last executing test programs:

7m21.394110386s ago: executing program 1 (id=105):
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e20}, 0x1c)
listen(0xffffffffffffffff, 0x80080400)
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r1, &(0x7f0000e5c000)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x2f}}, 0x10)
getsockopt$inet_int(r0, 0x10d, 0xb0, &(0x7f0000000000), &(0x7f0000000280)=0x4)

7m21.326057559s ago: executing program 1 (id=107):
semctl$SEM_INFO(0x0, 0x4, 0x13, &(0x7f0000000000))

7m20.168081634s ago: executing program 1 (id=112):
r0 = socket$inet6(0xa, 0x6, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r1}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)=@newtaction={0x68, 0x30, 0x871a15abc695fa3d, 0x0, 0x0, {}, [{0x54, 0x1, [@m_ctinfo={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_CTINFO_ACT={0x18}, @TCA_CTINFO_ZONE={0x6, 0x4, 0x6}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x0)
r6 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r6, 0xc1105517, &(0x7f0000000340)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x6, 0x0, 0x4, 0x0, 0x59, 0x0, 'syz1\x00', 0x0})
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r6, 0x40405514, &(0x7f0000000040)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}})
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20}, 0x1c)
listen(r0, 0x80080400)
r7 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r7, &(0x7f0000e5c000)={0x2, 0x4e20, @remote}, 0x10)
getsockopt$inet_int(r7, 0x10d, 0xca, &(0x7f0000000000), &(0x7f0000000280)=0x4)

7m19.083775066s ago: executing program 1 (id=114):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000300)={[{@noauto_da_alloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}, {@dioread_lock}, {@norecovery}, {@discard}, {@lazytime}, {@noload}, {@usrquota}, {@noauto_da_alloc}]}, 0xfe, 0x54d, &(0x7f0000000400)="$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")
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000040)='./file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x1480, 0x0)
mount$bind(&(0x7f0000000180)='./file0\x00', &(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x1aec80, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x887008, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000000f00)={0x2020, 0x0, 0x0, <r1=>0x0}, 0x2020)
quotactl$Q_QUOTAON(0xffffffff80000202, 0x0, r1, 0x0)
close(r0)

7m17.875500994s ago: executing program 1 (id=121):
syz_mount_image$ext4(&(0x7f0000000b80)='ext4\x00', &(0x7f0000000bc0)='./file0\x00', 0x0, &(0x7f0000000c00), 0x1, 0xb80, &(0x7f0000000c40)="$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")
llistxattr(&(0x7f0000000080)='./file1\x00', 0x0, 0x0) (fail_nth: 1)

7m16.531458309s ago: executing program 1 (id=129):
r0 = socket$inet6(0xa, 0x6, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r1}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)=@newtaction={0x68, 0x30, 0x871a15abc695fa3d, 0x0, 0x0, {}, [{0x54, 0x1, [@m_ctinfo={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_CTINFO_ACT={0x18}, @TCA_CTINFO_ZONE={0x6, 0x4, 0x6}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x0)
r6 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r6, 0xc1105517, &(0x7f0000000340)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x6, 0x0, 0x4, 0x0, 0x59, 0x0, 'syz1\x00', 0x0})
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r6, 0x40405514, &(0x7f0000000040)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}})
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20}, 0x1c)
listen(r0, 0x80080400)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, &(0x7f00000000c0)=0x10)
connect$inet(0xffffffffffffffff, &(0x7f0000e5c000)={0x2, 0x4e20, @remote}, 0x10)
getsockopt$inet_int(0xffffffffffffffff, 0x10d, 0xca, &(0x7f0000000000), &(0x7f0000000280)=0x4)

7m15.44121507s ago: executing program 32 (id=129):
r0 = socket$inet6(0xa, 0x6, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r1}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000180)=@newtaction={0x68, 0x30, 0x871a15abc695fa3d, 0x0, 0x0, {}, [{0x54, 0x1, [@m_ctinfo={0x50, 0x1, 0x0, 0x0, {{0xb}, {0x24, 0x2, 0x0, 0x1, [@TCA_CTINFO_ACT={0x18}, @TCA_CTINFO_ZONE={0x6, 0x4, 0x6}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x68}}, 0x0)
r6 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r6, 0xc1105517, &(0x7f0000000340)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x6, 0x0, 0x4, 0x0, 0x59, 0x0, 'syz1\x00', 0x0})
ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r6, 0x40405514, &(0x7f0000000040)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}})
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e20}, 0x1c)
listen(r0, 0x80080400)
getsockopt$inet_sctp6_SCTP_RTOINFO(r0, 0x84, 0x0, &(0x7f0000000080)={0x0, 0x0, 0x3, 0x1}, &(0x7f00000000c0)=0x10)
connect$inet(0xffffffffffffffff, &(0x7f0000e5c000)={0x2, 0x4e20, @remote}, 0x10)
getsockopt$inet_int(0xffffffffffffffff, 0x10d, 0xca, &(0x7f0000000000), &(0x7f0000000280)=0x4)

38.415060623s ago: executing program 5 (id=1932):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000005c0)=@gettaction={0x64, 0x32, 0x711, 0x70bd29, 0x0, {}, [@action_gd=@TCA_ACT_TAB={0x44, 0x1, [{0xc, 0xd, 0x0, 0x0, @TCA_ACT_INDEX={0x8, 0x3, 0x80b1}}, {0xc, 0x2, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'ife\x00'}}, {0xc, 0x13, 0x0, 0x0, @TCA_ACT_INDEX={0x8}}, {0xc, 0xd, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'bpf\x00'}}, {0x10, 0x7, 0x0, 0x0, @TCA_ACT_KIND={0xb, 0x1, 'sample\x00'}}]}, @action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0x3}, @action_gd=@TCA_ACT_TAB={0x4}]}, 0x64}}, 0x240000c4)
r0 = socket$inet6(0xa, 0x2, 0x0)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0xa, @local, 0x3}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000000e40)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='$\x00\x00\x00\x00\x00\x00\x00)\x00\x00\x002\x00\x00'], 0x28, 0x7ffffff7}}], 0x1, 0x0)

37.603477728s ago: executing program 5 (id=1935):
syz_mount_image$nilfs2(&(0x7f0000000dc0), &(0x7f0000000400)='./file0\x00', 0x90, &(0x7f0000003280)=ANY=[@ANYBLOB="0001def4774774366f0b8a20db13db64e85fc9322c3fe018b91ff1291b4f4c56de7e4543f49818e1307d98d09daa1e2a7dbf88003e9401dc73aad0b7dbb5685565c7825ba8340621faeae92abed19c524ab06c4303258d253722e159642af447aeb096c6a26d345d82f2925163331b0e9157441a9c61dd1051d3b970f9ac12f5975cf1ad4e45acef1a54921c492a77bcb1858b68758ed339608b8e43c733219f1f9e0b867840f821e03bc0e8a497c4d5dde436000090a397637dedb2f3"], 0x5, 0xd99, &(0x7f0000006900)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.io_queued_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
ftruncate(r0, 0xc17a)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x193042, 0x88)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x50000, 0x0)
sendfile(r1, r2, 0x0, 0x100001)

37.410585949s ago: executing program 5 (id=1938):
r0 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000280)={0x41, 0x0, 0x1}, 0x10)
r1 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r1, 0x10f, 0x87, &(0x7f0000000040)={0x41}, 0x10)
r2 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000280)={0x41, 0x0, 0x2}, 0x10)
sendmsg$tipc(r2, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
r3 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000100)={0x41, 0x0, 0x2}, 0x1be)
sendmsg$tipc(r3, 0x0, 0x0)
sendmsg$tipc(r2, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000200), 0xfffffd9d)

37.289699266s ago: executing program 5 (id=1940):
openat$ppp(0xffffffffffffff9c, 0x0, 0x1e1042, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f00000000c0)=0x7)
ptrace$peek(0x2, r0, &(0x7f0000000100))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
connect$unix(r2, &(0x7f0000000280)=@file={0x0, './file0\x00'}, 0x6e)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_MON_GET(r3, 0x0, 0x8000)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, 0x2, 0x7, 0x201, 0x0, 0x0, {0x1, 0x0, 0x1}}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x4)

35.822180408s ago: executing program 5 (id=1943):
openat$ppp(0xffffffffffffff9c, &(0x7f0000000180), 0x1e1042, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
connect$unix(r2, &(0x7f0000000280)=@file={0x0, './file0\x00'}, 0x6e)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_MON_GET(r3, 0x0, 0x8000)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$inet_dccp(0x2, 0x6, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r5, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, 0x2, 0x7, 0x201, 0x0, 0x0, {0x1, 0x0, 0x1}}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x4)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r6)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x5}, @HCI_OP_USER_CONFIRM_NEG_REPLY}}, 0x45)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
getsockopt$inet_int(r4, 0x10d, 0xcd, &(0x7f0000000000), &(0x7f0000000080)=0x4)

34.389713709s ago: executing program 5 (id=1947):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f00000006c0)=@raw={'raw\x00', 0x4001, 0x3, 0x3e8, 0x0, 0x0, 0x148, 0x0, 0x148, 0x350, 0x240, 0x240, 0x350, 0x240, 0x7fffffe, 0x0, {[{{@ip={@private=0xa010102, @local, 0x0, 0x0, 'ip6gretap0\x00', 'nicvf0\x00', {}, {}, 0x88, 0x3, 0x10}, 0x0, 0xf8, 0x158, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'wg1\x00', {0x0, 0x0, 0x1ff, 0x100000, 0x0, 0xed, 0x7}}}, @common=@unspec=@connmark={{0x30}, {0xfffffff9, 0x8}}]}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, 0x85d, 0xf, [0x10, 0x32, 0x1e, 0x32, 0x2b, 0x25, 0x3f, 0x17, 0x19, 0x22, 0x2c, 0x3d, 0x7, 0x3f, 0x1e, 0x31], 0x0, 0x2, 0x2}}}, {{@ip={@rand_addr=0x64010101, @local, 0xff, 0x0, 'wg0\x00', 'lo\x00', {0xff}, {}, 0x2e, 0x3, 0x4}, 0x0, 0x190, 0x1f8, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x8, 0x9, 0x1, 0x1, 'syz1\x00', 0x2}}, @inet=@rpfilter={{0x28}, {0x8}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0xfff, 0x7e, 0x1c, 'netbios-ns\x00', 'syz0\x00', {0x3}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x448)
syz_emit_ethernet(0x3e, &(0x7f0000000e00)={@local, @random="c6eb8947e4e4", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @rand_addr=0x64010100, @local}, @time_exceeded={0xb, 0xe0dbf46ca9d044ba, 0x0, 0x3, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x89, 0x0, @private, @remote}}}}}}, 0x0)

19.318275085s ago: executing program 33 (id=1947):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x4000000000000, 0x40, &(0x7f00000006c0)=@raw={'raw\x00', 0x4001, 0x3, 0x3e8, 0x0, 0x0, 0x148, 0x0, 0x148, 0x350, 0x240, 0x240, 0x350, 0x240, 0x7fffffe, 0x0, {[{{@ip={@private=0xa010102, @local, 0x0, 0x0, 'ip6gretap0\x00', 'nicvf0\x00', {}, {}, 0x88, 0x3, 0x10}, 0x0, 0xf8, 0x158, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'wg1\x00', {0x0, 0x0, 0x1ff, 0x100000, 0x0, 0xed, 0x7}}}, @common=@unspec=@connmark={{0x30}, {0xfffffff9, 0x8}}]}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, 0x85d, 0xf, [0x10, 0x32, 0x1e, 0x32, 0x2b, 0x25, 0x3f, 0x17, 0x19, 0x22, 0x2c, 0x3d, 0x7, 0x3f, 0x1e, 0x31], 0x0, 0x2, 0x2}}}, {{@ip={@rand_addr=0x64010101, @local, 0xff, 0x0, 'wg0\x00', 'lo\x00', {0xff}, {}, 0x2e, 0x3, 0x4}, 0x0, 0x190, 0x1f8, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x8, 0x9, 0x1, 0x1, 'syz1\x00', 0x2}}, @inet=@rpfilter={{0x28}, {0x8}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0xfff, 0x7e, 0x1c, 'netbios-ns\x00', 'syz0\x00', {0x3}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x448)
syz_emit_ethernet(0x3e, &(0x7f0000000e00)={@local, @random="c6eb8947e4e4", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x1, 0x0, @rand_addr=0x64010100, @local}, @time_exceeded={0xb, 0xe0dbf46ca9d044ba, 0x0, 0x3, 0x0, 0x0, {0x5, 0x4, 0x0, 0x0, 0x0, 0x0, 0x400, 0x0, 0x89, 0x0, @private, @remote}}}}}}, 0x0)

8.927920989s ago: executing program 0 (id=2052):
openat$ppp(0xffffffffffffff9c, &(0x7f0000000180), 0x1e1042, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f00000000c0)=0x7)
ptrace$peek(0x2, 0x0, &(0x7f0000000100))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
connect$unix(r1, &(0x7f0000000280)=@file={0x0, './file0\x00'}, 0x6e)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_MON_GET(r2, 0x0, 0x8000)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$inet_dccp(0x2, 0x6, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, 0x2, 0x7, 0x201, 0x0, 0x0, {0x1, 0x0, 0x1}}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x4)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r5)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x5}, @HCI_OP_USER_CONFIRM_NEG_REPLY}}, 0x45)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
getsockopt$inet_int(r3, 0x10d, 0xcd, &(0x7f0000000000), &(0x7f0000000080)=0x4)

5.144977081s ago: executing program 2 (id=2066):
openat$ppp(0xffffffffffffff9c, &(0x7f0000000180), 0x1e1042, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f00000000c0)=0x7)
ptrace$peek(0x2, r0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
connect$unix(r2, &(0x7f0000000280)=@file={0x0, './file0\x00'}, 0x6e)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_MON_GET(r3, 0x0, 0x8000)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, 0x2, 0x7, 0x201, 0x0, 0x0, {0x1, 0x0, 0x1}}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x4)

4.766226972s ago: executing program 4 (id=2073):
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f00000000c0)='./file1\x00', 0x101880a, &(0x7f0000000400)=ANY=[@ANYBLOB="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"], 0x11, 0x550b, &(0x7f00000079c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file1\x00', 0x13142, 0x0)
pwritev2(r0, &(0x7f0000002300)=[{&(0x7f0000000140)="1d", 0x1}], 0x1, 0x0, 0x0, 0xd)

4.653898139s ago: executing program 6 (id=2074):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), 0xffffffffffffffff)
socket$nl_xfrm(0x10, 0x3, 0x6)
sendmmsg(0xffffffffffffffff, &(0x7f0000005980)=[{{0x0, 0x0, &(0x7f0000000bc0)=[{&(0x7f00000002c0)='{', 0x1}], 0x1, &(0x7f0000002200)=ANY=[], 0x4a0}}], 0x1, 0xffd8)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r2=>0x0})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REGISTER_FRAME(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={0x28, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_FRAME_MATCH={0x4}, @NL80211_ATTR_FRAME_TYPE={0x6, 0x65, 0x40}]}, 0x28}}, 0x0)
r4 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r4, &(0x7f0000000600)={0x0, 0x600, &(0x7f0000000840)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73772cc9f1ba1f848480000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)

4.653450689s ago: executing program 0 (id=2075):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f00000003c0)=0x2, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x9, 0x0, 0xffffffff}, 0x1c)
syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)

4.479438749s ago: executing program 0 (id=2076):
syz_mount_image$msdos(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f00000002c0), 0x1, 0x204, &(0x7f0000000300)="$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")
syz_open_dev$tty1(0xc, 0x4, 0x1)
syz_mount_image$hfsplus(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000000840)={[{}, {}, {@nls={'nls', 0x3d, 'iso8859-3'}}, {@uid}, {@nobarrier}, {@umask={'umask', 0x3d, 0x804}}]}, 0x0, 0x6ce, &(0x7f00000000c0)="$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")
r0 = socket$rxrpc(0x21, 0x2, 0xa)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x1901000000000000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x6)
r1 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000240), 0xfe, 0x557, &(0x7f0000000280)="$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")
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x200)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
openat$cgroup_ro(r1, &(0x7f0000000a00)='freezer.self_freezing\x00', 0x0, 0x0)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
bind$rxrpc(r0, &(0x7f0000000800)=@in4={0x21, 0x3, 0x2, 0x10, {0x2, 0x4e22, @broadcast}}, 0x24)

4.039772023s ago: executing program 2 (id=2077):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
madvise(&(0x7f0000162000/0x3000)=nil, 0x3000, 0x64)

4.039125883s ago: executing program 6 (id=2087):
capset(&(0x7f00000004c0)={0x20080522}, &(0x7f0000000500))
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
ioctl$sock_inet_SIOCADDRT(r0, 0x8919, &(0x7f0000000200)={0x0, {0x2, 0x4e22, @multicast2}, {0x2, 0x4e22, @empty}, {0x2, 0x4e23, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0x4, 0x0, 0x0, 0x0, 0x3, 0x0, 0xfffffffffffffc01, 0x8dc0, 0x3})

4.005729685s ago: executing program 6 (id=2078):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file1\x00', 0x8, &(0x7f0000000000)={[{@sb={'sb', 0x3d, 0x1}}, {@nodioread_nolock}, {@errors_remount}]}, 0x4, 0x511, &(0x7f0000000540)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x15b042, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x15ba42, 0x0)
ftruncate(r0, 0x4000fe1)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x1, 0x0, 0x39, 0x4}}, 0x20)
sendfile(r1, r0, 0x0, 0x2109c)

3.883469212s ago: executing program 4 (id=2079):
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'lo\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000010c0)=@newqdisc={0x78, 0x24, 0xd0f, 0x3, 0x0, {0x60, 0x0, 0x0, r1, {0x0, 0x2}, {0xffff, 0xffff}, {0x4}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x48, 0x2, {{0x10, 0x3, 0x1, 0x3, 0x400, 0x8}, [@TCA_NETEM_LOSS={0x2c, 0x5, 0x0, 0x1, [@NETEM_LOSS_GE={0x14, 0x2, {0x8, 0x4, 0x3, 0x5}}, @NETEM_LOSS_GE={0x14, 0x2, {0x0, 0x9, 0x8, 0x612}}]}]}}}]}, 0x78}, 0x1, 0x0, 0x0, 0x40001d4}, 0x8840)

3.823151725s ago: executing program 4 (id=2080):
unshare(0x400)
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/firmware/fdt', 0x208001, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000540)={r0}, 0x4)

3.659539145s ago: executing program 4 (id=2082):
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000001c0))
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000240)={&(0x7f00005df000/0x1000)=nil, &(0x7f0000257000/0x4000)=nil, 0x1000, 0x2})

3.659422415s ago: executing program 4 (id=2083):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_TSINFO_GET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000580)={0x20, r1, 0x6a98047402e98331, 0x0, 0x0, {}, [@HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x20}, 0x1, 0x0, 0x0, 0x8040}, 0x4044886)

3.643084056s ago: executing program 6 (id=2085):
madvise(&(0x7f00004ba000/0x2000)=nil, 0x2000, 0xc)
syz_clone(0x88200, 0x0, 0x0, 0x0, 0x0, 0x0)

3.595901558s ago: executing program 4 (id=2086):
openat$ppp(0xffffffffffffff9c, &(0x7f0000000180), 0x1e1042, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f00000000c0)=0x7)
ptrace$peek(0x2, 0x0, &(0x7f0000000100))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
connect$unix(r1, &(0x7f0000000280)=@file={0x0, './file0\x00'}, 0x6e)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_MON_GET(r2, 0x0, 0x8000)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$inet_dccp(0x2, 0x6, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r4, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, 0x2, 0x7, 0x201, 0x0, 0x0, {0x1, 0x0, 0x1}}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x4)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000002c0), r5)
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x5}, @HCI_OP_USER_CONFIRM_NEG_REPLY}}, 0x45)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
getsockopt$inet_int(r3, 0x10d, 0xcd, &(0x7f0000000000), &(0x7f0000000080)=0x4)

