
[  552.949576][T10139] exfat: Deprecated parameter 'utf8'
[  552.958948][T10139] exfat: Deprecated parameter 'namecase'
[  552.964706][T10139] exfat: Deprecated parameter 'namecase'
[  553.053092][T10126] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  553.078076][T10139] exfat: Deprecated parameter 'namecase'
[  553.154114][T10126] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  553.520534][T10126] BTRFS info (device loop0): using free-space-tree
[  553.538243][T10139] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6e84b2e, utbl_chksum : 0xe619d30d)
[  553.548027][T10126] workqueue: Failed to create a rescuer kthread for wq "btrfs-delalloc": -EINTR
[  553.561155][T10126] workqueue: Failed to create a rescuer kthread for wq "btrfs-flush_delalloc": -EINTR
[  553.573023][T10126] workqueue: Failed to create a rescuer kthread for wq "btrfs-cache": -EINTR
[  553.589656][T10126] workqueue: Failed to create a rescuer kthread for wq "btrfs-fixup": -EINTR
[  553.609268][T10126] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio": -EINTR
[  553.630089][T10126] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-meta": -EINTR
[  553.642112][T10126] workqueue: Failed to create a rescuer kthread for wq "btrfs-rmw": -EINTR
[  553.658299][T10126] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR
[  553.670447][T10126] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR
[  553.681090][T10126] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[  553.702380][T10126] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  553.723952][T10126] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[  553.758991][T10126] BTRFS error (device loop0): open_ctree failed
[  554.211771][T10156] loop2: detected capacity change from 0 to 32768
[  554.220866][T10156] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.1169 (10156)
[  554.246848][T10156] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  554.258095][T10156] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[  554.267460][T10156] BTRFS info (device loop2): using free-space-tree
[  554.313942][T10163] netlink: 'syz.4.1171': attribute type 2 has an invalid length.
[  554.483558][T10181] FAULT_INJECTION: forcing a failure.
[  554.483558][T10181] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  554.497631][T10181] CPU: 0 UID: 0 PID: 10181 Comm: syz.3.1168 Not tainted 6.10.0-next-20240719-syzkaller #0
[  554.507587][T10181] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  554.517688][T10181] Call Trace:
[  554.521001][T10181]  <TASK>
[  554.523957][T10181]  dump_stack_lvl+0x241/0x360
[  554.528698][T10181]  ? __pfx_dump_stack_lvl+0x10/0x10
[  554.533934][T10181]  ? __pfx__printk+0x10/0x10
[  554.538656][T10181]  ? __pfx_lock_release+0x10/0x10
[  554.543740][T10181]  should_fail_ex+0x3b0/0x4e0
[  554.548456][T10181]  _copy_from_user+0x2f/0xe0
[  554.553098][T10181]  snd_pcm_oss_write+0xa39/0x11f0
[  554.558159][T10181]  ? __lock_acquire+0x1384/0x2050
[  554.563249][T10181]  ? common_file_perm+0x1a6/0x210
[  554.568327][T10181]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[  554.573836][T10181]  ? bpf_lsm_file_permission+0x9/0x10
[  554.579244][T10181]  ? security_file_permission+0x7f/0xa0
[  554.584840][T10181]  ? rw_verify_area+0x1d2/0x6b0
[  554.589740][T10181]  ? __pfx_snd_pcm_oss_write+0x10/0x10
[  554.595244][T10181]  vfs_write+0x2a2/0xc90
[  554.599633][T10181]  ? __pfx_vfs_write+0x10/0x10
[  554.604448][T10181]  ? __fget_files+0x29/0x470
[  554.609075][T10181]  ? __fget_files+0x3f6/0x470
[  554.613785][T10181]  ? __fget_files+0x29/0x470
[  554.618436][T10181]  ksys_write+0x1a0/0x2c0
[  554.622824][T10181]  ? __pfx_ksys_write+0x10/0x10
[  554.627717][T10181]  ? do_syscall_64+0x100/0x230
[  554.632524][T10181]  ? do_syscall_64+0xb6/0x230
[  554.637236][T10181]  do_syscall_64+0xf3/0x230
[  554.641870][T10181]  ? clear_bhb_loop+0x35/0x90
[  554.646587][T10181]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  554.652530][T10181] RIP: 0033:0x7f312b775f19
[  554.656977][T10181] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  554.676619][T10181] RSP: 002b:00007f312c575048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  554.685524][T10181] RAX: ffffffffffffffda RBX: 00007f312b906110 RCX: 00007f312b775f19
[  554.693629][T10181] RDX: 0000000000004000 RSI: 00000000200012c0 RDI: 0000000000000007
[  554.701646][T10181] RBP: 00007f312c5750a0 R08: 0000000000000000 R09: 0000000000000000
[  554.709672][T10181] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  554.717769][T10181] R13: 000000000000006e R14: 00007f312b906110 R15: 00007fff4c0a01f8
[  554.725798][T10181]  </TASK>
[  554.728967][    C0] vkms_vblank_simulate: vblank timer overrun
[  555.136669][T10185] loop0: detected capacity change from 0 to 512
[  555.426758][ T7155] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  555.442568][T10185] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  555.778218][T10185] EXT4-fs error (device loop0): ext4_orphan_get:1391: inode #17: comm syz.0.1172: iget: bad i_size value: -6917529027641081756
[  556.025207][T10185] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.1172: couldn't read orphan inode 17 (err -117)
[  556.092950][T10185] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  556.848385][T10199] netlink: 'syz.2.1175': attribute type 2 has an invalid length.