3.339341093s ago: executing program 6 (id=2089):
syz_mount_image$squashfs(&(0x7f0000000000), &(0x7f00000000c0)='./bus\x00', 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="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", @ANYRES64=0x0, @ANYRES16=0x0, @ANYRESHEX, @ANYRES64=0x0, @ANYRES32, @ANYRESOCT=0x0], 0x21, 0x1f9, &(0x7f0000000b80)="$eJzskr1rFEEYxp/ZndvsBWMOiYIiiBo0TXJ7Gzk/CgUbD7UQiRADgsdmcy5u/Mge6B0pVhBEbASDkCAWgiSIhfgPuIVVOoVgFwKpU6QQQRJXZvbdc47rrebXPDPvvPN+zdyJHkZ9AHa35z2gBAHHEL4xBg7gCJMmTJuZ2qRXSS06v2RkmpD+Jt093Z6cAlhwbL1qJHFmxM/VDXgYvIWzb698/H69sLC2b+v9F3Fy+UbrM9jJ6cF3bz69vLg4IMOzm1NqHDM5vGQfZbLYVzuT6xv8IIbyWMHC2n77z4HVp8sfqs9FB69nwJwlG8DY19HF887AC4NiRq323XoY+nPRhScGtmSqH9vznljcBpCmaSp7B1ADoPqI9lcUn0McmABgIu34cPyj3Jx9UI5a7dFgtt7wG/491x2vOqdoivCd8kwQ+g5TUtAEYQC/RBbxTEXlvABgB7gm9v3oRjil/VlpdM7Uu5bydCPHu+8aSlu5MiSdu33kJ2qfwAmI0T6KmWIdllE4ZEs1FGHSpsKV+rJcDQChP+bdt8kkPK2isgn9yiYKnYCuuhk/k38pPCMdJq2RLpNukuY/Ov+pXEYw6CVGYsDC43qzOVexgJU9dItsrhhctirF6sBE1pLZ3dw5Ez3s7TVpNBqNRqPRaDQazX/hbwAAAP//FKeYyA==")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000001880)=""/4085, 0xff5)

3.323596723s ago: executing program 0 (id=2090):
capset(0x0, 0xffffffffffffffff)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000003c0)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
write$cgroup_type(0xffffffffffffffff, 0x0, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
setsockopt$bt_BT_VOICE(r4, 0x112, 0xb, 0x0, 0x0)
listen(r0, 0x8)

2.300972631s ago: executing program 0 (id=2091):
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x206, 0x20182)
ioctl$USBDEVFS_ALLOW_SUSPEND(r0, 0x5522)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
ioctl$USBDEVFS_SETINTERFACE(r0, 0x80085504, &(0x7f0000000000)={0x7})

2.163474668s ago: executing program 0 (id=2092):
socket$inet_dccp(0x2, 0x6, 0x0)
r0 = socket$inet6_dccp(0xa, 0x6, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setsockopt$inet6_int(r0, 0x29, 0x11, &(0x7f0000000100)=0xffffffff, 0x4)

1.95779038s ago: executing program 3 (id=2093):
r0 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'lo\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000010c0)=@newqdisc={0x78, 0x24, 0xd0f, 0x3, 0x0, {0x60, 0x0, 0x0, r1, {0x0, 0x2}, {0xffff, 0xffff}, {0x4}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x48, 0x2, {{0x10, 0x3, 0x1, 0x3, 0x400, 0x8}, [@TCA_NETEM_LOSS={0x2c, 0x5, 0x0, 0x1, [@NETEM_LOSS_GE={0x14, 0x2, {0x8, 0x4, 0x3, 0x5}}, @NETEM_LOSS_GE={0x14, 0x2, {0x0, 0x9, 0x8, 0x612}}]}]}}}]}, 0x78}, 0x1, 0x0, 0x0, 0x40001d4}, 0x8840)

1.95718019s ago: executing program 6 (id=2103):
openat$ppp(0xffffffffffffff9c, &(0x7f0000000180), 0x1e1042, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f00000000c0)=0x7)
ptrace$peek(0x2, r0, &(0x7f0000000100))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
connect$unix(0xffffffffffffffff, &(0x7f0000000280)=@file={0x0, './file0\x00'}, 0x6e)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_MON_GET(r1, 0x0, 0x8000)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_GET_CTRZERO(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={0x14, 0x2, 0x7, 0x201, 0x0, 0x0, {0x1, 0x0, 0x1}}, 0x14}, 0x1, 0x0, 0x0, 0x20000000}, 0x4)

1.95690823s ago: executing program 2 (id=2094):
r0 = syz_io_uring_setup(0x819, &(0x7f0000000540)={0x0, 0x10000080, 0x10100, 0xffffffff, 0x1de}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000480)=<r2=>0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000040)=ANY=[@ANYBLOB='5'], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_UNLINKAT={0x24, 0x1b, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x200})
io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

1.873374365s ago: executing program 2 (id=2095):
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000040)='./bus\x00', 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x25, 0x5586, &(0x7f00000079c0)="$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")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events.local\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
madvise(&(0x7f000030d000/0x1000)=nil, 0x1000, 0x3)

1.854797736s ago: executing program 3 (id=2096):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f00000013c0)=0x80000000001, 0x4)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f00000002c0)="e8", 0xfffffffffffffd79, 0x2000c850, 0x0, 0x4d)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup3(r0, r1, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, &(0x7f0000000140)={&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0, 0x0, 0x0, &(0x7f0000001f00)=""/4106, 0xfffffffffffffccb, 0x0, 0x0}, &(0x7f0000000080)=0x40)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r2, 0x6, 0x23, &(0x7f00000000c0)={&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000001380)=0x40)

1.751523472s ago: executing program 3 (id=2097):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x5, &(0x7f0000000340)=ANY=[@ANYBLOB="180200000000e1ff00000000000000008500000053000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r3, 0x0, 0xe, 0x0, &(0x7f0000000000)="e0b9092dc1b6dbe9ab5becdcc777", 0x0, 0x400, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

753.870418ms ago: executing program 3 (id=2098):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={0x0}}, 0x0)
sendmsg$key(r0, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02030609100000000000004c9e0000000200130002000000da16c167d803f1f805000600200000000a00060000000000ff0000000000000000001ffeff0001000003f1dc7f7c6e7c0200010000000000004000020000000005000500000000000a"], 0x80}}, 0x0)
getsockopt$sock_int(r0, 0x1, 0x6, &(0x7f0000000f80), &(0x7f0000000fc0)=0x4)
bpf$MAP_CREATE(0x0, &(0x7f0000001000)=ANY=[@ANYBLOB="1000000004000000080000000500000000000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000000000000000328506446bd6ef4764ee3e98580e9226fe2fe5125a670d18cbc62d64bac0174c22d457ecf58df1d90e79f07b419f4672a42fca7be5fe08d4708acc24b5d34da3e2ae7eab3b8e5b1da2dd26f2cd75caa2a3b6fa7a2fd765622f068f1949d38a4ed64a0c18c1337561728d4ad7756b58a52d9a185d700d72408b6e640cc6ddc5671228eb50c15afb2905a59338089b0c0a62f3ad76472d0e49fc094658188a89fa831076fed9b3c8d384fc449c760baee041b0692fdef4d12b27d61861a4c57c597924d92da58a08eacf12a9dfa136b6fa19c63c9d48754ae8d89d8919e2a907e15ac105ae"], 0x48)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x2, 0xa, 0x0, 0x0, 0x2}, 0x10}}, 0x0)

634.074664ms ago: executing program 3 (id=2099):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x1, 0x0, 0x0, 0x20008040}, 0x4000010)
r0 = syz_io_uring_setup(0x77e8, &(0x7f0000000080)={0x0, 0xfffffffd, 0x10100}, &(0x7f0000000040)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000200)=ANY=[@ANYBLOB=','], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

503.456372ms ago: executing program 3 (id=2100):
syz_mount_image$msdos(&(0x7f0000000240), &(0x7f0000000280)='./file0\x00', 0x0, &(0x7f00000002c0), 0x1, 0x204, &(0x7f0000000300)="$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")
syz_open_dev$tty1(0xc, 0x4, 0x1)
syz_mount_image$hfsplus(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x0, &(0x7f0000000840)={[{}, {}, {@nls={'nls', 0x3d, 'iso8859-3'}}, {@uid}, {@nobarrier}, {@umask={'umask', 0x3d, 0x804}}]}, 0x0, 0x6ce, &(0x7f00000000c0)="$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")
r0 = socket$rxrpc(0x21, 0x2, 0xa)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x1901000000000000)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x6)
r1 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000240), 0xfe, 0x557, &(0x7f0000000280)="$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")
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x200)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
openat$cgroup_ro(r1, &(0x7f0000000a00)='freezer.self_freezing\x00', 0x0, 0x0)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
bind$rxrpc(r0, &(0x7f0000000800)=@in4={0x21, 0x3, 0x2, 0x10, {0x2, 0x4e22, @broadcast}}, 0x24)

141.108762ms ago: executing program 2 (id=2101):
r0 = socket(0x10, 0x803, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x1}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newtfilter={0x8c, 0x2c, 0xd2b, 0x0, 0x2, {0x0, 0x0, 0x0, r4, {0x6}, {}, {0x7}}, [@filter_kind_options=@f_u32={{0x8}, {0x60, 0x2, [@TCA_U32_SEL={0x44, 0x5, {0xe, 0x1, 0x3, 0x1, 0x4, 0x2, 0x6, 0xfffffffa, [{0x200, 0x500, 0x3, 0x1000}, {0x6783, 0x2, 0x8001, 0x10}, {0x0, 0x53, 0xa9, 0x1}]}}, @TCA_U32_ACT={0x4}, @TCA_U32_INDEV={0x14, 0x8, 'veth0_to_team\x00'}]}}]}, 0x8c}}, 0x4044040)

0s ago: executing program 2 (id=2102):
syz_open_dev$usbfs(&(0x7f0000000000), 0x6, 0x41)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
mlock2(&(0x7f00000ac000/0x3000)=nil, 0x3000, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x64)

kernel console output (not intermixed with test programs):

ad-only
[   64.856185][ T4326] EXT4-fs (loop2): 1 truncate cleaned up
[   64.857648][ T4326] EXT4-fs (loop2): mounted filesystem without journal. Opts: noblock_validity,errors=remount-ro,. Quota mode: none.
[   64.861007][ T4342] ntfs: (device loop0): load_system_files(): Failed to load $MFT/$BITMAP attribute.
[   64.871213][ T4342] ntfs: (device loop0): ntfs_fill_super(): Failed to load system files.
[   65.366979][ T4354] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   66.096796][ T4350] loop3: detected capacity change from 0 to 4096
[   66.378108][ T4363] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   67.552494][ T4350] NILFS (loop3): invalid segment: Checksum error in segment payload
[   67.567593][ T4350] NILFS (loop3): trying rollback from an earlier position
[   67.814189][ T4373] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   68.256298][ T4350] NILFS (loop3): recovery complete
[   68.275026][ T4350] NILFS (loop3): error -4 creating segctord thread
[   68.629658][ T4390] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[   68.631602][ T4390] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[   69.394289][ T4394] FAULT_INJECTION: forcing a failure.
[   69.394289][ T4394] name failslab, interval 1, probability 0, space 0, times 0
[   69.397548][ T4394] CPU: 0 PID: 4394 Comm: syz.0.57 Not tainted 5.15.178-syzkaller #0
[   69.399523][ T4394] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   69.402003][ T4394] Call trace:
[   69.402869][ T4394]  dump_backtrace+0x0/0x530
[   69.404102][ T4394]  show_stack+0x2c/0x3c
[   69.405268][ T4394]  dump_stack_lvl+0x108/0x170
[   69.406464][ T4394]  dump_stack+0x1c/0x58
[   69.407602][ T4394]  should_fail+0x3b8/0x514
[   69.408836][ T4394]  __should_failslab+0xbc/0x110
[   69.410070][ T4394]  should_failslab+0x10/0x28
[   69.411313][ T4394]  slab_pre_alloc_hook+0x64/0xe8
[   69.412646][ T4394]  __kmalloc+0xc0/0x4c8
[   69.413689][ T4394]  tomoyo_realpath_from_path+0xd0/0x508
[   69.415068][ T4394]  tomoyo_path_number_perm+0x1f8/0x6b0
[   69.416386][ T4394]  tomoyo_file_ioctl+0x2c/0x3c
[   69.417429][ T4394]  security_file_ioctl+0x80/0xbc
[   69.418572][ T4394]  __arm64_sys_ioctl+0xa8/0x1c8
[   69.419706][ T4394]  invoke_syscall+0x98/0x2b8
[   69.420931][ T4394]  el0_svc_common+0x138/0x258
[   69.422076][ T4394]  do_el0_svc+0x58/0x14c
[   69.423111][ T4394]  el0_svc+0x7c/0x1f0
[   69.424085][ T4394]  el0t_64_sync_handler+0x84/0xe4
[   69.425297][ T4394]  el0t_64_sync+0x1a0/0x1a4
[   69.426585][ T4394] ERROR: Out of memory at tomoyo_realpath_from_path.
[   69.763152][ T2057] ieee802154 phy0 wpan0: encryption failed: -22
[   69.765126][ T2057] ieee802154 phy1 wpan1: encryption failed: -22
[   69.829170][ T4390] loop4: detected capacity change from 0 to 512
[   69.843026][ T4398] loop0: detected capacity change from 0 to 512
[   70.071172][ T4403] loop1: detected capacity change from 0 to 128
[   70.084184][ T4390] EXT2-fs (loop4): error: revision level too high, forcing read-only mode
[   70.104048][ T4390] EXT2-fs (loop4): 0.5b, 95/08/09, bs=4096, gc=1, bpg=32768, ipg=32, mo=a0028]
[   70.836396][ T4390] EXT2-fs (loop4): error: revision level too high, forcing read-only mode
[   70.838833][ T4390] EXT2-fs (loop4): 0.5b, 95/08/09, bs=4096, gc=1, bpg=32768, ipg=32, mo=a0028]
[   70.846575][ T4398] EXT4-fs error (device loop0): ext4_get_branch:178: inode #13: block 33619980: comm syz.0.60: invalid block
[   70.852630][ T4398] EXT4-fs (loop0): Remounting filesystem read-only
[   70.934645][ T4398] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:476: comm syz.0.60: Invalid block bitmap block 0 in block_group 0
[   70.941035][ T4411] FAULT_INJECTION: forcing a failure.
[   70.941035][ T4411] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   70.944993][ T4398] EXT4-fs (loop0): Remounting filesystem read-only
[   70.946627][ T4398] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6183: Corrupt filesystem
[   70.954209][ T4411] CPU: 1 PID: 4411 Comm: syz.2.65 Not tainted 5.15.178-syzkaller #0
[   70.956284][ T4411] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   70.958881][ T4411] Call trace:
[   70.959710][ T4411]  dump_backtrace+0x0/0x530
[   70.960866][ T4411]  show_stack+0x2c/0x3c
[   70.961904][ T4411]  dump_stack_lvl+0x108/0x170
[   70.963152][ T4411]  dump_stack+0x1c/0x58
[   70.964244][ T4411]  should_fail+0x3b8/0x514
[   70.965212][ T4398] EXT4-fs (loop0): Remounting filesystem read-only
[   70.965474][ T4411]  should_fail_usercopy+0x20/0x30
[   70.967160][ T4398] EXT4-fs error (device loop0): ext4_clear_blocks:883: inode #13: comm syz.0.60: attempt to clear invalid blocks 983261 len 1
[   70.968411][ T4411]  copy_from_bpfptr+0x78/0x20c
[   70.973141][ T4411]  __sys_bpf+0x1b8/0x610
[   70.974194][ T4411]  __arm64_sys_bpf+0x80/0x98
[   70.975307][ T4411]  invoke_syscall+0x98/0x2b8
[   70.976514][ T4411]  el0_svc_common+0x138/0x258
[   70.977667][ T4411]  do_el0_svc+0x58/0x14c
[   70.978741][ T4411]  el0_svc+0x7c/0x1f0
[   70.979743][ T4411]  el0t_64_sync_handler+0x84/0xe4
[   70.980978][ T4411]  el0t_64_sync+0x1a0/0x1a4
[   71.010663][ T4398] EXT4-fs (loop0): Remounting filesystem read-only
[   71.012368][ T4398] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.60: invalid indirect mapped block 2683928664 (level 0)
[   71.025505][ T4398] EXT4-fs (loop0): Remounting filesystem read-only
[   71.027203][ T4398] EXT4-fs error (device loop0): __ext4_get_inode_loc:4320: comm syz.0.60: Invalid inode table block 0 in block_group 0
[   71.061599][ T4398] EXT4-fs (loop0): Remounting filesystem read-only
[   71.063374][ T4398] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5806: Corrupt filesystem
[   71.084073][ T4398] EXT4-fs (loop0): Remounting filesystem read-only
[   71.085800][ T4398] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[   71.103503][ T4398] EXT4-fs (loop0): Remounting filesystem read-only
[   71.107313][ T4398] EXT4-fs error (device loop0): __ext4_get_inode_loc:4320: comm syz.0.60: Invalid inode table block 0 in block_group 0
[   71.164163][ T4398] EXT4-fs (loop0): Remounting filesystem read-only
[   71.165841][ T4398] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5806: Corrupt filesystem
[   71.173747][ T4398] EXT4-fs (loop0): Remounting filesystem read-only
[   71.175493][ T4398] EXT4-fs error (device loop0): ext4_truncate:4272: inode #13: comm syz.0.60: mark_inode_dirty error
[   71.257200][ T4422] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   71.282520][ T4398] EXT4-fs (loop0): Remounting filesystem read-only
[   71.294397][ T4398] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[   71.653244][ T4398] EXT4-fs (loop0): Remounting filesystem read-only
[   71.788705][ T4398] EXT4-fs error (device loop0): __ext4_get_inode_loc:4320: comm syz.0.60: Invalid inode table block 0 in block_group 0
[   71.841179][ T4398] EXT4-fs (loop0): Remounting filesystem read-only
[   71.843183][ T4398] EXT4-fs (loop0): 1 truncate cleaned up
[   71.876277][ T4398] EXT4-fs (loop0): mounted filesystem without journal. Opts: noblock_validity,errors=remount-ro,. Quota mode: none.
[   72.295024][ T4436] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   72.962488][ T4441] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   72.978797][ T4423] loop2: detected capacity change from 0 to 4096
[   73.552009][ T4453] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   74.023777][    C0] sched: RT throttling activated
[   74.487523][ T4466] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   74.760029][ T1534] cfg80211: failed to load regulatory.db
[   75.067948][ T4457] loop4: detected capacity change from 0 to 4096
[   75.128641][ T4472] loop2: detected capacity change from 0 to 1024
[   75.203289][ T4457] NILFS (loop4): invalid segment: Checksum error in segment payload
[   75.212224][ T4457] NILFS (loop4): trying rollback from an earlier position
[   75.246577][ T4457] NILFS (loop4): recovery complete
[   75.271416][ T4476] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   75.436139][ T4483] loop1: detected capacity change from 0 to 512
[   75.619902][ T4484] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   76.111686][ T4483] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:476: comm syz.1.80: Invalid block bitmap block 0 in block_group 0
[   76.116356][ T4483] EXT4-fs (loop1): Remounting filesystem read-only
[   76.117930][ T4483] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6183: Corrupt filesystem
[   76.146260][ T4483] EXT4-fs (loop1): Remounting filesystem read-only
[   76.147939][ T4483] EXT4-fs error (device loop1): ext4_clear_blocks:883: inode #13: comm syz.1.80: attempt to clear invalid blocks 983261 len 1
[   76.173237][ T4483] EXT4-fs (loop1): Remounting filesystem read-only
[   76.182676][ T4483] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.80: invalid indirect mapped block 2683928664 (level 0)
[   76.217696][ T4483] EXT4-fs (loop1): Remounting filesystem read-only
[   76.219581][ T4483] EXT4-fs error (device loop1): __ext4_get_inode_loc:4320: comm syz.1.80: Invalid inode table block 0 in block_group 0
[   76.234113][ T4483] EXT4-fs (loop1): Remounting filesystem read-only
[   76.235835][ T4483] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5806: Corrupt filesystem
[   76.247725][ T4483] EXT4-fs (loop1): Remounting filesystem read-only
[   76.249462][ T4483] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[   76.254217][ T4483] EXT4-fs (loop1): Remounting filesystem read-only
[   76.256146][ T4483] EXT4-fs error (device loop1): __ext4_get_inode_loc:4320: comm syz.1.80: Invalid inode table block 0 in block_group 0
[   76.271945][ T4483] EXT4-fs (loop1): Remounting filesystem read-only
[   76.273565][ T4483] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5806: Corrupt filesystem
[   76.293866][ T4483] EXT4-fs (loop1): Remounting filesystem read-only
[   76.295679][ T4483] EXT4-fs error (device loop1): ext4_truncate:4272: inode #13: comm syz.1.80: mark_inode_dirty error
[   76.304158][ T4483] EXT4-fs (loop1): Remounting filesystem read-only
[   76.305880][ T4483] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[   76.310019][ T4483] EXT4-fs (loop1): Remounting filesystem read-only
[   76.311815][ T4483] EXT4-fs error (device loop1): __ext4_get_inode_loc:4320: comm syz.1.80: Invalid inode table block 0 in block_group 0
[   76.330445][ T4483] EXT4-fs (loop1): Remounting filesystem read-only
[   76.332416][ T4483] EXT4-fs (loop1): 1 truncate cleaned up
[   76.334451][ T4483] EXT4-fs (loop1): mounted filesystem without journal. Opts: noblock_validity,errors=remount-ro,. Quota mode: none.
[   77.522586][ T4511] loop2: detected capacity change from 0 to 4096
[   77.605552][ T4514] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   78.301493][ T4518] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   78.752980][ T4520] netlink: 88 bytes leftover after parsing attributes in process `syz.3.90'.
[   78.910405][ T4522] FAULT_INJECTION: forcing a failure.
[   78.910405][ T4522] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   78.915065][ T4522] CPU: 0 PID: 4522 Comm: syz.4.87 Not tainted 5.15.178-syzkaller #0
[   78.917118][ T4522] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   78.919702][ T4522] Call trace:
[   78.920463][ T4522]  dump_backtrace+0x0/0x530
[   78.921577][ T4522]  show_stack+0x2c/0x3c
[   78.922654][ T4522]  dump_stack_lvl+0x108/0x170
[   78.923796][ T4522]  dump_stack+0x1c/0x58
[   78.924906][ T4522]  should_fail+0x3b8/0x514
[   78.926013][ T4522]  should_fail_usercopy+0x20/0x30
[   78.927248][ T4522]  __copy_msghdr_from_user+0xbc/0x5d0
[   78.928599][ T4522]  ___sys_sendmsg+0x154/0x294
[   78.929781][ T4522]  __arm64_sys_sendmsg+0x1ac/0x25c
[   78.930967][ T4522]  invoke_syscall+0x98/0x2b8
[   78.932130][ T4522]  el0_svc_common+0x138/0x258
[   78.933349][ T4522]  do_el0_svc+0x58/0x14c
[   78.934438][ T4522]  el0_svc+0x7c/0x1f0
[   78.935370][ T4522]  el0t_64_sync_handler+0x84/0xe4
[   78.936629][ T4522]  el0t_64_sync+0x1a0/0x1a4
[   79.075095][ T4528] nftables ruleset with unbound set
[   79.243720][ T4530] FAULT_INJECTION: forcing a failure.
[   79.243720][ T4530] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   79.247674][ T4530] CPU: 1 PID: 4530 Comm: syz.3.93 Not tainted 5.15.178-syzkaller #0
[   79.249681][ T4530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   79.252288][ T4530] Call trace:
[   79.253130][ T4530]  dump_backtrace+0x0/0x530
[   79.254331][ T4530]  show_stack+0x2c/0x3c
[   79.255420][ T4530]  dump_stack_lvl+0x108/0x170
[   79.256619][ T4530]  dump_stack+0x1c/0x58
[   79.257588][ T4530]  should_fail+0x3b8/0x514
[   79.258622][ T4530]  should_fail_usercopy+0x20/0x30
[   79.259815][ T4530]  simple_read_from_buffer+0xd8/0x26c
[   79.261157][ T4530]  proc_fail_nth_read+0x1a0/0x248
[   79.262443][ T4530]  vfs_read+0x278/0xb18
[   79.263469][ T4530]  ksys_read+0x15c/0x26c
[   79.264527][ T4530]  __arm64_sys_read+0x7c/0x90
[   79.265801][ T4530]  invoke_syscall+0x98/0x2b8
[   79.266999][ T4530]  el0_svc_common+0x138/0x258
[   79.268289][ T4530]  do_el0_svc+0x58/0x14c
[   79.269314][ T4530]  el0_svc+0x7c/0x1f0
[   79.270408][ T4530]  el0t_64_sync_handler+0x84/0xe4
[   79.271736][ T4530]  el0t_64_sync+0x1a0/0x1a4
[   80.136759][ T4546] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   80.580380][ T4551] loop3: detected capacity change from 0 to 512
[   81.162467][ T4565] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   81.202907][ T4561] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   81.528955][ T4551] EXT4-fs error (device loop3): ext4_get_branch:178: inode #13: block 33619980: comm syz.3.96: invalid block
[   81.715359][ T4551] EXT4-fs (loop3): Remounting filesystem read-only
[   81.724627][ T4551] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:476: comm syz.3.96: Invalid block bitmap block 0 in block_group 0
[   81.773930][ T4551] EXT4-fs (loop3): Remounting filesystem read-only
[   81.775627][ T4551] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6183: Corrupt filesystem
[   81.793507][ T4551] EXT4-fs (loop3): Remounting filesystem read-only
[   81.797515][ T4551] EXT4-fs error (device loop3): ext4_clear_blocks:883: inode #13: comm syz.3.96: attempt to clear invalid blocks 983261 len 1
[   81.813878][ T4551] EXT4-fs (loop3): Remounting filesystem read-only
[   81.815864][ T4551] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.96: invalid indirect mapped block 2683928664 (level 0)
[   81.819802][ T4551] EXT4-fs (loop3): Remounting filesystem read-only
[   81.821411][ T4551] EXT4-fs error (device loop3): __ext4_get_inode_loc:4320: comm syz.3.96: Invalid inode table block 0 in block_group 0
[   81.845642][ T4551] EXT4-fs (loop3): Remounting filesystem read-only
[   81.847444][ T4551] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5806: Corrupt filesystem
[   81.874404][ T4551] EXT4-fs (loop3): Remounting filesystem read-only
[   81.876124][ T4551] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[   81.915236][ T4551] EXT4-fs (loop3): Remounting filesystem read-only
[   81.917031][ T4551] EXT4-fs error (device loop3): __ext4_get_inode_loc:4320: comm syz.3.96: Invalid inode table block 0 in block_group 0
[   81.949220][ T4557] loop4: detected capacity change from 0 to 32768
[   81.954850][ T4551] EXT4-fs (loop3): Remounting filesystem read-only
[   81.956557][ T4551] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5806: Corrupt filesystem
[   81.985639][ T4551] EXT4-fs (loop3): Remounting filesystem read-only
[   81.987324][ T4551] EXT4-fs error (device loop3): ext4_truncate:4272: inode #13: comm syz.3.96: mark_inode_dirty error
[   81.994348][ T4551] EXT4-fs (loop3): Remounting filesystem read-only
[   81.996266][ T4551] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[   81.999260][ T4551] EXT4-fs (loop3): Remounting filesystem read-only
[   82.000922][ T4551] EXT4-fs error (device loop3): __ext4_get_inode_loc:4320: comm syz.3.96: Invalid inode table block 0 in block_group 0
[   82.025450][ T4551] EXT4-fs (loop3): Remounting filesystem read-only
[   82.028184][ T4551] EXT4-fs (loop3): 1 truncate cleaned up
[   82.029673][ T4551] EXT4-fs (loop3): mounted filesystem without journal. Opts: noblock_validity,errors=remount-ro,. Quota mode: none.
[   82.560239][ T4582] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   83.415011][ T4598] FAULT_INJECTION: forcing a failure.
[   83.415011][ T4598] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   83.418811][ T4598] CPU: 0 PID: 4598 Comm: syz.2.111 Not tainted 5.15.178-syzkaller #0
[   83.420934][ T4598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   83.423797][ T4598] Call trace:
[   83.424642][ T4598]  dump_backtrace+0x0/0x530
[   83.425705][ T4598]  show_stack+0x2c/0x3c
[   83.426710][ T4598]  dump_stack_lvl+0x108/0x170
[   83.427930][ T4598]  dump_stack+0x1c/0x58
[   83.428961][ T4598]  should_fail+0x3b8/0x514
[   83.430140][ T4598]  should_fail_usercopy+0x20/0x30
[   83.431453][ T4598]  semctl_info+0x2d0/0x634
[   83.432587][ T4598]  __arm64_sys_semctl+0x2a0/0x588
[   83.433949][ T4598]  invoke_syscall+0x98/0x2b8
[   83.435146][ T4598]  el0_svc_common+0x138/0x258
[   83.436485][ T4598]  do_el0_svc+0x58/0x14c
[   83.437554][ T4598]  el0_svc+0x7c/0x1f0
[   83.438591][ T4598]  el0t_64_sync_handler+0x84/0xe4
[   83.439894][ T4598]  el0t_64_sync+0x1a0/0x1a4
[   84.207579][ T4607] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   84.557413][ T4611] loop1: detected capacity change from 0 to 1024
[   84.986936][ T4618] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   85.338530][ T4612] loop0: detected capacity change from 0 to 4096
[   85.365957][ T4611] EXT4-fs (loop1): mounted filesystem without journal. Opts: noauto_da_alloc,max_dir_size_kb=0x0000000000000001,dioread_lock,norecovery,discard,lazytime,noload,usrquota,noauto_da_alloc,,errors=continue. Quota mode: writeback.
[   85.607886][ T4627] input: syz1 as /devices/virtual/input/input2
[   85.640027][ T4631] loop4: detected capacity change from 0 to 512
[   85.668439][ T4631] EXT4-fs error (device loop4): ext4_get_branch:178: inode #13: block 33619980: comm syz.4.119: invalid block
[   85.697312][ T4631] EXT4-fs (loop4): Remounting filesystem read-only
[   85.719194][ T4631] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:476: comm syz.4.119: Invalid block bitmap block 0 in block_group 0
[   85.833043][ T4631] EXT4-fs (loop4): Remounting filesystem read-only
[   85.834771][ T4631] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6183: Corrupt filesystem
[   85.876633][ T4636] input input3: cannot allocate more than FF_MAX_EFFECTS effects
[   85.897068][ T4631] EXT4-fs (loop4): Remounting filesystem read-only
[   85.898871][ T4631] EXT4-fs error (device loop4): ext4_clear_blocks:883: inode #13: comm syz.4.119: attempt to clear invalid blocks 983261 len 1
[   85.907754][ T4631] EXT4-fs (loop4): Remounting filesystem read-only
[   85.909545][ T4631] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.119: invalid indirect mapped block 2683928664 (level 0)
[   85.935562][ T4631] EXT4-fs (loop4): Remounting filesystem read-only
[   85.940246][ T4631] EXT4-fs error (device loop4): __ext4_get_inode_loc:4320: comm syz.4.119: Invalid inode table block 0 in block_group 0
[   85.956871][ T4631] EXT4-fs (loop4): Remounting filesystem read-only
[   85.958685][ T4631] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5806: Corrupt filesystem
[   85.981478][ T4631] EXT4-fs (loop4): Remounting filesystem read-only
[   85.983208][ T4631] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[   85.999811][ T4631] EXT4-fs (loop4): Remounting filesystem read-only
[   86.001603][ T4631] EXT4-fs error (device loop4): __ext4_get_inode_loc:4320: comm syz.4.119: Invalid inode table block 0 in block_group 0
[   86.054228][ T4631] EXT4-fs (loop4): Remounting filesystem read-only
[   86.056130][ T4631] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5806: Corrupt filesystem
[   86.075797][ T4631] EXT4-fs (loop4): Remounting filesystem read-only
[   86.077594][ T4631] EXT4-fs error (device loop4): ext4_truncate:4272: inode #13: comm syz.4.119: mark_inode_dirty error
[   86.088251][ T4638] loop3: detected capacity change from 0 to 4096
[   86.090341][ T4631] EXT4-fs (loop4): Remounting filesystem read-only
[   86.097084][ T4631] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[   86.103215][ T4631] EXT4-fs (loop4): Remounting filesystem read-only
[   86.108694][ T4631] EXT4-fs error (device loop4): __ext4_get_inode_loc:4320: comm syz.4.119: Invalid inode table block 0 in block_group 0