[  556.863359][T10199] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1175'.
[  557.098144][T10202] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1177'.
[  557.151395][T10194] loop1: detected capacity change from 0 to 40427
[  557.173787][T10204] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.1172: bg 0: block 65: padding at end of block bitmap is not set
[  557.184990][T10194] F2FS-fs (loop1): invalid crc value
[  557.219043][T10204] Quota error (device loop0): write_blk: dquota write failed
[  557.226777][T10204] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  557.236963][T10204] EXT4-fs error (device loop0): ext4_acquire_dquot:6848: comm syz.0.1172: Failed to acquire dquot type 0
[  557.276538][T10194] F2FS-fs (loop1): Found nat_bits in checkpoint
[  557.444265][T10210] loop4: detected capacity change from 0 to 4096
[  557.459551][T10210] ntfs3: Unknown parameter '
'
[  557.476350][T10194] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  557.667393][T10214] loop3: detected capacity change from 0 to 64
[  558.002335][T10217] loop4: detected capacity change from 0 to 64
[  558.136612][ T5102] bio_check_eod: 6 callbacks suppressed
[  558.136632][ T5102] syz-executor: attempt to access beyond end of device
[  558.136632][ T5102] loop1: rw=524288, sector=45064, nr_sectors = 8 limit=40427
[  558.199452][ T5102] syz-executor: attempt to access beyond end of device
[  558.199452][ T5102] loop1: rw=0, sector=45064, nr_sectors = 8 limit=40427
[  558.495412][ T2470] kworker/u8:6: attempt to access beyond end of device
[  558.495412][ T2470] loop1: rw=2049, sector=45096, nr_sectors = 24 limit=40427
[  558.531745][ T2470] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  558.558821][ T2470] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  558.576099][ T2470] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  559.006984][    C1] eth0: bad gso: type: 1, size: 1408
[  559.040145][ T8538] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  559.476170][T10221] loop0: detected capacity change from 0 to 4096
[  559.541077][T10221] ntfs3: Unknown parameter '
'
[  560.601443][T10229] loop2: detected capacity change from 0 to 32768
[  560.622768][T10229] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.1185 (10229)
[  561.379754][T10229] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  561.390076][T10229] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[  561.398876][T10229] BTRFS info (device loop2): using free-space-tree
[  563.274035][ T1246] ieee802154 phy0 wpan0: encryption failed: -22
[  563.280486][ T1246] ieee802154 phy1 wpan1: encryption failed: -22
[  564.141895][T10229] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-meta": -EINTR
[  564.145834][T10229] workqueue: Failed to create a rescuer kthread for wq "btrfs-rmw": -EINTR
[  564.155820][T10229] workqueue: Failed to create a rescuer kthread for wq "btrfs-endio-write": -EINTR
[  564.165056][T10229] workqueue: Failed to create a rescuer kthread for wq "btrfs-compressed-write": -EINTR
[  564.174984][T10229] workqueue: Failed to create a rescuer kthread for wq "btrfs-freespace-write": -EINTR
[  564.185349][T10229] workqueue: Failed to create a rescuer kthread for wq "btrfs-delayed-meta": -EINTR
[  564.196039][T10229] workqueue: Failed to create a rescuer kthread for wq "btrfs-qgroup-rescan": -EINTR
[  566.365163][T10229] BTRFS error (device loop2): open_ctree failed
[  566.592751][   T55] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  566.616027][   T55] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  566.639110][   T55] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  566.657552][   T55] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  566.676421][   T55] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  566.689034][   T55] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  566.917817][T10257] netlink: 'syz.2.1189': attribute type 2 has an invalid length.
[  567.236245][T10259] loop4: detected capacity change from 0 to 4096
[  567.250644][T10264] netlink: 'syz.2.1191': attribute type 2 has an invalid length.
[  567.261300][T10259] ntfs3: Unknown parameter '
'
[  567.275518][T10264] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1191'.
[  567.378066][T10251] chnl_net:caif_netlink_parms(): no params data found
[  567.445068][T10268] loop3: detected capacity change from 0 to 512
[  567.462765][T10268] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  567.496202][T10270] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1193'.
[  567.528140][T10272] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1194'.
[  567.530717][T10270] FAULT_INJECTION: forcing a failure.