[   86.133888][ T4631] EXT4-fs (loop4): Remounting filesystem read-only
[   86.135980][ T4631] EXT4-fs (loop4): 1 truncate cleaned up
[   86.137456][ T4631] EXT4-fs (loop4): mounted filesystem without journal. Opts: noblock_validity,errors=remount-ro,. Quota mode: none.
[   86.159556][ T4638] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   86.615320][ T4647] loop0: detected capacity change from 0 to 128
[   86.690061][ T4647] EXT4-fs (loop0): mounted filesystem without journal. Opts: minixdf,nodelalloc,,errors=continue. Quota mode: none.
[   86.718104][ T4647] Zero length message leads to an empty skb
[   86.721640][ T4647] mmap: syz.0.126 (4647): VmData 52170752 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[   86.939903][ T4219] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   87.034971][ T4219] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   87.936314][ T4219] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.113148][ T4219] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.465111][ T4673] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   89.119144][ T4666] loop4: detected capacity change from 0 to 4096
[   89.129156][ T4676] FAULT_INJECTION: forcing a failure.
[   89.129156][ T4676] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   89.132489][ T4676] CPU: 1 PID: 4676 Comm: syz.0.133 Not tainted 5.15.178-syzkaller #0
[   89.134467][ T4676] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   89.136879][ T4676] Call trace:
[   89.137714][ T4676]  dump_backtrace+0x0/0x530
[   89.138860][ T4676]  show_stack+0x2c/0x3c
[   89.139989][ T4676]  dump_stack_lvl+0x108/0x170
[   89.141187][ T4676]  dump_stack+0x1c/0x58
[   89.142235][ T4676]  should_fail+0x3b8/0x514
[   89.143368][ T4676]  should_fail_usercopy+0x20/0x30
[   89.144660][ T4676]  simple_read_from_buffer+0xd8/0x26c
[   89.146052][ T4676]  proc_fail_nth_read+0x1a0/0x248
[   89.147326][ T4676]  vfs_read+0x278/0xb18
[   89.148400][ T4676]  ksys_read+0x15c/0x26c
[   89.149442][ T4676]  __arm64_sys_read+0x7c/0x90
[   89.150657][ T4676]  invoke_syscall+0x98/0x2b8
[   89.151843][ T4676]  el0_svc_common+0x138/0x258
[   89.153051][ T4676]  do_el0_svc+0x58/0x14c
[   89.154150][ T4676]  el0_svc+0x7c/0x1f0
[   89.155105][ T4676]  el0t_64_sync_handler+0x84/0xe4
[   89.156355][ T4676]  el0t_64_sync+0x1a0/0x1a4
[   89.320080][ T4678] input: syz1 as /devices/virtual/input/input4
[   89.604797][ T4686] loop2: detected capacity change from 0 to 4096
[   90.109968][ T4674] loop3: detected capacity change from 0 to 40427
[   90.110600][ T4679] chnl_net:caif_netlink_parms(): no params data found
[   90.179350][ T4674] F2FS-fs (loop3): quotafile must be on filesystem root
[   90.331841][ T4679] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.336328][ T4679] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.350949][ T4679] device bridge_slave_0 entered promiscuous mode
[   90.364605][ T4679] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.368817][ T4679] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.371292][ T4679] device bridge_slave_1 entered promiscuous mode
[   90.485644][ T4679] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   90.496456][ T4679] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   90.568220][ T4724] FAULT_INJECTION: forcing a failure.
[   90.568220][ T4724] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   90.581990][ T4724] CPU: 1 PID: 4724 Comm: syz.0.142 Not tainted 5.15.178-syzkaller #0
[   90.584092][ T4724] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   90.586663][ T4724] Call trace:
[   90.587391][ T4724]  dump_backtrace+0x0/0x530
[   90.588489][ T4724]  show_stack+0x2c/0x3c
[   90.589473][ T4724]  dump_stack_lvl+0x108/0x170
[   90.590701][ T4724]  dump_stack+0x1c/0x58
[   90.591748][ T4724]  should_fail+0x3b8/0x514
[   90.592844][ T4724]  should_fail_usercopy+0x20/0x30
[   90.594093][ T4724]  tcp_setsockopt+0x2fc/0x33ec
[   90.595319][ T4724]  sock_common_setsockopt+0xb0/0xcc
[   90.596663][ T4724]  __sys_setsockopt+0x3a8/0x6b4
[   90.597864][ T4724]  __arm64_sys_setsockopt+0xb8/0xd4
[   90.599154][ T4724]  invoke_syscall+0x98/0x2b8
[   90.600275][ T4724]  el0_svc_common+0x138/0x258
[   90.601516][ T4724]  do_el0_svc+0x58/0x14c
[   90.602639][ T4724]  el0_svc+0x7c/0x1f0
[   90.603752][ T4724]  el0t_64_sync_handler+0x84/0xe4
[   90.604921][ T4724]  el0t_64_sync+0x1a0/0x1a4
[   90.662091][ T4679] team0: Port device team_slave_0 added
[   90.671674][ T4679] team0: Port device team_slave_1 added
[   90.683677][ T4722] loop3: detected capacity change from 0 to 8192
[   90.781425][ T4679] batman_adv: batadv0: Adding interface: batadv_slave_0
[   90.783384][ T4679] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   90.801223][ T4732] loop4: detected capacity change from 0 to 4096
[   90.803101][ T4679] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   90.807603][ T4679] batman_adv: batadv0: Adding interface: batadv_slave_1
[   90.809390][ T4679] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   90.816146][ T4679] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   90.843163][ T4722] REISERFS (device loop3): found reiserfs format "3.5" with non-standard journal
[   90.845800][ T4722] REISERFS (device loop3): using ordered data mode
[   90.851814][ T4722] reiserfs: using flush barriers
[   90.855781][ T4722] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[   90.864166][ T4722] REISERFS (device loop3): checking transaction log (loop3)
[   90.871735][ T4722] REISERFS warning: reiserfs-5094 has_valid_deh_location: directory entry location seems wrong *3.5*[-4 -1 0x2 UNKNOWN], item_len 0, item_location 2048, free_space(entry_count) 255
[   90.880403][ T4722] REISERFS error (device loop3): vs-5150 search_by_key: invalid format found in block 531. Fsck?
[   90.883203][ T4722] REISERFS error (device loop3): vs-13070 reiserfs_read_locked_inode: i/o failure occurred trying to find stat data of [1 2 0x0 SD]
[   90.957726][ T4679] device hsr_slave_0 entered promiscuous mode
[   90.982796][ T4732] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[   91.114029][ T4732] ntfs3: loop4: Failed to load $MFT.
[   91.304370][ T4679] device hsr_slave_1 entered promiscuous mode
[   91.306780][ T4077] Bluetooth: hci1: command 0x0409 tx timeout
[   91.633986][ T4679] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   91.636053][ T4679] Cannot create hsr debugfs directory
[   91.938637][ T4750] input: syz1 as /devices/virtual/input/input5
[   92.470177][ T4758] netlink: 340 bytes leftover after parsing attributes in process `syz.3.150'.
[   92.588258][ T4679] netdevsim netdevsim5 netdevsim0: renamed from eth0
[   92.886197][ T4679] netdevsim netdevsim5 netdevsim1: renamed from eth1
[   92.913434][ T4779] FAULT_INJECTION: forcing a failure.
[   92.913434][ T4779] name fail_usercopy, interval 1, probability 0, space 0, times 0
[   92.927451][ T4779] CPU: 0 PID: 4779 Comm: syz.4.154 Not tainted 5.15.178-syzkaller #0
[   92.929558][ T4779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   92.932225][ T4779] Call trace:
[   92.933046][ T4779]  dump_backtrace+0x0/0x530
[   92.934220][ T4779]  show_stack+0x2c/0x3c
[   92.935293][ T4779]  dump_stack_lvl+0x108/0x170
[   92.936452][ T4779]  dump_stack+0x1c/0x58
[   92.937463][ T4779]  should_fail+0x3b8/0x514
[   92.938635][ T4779]  should_fail_usercopy+0x20/0x30
[   92.940024][ T4779]  __copy_msghdr_from_user+0xbc/0x5d0
[   92.941400][ T4779]  ___sys_sendmsg+0x154/0x294
[   92.942707][ T4779]  __arm64_sys_sendmsg+0x1ac/0x25c
[   92.944004][ T4779]  invoke_syscall+0x98/0x2b8
[   92.945161][ T4779]  el0_svc_common+0x138/0x258
[   92.946358][ T4779]  do_el0_svc+0x58/0x14c
[   92.947438][ T4779]  el0_svc+0x7c/0x1f0
[   92.948460][ T4779]  el0t_64_sync_handler+0x84/0xe4
[   92.949705][ T4779]  el0t_64_sync+0x1a0/0x1a4
[   92.956123][ T4679] netdevsim netdevsim5 netdevsim2: renamed from eth2
[   93.022507][ T4763] loop3: detected capacity change from 0 to 32768
[   93.182548][ T4784] loop0: detected capacity change from 0 to 4096
[   93.250850][ T4679] netdevsim netdevsim5 netdevsim3: renamed from eth3
[   93.274151][ T4786] loop2: detected capacity change from 0 to 4096
[   93.283435][ T4763] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[   93.394011][ T4077] Bluetooth: hci1: command 0x041b tx timeout
[   93.468046][ T4219] device hsr_slave_0 left promiscuous mode
[   93.584716][ T4219] device hsr_slave_1 left promiscuous mode
[   93.609797][ T4039] ocfs2: Unmounting device (7,3) on (node local)
[   93.774895][ T4219] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   93.777062][ T4219] batman_adv: batadv0: Removing interface: batadv_slave_0
[   93.780520][ T4219] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   93.782385][ T4219] batman_adv: batadv0: Removing interface: batadv_slave_1
[   93.838785][ T4219] device bridge_slave_1 left promiscuous mode
[   93.841542][ T4219] bridge0: port 2(bridge_slave_1) entered disabled state
[   93.899122][ T4219] device bridge_slave_0 left promiscuous mode
[   93.900885][ T4219] bridge0: port 1(bridge_slave_0) entered disabled state
[   94.144399][ T4219] device veth1_macvtap left promiscuous mode
[   94.146468][ T4219] device veth0_macvtap left promiscuous mode
[   94.148428][ T4219] device veth1_vlan left promiscuous mode
[   94.150115][ T4219] device veth0_vlan left promiscuous mode
[   94.992231][ T4808] mmap: syz.2.160 (4808) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.rst.
[   95.005873][ T4219] team0 (unregistering): Port device team_slave_1 removed
[   95.039954][ T4219] team0 (unregistering): Port device team_slave_0 removed
[   95.060345][ T4219] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   95.143621][ T4219] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   95.341231][ T4219] bond0 (unregistering): Released all slaves
[   95.373879][ T4813] loop2: detected capacity change from 0 to 40427
[   95.501897][   T25] Bluetooth: hci1: command 0x040f tx timeout
[   95.625706][ T4815] loop4: detected capacity change from 0 to 4096
[   95.687132][ T4815] ntfs3: loop4: Different NTFS' sector size (1024) and media sector size (512)
[   95.761386][ T4679] 8021q: adding VLAN 0 to HW filter on device bond0
[   95.769477][ T4820] loop0: detected capacity change from 0 to 4096
[   95.803468][ T1856] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   95.806843][ T1856] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   95.816592][ T4679] 8021q: adding VLAN 0 to HW filter on device team0
[   95.843087][ T4820] ntfs3: loop0: Different NTFS' sector size (1024) and media sector size (512)
[   95.852368][ T4280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   95.864647][ T4280] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   95.875038][ T4280] bridge0: port 1(bridge_slave_0) entered blocking state
[   95.876868][ T4280] bridge0: port 1(bridge_slave_0) entered forwarding state
[   95.914796][ T4280] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   95.918877][ T4280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   95.941571][ T4280] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   95.948057][ T4280] bridge0: port 2(bridge_slave_1) entered blocking state
[   95.949846][ T4280] bridge0: port 2(bridge_slave_1) entered forwarding state
[   95.958497][ T4832] netlink: 340 bytes leftover after parsing attributes in process `syz.2.168'.
[   95.967887][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   95.977747][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   95.993652][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   95.997814][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   96.010908][ T4820] FAULT_INJECTION: forcing a failure.
[   96.010908][ T4820] name failslab, interval 1, probability 0, space 0, times 0
[   96.012833][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   96.014607][ T4820] CPU: 0 PID: 4820 Comm: syz.0.166 Not tainted 5.15.178-syzkaller #0
[   96.018408][ T4820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   96.020773][ T4820] Call trace:
[   96.021597][ T4820]  dump_backtrace+0x0/0x530
[   96.022751][ T4820]  show_stack+0x2c/0x3c
[   96.023757][ T4820]  dump_stack_lvl+0x108/0x170
[   96.024974][ T4820]  dump_stack+0x1c/0x58
[   96.026089][ T4820]  should_fail+0x3b8/0x514
[   96.027164][ T4820]  __should_failslab+0xbc/0x110
[   96.028418][ T4820]  should_failslab+0x10/0x28
[   96.029585][ T4820]  slab_pre_alloc_hook+0x64/0xe8
[   96.029997][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   96.030864][ T4820]  kmem_cache_alloc+0x98/0x45c
[   96.033970][ T4820]  xas_create+0xe70/0x1354
[   96.035034][ T4820]  xas_create_range+0x1a0/0x6d0
[   96.035153][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   96.036228][ T4820]  add_to_swap_cache+0x8f0/0x11b4
[   96.039516][ T4820]  add_to_swap+0x170/0x24c
[   96.040616][ T4820]  shrink_page_list+0x354c/0x63f4
[   96.041866][ T4820]  reclaim_pages+0x6f8/0x9fc
[   96.043066][ T4820]  madvise_cold_or_pageout_pte_range+0x1308/0x176c
[   96.044754][ T4820]  walk_pgd_range+0x850/0xf80
[   96.045954][ T4820]  __walk_page_range+0x118/0x4d4
[   96.047144][ T4820]  walk_page_range+0x40c/0x5e4
[   96.048316][ T4820]  do_madvise+0x1934/0x2c70
[   96.049406][ T4820]  __arm64_sys_madvise+0xa4/0xc0
[   96.050642][ T4820]  invoke_syscall+0x98/0x2b8
[   96.051783][ T4820]  el0_svc_common+0x138/0x258
[   96.053021][ T4820]  do_el0_svc+0x58/0x14c
[   96.054029][ T4820]  el0_svc+0x7c/0x1f0
[   96.055062][ T4820]  el0t_64_sync_handler+0x84/0xe4
[   96.056344][ T4820]  el0t_64_sync+0x1a0/0x1a4
[   96.086166][ T4679] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   96.089108][ T4679] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   96.117352][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   96.119895][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   96.123238][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   96.139401][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   96.153463][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   96.220840][ T4833] loop3: detected capacity change from 0 to 4096
[   96.293468][ T4836] loop4: detected capacity change from 0 to 4096
[   96.416570][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   96.418978][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   96.483002][ T4679] 8021q: adding VLAN 0 to HW filter on device batadv0
[   96.800466][ T4832] loop2: detected capacity change from 0 to 32768
[   96.935973][ T4832] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[   96.972203][ T4280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   96.974954][ T4280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   97.079871][ T4280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   97.083260][ T4280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   97.087972][ T4280] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   97.091010][ T4280] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   97.116336][ T4679] device veth0_vlan entered promiscuous mode
[   97.129451][ T4679] device veth1_vlan entered promiscuous mode
[   97.150628][ T4030] ocfs2: Unmounting device (7,2) on (node local)
[   97.188132][ T4280] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   97.190678][ T4280] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   97.193460][ T4280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   97.213528][ T4280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   97.232755][ T4679] device veth0_macvtap entered promiscuous mode
[   97.262465][ T4679] device veth1_macvtap entered promiscuous mode
[   97.300447][ T4679] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   97.303216][ T4679] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   97.321834][ T4679] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   97.331031][ T4679] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   97.355150][ T4679] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   97.357796][ T4679] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   97.360279][ T4679] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   97.362840][ T4679] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   97.385343][ T4679] batman_adv: batadv0: Interface activated: batadv_slave_0
[   97.389438][  T396] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   97.391995][  T396] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   97.401157][  T396] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   97.407721][  T396] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   97.422528][ T4679] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   97.448646][ T4679] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   97.451131][ T4679] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   97.453732][ T4679] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   97.468922][ T4679] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   97.471600][ T4679] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   97.488934][ T4679] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   97.495573][ T4679] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   97.513235][ T4679] batman_adv: batadv0: Interface activated: batadv_slave_1
[   97.535458][ T1856] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   97.538247][ T1856] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   97.543987][ T4078] Bluetooth: hci1: command 0x0419 tx timeout
[   97.548620][ T4679] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   97.550833][ T4679] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   97.565671][ T4679] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   97.568339][ T4679] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   97.807288][ T1771] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.818436][ T1771] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.831895][ T1771] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   97.861666][ T1771] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.883631][ T1771] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.907167][  T396] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   98.036987][ T4879] loop0: detected capacity change from 0 to 4096
[   98.738526][ T4899] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[   99.035106][ T4886] loop3: detected capacity change from 0 to 4096
[   99.050682][ T4905] loop5: detected capacity change from 0 to 128
[   99.204514][ T4905] ufs: ufs_fill_super(): fragment size 3263967611 is not a power of 2
[   99.923259][ T4911] loop4: detected capacity change from 0 to 8
[  100.073219][ T4914] loop2: detected capacity change from 0 to 256
[  100.136827][ T4914] exfat: Deprecated parameter 'utf8'
[  100.154869][ T4911] loop4: detected capacity change from 0 to 2048
[  100.170007][ T4914] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[  100.170777][ T4919] loop5: detected capacity change from 0 to 8
[  100.226526][ T4920] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  100.494333][ T4922] FAULT_INJECTION: forcing a failure.
[  100.494333][ T4922] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  100.497763][ T4922] CPU: 0 PID: 4922 Comm: syz.4.177 Not tainted 5.15.178-syzkaller #0
[  100.499893][ T4922] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  100.502443][ T4922] Call trace:
[  100.503264][ T4922]  dump_backtrace+0x0/0x530
[  100.504387][ T4922]  show_stack+0x2c/0x3c
[  100.505465][ T4922]  dump_stack_lvl+0x108/0x170
[  100.506601][ T4922]  dump_stack+0x1c/0x58
[  100.507588][ T4922]  should_fail+0x3b8/0x514
[  100.508696][ T4922]  should_fail_usercopy+0x20/0x30
[  100.509960][ T4922]  move_addr_to_kernel+0xac/0x294
[  100.511213][ T4922]  __sys_bind+0x140/0x284
[  100.512359][ T4922]  __arm64_sys_bind+0x7c/0x94
[  100.513525][ T4922]  invoke_syscall+0x98/0x2b8
[  100.514735][ T4922]  el0_svc_common+0x138/0x258
[  100.515966][ T4922]  do_el0_svc+0x58/0x14c
[  100.517017][ T4922]  el0_svc+0x7c/0x1f0
[  100.518057][ T4922]  el0t_64_sync_handler+0x84/0xe4
[  100.519321][ T4922]  el0t_64_sync+0x1a0/0x1a4
[  101.078666][ T4919] loop5: detected capacity change from 0 to 2048
[  101.091162][ T4929] loop2: detected capacity change from 0 to 2048
[  101.135170][ T4931] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  101.246195][ T4929] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  101.273998][ T4935] netlink: 340 bytes leftover after parsing attributes in process `syz.4.181'.
[  102.054584][ T4944] loop3: detected capacity change from 0 to 8
[  102.256132][ T4950] loop0: detected capacity change from 0 to 2048
[  102.278305][ T4954] loop3: detected capacity change from 0 to 256
[  102.296186][ T4950] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  102.362771][ T4954] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xd4003bd9, utbl_chksum : 0xe619d30d)
[  102.462196][ T4952] loop2: detected capacity change from 0 to 4096
[  102.542781][ T4935] loop4: detected capacity change from 0 to 32768
[  102.671816][ T4935] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  102.821724][ T4041] ocfs2: Unmounting device (7,4) on (node local)
[  103.043675][ T4978] FAULT_INJECTION: forcing a failure.
[  103.043675][ T4978] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  103.094172][ T4978] CPU: 1 PID: 4978 Comm: syz.3.192 Not tainted 5.15.178-syzkaller #0
[  103.096306][ T4978] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  103.099001][ T4978] Call trace:
[  103.099835][ T4978]  dump_backtrace+0x0/0x530
[  103.101009][ T4978]  show_stack+0x2c/0x3c
[  103.102071][ T4978]  dump_stack_lvl+0x108/0x170
[  103.103242][ T4978]  dump_stack+0x1c/0x58
[  103.104310][ T4978]  should_fail+0x3b8/0x514
[  103.105396][ T4978]  should_fail_usercopy+0x20/0x30
[  103.106695][ T4978]  __copy_msghdr_from_user+0xbc/0x5d0
[  103.108136][ T4978]  ___sys_sendmsg+0x154/0x294
[  103.109332][ T4978]  __arm64_sys_sendmsg+0x1ac/0x25c
[  103.110728][ T4978]  invoke_syscall+0x98/0x2b8
[  103.111967][ T4978]  el0_svc_common+0x138/0x258
[  103.113128][ T4978]  do_el0_svc+0x58/0x14c
[  103.114235][ T4978]  el0_svc+0x7c/0x1f0
[  103.115288][ T4978]  el0t_64_sync_handler+0x84/0xe4
[  103.116597][ T4978]  el0t_64_sync+0x1a0/0x1a4
[  103.208681][ T4982] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  104.362941][ T4998] loop0: detected capacity change from 0 to 4096
[  104.645912][ T5004] FAULT_INJECTION: forcing a failure.
[  104.645912][ T5004] name failslab, interval 1, probability 0, space 0, times 0
[  104.673982][ T5004] CPU: 0 PID: 5004 Comm: syz.3.197 Not tainted 5.15.178-syzkaller #0
[  104.676024][ T5004] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  104.678570][ T5004] Call trace:
[  104.679428][ T5004]  dump_backtrace+0x0/0x530
[  104.680585][ T5004]  show_stack+0x2c/0x3c
[  104.681602][ T5004]  dump_stack_lvl+0x108/0x170
[  104.682761][ T5004]  dump_stack+0x1c/0x58
[  104.683836][ T5004]  should_fail+0x3b8/0x514
[  104.684960][ T5004]  __should_failslab+0xbc/0x110
[  104.686233][ T5004]  should_failslab+0x10/0x28
[  104.687368][ T5004]  slab_pre_alloc_hook+0x64/0xe8
[  104.688593][ T5004]  __kmalloc+0xc0/0x4c8
[  104.689647][ T5004]  kernfs_fop_write_iter+0x148/0x48c
[  104.691040][ T5004]  vfs_write+0x884/0xb44
[  104.692069][ T5004]  ksys_write+0x15c/0x26c
[  104.693232][ T5004]  __arm64_sys_write+0x7c/0x90
[  104.694445][ T5004]  invoke_syscall+0x98/0x2b8
[  104.695666][ T5004]  el0_svc_common+0x138/0x258
[  104.696919][ T5004]  do_el0_svc+0x58/0x14c
[  104.698020][ T5004]  el0_svc+0x7c/0x1f0
[  104.699077][ T5004]  el0t_64_sync_handler+0x84/0xe4
[  104.700374][ T5004]  el0t_64_sync+0x1a0/0x1a4
[  104.900890][ T5009] netlink: 'syz.4.198': attribute type 29 has an invalid length.
[  105.039235][ T5006] loop5: detected capacity change from 0 to 4096
[  105.086157][ T5011] x_tables: duplicate underflow at hook 3
[  105.090319][ T5014] udc-core: couldn't find an available UDC or it's busy
[  105.091977][ T5014] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[  105.269142][ T5011] loop3: detected capacity change from 0 to 4096
[  105.362038][ T5011] NILFS (loop3): unsupported revision (superblock rev.=1.0, current rev.=2.0). Please check the version of mkfs.nilfs(2).
[  105.930851][ T5035] FAULT_INJECTION: forcing a failure.
[  105.930851][ T5035] name failslab, interval 1, probability 0, space 0, times 0
[  105.955397][ T5035] CPU: 1 PID: 5035 Comm: syz.3.206 Not tainted 5.15.178-syzkaller #0
[  105.957538][ T5035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  105.960112][ T5035] Call trace:
[  105.960995][ T5035]  dump_backtrace+0x0/0x530
[  105.962158][ T5035]  show_stack+0x2c/0x3c
[  105.963271][ T5035]  dump_stack_lvl+0x108/0x170
[  105.964490][ T5035]  dump_stack+0x1c/0x58
[  105.965568][ T5035]  should_fail+0x3b8/0x514
[  105.966599][ T5035]  __should_failslab+0xbc/0x110
[  105.967810][ T5035]  should_failslab+0x10/0x28
[  105.968930][ T5035]  slab_pre_alloc_hook+0x64/0xe8
[  105.970152][ T5035]  __kmalloc_track_caller+0x78/0x3d8
[  105.971582][ T5035]  ip_set_mcast_msfilter+0x140/0x390
[  105.972933][ T5035]  ip_setsockopt+0x834/0x32cc
[  105.974079][ T5035]  udp_setsockopt+0xa4/0xbc
[  105.975213][ T5035]  sock_common_setsockopt+0xb0/0xcc
[  105.976623][ T5035]  __sys_setsockopt+0x3a8/0x6b4
[  105.977864][ T5035]  __arm64_sys_setsockopt+0xb8/0xd4
[  105.979189][ T5035]  invoke_syscall+0x98/0x2b8
[  105.980374][ T5035]  el0_svc_common+0x138/0x258
[  105.981540][ T5035]  do_el0_svc+0x58/0x14c
[  105.982601][ T5035]  el0_svc+0x7c/0x1f0
[  105.983622][ T5035]  el0t_64_sync_handler+0x84/0xe4
[  105.984882][ T5035]  el0t_64_sync+0x1a0/0x1a4
[  106.083954][ T5036] netlink: 340 bytes leftover after parsing attributes in process `syz.0.202'.
[  106.180678][ T5040] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  106.829011][ T5052] binfmt_misc: register: failed to install interpreter file ./file0
[  107.032643][ T5052] loop3: detected capacity change from 0 to 4096
[  107.771939][ T5052] ntfs: volume version 3.1.
[  107.862429][ T5052] ntfs: (device loop3): parse_options(): Unrecognized mount option ÿÿ18446744073709551615ÿ01777777777777777777777±ñV?Œù³ßCp~'~8pٻ젌|ž^½Ö(
cŸoö—ÈêM ) Ç0177777777777777777777718446744073709551615ÿÿÿÿÿÿÿÿÿÿ.
[  108.110315][ T5036] loop0: detected capacity change from 0 to 32768
[  108.192930][ T5064] loop5: detected capacity change from 0 to 4096
[  108.208169][ T5036] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  108.275702][ T5067] loop2: detected capacity change from 0 to 4096
[  108.335996][ T4037] ocfs2: Unmounting device (7,0) on (node local)
[  108.451125][ T5076] netlink: 16 bytes leftover after parsing attributes in process `syz.3.218'.
[  108.462044][ T5076] netlink: 20 bytes leftover after parsing attributes in process `syz.3.218'.
[  108.470320][ T5076] tipc: Invalid UDP bearer configuration
[  108.470360][ T5076] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  108.689101][ T5082] FAULT_INJECTION: forcing a failure.
[  108.689101][ T5082] name failslab, interval 1, probability 0, space 0, times 0
[  108.774309][ T5082] CPU: 1 PID: 5082 Comm: syz.0.217 Not tainted 5.15.178-syzkaller #0
[  108.776562][ T5082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  108.779193][ T5082] Call trace:
[  108.779982][ T5082]  dump_backtrace+0x0/0x530
[  108.781078][ T5082]  show_stack+0x2c/0x3c
[  108.782070][ T5082]  dump_stack_lvl+0x108/0x170
[  108.783321][ T5082]  dump_stack+0x1c/0x58
[  108.784385][ T5082]  should_fail+0x3b8/0x514
[  108.785467][ T5082]  __should_failslab+0xbc/0x110
[  108.786627][ T5082]  should_failslab+0x10/0x28
[  108.787822][ T5082]  slab_pre_alloc_hook+0x64/0xe8
[  108.789105][ T5082]  __kmalloc+0xc0/0x4c8
[  108.790150][ T5082]  kernfs_fop_write_iter+0x148/0x48c
[  108.791474][ T5082]  vfs_write+0x884/0xb44
[  108.792569][ T5082]  ksys_write+0x15c/0x26c
[  108.793694][ T5082]  __arm64_sys_write+0x7c/0x90
[  108.794833][ T5082]  invoke_syscall+0x98/0x2b8
[  108.795975][ T5082]  el0_svc_common+0x138/0x258
[  108.797135][ T5082]  do_el0_svc+0x58/0x14c
[  108.798234][ T5082]  el0_svc+0x7c/0x1f0
[  108.799275][ T5082]  el0t_64_sync_handler+0x84/0xe4
[  108.800567][ T5082]  el0t_64_sync+0x1a0/0x1a4
[  108.868632][ T5086] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  109.788287][ T5098] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  110.684841][ T5111] FAULT_INJECTION: forcing a failure.
[  110.684841][ T5111] name failslab, interval 1, probability 0, space 0, times 0
[  110.688130][ T5111] CPU: 1 PID: 5111 Comm: syz.0.226 Not tainted 5.15.178-syzkaller #0
[  110.690147][ T5111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  110.692596][ T5111] Call trace:
[  110.693390][ T5111]  dump_backtrace+0x0/0x530
[  110.694564][ T5111]  show_stack+0x2c/0x3c
[  110.695641][ T5111]  dump_stack_lvl+0x108/0x170
[  110.696880][ T5111]  dump_stack+0x1c/0x58
[  110.697870][ T5111]  should_fail+0x3b8/0x514
[  110.699041][ T5111]  __should_failslab+0xbc/0x110
[  110.700302][ T5111]  should_failslab+0x10/0x28
[  110.701451][ T5111]  slab_pre_alloc_hook+0x64/0xe8
[  110.702743][ T5111]  __kmalloc_track_caller+0x78/0x3d8
[  110.704104][ T5111]  memdup_user+0xd0/0x2c8
[  110.705221][ T5111]  strndup_user+0x78/0xe0
[  110.706332][ T5111]  __arm64_sys_mount+0x118/0x5e0
[  110.707667][ T5111]  invoke_syscall+0x98/0x2b8
[  110.708834][ T5111]  el0_svc_common+0x138/0x258
[  110.710046][ T5111]  do_el0_svc+0x58/0x14c
[  110.711194][ T5111]  el0_svc+0x7c/0x1f0
[  110.712204][ T5111]  el0t_64_sync_handler+0x84/0xe4
[  110.713535][ T5111]  el0t_64_sync+0x1a0/0x1a4
[  110.907543][ T5112] loop4: detected capacity change from 0 to 8192
[  111.011407][ T5112] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal
[  111.029165][ T5112] REISERFS (device loop4): using ordered data mode
[  111.047761][ T5112] reiserfs: using flush barriers
[  111.071812][ T5112] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  111.112577][ T5112] REISERFS (device loop4): checking transaction log (loop4)
[  111.411602][ T5112] REISERFS (device loop4): Using tea hash to sort names
[  111.417121][ T5112] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage.
[  111.429471][ T5123] loop0: detected capacity change from 0 to 8192
[  111.456369][ T5112] FAULT_INJECTION: forcing a failure.
[  111.456369][ T5112] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  111.460970][ T5112] CPU: 0 PID: 5112 Comm: syz.4.227 Not tainted 5.15.178-syzkaller #0
[  111.463074][ T5112] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  111.465613][ T5112] Call trace:
[  111.466531][ T5112]  dump_backtrace+0x0/0x530
[  111.467701][ T5112]  show_stack+0x2c/0x3c
[  111.468734][ T5112]  dump_stack_lvl+0x108/0x170
[  111.469909][ T5112]  dump_stack+0x1c/0x58
[  111.470949][ T5112]  should_fail+0x3b8/0x514
[  111.472092][ T5112]  should_fail_usercopy+0x20/0x30
[  111.473336][ T5112]  copy_from_sockptr+0x64/0x1e4
[  111.474618][ T5112]  xsk_setsockopt+0x27c/0x994
[  111.475797][ T5112]  __sys_setsockopt+0x3a8/0x6b4
[  111.476994][ T5112]  __arm64_sys_setsockopt+0xb8/0xd4
[  111.478327][ T5112]  invoke_syscall+0x98/0x2b8
[  111.479446][ T5112]  el0_svc_common+0x138/0x258
[  111.480592][ T5112]  do_el0_svc+0x58/0x14c
[  111.481670][ T5112]  el0_svc+0x7c/0x1f0
[  111.482656][ T5112]  el0t_64_sync_handler+0x84/0xe4
[  111.483913][ T5112]  el0t_64_sync+0x1a0/0x1a4
[  111.561228][ T5123] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[  111.573521][ T5123] REISERFS (device loop0): using ordered data mode
[  111.575380][ T5123] reiserfs: using flush barriers
[  111.597029][ T5123] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  111.601413][ T5123] REISERFS (device loop0): checking transaction log (loop0)
[  111.726412][ T5127] loop5: detected capacity change from 0 to 32768
[  112.045738][ T5141] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  113.085047][ T5123] REISERFS (device loop0): Using tea hash to sort names
[  113.087109][ T5123] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[  113.458964][ T5150] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  114.180071][ T5155] loop4: detected capacity change from 0 to 512
[  114.286406][ T5155] EXT4-fs error (device loop4): ext4_orphan_get:1427: comm syz.4.236: bad orphan inode 13
[  114.289702][ T5155] ext4_test_bit(bit=12, block=4) = 1
[  114.291166][ T5155] is_bad_inode(inode)=0
[  114.292163][ T5155] NEXT_ORPHAN(inode)=0
[  114.293255][ T5155] max_ino=32
[  114.299575][ T5155] i_nlink=1
[  114.300433][ T5155] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  114.364423][ T5155] EXT4-fs warning (device loop4): dx_probe:833: inode #2: comm syz.4.236: Unrecognised inode hash code 20
[  114.367781][ T5155] EXT4-fs warning (device loop4): dx_probe:966: inode #2: comm syz.4.236: Corrupt directory, running e2fsck is recommended
[  114.371216][ T5155] EXT4-fs warning (device loop4): dx_probe:833: inode #2: comm syz.4.236: Unrecognised inode hash code 20
[  114.374430][ T5155] EXT4-fs warning (device loop4): dx_probe:966: inode #2: comm syz.4.236: Corrupt directory, running e2fsck is recommended
[  114.389146][ T5164] netlink: 4 bytes leftover after parsing attributes in process `syz.3.237'.
[  114.560684][ T5160] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 216 vs 220 free clusters
[  115.034705][ T5169] udc-core: couldn't find an available UDC or it's busy
[  115.036400][ T5169] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[  115.116422][ T5166] netlink: 4 bytes leftover after parsing attributes in process `syz.3.237'.
[  115.312582][ T5172] loop2: detected capacity change from 0 to 4096
[  115.356232][ T5181] netlink: 4 bytes leftover after parsing attributes in process `syz.0.238'.
[  115.379571][ T5181] device erspan0 entered promiscuous mode
[  115.381182][ T5181] device macvtap1 entered promiscuous mode
[  115.384707][ T5172] ntfs3: Unknown parameter '0xffffffffffffffff'
[  115.412460][ T5181] netlink: 4 bytes leftover after parsing attributes in process `syz.0.238'.
[  115.421323][ T5181] device macvtap1 left promiscuous mode
[  115.508179][ T5177] loop4: detected capacity change from 0 to 4096
[  115.508902][ T5157] loop5: detected capacity change from 0 to 32768
[  115.588241][ T5192] netlink: 4 bytes leftover after parsing attributes in process `syz.0.242'.
[  115.601225][ T5192] device macvtap2 entered promiscuous mode
[  115.610615][ T5192] FAULT_INJECTION: forcing a failure.
[  115.610615][ T5192] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  115.613738][ T5192] CPU: 0 PID: 5192 Comm: syz.0.242 Not tainted 5.15.178-syzkaller #0
[  115.614110][ T5157] XFS (loop5): Mounting V5 Filesystem
[  115.615856][ T5192] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  115.615869][ T5192] Call trace:
[  115.615873][ T5192]  dump_backtrace+0x0/0x530
[  115.615888][ T5192]  show_stack+0x2c/0x3c
[  115.623176][ T5192]  dump_stack_lvl+0x108/0x170
[  115.624472][ T5192]  dump_stack+0x1c/0x58
[  115.625658][ T5192]  should_fail+0x3b8/0x514
[  115.626770][ T5192]  should_fail_usercopy+0x20/0x30
[  115.628027][ T5192]  __copy_msghdr_from_user+0xbc/0x5d0
[  115.629385][ T5192]  ___sys_sendmsg+0x154/0x294
[  115.630467][ T5192]  __arm64_sys_sendmsg+0x1ac/0x25c
[  115.631868][ T5192]  invoke_syscall+0x98/0x2b8
[  115.633101][ T5192]  el0_svc_common+0x138/0x258
[  115.634384][ T5192]  do_el0_svc+0x58/0x14c
[  115.635493][ T5192]  el0_svc+0x7c/0x1f0
[  115.636490][ T5192]  el0t_64_sync_handler+0x84/0xe4
[  115.637720][ T5192]  el0t_64_sync+0x1a0/0x1a4
[  115.671349][ T5199] FAULT_INJECTION: forcing a failure.
[  115.671349][ T5199] name failslab, interval 1, probability 0, space 0, times 0
[  115.683937][ T5199] CPU: 1 PID: 5199 Comm: syz.3.244 Not tainted 5.15.178-syzkaller #0
[  115.686103][ T5199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  115.688802][ T5199] Call trace:
[  115.689675][ T5199]  dump_backtrace+0x0/0x530
[  115.690805][ T5199]  show_stack+0x2c/0x3c
[  115.691896][ T5199]  dump_stack_lvl+0x108/0x170
[  115.693156][ T5199]  dump_stack+0x1c/0x58
[  115.694364][ T5199]  should_fail+0x3b8/0x514
[  115.695626][ T5199]  __should_failslab+0xbc/0x110
[  115.696875][ T5199]  should_failslab+0x10/0x28
[  115.698110][ T5199]  slab_pre_alloc_hook+0x64/0xe8
[  115.699441][ T5199]  __kmalloc+0xc0/0x4c8
[  115.700542][ T5199]  kernfs_fop_write_iter+0x148/0x48c
[  115.701952][ T5199]  vfs_write+0x884/0xb44
[  115.703031][ T5199]  ksys_write+0x15c/0x26c
[  115.704110][ T5199]  __arm64_sys_write+0x7c/0x90
[  115.705365][ T5199]  invoke_syscall+0x98/0x2b8
[  115.706583][ T5199]  el0_svc_common+0x138/0x258
[  115.707777][ T5199]  do_el0_svc+0x58/0x14c
[  115.708853][ T5199]  el0_svc+0x7c/0x1f0
[  115.709834][ T5199]  el0t_64_sync_handler+0x84/0xe4
[  115.711200][ T5199]  el0t_64_sync+0x1a0/0x1a4
[  115.854186][ T5157] XFS (loop5): Ending clean mount
[  115.879145][ T5157] XFS (loop5): Quotacheck needed: Please wait.
[  115.921853][ T5157] XFS (loop5): Quotacheck: Done.
[  115.957798][ T5157] capability: warning: `syz.5.234' uses 32-bit capabilities (legacy support in use)
[  116.136235][ T4679] XFS (loop5): Unmounting Filesystem
[  117.218635][ T5214] loop0: detected capacity change from 0 to 4096
[  117.415666][ T5219] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  118.142319][ T5231] loop4: detected capacity change from 0 to 512
[  119.165902][ T5231] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,auto_da_alloc,minixdf,,errors=continue. Quota mode: writeback.
[  119.193584][ T5231] sch_tbf: burst 32855 is lower than device lo mtu (65550) !
[  119.398864][ T5268] FAULT_INJECTION: forcing a failure.
[  119.398864][ T5268] name failslab, interval 1, probability 0, space 0, times 0
[  119.402235][ T5268] CPU: 0 PID: 5268 Comm: syz.2.259 Not tainted 5.15.178-syzkaller #0
[  119.404156][ T5268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  119.406639][ T5268] Call trace:
[  119.407498][ T5268]  dump_backtrace+0x0/0x530
[  119.408595][ T5268]  show_stack+0x2c/0x3c
[  119.409673][ T5268]  dump_stack_lvl+0x108/0x170
[  119.410843][ T5268]  dump_stack+0x1c/0x58
[  119.411895][ T5268]  should_fail+0x3b8/0x514
[  119.413008][ T5268]  __should_failslab+0xbc/0x110
[  119.414289][ T5268]  should_failslab+0x10/0x28
[  119.415507][ T5268]  slab_pre_alloc_hook+0x64/0xe8
[  119.416708][ T5268]  __kmalloc+0xc0/0x4c8
[  119.417752][ T5268]  kernfs_fop_write_iter+0x148/0x48c
[  119.419078][ T5268]  vfs_write+0x884/0xb44
[  119.420179][ T5268]  ksys_write+0x15c/0x26c
[  119.421221][ T5268]  __arm64_sys_write+0x7c/0x90
[  119.422497][ T5268]  invoke_syscall+0x98/0x2b8
[  119.423665][ T5268]  el0_svc_common+0x138/0x258
[  119.424900][ T5268]  do_el0_svc+0x58/0x14c
[  119.426048][ T5268]  el0_svc+0x7c/0x1f0
[  119.427044][ T5268]  el0t_64_sync_handler+0x84/0xe4
[  119.428430][ T5268]  el0t_64_sync+0x1a0/0x1a4
[  119.459041][ T5281] loop4: detected capacity change from 0 to 256
[  119.692973][ T5289] FAULT_INJECTION: forcing a failure.
[  119.692973][ T5289] name failslab, interval 1, probability 0, space 0, times 0
[  120.259813][ T5289] CPU: 1 PID: 5289 Comm: syz.3.264 Not tainted 5.15.178-syzkaller #0
[  120.261999][ T5289] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  120.264570][ T5289] Call trace:
[  120.265480][ T5289]  dump_backtrace+0x0/0x530
[  120.266615][ T5289]  show_stack+0x2c/0x3c
[  120.267676][ T5289]  dump_stack_lvl+0x108/0x170
[  120.268933][ T5289]  dump_stack+0x1c/0x58
[  120.269990][ T5289]  should_fail+0x3b8/0x514
[  120.271137][ T5289]  __should_failslab+0xbc/0x110
[  120.272432][ T5289]  should_failslab+0x10/0x28
[  120.273620][ T5289]  slab_pre_alloc_hook+0x64/0xe8
[  120.274918][ T5289]  kmem_cache_alloc+0x98/0x45c
[  120.276204][ T5289]  getname_flags+0xd0/0x480
[  120.277297][ T5289]  user_path_at_empty+0x40/0x1a4
[  120.278599][ T5289]  vfs_statx+0xf8/0x378
[  120.279684][ T5289]  __arm64_sys_newfstatat+0x110/0x194
[  120.281102][ T5289]  invoke_syscall+0x98/0x2b8
[  120.282214][ T5289]  el0_svc_common+0x138/0x258
[  120.283442][ T5289]  do_el0_svc+0x58/0x14c
[  120.284502][ T5289]  el0_svc+0x7c/0x1f0
[  120.285537][ T5289]  el0t_64_sync_handler+0x84/0xe4
[  120.286849][ T5289]  el0t_64_sync+0x1a0/0x1a4
[  120.487553][ T5301] loop2: detected capacity change from 0 to 256
[  120.717770][ T5302] loop4: detected capacity change from 0 to 4096
[  121.450975][ T5317] raw_sendmsg: syz.5.271 forgot to set AF_INET. Fix it!
[  121.555917][ T5325] FAULT_INJECTION: forcing a failure.
[  121.555917][ T5325] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  121.563907][ T5325] CPU: 0 PID: 5325 Comm: syz.0.274 Not tainted 5.15.178-syzkaller #0
[  121.566067][ T5325] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  121.568711][ T5325] Call trace:
[  121.569543][ T5325]  dump_backtrace+0x0/0x530
[  121.570715][ T5325]  show_stack+0x2c/0x3c
[  121.571768][ T5325]  dump_stack_lvl+0x108/0x170
[  121.572872][ T5325]  dump_stack+0x1c/0x58
[  121.573895][ T5325]  should_fail+0x3b8/0x514
[  121.574993][ T5325]  should_fail_usercopy+0x20/0x30
[  121.576332][ T5325]  __copy_msghdr_from_user+0xbc/0x5d0
[  121.577769][ T5325]  ___sys_sendmsg+0x154/0x294
[  121.579045][ T5325]  __arm64_sys_sendmsg+0x1ac/0x25c
[  121.580428][ T5325]  invoke_syscall+0x98/0x2b8
[  121.581634][ T5325]  el0_svc_common+0x138/0x258