[  567.530717][T10270] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  567.559702][T10270] CPU: 0 UID: 0 PID: 10270 Comm: syz.2.1193 Not tainted 6.10.0-next-20240719-syzkaller #0
[  567.569675][T10270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  567.579865][T10270] Call Trace:
[  567.583181][T10270]  <TASK>
[  567.585799][T10268] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #17: comm syz.3.1192: iget: bad i_size value: -6917529027641081756
[  567.586129][T10270]  dump_stack_lvl+0x241/0x360
[  567.602684][T10268] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.1192: couldn't read orphan inode 17 (err -117)
[  567.604074][T10270]  ? __pfx_dump_stack_lvl+0x10/0x10
[  567.604108][T10270]  ? __pfx__printk+0x10/0x10
[  567.618414][T10268] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  567.621219][T10270]  ? __pfx_lock_release+0x10/0x10
[  567.643370][T10270]  should_fail_ex+0x3b0/0x4e0
[  567.648107][T10270]  _copy_from_user+0x2f/0xe0
[  567.652756][T10270]  copy_msghdr_from_user+0xae/0x680
[  567.658031][T10270]  ? __pfx_copy_msghdr_from_user+0x10/0x10
[  567.663928][T10270]  __sys_sendmsg+0x23d/0x3a0
[  567.668580][T10270]  ? __pfx___sys_sendmsg+0x10/0x10
[  567.673746][T10270]  ? vfs_write+0x7c4/0xc90
[  567.678265][T10270]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  567.684692][T10270]  ? do_syscall_64+0x100/0x230
[  567.689502][T10270]  ? do_syscall_64+0xb6/0x230
[  567.694223][T10270]  do_syscall_64+0xf3/0x230
[  567.698768][T10270]  ? clear_bhb_loop+0x35/0x90
[  567.703533][T10270]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  567.709476][T10270] RIP: 0033:0x7fc77c775f19
[  567.713934][T10270] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  567.733591][T10270] RSP: 002b:00007fc77d4ed048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  567.742096][T10270] RAX: ffffffffffffffda RBX: 00007fc77c905f60 RCX: 00007fc77c775f19
[  567.750109][T10270] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000006
[  567.758154][T10270] RBP: 00007fc77d4ed0a0 R08: 0000000000000000 R09: 0000000000000000
[  567.766166][T10270] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  567.774176][T10270] R13: 000000000000000b R14: 00007fc77c905f60 R15: 00007ffc49107038
[  567.782211][T10270]  </TASK>
[  568.292167][T10288] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.1192: bg 0: block 65: padding at end of block bitmap is not set
[  568.504623][T10288] Quota error (device loop3): write_blk: dquota write failed
[  568.518046][T10288] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  568.528606][T10288] EXT4-fs error (device loop3): ext4_acquire_dquot:6848: comm syz.3.1192: Failed to acquire dquot type 0
[  568.814754][ T8603] Bluetooth: hci1: command tx timeout
[  568.875679][T10293] loop4: detected capacity change from 0 to 64
[  568.918027][T10251] bridge0: port 1(bridge_slave_0) entered blocking state
[  568.960849][T10251] bridge0: port 1(bridge_slave_0) entered disabled state
[  569.136620][T10251] bridge_slave_0: entered allmulticast mode
[  569.144372][T10251] bridge_slave_0: entered promiscuous mode
[  569.156821][T10251] bridge0: port 2(bridge_slave_1) entered blocking state
[  569.184427][T10251] bridge0: port 2(bridge_slave_1) entered disabled state
[  569.208713][T10251] bridge_slave_1: entered allmulticast mode
[  569.243356][T10251] bridge_slave_1: entered promiscuous mode
[  569.310071][T10295] loop0: detected capacity change from 0 to 32768
[  569.318894][T10295] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1198 (10295)
[  569.338258][T10295] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  569.348793][T10295] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  569.357603][T10295] BTRFS info (device loop0): using free-space-tree
[  569.461670][    C1] eth0: bad gso: type: 1, size: 1408
[  569.482542][T10251] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  569.500744][ T8794] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  569.500930][T10251] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  569.589117][T10315] 9pnet_fd: Insufficient options for proto=fd
[  569.791352][T10251] team0: Port device team_slave_0 added
[  569.821856][T10251] team0: Port device team_slave_1 added
[  569.832000][T10319] loop3: detected capacity change from 0 to 64
[  570.477337][ T8538] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  570.630150][T10251] batman_adv: batadv0: Adding interface: batadv_slave_0
[  570.637727][T10325] hub 9-0:1.0: USB hub found
[  570.645480][T10251] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  570.689474][T10325] hub 9-0:1.0: 8 ports detected
[  570.728690][T10251] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  570.777121][T10251] batman_adv: batadv0: Adding interface: batadv_slave_1
[  570.806542][T10251] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  570.848770][ T8603] Bluetooth: hci1: command tx timeout
[  570.940230][T10251] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  571.290612][T10251] hsr_slave_0: entered promiscuous mode
[  571.340384][T10251] hsr_slave_1: entered promiscuous mode
[  571.364202][T10251] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  571.413005][T10251] Cannot create hsr debugfs directory
[  572.746548][T10349] loop2: detected capacity change from 0 to 64
[  573.042876][ T8603] Bluetooth: hci1: command tx timeout
[  573.587835][T10251] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  573.724922][T10355] loop0: detected capacity change from 0 to 512
[  573.760755][T10355] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  573.787418][T10355] EXT4-fs error (device loop0): ext4_orphan_get:1391: inode #17: comm syz.0.1210: iget: bad i_size value: -6917529027641081756
[  573.810821][T10355] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.1210: couldn't read orphan inode 17 (err -117)
[  573.836249][T10355] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  574.024822][T10358] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 65: padding at end of block bitmap is not set
[  574.101024][T10361] loop4: detected capacity change from 0 to 4096
[  574.123115][T10361] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512).
[  574.161721][T10364] netlink: 'syz.2.1213': attribute type 2 has an invalid length.
[  574.224508][T10366] FAULT_INJECTION: forcing a failure.