[  121.582786][ T5325]  do_el0_svc+0x58/0x14c
[  121.583819][ T5325]  el0_svc+0x7c/0x1f0
[  121.584777][ T5325]  el0t_64_sync_handler+0x84/0xe4
[  121.585987][ T5325]  el0t_64_sync+0x1a0/0x1a4
[  121.587088][    C0] vkms_vblank_simulate: vblank timer overrun
[  121.601408][ T5302] ntfs3: loop4: Different NTFS' sector size (2048) and media sector size (512)
[  121.628407][ T5302] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  121.881897][ T5332] loop5: detected capacity change from 0 to 2048
[  121.910172][ T4146] ntfs3: loop4: ntfs3_write_inode r=5 failed, -22.
[  121.921755][ T4041] ntfs3: loop4: ntfs_evict_inode r=5 failed, -22.
[  121.979285][ T5334] loop2: detected capacity change from 0 to 4096
[  122.712910][ T5332] EXT4-fs (loop5): mounted filesystem without journal. Opts: lazytime,,errors=continue. Quota mode: none.
[  122.719383][ T5332] capability: warning: `syz.5.275' uses deprecated v2 capabilities in a way that may be insecure
[  122.847032][ T5359] FAULT_INJECTION: forcing a failure.
[  122.847032][ T5359] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  122.856939][ T5359] CPU: 1 PID: 5359 Comm: syz.0.280 Not tainted 5.15.178-syzkaller #0
[  122.858933][ T5359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  122.861417][ T5359] Call trace:
[  122.862243][ T5359]  dump_backtrace+0x0/0x530
[  122.863323][ T5359]  show_stack+0x2c/0x3c
[  122.864403][ T5359]  dump_stack_lvl+0x108/0x170
[  122.865594][ T5359]  dump_stack+0x1c/0x58
[  122.866722][ T5359]  should_fail+0x3b8/0x514
[  122.867825][ T5359]  should_fail_usercopy+0x20/0x30
[  122.869142][ T5359]  simple_read_from_buffer+0xd8/0x26c
[  122.870539][ T5359]  proc_fail_nth_read+0x1a0/0x248
[  122.871797][ T5359]  vfs_read+0x278/0xb18
[  122.872790][ T5359]  ksys_read+0x15c/0x26c
[  122.873869][ T5359]  __arm64_sys_read+0x7c/0x90
[  122.875114][ T5359]  invoke_syscall+0x98/0x2b8
[  122.876326][ T5359]  el0_svc_common+0x138/0x258
[  122.877478][ T5359]  do_el0_svc+0x58/0x14c
[  122.878554][ T5359]  el0_svc+0x7c/0x1f0
[  122.879563][ T5359]  el0t_64_sync_handler+0x84/0xe4
[  122.880824][ T5359]  el0t_64_sync+0x1a0/0x1a4
[  124.714935][ T5371] delete_channel: no stack
[  125.083175][ T5406] loop2: detected capacity change from 0 to 64
[  125.252508][ T5369] loop3: detected capacity change from 0 to 40427
[  125.332850][ T5397] Soft offlining pfn 0x1b0bca at process virtual address 0x400000ff2000
[  125.341690][ T5369] F2FS-fs (loop3): Found nat_bits in checkpoint
[  125.362673][ T5421] FAULT_INJECTION: forcing a failure.
[  125.362673][ T5421] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  125.366342][ T5421] CPU: 1 PID: 5421 Comm: syz.2.290 Not tainted 5.15.178-syzkaller #0
[  125.368453][ T5421] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  125.370127][ T5397] Memory failure: 0x1b0bca: unhandlable page.
[  125.370988][ T5421] Call trace:
[  125.371010][ T5421]  dump_backtrace+0x0/0x530
[  125.371026][ T5421]  show_stack+0x2c/0x3c
[  125.375775][ T5421]  dump_stack_lvl+0x108/0x170
[  125.376962][ T5421]  dump_stack+0x1c/0x58
[  125.377967][ T5421]  should_fail+0x3b8/0x514
[  125.379044][ T5421]  should_fail_usercopy+0x20/0x30
[  125.380344][ T5421]  simple_read_from_buffer+0xd8/0x26c
[  125.381750][ T5421]  proc_fail_nth_read+0x1a0/0x248
[  125.383024][ T5421]  vfs_read+0x278/0xb18
[  125.384108][ T5421]  ksys_read+0x15c/0x26c
[  125.385236][ T5421]  __arm64_sys_read+0x7c/0x90
[  125.386487][ T5421]  invoke_syscall+0x98/0x2b8
[  125.387691][ T5421]  el0_svc_common+0x138/0x258
[  125.388880][ T5421]  do_el0_svc+0x58/0x14c
[  125.389949][ T5421]  el0_svc+0x7c/0x1f0
[  125.390926][ T5421]  el0t_64_sync_handler+0x84/0xe4
[  125.392158][ T5421]  el0t_64_sync+0x1a0/0x1a4
[  125.406386][ T5369] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  126.859414][ T5453] overlayfs: unrecognized mount option "\" or missing value
[  126.939009][ T5452] loop0: detected capacity change from 0 to 4096
[  127.018471][ T5452] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512)
[  127.727117][ T5452] netlink: 20 bytes leftover after parsing attributes in process `syz.0.296'.
[  127.862464][ T5472] loop4: detected capacity change from 0 to 128
[  127.892199][ T5469] loop2: detected capacity change from 0 to 8
[  127.996943][ T5469] SQUASHFS error: lzo decompression failed, data probably corrupt
[  127.999736][ T5469] SQUASHFS error: Failed to read block 0x4ec: -5
[  128.002636][ T5469] SQUASHFS error: Unable to read metadata cache entry [4ea]
[  128.021946][ T5469] SQUASHFS error: Unable to read inode 0x20087
[  128.044874][ T5479] SQUASHFS error: Unable to read metadata cache entry [4ea]
[  128.046883][ T5479] SQUASHFS error: Unable to read inode 0x20087
[  128.049944][ T5479] SQUASHFS error: Unable to read metadata cache entry [4ea]
[  128.051990][ T5479] SQUASHFS error: Unable to read inode 0x20087
[  128.101930][ T5467] loop5: detected capacity change from 0 to 4096
[  128.851664][ T5483] loop0: detected capacity change from 0 to 256
[  128.919606][ T5487] netlink: 64 bytes leftover after parsing attributes in process `syz.3.306'.
[  129.929917][ T5509] loop3: detected capacity change from 0 to 512
[  129.958209][ T5512] syz.4.314 uses obsolete (PF_INET,SOCK_PACKET)
[  130.725908][ T5509] EXT4-fs (loop3): 1 truncate cleaned up
[  130.727804][ T5509] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  130.927424][ T5523] netlink: 8 bytes leftover after parsing attributes in process `syz.0.317'.
[  130.942832][ T5523] netlink: 'syz.0.317': attribute type 3 has an invalid length.
[  130.950058][ T5523] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  130.952904][ T5523] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  130.955249][ T5523] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  130.957576][ T5523] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  131.066354][ T2057] ieee802154 phy0 wpan0: encryption failed: -22
[  131.067146][ T5529] FAULT_INJECTION: forcing a failure.
[  131.067146][ T5529] name failslab, interval 1, probability 0, space 0, times 0
[  131.068058][ T2057] ieee802154 phy1 wpan1: encryption failed: -22
[  131.073559][ T5529] CPU: 1 PID: 5529 Comm: syz.0.319 Not tainted 5.15.178-syzkaller #0
[  131.075720][ T5529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  131.078245][ T5529] Call trace:
[  131.079103][ T5529]  dump_backtrace+0x0/0x530
[  131.080241][ T5529]  show_stack+0x2c/0x3c
[  131.081308][ T5529]  dump_stack_lvl+0x108/0x170
[  131.082515][ T5529]  dump_stack+0x1c/0x58
[  131.083690][ T5529]  should_fail+0x3b8/0x514
[  131.084844][ T5529]  __should_failslab+0xbc/0x110
[  131.086032][ T5529]  should_failslab+0x10/0x28
[  131.087164][ T5529]  slab_pre_alloc_hook+0x64/0xe8
[  131.088492][ T5529]  __kmalloc+0xc0/0x4c8
[  131.089557][ T5529]  __arm64_sys_memfd_create+0x168/0x610
[  131.090957][ T5529]  invoke_syscall+0x98/0x2b8
[  131.092154][ T5529]  el0_svc_common+0x138/0x258
[  131.093326][ T5529]  do_el0_svc+0x58/0x14c
[  131.094429][ T5529]  el0_svc+0x7c/0x1f0
[  131.095425][ T5529]  el0t_64_sync_handler+0x84/0xe4
[  131.096741][ T5529]  el0t_64_sync+0x1a0/0x1a4
[  132.236550][ T5552] netlink: 28 bytes leftover after parsing attributes in process `syz.2.329'.
[  132.257624][ T5552] FAULT_INJECTION: forcing a failure.
[  132.257624][ T5552] name failslab, interval 1, probability 0, space 0, times 0
[  132.261220][ T5552] CPU: 0 PID: 5552 Comm: syz.2.329 Not tainted 5.15.178-syzkaller #0
[  132.263415][ T5552] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  132.266085][ T5552] Call trace:
[  132.266936][ T5552]  dump_backtrace+0x0/0x530
[  132.268169][ T5552]  show_stack+0x2c/0x3c
[  132.269232][ T5552]  dump_stack_lvl+0x108/0x170
[  132.270370][ T5552]  dump_stack+0x1c/0x58
[  132.271453][ T5552]  should_fail+0x3b8/0x514
[  132.272526][ T5552]  __should_failslab+0xbc/0x110
[  132.273807][ T5552]  should_failslab+0x10/0x28
[  132.274929][ T5552]  slab_pre_alloc_hook+0x64/0xe8
[  132.276087][ T5552]  kmem_cache_alloc+0x98/0x45c
[  132.277375][ T5552]  skb_clone+0x180/0x304
[  132.278428][ T5552]  __netlink_deliver_tap+0x360/0x714
[  132.279746][ T5552]  netlink_deliver_tap+0x1ac/0x1b0
[  132.281059][ T5552]  netlink_sendskb+0x6c/0x168
[  132.282236][ T5552]  netlink_unicast+0x328/0x938
[  132.283451][ T5552]  netlink_ack+0x6c8/0x9c0
[  132.284669][ T5552]  netlink_rcv_skb+0x1ec/0x3b8
[  132.285929][ T5552]  rtnetlink_rcv+0x28/0x38
[  132.287093][ T5552]  netlink_unicast+0x664/0x938
[  132.288382][ T5552]  netlink_sendmsg+0x844/0xb38
[  132.289635][ T5552]  ____sys_sendmsg+0x584/0x870
[  132.290905][ T5552]  ___sys_sendmsg+0x214/0x294
[  132.292127][ T5552]  __sys_sendmmsg+0x23c/0x648
[  132.293259][ T5552]  __arm64_sys_sendmmsg+0xa0/0xbc
[  132.294563][ T5552]  invoke_syscall+0x98/0x2b8
[  132.295745][ T5552]  el0_svc_common+0x138/0x258
[  132.296934][ T5552]  do_el0_svc+0x58/0x14c
[  132.298014][ T5552]  el0_svc+0x7c/0x1f0
[  132.299023][ T5552]  el0t_64_sync_handler+0x84/0xe4
[  132.300340][ T5552]  el0t_64_sync+0x1a0/0x1a4
[  132.435086][ T5555] netlink: 104 bytes leftover after parsing attributes in process `syz.5.330'.
[  132.621860][ T5563] loop3: detected capacity change from 0 to 256
[  132.912687][ T5561] loop2: detected capacity change from 0 to 4096
[  132.934220][ T5568] netlink: 28 bytes leftover after parsing attributes in process `syz.5.333'.
[  133.285872][ T5573] loop3: detected capacity change from 0 to 2048
[  134.626432][ T5573] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  134.686677][ T5598] FAULT_INJECTION: forcing a failure.
[  134.686677][ T5598] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  134.690215][ T5598] CPU: 0 PID: 5598 Comm: syz.4.342 Not tainted 5.15.178-syzkaller #0
[  134.692332][ T5598] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  134.694876][ T5598] Call trace:
[  134.695723][ T5598]  dump_backtrace+0x0/0x530
[  134.696812][ T5598]  show_stack+0x2c/0x3c
[  134.697942][ T5598]  dump_stack_lvl+0x108/0x170
[  134.699142][ T5598]  dump_stack+0x1c/0x58
[  134.700216][ T5598]  should_fail+0x3b8/0x514
[  134.701353][ T5598]  should_fail_usercopy+0x20/0x30
[  134.702632][ T5598]  simple_read_from_buffer+0xd8/0x26c
[  134.703975][ T5598]  proc_fail_nth_read+0x1a0/0x248
[  134.705273][ T5598]  vfs_read+0x278/0xb18
[  134.706288][ T5598]  ksys_read+0x15c/0x26c
[  134.707464][ T5598]  __arm64_sys_read+0x7c/0x90
[  134.708660][ T5598]  invoke_syscall+0x98/0x2b8
[  134.709909][ T5598]  el0_svc_common+0x138/0x258
[  134.711130][ T5598]  do_el0_svc+0x58/0x14c
[  134.712239][ T5598]  el0_svc+0x7c/0x1f0
[  134.713315][ T5598]  el0t_64_sync_handler+0x84/0xe4
[  134.714626][ T5598]  el0t_64_sync+0x1a0/0x1a4
[  134.970270][ T5612] netlink: 'syz.3.345': attribute type 2 has an invalid length.
[  135.206066][ T5619] FAULT_INJECTION: forcing a failure.
[  135.206066][ T5619] name failslab, interval 1, probability 0, space 0, times 0
[  135.231417][ T5619] CPU: 1 PID: 5619 Comm: syz.3.350 Not tainted 5.15.178-syzkaller #0
[  135.233592][ T5619] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  135.236390][ T5619] Call trace:
[  135.237238][ T5619]  dump_backtrace+0x0/0x530
[  135.238431][ T5619]  show_stack+0x2c/0x3c
[  135.239454][ T5619]  dump_stack_lvl+0x108/0x170
[  135.240579][ T5619]  dump_stack+0x1c/0x58
[  135.241656][ T5619]  should_fail+0x3b8/0x514
[  135.242790][ T5619]  __should_failslab+0xbc/0x110
[  135.244021][ T5619]  should_failslab+0x10/0x28
[  135.245175][ T5619]  slab_pre_alloc_hook+0x64/0xe8
[  135.246356][ T5619]  __kmalloc+0xc0/0x4c8
[  135.247453][ T5619]  tomoyo_encode+0x270/0x4b0
[  135.248651][ T5619]  tomoyo_mount_permission+0x3d8/0x8b4
[  135.250052][ T5619]  tomoyo_sb_mount+0x48/0x60
[  135.251162][ T5619]  security_sb_mount+0x94/0xd4
[  135.252377][ T5619]  path_mount+0xb8/0x101c
[  135.253406][ T5619]  __arm64_sys_mount+0x510/0x5e0
[  135.254645][ T5619]  invoke_syscall+0x98/0x2b8
[  135.255813][ T5619]  el0_svc_common+0x138/0x258
[  135.256984][ T5619]  do_el0_svc+0x58/0x14c
[  135.258022][ T5619]  el0_svc+0x7c/0x1f0
[  135.259047][ T5619]  el0t_64_sync_handler+0x84/0xe4
[  135.260370][ T5619]  el0t_64_sync+0x1a0/0x1a4
[  136.249101][ T5607] loop4: detected capacity change from 0 to 40427
[  136.364611][ T5633] loop5: detected capacity change from 0 to 190
[  136.385263][ T5607] F2FS-fs (loop4): Insane cp_payload (553648128 >= 504)
[  136.387026][ T5607] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  136.391119][ T5607] F2FS-fs (loop4): invalid crc value
[  136.426260][ T5633] ntfs: (device loop5): is_boot_sector_ntfs(): Invalid boot sector checksum.
[  136.428478][ T5633] ntfs: (device loop5): parse_ntfs_boot_sector(): Mft record size (32768) exceeds the PAGE_SIZE on your system (4096).  This is not supported.  Sorry.
[  136.442515][ T5633] ntfs: (device loop5): ntfs_fill_super(): Unsupported NTFS filesystem.
[  136.465322][ T5638] loop2: detected capacity change from 0 to 128
[  136.510187][ T5607] F2FS-fs (loop4): Found nat_bits in checkpoint
[  136.586490][ T5607] F2FS-fs (loop4): Start checkpoint disabled!
[  136.667717][ T5607] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  136.669657][ T5607] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  136.726321][ T5607] netlink: 16 bytes leftover after parsing attributes in process `syz.4.347'.
[  136.733342][ T5607] netlink: 16 bytes leftover after parsing attributes in process `syz.4.347'.
[  137.391282][ T5648] loop0: detected capacity change from 0 to 128
[  137.456215][ T5638] netlink: 68 bytes leftover after parsing attributes in process `syz.2.357'.
[  137.473344][ T5648] FAULT_INJECTION: forcing a failure.
[  137.473344][ T5648] name failslab, interval 1, probability 0, space 0, times 0
[  137.493352][ T5648] CPU: 0 PID: 5648 Comm: syz.0.358 Not tainted 5.15.178-syzkaller #0
[  137.495606][ T5648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  137.498280][ T5648] Call trace:
[  137.499150][ T5648]  dump_backtrace+0x0/0x530
[  137.500298][ T5648]  show_stack+0x2c/0x3c
[  137.501380][ T5648]  dump_stack_lvl+0x108/0x170
[  137.502633][ T5648]  dump_stack+0x1c/0x58
[  137.503742][ T5648]  should_fail+0x3b8/0x514
[  137.504972][ T5648]  __should_failslab+0xbc/0x110
[  137.506350][ T5648]  should_failslab+0x10/0x28
[  137.507601][ T5648]  slab_pre_alloc_hook+0x64/0xe8
[  137.508804][ T5648]  kmem_cache_alloc_trace+0x9c/0x47c
[  137.510196][ T5648]  dbgfs_target_ids_write+0x234/0x6fc
[  137.511589][ T5648]  full_proxy_write+0x110/0x20c
[  137.512816][ T5648]  vfs_write+0x280/0xb44
[  137.513927][ T5648]  ksys_write+0x15c/0x26c
[  137.515028][ T5648]  __arm64_sys_write+0x7c/0x90
[  137.516322][ T5648]  invoke_syscall+0x98/0x2b8
[  137.517523][ T5648]  el0_svc_common+0x138/0x258
[  137.518657][ T5648]  do_el0_svc+0x58/0x14c
[  137.519766][ T5648]  el0_svc+0x7c/0x1f0
[  137.520810][ T5648]  el0t_64_sync_handler+0x84/0xe4
[  137.522116][ T5648]  el0t_64_sync+0x1a0/0x1a4
[  137.557050][ T5648] netlink: 68 bytes leftover after parsing attributes in process `syz.0.358'.
[  138.610757][  T148] attempt to access beyond end of device
[  138.610757][  T148] loop4: rw=2049, want=40968, limit=40427
[  139.797650][ T5666] loop2: detected capacity change from 0 to 4096
[  141.458431][ T5701] loop0: detected capacity change from 0 to 128
[  141.636215][ T5701] FAT-fs (loop0): Unrecognized mount option "sh<µ¸
ÈÍ=Fortname=mixed" or missing value
[  141.897496][ T5701] loop0: detected capacity change from 0 to 16
[  141.965467][ T5701] erofs: Unknown parameter 'Þ�R´@…]†Ê}?ÞûüÔA+ î4adm1ýh@
�¿sà©õ&°H�BatǦ¨<ÑLbèä
[  141.965467][ T5701] †æ/_ÒÌv'
[  141.974445][ T5709] FAULT_INJECTION: forcing a failure.
[  141.974445][ T5709] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  141.983796][ T5709] CPU: 1 PID: 5709 Comm: syz.3.376 Not tainted 5.15.178-syzkaller #0
[  141.985944][ T5709] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  141.988607][ T5709] Call trace:
[  141.989405][ T5709]  dump_backtrace+0x0/0x530
[  141.990519][ T5709]  show_stack+0x2c/0x3c
[  141.991601][ T5709]  dump_stack_lvl+0x108/0x170
[  141.992783][ T5709]  dump_stack+0x1c/0x58
[  141.993852][ T5709]  should_fail+0x3b8/0x514
[  141.994905][ T5709]  should_fail_usercopy+0x20/0x30
[  141.996234][ T5709]  ____sys_sendmsg+0x264/0x870
[  141.997450][ T5709]  ___sys_sendmsg+0x214/0x294
[  141.998668][ T5709]  __sys_sendmmsg+0x23c/0x648
[  141.999831][ T5709]  __arm64_sys_sendmmsg+0xa0/0xbc
[  142.001132][ T5709]  invoke_syscall+0x98/0x2b8
[  142.002261][ T5709]  el0_svc_common+0x138/0x258
[  142.003521][ T5709]  do_el0_svc+0x58/0x14c
[  142.004509][ T5709]  el0_svc+0x7c/0x1f0
[  142.005524][ T5709]  el0t_64_sync_handler+0x84/0xe4
[  142.006831][ T5709]  el0t_64_sync+0x1a0/0x1a4
[  142.076201][ T5701] netlink: 68 bytes leftover after parsing attributes in process `syz.0.373'.
[  142.981478][ T5688] loop5: detected capacity change from 0 to 32768
[  144.366690][ T5747] loop4: detected capacity change from 0 to 512
[  144.431854][ T5749] netlink: 104 bytes leftover after parsing attributes in process `syz.3.389'.
[  144.437758][ T5749] FAULT_INJECTION: forcing a failure.
[  144.437758][ T5749] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  144.442117][ T5749] CPU: 1 PID: 5749 Comm: syz.3.389 Not tainted 5.15.178-syzkaller #0
[  144.444337][ T5749] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  144.447038][ T5749] Call trace:
[  144.447823][ T5749]  dump_backtrace+0x0/0x530
[  144.449003][ T5749]  show_stack+0x2c/0x3c
[  144.450101][ T5749]  dump_stack_lvl+0x108/0x170
[  144.451403][ T5749]  dump_stack+0x1c/0x58
[  144.452458][ T5749]  should_fail+0x3b8/0x514
[  144.453557][ T5749]  should_fail_usercopy+0x20/0x30
[  144.454891][ T5749]  simple_read_from_buffer+0xd8/0x26c
[  144.456247][ T5749]  proc_fail_nth_read+0x1a0/0x248
[  144.457599][ T5749]  vfs_read+0x278/0xb18
[  144.458771][ T5749]  ksys_read+0x15c/0x26c
[  144.459972][ T5749]  __arm64_sys_read+0x7c/0x90
[  144.461404][ T5749]  invoke_syscall+0x98/0x2b8
[  144.462522][ T5749]  el0_svc_common+0x138/0x258
[  144.463795][ T5749]  do_el0_svc+0x58/0x14c
[  144.464963][ T5749]  el0_svc+0x7c/0x1f0
[  144.465978][ T5749]  el0t_64_sync_handler+0x84/0xe4
[  144.467297][ T5749]  el0t_64_sync+0x1a0/0x1a4
[  144.547178][ T5747] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  144.549338][ T5747] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=80fc11c, mo2=0002]
[  145.181768][ T5747] EXT4-fs (loop4): couldn't mount RDWR because of unsupported optional features (80)
[  145.196691][ T5747] EXT4-fs (loop4): Skipping orphan cleanup due to unknown ROCOMPAT features
[  145.199048][ T5747] EXT4-fs (loop4): mounted filesystem without journal. Opts: init_itable,noinit_itable,noauto_da_alloc,noblock_validity,noload,usrquota,jqfmt=vfsv0,grpjquota=,lazytime,,errors=continue. Quota mode: writeback.
[  145.262386][ T5761] netlink: 28 bytes leftover after parsing attributes in process `syz.5.391'.
[  145.304433][ T5747] EXT4-fs warning (device loop4): dx_probe:893: inode #2: comm syz.4.388: dx entry: limit 65535 != root limit 120
[  145.307638][ T5747] EXT4-fs warning (device loop4): dx_probe:966: inode #2: comm syz.4.388: Corrupt directory, running e2fsck is recommended
[  145.314234][ T5758] loop2: detected capacity change from 0 to 4096
[  147.905200][ T5802] netlink: 'syz.0.404': attribute type 2 has an invalid length.
[  147.918798][ T5799] Soft offlining pfn 0x131766 at process virtual address 0x400000566000
[  148.325136][ T5799] soft offline: 0x131766: thp split failed
[  149.169735][ T5793] loop5: detected capacity change from 0 to 40427
[  149.185379][ T5793] F2FS-fs (loop5): Invalid log blocks per segment (4278190089)
[  149.190920][ T5793] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  149.205266][ T5816] FAULT_INJECTION: forcing a failure.
[  149.205266][ T5816] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  149.208741][ T5816] CPU: 0 PID: 5816 Comm: syz.2.407 Not tainted 5.15.178-syzkaller #0
[  149.210867][ T5816] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  149.213412][ T5816] Call trace:
[  149.214209][ T5816]  dump_backtrace+0x0/0x530
[  149.215272][ T5816]  show_stack+0x2c/0x3c
[  149.216334][ T5816]  dump_stack_lvl+0x108/0x170
[  149.217493][ T5816]  dump_stack+0x1c/0x58
[  149.218555][ T5816]  should_fail+0x3b8/0x514
[  149.219708][ T5816]  should_fail_usercopy+0x20/0x30
[  149.220994][ T5816]  simple_read_from_buffer+0xd8/0x26c
[  149.222357][ T5816]  proc_fail_nth_read+0x1a0/0x248
[  149.223716][ T5816]  vfs_read+0x278/0xb18
[  149.224777][ T5816]  ksys_read+0x15c/0x26c
[  149.225894][ T5816]  __arm64_sys_read+0x7c/0x90
[  149.227209][ T5816]  invoke_syscall+0x98/0x2b8
[  149.228428][ T5816]  el0_svc_common+0x138/0x258
[  149.229650][ T5816]  do_el0_svc+0x58/0x14c
[  149.230747][ T5816]  el0_svc+0x7c/0x1f0
[  149.231745][ T5816]  el0t_64_sync_handler+0x84/0xe4
[  149.232979][ T5816]  el0t_64_sync+0x1a0/0x1a4
[  149.911340][ T5793] F2FS-fs (loop5): invalid crc value
[  149.991942][ T5793] F2FS-fs (loop5): Found nat_bits in checkpoint
[  150.410873][ T5793] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  150.413061][ T5793] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  150.927498][ T5842] loop3: detected capacity change from 0 to 8192
[  151.586697][ T5839] loop4: detected capacity change from 0 to 4096
[  151.619270][ T5842] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal
[  151.621781][ T5842] REISERFS (device loop3): using ordered data mode
[  151.623515][ T5842] reiserfs: using flush barriers
[  151.629956][ T5842] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  151.654256][ T5847] Soft offlining pfn 0x131766 at process virtual address 0x400000566000
[  151.660806][ T5842] REISERFS (device loop3): checking transaction log (loop3)
[  151.680002][ T5847] soft offline: 0x131766: thp split failed
[  152.084896][ T5842] REISERFS (device loop3): Using tea hash to sort names
[  152.090667][ T5842] REISERFS warning (device loop3): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[  152.106837][ T5842] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage.
[  153.770340][ T5872] loop3: detected capacity change from 0 to 32768
[  153.772664][ T5872] XFS: attr2 mount option is deprecated.
[  153.775658][ T5872] XFS: ikeep mount option is deprecated.
[  153.777072][ T5872] XFS: noikeep mount option is deprecated.
[  153.924250][ T5873] loop0: detected capacity change from 0 to 4096
[  154.500773][ T5872] XFS (loop3): Mounting V5 Filesystem
[  154.838052][ T5898] Soft offlining pfn 0x131766 at process virtual address 0x400000566000
[  154.874028][ T5898] soft offline: 0x131766: thp split failed
[  154.894072][ T5872] XFS (loop3): Ending clean mount
[  154.899198][ T5872] XFS (loop3): Quotacheck needed: Please wait.
[  155.583636][ T5872] XFS (loop3): Quotacheck: Done.
[  155.857927][ T4039] XFS (loop3): Unmounting Filesystem
[  155.984813][ T5911] loop5: detected capacity change from 0 to 4096
[  156.021175][ T5906] loop4: detected capacity change from 0 to 8192
[  156.034520][ T5911] ntfs3: Unknown parameter 'ÿÿÿÿ'
[  156.053085][ T5908] loop2: detected capacity change from 0 to 4096
[  156.087047][ T5906] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal
[  156.089361][ T5906] REISERFS (device loop4): using ordered data mode
[  156.090998][ T5906] reiserfs: using flush barriers
[  156.093659][ T5906] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  156.105254][ T5906] REISERFS (device loop4): checking transaction log (loop4)
[  156.222262][ T5906] REISERFS (device loop4): Using tea hash to sort names
[  156.224601][ T5906] REISERFS warning (device loop4): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[  156.234915][ T5906] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage.
[  156.880119][ T5923] loop0: detected capacity change from 0 to 8192
[  157.081868][ T5923] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[  157.085377][ T5923] REISERFS (device loop0): using ordered data mode
[  157.087481][ T5923] reiserfs: using flush barriers
[  157.089972][ T5923] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  157.095106][ T5923] REISERFS (device loop0): checking transaction log (loop0)
[  157.962774][ T5923] REISERFS (device loop0): Using tea hash to sort names
[  158.076972][ T5923] REISERFS warning (device loop0): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[  158.107078][ T5923] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[  158.686820][ T5951] loop3: detected capacity change from 0 to 256
[  158.716683][ T5951] FAT-fs (loop3): Unrecognized mount option "0xffffffffffffffffÿÿ" or missing value
[  158.872372][ T5957] Soft offlining pfn 0x131766 at process virtual address 0x400000566000
[  158.888363][ T5957] soft offline: 0x131766: thp split failed
[  158.904509][ T5955] loop5: detected capacity change from 0 to 4096
[  159.441090][ T5967] loop3: detected capacity change from 0 to 4096
[  160.297334][ T5973] FAULT_INJECTION: forcing a failure.
[  160.297334][ T5973] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  160.300777][ T5973] CPU: 1 PID: 5973 Comm: syz.0.461 Not tainted 5.15.178-syzkaller #0
[  160.302741][ T5973] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  160.305375][ T5973] Call trace:
[  160.306264][ T5973]  dump_backtrace+0x0/0x530
[  160.307427][ T5973]  show_stack+0x2c/0x3c
[  160.308477][ T5973]  dump_stack_lvl+0x108/0x170
[  160.309686][ T5973]  dump_stack+0x1c/0x58
[  160.310761][ T5973]  should_fail+0x3b8/0x514
[  160.311851][ T5973]  should_fail_usercopy+0x20/0x30
[  160.313096][ T5973]  copy_siginfo_to_user+0x3c/0x264
[  160.314400][ T5973]  do_notify_resume+0x2384/0x32b8
[  160.315727][ T5973]  el0_svc+0xfc/0x1f0
[  160.316756][ T5973]  el0t_64_sync_handler+0x84/0xe4
[  160.318097][ T5973]  el0t_64_sync+0x1a0/0x1a4
[  160.493322][ T5962] loop2: detected capacity change from 0 to 32768
[  160.664257][ T5962] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[  160.904223][ T4030] (syz-executor,4030,0):ocfs2_inode_is_valid_to_delete:872 ERROR: Skipping delete of system file 72
[  160.924938][ T4030] ocfs2: Unmounting device (7,2) on (node local)
[  162.408217][ T6006] loop3: detected capacity change from 0 to 512
[  162.508713][ T6006] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  162.525593][ T6006] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  162.557455][ T6006] EXT4-fs error (device loop3): ext4_orphan_get:1427: comm syz.3.469: bad orphan inode 131083
[  162.560320][ T6006] EXT4-fs (loop3): mounted filesystem without journal. Opts: stripe=0x000000000000003d,init_itable,mb_optimize_scan=0x0000000000000001,,errors=continue. Quota mode: none.
[  162.663118][ T6006] netlink: 80 bytes leftover after parsing attributes in process `syz.3.469'.
[  162.719681][ T5991] loop4: detected capacity change from 0 to 65536
[  162.830981][ T5991] XFS (loop4): Mounting V5 Filesystem
[  162.905539][ T5991] XFS (loop4): Ending clean mount
[  162.907986][ T5991] XFS (loop4): Quotacheck needed: Please wait.
[  162.951151][ T5991] XFS (loop4): Quotacheck: Done.
[  163.051516][ T4041] XFS (loop4): Unmounting Filesystem
[  164.559586][ T6040] loop2: detected capacity change from 0 to 4096
[  165.427277][ T6047] loop5: detected capacity change from 0 to 4096
[  165.510453][ T6054] Soft offlining pfn 0x131766 at process virtual address 0x400000566000
[  165.624065][ T6054] soft offline: 0x131766: thp split failed
[  166.235322][ T6066] loop0: detected capacity change from 0 to 128
[  167.139066][ T6082] FAULT_INJECTION: forcing a failure.
[  167.139066][ T6082] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  167.166215][ T6082] CPU: 0 PID: 6082 Comm: syz.0.497 Not tainted 5.15.178-syzkaller #0
[  167.168342][ T6082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  167.170806][ T6082] Call trace:
[  167.171620][ T6082]  dump_backtrace+0x0/0x530
[  167.172748][ T6082]  show_stack+0x2c/0x3c
[  167.173781][ T6082]  dump_stack_lvl+0x108/0x170
[  167.174891][ T6082]  dump_stack+0x1c/0x58
[  167.175913][ T6082]  should_fail+0x3b8/0x514
[  167.177030][ T6082]  should_fail_usercopy+0x20/0x30
[  167.178319][ T6082]  simple_read_from_buffer+0xd8/0x26c
[  167.179586][ T6082]  proc_fail_nth_read+0x1a0/0x248
[  167.180861][ T6082]  vfs_read+0x278/0xb18
[  167.181937][ T6082]  ksys_read+0x15c/0x26c
[  167.183076][ T6082]  __arm64_sys_read+0x7c/0x90
[  167.184200][ T6082]  invoke_syscall+0x98/0x2b8
[  167.185365][ T6082]  el0_svc_common+0x138/0x258
[  167.186476][ T6082]  do_el0_svc+0x58/0x14c
[  167.187515][ T6082]  el0_svc+0x7c/0x1f0
[  167.188528][ T6082]  el0t_64_sync_handler+0x84/0xe4
[  167.189763][ T6082]  el0t_64_sync+0x1a0/0x1a4
[  167.693468][ T6091] loop0: detected capacity change from 0 to 2048
[  167.720579][ T6091] UDF-fs: error (device loop0): udf_process_sequence: Primary Volume Descriptor not found!
[  167.744505][ T6091] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  168.383350][ T6096] loop3: detected capacity change from 0 to 8192
[  168.791422][ T6096] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal
[  168.795317][ T6096] REISERFS (device loop3): using ordered data mode
[  169.623570][ T4076] Bluetooth: hci2: command 0x0406 tx timeout
[  169.626906][ T4076] Bluetooth: hci0: command 0x0406 tx timeout
[  169.628735][ T4076] Bluetooth: hci3: command 0x0406 tx timeout
[  169.637597][ T4076] Bluetooth: hci4: command 0x0406 tx timeout
[  169.653080][ T6096] reiserfs: using flush barriers
[  169.684971][ T6096] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  169.689468][ T6096] REISERFS (device loop3): checking transaction log (loop3)
[  169.754741][ T6117] netlink: 8 bytes leftover after parsing attributes in process `syz.5.508'.
[  170.084943][ T6096] REISERFS (device loop3): Using tea hash to sort names
[  170.086923][ T6096] REISERFS warning (device loop3): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[  170.090582][ T6096] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage.
[  170.231740][ T6125] loop2: detected capacity change from 0 to 4096
[  171.257885][ T6125] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  171.286238][ T6125] ntfs3: loop2: failed to convert name for inode 1e.
[  172.089571][ T6117] loop5: detected capacity change from 0 to 32768
[  172.099439][ T6142] udc-core: couldn't find an available UDC or it's busy
[  172.101187][ T6142] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[  172.158445][ T6142] loop4: detected capacity change from 0 to 2048
[  172.197061][ T6117] XFS: attr2 mount option is deprecated.
[  172.198589][ T6117] XFS: ikeep mount option is deprecated.
[  172.200072][ T6117] XFS: noikeep mount option is deprecated.
[  172.325989][ T6117] XFS (loop5): Mounting V5 Filesystem
[  173.524066][ T6117] XFS (loop5): AIL initialisation failed: error -12
[  173.729285][ T6117] XFS (loop5): log mount failed
[  174.302092][ T6170] netlink: 16 bytes leftover after parsing attributes in process `syz.2.520'.
[  176.942939][ T6168] loop4: detected capacity change from 0 to 32768
[  179.976446][ T6224] loop2: detected capacity change from 0 to 128
[  180.057427][ T6224] ufs: ufs_fill_super(): fragment size 3263967611 is not a power of 2
[  181.090224][ T6224] loop2: detected capacity change from 0 to 256
[  181.482614][ T6222] loop5: detected capacity change from 0 to 32768
[  185.370465][ T6271] loop5: detected capacity change from 0 to 8192
[  185.491685][ T6271] REISERFS (device loop5): found reiserfs format "3.6" with non-standard journal
[  185.494836][ T6271] REISERFS (device loop5): using ordered data mode
[  185.496558][ T6271] reiserfs: using flush barriers
[  185.512122][ T6271] REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  185.621667][ T6271] REISERFS (device loop5): checking transaction log (loop5)
[  186.339151][ T6271] REISERFS (device loop5): Using tea hash to sort names
[  186.343712][ T6271] REISERFS warning (device loop5): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[  186.353395][ T6271] REISERFS (device loop5): Created .reiserfs_priv - reserved for xattr storage.
[  187.785905][ T6316] dccp_invalid_packet: P.type (REQUEST) not Data || [Data]Ack, while P.X == 0
[  188.173602][ T6324] FAULT_INJECTION: forcing a failure.
[  188.173602][ T6324] name failslab, interval 1, probability 0, space 0, times 0
[  188.182842][ T6324] CPU: 0 PID: 6324 Comm: syz.5.563 Not tainted 5.15.178-syzkaller #0
[  188.185035][ T6324] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  188.187548][ T6324] Call trace:
[  188.188369][ T6324]  dump_backtrace+0x0/0x530
[  188.189456][ T6324]  show_stack+0x2c/0x3c
[  188.190632][ T6324]  dump_stack_lvl+0x108/0x170
[  188.191838][ T6324]  dump_stack+0x1c/0x58
[  188.192977][ T6324]  should_fail+0x3b8/0x514
[  188.194030][ T6324]  __should_failslab+0xbc/0x110
[  188.195304][ T6324]  should_failslab+0x10/0x28
[  188.196416][ T6324]  slab_pre_alloc_hook+0x64/0xe8
[  188.197717][ T6324]  __kmalloc_track_caller+0x78/0x3d8
[  188.199063][ T6324]  memdup_user+0xd0/0x2c8
[  188.200346][ T6324]  strndup_user+0x78/0xe0
[  188.201449][ T6324]  __arm64_sys_add_key+0x1e8/0x578
[  188.202786][ T6324]  invoke_syscall+0x98/0x2b8
[  188.203969][ T6324]  el0_svc_common+0x138/0x258
[  188.205223][ T6324]  do_el0_svc+0x58/0x14c
[  188.206291][ T6324]  el0_svc+0x7c/0x1f0
[  188.207338][ T6324]  el0t_64_sync_handler+0x84/0xe4
[  188.208647][ T6324]  el0t_64_sync+0x1a0/0x1a4
[  192.019259][ T6361] netlink: 4 bytes leftover after parsing attributes in process `syz.0.581'.
[  192.070476][ T6365] netlink: 28 bytes leftover after parsing attributes in process `syz.5.582'.
[  192.533076][ T2057] ieee802154 phy0 wpan0: encryption failed: -22
[  192.535271][ T2057] ieee802154 phy1 wpan1: encryption failed: -22
[  193.242782][ T6396] netlink: 8 bytes leftover after parsing attributes in process `syz.2.594'.
[  194.321736][ T6419] overlayfs: failed to clone upperpath
[  199.026182][ T6488] overlayfs: failed to clone upperpath
[  205.202825][ T6575] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  205.216040][ T6577] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  205.220344][ T6577] xt_HMARK: spi-set and port-set can't be combined
[  206.676234][ T6620] xt_ipcomp: unknown flags B
[  207.346829][ T6635] netlink: 8 bytes leftover after parsing attributes in process `syz.3.674'.
[  208.693698][ T6665] 9pnet: Insufficient options for proto=fd
[  209.196686][ T6682] netlink: 'syz.2.685': attribute type 21 has an invalid length.
[  209.199085][ T6682] netlink: 132 bytes leftover after parsing attributes in process `syz.2.685'.
[  216.189879][ T6768] netlink: 'syz.5.712': attribute type 21 has an invalid length.
[  216.192631][ T6768] netlink: 'syz.5.712': attribute type 2 has an invalid length.
[  216.209767][ T6768] netlink: 132 bytes leftover after parsing attributes in process `syz.5.712'.
[  219.465321][ T6807] lo speed is unknown, defaulting to 1000
[  219.489087][ T6807] lo speed is unknown, defaulting to 1000
[  219.492288][ T6807] lo speed is unknown, defaulting to 1000
[  219.550353][ T6807] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  219.580134][ T6812] netlink: 340 bytes leftover after parsing attributes in process `syz.2.724'.
[  219.613674][ T6807] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  219.755989][ T6807] lo speed is unknown, defaulting to 1000
[  219.775948][ T6807] lo speed is unknown, defaulting to 1000
[  219.781646][ T6807] lo speed is unknown, defaulting to 1000
[  219.787611][ T6807] lo speed is unknown, defaulting to 1000
[  219.800319][ T6807] lo speed is unknown, defaulting to 1000
[  220.200445][ T6836] fuse: Bad value for 'fd'
[  227.258456][ T6916] netlink: 104 bytes leftover after parsing attributes in process `syz.5.767'.
[  229.154679][ T6936] overlayfs: failed to clone upperpath
[  233.521965][ T6974] overlayfs: failed to clone upperpath
[  234.447968][ T6989] overlayfs: failed to clone upperpath
[  235.295111][ T6978] netlink: 12 bytes leftover after parsing attributes in process `syz.3.786'.
[  237.453294][ T7039] overlayfs: failed to clone upperpath
[  239.062906][ T7059] netlink: 'syz.3.822': attribute type 10 has an invalid length.
[  239.078965][ T7059] device syz_tun entered promiscuous mode
[  239.146736][ T7059] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  239.151846][ T7062] netlink: 4 bytes leftover after parsing attributes in process `syz.3.822'.
[  241.632797][ T7097] overlayfs: failed to clone upperpath
[  242.525353][ T7100] netlink: 'syz.4.838': attribute type 10 has an invalid length.
[  242.538798][ T7100] device syz_tun entered promiscuous mode
[  242.580637][ T7100] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  242.603943][ T7107] netlink: 4 bytes leftover after parsing attributes in process `syz.4.838'.
[  243.384849][ T7129] overlayfs: failed to clone lowerpath
[  246.370796][ T7144] overlayfs: failed to clone upperpath
[  246.430602][ T7150] netlink: 'syz.2.853': attribute type 10 has an invalid length.
[  246.450568][ T7150] device syz_tun entered promiscuous mode
[  246.513309][ T7150] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  246.534148][ T7155] netlink: 4 bytes leftover after parsing attributes in process `syz.2.853'.
[  252.123473][ T7205] netlink: 'syz.0.870': attribute type 10 has an invalid length.
[  252.129338][ T7205] device syz_tun entered promiscuous mode
[  252.164892][ T7205] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  252.193024][ T7205] netlink: 4 bytes leftover after parsing attributes in process `syz.0.870'.
[  253.945334][ T2057] ieee802154 phy0 wpan0: encryption failed: -22
[  253.947075][ T2057] ieee802154 phy1 wpan1: encryption failed: -22
[  257.685223][ T7271] netlink: 12 bytes leftover after parsing attributes in process `syz.3.897'.
[  260.911601][ T7308] netlink: 12 bytes leftover after parsing attributes in process `syz.4.910'.
[  261.144053][ T4073] Bluetooth: hci1: command 0x0406 tx timeout
[  262.055794][ T7325] netlink: 'syz.2.918': attribute type 10 has an invalid length.
[  263.009220][ T7346] netlink: 12 bytes leftover after parsing attributes in process `syz.5.924'.
[  263.595678][ T7351] netlink: 12 bytes leftover after parsing attributes in process `syz.5.925'.
[  266.629439][ T7387] netlink: 12 bytes leftover after parsing attributes in process `syz.0.938'.
[  269.603934][   T26] audit: type=1326 audit(269.530:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7427 comm="syz.4.952" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff980adce8 code=0x0
[  270.632965][ T4078] Bluetooth: hci1: command 0x0409 tx timeout
[  271.676165][ T7466] process 'syz.4.966' launched './file2' with NULL argv: empty string added
[  271.683133][ T7466] siw: device registration error -23
[  277.682236][ T7526] xt_CT: You must specify a L4 protocol and not use inversions on it
[  278.277284][ T4073] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  278.279889][ T4073] Bluetooth: hci3: Injecting HCI hardware error event
[  278.283212][  T144] Bluetooth: hci3: hardware error 0x00
[  283.735224][ T7596] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  283.761037][ T7596] IPv6: ADDRCONF(NETDEV_CHANGE): tunl0: link becomes ready
[  283.799584][ T7596] IPv6: ADDRCONF(NETDEV_CHANGE): gre0: link becomes ready
[  283.828691][ T7596] IPv6: ADDRCONF(NETDEV_CHANGE): gretap0: link becomes ready
[  283.852411][ T7596] IPv6: ADDRCONF(NETDEV_CHANGE): erspan0: link becomes ready
[  283.866422][ T7596] IPv6: ADDRCONF(NETDEV_CHANGE): ip_vti0: link becomes ready
[  283.886774][ T7596] IPv6: ADDRCONF(NETDEV_CHANGE): ip6_vti0: link becomes ready
[  285.563102][   T21] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  285.565763][   T21] Bluetooth: hci2: Injecting HCI hardware error event
[  285.598336][ T4032] Bluetooth: hci2: hardware error 0x00
[  289.849650][ T1771] tipc: Subscription rejected, illegal request
[  290.015075][    T7] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  290.017235][    T7] Bluetooth: hci1: Injecting HCI hardware error event
[  290.040081][  T144] Bluetooth: hci1: hardware error 0x00
[  292.445351][ T7709] lo speed is unknown, defaulting to 1000
[  293.705093][   T21] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  293.717320][   T21] Bluetooth: hci4: Injecting HCI hardware error event
[  293.786043][ T4035] Bluetooth: hci4: hardware error 0x00
[  299.835638][ T4032] Bluetooth: hci4: unexpected event for opcode 0x042d
[  300.886190][ T7823] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1091'.
[  300.888508][ T7823] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1091'.
[  305.172591][ T7847] bridge0: port 3(vlan2) entered blocking state
[  305.175780][ T7847] bridge0: port 3(vlan2) entered disabled state
[  305.178999][ T7847] device vlan2 entered promiscuous mode
[  305.180316][ T7847] device geneve0 entered promiscuous mode
[  305.182320][ T7847] bridge0: port 3(vlan2) entered blocking state
[  305.184450][ T7847] bridge0: port 3(vlan2) entered forwarding state
[  305.415287][ T7847] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  305.446106][    C1] bridge0: received packet on vlan2 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  305.455095][ T7847] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  305.494190][ T7847] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  305.509659][ T7847] device bridge_slave_0 left promiscuous mode