[  574.224508][T10366] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  574.246257][T10366] CPU: 0 UID: 0 PID: 10366 Comm: syz.2.1214 Not tainted 6.10.0-next-20240719-syzkaller #0
[  574.256306][T10366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  574.266398][T10366] Call Trace:
[  574.269713][T10366]  <TASK>
[  574.272760][T10366]  dump_stack_lvl+0x241/0x360
[  574.277480][T10366]  ? __pfx_dump_stack_lvl+0x10/0x10
[  574.282716][T10366]  ? __pfx__printk+0x10/0x10
[  574.287370][T10366]  ? __pfx_lock_release+0x10/0x10
[  574.292715][T10366]  should_fail_ex+0x3b0/0x4e0
[  574.297440][T10366]  _copy_from_iter+0x1f6/0x1960
[  574.302345][T10366]  ? __virt_addr_valid+0x183/0x530
[  574.307789][T10366]  ? __pfx_lock_release+0x10/0x10
[  574.312868][T10366]  ? __alloc_skb+0x28f/0x440
[  574.317674][T10366]  ? __pfx__copy_from_iter+0x10/0x10
[  574.323000][T10366]  ? __virt_addr_valid+0x183/0x530
[  574.328156][T10366]  ? __virt_addr_valid+0x183/0x530
[  574.333297][T10366]  ? __virt_addr_valid+0x45f/0x530
[  574.338449][T10366]  ? __check_object_size+0x49c/0x900
[  574.343791][T10366]  netlink_sendmsg+0x73d/0xcb0
[  574.349681][T10366]  ? __pfx_netlink_sendmsg+0x10/0x10
[  574.355100][T10366]  ? __import_iovec+0x536/0x820
[  574.360444][T10366]  ? aa_sock_msg_perm+0x91/0x160
[  574.365424][T10366]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  574.370748][T10366]  ? security_socket_sendmsg+0x87/0xb0
[  574.376257][T10366]  ? __pfx_netlink_sendmsg+0x10/0x10
[  574.381576][T10366]  __sock_sendmsg+0x221/0x270
[  574.386300][T10366]  ____sys_sendmsg+0x525/0x7d0
[  574.391300][T10366]  ? __pfx_____sys_sendmsg+0x10/0x10
[  574.396660][T10366]  __sys_sendmsg+0x2b0/0x3a0
[  574.401313][T10366]  ? __pfx___sys_sendmsg+0x10/0x10
[  574.406645][T10366]  ? vfs_write+0x7c4/0xc90
[  574.411170][T10366]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  574.417544][T10366]  ? do_syscall_64+0x100/0x230
[  574.422351][T10366]  ? do_syscall_64+0xb6/0x230
[  574.427066][T10366]  do_syscall_64+0xf3/0x230
[  574.431612][T10366]  ? clear_bhb_loop+0x35/0x90
[  574.436328][T10366]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  574.442257][T10366] RIP: 0033:0x7fc77c775f19
[  574.446705][T10366] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  574.466353][T10366] RSP: 002b:00007fc77d4ed048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  574.474810][T10366] RAX: ffffffffffffffda RBX: 00007fc77c905f60 RCX: 00007fc77c775f19
[  574.482851][T10366] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003
[  574.490889][T10366] RBP: 00007fc77d4ed0a0 R08: 0000000000000000 R09: 0000000000000000
[  574.498893][T10366] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  574.506909][T10366] R13: 000000000000000b R14: 00007fc77c905f60 R15: 00007ffc49107038
[  574.514939][T10366]  </TASK>
[  574.596870][T10361] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  575.072986][T10361] ntfs3: loop4: Failed to initialize $Extend/$ObjId.
[  575.108151][ T8603] Bluetooth: hci1: command tx timeout
[  575.313304][T10251] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  575.437953][T10374] FAULT_INJECTION: forcing a failure.
[  575.437953][T10374] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  575.473348][T10374] CPU: 0 UID: 0 PID: 10374 Comm: syz.4.1216 Not tainted 6.10.0-next-20240719-syzkaller #0
[  575.483314][T10374] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  575.493492][T10374] Call Trace:
[  575.496806][T10374]  <TASK>
[  575.499770][T10374]  dump_stack_lvl+0x241/0x360
[  575.504577][T10374]  ? __pfx_dump_stack_lvl+0x10/0x10
[  575.509903][T10374]  ? __pfx__printk+0x10/0x10
[  575.514536][T10374]  ? __pfx_lock_release+0x10/0x10
[  575.519603][T10374]  ? drm_ioctl_kernel+0x33a/0x440
[  575.524673][T10374]  should_fail_ex+0x3b0/0x4e0
[  575.529400][T10374]  _copy_to_user+0x2f/0xb0
[  575.533859][T10374]  drm_ioctl+0x638/0xad0
[  575.538138][T10374]  ? __pfx_drm_setmaster_ioctl+0x10/0x10
[  575.543811][T10374]  ? __pfx_drm_ioctl+0x10/0x10
[  575.548605][T10374]  ? bpf_lsm_file_ioctl+0x9/0x10
[  575.553552][T10374]  ? security_file_ioctl+0x87/0xb0
[  575.558679][T10374]  ? __pfx_drm_ioctl+0x10/0x10
[  575.563460][T10374]  __se_sys_ioctl+0xfc/0x170
[  575.568073][T10374]  do_syscall_64+0xf3/0x230
[  575.572589][T10374]  ? clear_bhb_loop+0x35/0x90
[  575.577287][T10374]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  575.583198][T10374] RIP: 0033:0x7f2b02175f19
[  575.587623][T10374] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  575.607333][T10374] RSP: 002b:00007f2b02f56048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  575.615765][T10374] RAX: ffffffffffffffda RBX: 00007f2b02305f60 RCX: 00007f2b02175f19
[  575.623749][T10374] RDX: 0000000000000000 RSI: 000000000000641e RDI: 0000000000000003
[  575.631730][T10374] RBP: 00007f2b02f560a0 R08: 0000000000000000 R09: 0000000000000000
[  575.639797][T10374] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  575.647778][T10374] R13: 000000000000000b R14: 00007f2b02305f60 R15: 00007ffc71495448
[  575.655781][T10374]  </TASK>
[  575.829132][T10384] Quota error (device loop0): write_blk: dquota write failed
[  575.836824][T10384] Quota error (device loop0): qtree_write_dquot: Error -28 occurred while creating quota
[  575.846981][T10384] EXT4-fs error (device loop0): ext4_acquire_dquot:6848: comm syz.0.1210: Failed to acquire dquot type 0
[  576.064499][T10388] loop2: detected capacity change from 0 to 64
[  576.144008][T10390] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1219'.
[  576.186255][T10251] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  576.417399][T10391] netlink: 'syz.4.1219': attribute type 1 has an invalid length.
[  576.441985][ T8538] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  576.603874][T10386] bond1: (slave gre1): The slave device specified does not support setting the MAC address
[  576.745765][T10386] bond1: (slave gre1): Setting fail_over_mac to active for active-backup mode
[  576.787753][T10386] bond1: (slave gre1): making interface the new active one
[  576.817905][T10386] bond1: (slave gre1): Enslaving as an active interface with an up link
[  576.939792][T10251] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  577.106715][T10408] FAULT_INJECTION: forcing a failure.
[  577.106715][T10408] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  577.143778][T10408] CPU: 0 UID: 0 PID: 10408 Comm: syz.3.1221 Not tainted 6.10.0-next-20240719-syzkaller #0
[  577.153753][T10408] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  577.163860][T10408] Call Trace:
[  577.167177][T10408]  <TASK>
[  577.170145][T10408]  dump_stack_lvl+0x241/0x360
[  577.175046][T10408]  ? __pfx_dump_stack_lvl+0x10/0x10
[  577.180286][T10408]  ? __pfx__printk+0x10/0x10
[  577.184932][T10408]  ? snprintf+0xda/0x120
[  577.189221][T10408]  should_fail_ex+0x3b0/0x4e0
[  577.193945][T10408]  _copy_to_user+0x2f/0xb0
[  577.198418][T10408]  simple_read_from_buffer+0xca/0x150
[  577.203890][T10408]  proc_fail_nth_read+0x1ec/0x260
[  577.208983][T10408]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  577.214594][T10408]  ? rw_verify_area+0x520/0x6b0
[  577.219524][T10408]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  577.225125][T10408]  vfs_read+0x204/0xbc0
[  577.229339][T10408]  ? __pfx_lock_release+0x10/0x10
[  577.234422][T10408]  ? __pfx_vfs_read+0x10/0x10
[  577.239147][T10408]  ? __fget_files+0x29/0x470
[  577.243779][T10408]  ? __fget_files+0x3f6/0x470
[  577.248511][T10408]  ksys_read+0x1a0/0x2c0
[  577.252814][T10408]  ? __pfx_ksys_read+0x10/0x10
[  577.257746][T10408]  ? do_syscall_64+0x100/0x230
[  577.262555][T10408]  ? do_syscall_64+0xb6/0x230
[  577.267272][T10408]  do_syscall_64+0xf3/0x230
[  577.271816][T10408]  ? clear_bhb_loop+0x35/0x90
[  577.276554][T10408]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  577.282580][T10408] RIP: 0033:0x7f312b7749fc
[  577.287041][T10408] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48
[  577.306691][T10408] RSP: 002b:00007f312c575040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  577.315160][T10408] RAX: ffffffffffffffda RBX: 00007f312b906110 RCX: 00007f312b7749fc
[  577.323178][T10408] RDX: 000000000000000f RSI: 00007f312c5750b0 RDI: 0000000000000007
[  577.331189][T10408] RBP: 00007f312c5750a0 R08: 0000000000000000 R09: 0000000000000000
[  577.334231][T10251] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  577.339174][T10408] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  577.339223][T10408] R13: 000000000000006e R14: 00007f312b906110 R15: 00007fff4c0a01f8
[  577.339260][T10408]  </TASK>
[  577.444453][T10251] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  577.482958][T10251] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  578.554348][T10251] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  579.014961][T10251] 8021q: adding VLAN 0 to HW filter on device bond0
[  579.083064][T10251] 8021q: adding VLAN 0 to HW filter on device team0
[  579.107948][T10418] input: syz1 as /devices/virtual/input/input14
[  579.137360][ T5161] bridge0: port 1(bridge_slave_0) entered blocking state
[  579.144813][ T5161] bridge0: port 1(bridge_slave_0) entered forwarding state
[  579.213915][ T5161] bridge0: port 2(bridge_slave_1) entered blocking state
[  579.221216][ T5161] bridge0: port 2(bridge_slave_1) entered forwarding state
[  579.797456][T10428] netlink: 'syz.2.1226': attribute type 2 has an invalid length.
[  579.816105][T10428] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1226'.
[  580.133473][T10251] 8021q: adding VLAN 0 to HW filter on device batadv0
[  580.256925][T10431] loop2: detected capacity change from 0 to 4096
[  580.282050][T10431] ntfs3: Unknown parameter '
'
[  580.405156][T10251] veth0_vlan: entered promiscuous mode
[  580.477546][T10251] veth1_vlan: entered promiscuous mode
[  581.381151][T10251] veth0_macvtap: entered promiscuous mode
[  581.422808][T10251] veth1_macvtap: entered promiscuous mode
[  581.469135][T10251] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  581.480326][T10251] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  581.491956][T10251] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  581.502586][T10251] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  581.512516][T10251] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  581.524036][T10251] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  581.546941][T10251] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  581.570183][T10251] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  581.589652][T10251] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  581.605514][T10251] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  581.606462][T10449] loop3: detected capacity change from 0 to 256
[  581.619356][T10251] batman_adv: batadv0: Interface activated: batadv_slave_0
[  581.632993][T10451] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1233'.