[  305.528011][ T7847] bridge0: port 1(bridge_slave_0) entered disabled state
[  305.858990][ T7847] device bridge_slave_1 left promiscuous mode
[  305.861053][ T7847] bridge0: port 2(bridge_slave_1) entered disabled state
[  305.923597][ T7847] bond0: (slave bond_slave_0): Releasing backup interface
[  305.980055][ T7847] bond0: (slave bond_slave_1): Releasing backup interface
[  308.624635][    C1] bridge0: received packet on vlan2 with own address as source address (addr:aa:aa:aa:aa:aa:0c, vlan:0)
[  308.648718][ T7847] team0: Port device team_slave_0 removed
[  308.689299][ T7847] team0: Port device team_slave_1 removed
[  308.691675][ T7847] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  308.697992][ T7847] batman_adv: batadv0: Removing interface: batadv_slave_0
[  308.790881][ T7847] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  308.812876][ T7847] batman_adv: batadv0: Removing interface: batadv_slave_1
[  308.906183][ T7847] device vlan2 left promiscuous mode
[  308.929469][ T7847] device geneve0 left promiscuous mode
[  308.931231][ T7847] bridge0: port 3(vlan2) entered disabled state
[  310.026616][ T4078] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  310.028793][ T4078] Bluetooth: hci0: Injecting HCI hardware error event
[  310.034961][ T4035] Bluetooth: hci0: hardware error 0x00
[  314.415763][ T7925] overlayfs: failed to clone upperpath
[  314.640854][  T144] Bluetooth: hci0: unexpected event for opcode 0x042d
[  315.495981][ T2057] ieee802154 phy0 wpan0: encryption failed: -22
[  315.497851][ T2057] ieee802154 phy1 wpan1: encryption failed: -22
[  323.881962][ T8041] netlink: 64 bytes leftover after parsing attributes in process `syz.2.1162'.
[  342.542004][ T8261] overlayfs: failed to clone upperpath
[  346.939268][ T8321] xt_CT: You must specify a L4 protocol and not use inversions on it
[  357.511381][ T8444] IPVS: length: 84 != 8
[  360.220260][ T8475] overlayfs: failed to clone upperpath
[  364.894281][ T8561] fuse: Bad value for 'fd'
[  367.273008][ T8595] can: request_module (can-proto-0) failed.
[  374.776135][ T8675] ipt_CLUSTERIP: Please specify destination IP
[  378.471628][ T2057] ieee802154 phy0 wpan0: encryption failed: -22
[  378.473668][ T2057] ieee802154 phy1 wpan1: encryption failed: -22
[  389.169742][ T8814] lo speed is unknown, defaulting to 1000
[  390.459305][ T8836] lo speed is unknown, defaulting to 1000
[  391.057215][ T8864] fuse: Bad value for 'fd'
[  392.883107][ T8885] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1467'.
[  395.835952][ T8940] netlink: 456 bytes leftover after parsing attributes in process `syz.4.1491'.
[  397.478219][ T8932] delete_channel: no stack
[  400.893243][ T9002] syz.0.1513 sent an empty control message without MSG_MORE.
[  408.749931][ T9120] xt_socket: unknown flags 0x4
[  412.871443][ T9158] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1567'.
[  412.964027][ T9158] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1567'.
[  415.518043][ T9198] tc_dump_action: action bad kind
[  416.325552][ T9201] overlayfs: failed to clone upperpath
[  416.393016][ T9206] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1586'.
[  416.406524][ T9206] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1586'.
[  418.825275][ T9251] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1603'.
[  418.831472][ T9251] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1603'.
[  419.380759][ T9256] overlayfs: failed to clone upperpath
[  422.581325][ T9289] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1615'.
[  422.583965][ T9289] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1615'.
[  436.163929][ T9450] bridge0: port 1(macvlan2) entered blocking state
[  436.165867][ T9450] bridge0: port 1(macvlan2) entered disabled state
[  436.169115][ T9450] device macvlan2 entered promiscuous mode
[  437.751161][ T9474] ODEBUG: Out of memory. ODEBUG disabled
[  440.291852][ T9501] bridge0: port 3(macvlan2) entered blocking state
[  440.548826][ T9501] bridge0: port 3(macvlan2) entered disabled state
[  440.884767][ T9501] device macvlan2 entered promiscuous mode
[  442.601464][ T9540] bridge0: port 3(macvlan2) entered blocking state
[  442.603359][ T9540] bridge0: port 3(macvlan2) entered disabled state
[  442.612307][ T9540] device macvlan2 entered promiscuous mode
[  443.386642][ T2057] ieee802154 phy0 wpan0: encryption failed: -22
[  443.388845][ T2057] ieee802154 phy1 wpan1: encryption failed: -22
[  444.877245][ T9576] bridge0: port 3(macvlan2) entered blocking state
[  444.879421][ T9576] bridge0: port 3(macvlan2) entered disabled state
[  444.882873][ T9576] device macvlan2 entered promiscuous mode
[  456.424220][ T9717] 9pnet: Insufficient options for proto=fd
[  457.591611][ T9735] overlayfs: failed to clone upperpath
[  465.126226][ T9833] netlink: 68 bytes leftover after parsing attributes in process `syz.4.1808'.
[  472.309271][ T9958] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1852'.
[  472.312865][ T9958] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1852'.
[  472.861417][ T9962] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1853'.
[  490.037198][T10227] ipt_CLUSTERIP: Please specify destination IP
[  493.185698][T10269] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1962'.
[  505.428162][ T2057] ieee802154 phy0 wpan0: encryption failed: -22
[  505.467873][ T2057] ieee802154 phy1 wpan1: encryption failed: -22
[  505.768873][T10405] lo speed is unknown, defaulting to 1000
[  506.080503][T10405] chnl_net:caif_netlink_parms(): no params data found
[  506.212973][T10405] bridge0: port 1(bridge_slave_0) entered blocking state
[  506.220349][T10405] bridge0: port 1(bridge_slave_0) entered disabled state
[  506.227157][T10405] device bridge_slave_0 entered promiscuous mode
[  506.238070][T10405] bridge0: port 2(bridge_slave_1) entered blocking state
[  506.239996][T10405] bridge0: port 2(bridge_slave_1) entered disabled state
[  506.242360][T10405] device bridge_slave_1 entered promiscuous mode
[  506.325943][T10405] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  506.330890][T10405] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  506.350495][T10405] team0: Port device team_slave_0 added
[  506.354879][T10405] team0: Port device team_slave_1 added
[  506.398053][T10405] batman_adv: batadv0: Adding interface: batadv_slave_0
[  506.400006][T10405] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  506.406916][T10405] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  506.716137][T10405] batman_adv: batadv0: Adding interface: batadv_slave_1
[  506.718278][T10405] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  506.733292][T10405] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  506.744060][   T21] Bluetooth: hci5: command 0x0409 tx timeout
[  506.750235][T10442] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2021'.
[  506.756197][T10442] IPv6: ADDRCONF(NETDEV_CHANGE): gre1: link becomes ready
[  507.431385][T10437] device syz_tun left promiscuous mode
[  507.468932][T10437] bridge0: port 2(bridge_slave_1) entered disabled state
[  507.471624][T10437] bridge0: port 1(bridge_slave_0) entered disabled state
[  508.335607][T10437] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  508.378169][T10437] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  508.807477][T10437] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  508.809936][T10437] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  508.812130][T10437] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  508.814820][T10437] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  508.825086][   T21] Bluetooth: hci5: command 0x041b tx timeout
[  509.051206][  T136] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  509.097118][T10405] device hsr_slave_0 entered promiscuous mode
[  509.134281][T10405] device hsr_slave_1 entered promiscuous mode
[  509.173939][T10405] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  509.175993][T10405] Cannot create hsr debugfs directory
[  509.191330][  T136] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  509.244660][  T136] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  509.291093][  T136] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  509.677129][T10405] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  509.696658][T10405] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  509.716014][T10405] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  509.765715][T10405] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  510.062394][T10405] 8021q: adding VLAN 0 to HW filter on device bond0
[  510.117870][ T4145] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  510.120721][ T4145] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  510.138452][T10405] 8021q: adding VLAN 0 to HW filter on device team0
[  510.273892][ T1856] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  510.276460][ T1856] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  510.278824][ T1856] bridge0: port 1(bridge_slave_0) entered blocking state
[  510.280711][ T1856] bridge0: port 1(bridge_slave_0) entered forwarding state
[  510.282843][ T1856] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  510.305661][ T1856] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  510.308248][ T1856] bridge0: port 2(bridge_slave_1) entered blocking state
[  510.310092][ T1856] bridge0: port 2(bridge_slave_1) entered forwarding state
[  510.312237][ T1856] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  510.333443][ T1856] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  510.357040][ T1856] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  510.381595][T10405] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  510.400952][T10405] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  510.413672][ T1856] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  510.417202][ T1856] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  510.420951][ T1856] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  510.608023][ T1856] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  510.634586][ T1856] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  510.644864][ T1856] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  510.653112][ T1856] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  510.963935][ T4078] Bluetooth: hci5: command 0x040f tx timeout
[  510.968926][ T1856] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  510.983293][ T1856] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  510.996681][ T1856] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  511.465582][ T1856] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  511.467622][ T1856] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  511.496051][T10405] 8021q: adding VLAN 0 to HW filter on device batadv0
[  511.777720][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  511.780678][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  512.396997][T10405] device veth0_vlan entered promiscuous mode
[  512.440707][T10405] device veth1_vlan entered promiscuous mode
[  512.442960][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  512.445796][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  512.457606][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  512.535972][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  512.538401][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  512.651571][  T136] device hsr_slave_0 left promiscuous mode
[  512.676869][  T136] device hsr_slave_1 left promiscuous mode
[  512.868908][  T136] device macvlan2 left promiscuous mode
[  512.870532][  T136] bridge0: port 1(macvlan2) entered disabled state
[  512.993935][   T21] Bluetooth: hci5: command 0x0419 tx timeout
[  512.994002][  T136] device veth1_macvtap left promiscuous mode
[  512.997246][  T136] device veth0_macvtap left promiscuous mode
[  512.998856][  T136] device veth1_vlan left promiscuous mode
[  513.000303][  T136] device veth0_vlan left promiscuous mode
[  513.290030][  T136] bond0 (unregistering): Released all slaves
[  513.373957][T10405] device veth0_macvtap entered promiscuous mode
[  513.380597][ T1856] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  513.383435][ T1856] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  513.391613][ T1856] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  513.400976][T10405] device veth1_macvtap entered promiscuous mode
[  513.413101][T10405] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  513.417198][T10405] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  513.420176][T10405] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  513.423352][T10405] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  513.432595][T10405] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  513.435669][T10405] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  513.440743][T10405] batman_adv: batadv0: Interface activated: batadv_slave_0
[  513.445527][ T1856] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  513.448260][ T1856] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  513.450940][ T1856] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  513.466270][T10405] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  513.469084][T10405] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  513.471582][T10405] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  513.480166][T10405] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  513.482558][T10405] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  513.485409][T10405] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  513.494255][T10405] batman_adv: batadv0: Interface activated: batadv_slave_1
[  513.497036][ T1856] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  513.499769][ T1856] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  513.504748][T10405] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  513.507103][T10405] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  513.509361][T10405] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  513.511494][T10405] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  513.587925][ T1856] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  513.590429][ T1856] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  513.594728][ T1771] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  513.617112][ T1856] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  513.619563][ T1856] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  513.623450][ T1856] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  514.409903][T10584] loop6: detected capacity change from 0 to 32768
[  514.499019][T10584] XFS (loop6): Mounting V5 Filesystem
[  514.685990][T10584] XFS (loop6): Ending clean mount
[  515.883592][T10405] XFS (loop6): Unmounting Filesystem
[  518.078550][T10655] Injecting memory failure for pfn 0x132a75 at process virtual address 0x400000162000
[  518.105336][T10655] Memory failure: 0x132a75: recovery action for clean LRU page: Recovered
[  518.107602][T10655] Injecting memory failure for pfn 0x132a76 at process virtual address 0x400000163000
[  518.146278][T10655] Memory failure: 0x132a76: recovery action for clean LRU page: Recovered
[  518.148499][T10655] Injecting memory failure for pfn 0x132a77 at process virtual address 0x400000164000
[  518.165484][T10655] Memory failure: 0x132a77: recovery action for clean LRU page: Recovered
[  518.774248][T10696] bridge0: port 2(bridge_slave_1) entered disabled state
[  518.776471][T10696] bridge0: port 1(bridge_slave_0) entered disabled state
[  518.818105][T10696] A link change request failed with some changes committed already. Interface bridge0 may have been left with an inconsistent configuration, please check.
[  518.994376][T10704] netlink: 'syz.6.2074': attribute type 10 has an invalid length.
[  519.115451][T10704] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  519.609829][T10726] loop6: detected capacity change from 0 to 512
[  519.748988][T10726] EXT4-fs (loop6): mounted filesystem without journal. Opts: sb=0x0000000000000001,nodioread_nolock,errors=remount-ro,. Quota mode: writeback.
[  520.234873][T10764] loop6: detected capacity change from 0 to 8
[  521.248845][T10724] Injecting memory failure for pfn 0x137ebe at process virtual address 0x400000162000
[  521.263180][T10724] Memory failure: 0x137ebe: recovery action for clean LRU page: Recovered
[  521.265502][T10724] Injecting memory failure for pfn 0x137ebf at process virtual address 0x400000163000
[  521.274929][T10724] Memory failure: 0x137ebf: recovery action for clean LRU page: Recovered
[  521.277138][T10724] Injecting memory failure for pfn 0x137ec0 at process virtual address 0x400000164000
[  521.284368][T10724] Memory failure: 0x137ec0: recovery action for clean LRU page: Recovered
[  523.600242][T10821] Injecting memory failure for pfn 0x135200 at process virtual address 0x400000000000
[  523.628707][T10821] Memory failure: 0x135200: recovery action for dirty LRU page: Recovered
[  523.633583][T10821] Injecting memory failure for pfn 0x131400 at process virtual address 0x400000200000
[  523.639701][T10821] page:0000000017459805 refcount:2 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x131400
[  523.645861][T10821] head:0000000017459805 order:9 compound_mapcount:0 compound_pincount:0
[  523.650322][T10821] flags: 0x5ffc00000410003(locked|referenced|head|hwpoison|node=0|zone=2|lastcpupid=0x7ff)
[  523.660935][T10821] raw: 05ffc00000410003 0000000000000000 dead000000000122 0000000000000000
[  523.665467][T10821] raw: 0000000000000000 0000000000000000 00000002ffffffff 0000000000000000
[  523.671057][T10821] page dumped because: VM_WARN_ON_ONCE_PAGE(is_hzp)
[  523.674418][T10821] ------------[ cut here ]------------
[  523.675869][T10821] WARNING: CPU: 0 PID: 10821 at mm/huge_memory.c:2624 split_huge_page_to_list+0x89c/0x2d88
[  523.678379][T10821] Modules linked in:
[  523.679619][T10821] CPU: 0 PID: 10821 Comm: syz.2.2102 Not tainted 5.15.178-syzkaller #0
[  523.681782][T10821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  523.684468][T10821] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[  523.686468][T10821] pc : split_huge_page_to_list+0x89c/0x2d88
[  523.687985][T10821] lr : split_huge_page_to_list+0x890/0x2d88
[  523.689451][T10821] sp : ffff800020127460
[  523.690576][T10821] x29: ffff800020127610 x28: 1fffff800078a000 x27: 0000000000000000
[  523.692732][T10821] x26: 0000000000000000 x25: ffff800020127580 x24: ffff0001fec70d80
[  523.694734][T10821] x23: dfff800000000000 x22: 05ffc00000410003 x21: fffffc0003c50000
[  523.696751][T10821] x20: ffff800016fd0000 x19: 00000000fffffff0 x18: 1fffe0003682eb8e
[  523.698770][T10821] x17: 1fffe0003682eb8e x16: ffff800011b4e3fc x15: ffff800014c0fac0
[  523.700877][T10821] x14: 1ffff0000296e06c x13: dfff800000000000 x12: 0000000000080000
[  523.702958][T10821] x11: 000000000007ffff x10: ffff80002265a000 x9 : 78b8a463490ea600
[  523.704888][T10821] x8 : 0000000000000001 x7 : 0000000000000000 x6 : 0000000000000000
[  523.706960][T10821] x5 : 0000000000000080 x4 : 0000000000000000 x3 : ffff80000aa0f0fc
[  523.709038][T10821] x2 : ffff0001b4175d10 x1 : 0000000100000000 x0 : 0000000000000031
[  523.711069][T10821] Call trace:
[  523.711880][T10821]  split_huge_page_to_list+0x89c/0x2d88
[  523.713223][T10821]  try_to_split_thp_page+0xf0/0x1d4
[  523.714634][T10821]  memory_failure+0x714/0x1f00
[  523.715869][T10821]  do_madvise+0x514/0x2c70
[  523.716985][T10821]  __arm64_sys_madvise+0xa4/0xc0
[  523.718331][T10821]  invoke_syscall+0x98/0x2b8
[  523.719510][T10821]  el0_svc_common+0x138/0x258
[  523.720708][T10821]  do_el0_svc+0x58/0x14c
[  523.721863][T10821]  el0_svc+0x7c/0x1f0
[  523.722922][T10821]  el0t_64_sync_handler+0x84/0xe4
[  523.724196][T10821]  el0t_64_sync+0x1a0/0x1a4
[  523.725293][T10821] irq event stamp: 4952
[  523.726305][T10821] hardirqs last  enabled at (4951): [<ffff80000826ac80>] finish_lock_switch+0xbc/0x1e8
[  523.728806][T10821] hardirqs last disabled at (4952): [<ffff800011b49ab0>] el1_dbg+0x24/0x80
[  523.731113][T10821] softirqs last  enabled at (4870): [<ffff8000081b6920>] handle_softirqs+0xb88/0xdbc
[  523.733527][T10821] softirqs last disabled at (4851): [<ffff8000081b6fb8>] __irq_exit_rcu+0x268/0x4d8
[  523.735808][T10821] ---[ end trace b49d8df3fee5d0c9 ]---
[  523.785747][T10821] Memory Failure: 0x131400: thp split failed
[  523.787382][T10821] Memory failure: 0x131400: recovery action for unsplit thp: Ignored