[  581.659913][T10251] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  581.673256][T10251] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  581.686800][T10251] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  581.697390][T10449] exfat: Deprecated parameter 'utf8'
[  581.697463][T10449] exfat: Deprecated parameter 'namecase'
[  581.697505][T10449] exfat: Deprecated parameter 'namecase'
[  581.697603][T10449] exfat: Deprecated parameter 'namecase'
[  581.704285][T10251] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  581.749382][T10449] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6e84b2e, utbl_chksum : 0xe619d30d)
[  581.773338][T10251] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  581.790930][T10251] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  581.815801][T10251] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  581.858420][T10251] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  581.881019][T10251] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  581.908564][T10251] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  581.921347][T10251] batman_adv: batadv0: Interface activated: batadv_slave_1
[  582.059319][T10452] netlink: 'syz.0.1233': attribute type 1 has an invalid length.
[  582.193598][T10251] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  582.209876][T10251] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  582.238621][T10251] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  582.247388][T10251] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  582.291496][T10462] loop3: detected capacity change from 0 to 64
[  582.511300][ T2470] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  582.542191][ T2470] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  582.634287][ T3970] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  582.660839][ T3970] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  582.793332][T10464] loop4: detected capacity change from 0 to 4096
[  582.828795][T10464] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512).
[  582.872493][T10464] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  582.996714][T10464] ntfs3: loop4: Failed to initialize $Extend/$ObjId.
[  583.847405][T10478] loop4: detected capacity change from 0 to 4096
[  583.870634][T10478] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512).
[  583.915199][T10478] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  583.977868][T10478] ntfs3: loop4: Failed to initialize $Extend/$ObjId.
[  585.560362][T10491] loop0: detected capacity change from 0 to 32768
[  585.573385][T10491] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1243 (10491)
[  585.611145][T10491] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  585.621611][T10491] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  585.625101][T10494] loop4: detected capacity change from 0 to 256
[  585.630394][T10491] BTRFS info (device loop0): using free-space-tree
[  585.699603][T10494] exfat: Deprecated parameter 'utf8'
[  585.721188][T10494] exfat: Deprecated parameter 'namecase'
[  585.728116][T10494] exfat: Deprecated parameter 'namecase'
[  585.738822][T10494] exfat: Deprecated parameter 'namecase'
[  585.793451][T10494] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6e84b2e, utbl_chksum : 0xe619d30d)
[  587.320112][ T8538] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  587.772334][T10521] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1250'.
[  587.803224][T10521] nbd: couldn't find a device at index 123
[  587.862035][T10522] 9pnet_fd: Insufficient options for proto=fd
[  587.953741][ T8603] Bluetooth: hci0: unexpected event for opcode 0x2042
[  588.016850][T10529] input: syz1 as /devices/virtual/input/input15
[  589.034857][T10528] Bluetooth: hci0: Opcode 0x0401 failed: -4
[  589.661552][T10538] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  589.763855][T10538] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  589.968690][ T8603] Bluetooth: hci0: command 0x0406 tx timeout
[  591.592151][T10557] loop0: detected capacity change from 0 to 32768
[  591.605791][T10557] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1258 (10557)
[  591.633872][T10557] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  591.644146][T10557] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  591.653641][T10557] BTRFS info (device loop0): using free-space-tree
[  591.998923][ T8603] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  592.007994][ T8603] Bluetooth: hci0: Injecting HCI hardware error event
[  592.020461][ T8603] Bluetooth: hci0: hardware error 0x00
[  592.433850][T10581] loop3: detected capacity change from 0 to 32768
[  592.502420][T10581] BTRFS: device /dev/loop3 (7:3) using temp-fsid d63d7b8f-50b6-456a-9ec6-5cc980bcb269
[  592.512976][T10581] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.1260 (10581)
[  593.236811][T10581] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  593.247138][T10581] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  593.256083][T10581] BTRFS info (device loop3): using free-space-tree
[  593.375741][ T8538] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  594.129010][ T8603] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  594.630003][ T8794] BTRFS info (device loop3): last unmount of filesystem d63d7b8f-50b6-456a-9ec6-5cc980bcb269
[  595.125652][T10614] loop0: detected capacity change from 0 to 64
[  595.518605][ T5105] usb 2-1: new high-speed USB device number 19 using dummy_hcd
[  595.719269][ T5105] usb 2-1: Using ep0 maxpacket: 8
[  595.733441][ T5105] usb 2-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  595.753987][ T5105] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  595.777487][ T5105] usb 2-1: config 0 descriptor??
[  596.003668][T10629] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1269'.
[  596.528399][T10639] loop4: detected capacity change from 0 to 512
[  596.958809][T10635] loop3: detected capacity change from 0 to 4096
[  597.267131][T10635] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[  597.380340][   T29] audit: type=1326 audit(1721757034.675:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10615 comm="syz.1.1267" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f560cb75f19 code=0x0
[  598.289902][T10635] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 4096)
[  598.463904][T10647] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  598.725988][T10635] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1271'.
[  599.329977][ T5105] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  599.358524][ T5105] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to send software reset: ffffffb9
[  599.392540][ T5105] asix 2-1:0.0: probe with driver asix failed with error -71
[  599.448681][ T5105] usb 2-1: USB disconnect, device number 19
[  599.660268][T10661] sctp: [Deprecated]: syz.0.1274 (pid 10661) Use of struct sctp_assoc_value in delayed_ack socket option.
[  599.660268][T10661] Use struct sctp_sack_info instead
[  600.037652][T10668] ------------[ cut here ]------------
[  600.043427][T10668] WARNING: CPU: 1 PID: 10668 at mm/page_alloc.c:4707 __alloc_pages_noprof+0x36a/0x6c0
[  600.043475][T10668] Modules linked in:
[  600.043493][T10668] CPU: 1 UID: 0 PID: 10668 Comm: syz.4.1278 Not tainted 6.10.0-next-20240719-syzkaller #0
[  600.043518][T10668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  600.043532][T10668] RIP: 0010:__alloc_pages_noprof+0x36a/0x6c0
[  600.043558][T10668] Code: a9 00 00 08 00 0f 85 12 01 00 00 44 89 e9 81 e1 7f ff ff ff a9 00 00 04 00 44 0f 45 e9 e9 02 01 00 00 c6 05 a0 82 ac 0d 01 90 <0f> 0b 90 83 fb 0a 0f 86 6c fd ff ff 45 31 ed 48 c7 44 24 20 0e 36
[  600.043578][T10668] RSP: 0018:ffffc9000d1f7860 EFLAGS: 00010246
[  600.043598][T10668] RAX: 0000000000000000 RBX: 000000000000000b RCX: 0000000000000000
[  600.043613][T10668] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffc9000d1f78e8
[  600.043631][T10668] RBP: ffffc9000d1f7968 R08: ffffc9000d1f78e7 R09: 0000000000000000
[  600.043648][T10668] R10: ffffc9000d1f78c0 R11: fffff52001a3ef1d R12: 1ffff92001a3ef14
[  600.043666][T10668] R13: 0000000000040dc0 R14: dffffc0000000000 R15: 1ffff92001a3ef10
[  600.043683][T10668] FS:  00007f2b02f566c0(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000
[  600.043703][T10668] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  600.043719][T10668] CR2: 00000000203d0000 CR3: 0000000065bbc000 CR4: 00000000003506f0
[  600.043744][T10668] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  600.043758][T10668] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  600.043774][T10668] Call Trace:
[  600.043783][T10668]  <TASK>
[  600.043793][T10668]  ? __warn+0x168/0x4e0
[  600.043824][T10668]  ? __alloc_pages_noprof+0x36a/0x6c0
[  600.043854][T10668]  ? report_bug+0x2b3/0x500
[  600.043885][T10668]  ? __alloc_pages_noprof+0x36a/0x6c0
[  600.043916][T10668]  ? handle_bug+0x3e/0x70
[  600.043938][T10668]  ? exc_invalid_op+0x1a/0x50
[  600.043962][T10668]  ? asm_exc_invalid_op+0x1a/0x20
[  600.044006][T10668]  ? __alloc_pages_noprof+0x36a/0x6c0
[  600.044035][T10668]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  600.044061][T10668]  ? lockdep_hardirqs_on+0x99/0x150
[  600.044113][T10668]  ___kmalloc_large_node+0x8b/0x1d0
[  600.044148][T10668]  __kmalloc_large_node_noprof+0x1a/0x80
[  600.044179][T10668]  ? drm_mode_create_lease_ioctl+0x580/0x1dc0
[  600.044205][T10668]  __kmalloc_noprof+0x2ae/0x400
[  600.044231][T10668]  ? _copy_from_user+0xa6/0xe0
[  600.044268][T10668]  drm_mode_create_lease_ioctl+0x580/0x1dc0
[  600.044309][T10668]  ? __pfx_drm_mode_create_lease_ioctl+0x10/0x10
[  600.044352][T10668]  ? do_raw_spin_unlock+0x13c/0x8b0
[  600.044387][T10668]  ? _raw_spin_unlock+0x28/0x50
[  600.044418][T10668]  drm_ioctl_kernel+0x33a/0x440
[  600.044443][T10668]  ? __pfx_drm_mode_create_lease_ioctl+0x10/0x10
[  600.044469][T10668]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[  600.044492][T10668]  ? __might_fault+0xc6/0x120
[  600.044521][T10668]  drm_ioctl+0x611/0xad0
[  600.044543][T10668]  ? __pfx_drm_mode_create_lease_ioctl+0x10/0x10
[  600.044576][T10668]  ? __pfx_drm_ioctl+0x10/0x10
[  600.044618][T10668]  ? bpf_lsm_file_ioctl+0x9/0x10
[  600.044642][T10668]  ? security_file_ioctl+0x87/0xb0
[  600.044666][T10668]  ? __pfx_drm_ioctl+0x10/0x10
[  600.044689][T10668]  __se_sys_ioctl+0xfc/0x170
[  600.044726][T10668]  do_syscall_64+0xf3/0x230
[  600.044749][T10668]  ? clear_bhb_loop+0x35/0x90
[  600.044782][T10668]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  600.044817][T10668] RIP: 0033:0x7f2b02175f19
[  600.044839][T10668] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  600.044859][T10668] RSP: 002b:00007f2b02f56048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  600.044885][T10668] RAX: ffffffffffffffda RBX: 00007f2b02305f60 RCX: 00007f2b02175f19
[  600.044903][T10668] RDX: 0000000020000300 RSI: 00000000c01864c6 RDI: 0000000000000003
[  600.044919][T10668] RBP: 00007f2b021e4e68 R08: 0000000000000000 R09: 0000000000000000
[  600.044934][T10668] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  600.044948][T10668] R13: 000000000000000b R14: 00007f2b02305f60 R15: 00007ffc71495448
[  600.044981][T10668]  </TASK>
[  600.045002][T10668] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  600.447774][T10668] CPU: 1 UID: 0 PID: 10668 Comm: syz.4.1278 Not tainted 6.10.0-next-20240719-syzkaller #0
[  600.457678][T10668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  600.467742][T10668] Call Trace:
[  600.471033][T10668]  <TASK>
[  600.473980][T10668]  dump_stack_lvl+0x241/0x360
[  600.478676][T10668]  ? __pfx_dump_stack_lvl+0x10/0x10
[  600.483883][T10668]  ? __pfx__printk+0x10/0x10
[  600.488499][T10668]  ? vscnprintf+0x5d/0x90
[  600.492868][T10668]  panic+0x349/0x870
[  600.496798][T10668]  ? __warn+0x177/0x4e0
[  600.500971][T10668]  ? __pfx_panic+0x10/0x10
[  600.505706][T10668]  __warn+0x34b/0x4e0
[  600.509700][T10668]  ? __alloc_pages_noprof+0x36a/0x6c0
[  600.515172][T10668]  report_bug+0x2b3/0x500
[  600.519518][T10668]  ? __alloc_pages_noprof+0x36a/0x6c0
[  600.524907][T10668]  handle_bug+0x3e/0x70
[  600.529074][T10668]  exc_invalid_op+0x1a/0x50
[  600.533671][T10668]  asm_exc_invalid_op+0x1a/0x20
[  600.538555][T10668] RIP: 0010:__alloc_pages_noprof+0x36a/0x6c0
[  600.544545][T10668] Code: a9 00 00 08 00 0f 85 12 01 00 00 44 89 e9 81 e1 7f ff ff ff a9 00 00 04 00 44 0f 45 e9 e9 02 01 00 00 c6 05 a0 82 ac 0d 01 90 <0f> 0b 90 83 fb 0a 0f 86 6c fd ff ff 45 31 ed 48 c7 44 24 20 0e 36
[  600.564161][T10668] RSP: 0018:ffffc9000d1f7860 EFLAGS: 00010246
[  600.570242][T10668] RAX: 0000000000000000 RBX: 000000000000000b RCX: 0000000000000000
[  600.578221][T10668] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffc9000d1f78e8
[  600.586197][T10668] RBP: ffffc9000d1f7968 R08: ffffc9000d1f78e7 R09: 0000000000000000
[  600.594174][T10668] R10: ffffc9000d1f78c0 R11: fffff52001a3ef1d R12: 1ffff92001a3ef14
[  600.602186][T10668] R13: 0000000000040dc0 R14: dffffc0000000000 R15: 1ffff92001a3ef10
[  600.610188][T10668]  ? __pfx___alloc_pages_noprof+0x10/0x10
[  600.615926][T10668]  ? lockdep_hardirqs_on+0x99/0x150
[  600.621154][T10668]  ___kmalloc_large_node+0x8b/0x1d0
[  600.626373][T10668]  __kmalloc_large_node_noprof+0x1a/0x80
[  600.632029][T10668]  ? drm_mode_create_lease_ioctl+0x580/0x1dc0
[  600.638109][T10668]  __kmalloc_noprof+0x2ae/0x400
[  600.642976][T10668]  ? _copy_from_user+0xa6/0xe0
[  600.647784][T10668]  drm_mode_create_lease_ioctl+0x580/0x1dc0
[  600.653699][T10668]  ? __pfx_drm_mode_create_lease_ioctl+0x10/0x10
[  600.660054][T10668]  ? do_raw_spin_unlock+0x13c/0x8b0
[  600.665275][T10668]  ? _raw_spin_unlock+0x28/0x50
[  600.670229][T10668]  drm_ioctl_kernel+0x33a/0x440
[  600.675093][T10668]  ? __pfx_drm_mode_create_lease_ioctl+0x10/0x10
[  600.681453][T10668]  ? __pfx_drm_ioctl_kernel+0x10/0x10
[  600.686894][T10668]  ? __might_fault+0xc6/0x120
[  600.691605][T10668]  drm_ioctl+0x611/0xad0
[  600.695882][T10668]  ? __pfx_drm_mode_create_lease_ioctl+0x10/0x10
[  600.702255][T10668]  ? __pfx_drm_ioctl+0x10/0x10
[  600.707078][T10668]  ? bpf_lsm_file_ioctl+0x9/0x10
[  600.712038][T10668]  ? security_file_ioctl+0x87/0xb0
[  600.717185][T10668]  ? __pfx_drm_ioctl+0x10/0x10
[  600.721962][T10668]  __se_sys_ioctl+0xfc/0x170
[  600.726582][T10668]  do_syscall_64+0xf3/0x230
[  600.731102][T10668]  ? clear_bhb_loop+0x35/0x90
[  600.735799][T10668]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  600.741709][T10668] RIP: 0033:0x7f2b02175f19
[  600.746137][T10668] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  600.765764][T10668] RSP: 002b:00007f2b02f56048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  600.774201][T10668] RAX: ffffffffffffffda RBX: 00007f2b02305f60 RCX: 00007f2b02175f19
[  600.782201][T10668] RDX: 0000000020000300 RSI: 00000000c01864c6 RDI: 0000000000000003
[  600.790188][T10668] RBP: 00007f2b021e4e68 R08: 0000000000000000 R09: 0000000000000000
[  600.798169][T10668] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  600.806156][T10668] R13: 000000000000000b R14: 00007f2b02305f60 R15: 00007ffc71495448
[  600.814155][T10668]  </TASK>
[  600.817417][T10668] Kernel Offset: disabled
[  600.821746][T10668] Rebooting in 86400 seconds..